ccnp® complete study guide - download.e-bookshelf.de · ccnp complete study guide reflects our...

CCNP®Complete Study Guide

Wade Edwards, et al.

SYBEX®

San Francisco • London

CCNP

®

Complete

Study Guide

Wade Edwards, CCIE, Terry Jack, CCIE,Todd Lammle, CCNP, Robert Padjen, CCNP,Arthur Pfund, CCIE, Toby Skandier, CCNP,

Carl Timm, CCIE

4421.book Page i Tuesday, February 15, 2005 5:33 PM

http://www.sybex.com

Associate Publisher: Neil EddeAcquisitions and Developmental Editor: Maureen AdamsProduction Editor: Mae LumTechnical Editor: Craig VazquezCopyeditor: Sarah LemaireCompositor: Craig J. Woods, Happenstance Type-O-RamaGraphic Illustrator: Happenstance Type-O-RamaCD Coordinator: Dan MummertCD Technician: Kevin LyProofreaders: Jim Brook, Candace English, Jennifer Larsen, Nancy RiddioughIndexer: Nancy GuentherBook Designers: Bill Gibson, Judy FungCover Designer: Archer DesignCover Illustrator/Photographer: Photodisc and Victor Arre

Copyright © 2005 SYBEX Inc., 1151 Marina Village Parkway, Alameda, CA 94501. World rights reserved. No part of this publication may be stored in a retrieval system, transmitted, or reproduced in any way, including but not limited to photocopy, photograph, magnetic, or other record, without the prior agreement and written per-mission of the publisher.

Portions of this book were published under the titles:

CCNP: Building Scalable Cisco Internetworks Study Guide

© 2004 SYBEX Inc.,

CCNP: Building Cisco Multilayer Switched Networks Study Guide

© 2004 SYBEX Inc.,

CCNP: Building Cisco Remote Access Networks Study Guide

© 2004 SYBEX Inc., and

CCNP: Cisco Internetwork Troubleshooting Study Guide © 2004 SYBEX Inc.

Library of Congress Card Number: 2005920775

ISBN: 0-7821-4421-7

SYBEX and the SYBEX logo are either registered trademarks or trademarks of SYBEX Inc. in the United States and/or other countries.

Screen reproductions produced with FullShot 99. FullShot 99 © 1991-1999 Inbit Incorporated. All rights reserved.

FullShot is a trademark of Inbit Incorporated.

The CD interface was created using Macromedia Director, COPYRIGHT 1994, 1997-1999 Macromedia Inc. For more information on Macromedia and Macromedia Director, visit http://www.macromedia.com.

This study guide and/or material is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc. Cisco®, Cisco Systems®, CCDA™, CCNA™, CCDP™, CCSP™, CCIP™, BSCI™, CCNP™, CCIE™, CCSI™, the Cisco Systems logo and the CCIE logo are trademarks or registered trademarks of Cisco Systems, Inc. in the United States and certain other countries. All other trademarks are trademarks of their respective owners.

TRADEMARKS: SYBEX has attempted throughout this book to distinguish proprietary trademarks from descriptive terms by following the capitalization style used by the manufacturer.

The author and publisher have made their best efforts to prepare this book, and the content is based upon final release software whenever possible. Portions of the manuscript may be based upon pre-release versions supplied by software manufacturer(s). The author and the publisher make no representation or warranties of any kind with regard to the completeness or accuracy of the contents herein and accept no liability of any kind including but not limited to performance, merchantability, fitness for any particular purpose, or any losses or damages of any kind caused or alleged to be caused directly or indirectly from this book.

Manufactured in the United States of America

10 9 8 7 6 5 4 3 2 1

4421.book Page ii Tuesday, February 15, 2005 5:33 PM


To Our Valued Readers:

Thank you for looking to Sybex for your CCNP exam prep needs. Cisco developed the CCNP certification to validate expertise in implementing and managing Cisco internetworking solu-tions, and it is currently one of the most highly sought after IT certifications. Just as Cisco is committed to establishing measurable standards for certifying those professionals who work in the field of internetworking, Sybex is committed to providing those professionals with the information they need to excel.

We at Sybex are proud of our reputation for providing certification candidates with the practical knowledge and skills needed to succeed in the highly competitive IT marketplace. This four-in-one CCNP Complete Study Guide reflects our commitment to provide CCNP candidates with the most up-to-date, accurate, and economical instructional material on the market.

The authors and the editors have worked hard to ensure that the book you hold in your hands is comprehensive, in-depth, and pedagogically sound. We’re confident that this book will exceed the demanding standards of the certification marketplace and help you, the CCNP certification candidate, succeed in your endeavors.

As always, your feedback is important to us. If you believe you’ve identified an error in the book, please send a detailed e-mail to [email protected]. And if you have general comments or suggestions, feel free to drop me a line directly at [email protected]. At Sybex, we’re con-tinually striving to meet the needs of individuals preparing for certification exams.

Good luck in pursuit of your CCNP certification!

Neil EddePublisher—CertificationSybex, Inc.

4421.book Page iii Tuesday, February 15, 2005 5:33 PM


Software License Agreement: Terms and Conditions

The media and/or any online materials accompanying this book that are available now or in the future contain programs and/or text files (the “Software”) to be used in connection with the book. SYBEX hereby grants to you a license to use the Software, subject to the terms that follow. Your purchase, acceptance, or use of the Soft-ware will constitute your acceptance of such terms.The Software compilation is the property of SYBEX unless otherwise indicated and is protected by copyright to SYBEX or other copyright owner(s) as indicated in the media files (the “Owner(s)”). You are hereby granted a single-user license to use the Software for your personal, noncommercial use only. You may not repro-duce, sell, distribute, publish, circulate, or commercially exploit the Software, or any portion thereof, without the written consent of SYBEX and the specific copyright owner(s) of any component software included on this media.In the event that the Software or components include specific license requirements or end-user agreements, statements of condition, disclaimers, limitations or war-ranties (“End-User License”), those End-User Licenses supersede the terms and conditions herein as to that par-ticular Software component. Your purchase, accep-tance, or use of the Software will constitute your acceptance of such End-User Licenses.By purchase, use or acceptance of the Software you fur-ther agree to comply with all export laws and regula-tions of the United States as such laws and regulations may exist from time to time.

Software Support

Components of the supplemental Software and any offers associated with them may be supported by the specific Owner(s) of that material, but they are not sup-ported by SYBEX. Information regarding any available support may be obtained from the Owner(s) using the information provided in the appropriate read.me files or listed elsewhere on the media.Should the manufacturer(s) or other Owner(s) cease to offer support or decline to honor any offer, SYBEX bears no responsibility. This notice concerning support for the Software is provided for your information only. SYBEX is not the agent or principal of the Owner(s), and SYBEX is in no way responsible for providing any support for the Software, nor is it liable or responsible for any support provided, or not provided, by the Owner(s).

Warranty

SYBEX warrants the enclosed media to be free of phys-ical defects for a period of ninety (90) days after pur-chase. The Software is not available from SYBEX in any other form or media than that enclosed herein or posted to

www.sybex.com

. If you discover a defect in the media

during this warranty period, you may obtain a replace-ment of identical format at no charge by sending the defective media, postage prepaid, with proof of pur-chase to:

SYBEX Inc.Product Support Department1151 Marina Village ParkwayAlameda, CA 94501Web:


After the 90-day period, you can obtain replacement media of identical format by sending us the defective disk, proof of purchase, and a check or money order for $10, payable to SYBEX.

Disclaimer

SYBEX makes no warranty or representation, either expressed or implied, with respect to the Software or its contents, quality, performance, merchantability, or fit-ness for a particular purpose. In no event will SYBEX, its distributors, or dealers be liable to you or any other party for direct, indirect, special, incidental, consequen-tial, or other damages arising out of the use of or inabil-ity to use the Software or its contents even if advised of the possibility of such damage. In the event that the Soft-ware includes an online update feature, SYBEX further disclaims any obligation to provide this feature for any specific duration other than the initial posting.The exclusion of implied warranties is not permitted by some states. Therefore, the above exclusion may not apply to you. This warranty provides you with specific legal rights; there may be other rights that you may have that vary from state to state. The pricing of the book with the Software by SYBEX reflects the allocation of risk and limitations on liability contained in this agree-ment of Terms and Conditions.

Shareware Distribution

This Software may contain various programs that are distributed as shareware. Copyright laws apply to both shareware and ordinary commercial software, and the copyright Owner(s) retains all rights. If you try a share-ware program and continue using it, you are expected to register it. Individual programs differ on details of trial periods, registration, and payment. Please observe the requirements stated in appropriate files.

Copy Protection

The Software in whole or in part may or may not be copy-protected or encrypted. However, in all cases, reselling or redistributing these files without authoriza-tion is expressly forbidden except as specifically pro-vided for by the Owner(s) therein.

4421.book Page iv Tuesday, February 15, 2005 5:33 PM


Acknowledgments

We would like to thank Neil Edde and Maureen Adams for giving us the opportunity to update this Study Guide. We would also like to take a moment to thank everyone else involved in the creation of this book, including Production Editor Mae Lum; Technical Editor Craig Vazquez; Copyeditor Sarah Lemaire; Proofreaders Jim Brook, Candace English, Jennifer Larsen, and Nancy Riddiough; Indexer Nancy Guenther; and Dan Mummert and Kevin Ly of the CD group.

4421.book Page v Tuesday, February 15, 2005 5:33 PM


Contents at a Glance

Introduction xxix

Part I Building Scalable Cisco Internetworks (BSCI) 1

Chapter 1

Routing Principles 3

Chapter 2

IP Addressing 37

Chapter 3

Network Address Translation 75

Chapter 4

IGRP and EIGRP 99

Chapter 5

OSPF Operation in a Single Area 141

Chapter 6

Interconnecting OSPF Areas 175

Chapter 7

Integrated IS-IS 205

Chapter 8

Border Gateway Protocol 235

Chapter 9

Advanced Border Gateway Protocol 283

Chapter 10

Route Optimization 323

Chapter 11

Design Considerations 357

Part II Building Cisco Multilayer Switched Networks (BCMSN) 377

Chapter 12

The Campus Network 379

Chapter 13

Connecting the Switch Block 413

Chapter 14

VLANs, Trunks, and VTP 445

Chapter 15

Layer 2 Switching and the Spanning Tree Protocol (STP) 481

Chapter 16

Using Spanning Tree with VLANs 501

Chapter 17

Inter-VLAN Routing 537

Chapter 18

Multilayer Switching (MLS) 553

Chapter 19

Understanding and Configuring Multicast Operation 585

Chapter 20

Quality of Service (QoS) 637

Chapter 21

Catalyst Switch Technologies 677

4421.book Page vi Tuesday, February 15, 2005 5:33 PM


Contents at a Glance

vii

Part III Building Cisco Remote Access Networks (BCRAN) 703

Chapter 22

Cisco Solutions for Remote Access 705

Chapter 23

Asynchronous Connections 745

Chapter 24

Point-to-Point Protocol 763

Chapter 25

Using Microsoft Win-dows 95/98/2000/XP 797

Chapter 26

Integrated Services Digital Network (ISDN) 815

Chapter 27

Remote Access with Digital Subscriber Line 865

Chapter 28

Remote Access with Cable Modems and Virtual Private Networks 877

Chapter 29

Frame Relay 887

Chapter 30

Queuing and Compression 915

Chapter 31

Network Address Translation and Port Address Translation 941

Chapter 32

Centralized Security in Remote Access Networks 967

Part IV Cisco Internetwork Troubleshooting (CIT) 985

Chapter 33

Troubleshooting Methodology 987

Chapter 34

Network Documentation 1001

Chapter 35

End-System Documentation and Troubleshooting 1023

Chapter 36

Protocol Attributes 1053

Chapter 37

Cisco Diagnostic Commands and TCP/IP Troubleshooting 1081

Chapter 38

TCP/IP Routing Protocol Troubleshooting 1137

Chapter 39

Troubleshooting Serial Line and Frame Relay Connectivity 1177

Chapter 40

Troubleshooting ISDN 1203

Chapter 41

Troubleshooting Switched Ethernet 1235

Chapter 42

Applying Cisco’s Diagnostic Tools 1283

Index 1327

4421.book Page vii Tuesday, February 15, 2005 5:33 PM


Contents

Introduction xxix

Part I Building Scalable Cisco Internetworks (BSCI) 1

Chapter 1 Routing Principles 3

Components of Routing Data 4Routing Tables 5Populating the Routing Table 6Reaching the Destination 20

Convergence 23RIP Convergence 23IGRP Convergence 25EIGRP Convergence 27Link-State Convergence 28

Verifying and Testing a Route 29Verifying Routes 29Testing and Troubleshooting Routes 30

Summary 34Exam Essentials 34

Chapter 2 IP Addressing 37

Review of IPv4 Addressing 38IP Terminology 39The Hierarchical IP Addressing Scheme 40

Extending IP Addresses 45Variable-Length Subnet Masks 46Classless Interdomain Routing 54Route Summarization 56

Decimal-to-Binary Conversion Chart 66An Overview of IPv6 Addressing 66

IPv6 Address Format 67IPv6 Address Types 68


Chapter 3 Network Address Translation 75

Understanding Network Address Translation 76NAT Terminology 77NAT Operations 82

Configuring NAT 88Configuring Static NAT 89

4421.book Page viii Tuesday, February 15, 2005 5:33 PM


Contents

ix

Configuring Dynamic NAT 91Configuring NAT Using Overloading 92Configuring TCP Load Distribution 93Configuring NAT for Overlapping Addresses 94Verifying and Troubleshooting the NAT Configuration 95


Chapter 4 IGRP and EIGRP 99

Scalability Features of Routing Protocols 100Distance-Vector Protocol Scalability Issues 101Scalability Limitations of Link-State Routing Protocols 102

Interior Gateway Routing Protocol 102IGRP Features and Operation 103IGRP Configuration 111Verifying and Troubleshooting IGRP 114

Enhanced Interior Gateway Routing Protocol 118Route Tagging 119Neighbor Relationships 119Route Calculation 120EIGRP Metrics 125Redistribution for EIGRP 128Configuring EIGRP 128Verifying and Troubleshooting EIGRP 133


Chapter 5 OSPF Operation in a Single Area 141

Open Shortest Path First 142OSPF Terminology 143OSPF Operation 145

NBMA Overview 155NBMA Environments 155

Broadcast 156Non-Broadcast 157Point-to-Point 158Point-to-Multipoint 158

Configuring OSPF 159Discovering the Network with OSPF 159Configuring OSPF—Single Area 163Configuring OSPF—Single Area (NBMA Environment) 166Verifying OSPF Configuration 170


4421.book Page ix Tuesday, February 15, 2005 5:33 PM


x

Contents

Chapter 6 Interconnecting OSPF Areas 175

OSPF Scalability 176Categories of Multi-Area Components 177

OSPF Router Roles 177Link-State Advertisements 179OSPF Area Types 181

Basic Multi-Area Configuration 182RouterA 183RouterB 183RouterC 183Configuring Multi-Area OSPF 184

Stub Area Configuration 184RouterB 185RouterC 186RouterD 186Configuring OSPF for a Stub Area 186

Totally Stubby Area Configuration 187RouterB 187RouterC 188RouterD 188Configuring OSPF for a Totally Stubby Area 189

Not-So-Stubby Area Configuration 189RouterA 190RouterB 190RouterC 190RouterD 191Configuring OSPF for a Not-So-Stubby Area 191

OSPF Virtual Links 193RouterA 194RouterB 195RouterC 195

Verifying and Troubleshooting OSPF 196Route Information 196Link-State Database Information 197Routing Protocol Information 198Viewing Neighbor Information 200Viewing OSPF Packets 202


Chapter 7 Integrated IS-IS 205

Integrated Intermediate System to Intermediate System 206Integrated IS-IS Operation 208

IS-IS Terminology 208IS-IS Areas 208

4421.book Page x Tuesday, February 15, 2005 5:33 PM


Contents

xi

Network Entity Titles 211Neighbor and Adjacency Initialization 212Designated Router 213IS-IS PDUs 215LSP Flooding 217SPF Algorithm 217Network Types 218

Configuring IS-IS 219Verifying and Troubleshooting IS-IS 225

Route Information 225Link-State Database Information 226Routing Protocol Information 228Viewing Neighbor Information 229Viewing SPF Information 230


Chapter 8 Border Gateway Protocol 235

Border Gateway Protocol 236BGP Terminology 237

BGP Operation 238Message Header Format 239OPEN Message 240UPDATE Message 242KEEPALIVE Message 247NOTIFICATION Message 247Neighbor Negotiation 249Route Selection 252BGP Synchronization 256Route Aggregation 259

When and When Not to Use BGP 259Configuring BGP 260

Minimal BGP Configuration 260iBGP and eBGP Configuration 262eBGP Multihop Configuration 266Injecting Routes into BGP 268

Verifying and Troubleshooting the Operation of BGP 272Route Information 273Viewing Neighbor Information 274Debugging BGP Information 276


4421.book Page xi Tuesday, February 15, 2005 5:33 PM


xii

Contents

Chapter 9 Advanced Border Gateway Protocol 283

Overcoming Scalability Limitations of iBGP 284Route Reflection 285Configuring Route Reflection for iBGP 288Confederations 293Configuring Confederations 296

BGP Filters 300Distribute Lists 301Prefix Lists 302Route Maps 306

Communities 309Peer Groups 311Multi-homing 316Resolving Next-Hop Issues 318Route Aggregation 319Summary 320Exam Essentials 320

Chapter 10 Route Optimization 323

Filtering 324Access Groups 324Distribute Lists 326Route Maps 327

Policy-Based Routing 328Source-Based Policies 329Type of Traffic Policies 330Type of Service Policies 331

Verifying and Troubleshooting Policy-Based Routing Operation 333

Redistribution 336Classless to Classful Redistribution 338Filtering with Redistribution 338

Configuring Redistribution 338RIP 338IGRP 340EIGRP 341OSPF 341IS-IS 343Connected Interfaces, Static Routes, and Default Routes 345Classless to Classful Redistribution 349Filtering with Redistribution 351

Summarization 353EIGRP 353OSPF 354IS-IS 355

4421.book Page xii Tuesday, February 15, 2005 5:33 PM


Contents

xiii


Chapter 11 Design Considerations 357

Three-Layer Hierarchical Design Model 358Access Layer 358Distribution Layer 362Core Layer 363

IP Address Assignment 364Considering Routing Protocols in Network Design 368

OSPF 369EIGRP 370IS-IS 371BGP 372


Part II Building Cisco Multilayer Switched Networks (BCMSN) 377

Chapter 12 The Campus Network 379

Understanding Campus Internetworks 381Looking Back at Traditional Campus Networks 381

Performance Problems and Solutions 382The 80/20 Rule 384

Introducing the New Campus Model 386Network Services 387

Using Switching Technologies 388Open Systems Interconnection (OSI) Model 388Layer 2 Switching 391Routing 391Layer 3 Switching 392Layer 4 Switching 393Multilayer Switching (MLS) 393

Understanding the Cisco Hierarchical Model 394Core Layer 396Distribution Layer 397Access Layer 397

Using Cisco Catalyst Products 398Access Layer Switches 398Distribution Layer Switches 399Core Layer Switches 400

Applying the Building Blocks 400

4421.book Page xiii Tuesday, February 15, 2005 5:33 PM


xiv

Contents

Switch Block 401Core Block 401Scaling Layer 2 Backbones 404Scaling Layer 3 Backbones 406

SAFE 407Summary 410Exam Essentials 410

Chapter 13 Connecting the Switch Block 413

Understanding Cable Media 414The Background of IEEE Ethernet 415LAN Segmentation Using Switches 416

Using Ethernet Media in Your Network 41710BaseT 417FastEthernet 417Gigabit Ethernet 420

Connecting and Logging In to a Switch 423Cabling the Switch Block Devices 424Cisco IOS- and Set-Based Commands 426


Chapter 14 VLANs, Trunks, and VTP 445

Understanding the Design Benefits of Virtual LANs 446Broadcast Control 447Security 448Flexibility and Scalability 448The Collapsed Backbone and the VLAN 449

Scaling the Switch Block 450Defining VLAN Boundaries 451Assigning VLAN Memberships 452Configuring Static VLANs 452

Identifying VLANs 457Frame Tagging 458VLAN Identification Methods 458

Trunking 461Configuring Trunk Ports 461Clearing VLANs from Trunk Links 463Verifying Trunk Links 464

Using VLAN Trunk Protocol (VTP) 465VTP Modes of Operation 466VTP Advertisements 468Configuring VTP 470Adding to a VTP Domain 475VTP Pruning 475

4421.book Page xiv Tuesday, February 15, 2005 5:33 PM


Contents

xv

Auxiliary VLANs 477802.1Q Tunneling 477Summary 478Exam Essentials 478

Chapter 15 Layer 2 Switching and the Spanning Tree Protocol (STP) 481

Layer 2 LAN Switching 482Comparing Bridges to Switches 482Three Switch Functions at Layer 2 483

Spanning Tree Operation 487Selecting the Best Path 488Selecting the Designated Port 491Spanning Tree Port States 492Spanning Tree Example 493

LAN Switch Types 494Store-and-Forward 495Cut-Through (Real Time) 495FragmentFree (Modified Cut-Through) 496

Configuring Spanning Tree 496Summary 499Exam Essentials 499

Chapter 16 Using Spanning Tree with VLANs 501

Creating VLAN Standards 502Per-VLAN Spanning Tree (PVST) 503Common Spanning Tree (CST) 504Per-VLAN Spanning Tree

+

(PVST

+

) 504Multiple Spanning Tree (MST) 505

Scaling the Spanning Tree Protocol 505Determining the Root 506Configuring the Root 506Setting the Port Cost 510Setting the Port Priority 513Changing the STP Timers 517

Using Redundant Links with STP 519Parallel Fast EtherChannel Links 520Port Aggregation Protocol (PAgP) 526Load Balancing and Redundancy 526PortFast 527UplinkFast 529BackboneFast 532Rapid Spanning Tree Protocol 533


4421.book Page xv Tuesday, February 15, 2005 5:33 PM


xvi

Contents

Chapter 17 Inter-VLAN Routing 537

Routing Between VLANs 538Multiple Links 540A Single Trunk Link 541An Internal Route Processor 541Internal Routing on an IOS-Based Switch 542

Using ISL and 802.1Q Routing 542Configuring ISL/802.1Q with an External Router 543Configuring ISL/802.1Q on an Internal Route Processor 545Configuring VLANs on an Internal Route Processor 546Configuring Internal Routing on an IOS-Based Switch 549


Chapter 18 Multilayer Switching (MLS) 553

Understanding the Fundamentals of MLS 554MLS Requirements 556MLS Procedures 557Disabling MLS 562

Configuring MLS-RP 564Enabling MLS 564VTP Domain Assignments 565VLAN Assignments 566Interface Configurations 567MSA Management Interface 568Verifying the MLS Configuration 568Access Control Lists (ACLs) 570

Configuring the MLS Switch Engine 570Enabling MLS on the MLS-SE 571Configuring Flow Masks 571Using Cache Entries 572Displaying the MLS Cache Entries 574Removing MLS Cache Entries 575

Using Acceptable MLS Topologies 575Cisco Express Forwarding (CEF) 577

The Trouble with CEF and Layer 3 Switching 577Legacy Routing and Layer 3 Switching 578


Chapter 19 Understanding and Configuring Multicast Operation 585

Multicast Overview 587Unicast 587

4421.book Page xvi Tuesday, February 15, 2005 5:33 PM


Contents xvii

Broadcast 588Multicast 589

Using Multicast Addressing 590Mapping IP Multicast to Ethernet 591Layer 3 to Layer 2 Overlap 594

Managing Multicast in an Internetwork 595Subscribing and Maintaining Groups 596Internet Group Management Protocol

Version 1 (IGMPv1) 596Internet Group Management Protocol

Version 2 (IGMPv2) 599Internet Group Management Protocol

Version 3 (IGMPv3) 600Cisco Group Management Protocol (CGMP) 601IGMP Snooping 603

Routing Multicast Traffic 604Distribution Trees 605Managing Multicast Delivery 609

Planning and Preparing for Using IP Multicast 619End-to-End IP Multicast 620

Configuring IP Multicast Routing 620Enabling IP Multicast Routing 621Enabling PIM on an Interface 622Configuring a Rendezvous Point 625Configuring TTL 628Joining a Multicast Group 629Changing the IGMP Version 631Enabling CGMP and IGMP Snooping 631


Chapter 20 Quality of Service (QoS) 637

Understanding Application Needs 638E-mail 639WWW Traffic 639Voice over Ethernet 640

Understanding the Fundamentals of QoS 642Best Efforts Networks 642

QoS Options 646The Differentiated Services Model 647IEEE 802.1p 649Applying the QoS Model 650Prioritizing Traffic Classes 650Queuing Mechanisms 651

4421.book Page xvii Tuesday, February 15, 2005 5:33 PM


xviii Contents

Configuring QoS on Cisco Switches 653Queuing Mechanisms 658

Redundancy in Switched Networks 663Hot Standby Router Protocol 663Virtual Router Redundancy Protocol 671Gateway Load Balancing Protocol 671Transparent Ethernet 673


Chapter 21 Catalyst Switch Technologies 677

The Switching Process 678Switch Architecture and Components 679Bridging Table Operation 682Memory 683Software 686

Switches: The Current Range 6882950 Series Switches 6893550 Series Switches 6914000 Series Switches 6936500 Series Switches 695

Debugging, Management, and System Testing 697The Cisco Cluster Management Suite (CMS) 697Debugging 697System Testing 698


Part III Building Cisco Remote Access Networks (BCRAN) 703

Chapter 22 Cisco Solutions for Remote Access 705

What Is Remote Access? 706WAN Connection Types 707WAN Encapsulation Protocols 717Selecting a WAN Protocol 720

Choosing Remote Connection Cisco Products 726Fixed Interfaces 727Modular Interfaces 728Product Selection Tools 728

Cabling and Assembling the WAN 729Internetworking Overview and Remote

Access Interface Options 729

4421.book Page xviii Tuesday, February 15, 2005 5:33 PM


Contents xix

Identifying Company Site Equipment 732Verifying a Network Installation 739


Chapter 23 Asynchronous Connections 745

Understanding Asynchronous Modems 746Signaling and Cabling 749Modulation Standards 751

Configuring Asynchronous Modem Connections 753Automatic Configuration 754Manual Configuration 758


Chapter 24 Point-to-Point Protocol 763

PPP Overview and Architecture 764The Flag Field 765The Address Field 766The Control Field 766The Protocol Field 766The Information Field 768The Frame Check Sequence (FCS) Field 768

Configuring Access Servers 768Configuring PPP 768Dedicated or Interactive PPP 768Interface Addressing Options for Local Devices 769

PAP and CHAP Authentication 776Password Authentication Protocol (PAP) 776Challenge Handshake Authentication Protocol (CHAP) 777

PPP Callback 779PPP Compression and Multilink 782

Compression Configuration 783Multilink Configuration 784

Verifying and Troubleshooting PPP 786The debug ppp authentication Command 787The debug ppp negotiation Command 787The debug ppp packet Command 791


Chapter 25 Using Microsoft Windows 95/98/2000/XP 797

Reasons to Use Dial-Up Networking 798Configuring Dial-Up Networking with Windows 95/98 799

4421.book Page xix Tuesday, February 15, 2005 5:33 PM


xx Contents

Configuring a Dial-Up Connection Client 800Dial-Up Networking Application 800Make New Connection Wizard 800Connection Properties 803

Setting Additional Configuration Options 810Locking DTE Speed 811Launching Terminal Windows 811

Verifying a Dial-Up Connection 812Summary 813Exam Essentials 813

Chapter 26 Integrated Services Digital Network (ISDN) 815

What Is Integrated Services Digital Network (ISDN)? 817ISDN Line Options 818

Basic Rate Interface (BRI) 819Primary Rate Interface (PRI) 821

ISDN Function Groups 822ISDN Reference Points 823ISDN Protocols 825LAPD Frames 825Layer 2 Negotiation 828ISDN Call Setup and Teardown 831ISDN Configuration 834Using a Legacy Interface 835Using a Dialer Interface 837Authentication 838

Password Authentication Protocol (PAP) 839Challenge Handshake Authentication Protocol (CHAP) 840

Dial-on-Demand Routing (DDR) 843Configuring DDR 844Using Optional Commands 846Using DDR with Access Lists 847Verifying the ISDN Operation 848

Dial Backup 848Setting Up Dial Backup 849Testing the Backup 851

Bandwidth on Demand 857Channelized T-1/E-1 (PRI) 859

Configuring ISDN PRI 860Configuring E-1 861


4421.book Page xx Tuesday, February 15, 2005 5:33 PM


Contents xxi

Chapter 27 Remote Access with Digital Subscriber Line 865

What Is Digital Subscriber Line? 866The Different Flavors of DSL 867

Asymmetric Digital Subscriber Line 867G.lite 869High Bit-Rate DSL 869Symmetric DSL 869ISDN DSL 869Very-High Data Rate DSL 870

Cisco DSL Routers 871Configuring DSL 872Troubleshooting DSL 874Summary 875Exam Essentials 875

Chapter 28 Remote Access with Cable Modems and Virtual Private Networks 877

What Is a Cable Modem? 878DOCSIS 879

Cisco’s Cable Modem Product Line 880Cisco Cable Manager 881Virtual Private Networks 881

IPSec 881Summary 886Exam Essentials 886

Chapter 29 Frame Relay 887

Understanding Frame Relay 888What Is Frame Relay? 888A Brief History of Frame Relay 889

Frame Relay Virtual Circuits 889Switched Virtual Circuits 890Permanent Virtual Circuits 891

Data Link Connection Identifier (DLCI) 891DCLI Mapping 892

Frame Relay Local Management Interface (LMI) 894Configuring Frame Relay 895Frame Relay Congestion Control 896

Factors Affecting Performance 896Congestion Handling by Frame Relay Switches 897Congestion Handling by Routers 898

Point-to-Point and Multipoint Interfaces 899Verifying Frame Relay 902

The show interface Command 902

4421.book Page xxi Tuesday, February 15, 2005 5:33 PM


xxii Contents

The show frame-relay pvc Command 903The show frame-relay map Command 904The show frame-relay lmi Command 904The debug frame-relay lmi Command 905

Frame Relay Switching 906Frame Relay Switching Commands 907

Frame Relay Traffic Shaping 909Using Traffic-Shaping Techniques 909Configuring Traffic Shaping 910


Chapter 30 Queuing and Compression 915

Queuing 916Traffic Prioritization 917Queuing Policy 917

IOS Queuing Options 918Weighted Fair Queuing 919Priority Queuing 922Custom Queuing 925

Cisco’s Newer Queuing Technologies 932Low Latency Queuing 932Class-Based Weighted Fair Queuing 933Committed Access Rate 933

Compression 934TCP Header Compression 935Payload Compression 936Link Compression 936Compression Considerations 937Viewing Compression Information 937


Chapter 31 Network Address Translation and Port Address Translation 941

Understanding Network Address Translation (NAT) 943NAT Terminology 943How NAT Works 944Advantages of NAT 945Disadvantages of NAT 946NAT Traffic Types 946

Performing NAT Operations 947Translating Inside Local Addresses 948Overloading Inside Global Addresses 949

4421.book Page xxii Tuesday, February 15, 2005 5:33 PM


Contents xxiii

Using TCP Load Distribution 950Overlapping Networks 951

Configuring NAT 952Configuring Static NAT 953Configuring Dynamic NAT, Inside Global

Address Overloading, and TCP Load Distribution 954Configuring NAT to Perform Overlapping

Address Translation 956Verifying NAT Configuration 957Troubleshooting NAT 958Clearing NAT Translation Entries 959

Using Port Address Translation (PAT) 960Disadvantages of PAT 960Configuring PAT 961Monitoring PAT 963


Chapter 32 Centralized Security in Remote Access Networks 967

Security Terminology 968Cisco Access Control Solutions 969

CiscoSecure 970Authentication, Authorization, and Accounting 970

How AAA Works 971Router Access Modes 972

Character-Mode Connections 972Packet-Mode Connections 973

AAA Configuration 974Authentication Configuration 975Authorization Configuration 977Accounting Configuration 980

Virtual Profiles 982Summary 983Exam Essentials 983

Part IV Cisco Internetwork Troubleshooting (CIT) 985

Chapter 33 Troubleshooting Methodology 987

The Complexity of Internetworks 988Cisco Troubleshooting Model 990

Step 1: Gather Symptoms 992Step 2: Isolate the Problem 994Step 3: Correct the Problem 995Document the Changes 998

4421.book Page xxiii Tuesday, February 15, 2005 5:33 PM


xxiv Contents

Troubleshooting by Layer 998Bottom-Up Troubleshooting Approach 998Top-Down Troubleshooting Approach 999Divide-and-Conquer Troubleshooting Approach 999


Chapter 34 Network Documentation 1001

The Network Baseline 1002Network Configuration Table 1003

Router Network Configuration Table 1005Switch Network Configuration Table 1009

Network Topology Diagrams 1015Components of a Network Topology Diagram 1015Creating a Network Topology Diagram 1017


Chapter 35 End-System Documentation and Troubleshooting 1023

End-System Network Configuration Table 1024Creating an End-System Network Configuration Table 1025

End-System Network Topology Diagram 1032Creating an End-System Network Topology Diagram 1034

Troubleshooting End-System Problems 1035End-System Troubleshooting Commands 1036


Chapter 36 Protocol Attributes 1053

The OSI Reference Model 1054Global Protocol Classifications 1057

Connection-Oriented Protocols 1057Connectionless Protocols 1061

Layer 2: Data Link Layer Protocols and Applications 1062Ethernet/IEEE 802.3 1063Point-to-Point Protocol (PPP) 1065Synchronous Data Link Control (SDLC) 1065Frame Relay 1068Integrated Services Digital Network (ISDN) 1069

Layers 3 and 4: IP Routed Protocols 1070Internet Protocol (IP) 1071Internet Control Message Protocol (ICMP) 1076Transmission Control Protocol (TCP) 1077User Datagram Protocol (UDP) 1078

4421.book Page xxiv Tuesday, February 15, 2005 5:33 PM


Contents xxv


Chapter 37 Cisco Diagnostic Commands and TCP/IP Troubleshooting 1081

Troubleshooting Commands 1082show Commands 1082debug Commands 1105logging Commands 1112Executing a Router Core Dump 1114ping Commands 1116traceroute Command 1120

LAN Connectivity Problems 1124Obtaining an IP Address 1124ARP 1127Sample TCP Connection 1128

IP Access Lists 1129Standard Access Lists 1130Extended Access Lists 1132Named Access Lists 1133


Chapter 38 TCP/IP Routing Protocol Troubleshooting 1137

Default Gateways 1138Static and Dynamic Routing 1141Troubleshooting RIP 1142

RIP-1 and RIP-2 1143show Commands 1143debug Commands 1143Typical RIP Problems 1144

Troubleshooting IGRP 1144IGRP Features and Operation 1144show Commands 1145debug Commands 1145Typical IGRP Problems 1146

Troubleshooting EIGRP 1146Neighbor Formation 1147show Commands 1151debug Commands 1151Typical EIGRP Problems 1152

Troubleshooting OSPF 1153Neighbor and Adjacency Formation 1154OSPF Area Types 1155

4421.book Page xxv Tuesday, February 15, 2005 5:33 PM


xxvi Contents

show Commands 1157debug Commands 1158Typical OSPF Problems 1160

Troubleshooting BGP 1161Neighbor Relationship 1161eBGP versus iBGP 1161show Commands 1162debug Commands 1162Typical BGP Problems 1164

Redistribution of Routing Protocols 1165Dealing with Routing Metrics 1165Distribute Lists 1168Route Maps 1169

TCP/IP Symptoms and Problems: Summary Sheet 1172TCP/IP Problems and Action Plans: Summary Sheet 1173Summary 1174Exam Essentials 1175

Chapter 39 Troubleshooting Serial Line and Frame Relay Connectivity 1177

Troubleshooting Serial Lines 1178HDLC Encapsulation 1179show interface serial Command 1180show controllers Command 1184show buffers Command 1186debug serial interface Command 1187CSU/DSU Loopback Tests 1189Serial Line Summary 1190

Troubleshooting Frame Relay 1193Frame Relay show Commands 1194Frame Relay debug Commands 1198Frame Relay Summary 1200


Chapter 40 Troubleshooting ISDN 1203

ISDN Fundamentals 1204Common ISDN Problems 1205

Misconfigured Routers 1205Physical Layer Connections 1210

Misconfigured Phone Switches 1213Troubleshooting Layer 2 1213Troubleshooting Layer 3 1216Switch Types 1217

4421.book Page xxvi Tuesday, February 15, 2005 5:33 PM


Contents xxvii

ISDN Troubleshooting Commands 1218ping 1219clear interface bri n 1219show interface bri n 1220show interface bri n 1 2 1221show controller bri 1221show isdn status 1222show dialer 1223show ppp multilink 1224

Debugging ISDN 1224debug bri 1225debug isdn q921 1226debug dialer 1227debug isdn q931 1228debug ppp negotiation 1229debug ppp packet 1232


Chapter 41 Troubleshooting Switched Ethernet 1235

Switches, Bridges, and Hubs 1236Catalyst Troubleshooting Tools 1238

Catalyst Command-Line Interfaces 1238Hybrid Mode Catalyst CLI 1238RMON 1261Indicator Lights 1262

Controlling Recurring Paths with Spanning Tree 1262Troubleshooting Spanning Tree Problems 1263

Virtual LANs 1265Inter-Switch Link (ISL) 1265802.1Q Trunking 1268VLAN Trunking Protocol (VTP) 1268

Cabling Issues 1269Cable Problems 1269Crossover Cables 1271

Troubleshooting Switched Connections 1272The Switched Port Analyzer 1272The Multilayer Switch Feature Card and Catalyst Routing 1273VLANs across Routers and Switches 1275VLAN Design Issues and Troubleshooting 1277

Hybrid/Native Command Conversion 1279Summary 1280Exam Essentials 1281

4421.book Page xxvii Tuesday, February 15, 2005 5:33 PM


xxviii Contents

Chapter 42 Applying Cisco’s Diagnostic Tools 1283

Identifying and Resolving Generic Router Problems 1284Scenario #1 1284Scenario #2 1296Scenario #3 1307

Troubleshooting Ethernet Problems 1312Scenario #1 1313Scenario #2 1317

Opening a Case with the Technical Assistance Center 1324Summary 1324Exam Essentials 1325

Index 1327

4421.book Page xxviii Tuesday, February 15, 2005 5:33 PM


Introduction

This book is intended to help you continue on your exciting new path toward obtaining your CCNP certification. Before reading this book, it is important to have at least read the

CCNA: Cisco Certi-fied Network Associate Study Guide

,

5th Edition

(Sybex, 2005). You can take the CCNP tests in any order, but you should have passed the CCNA exam before pursuing your CCNP. Many ques-tions in the Building Cisco Remote Access Networks (BCRAN) exam are built on the CCNA mate-rial. However, we have done everything possible to make sure that you can pass the BCRAN exam by reading this book and practicing with Cisco routers.

Cisco Systems’ Place in Networking

Cisco Systems has become an unrivaled worldwide leader in networking for the Internet. Its net-working solutions can easily connect users who work from diverse devices on disparate networks. Cisco products make it simple for people to access and transfer information without regard to dif-ferences in time, place, or platform.

Cisco Systems’ big picture is that it provides end-to-end networking solutions that customers can use to build an efficient, unified information infrastructure of their own or to connect to someone else’s. This is an important piece in the Internet/networking-industry puzzle because a common architecture that delivers consistent network services to all users is now a functional imperative. Because Cisco Systems offers such a broad range of networking and Internet ser-vices and capabilities, users needing regular access to their local network or the Internet can do so unhindered, making Cisco’s wares indispensable.

Cisco answers this need with a wide range of hardware products that form information net-works using the Cisco Internetwork Operating System (IOS) software. This software provides network services, paving the way for networked technical support and professional services to maintain and optimize all network operations.

Along with the Cisco IOS, one of the services Cisco created to help support the vast amount of hardware it has engineered is the Cisco Certified Internetworking Expert (CCIE) program, which was designed specifically to equip people to effectively manage the vast quantity of installed Cisco networks. The business plan is simple: If you want to sell more Cisco equipment and have more Cisco networks installed, ensure that the networks you installed run properly.

However, having a fabulous product line isn’t all it takes to guarantee the huge success that Cisco enjoys—lots of companies with great products are now defunct. If you have complicated products designed to solve complicated problems, you need knowledgeable people who are fully capable of installing, managing, and troubleshooting them. That part isn’t easy, so Cisco began the CCIE pro-gram to equip people to support these complicated networks. This program, known colloquially as the Doctorate of Networking, has also been very successful, primarily due to its extreme difficulty. Cisco continuously monitors the program, changing it as it sees fit, to make sure that it remains per-tinent and accurately reflects the demands of today’s internetworking business environments.

Building on the highly successful CCIE program, Cisco Career Certifications permit you to become certified at various levels of technical proficiency, spanning the disciplines of network design and support. So, whether you’re beginning a career, changing careers, securing your present position, or seeking to refine and promote your position, this is the book for you!

4421.book Page xxix Tuesday, February 15, 2005 5:33 PM


ccnp® complete study guide - download.e-bookshelf.de · ccnp complete study guide reflects our...

Documents