II ICND2  581 Chapter

Contents 

xvii

VLAN Trunking Protocol (VTP) 

593

VTP Modes of Operation 

594

VTP Pruning 

596

Configuring VTP 

597

Troubleshooting VTP 

598

Spanning Tree Protocol (STP) 

602

Spanning-Tree Terms 

603

Spanning-Tree Operations 

607

Types of Spanning-tree Protocols 

610

Common Spanning Tree 

610

Per-VLAN Spanning Tree+ 

611

Modifying and Verifying the Bridge ID 

618

Spanning-Tree Failure Consequences 

623

PortFast and BPDU Guard 

625

BPDU Guard 

627

EtherChannel 629

Configuring and Verifying Port Channels 

630

Summary 634

Exam Essentials 

635

Written Lab 15 

635

Hands-on Labs 

636

Hands-on Lab 15.1: Verifying STP and Finding  

Your Root Bridge 

637

Hands-on Lab 15.2: Configuring and Verifying  

Your Root Bridge 

638

Hands-on Lab 15.3: Configuring PortFast and BPDU  

Guard 640

Hands-on Lab 15.4: Configuring and Verifying  

EtherChannel 641

Review Questions 

643

Chapter

 

16 

Network Device Management and Security 

649

Mitigating Threats at the Access Layer 

650

External Authentication Options 

653

RADIUS 653

TACACS+ 654

SNMP 655

Management Information Base (MIB) 

656

Configuring SNMP 

657

Client Redundancy Issues 

659

Introducing First Hop Redundancy Protocols (FHRPs) 

661

Hot Standby Router Protocol (HSRP) 

662

Virtual MAC Address 

664

xviii

 

Contents

HSRP Timers 

665

Group Roles 

667

Configuring and Verifying HSRP 

669

Summary 675

Exam Essentials 

675

Written Lab 16 

676

Review Questions 

677

Chapter

 

17 

Enhanced IGRP 

681

EIGRP Features and Operations 

682

Neighbor Discovery 

683

Reliable Transport Protocol (RTP) 

688

Diffusing Update Algorithm (DUAL) 

689

Route Discovery and Maintenance 

689

Configuring EIGRP 

690

VLSM Support and Summarization 

693

Controlling EIGRP Traffic 

696

Split Horizon 

707

Verifying and Troubleshooting EIGRP 

709

Troubleshooting Example with EIGRP 

715

Simple Troubleshooting EIGRP for the CCNA 

725

EIGRPv6 727

Summary 732

Exam Essentials 

733

Written Lab 17 

733

Hands-on Labs 

734

Hands-on Lab 17.1: Configuring and Verifying EIGRP 

734

Hands-on Lab 17.2: Configuring and Verifying EIGRPv6  735

Review Questions 

737

Chapter

 

18 

Open Shortest Path First (OSPF) 

745

Open Shortest Path First (OSPF) Basics 

746

OSPF Terminology 

749

OSPF Operation 

751

Configuring OSPF 

753

Enabling OSPF 

753

Configuring OSPF Areas 

754

Configuring Our Network with OSPF 

757

OSPF and Loopback Interfaces 

762

Configuring Loopback Interfaces 

763

Verifying OSPF Configuration 

765

The show ip ospf Command 

766

The show ip ospf database Command 

767

The show ip ospf interface Command 

768

Contents 

xix

The show ip ospf neighbor Command 

769

The show ip protocols Command 

770

Summary 771

Exam Essentials 

771

Written Lab 18 

772

Hands-on Labs 

772

Hands-on Lab 18.1: Enabling the OSPF Process 

773

Hands-on Lab 18.2: Configuring OSPF Interfaces 

774

Hands-on Lab 18.3: Verifying OSPF Operation 

775

Review Questions 

776

Chapter

 

19 

Multi-Area OSPF 

783

OSPF Scalability 

784

Categories of Multi-area Components 

786

Adjacency Requirements 

786

OSPF Router Roles 

787

Link-State Advertisements 

788

OSPF Hello Protocol 

790

Neighbor States 

791

Basic Multi-area Configuration 

793

Verifying and Troubleshooting Multi-area OSPF Networks 

796

The show ip ospf Command 

797

The show ip ospf interface Command 

798

The show ip protocols Command 

801

The show ip route Command 

801

The show ip ospf database Command 

802

Troubleshooting OSPF Scenario 

804

Simple Troubleshooting OSPF for the CCNA 

812

OSPFv3 814

Verifying OSPFv3 

816

Summary 819

Exam Essentials 

819

Written Lab 19 

820

Hands-on Labs 

820

Hands-on Lab 19.1: Configuring and Verifying OSPF  

Multi-Area 821

Hands-on Lab 19.2: Configuring and Verifying OSPFv3 

824

Review Questions 

826

Chapter

 

20 

Troubleshooting IP, IPv6, and VLANs 

831

Troubleshooting IP Network Connectivity 

832

Using IP SLA for Troubleshooting 

843

Using SPAN for Troubleshooting 

845

Configuring and Verifying Extended Access Lists 

847

xx

 

Contents

Troubleshooting IPv6 Network Connectivity 

850

ICMPv6 850

Troubleshooting IPv6 Extended Access Lists 

858

Troubleshooting VLAN Connectivity 

862

VLAN Troubleshooting 

862

Trunk Troubleshooting 

867

Summary 874

Exam Essentials 

875

Written Lab 20 

875

Review Questions 

877

Chapter

 

21 

Wide Area Networks 

881

Introduction to Wide Area Networks 

882

WAN Topology Options 

883

Defining WAN Terms 

885

WAN Connection Bandwidth 

886

WAN Connection Types 

887

WAN Support 

888

Cisco Intelligent WAN (IWAN) 

891

Cabling the Serial Wide Area Network 

894

Serial Transmission 

894

Data Terminal Equipment and Data Communication  

Equipment 895

High-Level Data-Link Control (HDLC) Protocol 

896

Point-to-Point Protocol (PPP) 

898

Link Control Protocol (LCP) Configuration Options 

899

PPP Session Establishment 

900

PPP Authentication Methods 

901

Configuring PPP on Cisco Routers 

901

Configuring PPP Authentication 

901

Verifying and Troubleshooting Serial Links 

902

Multilink PPP (MLP) 

907

PPP Client (PPPoE) 

911

Configuring a PPPoE Client 

912

Virtual Private Networks 

913

Benefits of VPNs 

914

Enterprise- and Provider-Managed VPNs 

915

Introduction to Cisco IOS IPsec 

917

IPsec Transforms 

918

GRE Tunnels 

919

GRE over IPsec 

920

Configuring GRE Tunnels 

921

Verifying GRP Tunnels 

923

Contents 

xxi

Single-Homed EBGP 

925

Protocol Comparison and Overview 

926

Configuring and Verifying EBGP 

929

Verifying EBGP 

931

Summary 934

Exam Essentials 

934

Written Lab 21 

935

Hands-on Labs 

935

Hands-on Lab 21.1: Configuring PPP Encapsulation  

and Authentication 

936

Hands-on Lab 21.2: Configuring and Monitoring HDLC 

937

Hands-on Lab 21.3: Configuring a GRE Tunnel 

938

Review Questions  

941

Chapter

 

22 

Evolution of Intelligent Networks 

947

Switch Stacking 

948

Cloud Computing and Its Effect on the Enterprise Network 

950

Service Models 

952

Overview of Network Programmability in Enterprise  

Network 953

Application Programming Interfaces (APIs) 

954

Southbound APIs 

955

Northbound APIs 

956

Cisco APIC-EM 

957

Using APIC-EM for Path Tracing 

959

Cisco Intelligent WAN 

960

Quality of Service 

962

Traffic Characteristics 

962

Trust Boundary 

964

QoS Mechanisms 

965

Classification and Marking 

965

Policing, Shaping, and Re-Marking 

966

Tools for Managing Congestion 

967

Tools for Congestion Avoidance 

970

Summary 971

Exam Essentials 

971

Written Lab 22 

971

Review Questions 

973

Appendix

 

A 

Answers to Written Labs 

977

Chapter 1: Internetworking 

978

Written Lab 1.1: OSI Questions 

978

Written Lab 1.2: Defining the OSI Layers and Devices 

979

xxii

 

Contents

Written Lab 1.3: Identifying Collision and Broadcast  

Domains 979

Chapter 2: Ethernet Networking and Data Encapsulation 

980

Written Lab 2.1: Binary/Decimal/Hexadecimal Conversion  980

Written Lab 2.2: CSMA/CD Operations 

982

Written Lab 2.3: Cabling 

982

Written Lab 2.4: Encapsulation 

982

Chapter 3: Introduction to TCP/IP 

983

Written Lab 3.1: TCP/IP 

983

Written Lab 3.2: Mapping Applications to the DoD Model  983

Chapter 4: Easy Subnetting 

984

Written Lab 4.1: Written Subnet Practice #1 

984

Written Lab 4.2: Written Subnet Practice #2 

985

Written Lab 4.3: Written Subnet Practice #3 

985

Chapter 5: VLSMs, Summarization and Troubleshooting  

TCP/IP 986

Chapter 6: Cisco’s Internetworking Operating System (IOS) 

986

Written Lab 6: Cisco IOS 

986

Chapter 7: Managing a Cisco Internetwork 

987

Written Lab 7.1: IOS Management 

987

Written Lab 7.2: Router Memory 

987

Chapter 8: Managing Cisco Devices 

988

Written Lab 8.1: IOS Management 

988

Chapter 9: IP Routing 

988

Chapter 10: Layer 2 Switching 

989

Chapter 11: VLANs and InterVLAN Routing 

989

Chapter 12: Security 

990

Chapter 13: Network Address Translation (NAT) 

991

Chapter 14: Internet Protocol Version 6 (IPv6) 

991

Written Lab 14.1: IPv6 Foundation 

991

Written Lab 14.2: EUI-64 Format 

992

Chapter 15: Enhanced Switched Technologies 

992

Written Lab 15 

992

Chapter 16: Network Device Management and Security 

993

Written Lab 16 

993

Chapter 17: Enhanced IGRP 

993

Written Lab 17 

993

Chapter 18: Open Shortest Path First (OSPF) 

994

Written Lab 18 

994

Chapter 19: Multi-Area OSPF 

994

Written Lab 19 

994

Chapter 20: Troubleshooting IP, IPv6, and VLANs 

995

Written Lab 20 

995

Contents 

xxiii

Chapter 21: Wide Area Networks 

995

Written Lab 21 

995

Chapter 22: Evolution of Intelligent Networks 

996

Written Lab 22 

996

Appendix

 

B 

Answers to Review Questions 

997

Chapter 1: Internetworking  

998

Chapter 2: Ethernet Networking and Data Encapsulation  

1000

Chapter 3: Introduction to TCP/IP  

1002

Chapter 4: Easy Subnetting  

1003

Chapter 5: VLSMs, Summarization, and Troubleshooting  

TCP/IP  1005

Chapter 6: Cisco’s Internetworking Operating System (IOS)  

1007

Chapter 7: Managing a Cisco Internetwork  

1009

Chapter 8: Managing Cisco Devices  

1010

Chapter 9: IP Routing 

1012

Chapter 10: Layer 2 Switching  

1013

Chapter 11: VLANs and InterVLAN Routing  

1015

Chapter 12: Security  

1017

Chapter 13: Network Address Translation (NAT) 

1019

Chapter 14: Internet Protocol Version 6 (IPv6)  

1020

Chapter 15: Enhanced Switched Technologies 

1022

Chapter 16: Network Device Management and Security 

1024

Chapter 17: Enhanced IGRP 

1025

Chapter 18: Open Shortest Path First (OSPF) 

1027

Chapter 19: Multi-Area OSPF 

1029

Chapter 20: Troubleshooting IP, IPv6, and VLANs 

1031

Chapter 21: Wide Area Networks 

1032

Chapter 22: Evolution of Intelligent Networks 

1033

Appendix

 

C 

Disabling and Configuring Network Services 

1037

Blocking SNMP Packets 

1038

Disabling Echo 

1038

Turning off BootP and Auto-Config 

1039

Disabling the HTTP Interface 

1040

Disabling IP Source Routing 

1040

Disabling Proxy ARP 

1040

Disabling Redirect Messages 

1040

Disabling the Generation of ICMP Unreachable Messages 

1041

Disabling Multicast Route Caching 

1041

Disabling the Maintenance Operation Protocol (MOP) 

1041

Turning Off the X.25 PAD Service 

1042

xxiv

 

Contents

Enabling the Nagle TCP Congestion Algorithm 

1042

Logging Every Event 

1042

Disabling Cisco Discovery Protocol 

1043

Disabling the Default Forwarded UDP Protocols 

1043

Cisco’s auto secure 1044

Download 28,65 Mb.

Do'stlaringiz bilan baham: