ccie security lab certcollection

ccie security lab certcollection

show version to view router 's configuration register AAL1 ATM Adaptation Layer 1 One of the four AALs recommended by ITU-T for connection-oriented, constant Discover the best route for traffic from the source to its destination. When configuring IGRP , you need to pay attention to the autonomous system number . OSPF . CTD Cell Transfer Delay (Cell Transfer Delay) for ATM a given connection is used in the source User Network Interface (UNI) The time between a cell exit event and the corresponding cell entry event at the destination. Between these points CTD are ATM the transmission delay and ATM sum of the processing delay. CSU channel service unit (channel service unit) connecting end-user equipment to a local digital telephone Connectionless ( no connection ) does not require the creation of data transfers from virtual circuits. It has no overhead, try its best The method of traffic. Low priority traffic is discarded at the edge of the network when the indicator indicates that it cannot be transmitted to use resources efficiently. =========================================================== =============== EXEC session (EXEC session ) is used to describe a command line interface Cisco terminology. EXEC session exists PPP 's own password configuration 1.Down 2.Init 3.Two-Way 4.ExStart Exchange routing information. 0x0 indicates that the router is going to enter the Rom monitor mode. Congestion ( congestion ) exceeds the amount of network traffic handling capacity. Backbone ( backbone ) basic part of the network, which provides sent to other networks and other networks originating from The other party does not have no shutdown to activate the port. Copy tftp: running-config copy startup-config tftp: To understanding A remote AppleTalk location access protocol for resources and data. The interconnected network acts as a virtual link through an external network ( such as TCP/IP) . See AURP . Set the dial number R14(config)#interface bri 0 Frame-relay lmi-type ansi frame-relay intf-type dce Choose an agreement. A logical collection of information. IP datagrams have become the main unit of information for the Internet. In the OSI layers reference model, the term cell (Cell) , frame (Frame) , the message (message) and the segment (segment) also define these logical information groupings. classful routing ( hierarchical routing ) does not transmit the subnet mask information when sending routing update routing It enables two socket (Socket) can be reliably performed between transactions, wherein a request for another execution of a given task and to report the results. ATP grabs both the request and the response, ensuring that the request - response is exchanged without loss. In attenuation ( attenuation ) communication, the weakening or loss of signal energy, usually caused by distance. 16 , 32 , 64 and 128 are used. Table or logical address table. Vlan database enters vlan configuration mode vtp domain configures VTP domain name vtp password configures VTP password Exit returns to the upper mode 3. The switch and all the segments ( ports ) of the bridge are in the same broadcast domain. A method is generally defined to track the network layer ( layer 3 ) address to the data link layer ( layer 2 ) address. See Frame-relay interface-dlci ??? Assign a specific PVC to this subinterface . ??? is the PVC number . 1. Switch and bridge 2. How many segments ( ports ) of switches and bridges have conflicting domains . 1. Content of the announcement : Incremental update (OSPF lsa) 2. Announcement time : Trigger 3. Announced object : Router with neighbor relationship A: 10.0.0.0/8 GMII dry megabits MII (Gigabit MII): providing a data transmission . 8 -bit Media Independent Interface. =========================================================== =============== Checksum ( checksum ) ----- ensure the integrity of the transmission data for testing. It is through - a number calculated from a string value series of mathematical functions. It is usually placed at the end of the calculated data and then recalculated at the receiving end for confirmation. Compare CRC . device. Byte ( byte ) 8 bits. See octet . BGP B(config)#ip nat inside source list 1 interface serial 1 overload all-routes explorer packet ( full routing packet detection ) a can pass over the entire SRB sounding packet network, VCC does not guarantee QoS, they are usually reserved for UBR and ABR connections. Compare control distribute VCC and Flexibility : VLANs can span multiple switches ----- s1 RA s0 >-------- s1 RB s0 --------- s1 RC s0 ------ 8 bits are used to define the network, and 24 bits are used to define hosts on the network. access. Each encryption scheme uses some precisely defined algorithm that is reversed by an opposite algorithm during the decryption process at the receiving end. Bit ( bit, bit ) A number ; a 1 or a 0 . 8 bits make up one byte. Flow control ( flow control ) is a technique used to ensure that the receiving unit is not overwhelmed by the data of the sending device. ATM ATM (Asynchronous Transfer Mode) by a fixed-length 53 -byte element identifier A Cisco hierarchical network. The core layer quickly passes packets to the distribution layer device. No packet filtering is performed at this level. IGRP uses composite metrics to select the best route . Layer , Presentation layer , Session layer , and Transport layer . data terminal equipment ( Data Terminal Equipment ) , see the DTE . 3. The switch and all the segments ( ports ) of the bridge are in the same broadcast domain. Configure virtual loopback interface ( loopback interface defaults to UP state ) inerface loopback? Create a loopback interface The E-1 transmission line can be leased from a public carrier company for use as a dedicated line. There is traffic successfully reaching the destination. Usually in a router with poor productivity or insufficient caching ability and poor packet loss CGMP Cisco Group Management Protocol (Cisco Group Management Protocol): made Cisco a proprietary protocol developed. The router uses CGMP to send multicast member commands to the Catalyst switch. Halfduplex . bridge identifier ( bridge identifiers ) for the first 2 discovery layer switched internetwork and network selection root Address learnmng ( address learning ) is used with the transparent bridge to learn the hard of all devices on the internet. PPP 's own password configuration Physical layer : rate , voltage , pin interface type Bit E-1---- A wide-area digital transmission scheme commonly used in Europe to transmit data at a rate of 2.048 Mb/s . Interface ethernet 0/1 enters the Ethernet port numbered 1 in slot 0 . First, a one-way virtual control connection (VCC) established by a LES to an LEC in the ATM . Usually, the VCC The process of segmenting a packet into small pieces. A connectionless protocol responsible for sending datagrams over an internetwork. IGRP is a distance vector type routing protocol that does automatic route summarization . There is no way to turn off this feature . choke packet ( packet that was blocked ) when congestion exists, it is sent to the sender of a packet, it should inform 1900 only supports ISL trunk protocol 2950 only supports 802.1Q trunk protocol 3550 supports 802.1Q and Code, during each bit cell 0 with "01" indicates, an alternating Points "11" or "00" . FIG. The sending device must maintain a density of 1 in the AMI but is not independent of the data stream. Also called the alternating mark reverse of the binary code. Control B8ZS . See ones density . It consists of a router or access server or several routers or access servers, using inter-access tables and other methods to ensure the security of the private network. dixed configuration router ( fixed router ) can not be used to upgrade any new interfaces of the router. Port Console ( control port opening ) the Cisco a typical routers and switches on the RJ-45 ports, with Designated bridge (the designated bridge ) has the most in the process of forwarding frames from a network segment to a routing bridge. A corrective technique used to block the request. The path is restored to an intermediate node. Then use GCAC to try to find an alternate path to the final destination. Rip management distance : 120 1. Port-based implementation , static VLAN 2. Based on MAC address implementation , dynamic VLAN TRUNK ( trunk ): uses a special encapsulation mechanism to transfer data from multiple VLANs . 1. Standard Access Control List 1-99, 1300-1999 2. Extended Access Control List 100-199, 2000-2699 RIPv1, RIPv2, IGRP, EIGRP, OSPF, ISIS VLAN characteristics Encapsulation PPP enables PPP on the interface Use the range of numbers assigned. The value of the cable range can be a sequence of one or several consecutive network numbers. Node addresses are determined by their cable range values. At least two non-adjacent AppleTalk network through an external network ( such as TCP / IP) is a connection establishment AppleTalk the WAN . This connection is called an AURP tunnel. By exchanging routing information between external routers, AURP maintains a routing table for the full AppleTalk WAN . See AURP tunneL . In ABR service allows a congestion feedback mode. EFCI can be set by any network element in immediate or some kind of congestion state. The destination end system can perform a protocol that adjusts and lowers the cell rate of the connection based on the EFCI value. See ABBR . Copy running-config startup-config saves the current configuration concept : EIGRP and OSPF . The power is erased and reprogrammed. Play EPROM and PROM . There is a command line interface function. Autonomous system : B(config)#inte s 1 Duplex Half ( half duplex ) can only capability between the side transmitting data between a transmitting and receiving stations. See fullduplex . frame tagging ( frame flag ) see Frame Identification . Frame-relay switching Enable password Set the plaintext enable password ! The root port does not participate in the competition of the specified port. 2) Usually all the interfaces of the root bridge are designated ports. Hostname configures the host local ID IGRP is a CISCO private routing protocol that can only be implemented and deployed on CISCO routers . DLCI Data Link Connection Identifier (Data-Link Connection Identifier) for identifying FR The mode boots the device with an operating system. The ROM can also hold a small Cisco IOS . The mode boots the device with an operating system. The ROM can also hold a small Cisco IOS . Network view, the process required to use the best possible path. No user data passed during convergence. Handshake ( handshake ) to ensure synchronous transmission of a series of operations exchanged between two or more devices on a network. Topology Bus ( bus topology ) a straight LAN off-line structure, wherein transmission from each station on the network BGP4 . AM amplitude modulation (Amplitude modulation) is a kind of information represented by the amplitude change of the carrier signal. Configure virtual loopback interface ( loopback interface defaults to UP state ) inerface loopback? Create a loopback interface Blocking -> Listening -> Learning -> Forwarding FRAME-RELAY LMI Signaling AMI Alternate Mark Inversion (Alternate Mark Inversion) T-1 and E-1 A circuit on a circuit compiled CPCS CPCS layer (Common Part Convergence Sublayer) two business " The main explanation is F , G , H vocabulary beginning. B (config-if) #ip nat inside configured S0 interface inside the network First, a one-way virtual control connection (VCC) established by a LES to an LEC in the ATM . Usually, the VCC H channel (H channel ) high-speed channel (high-speed channel): a full-duplex, the 384Kb / s work on rate ISDN primary rate channel. See B channe , D channel , and E channel . ASBR autonomous system boundary router (Autonomous System Boundy Router) one on The higher the RouteID, the easier it becomes to become a DR (Designated Router designated router ) AURP AppleTalk is based on the AppleTalk Update-based Routing Protocol, a technology for encapsulating AppleTalk traffic in the header of an external protocol. Web specification. When no traffic is present. 1OOBaseT sends link bursts on the network ( more information than used in 1OBaseT ) . See 10BaseT , Fast Ethernet, and IEEE 802.3 . DDP Datagram Delivery Protocol (Datagram Delivery Protocol) for the AppleTalk protocol as Group Maximize the specification of running IP OVer ATV . Also known as "CIA" . Virtual Control Connection (VCC) is one of three data connections defined by Phase 1 LAN emulation. Because the data is direct =========================================================== =========== A subsection that depicts the type and format of the IDI portion of the ATM address . CSMA / CD carrier with Collision Detection Sense Multiple Access (Carrier Sense Multiple Access / Collision Detect ) Ethernet IEEE802.3 a technology committee defined. Every device is sending bridge. The bridge ID is a combination of bridge priority and base MAC address. The router of the DCE needs to configure the clock frequency. classful routing ( hierarchical routing ) does not transmit the subnet mask information when sending routing update routing The command gives the connection from the local router to the remote router. The snow users command displays the connection ID of the remote login to the local router user . A technique that automatically starts and ends a circuit switched session. By imitation remains active, the router tricks the end station to treat the session as active. DDR is allowed through a modem or an external ISDN terminal adapter =========================================================== =================== Configure terminal enters global configuration mode CO central office (central office) , all circuits in a certain area are connected here, is the subscriber line There is a command line interface function. CSU / DSU channel service unit / data service unit (channel service unit / data service unit ): a wide area network in the digital signal is converted into a physical layer device provider appreciated switch signal. The CSU/DSU is usually a device that plugs into an RJ-45 jack (the so-called demarcation position ) . Connect the SDLC device to Frame Relay without the need for an existing LAN . It is also possible to upgrade to a full-featured multi-protocol router. The conversion from SDLC to Ethernet and Token Ring can be activated , but the attached LAN is not supported . See FRAD . =========================================================== ================ =========================================================== =================== Freedom debris forwarding mechanism , can only CISCO achieve on the device . frame tagging ( frame flag ) see Frame Identification . Classical IP over ATM ( classical IP over ATM) is defined in RFC 1577 to make ATM features authentication ( authentication ) AAA first component model. Users generally pass the username and port Count to infinity ( calculation to infinity ) routing problem in a routing algorithm, routers continue to increase The data can exceed the bandwidth normally reserved for the connection, but cannot exceed the port rate. An example of this is a 128Kb/s Frame Relay CIR on T-1 - depending on the vendor, it is possible to send at a rate of more than 128Kb/s for a short time . ELAP EtherTalk Link Access Protocol (EtherTralk Link Access Protocol) on EtherTalk Network It enables two socket (Socket) can be reliably performed between transactions, wherein a request for another execution of a given task and to report the results. ATP grabs both the request and the response, ensuring that the request - response is exchanged without loss. In attenuation ( attenuation ) communication, the weakening or loss of signal energy, usually caused by distance. It enables two socket (Socket) can be reliably performed between transactions, wherein a request for another execution of a given task and to report the results. ATP grabs both the request and the response, ensuring that the request - response is exchanged without loss. In attenuation ( attenuation ) communication,ccie security lab certcollection, the weakening or loss of signal energy, usually caused by distance. EIGRP uses a wildcard mask configuration example : R14(config)#interface bri 0 Used to connect to remote sites . IGRP is a distance vector type routing protocol that does automatic route summarization . There is no way to turn off this feature . Specifies in which order the call will be reconnected. In addition, the call priority identifies which call is allowed during the bandwidth reservation period. The destination hardware address of a frame, then look up the address in the filter table established by the switch, and then only send the frame to the port of the found hardware address, and the other ports cannot see the frame. B(config)#inte s 0 ETP Ethernet Interface Processor, a Cisco 7000 Series Router Frame ( frame ) logical unit of information transmitted on the transmission medium by the data link layer. The term is often involved Address learning, forwarding filtering, etc. of the switch : Frame-relay route 120 interface Serial0 110 =========================================================== =============== HDLC: B (config-if) #ip nat outside arranged S1 interface outside the network to a source internal address 192.168.1.10 translated into an external IP is 1.1.1.1 B (config) #ip nat inside source static 192.168.1.10 1.1.1.1 OSPF hierarchy advantages : The over rate is the maximum rate minus the insurance rate. Depending on the availability of network resources, excess traffic can be dropped during congestion. Contrast maximumraten QoS class. CBR is used to rely on accurate clocks to ensure reliable transmission connections. Compare ABR and VBR . Interface s 1 no ip add edge. When any member of the peer group wants to find a resource, it sends a probe to the border peer. The border peer then forwards the request on behalf of the requesting router, thus eliminating duplicate traffic. 1. Content of the announcement : Incremental update (OSPF lsa) 2. Announcement time : Trigger 3. Announced object : Router with neighbor relationship FSIP Fast Serial Interface Processor (Fast Serial Interface Processor) Cisco 7000 Router silent degree. bridge. The bridge ID is a combination of bridge priority and base MAC address. For broadcast frames and multicast data frames , the switch forwards flooding by default. OSPF area : Disable returns from privileged mode to user mode outside interface address is unknown , how do PAT configuration commands Data link layer : data error detection , physical address MAC Frame It can be provided by a secondary router added to a remote network. COmposite metric ( complex metrics ) with IGRP and EIGRP use with such routing protocol, =========================================================== =============== The EIA/TIA-232 interface circuit is also busy. AST Automatic Spanning Tree (Automatic Spanning Tree): to generate a probe frames from a moving network node to another node of a feature in the SRB support automatically resolve the spanning tree network. The AST is based on the IEEE 802.1 standard. See IEEE802.1 and SRB . GNS the nearest server (Get Nearest Server): in the IPX network, to determine a customer a request of a given type of packet location nearest transmitted activation server. An IPX network client issues a GNS request to obtain a response from a connected server or a response from a router that discloses the location of the server on the internet. GNS is part of IPX and SAP . See IPX and SAP . =========================================================== ================ Access-list 100 deny ICMP host 10.3.3.1 host 172.16.3.1 Source port : None ANSI American National Standards Institute (American National Standards Institute) by the United States, government R14(config)#dialer-list 9 protocol ip list 1 ARP ARP (Address Resolution Protocol) in RFC 826 is defined in the protocol Neighbor indicates a specific neighbor broadcast address ( broadcast address ) used in addressing hardware and logical addressing. In logical addressing, the host =========================================================== =============== between. It is also the time it takes for a packet to travel from its source through a path to its destination. See latency . Demarc ( demarcation ) The demarcation point between the Customer Premises Equipment (CPE) and the telephone company carrier equipment. Expansion ( competition ) directs compressed data through an algorithm that restores the information to its original size. 8 bits are used to define the network, and 24 bits are used to define hosts on the network. =========================================================== =============== The benefits of E3 and T3) are maximized. ATM ATM (Asynchronous Transfer Mode) by a fixed-length 53 -byte element identifier AFI privilege and format identifier (Authority and Format Identifier) ​​A part of the NSAP ATM address Interface Serial1 no ip address Caused by simultaneous transmission of the network segment. Its appearance may exhaust the network bandwidth and cause a timeout. BPDU Bridge Protocol Data Unit (Bridge Protocol DataUnit) between the cross-bridges in the network =========================================================== =============== FRAME-RELAY Frame-relay lmi-type cisco frame-relay intf-type dce extended IP accesslist ( extended IP access list ) by logical address, the network layer protocol header word A digital device of the loop. Often referred to as a CSU/DSU along with a data service unit . See DSU . floodming ( diffusion ) an interface when receiving traffic it will be transmitted to the originating communication interfaces in addition to the amount of 1. Router 2. Routing implementation path selection ( routing decision ). Routing Table 3. WAN access . 4. Router broadcast domain division ( interruption ). Please refer to the third part of the CCNA Professional English Vocabulary Collection : Classic Recommendations ; CCNA Professional English Vocabulary Collection Bypass relay ( bypass relay ) enables an interface of the token ring to be closed and effectively detached from the ring Enhanced IGRP ( Enhanced IGRP) ----- Enhanced Interior Gateway Routing Protocol (Enhanced Interior GatewayRouting Protocol): Cisco an advanced routing protocol created, which combines the advantages of link-state and distance between the amount of protocol. Enhanced IGRP has extraordinary convergence properties, including high operational efficiency. See IGP , Router igrp as number is the autonomous system number ( autonomous domain ) network main class network number ABC number debug ip igrp events debug igrp related events Packaging method. HDLC is a bit-oriented synchronous data link layer protocol created by ISO , which originated from SDLC . However, most HDLC vendor implementations ( including Cisco 's ) is patented. See SDLC . OSPF hierarchy advantages : analog transmission ( analog transmission ) represented by different combinations of the information signal amplitude, frequency and phase It does not indicate an error and can be intentional. See fragmentation . Target port : None Different frequency and phase relationships. Asynchronous transfers typically encapsulate a single character in control bits ( called start and stop bits ) Is a point-to-multipoint connection. See control directVCC . It is responsible for transmitting frames. Compared to byte-oriented protocols, bit-oriented protocols are more efficient and reliable full-duplex operation. Compare byte-oriented protocol . Specify the idle IP of the address pool Debug ip igrp transactions debug igrp event content Extended IPX accesslist ( extended IPX access table ) through logical IPX address, network layer header ACL two actions : C: 192.168.0.0/24 -- 192.168.255.0/24 Maximize the specification of running IP OVer ATV . Also known as "CIA" . frameing ( framing ) the OSI package on model data link layer. It's called framing because the packet is used The process of segmenting a packet into small pieces. congestion avoidance ( congestion avoidance ) to minimize latency, the ATM network for controlling the system into Three types of NAT : Router, which is required for other special tasks in OSPF operations. A multi-access OSPF network with at least two routers selects a router through the OSPF Hello protocol, which makes the multi-access network necessary neighbors. Spanning-tree vlan 1 priority ? Modify the priority of the switch to change the cost cost of the interface OSPF hierarchy advantages : baseline ( baseline ) baseline information, including historical data and information about the routine use of the network. This letter =========================================================== =============== 1. Control network traffic 2. Implement packet filtering GNS the nearest server (Get Nearest Server): in the IPX network, to determine a customer a request of a given type of packet location nearest transmitted activation server. An IPX network client issues a GNS request to obtain a response from a connected server or a response from a router that discloses the location of the server on the internet. GNS is part of IPX and SAP . See IPX and SAP . Piece address. The switch then filters the network with a known hardware address (MAC) Interface ethernet 0/1 enters the Ethernet port numbered 1 in slot 0 . . 1 T-chanelined ( channel of the channel T-1) operate in 1.544Mb / s one access link is 23 is th B channels ( ++<6> ) + x B(config)#inte s 1 The address is all ones . For hardware addressing, the hardware address will be all 1s in hexadecimal ( ie all F) . Clock rate ? Configure the clock frequency of the DCE interface ( system specified frequency ) VTP message announcement , only possible TRUNK transmission on . Handshake ( handshake ) to ensure synchronous transmission of a series of operations exchanged between two or more devices on a network. broadcast domain ( Radio City ) receiving apparatus of any broadcast frame sent from a device in the device group Hostname ABC configuration local username AAL2 ATM Adaptation Layer ----- ITU-T 2 recommendations four AAL one , to support variable bit rate connection-oriented traffic, such as voice traffic see AAL Using private IP addresses host , you can not directly access the public network (Internet) private IP public network router will not appear in the routing table . (Amplitude magnitude ) the maximum analog or digital waveform. 1900 only supports ISL trunk protocol 2950 only supports 802.1Q trunk protocol 3550 supports 802.1Q and Habitat Cisco equipment, the Cisco hardware type of equipment being used, the software version and active port. It uses SNAP frames between devices and is not routable. FRAD Frame Relay access device (Frame Relay access device) to provide LAN and Frame Relay WAN The main path of traffic. NextHopIP: Next hop IP A system developed to provide network security. See the authentication . Authorization and accounting A method of transmitting a parity bit or word in the link overhead of a previous block or frame. This allows the discovery of bit errors in the transmission and is transmitted as maintenance information. analog transmission ( analog transmission ) represented by different combinations of the information signal amplitude, frequency and phase The higher the RouteID, the easier it becomes to become a DR (Designated Router designated router ) Used to connect to remote sites . enable secret provided in the ciphertext enable password ( in preference to the use plaintext ) service password-encryption of all encryption system cleartext password ( weak ) broadcast domain ( Radio City ) receiving apparatus of any broadcast frame sent from a device in the device group frame tagging ( frame flag ) see Frame Identification . Protocol : ICMP (Internet Control Message protocol) ----- s1 RA s0 >-------- s1 RB s0 --------- s1 RC s0 ------ The CLI command line interface allows users to configure Cisco routers and switches with maximum flexibility . Sending CDP packets every 60 seconds ( every 60 transmits second cdp packet ) HoldTime 180 seconds ( per CDP information is saved 180 [ seconds ) debug ip rip debug RIP routing BGP4 BGP Version 4 (BGPversion4) ----- versions of the most common on the Internet inter-domain routing protocol 4 . Network devices ( such as routers, bridges or hubs ) efficacy. They serve as an FEP for an ATM network that uses a special DSU to complete the packet encapsulation . R6(config)#interface ethernet 0 The benefits of E3 and T3) are maximized. CTD Cell Transfer Delay (Cell Transfer Delay) for ATM a given connection is used in the source end-to-end VLANs ( end the VLAN) ----- across the switch fabric (switch-fabric) from end to end Interface s 1 encapsulation frame-relay Change (DLSw), in order to provide router-based network the SNA ( Systems Network means ) and NeIOS supported protocols. SNA and NetBIOS are non-routable protocols and do not contain any Layer 3 logical network information. DLSw encapsulates these protocols in TCP/IP messages, which can be routed and are an option for Remote Source Routing Bridging (RSRB) . Modulation method. See modulation . Target : 172.16.3.1 2. Different VLANs cannot communicate directly . AppleTalk----Apple Communications Corporation is a communication protocol suite designed for use in the Macintosh environment. There are currently two versions. The earlier Phase 1 protocol supported a physical network with only one network number residing in one area. The later Phase 2 protocol supports multiple logical networks on a single physical network, allowing the network to exist in multiple regions. See zone .