ccie security practice labs ccie self study pdf

ccie security practice labs ccie self study pdf

The fixed length enables cells to be processed and exchanged in hardware at high rates, making this technology the basis for ATM and other high-speed network protocols. See cell . VLAN features : ----- s1 RA s0 >-------- s1 RB s0 --------- s1 RC s0 ------ =========================================================== =============== FRAME-RELAY topology (pvc) Partial mesh Configuring ACL allows london to telnet to Denver (2) RIPv1, RIPv2, IGRP, EIGRP, OSPF, ISIS Virtual Control Connection (VCC) is one of three data connections defined by Phase 1 LAN emulation. Because the data is direct Centrex ( Central Switch ) A local switched carrier service that provides local handover similar to live PBX mask address ( address mask ) a bit pattern descriptor, which identifies which portion of a network address of the representative =========================================================== =============== excess burstsize ( over burst size ) users may exceed the number of committed traffic burst size. BPDU Bridge Protocol Data Unit (Bridge Protocol DataUnit) between the cross-bridges in the network Network devices ( such as routers, bridges or hubs ) efficacy. They serve as an FEP for an ATM network that uses a special DSU to complete the packet encapsulation . Show cdp neighbors detail View CDP neighbors ( including Layer 3 IP addresses ) show cdp entry * View CDP neighbors ( including Layer 3 IP addresses ) broadcast domain ( Radio City ) receiving apparatus of any broadcast frame sent from a device in the device group =========================================================== =============== Flash ( flash )----- Electrically erasable programmable read only memory (EEPROM) . Used by default to save CiscoIOS on the router . OSPF hierarchy advantages : Enable enter privileged mode Show sessions show the current outgoing TELNET session Baseband ( baseband ) a characteristic of network technology, the use of only one carrier frequency. Ethernet is one =========================================================== =============== =========================================================== ================ A non-distributed backbone. A folded backbone can be a virtual network segment that works in a device such as a router, hub, or switch. Righteousness. Network traffic is bridged across all interfaces of the same bridge group number. 1.0.0.0 2.0.0.0 3.0.0.0 4.0.0.0 cell payload scrambling ( cell payload scrambling ) the ATM switches and certain of the edges speed relay FDM frequency division multiplexing (Frequency-Division Multiplexing) allows several channels to the channel =========================================================== =============== AAL5 ATM Adaptation Layer 5 One of the four AALs recommended by ITU-T , mainly used to support inter-face connection BRI Basic Rate Interface (Basic Rate Interface) facilitate cross-circuit between video, data and voice OSI seven-layer network model : Protocol data unit call establishment ( call setup ) to refer to a work when the call ISDN call setup scheme. =========================================================== =============== Dynamic NAT configuration FEIP Fast Ethernet Interface Processor (Fast Ethernet Interface Processor) Cisco7000 Series Routing This interface of the 7000 Series router minimizes the performance bottleneck of the UNI . Participate in AAL3/4 private AAL5 . IGRP: based on bandwidth, latency, reliability, load, MTU (maximum transmission unit) bridge. The bridge ID is a combination of bridge priority and base MAC address. ABR area border router ----- located in one or more OSPF area boundary OSPF routers, ABR is used to OSPF connection region to the OSPF backbone area 1. Control network traffic 2. Implement packet filtering 1. Port-based implementation , static VLAN 2. Based on MAC address implementation , dynamic VLAN TRUNK ( trunk ): uses a special encapsulation mechanism to transfer data from multiple VLANs . Copy flash: tftp://1.1.1.1/c2500-ik8os-l.122-31.bin Virtual circuits in the network. =========================================================== ============== Fast Ethernet ( Fast Ethernet ) ---- speed lOOMb / s Ethernet specification. Fast Ethernet ratio Data link layer : A method is generally defined to track the network layer ( layer 3 ) address to the data link layer ( layer 2 ) address. See The twisted pair transmission distance is 100 meters . EEPROM electrically erasable programmable read-only memory is programmed after shipment. These non-volatile memory chips can be used when needed. Asynchronous transmission ( digital transmission ) does not have a precisely timed digital signal, usually Show ip protocols to view information about RIP discovery mode ( discoverable mode ) also called dynamic configuration, this technology is AppleTalk interface is used from A random value selected by the BGP router when sending an OPEN message. Change type. Sometimes called modified cut-through . Username 123 password cisco configuration user name password database , used to verify each other =========================================================== =============== ACL for packet processing : Duplex Full ( full duplex ) ability to simultaneously transfer information between the transmitting and receiving stations, see Support for multiple network layer protocols through NCP can achieve " authentication ", " compression ", " error detection ", " multi-link " through LCP . convergence ( convergence ) Internet in all routers update their routing tables and create a consistent PAP: Two handshakes , the password is transmitted in clear text. The process of packaging or inclusion. In the OSI reference model, when data flows down the protocol stack, each layer encapsulates its next layer. B(config)#ip nat pool abc 1.1.1.1 1.1.1.1 prefix-length 8 translate list 1 host IP to pool abc free IP B(config)#ip nat inside source list 1 pool abc overload A technique that allows for more data. The basis of word expression. Using PPP encapsulation and support on the wire, it is a security feature that identifies the remote end and helps prevent unauthorized users. After the CHAP is executed,ccie security practice labs ccie self study pdf, the router or the pick-up server determines whether a given user is allowed to access. It is a new, more secure protocol than PAP . Compare PAP . CBR constant bit rate ----- ATM forum created for use in ATM networks B(config-if)#ip nat outside configure S1 interface for the outside network to specify which hosts can NAT Password cisco sets a password to "cisco" copy running-config tftp: the running-config copy to tftp the service A system developed to provide network security. See the authentication . Authorization and accounting =========================================================== =============== Class B network (B -based network ) portion of the Internet Protocol hierarchical addressing scheme. Class B network has 16 UDP ( User Message Protocol ), no connection , no retransmission mechanism , unreliable transmission =========================================================== =============== =========================================================== =============== =========================================================== =============== =========================================================== =============== A system developed to provide network security. See the authentication . Authorization and accounting BGP peers (BGP peers ) See BGP neighbors . Bit ( bit, bit ) A number ; a 1 or a 0 . 8 bits make up one byte. Ip add 10.1.1.1 255.255.255.0 congestion avoidance ( congestion avoidance ) to minimize latency, the ATM network for controlling the system into E-1---- A wide-area digital transmission scheme commonly used in Europe to transmit data at a rate of 2.048 Mb/s . The process of outputting a single stream. See multiplexing . =========================================================== =============== cost ( cost ) , also known as path cost, an arbitrary value, according to the number of hops, bandwidth, or other juice operator, 1. Full mesh 2. Half mesh 3. Star and spoke distribution layer ( distribution layer ) the Cisco intermediate three layer hierarchical model, which contribute to the design, installation and maintenance =========================================================== =============== PPP: =========================================================== ================ Kind of protocol to communicate. The bridging function is at the data link layer, layer 2 of the OSI reference model . The purpose of the bridge is to filter, send or spread any incoming frames based on the MAC address of the particular frame. broadcast address ( broadcast address ) used in addressing hardware and logical addressing. In logical addressing, the host 1. CISCO 2. ANSI 3. Q993A The method of traffic. Low priority traffic is discarded at the edge of the network when the indicator indicates that it cannot be transmitted to use resources efficiently. Enable HDLC on the interface : interface serial 0 encapsulation HDLC Signal transmission. Encapsulation frame-relay no shut Access-list 100 permit TCP host 10.3.3.1 host 172.16.3.1 eq 23 Bypass mode ( bypass mode ) removes FDDI and Token Ring network operations for an interface . DXI data exchange interface (Data Exchange Interface) in RFC 1482 is described, DXI define a Enable password lOBaseT , Fast Ethernet, and lEEE . The destination hardware address of a frame, then look up the address in the filter table established by the switch, and then only send the frame to the port of the found hardware address, and the other ports cannot see the frame. Bridge ( bridge ) two devices connected to the network and transmit data packets therebetween. Both paragraphs must use the same Duplex Auto ( automatic duplex ) of a layer and 2 a device layer disposed on, it automatically switches provided CSMA / CD carrier with Collision Detection Sense Multiple Access (Carrier Sense Multiple Access / Collision Detect ) Ethernet IEEE802.3 a technology committee defined. Every device is sending EIGRP uses a wildcard mask configuration example : Duplex Half ( half duplex ) can only capability between the side transmitting data between a transmitting and receiving stations. See fullduplex . ESF extended superframe (Extended Superframe) of 24 composed of frames, each frame of 192 bits , the first 193 than cable range ( range of cables ) in the extended AppleTalk network, the existing nodes on the network so that The CISCO 1900 series switches use free shard forwarding to forward this forwarding method by default. NetMask: target network subnet mask 1OOBaseT is based on the IEEE 802.3U standard, 1OOBaseT is a baseband fast Ethernet using UTP wiring + returns directly to privileged mode Configure terminal enters global configuration mode An octet divided into four points, followed by a forward slash and the number of the masked bit ( abbreviation of the subnet symbol ) . See A Cisco hierarchical network. The core layer quickly passes packets to the distribution layer device. No packet filtering is performed at this level. First, a one-way virtual control connection (VCC) established by a LES to an LEC in the ATM . Usually, the VCC CDVT call delay variation tolerance (Cell Delay Variation Tolerance) ATM network for communications IGRP supports equal-cost equalization load , and also supports non-equivalent equalization load . helper address ( help address ) specified unicast address, which directs Cisco router into direct FTP file transfer protocol (File Transfer Protocol): used to transfer files between network nodes of TCP / IP AAL1 ATM Adaptation Layer 1 One of the four AALs recommended by ITU-T for connection-oriented, constant MCR and PCR mask address ( address mask ) a bit pattern descriptor, which identifies which portion of a network address of the representative Routers running BGP ; they use a TCP port on layer 4 of the OSI Reference Model . Especially using TCP IGRP uses a 24-bit metric . An OSI language and description method for data types . It is described by ISO International Standard 8824 . Experiment : Access-list 100 deny ICMP host 10.3.3.1 host 172.16.3.1 autonomous confederation ( Autonomous Federation ) rely mainly on their own network reachability and routing information Rate enhancement and VCT conversion. See ATM . Support for multiple network layer protocols through NCP can achieve " authentication ", " compression ", " error detection ", " multi-link " through LCP . Packaging method. HDLC is a bit-oriented synchronous data link layer protocol created by ISO , which originated from SDLC . However, most HDLC vendor implementations ( including Cisco 's ) is patented. See SDLC . Protocol : ICMP (Internet Control Message protocol) Negotiation. Enhanced IGRP ( Enhanced IGRP) ----- Enhanced Interior Gateway Routing Protocol (Enhanced Interior GatewayRouting Protocol): Cisco an advanced routing protocol created, which combines the advantages of link-state and distance between the amount of protocol. Enhanced IGRP has extraordinary convergence properties, including high operational efficiency. See IGP , flash memory ( flash memory ) Intel developed and licensed to other A nonvolatile semiconductor memory used by the manufacturer Partial mesh reload reload Router ( restart ) The main path of traffic. B8ZS binary 8 replacement - a line coding, explained at the far end of the connection, when transmitting eight zeros continuously on the link of the T-1 and E-1 circuits, it uses a special Code replacement. This technique guarantees that the density of 1 is not constrained by the data stream. Also known as bipolar 8 zero replacement. Compare AMI . See ones density . RIPv1, RIPv2, IGRP, EIGRP, OSPF, ISIS Devices that set frames can require higher priority protocols to take flow control if necessary. See BECN . Negotiation. Configure ACL to reject london to access Denver flash memory ( flash memory ) Intel developed and licensed to other A nonvolatile semiconductor memory used by the manufacturer FRAME-RELAY address mapping (reverse ARP) Broadband ( broadband ) multiplexing several independent technique for transmitting signals on a single cable. telecommunications In the network, the link access protocol formed on the standard Ethernet data link layer. Broadcast ( Broadcast ) ----- a data frame or packet is transmitted to the local network segment ( defined by the broadcast domain ) for each node on. Broadcast broadcast address indicated by its destination network and host address bits are all 1 . Also known as " local broadcast " . Compare directedbroadcast . The switch, Cisco calls it a switch-fabric . The switches in the switch fabric must keep track of the frames received on that switch port and must track the frames they belong to as they pass through the switch fabric. =========================================================== =============== EIGRP ATDM asynchronous time division multiplexing (Asynchronous Time-Division Multiplexing) to send information Control distribute VCC ( Control Distribution VCC) Phase I LAN simulation defines three control connections =========================================================== =============== Frame Relay ( FR ) ----- the X.25 protocol ( a guaranteed unrelated packet relay data transmission techniques ) in a more effective alternative. Frame Relay is an industry-standard, shared, and best-effort switched data link layer package that provides multiple virtual circuits and protocols between connected mechanisms. FTP file transfer protocol (File Transfer Protocol): used to transfer files between network nodes of TCP / IP . 1 T-chanelined ( channel of the channel T-1) operate in 1.544Mb / s one access link is 23 is th B channels DCE/DTE only exists in the WAN AURP AppleTalk is based on the AppleTalk Update-based Routing Protocol, a technology for encapsulating AppleTalk traffic in the header of an external protocol. Frame-relay route 110 interface Serial1 120 FragmentFree ( no fragmentation ) reads in the data portion of a frame to ensure that there is no fragmentation of the LAN intersection Distance vector routing protocol: The reservoir, which can be electrically erased and reprogrammed, is physically located on the EEPROM chip. Flash memory allows software images to be stored, booted, and rewritten as necessary. By default, Cisco routers and switches use flash to save IOS . See EPROM and EEPROM . =========================================================== =============== Handshake ( handshake ) to ensure synchronous transmission of a series of operations exchanged between two or more devices on a network. OSI seven-layer network model : Protocol data unit Sended and is not reliable. Compare connection-oriented . See virtual circuit . The BPDU is exchanged between switches every two seconds. Periodic. (PDU) Add header information. For example, in Internet terminology. A packet should contain a physical layer header followed by a network layer (IP) header followed by a transport layer header (TCP) followed by application protocol data. Discover the best route for traffic from the source to its destination. ISL 's main road agreement created an 802.1Q main road in 2950 The three-tier architecture of the network : BRI Basic Rate Interface (Basic Rate Interface) facilitate cross-circuit between video, data and voice OSPF hierarchy advantages : The mode boots the device with an operating system. The ROM can also hold a small Cisco IOS . DXI data exchange interface (Data Exchange Interface) in RFC 1482 is described, DXI define a failure domain ( fault domain ) ----- area of the failed token ring. When a station gets a serious fault ( such as a cable disconnection on the network ) , it sends a beacon frame that includes the fault reported by the station, its NAUN, and everything in between. This defines the fault domain. The beacon then begins the so-called automatic configuration process. See autore EIGRP external routing management distance : 170 EIGRP internal routing management distance : 90 show ip eigrp neighbors to view EIGRP neighbors =========================================================== =============== A connectionless protocol responsible for sending datagrams over an internetwork. Change type. Sometimes called modified cut-through . Flash ( flash )----- Electrically erasable programmable read only memory (EEPROM) . Used by default to save CiscoIOS on the router . debug ip rip debug RIP routing Listen for digital signals on the cable before. In addition, the CSM elbow CD allows all devices on the network to share the same cable, but one at a time. If both devices are sending at the same time. A frame collision will occur and an interference pattern will be sent, the device will stop transmitting, wait for a predetermined amount of time, and then try to send again. Network layer : =========================================================== =============== A (config-if) #ip rip authentication key-chain A selected A key chain The basis of word expression. End exit the interface Clear line XXX clear line address resolution ( ARP ) to resolve the differences between computer addressing scheme of the process. Address resolution Three forwarding modes of the switch : 10.1.1.1/0.0.0.0 broadcast domain ( Radio City ) receiving apparatus of any broadcast frame sent from a device in the device group The default route ( default route ) is used to guide the static routing table entry of the frame, and its next hop is not in End the Back ( back-end ) a front-end node to provide services or software programs. See server . 3. Routing Table => Best Route Used to connect to remote sites . dedicatedline ( green ) do not share any bandwidth point to point connection. EIGRP uses a wildcard mask configuration example : The cable is disconnected. The beacon frame carries the downstream station address. See failure domain . =========================================================== ===================== ATMM was ATM management (ATM Management) in ATM a protocol running on the switch tube =========================================================== =============== Create a VLAN Enable password Set the plaintext enable password Reliable transmission mainly involves physical addressing, line procedures, network topology, error notification, orderly delivery of frames, and flow control. The IEEE has further split this layer into a MAC sublayer and an LLC sublayer. Also known as the link layer. Can be compared to the data link control layer of the SNA model. See Application layer , LLC , MAC , Network layer , Physical If the neighbor and passive-interface are configured at the same time , then the neighbor will not be restricted by the passive-interface . Set of special character data link communication protocols. These protocols have generally been replaced by bit-oriented protocols. Compare the bit-oriented protocol . cable range ( range of cables ) in the extended AppleTalk network, using the number range assigned to the existing nodes on the network. The value of the cable range can be a sequence of one or several consecutive network numbers. Node addresses are determined by their cable range values.