ccie security v5 notes pdf

ccie security v5 notes pdf

Fallback (in the fall ) ATM network, this mechanism is used to get a path, if it can not use the regular side A bridge with low path overhead. 100BaseTX is based on the IEEE 802.3U standard, 100BaseTX is wired using two pairs of UTP or STP Shot as a network address =========================================================== =============== Fast switching ( fast switching ) that utilizes a route cache to speed up packet switching through a router A terminal adapter to the ATM network. See DSU Ethernet link overhead: CSU / DSU channel service unit / data service unit (channel service unit / data service unit ): a wide area network in the digital signal is converted into a physical layer device provider appreciated switch signal. The CSU/DSU is usually a device that plugs into an RJ-45 jack (the so-called demarcation position ) . Hide : access-list 1 deny any It can be provided by a secondary router added to a remote network. dynamic entries ( dynamic entries ) for the first 2 layer and 3 to create a hardware device address dynamically layer 1. Transmission area ( backbone area ) 2. Common area ( non-backbone area ) Typically specified by the network administrator and used by routing protocols to compare different routes through an internetwork. The routing protocol uses the cost value to select the best path to a destination : the lowest cost identification best path. See routing metnC . A device that acts as a destination, source, or both. DTEs include devices such as multiplexers, protocol converters, and computers. A connection to a data network is a data communication device that uses a clock signal generated by the device =========================================================== =============== Source port : None CHAP Q & A Handshake Authentication Protocol (Challenge Handshake Authentication Protocol) ----- OSPF . TCP ( Transmission Control Protocol ), connection-oriented , with retransmission mechanism , reliable transmission A(config-if)#ip rip authentication mode md5 ciphertext authentication B(config)#inte s 0 Interface s 1 encapsulation frame-relay Ip address 10.1.1.1 255.255.255.0 BPDU Bridge Protocol Data Unit (Bridge Protocol DataUnit) between the cross-bridges in the network . 1 E-Channelized ( channelization E-1) operate in 2048Mb / s access to a link, a 29 th B A technique that differs from ordinary TDM in that time slots are allocated when necessary rather than pre-assigned to certain transmitters. Compare FDM , statistical multiplexing, and TDM . cost ( cost ) , also known as path cost, an arbitrary value, according to the number of hops, bandwidth, or other juice operator, And make console configuration settings. Part of the original IEEE802.3 standard for 10BaseT , 1OBaseT is the 1OMb/s baseband Ethernet specification. Cellrelay . There is traffic successfully reaching the destination. This usually occurs in networks that combine inefficient or poorly cached routers with poor packet drop or ABR congestion feedback mechanisms. Encapsulation PPP enables PPP on the interface A method is generally defined to track the network layer ( layer 3 ) address to the data link layer ( layer 2 ) address. See IOS Cisco Cisco Internetwork Operating System Software (Cisco Internetwork Operating System software) ----- as CiscoFusion provide the functionality shared by all products in the off-line configuration, scalability and security of Cisco core routers and switches series. See CiscoFusion . It is one of the four link metrics exchanged by PTSP to test the reliability of ATM network resources. AppleShare and Mac OS file sharing allows users to share files and applications on the server. Non-designated port is placed in blocking state An ATM network configured with a ring of LAN . Multiple ELANs can exist simultaneously on one ATM network and form a LAN Emulation Client (LEC) , a LAN emulation server, a Broadcast and Unknown Server (BUS), and a LAN Emulation Configuration Server (LECS) . ELAN is defined by the LANE specification. See LANE , LEG , LEGS, and LES . The destination hardware address of a frame, then look up the address in the filter table established by the switch, and then only send the frame to the port of the found hardware address, and the other ports cannot see the frame. excess burstsize ( over burst size ) users may exceed the number of committed traffic burst size. 1. Full mesh 2. Half mesh 3. Star and spoke BECN: Backward explicit congestion notification R14(config)#isdn switch-type basic-net3 =========================================================== =============== The ISDN interface for communication , which consists of two B channels ( each 64 Kb/s) and one D channel (16 Kb/s) . Compare PRT . See BISDN . PPP 's own password configuration The level is set to 32768 . Layer file application ( application layer ) OSI seventh layer network reference model, the OSI applications outside Model If the neighbor and passive-interface are configured at the same time , then the neighbor will not be restricted by the passive-interface . Equipment and Tnter have jointly improved. Ethernet is similar to the TEEE802.3 family of standards and uses CSMA/CD to operate at lOMb/s rates on various types of cables . Also known as DIX (Digital/Intel/Xerox) Ethernet. See " The main explanation is B , C words that begin with. (ChinaITLab) 1. in direction 2. out to party Exchange routing information. Binding ( binding ) in LAN configuration on a network layer protocol to use some type of frame Experiment : Copy tftp: startup-config copy flash: tftp: Boot ROM ( Boot ROM) for the router in order to release the boot mode router. Then guide Direct forwarding : fast , but can not ensure the correctness of the forwarded frame . Bit, Frame, Packet, and Segment are all called : PDU (Protocol Data Unit) congestion collapse ( congestion collapse ) the ATM results in the packet network due to retransmission, wherein little or no A method is generally defined to track the network layer ( layer 3 ) address to the data link layer ( layer 2 ) address. See ATM Forum (ATM Forum ) ----- by the Northern Telecom , Sprint , the Cisco Systems and =========================================================== =============== Handshake ( handshake ) to ensure synchronous transmission of a series of operations exchanged between two or more devices on a network. FDM frequency division multiplexing (Frequency-Division Multiplexing) allows several channels to the channel Standard access control list : Detect only the access control list of the source address extension : source address , destination address , protocol , port number IGRP uses a 24-bit metric . QoS class. CBR is used to rely on accurate clocks to ensure reliable transmission connections. Compare ABR and VBR . An ATM network configured with a ring of LAN . Multiple ELANs can exist simultaneously on one ATM network and form a LAN Emulation Client (LEC) , a LAN emulation server, a Broadcast and Unknown Server (BUS), and a LAN Emulation Configuration Server (LECS) . ELAN is defined by the LANE specification. See LANE , LEG , LEGS, and LES . Shot as a network address B(config)#access-list 1 permit any Address learnmng ( address learning ) is used with the transparent bridge to learn the hard of all devices on the internet. AAL1 ATM Adaptation Layer 1 One of the four AALs recommended by ITU-T for connection-oriented, constant E.164 1) evolved from the standard telephone numbering system, which is numbered by ITU-T , especially at EIGRP see Enhanced IGRP . Dynamic routing ( dynamic routing ) network revision. Also known as " adaptive routing " , this technology is self- 1. Use hop count as a metric 2. Support up to 6 paths for the average load (default set to 4) 3. Periodic notification time : 30s compression ( compression ) with a string of numerals repeated data, transmitted over a link than the normal grant =========================================================== =============== MCR and PCR NET / ADAPTIVE company in I991 co-founded the international organization, the organization for the development and promotion of the ATM standards-based technology implementation of the agreement. The ATM Forum relaxed the official standards developed by ANSI and ITU.T and created implementation agreements before the official standards were released. There is traffic successfully reaching the destination. Usually in a router with poor productivity or insufficient caching ability and poor packet loss Layer and Transport layer . Media type : twisted pair , coaxial cable , fiber ISDN channel. Compare B channel , E channel and H channel . 2) In SNA , a connection between the processor and the main memory is not provided. VTP Vlan Trunk Protocol ARM asynchronous response mode (Asynchronous Response Mode) uses a master station and at least one auxiliary If the neighbor and passive-interface are configured at the same time , then the neighbor will not be restricted by the passive-interface . NextHopIP: Next hop IP The signal has been established. =========================================================== =============== A remote AppleTalk location access protocol for resources and data. D channel (D channel ) 1) data channel ----- a full duplex, 16Kb / S (BRA) or 64Kb / s (PRI) The mechanism and link of a communication network to a network interface ( such as a modem ) . The DCE provides physical connectivity to the network, forwards traffic, and provides a clock signal for synchronous data transmission between the DTE and the DCE . Compare DTE . 1. Reduce the size of the routing table 2. Speed ​​up the convergence 3. Limit the spread of LSA 4. Improve stability Whether a given node ID in an AppleTalk network is used by another node. If the node ID is used at the end, the sending node can use the ID of that node . If the node ID is already used, the sending node will select a different ID and send more AARP probe packets. See AARP A bit set by the network that informs the DTE receiver that congestion is encountered along the path from the source to the destination. Received FECN bit 2. Different VLANs cannot communicate directly . NET / ADAPTIVE company in I991 co-founded the international organization, the organization for the development and promotion of the ATM standards-based technology implementation of the agreement. The ATM Forum relaxed the official standards developed by ANSI and ITU.T and created implementation agreements before the official standards were released. Description description interface comment Corelayer The top layer of the Cisco three-tier hierarchical model that helps design, build, and maintain a 1. Neighbor table => all neighbors Layer , Presentation layer , Session layer , and Transport layer . data terminal equipment ( Data Terminal Equipment ) , see the DTE . When to disconnect =========================================================== =============== Freedom debris forwarding mechanism , can only CISCO achieve on the device . FEIP Fast Ethernet Interface Processor (Fast Ethernet Interface Processor) Cisco7000 Series Routing FRAME-RELAY also causes routing unreachability problems, ie horizontal separation rules. To solve the horizontal separation, you can use the sub-interface method. Layer file application ( application layer ) OSI seventh layer network reference model, the OSI applications outside Model Physical layer : rate , voltage , pin interface type Bit The designated router is in case of failure. Fallback (in the fall ) ATM network, this mechanism is used to get a path,ccie security v5 notes pdf, if it can not use the regular side VTP message announcement , only possible TRUNK transmission on . The number of hops added to a particular network, which converges slowly. To avoid this problem, various solutions have been implemented for each different routing protocol. These solutions include defining a maximum number of hops ( defined infinite ) , route balancing, poison reversal, and split horizon. Transport layer : reliable and unreliable transport services , retransmission mechanism . Segment Enable enter privileged mode Startup -config will be actively loaded every time the router or switch is started . cofiguration register ( Configuration Register ) ----- in hardware or software stored in a 16 -bit value may be configurable, it is determined during initialization Cisco router functions. In hardware, the bit position is set using a jumper. In software, it is set by the specified special bit pattern. This bit pattern is configured by a hexadecimal value together with the configuration command. collapsed backbone ( folded backbone ) all network segments via a network interconnection device connected to each other ATMM was ATM management (ATM Management) in ATM a protocol running on the switch tube Copy flash: tftp://1.1.1.1/c2500-ik8os-l.122-31.bin The interconnected network acts as a virtual link through an external network ( such as TCP/IP) . See AURP . A corrective technique used to block the request. The path is restored to an intermediate node. Then use GCAC to try to find an alternate path to the final destination. Congestion ( congestion ) exceeds the amount of network traffic handling capacity. Cisco features. Compare process switching . DLSw Data Link Switching (Data Link Switching) IBM in 1992 Exploitation AC data link Configure ACL to reject london to access Denver Enterprise network (a corporate network ) that connects a major location in a large company or organization B(config-if)#ip nat outside configure S1 interface for the outside network to specify which hosts can NAT bridge group ( bridging group ) in a bridge configuration of the router, bridge group number determined by a unique Negotiation. Frame Relay ( FR ) ----- the X.25 protocol ( a guaranteed unrelated packet relay data transmission techniques ) in a more effective alternative. Frame Relay is an industry-standard, shared, and best-effort switched data link layer package that provides multiple virtual circuits and protocols between connected mechanisms. The traffic " rounds and goes to the router. B(config)#inte s 0 data circuit-terminating equipment ( data circuit terminating equipment ) the DCE is used between DTE equipment Information, if the information is not updated by the neighbor, the amount of time before it is discarded. By default, this timer is not used for 180 seconds. 5.ExChange 6.Loading 7.Full Set of special character data link communication protocols. These protocols have generally been replaced by bit-oriented protocols. Compare the bit-oriented protocol . cable range ( range of cables ) in the extended AppleTalk network, using the number range assigned to the existing nodes on the network. The value of the cable range can be a sequence of one or several consecutive network numbers. Node addresses are determined by their cable range values.