ccnp r&s jobs

ccnp r&s jobs

Configuration and implementation AD value and back door Store all routing entries,ccnp r&s jobs, as well as their properties. RIP-2 MD5 Authentication V2 uses multicast 224.0.0.9 Ip dhcp snooping vlan 10 Interface fast0/1 Version Match ip address matches the access list or prefix list If the feature is not enabled on the local end, the data packet is either routed successfully or never routed out (discarded). Neighbor 3.3.3.3 update-source Loopback0 Interface vlan 10 Affect routing decisions by modifying weight 10 Use set as-path tag to restore, for example, this example on R3 , Vlan range and mapping Edge port edge ports Look at the top of topology, AS300 has a subnet 172.16.1.0/24 , AS400 has routes 172.16.2.0/24 . 13 Origin attribute (priority order: IGP > EGP > Incomplete ) R1 uses 1.1.1.1 as the update source, trying to establish a BGP connection with 2.2.2.2 , and the local IP address of R2 is 1.1.1.1 , and Make a summary on R3 , use aggregate-address summary-only as-set , note that the as-set keyword is added. Redistribute ospf 3 subnets route-map OSPF3to2 *end* *version* 2 B and C receive this better BPDU and continue to flood the network. Define multiple serial numbers under route-map . The serial number has a priority order when performing matching actions. Holddown timer Information, so that ISP1 is hanging, so the data of the PC accessing the 100 network is switched to ISP2 , and the network is constantly The address family message is always 2 by default , and is 0 when requesting the entire routing table. Metric Limit the maximum number of prefixes accepted from the neighbor. If this number is exceeded, the router will close the BGP connection with the neighbor. Apply clear ip bgp Show ip bgp summary [123].[7-9] Next Hop That is to say, R5 goes to 100.0.1. and 2.0 each has two paths, which are through 10.1.25.2 and 3.3.3.3 , and finally R5. 10.1.13.1 OSPF Ip default-network 172.16.3.0 becomes: ip route 172.16.0.0 255.255.0.0 172.16.3.0 The access layer switch uses a dual link to connect to two aggregation devices to form a Layer 2 environment with physical link redundancy, which solves the problem of single link failure. 8 bits Switch, the switch also forwards it with an updated message to all attached LANs for which it is the designated switch. Private-vlan association 101,102 R1 announces 1.1.1.0 into BGP , and R2 learns these two routes from 10.1.12.1 and 10.2.12.1 respectively. 802.1q Set default interface specifies how to send such a packet R1(config-router)# network 11.11.11.0 mask 255.255.255.0 12 Ip prefix-list huizong permit 172.16.0.0/16 ip prefix-list mingxi permit 172.16.1.0/24 ip prefix-list xiayitiao permit 10.1.24.4/32 route-map RP_mingxi permit 10 Content Addressable Memory Table content addressable memory DTP enables trunk negotiation between switches Rule verification (the AS number in the federation does not participate in the AS_PATH length calculation) Disable port The destination IP address of the route , which can be the address of the natural network segment or the subnet address or Let's take a look at the role of these well-known values ​​of community : For 802.1D , when a port is elected as the designated interface, which from blocking to forwarding at least 30S of time. However, in RSTP , the proposal/Agreement mechanism enables the interface to complete a fast, reliable transition in seconds. Both R1 and R2 inject 100.0.1.0 and 100.0.2.0 into BGP using network . Access-list 1 permit 3.3.3.0 router rip COST community : When configuring the reflector, the client- to- client reflection is enabled by default, but if the client is fully interconnected, this command adds no to turn off the reflection between the clients. R4#sh ip b 100.0.1.0 LLC. ( The Logical Link Control ) by the destination service access point DSAP ( Destination Service Access Point ), source service access point SSAP ( Source Service Access Point ) and Based on the above experiment, R1 passes the 11.11.11.0/24 route to R2 , carrying the community value of 100:11 . This value can be matched on R2 using ip community-list , which can be further used in route-map . This community-list goes to set the policy. We now R2 on a community-list to match the 100: 11 , a notification to add no-export the community to the route. 200 i Local network and re-routed routes, LP defaults to 100 , and can be transmitted to other IBGP neighbors within the AS . The LP is unchanged unless the policy is deployed during transmission. Redistribute static Address-family ipv4 unicast Each AS has an identification number ranging from 1 to 65535 , of which 64512 to 65535 are reserved for private use. When we set the number of MAC addresses allowed on the interface to 1 and set a secure address for the interface, then this interface will only be for that MAC. Interface loopback1 When we deploy PBR on an interface , if this interface receives a packet, it will: Identify the type of message: Route-map Gratuitous ARP , the free ARP is a special ARP Request/response message, that is, the Sender IP is the same as the Target IP (usually used for IP collision detection). Note that the neighbor 1.1.1.1 filter-list x weight yyy command can be used multiple times for a neighbor, that is, set different weights for different routes . But the neighbor 1.1.1.1 filter-list 1 command, in the same neighbor in or out direction, can only be used once, these two commands are very different Neighbor 10.1.12.1 remote-as 13 Open Shortest Path First (OSPF) Routing Information Protocol (RIP) Route map reference Network topology and interconnection IP address planning as shown The configuration commands are as follows: ORIGINATOR_ID and CLUSTER_LIST are optional non-transfer attributes used by route reflectors to prevent loops. Configuration example Configure the aging time of the security address. Router bgp 64512 192.1.168.2 3 0003.47d9.c8f1 2BB648AB interface-id 584a38f0 END Because when actually deployed, SVI mouth may be more, go to if one of the no passive-interface to configure the amount may be relatively large, so you can choose to passive-interface defaut all interfaces of all passive off, and then a single interface to no passive -interface . : 1 to 3 Compatibility 37 Flag field LSB = TC MSB = TCA Network 100.0.1.0 mask 255.255.255.0 Select the route with the smallest neighbor IP address ( the address of the neighbor in the neighbor configuration of BGP , that is, the update source IP of the neighbor ) Path No-export Interface trust status and network security issues 100 Paths: (1 available, best #1, table Default-IP-Routing-Table, not advertised to EBGP peer) Flag: 0x820 Configuration and implementation Interface loopback2 Authentication is identified by setting the address family ID field to all 1s ( 0xFFFF ). port-security does not support etherchannel the port-channel interfaces A CFI of 1 is indicated as a non-classic format. Used to distinguish between Ethernet frames, FDDI ( Fiber Distributed Digital Interface ) frames, and Token Ring frames. Access-list 1 deny 192.168.0.0 0.0.255.255 The NEXT_HOP summary route is 0.0.0.0 (because the summary route is generated locally) DTP No synchronization no auto-summary *> 11.11.11.0/24 Locally find a route to the neighbor and try TCP three-way handshake. Waiting for completion, the authentication is completed during TCP setup. If the TCP connection is not up, enter the Active state and try to connect repeatedly. Switchport private-vlan host-association 100 101 // Associate primary VLAN and secondary VLAN to interface Basic experiment Finally note: Floating static route 23 byte Classification of path attributes: Each group of GLBPs can have up to four member routers as ip default gateways. These gateways are called AVF ( active virtual forwarder ). Match metric matches the route with the specified metric. match route-type matches the specified type of route match community matches the BGP community. Bridge ID to be unique bridge ID said earlier, is a priority and MAC constitute an address in the MAC address reduction scheme, all spanning trees of the same switch ID , the MAC address uses its own switch CPU 's MAC , At the same time , the priority of 16bits is expanded to become the system ID of 4bits priority + 12bits , and the system ID is used to identify different VLANs . In CISCO IOS , this system ID uses the VLAN.