ccnp route cheat sheet
-
- 8193 Reviews
Access-list 1 permit 1.1.1.0
The Length field defines the number of bytes that the Data field contains.
200
Neighbor
10
2011-12
2
At this time, he himself will still forward if he receives the data packet to 3.0.0.0 , but will not forward to other rips.
The VLAN ID , which is 12 bits long, indicates the VLAN to which the frame belongs . In VRP , the configurable VLAN ID ranges from 1 to 4094 .
Load balancing: round-robin Group members:
Ethernet frame format
Verify the role of the match interface 2
Vlan 100
Multiple paths have the same RouterID because they are received from the same router.
R3 and R4 , R4 and R5 establish an IBGP neighbor relationship, and R3R4R5 uses LOOPBACK as the update source and refers to the neighbor .
Fa0/20
Path
Decision summary
Tunnel Tunnel interface
Router ospf 1
On the trunk port, as mentioned earlier, port-security can also be activated . The maximum number of secure addresses can be configured on the trunk interface, which can be based on interface configuration ( valid for all VLANs ) or VLAN- based . as follows:
After Port-Security is enabled, related parameters have default configuration.
Aggregate-address summary address as-set advertise-map
Write multiple commums in the same line, such as ip community-list 1 permit no-export 12:1111 does not take effect, can not delete these two values
*
*>i
The "original Ethernet frame" is up to 1518 bytes, the IP MTU of 1500 , plus the source destination MAC address is 12 , the type field is 2 , CRC4 , plus 30 bytes of ISL encapsulation, which is 1548 bytes.
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, r RIB-failure, S Stale
Redirection enabled
Summarizing on R3 suppresses all details, but if you only want to release partial details for a particular neighbor, you can use unsuppress-map
When R2
Preference , will trigger Notifacation message , causing session interruption; but can use IN on AS border router
Then PC ping 10.1.13.0 , the data goes R1 ;
PVLAN configuration example
This is a feature that is used in large and medium-sized networks to make the configuration "modular".
On R3 :
Route metric is 0, traffic share count is 1
Border Gateway Protocol (BGP) Connected
This fulfills the demand.
192.168.255.0/24 .
Neighbor 10.1.23.2 remote-as 200 neighbor 10.1.23.2 route-map test in
FastEthernet0/0
Revoked route
BGP introducing and transmission routes
Distance vector routing protocol
If the router accepts the parameters of the neighbor in the OPEN message, it will answer a keeplive message,ccnp route cheat sheet, and send the message for the period of 1/3 of the holdtime (but not less than 1S ). CISCO defaults to 60S . If the hold time is 0 after negotiation , the keepalive keep-alive message is not sent .
Sw1(config)#interface range fastEthernet 0/1 – 2 // Enter interface range Sw1(config-if-range)#switchport // Configure the interface as a Layer 2 interface
Sw1(config)#interface range fastEthernet 0/1 – 2 // Enter interface range Sw1(config-if-range)#switchport // Configure the interface as a Layer 2 interface
R1(config)# access-list 1 deny 192.168.3.0 R1(config)# access-list 1 permit any R1(config)# router ospf 1
Compatibility
DHCP configuration manual binding to read bindings from the network
The above command only re-advertises OSPF external routes E1 and E2 into BGP.
AS_CONFED_SEQUENCE and AS_CONFED_SET
When an RSTP switch detects a topology change it will:
LocPrf
LocPrf
Reset BGP connection
The identifier of the authentication item indicates that the entire routing packet needs to be verified.
Name server
Then first mark the route prefix of 30.30.30.0/24 on R2 , use the community tag, and configure a route-map at the same time.
Neighbor 1.1.23.2 route-map test out
Multiple paths have the same RouterID because they are received from the same router.
We restore the experimental environment to the basic configuration: BGP neighbor relationships are as follows
?
If you try to activate port-security on an 802.1X interface, you will get an error and the port-security feature will not open.
Access-list 1 permit 1.1.1.0
Limit the number of access hosts per port (number of MAC addresses)
?
In an IP network, Routing is a very, very basic concept. The basic function of the network is to make two in the network
LocPrf
IBGP session principle
Protected ports are not able to communicate with each other although they are in the same VLAN .
?
Routing table
Comparative principle
Ip arp inspection validate { [dst-mac] [ip] [src-mac] }
100
OSPF
or
0 0
Router bgp 64512
Let's take a look at this route 100.0.1.0 :
These three representative routing re-release models.
When R2 is configured with no validate-update-source , R2 will not verify the RIP update message source, so R2 will accept R1.
Originator: 1.1.1.1, Cluster list: 4.4.4.4, 3.3.3.3
Port
Local origin
At the time, it is already " 200 i ", so doing prepend can only be inserted in front of 200 i , please pay attention to the difference from the previous one.
The certificate contains the password information when it is verified using plain text.
Path
RIPv2 35
As a result, R6 will receive summary routes from R4 and R5 , respectively : 172.16.0.0/16
Host 192.168.1.111 255.255.255.0
Ip sla monitor 1
200 i
The version of the last bgp table sent by TblVer to the neighbor
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal, r RIB-failure, S Stale
Ip sla monitor schedule 2 life forever start-time now
// to ignore 1.0 of
In the example, the static route associated with the next hop does not have this attribute, so it is not matched.
If the route is marked d , it means that the route is suppressed. If it is h , it means that the route has signs of flipping.
46-1500 bytes; set mtu xxxx under the interface , which means this, and generally does not allow
Router bgp 345
0.0.0.0
Distribute-list 1 out rip
Viewed as one logical link
Note: Using the policy to modify AS_PATH can only be performed on its EBGP neighbors on the BGP router , because AS_PATH is only in the AS.
120
.
description
About the burst-size parameter:
If the above into OSPF , is invalid, i.e., the static route is associated interface, in OSPF the network when the network routing number, and will not be declared into OSPF .
The configuration of R2 is as follows:
Dual two-way point of the route re-release
Neighbor 3.3.3.3 route-map WT1 in neighbor 5.5.5.5 route-map WT2 in
Router(config) router rip
OpenSent
16
We will ping 1.1.1.2 repeat 1 size 1500 , we will find that R1 directly sends an ICMP packet, no fragmentation, the message is as follows:
Port-Security configuration steps
Remarks
Between R1 , R2 and Layer 3 switches, it is assumed to be a static routing environment. So now, we hope that users under R3 will flow in the direction indicated by the red dotted arrow when accessing the production server, and will flow in the direction of the blue arrow when accessing the office server.
BGP PA can measure or traffic statistics on IP traffic sent by BGP peers.
A the LLC sublayer own data to be transmitted is encapsulated, wherein the DSAP byte is filled B return to the SAP , the SSAP bytes are filled to their open the SAP , and then sent to MAC sublayer.
AS_PATH ). This can lead to loops. The solution is to set the AS_PATH keyword to restore the AS attribute when C publishes the summary route. At this time, the summary route will declare AS_SET at the same time , and AS_SET is an unordered AS list, among which AS200 The information so that the B router receives this summary route and finds that the AS_SET has its own AS and therefore ignores the route.