tag:blogger.com,1999:blog-58050253044430964702024-03-06T01:14:04.031+00:00CiscoStudies.co.ukCisco CCNA :: Cisco CCNP - ROUTE | SWITCH | TSHOOT | ISCW | BSCI | BCMSN | ONT ::
What you need to know for your CiscoStudies.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.comBlogger93125tag:blogger.com,1999:blog-5805025304443096470.post-23712298113527326012014-03-07T16:30:00.001+00:002014-03-07T16:30:02.733+00:00CCDP - ARCH - Well Known Multicast AddressesIn the CCDP ARCH exam there are numerous refereences to Multicast addresses.<br />
<br />
This post is to simply catalogue those that are specifically refered to in the various reading materials I've covered.<br />
<br />
<b><u>Address Scope:</u></b><br />
<br />
<ul>
<li><b>224.0.0.0 /4</b> - Class D reservation</li>
</ul>
<br />
<b><u>Address type:</u></b><br />
<br />
<ul>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>224.0.0.0 to 224.0.0.255</b> - assigned by IANA for services (detailed below)</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>224.0.1.0 to 224.0.1.255</b> - Control Block - assigned by IANA for traffic crossing public networks e.g.- NTP 224.0.1.1</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b> 224.0.2.0 to 224.0.255.255 - </b>AD-HOC block assigned by IANA for addresses that don't fit the above ranges</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>224.3.0.0 to 224.4.255.255 - </b></span><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;">AD-HOC block assigned by IANA for addresses that don't fit the above ranges</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>233.252.0.0 to 233.255.255.255- </b></span><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;">AD-HOC block assigned by IANA for addresses that don't fit the above ranges</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>232.0.0.0 255.0.0.0 - </b>Source-Specfic Multicast Addresses</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>233.0.0.0 255.0.0.0</b> - GLOP addresses - Originally experimental now publically assigned addresses for use by ISPs and any organisation want to ublich content over Multicast</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>234.0.0.0 255.0.0.0</b> - Uni-cast Prefix addresses</span></li>
<li><span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><b>239.0.0.0 255.0.0.0</b> - Administratively scoped IPv4 addresses, locally assigned, not globally unique</span></li>
</ul>
<div>
<span style="font-family: sans-serif; font-size: x-small;"><span style="line-height: 19.200000762939453px;"><b><u>Well Known Addresses:</u></b></span></span></div>
<br />
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small;"><span style="line-height: 19.200000762939453px;"><b>224.0.0.1<span class="Apple-tab-span" style="white-space: pre;"> </span></b>The All Hosts multicast group addresses all hosts on the same network segment.</span></span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.2</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The All Routers multicast group addresses all routers on the same network segment.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.5</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The Open Shortest Path First (OSPF) All OSPF Routers address is used to send Hello packets to all OSPF routers on a network segment.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.0.6</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The OSPF All Designated Routers ""(DR)"" address is used to send OSPF routing information to designated routers on a network segment.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.9</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The Routing Information Protocol (RIP) version 2 group address is used to send routing information to all RIP2-aware routers on a network segment.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.10</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The Enhanced Interior Gateway Routing Protocol (EIGRP) group address is used to send routing information to all EIGRP routers on a network segment.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.13</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Protocol Independent Multicast (PIM) Version 2</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.0.18</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Virtual Router Redundancy Protocol (VRRP)</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.0.19 - 21</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">IS-IS over IP</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.0.22</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Internet Group Management Protocol (IGMP) version 3</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.0.102</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Hot Standby Router Protocol version 2 (HSRPv2) / Gateway Load Balancing Protocol (GLBP)</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.1.1</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Network Time Protocol clients listen on this address for protocol messages when operating in multicast mode.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">224.0.1.39</span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span></b><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The Cisco multicast router AUTO-RP-ANNOUNCE address is used by RP mapping agents to listen for candidate announcements.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.1.40</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">The Cisco multicast router AUTO-RP-DISCOVERY address is the destination address for messages from the RP mapping agent to discover candidates.</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>224.0.1.41</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">H.323 Gatekeeper discovery address</span></li>
</blockquote>
<blockquote style="border: none; margin: 0 0 0 40px; padding: 0px;">
<li><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;"><b>239.255.255.250</b></span><span class="Apple-tab-span" style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px; white-space: pre;"> </span><span style="font-family: sans-serif; font-size: x-small; line-height: 19.200000762939453px;">Simple Service Discovery Protocol address</span></li>
</blockquote>
<br />
<div>
<span style="font-family: sans-serif; font-size: x-small;"><span style="line-height: 19.200000762939453px;"><br /></span></span></div>
<br />
<span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><br /></span>
<span style="background-color: white; font-family: sans-serif; font-size: 13px; line-height: 19.200000762939453px;"><br /></span>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-80841726309217011292010-12-04T20:48:00.000+00:002010-12-04T20:48:05.234+00:00NetworkStudies.co.ukNetworkStudies.co.uk<br />
<br />
For a while now I've been a little unsettled at using the domain ciscostudies.co.uk particularly after Jeremy Cioara's experience of looking down the business end of Cisco's legal department.<br />
<br />
So, I've moved. From now on my study notes, thoughts, and helpful hints will be located at <a href="http://www.networkstudies.co.uk/">www.networkstudies.co.uk</a> :o)<br />
<br />
Cisco - Catch me if you can!<br />
<br />
See you there...jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com1tag:blogger.com,1999:blog-5805025304443096470.post-32195592973079794702010-12-02T21:55:00.000+00:002010-12-02T21:55:27.281+00:00New home for Jeremy Cioara...<u><b>Where is Jeremy?...</b></u><br />
<br />
I'm busy tidying things up before I start my series of notes on CCNP Switch and I thought I'd check in with Jeremy, so I go to his ammended blog www.ciskoblog.com and low and behold I'm redirected to <a href="http://www.tekcert.com/">http://www.tekcert.com</a><br />
<br />
It's been a while since I last took a look at what the Master had to say so I'll be spending some time here over the next few days seeing what's what.<br />
<br />
Keep up the good work Jeremey :o)jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-18699041193564052032010-10-26T20:15:00.000+01:002010-10-26T20:15:02.520+01:00Subnet Mask vs Wildcard MaskSomething I find I struggle with is when to use a subnet mask and when to use a wildcard mask. This article is to simply set out the instances when you will use one or the other (not the actual steps to apply them).<br />
<br />
<u>Subnet Mask:</u><br />
<br />
<ul><li>When applying an IP to an interface</li>
<li>Routing protocol summary addresses</li>
<li>BGP</li>
<li>PIX security appliance ACL's</li>
<li>ASA security appliance ACL's</li>
<li>When creating DHCP pools on a Switch or Router</li>
</ul><div><br />
</div><div><u>Wildcard Mask:</u></div><div><ul><li>EIGRP network statements</li>
<li>OSPF network statements</li>
<li>VPN concentrator network lists (when setting the local and remote allowed networks)</li>
<li>Router ACL's</li>
</ul><div>This list is not exhaustive and I will add to it as I come across new instances where you use either a Subnet mask or Wildcard mask. </div></div>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-17395158799950907942010-09-17T11:59:00.000+01:002010-09-17T11:59:43.764+01:00BSCI Exam - Passed!Well, I've just got back from the test centre and I'm pleased to say that I passed!!<br />
<br />
It was a bit touch and go though as I think there was about 1 minute 30 seconds left on the clock.<br />
<br />
No rest though as I've already started CCNP SWITCH at my local Cisco Networking Academy.<br />
<br />
As you'll guess, most posts from now on will be SWITCH related.<br />
<br />
Thanks<br />
Jonathanjdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-14342924804441459192010-09-15T13:44:00.000+01:002010-09-15T13:44:30.566+01:00BSCI - OSPF - Adjacency requirementsFor an OSPF adjacency to form the 2 neighbors must agree on several parameters within the Hello Packet before the adjacency can form. These are:<br />
<br />
i) Each must have a unique Route-ID<br />
ii) Each must be in the same Area<br />
iii) Authentication setting must match<br />
iv) Timers must match.<br />
<br />
One other parameter that must be agreed upon is the router priority for DR/DBR elections.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com1tag:blogger.com,1999:blog-5805025304443096470.post-14391711520917664662010-09-15T13:23:00.000+01:002010-09-15T13:23:54.788+01:00BSCI - Manipulating Routing Updates - Route-map permissionsWhen compiling a Route-map(RM), you set an access control list (ACL) then use the Route-map to match addresses set out in that ACL to apply your chosen criteria in the Set field of the Route-map.<br />
<br />
Now the question is given the combination of permit or deny statements in the ACL and the permit or deny statement of the Route-map what is the out come for a packet.<br />
<br />
The following is what happens to a given packet when the permit or deny statements are considered:<br />
<br />
ACL = Permit<br />
RM= Permit<br />
Result = Packet Permitted to proceed via the route-map. That's to say the packet is permitted to be permitted.<br />
<br />
ACL = Deny<br />
RM = Permit<br />
Result = Packet Denied. The packet is denied from being permitted.<br />
<br />
ACL = Permit<br />
RM = Deny<br />
Result = Packet Denied. The packet is permitted to be denied.<br />
<br />
ACL = Deny<br />
RM = Deny<br />
Result = Packet PERMITTED. The packet is denied from being denied. If it isn't allowed to be denied, it must, therefore, be permitted.<br />
<br />
Bit of a weird one to get your head round but it's an obvious trick to chuck in there when you're under pressure so keep an eye out.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com1tag:blogger.com,1999:blog-5805025304443096470.post-39556549285051995442010-09-14T20:22:00.000+01:002010-09-14T20:22:56.653+01:00BSCI - IPv6 - IP address typesThe following is a list of IPv6 address types. The high order bits are displayed and their function:<br />
<br />
i) 001 = Global - 200<br />
ii) 1111 1111 = Multicast - FF<br />
iii) 1111 1110 11 = Site Local - FEC0<br />
iv) 1111 1110 10 = Link Local - FE80<br />
v) ::X:X:X:X = IPv4 compatible address, where the first 96 bits are set to 0 (hence the ::) and the remaining 32 bits are converted to hex from the IPv4 address<br />
<br />
Other addresses include:<br />
::1 or 0:0:0:0:0:0:0:1 = Loopback<br />
::/128 = unspecified address which is essentially the DFG for IPv6, all the bits are set to 0.<br />
IPv6 private addresses start - 1111 1110 1 - therefore both site local and link local are privatejdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-71028152018319576382010-09-14T14:28:00.000+01:002010-09-14T14:28:17.672+01:00BSCI - EIGRP - Adjacency RequirementsThe following criteria need to be meet before an EIGRP adjacency will form:<br />
i) Authentication (if in place)<br />
ii) AS Number<br />
iii) Source IP MUST be the primary address for the interface - secondary IP's will not result in the adjacency forming<br />
iv) K values must match<br />
<br />
N.B. - Timers do not have to match but they must be equal.<br />
- Adjacency will flap if timers are mismatched.<br />
- Therefore ensure you have a reliable time source.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com2tag:blogger.com,1999:blog-5805025304443096470.post-32879021718010996442010-09-14T11:56:00.001+01:002010-09-14T11:58:32.023+01:00BSCI - ISIS - Adjacency requirementsFor an ISIS adjacency to come up the following criteria must match:<br />
i) MTU - default is 1497<br />
ii) Router Levels - L1, L1/L2, L2 only<br />
iii) If L1 router, the IS must be in the same area<br />
iv) System ID's must be unique<br />
v) Authentication (if used)<br />
<br />
Adjacency is formed after a 3-way handshake. The stages are DOWN - INIT- UP<br />
<br />
The adjacency is up if the neighbor has put you identity in their hello packet.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-2764692659307171432010-09-14T11:31:00.000+01:002010-09-14T11:31:01.196+01:00BSCI - ISIS - Show commandsThe following show commands can be used for ISIS:<br />
<br />
#sh ip protocols<br />
-Displays: active interfaces, routing information sources (neighbors), whether summarisation is in effect, last update<br />
<br />
#sh clns protocols<br />
-Displays: System ID, ISIS router type (L1| L1/L2| L2), Area IS, active interfaces<br />
<br />
#sh clns neighbor<br />
-Displays: Single Line summary of neighbors, system id NAMES, SNPA, State (Up or Down), hold time, router type, protocol<br />
<br />
#sh clns neighbor detail<br />
- Displays: multi-line details of neighbors, neighbor info, Area ID, up time, ip of neighbor<br />
<br />
#sh isis database<br />
-Displays: L1/L2 routers you see 2 Db's, * indicates the DIS (which is elected either via the interface cmd #isis priority [number] or is a priority is not set the DIS is the device with the highest SNPA which in this case it the Ethernet MAC address on the router)<br />
<br />
#sh isis topology<br />
- Displays: system, metric, next-hop, egress interface to get to next-hop, SNPA of next-hop routerjdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-35726955464328283662010-09-12T21:04:00.001+01:002010-09-12T21:06:10.912+01:00BSCI - Creating/Converting addresses<span class="Apple-style-span" style="font-family: inherit;">One easy way to pick up marks in the BSCI exam is to practise creating or converting addresses in one format to another, quickly.</span><br />
<span class="Apple-style-span" style="font-family: inherit;"><br />
</span><br />
<span class="Apple-style-span" style="font-family: inherit;">So far I've spotted 4 situations where you would be asked to identify suitable converted addresses for a given address.</span><br />
<span class="Apple-style-span" style="font-family: inherit;"><br />
</span><br />
<span class="Apple-style-span" style="font-family: inherit;">These are:</span><br />
<span class="Apple-style-span" style="font-family: inherit;">1) Identify the correct Multicast MAC address for a given Multicast IP addresses</span><br />
<span class="Apple-style-span" style="font-family: inherit;">- Multicast MAC addresses always start 01-00-5e. You need to find the last 23 bits to add to these first 25 bits to create a 48bit MAC.</span><br />
<span class="Apple-style-span" style="font-family: inherit;">- Take you Multicast IP and convert to binary</span><br />
<span class="Apple-style-span" style="font-family: inherit;">- section off the last 23 bits starting from the RIGHT in to 4 bit sections. the last section will contain only 3 bits so to get a Hex figure for this just tack a 0 on to the start of it. </span><br />
<span class="Apple-style-span" style="font-family: inherit;">- Next convert your binary to Hex</span><br />
<span class="Apple-style-span" style="font-family: inherit;">- Finally add these to the 01-00-5e to get your Multicast MAC</span><br />
<span class="Apple-style-span" style="font-family: inherit;">e.g - 224.90.17.43</span><br />
<span class="Apple-style-span" style="font-family: inherit;">Binary = 11100000.0 101 1010. 0001 0001 0010 1011</span><br />
<span class="Apple-style-span" style="font-family: inherit;">Hex - | 5 | A | 1 | 1 | 2 | B</span><br />
<span class="Apple-style-span" style="font-family: inherit;">MAC = 01-00-5e-5a-11-2b</span><br />
<span class="Apple-style-span" style="font-family: inherit;"><br />
</span><br />
<span class="Apple-style-span" style="font-family: inherit;">2) When regarding IPv6 6to4 tunnels, identify a suitable IPv6 address for a given IPv4 address that is assigned to a physical interface.</span><br />
<span class="Apple-style-span" style="font-family: inherit;">- </span><span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"> </span></span><span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">Using a Global address you know 2 things A) the high order bits always start 001 = 2000::/3 and generally end with 0001 in the first 16bits and B) a Global prefix is 48 bits long ( or /48). With this in mind you know your first 16 bits, 0010 0000 0000 0001: X:X:X:X:X:X:X, so you are looking for the remaining 32 bits to form the address</span></span><br />
<span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- </span></span><span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">Copy out into binary the IPv4 address of the physical interface the tunnel will be associated with then convert it to hex, e.g.) 192.168.99.1</span></span><br />
<span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"> 1100 0000. 1010 1000. 0110 0011. 0000 0001</span></span><span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"><br />
</span></span><span class="Apple-style-span" style="color: #333333; line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"> c 0 a 8 6 3 0 1</span></span><br />
<div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- Combine this with your first 16 bits and you have your Global IPv6 to apply to your tunnel interface<br />
2001:c0a8:6301::/48</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"><br />
</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">3) Given the ASN 5662 what would a suitable GLOP address be.</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- For this type of question you know that the 1st octet is always 233 and you can choose what the last octet can be (1-255) so you need to calculate the 2nd and 3rd octet values.</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- Take the ASN 5662</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">-Convert it to binary and pad the left of the binary figure with zero's until you have 16 bits (octets 2 and 3 combined) -</span><i><span class="Apple-style-span" style="font-family: inherit;">000</span></i><span class="Apple-style-span" style="font-family: inherit;">1011000011110</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- Divide the 16 bits in 2 and you are left with 2 octets (8bits each)</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- convert these to decimal - 00010110 = 22, 00011110 = 30 and add to you GLOP address starting 233.X.X.X</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- GLOP addresses always have /24 subnet mask because the implementer can select 255 addresses to be assigned locally. As a result in this example the GLOP address will be 233.22.30.XXX/24</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"><br />
</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">4) Finally there is the question that asked you about subnetting. Be it a host is not communicating (it has the wrong subnet mask), Which path would the router select (you need to work out the correct Network in a routing table for a given IP), will a packet be permitted or denied in the ACL (again you need to work out if your IP is with the range permitted or denied with in the subnet mask stated) </span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- For all these types of questions you are looking at basic subnetting. Aim to get these calculations down to less the 20 SECONDS. </span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- Imagine a slide ruler in your head. Slide it to the where the subnet mask stops and bang, you have your subnet increments. From here you know the Network address, 1st host in the subnet, last host in the subnet, broadcast address for the subnet, and the next network address.</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">- Practise this over and over until you can see in your head the octet with the bit values and where you stop for each subnet.</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;"><br />
</span></span></span></div><div><span class="Apple-style-span" style="color: #333333;"><span class="Apple-style-span" style="line-height: 19px;"><span class="Apple-style-span" style="font-family: inherit;">If you can get each of the situations above nailed, and nailed quickly you can buy time on the harder questions. Practice, practice, and practice again.</span></span></span></div><div><span class="Apple-style-span" style="color: #333333; font-family: Verdana, sans-serif; font-size: small;"><span class="Apple-style-span" style="font-size: 13px; line-height: 19px;"><br />
</span></span></div>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-15682810821248623502010-09-12T20:24:00.003+01:002010-09-12T20:25:58.110+01:00BSCI - Multicast - Address scopesMulticast uses a reserved Class D with the first 4 high order bits in the 1st octet assigned 1110.<br />
<br />
Therefore you can work out that the address range assigned for Multicast is 224.0.0.0 to 239.255.255.255<br />
<br />
<u>IANA then broke the address scope down further:</u><br />
1) <u>Locally Scoped, Reserved Link Local, addresses:</u><br />
224.0.0.0 to 224.0.0.255<br />
This range is the IANA 'well known' multicast range which includes your addresses for EIGRP (224.0.0.10), OSPF (224.0.0.5 and 224.0.0.6) RIPv2 (224.0.0.9) PIMv2 (224.0.0.13)<br />
<br />
2) <u>Globally Scoped addresses:</u> - 224.0.1.0 to 238.255.255.255<br />
-These can be allocated dynamically across the internet<br />
-GLOP addresses fall into this scope (233.0.0.0/8)<br />
-224.2.X.X was allocated to the 'MBone' or Multicast Backbone which is now a defunct technology due to little uptake by large institutions and the resources required by the equipment to manage the multicast traffic.<br />
<br />
3) <u>Limited (administratively) scoped addresses:</u> - 239.0.0.0 to 239.255.255.255<br />
- Reserved for inside corporate networks, similar to private IP's<br />
- Organisations can use limited scoped addresses for local multicast apps<br />
<br />
This range was further subdivided in to:<br />
239.192.0.0 to 239.251.255.255<br />
- Organisation wide scoped addresses<br />
<br />
239.255.0.0/16 - site local address.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-59930108497039603482010-09-12T19:54:00.001+01:002010-09-12T20:09:54.086+01:00BSCI - Multicast - GLOP addressesThe GLOP address range, (pronounced GLOP not G-L-O-P), was originally specified in RFC2770 and was an experimental, public, statically assigned multicast address for publishers and ISP's to source content on the internet.<br />
<br />
The method of assigning one of these experimental address was called GLOP. Implementers were assigned 255 addresses from the 233.0.0.0/8 subnet. The actual address assigned was determined from the ASN the implementer already used.<br />
<br />
The address assigned set out the values of the 2nd and 3rd octet of the GLOP address. That is to say, all GLOP addresses start 233 (octet #1), the you had octet #2 and #3 to allocate, and finally you knew you had 255 addresses to choose from so the 4th octet was always a value of your choice 1-255.<br />
<br />
Octet 2 and Octet 3 were determined by a calculation involving the ASN already assigned to the implementer and therefore, in theory, the GLOP address that resulted was unique (i.e. - not allocated to another organisation).<br />
<br />
To determine the value of octet #2 and octet #3 do the following: (example taken from RFC2770)<br />
i)Take the ASN 5662<br />
ii)Convert it to binary and pad the left of the binary figure with zero's until you have 16 bits (octets 2 and 3 combined) - <i>000</i>1011000011110<br />
iii)Divide the 16 bits in 2 and you are left with 2 octets (8bits each)<br />
iv) convert these to decimal - 00010110 = 22, 00011110 = 30 and add to you GLOP address starting 233.X.X.X<br />
v) GLOP addresses always have /24 subnet mask because the implementer can select 255 addresses to be assigned locally. As a result in this example the GLOP address will be 233.22.30.XXX/24<br />
<br />
Further reading:<br />
<a href="http://www.faqs.org/rfcs/rfc2770.html">http://www.faqs.org/rfcs/rfc2770.html</a>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-9485544660672677872010-09-10T21:11:00.000+01:002010-09-10T21:11:01.682+01:00BSCI - Manipulating Routing Updates - Private IP address scopesRC 1918 states that IANA has assigned the following ranges to be 'Private'<br />
<br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px; color: #2e2c2c; font-family: Georgia, 'Times New Roman', Times, serif; font-size: 15px; line-height: 22px;"></span><br />
<pre>10.0.0.0 - 10.255.255.255 (10/8 prefix)</pre><pre>172.16.0.0 - 172.31.255.255 (172.16/12 prefix)</pre><pre>192.168.0.0 - 192.168.255.255 (192.168/16 prefix)</pre>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-65268774427005261682010-09-10T21:07:00.000+01:002010-09-10T21:07:31.474+01:00BSCI - OSPF - Default Path Cost valuesThe OSPF metric is cost, which is calculated using the equation 100Mbps/Bandwidth of interface.<br />
<br />
The 100Mbps is a reference bandwidth which is applied in order to calculate the Cost of an interface. The Cost is an indication of the overhead to send packets across that link. Lower Costs are better.<br />
<br />
OSPF uses the following default metric costs for different types of interface:<br />
56K dial-up - 1785<br />
T1 (1.544Mbps serial link) - 64<br />
E1 (2.048Mbps serial link) - 48<br />
Ethernet - 10<br />
100Mb Fast Ethernet - 1<br />
1000Mb Gigabit Ethernet - 1<br />
<br />
The default OSPF Cost is used to calculate the best path. The best path is then entered in to the routing table (assuming there isn't another protocol with a better AD with the same path).<br />
<br />
In order to refine your traffic shaping you can change the reference bandwidth so that you can determine the best path when considering FE and GE links, as you'll note that the default cost is the same and there fore determining the best path between the two could result in sub-optimal routing.<br />
<br />
To change the reference bandwidth do:<br />
R1(config)#router ospf 1<br />
R1(config-router)#auto-cost reference-bandwidth [ref-bw]<br />
!where ref-bw can be a value of 1-4294967<br />
<br />
To override the default cost value that would result from the values stated above, you can manually set a cost value on an interface:<br />
R1(config)#int s0/0<br />
R1(config)#ip ospf cost [int-cost]<br />
!where int-cost is a value of 1 -65535jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-7136285066352009262010-09-10T20:13:00.002+01:002010-09-10T20:39:36.636+01:00BSCI - EIGRP - Metric WeightsWhen redistributing another routing protocol in to EIGRP you need to specify the metric weights in order to redistribute the routes correctly and efficiently.<br />
<br />
The command you need to perform redistribution is:<br />
R1(config)#router eigrp 1<br />
R1(config-router)#redistribute ospf 1 metric 1500 10 255 10 1500<br />
!<br />
<br />
Alternatively you can define a 'Seed' metric which is applied to all redistributed routes and so you don't need to specify the individual metrics each time.<br />
<br />
R1(config)#router eigrp 1<br />
R1(config-router)#default-metric 1000 100 250 100 1500<br />
R1(config-router)#redistribute ospf 1<br />
!<br />
<br />
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">The values stated above represent each of the values for the EIGRP metric:</div><div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span class="content">R1(config-router)#default-metric <em class="cArgument" style="font-weight: normal;">bandwidth delay reliability loading mtu </em></span></div><br />
In both of the examples above you are manually setting out the metric for the routes once they are redistributed in to EIGRP.<br />
<br />
If you fail to set either a default metric or a specific metric in your redistribute command then EIGRP will assign a metric of 'infinity' and the routes will fail. So if you end up scratching you head wondering why your desired routes don't appear in the routing table take a look at your metrics.<br />
<br />
The metric set out above represent the K-values for each of the criteria that make up the EIGRP Metric. The K values are:<br />
i) <u>Bandwidth (K1)</u> - Minimum bandwidth along the path in Kbps. This is a value of 1 - 4294967295<br />
ii) <u>Load (K2)</u> - Used as a way of managing traffic off heavily used links. Value is 0 to 255 where 255 equals is 100% utilisation of the available bandwidth<br />
iii) <u>Delay (K3)</u> - Latency of the path in 10's of Microseconds. This is a value of 1 - 4294967295<br />
iv) <u>Reliability (K4)</u> - A value representing how likely the path is to be available or fail. Value is between 0 and 255, with 255 equalling 100% reliable.<br />
v) <u>MTU (K5)</u>- Used to set a path MTU for a given route. Value is 1 - 65535jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-58294849823337606692010-09-10T11:10:00.001+01:002010-09-10T11:11:16.047+01:00BSCI - OSPF - NBMA network types review<div class="separator" style="clear: both; text-align: left;">One of the things I have trouble with is remembering the different characteristic's of each of the OSPF network types.</div><div class="separator" style="clear: both; text-align: left;"><br />
</div><div class="separator" style="clear: both; text-align: left;">Below is a chart simply highlighting each point.</div><div class="separator" style="clear: both; text-align: left;"><br />
</div><div class="separator" style="clear: both; text-align: left;">For configuring each network type please refer to my earlier posts.</div><div class="separator" style="clear: both; text-align: left;"><br />
</div><div class="separator" style="clear: both; text-align: left;">Cheers</div><div class="separator" style="clear: both; text-align: left;"><br />
</div><div class="separator" style="clear: both; text-align: left;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMPL4Ool0yOuvOOWgcrP3BX4bvHzVlNvIVSZCG79P7D7mU6D6rvyt5OFVARnKOAho-F2wN25NnHEjcMTQuk3M0UK24xd3TUMOAyJQJndaR9b2e7Llg8UKhUSu9Pbymj0jW-WjVJmpzrflX/s1600/OSPFNetworkTypes.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="236" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMPL4Ool0yOuvOOWgcrP3BX4bvHzVlNvIVSZCG79P7D7mU6D6rvyt5OFVARnKOAho-F2wN25NnHEjcMTQuk3M0UK24xd3TUMOAyJQJndaR9b2e7Llg8UKhUSu9Pbymj0jW-WjVJmpzrflX/s400/OSPFNetworkTypes.jpg" width="400" /></a></div><br />
<div class="separator" style="clear: both; text-align: center;"></div><br />
<span class="Apple-style-span" style="font-family: Arial; font-size: small;"></span><br />
<col style="font-size: 13px; width: 151pt;" width="201"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 24pt;" width="32"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 25pt;" width="33"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 23pt;" width="31"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 25pt;" width="33"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col span="2" style="font-size: 13px; width: 26pt;" width="34"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 100pt;" width="133"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><col style="font-size: 13px; width: 80pt;" width="106"></col><span class="Apple-style-span" style="font-size: 13px;"> </span><br />
<br />
<tr height="17" style="font-size: 13px; height: 12.75pt;"> <td class="xl25" colspan="2" height="17" style="height: 12.75pt; mso-ignore: colspan; width: 175pt;" width="233"><br />
</td><td style="width: 25pt;" width="33"><br />
</td><td style="width: 23pt;" width="31"><br />
</td><td style="width: 25pt;" width="33"><br />
</td><td style="width: 26pt;" width="34"><br />
</td><td style="width: 26pt;" width="34"><br />
</td><td style="width: 100pt;" width="133"><br />
</td><td style="width: 80pt;" width="106"><br />
</td></tr>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com1tag:blogger.com,1999:blog-5805025304443096470.post-3546810149112960882010-09-08T19:54:00.001+01:002010-09-08T19:58:12.577+01:00BSCI - BGP - Neighbor States NotesIf a router stays in an IDLE condition check:<br />
i) If the neighbor announces the route in it's local IGP<br />
ii) Verify you have not entered an incorrect IP in your neighbor statements<br />
<br />
If a router enters or remains in ACTIVE state it could be because:<br />
i) Neighbor doesn't have a route to the source IP of the BGP Open packet generated by the router - check the routing table on the neighbor and add a suitable route via a static entry or an IGP if one is missing.<br />
ii) The neighbor is peering with the wrong address - check neighbor statements via #sh run<br />
iii) The neighbor doesn't have a neighbor statement for this router - add one!<br />
iv)The AS number in the neighbor statement is misconfigured on one or both peers. - check the neighbor statements for a mis-typed Remote-AS entry.jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-55132820046606394342010-09-08T19:46:00.000+01:002010-09-08T19:46:50.546+01:00BSCI - BGP - Neighbor StatesWhen establishing neighbor sessions, BGP transitions through a number of states. These are:<br />
<br />
<ol><li><u><b>IDLE</b></u> - router is searching routing table to see whether a route exists to the neighbor*</li>
<li><u><b>CONNECT</b></u> - Router found a route to the neighbor and 3 way TCP handshake is complete</li>
<li><u><b>Open Sent</b></u> - Open msg with parameters for BGP session is sent</li>
<li><u><b>Open Confirm</b></u> - Router received an agreement on the parameters to establish a session. Alternatively, the router enters <u><b>ACTIVE</b></u> state is not responds is received to the Open Sent msg</li>
<li><u><b>ESTABLISHED</b></u> - peering established, routing begins.</li>
</ol><div>To view this activity you can use the debug options to see the process in action.</div><div><br />
</div><div><u><b>Configuration</b></u>:</div><div>R1#debug ip bgp all</div><div>!</div><div>R1#debug ip bgp events</div><div>!</div><div><br />
</div><div>Remember, a debug is processor intensive so remove the debug once you are finished:</div><div>R1#undebug all </div><div>OR</div><div>R1#u all </div><div>!</div><div><br />
</div><div><span class="Apple-style-span" style="font-size: x-small;">*I can't remember if I've already stated this but in the UK the word is spelt NEIGHBOUR. For consistency with Cisco IOS commands I'm spelling it NEIGHBOR when I need to use the word. Thought I'd just clarify that as I'm not some dumb ass that can't spel. ...erm...</span></div><div><br />
</div>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-56948318335317249412010-09-08T19:32:00.000+01:002010-09-08T19:32:47.365+01:00BSCI - BGP - Message TypesAs with all routing protocols there are a number of different messages types with differing duties/purposes.<br />
<br />
For BGP we have:<br />
<br />
<ol><li><u><b>OPEN</b></u> - Includes BGP version number, AS number (ASN), Hold Time, BGP router-id, other optional parameters such as Authentication criteria</li>
<li><u><b>Keepalives</b></u> - Exchanged to prevent the hold time expiring, where hold time is 0 keepalives are not sent. Keepalives are sent every 60seconds</li>
<li><b><u>UPDATE </u></b>- information on 1 path only. Multiple paths require multiple update messages. All attributes in an update refer to the path. This includes - Withdrawn routes, Path attributes, Network Layer Reachability (list of ip prefixes reachable via the path)</li>
<li><u><b>Notification Messages</b></u> - sent due to error condition being met. BGP connection is closed immediately after one of these is sent.</li>
</ol>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-84749459342032619422010-09-07T11:17:00.000+01:002010-09-07T11:17:35.458+01:00BSCI - BGP - SynchronisationSynchronisation rule states that a BGP router can not advertise an external neighbor destination from iBGP peers unless that route is also known via an IGP (such as EIGRP, OSPF, RIPv2 etc.)<br />
<br />
The thinking behind this is that in the event that a router along the path to the destination is not running BGP then you don't end up with a black hole with packets getting dropped. The IGP has a route the the destination so a path will still exist.<br />
<br />
By default, Synchronisation is switched off in Cisco IOS an and there fore BGP can advertise a route without it first being advertised by an IGP.<br />
<br />
There are 2 situations when you can safely switch off synchronisation:<br />
<br />
<ul><li>When you have a fully meshed iBGP topology - resulting in the destination being reached with the need of an IGP</li>
<li>When the AS is NOT an transit AS - where all destination networks are within the AS and accessible due to you having a full mesh iBGP topology.</li>
</ul><div>Configuration:</div><div>R1(config)#router bgp 123</div><div>R1(config-router)#synchronization</div><div>!</div><div>!This turns on synchronisation (which is disabled by default)</div><div><br />
</div><div>R1(config)#router bgp 123</div><div>R1(config-router)#no synchronization</div><div>!</div><div>!This turns off synchronisation</div><div><br />
</div>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-82364196386941475712010-08-31T21:35:00.000+01:002010-08-31T21:35:27.914+01:00BSCI - Manipulating Routing updatesSo, this evening I've been battling Distribution lists and the appropriate application of them and for some reason I just couldn't get that external EIGRP route to be filtered out when redistributing in to OSPF.<br />
<br />
After a bit of reading around I've figured out I was approaching it from the wrong end. Assume you have R1, R2, and R3. R1 is running EIGRP, R2 is performing redistribution in to EIGRP and OSPF, and OSPF is running on R3.<br />
<br />
My error was that I was working on R2 and wondering why it was that I had configured my access-list to deny my chosen route, applied the cmd - #distribution-list 1 out ospf 1 within the #router ospf 1 process, and nothing had happened. <br />
<br />
The problem I was encountering was that in order for OSPF to properly calculate the shortest path, all the Link-State Databases through out your area must be synchronised. As such you can't simply deny your chosen network on the redistributing router as the network would not then be in synch.<br />
<br />
The solution was to log on to R3, the router I wanted to have the route filtered from. Create the access list to deny the chosen route (then permit any - remember the implicite deny that would otherwise take affect). I then entered #distribution-list 1 in, from within the ospf routing process and job done! My desired route if filtered out and the rest remain.<br />
<br />
Configuration:<br />
R3(config)#access-list 4 deny 172.16.4.0 0.0.0.255<br />
R3(config)#access-list 4 permit any<br />
!<br />
R3(config)#router ospf 1<br />
R3(config-router)#network 10.10.0.0 0.0.255.255 area 0<br />
R3(config-router)#network 192.168.12.0 0.0.0.255 area 0<br />
R3(config-router)# distribute-list 4 in<br />
!jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com1tag:blogger.com,1999:blog-5805025304443096470.post-21405356864348807702010-08-31T10:04:00.000+01:002010-08-31T10:04:58.465+01:00BSCI - Routing Protocol Metrics<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Continuing the theme of grouping together common attributes/characteristics (see my posts on Summarisation and Authentication), in this article I'm going to set out the Metric for each routing protocol tested on the BSCI.</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span><br />
<b><u><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">RIPv2</span></u></b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"> : Distance Vector protocol</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric = Hop count, 1-15, with 16 being 'infinity' or unreachable</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span><br />
<u><b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">EIGRP</span></b></u><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">: Advanced Distance Vector protocol</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric = Calculation based on Bandwidth (K1), Load(K2), Delay(K3), Reliability(K4), MTU (K5) although MTU is tracked through the path to find the smallest MTU - it is NOT used in the metric calculation.</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Calculation is: </span><span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric = 256*([K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">1</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">*Bw + K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">2</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">*Bw/(256-Load) + K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">3</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">*Delay]*[K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">5</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">/(Reliability + K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">4</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">)])</span></b></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span></b></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Where:</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"> </span><b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">[K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">5</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">/(Reliability + K</span><sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: medium;">4</span></span></sub><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">)]</span></b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"> is disregarded if K5 = 0</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Default K-values in use are K1 and K3 therefore is you use the default settings the default metric is based on Bandwidth and Delay.</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><b><u><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">OSPF</span></u></b><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">: Link-State routing protocol</span></span><br />
<span class="Apple-style-span" style="-webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric = Cost where cost is calculated by - </span></span><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">cost= 10000 0000/bandwith in bps</span><br />
<br />
<ul><li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">The Cost is an indication of the overhead required to send a packet over a specified interface. </span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Cost is inversely affected by the bandwidth, the greater the bandwidth the lower the cost</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">The Cost of the outbound interface is used</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">To change the Cost of a given interface and therefore influence path selection you apply the command #ip ospf cost [cost value] to the outbound interface concerned</span></li>
</ul><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><u><b>IS-IS</b></u>: Link-State routing protocol</span><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric = Arbitrary value between 0 -63, you decide what it means. Default value is 10</span><br />
<br />
<ul><li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">To fine tune IS-IS you manually assign a metric value to each interface configured for IS-IS</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Similar to the OSPF bandwidth</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">use the cmd #isis metric [metric] [level1| level2] to change the metric and assign it the appropriate routing level.</span></li>
</ul><div><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><u><b>BGP</b></u>: Distance Vector exterior routing protocol</span></div><div><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Metric - is the Multi-Exit Discriminator value.</span></div><div><ul><li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">the Lower the MED the better</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Used to decided how to enter an AS</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Default is 0</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Optional, Non-transitive</span></li>
<li><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;">Usually only shared between 2 AS's that have multiple eBGP connections with each other</span></li>
</ul><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span></div><div><span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif;"><br />
</span></div><br />
<span class="Apple-style-span" style="font-family: Arial, Helvetica, sans-serif; font-size: 13px;"><br />
</span>jdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0tag:blogger.com,1999:blog-5805025304443096470.post-59699644092186138442010-08-30T21:51:00.000+01:002010-08-30T21:51:13.334+01:00BSCI - Manipulating Routing Updates - Routing Table CodesI got caught out during some practice questions on routing table codes. So I thought it might be an idea to list the out put from #sh ip route and just set down what they are.<br />
<br />
Simple question to nail - given the codes [X, Y, Z] which is the least trust worthy. I should have had this down from my CCNA but there you are. You need to first understand what the code is, then cross reference it with a suitable Administrative Distance. (Check my Charts and Table page above if you're unsure of the AD for a given protocol)<br />
<br />
<u><b>Protocol code:</b></u><br />
<br />
C - connected,<br />
S - static,<br />
R - RIP,<br />
M - mobile<br />
B - BGP<br />
D - EIGRP,<br />
EX - EIGRP external,<br />
O - OSPF,<br />
IA - OSPF inter area<br />
N1 - OSPF NSSA external type 1,<br />
N2 - OSPF NSSA external type 2<br />
E1 - OSPF external type 1,<br />
E2 - OSPF external type 2<br />
i - IS-IS,<br />
su - IS-IS summary,<br />
L1 - IS-IS level-1,<br />
L2 - IS-IS level-2<br />
ia - IS-IS inter area,<br />
* - candidate default,<br />
U - per-user static route<br />
o - ODR,<br />
P - periodic downloaded static routejdsparkhttp://www.blogger.com/profile/01919469994529559140noreply@blogger.com0