Campus Architectures
|
|
- Aileen Townsend
- 5 years ago
- Views:
Transcription
1 Campus Architectures Designing Campus Networks 2
2 Objective Learn how to design and implement Scalable Campus Networks Update on New Campus Technologies (10/100/1000, 10ge, Routing in the Access) Session Objective: This is a Level 2 Session focusing on the Cisco Multilayer design model for Campus Networks; it will cover Best Practices, Implementation specifics and Common design pitfalls A working understanding of common LAN Switching and routing protocols is assumed; for more background information, please see: 3 Agenda Multilayer Campus Design Understanding Campus Topologies and Design Alternatives Foundation Services Design Pitfalls 4
3 Multilayer Network Design Access Distribution Core Access Layer 3 Capabilities (ACL s, QoS, etc) Layer 2 Capabilities (advanced STP features, PVST+, Rapid PVST+) Convergence Features: Conditional Trust Boundary, Inline Power, Voice VLANS Capable of supporting an advanced IGP (EIGRP, OSPF) High Availability Distribution Layer 3 Switching, Advanced IGP (EIGRP, OSPF) Utilizes IGP for benefits such as load balancing, fast convergence and scalability Provide first-hop redundancy/resilience Aggregates the Access Layer elements Distribution Access Core Layer 3 Switching in the backbone for load balancing, fast convergence and scalability Requires high speed service with no policy enforcement WAN Server Farm Internet 5 Multilayer - Hierarchical Design Offers hierarchy each layer has specific role Modular topology made out of building blocks Easier to grow, understand and troubleshoot the network Promotes load balancing and redundancy Follows consistent and deterministic traffic pattern Multilayer model is built upon a modular design 6
4 Multilayer Design Guidelines Incorporates balance of both Layer 2 and Layer 3 technology, leveraging the strength of both Utilizes IGP for benefits such as load balancing, fast convergence, scalability and control Uses Layer 3+ switching in distribution and backbone Uses Layer 2+ switching in wiring closet L3 aware wiring closet switches can enforce QoS, access control, classify traffic and extend intelligent features to access layer 7 Defining the Access Layer To Core Distribution Switches Access Switches Aggregates user end stations, IP Phones and servers Connects to distribution layer Switches All uplinks can actively forward traffic (Layer 3 distribution) Layer 2 device With Layer 3 intelligence (Security, QoS, IP Multicast etc) Use Intelligent Network Services for establishing the Trust Boundary 8
5 Access Layer Features Aggregates user end stations, IP Phones and servers Layer 2/3 device With Layer 3 intelligence (Security, QoS, IP Multicast etc) IP Telephony Feature Set: Automatic Phone Discovery, Conditional Trust Boundary, Inline Power, Auxiliary VLAN, etc Spanning Tree Protocols PVST+, and Rapid PVST+ Spanning Tree Features Portfast, UplinkFast, BackboneFast, LoopGuard, BPDUGuard, BPDUFilter, RootGuard, Intelligent Network Services Quality of Service, Traffic classification and policing, Access Control, Inline Power, Voice VLAN, Broadcast suppression, Multicast control Routing protocols like EIGRP, OSPF Access Layer Access Layer Wiring Closet Wiring Closet 9 Defining the Distribution Layer Distribution Switches Access Switches Aggregates wiring closets (Access Layer) and uplinks to Core Protects Core from high density peering Availability, Load balancing, QoS and Provisioning are the important considerations at this layer Use Layer 3 Switching in the Distribution Layer HSRP and HSRP-Tracking insure First Hop Redundancy 10
6 Distribution Layer Features Aggregates wiring closets (Access Layer) and uplinks to Core Protects Core from high density peering Availability, Load balancing, QoS and Provisioning are the important considerations at this layer Use Layer 3 Switching in the Distribution Layer HSRP and HSRP-Tracking ensure First Hop Redundancy Spanning Tree Features Setting STP Root, Root Guard Rapid PVST+ - Per VLAN 802.1w Layer 3 Routing HSRP Route summarization, fast convergence, equal cost load balancing HSRP: First hop redundancy HSRP Timers: Reduce fail-over HSRP Track: Optimal routing Distribution Layer Distribution Layer Enterprise Wiring Closet Enterprise Server Farm 11 Do I Need a Core Layer? Distribution 2 Distribution 1 No Core Near Fully Meshed Distribution Layers Aggregation point for Distribution Layer Core Layer is required to scale campus networks Physical cabling requirements Routing complexity Distribution 3 Distribution 2 Distribution 1 Dedicated Core Switches Easier to add a module Fewer links in the core Easier bandwidth upgrade Distribution 3 Routing protocol peering reduced Core Layer Optional for Small Networks 12
7 Defining the Core Layer Core Distribution Access Backbone for the network connects network building blocks Aggregation point for Distribution Layer Separate Core Layer helps in Scalability during future growth Keep the design technology-independent FastE, GigE, 10GigE, CWDM, ATM, Sonet, DPT, etc. 13 New and Emerging Technologies 10GbE & CWDM for Aggregation 10/100/1000 at the desktop 14
8 Gigabit to the Desktop What we are seeing: Today s driver for Gigabit Ethernet to the Desktop is not a single application but the simultaneous use of multiple applications Product availability from Cisco, Dell, Foundry, Extreme, 3Com with more coming soon Gig enabled PCs/Workstations (LOM) Dell, HP/Compaq, Apple, Sun, many Linux hardware manufacturers Cisco 10/100/1000 port sales +328% CY01 vs. CY02 15 Gigabit Solutions Improve the end-user experience Increased throughput with 10/100/1000 Ethernet and 10 GE interfaces Reduce wire time, buffer congestion & relieve flow control mechanisms Elimination of far-end congestion Convergence of applications at the desktop requires increased throughput end-to-end Gigabit to the Desktop (GTTD) End-to-end Intelligent Network Services: QoS, Security, High Availability, Manageability 16
9 Network Response Improvements Intuitive but look it s faster - 10/100/ hours of network time at 10mbps 47 minutes of network time at 100mbps 27 minutes of network time at 1000mbps At gig speed we spend 88% less time on the network than 10mbps and 44% less than 100mbps Over All Time in minutes 17 Network Response Improvements Intuitive but look it s faster - 10/100/ hours of network time at 10mbps 47 minutes of network time at 100mbps 27 minutes of network time at 1000mbps At gig speed we spend 88% less time on the network than 10mbps and 44% less than 100mbps M File Transfer Clarify Ariba Outlook GB Backup Time in Seconds 18
10 Gigabit Intelligent Campus Network Design Access Distribution Gigabit Ethernet Gigabit EtherChannel Gigabit EtherChannel 10 Gigabit Ethernet 10 Gigabit Ethernet 10 Gigabit EtherChannel QoS trust-boundary Rate-limiting Port-security ACLs STP Extensions Identity (802.1x) High Availability Core Distribution Access Throughput High Availability IP Services Rate-limiting ACLs High Availability IP Services STP Extensions CWDM GBIC Data Center Internet Firewall Services VPN/IPSec Services Intrusion Detection Load Balancing SSL Offload 19 Agenda Multilayer Campus Design Understanding Campus Topologies and Design Alternatives Foundation Services Design Pitfalls 20
11 Understanding Campus Topologies and Design Alternatives Cisco Traditional Design Advantages Design Caveats Adding in some Spanning VLANS Advantages Design Caveats Adding RSTP / Rapid PVSTP Advantages Design Caveats Routing in the Wiring Access Advantages Expensive Routing Convergence Design Caveats 21 Campus Design Best Practices Map Layer 2 VLANs to Layer 3 IP Subnets Avoid Campus Wide VLANs Design a Campus with Layer 3 Protocols Daisy chaining dangers Take advantage of equal cost routes Leave escape routes Oversubscription and performance implications 22
12 Map Layer 2 VLANs to Layer 3 Subnets HSRP Active VLAN 20,140 Layer 3 HSRP Active VLAN 40,120 HSRP Active & STP Root VLAN 20,140 Layer 2 Trunk HSRP Active & STP Root VLAN 40,120 Model A Model B VLAN 20 Data VLAN 120 Voice VLAN 40 Data VLAN 140 Voice VLAN 20 Data VLAN 120 Voice VLAN 40 Data VLAN 140 Voice Map Layer 2 domain to a Layer 3 subnet with an understandable VLAN to IP Subnet numbering scheme For example, Data VLAN 20 and Voice VLAN 120 in Building 1 can correspond to x/24 and x/24 Good addressing scheme helps summarizing routes and eases troubleshooting 23 Avoid Campus-Wide VLANs Large and overlapping Spanning Tree domain Propagates problems (potential failure domain) Slows convergence Modern routers are not network bottlenecks DHCP and Mobile IP address Client Mobility 24
13 Keep L2 Redundancy Simple If Some Redundancy Is Good, More Redundancy Is NOT Better Root placement? How many blocked links? Convergence? Complex fault resolution 25 L2 Daisy Chaining Backup Root VLAN X STP Root HSRP Active Layer 2 Link VLAN X Standby Root HSRP Standby STP Root HSRP Active No UplinkFast Slow STP convergence Discontinuous subnets: Traffic is black holed (both routers claim they can reach VLAN x) Install Layer 2 link between the two distribution switches 26
14 Layer 3 Dual-Path Core 1 Distribution 1 Cost=X Cost=X Cost=X Access Layer Cost=X Core 2 Distribution 2 Layer 3 load balancing preserves bandwidth Unlike L1 and L2 redundancy (blocked ports) Fast recovery to remaining path Convergence is extremely fast (dual equal-cost paths: no need for OSPF or EIGRP to recalculate a new path) 27 Leave Escape Routes What happens if No route to the core anymore? fails? Access L2 A B Un-passive wiring closet links for backup routes? GE/GEC But is this really what the access layer is for? No it is not. Distribution What about scalability? No it will not scale. Single Path to Core Install a Link between Distribution Layer Core L3 28
15 Understand Performance and Oversubscription Characteristics Most networks are built with Oversubscription Performance usually limited not by the box but by the uplink Use QoS to protect real-time flows at congested points Oversubscription rules of thumb work well 20:1 max at wiring closet Less in distribution (4:1) and server farm (from 4:1 to 1:1) BaseT 20:1 GE Distribution L3 Dual-Link GEC Core L3 Use Non-Blocking Switches Access L2 8 Uplinks 4:1 29 Over Subscription 1:1, 4:1, 8:1, 20:1 designs True traffic patterns are random and bursty in nature Large data transfers happen much faster minimizing traffic overlap and congestion eg. 9 seconds vs 85 seconds for 1 GbE v 100GbE Most mission-critical business applications and most Web transactions use TCP TCP is adaptive, rate based, and connectionoriented; it is a well behaved protocol especially when oversubscribed. TCP applications run as fast as they can, but gracefully back down when faced with congestion. 30
16 Passive Interfaces for IGP Limit unnecessary peering Without passive interface: 4 VLANs per wiring closet, 12 adjacencies total Memory and CPU requirements increase with no real benefit Creates overhead for IGP Distribution Access Routing Updates Router(config)#router ospf 1 Router(config-router)#passive-interface Vlan 1 Router(config)#router ospf 1 Router(config-router)#passive-interface default Router(config-router)#no passive-interface Vlan 1 Router(config)#router eigrp 1 Router(config-router)#passive-interface Vlan 1 Router(config)#router eigrp 1 Router(config-router)#passive-interface default Router(config-router)#no passive-interface Vlan 1 31 Agenda Multilayer Campus Design Understanding Campus Topologies and Design Alternatives Foundation Services Design Pitfalls 32
17 Foundation Services High Availability Route Processor Redundancy (+) HSRP/VRRP/GLBP QoS Simple Security IP Multicast Management 33 Redundancy 34
18 Redundancy Layer 1 Redundancy Provides an alternate physical path through the network Layer 2/3 Redundancy Spanning-Tree, Routing Protocol, EtherChannel for alternate path awareness and fast- convergence Stability Ensure a stable network through proper physical, STP and routing design to reduce human errors Application Availability The application server and client processes must support failover for maximum availability Platform Redundancy 35 First Hop Redundancy Protocols Hot Standby Router Protocol (HSRP) Cisco informational RFC 2281 ( March 1998) Virtual Router Redundancy Protocol (VRRP) IETF Standard RFC 2338 (April 1998) Gateway Load Balancing Protocol (GLBP) Cisco designed, load sharing, patent pending Feature Navigator provides platform specific feature support information 36
19 HSRP A group of routers function as one virtual router by sharing ONE virtual IP address and One virtual MAC address One (Active) router performs packet forwarding for local hosts The rest of the routers provide hot standby in case the active router fails Standby routers stay idle as far as packet forwarding from the client side is concerned 37 First Hop Redundancy with HSRP R1- Active, forwarding traffic; R2, R3 - hot standby, idle HSRP ACTIVE HSRP STANDBY HSRP LISTEN IP: MAC: c vip: vmac : c07ac00 IP: MAC: C78.9abc vip: vmac : IP: MAC: cde.f123 vip: vmac : R1 R2 R3 Gateway routers Clients CL1 CL2 CL3 IP: MAC: aaaa.aaaa.aa01 GW: ARP: c07.ac00 IP: MAC: aaaa.aaaa.aa02 GW: ARP: c07.ac00 IP: MAC: aaaa.aaaa.aa03 GW: ARP: c07.ac00 38
20 VRRP Very similar to HSRP A group of routers function as one virtual router by sharing ONE virtual IP address and One virtual MAC address One (master) router performs packet forwarding for local hosts The rest of the routers act as back up in case the master router fails Backup routers stay idle as far as packet forwarding from the client side is concerned 39 First Hop Redundancy with VRRP R1- Master, forwarding traffic; R2, R3 - backup VRRP ACTIVE VRRP BACKUP VRRP BACKUP IP: MAC: c vip: vmac : c07ac00 IP: MAC: C78.9abc vip: vmac : IP: MAC: cde.f123 vip: vmac : R1 R2 R3 Gateway routers Clients CL1 CL2 CL3 IP: MAC: aaaa.aaaa.aa01 GW: ARP: c07.ac00 IP: MAC: aaaa.aaaa.aa02 GW: ARP: c07.ac00 IP: MAC: aaaa.aaaa.aa03 GW: ARP: c07.ac00 40
21 HSRP While HSRP or VRRP provide gateway resiliency, standby members of the redundancy group are under utilized along with their upstream bandwidth VIP: MAC: c VMAC: c07ac00 Active VIP: MAC: c78.9abc Stand-by GW.1 GW.1 GW.1 zzzzz snore /24 41 First Hop Redundancy With Load Balancing Cisco Gateway Load Balancing Protocol (GLBP) All the benefits of HSRP plus load balancing of default gateway utilizes all available bandwidth glbp 1 ip vmac ARPs for Gets MAC vip R R2.1 ARP.2.4 Reply /24.5 glbp 1 ip vmac A B ARPs for Gets MAC
22 GLBP A group of routers function as one virtual router by sharing one virtual IP address but using multiple virtual MAC addresses for traffic forwarding Traffic is shared over multiple upstream links, improving throughput and reducing congestion when no failure state exists Allows traffic from a single common subnet to go through multiple redundant gateways using a single virtual IP address 43 First Hop Redundancy with GLBP GLBP AVG/AVF,SVF GLBP AVF,SVF GLBP AVF,SVF IP: MAC: c vip: vmac : 0007.b R1- AVG; R1, R2, R3 all forward traffic IP: MAC: C78.9abc vip: vmac : 0007.b IP: MAC: cde.f123 vip: vmac : 0007.b R1 R2 R3 Gateway routers Clients CL1 CL2 CL3 IP: MAC: aaaa.aaaa.aa01 GW: ARP: 0007.B IP: MAC: aaaa.aaaa.aa02 GW: ARP: 0007.B IP: MAC: aaaa.aaaa.aa03 GW: ARP: 0007.B
23 HSRP Tracking Avoids Black Holes Tracked Core 0/1 Layer 3 Distribution Access Failure of Uplink to Core and Layer 3 link will black hole traffic Use HSRP Tracking with Preempt option 45 Spanning Tree Toolkit PortFast: Bypass listening-learning phase for Access Port UplinkFast: 3 to 5 seconds convergence after link failure BackboneFast: Cuts convergence time by Max_Age for indirect failure LoopGuard: Prevents alternate or root port to become designated in absence of BPDUs RootGuard: Prevents external switches from becoming root BPDU Guard: Disable PortFast enabled port if a BPDU is received BPDU Filter: Do not send BPDUs on PortFast enabled Ports Root F F Distribution Switches F X B F F Wiring Closet Switch 46
24 Spanning Tree Purpose: Ensure a loop-free topology and provide backup links when there are redundant paths in the network A B 47 Demystifying D: MAC Bridges (Spanning Tree Protocol) 802.1w: Rapid Spanning Tree Protocol (RSTP) 802.1s: Multiple Spanning Tree Protocol (MST) 802.1t: 802.1d Maintenance 802.1Q: VLAN Tagging (trunking) 48
25 802.1D Defaults 802.1D was designed with conservative logic Ports exchange only BPDUs for first 30 seconds after linkup to avoid loops downside Slow convergence Blocking LinkUp 20 seconds (max-age) Listening 802.1D (STP) 15 seconds (fwd-delay) Learning State Transition 15 seconds Forwarding Hello Time between sending BPDUs by Root (2 Sec) Forward delay Duration of listening and learning state (15 Sec) Maximum age Time BPDU stores (20 sec) D (STP) 802.1D is a timer-based aging protocol Event #1 New node Default is 30 seconds for STP to ensure loop-free connection Root F F 3 F F Event #2 Uplink failure 2 Default is 30 seconds for STP to find alternate path F X B Event #3 Indirect failure Default is 50 seconds for STP to find alternate path 1 50
26 802.1w (RSTP) Purpose: Still a loop prevention protocol like 802.1D but offers very fast convergence because it s not timer-based Root Event #1 New node 1 second for RSTP to ensure loop-free connection Event #2 Uplink failure 1 second for RSTP to find alternate path Event #3 Indirect failure 1 second for RSTP to find alternate path 1 F F F 3 2 X B F F w highlights New port roles and port states New BPDU format and processing New bridge-bridge handshake for rapid transition Built-in Cisco s 802.1D extensions like Backbonefast, Uplinkfast and Portfast Different topology change notification scheme Compatible with 802.1D running bridges Computes same final topology like 802.1D IEEE standard 52
27 802.1s (MST) Purpose: Allows VLANs to share a spanning tree instance (active topology) Only 2 unique topologies PVST (Per VLAN STP) MST More bandwidth and CPU resources consumed to maintain 4 active topologies VLANs mapped to one of the two topologies Saves bandwidth and CPU resources Simpler implementation and troubleshooting B B VLAN 10 VLAN 20 VLAN 30 VLAN 40 B B B:Blocking 53 Understanding MST MST Region A group of switches with common identifiers: Configuration name VLAN to Instance mapping Revision number MST Instance Logical spanning tree active topology Cisco supports 16 Instances (instance 0-15) Instance 0 is known as IST (Internal Spanning Tree), used for interacting with the outside region IST carries legacy timers for interoperability 54
28 IST Details IST (instance 0) exists on all ports, regardless of vlan mapping Vlan 20 (instance 1) Vlan 10 1 A Vlan 10 (instance 0) 2 B Vlan Instance 0 real topology A B No connectivity between host A & B, why? Avoid mapping user VLANs to IST 55 MST Interacting with PVST+ PVST+, Switch-Z sends BPDUs on VLANs 1-3 Boundary ports on Switch- X and Switch-Y will replicate IST BPDUs on VLANs 1-3 of the trunk to be compatible with the neighbor Interaction based on 802.1D BPDU Recommendation: Make IST the root for all VLANs. Result: 0/10 blocking on Switch-Z Boundary Port (4/4) Switch-X MST Region IST & MST Root Trunk VLAN 1-3 0/9 Switch-Y Switch-Z 802.1D (PVST+) Simulate PVST root (STP Root) inside MST region Trunk VLAN 1-3 0/10 Boundary Port (4/4) 56
29 Rapid-PVST+ Interacting with MST MST interacts with Rapid-PVST+ switch in the same way as MST interacts with PVST+ switch Boundary ports on Switch-X and Switch-Y will replicate IST BPDUs on VLANs 1-3 of the trunk to be compatible with the neighbor Interaction based on 802.1D BPDU Recommendation: Make IST the root for all VLANs. Result: 0/10 blocking on Switch-Z Boundary Port (4/4) Switch-X MST Region IST & MST Root Trunk VLAN 1-3 0/9 Switch-Y Switch-Z Trunk VLAN 1-3 0/ w (Rapid-PVST+) Boundary Port (4/4) 57 Neighbor Protocol Detection RSTP or MST reverts to 802.1D BPDUs and TCN on a segment if it detects presence of legacy switch Migration-delay timer (4 seconds) acts as protocol state lock until neighbors state is detected RSTP Switch A RSTP Switch B BPDU RSTP 802.1D BPDU RSTP 802.1D BPDU 802.1D C 802.1D Switch After A and B still continue to use 802.1D! 58
30 MST and RSTP Support Matrix Cisco s current implementation requires running RSTP with MST Rapid-Per VLAN STP currently only on Cat6K MST and RSTP Software availability table Platform Catalyst 6x00 SUP 1/2 Catalyst 4000 SUP 3/4 Catalyst 4000 SUP 1/2 Catalyst 3550 Catalyst 2950 Native IOS 12.1(12c)EW CatOS (9)EA1 Release Native IOS 12.1(11b)EX1 CatOS 7.1 Native IOS 12.1(13)E1 CatOS 7.5(1) Ridgeway, Q2 CY03 CatOS 7.5(1) Q2 CY03 Rapid-PVST+ 59 Spanning Tree Extension 802.1D extensions are supported in Cisco s MST and Rapid-PVST+ implementation Portfast (edge status lost on receiving BPDU) BPDU Guard BPDU Filter BPDU Filtering Loop Guard Root Guard 60
31 Trunk Most LAN topologies consist of multiple VLANs How to carry multiple VLANs on a single physical link, while maintaining isolation? Trunking Protocols: IEEE 802.1q ISL (Cisco Proprietary)? X 10 VLANS 61 VTP (VLAN Trunking Protocol) Centralized VLAN management VTP Server Switch Propagates VLAN awareness to VTP Client Switches Runs only on trunks Four modes: Server: Updates Clients/Servers Client: Receive updates cannot make changes Transparent: Let updates pass through Off: Ignores VTP updates 62
32 VTP Example A Set VLAN 50 F SERVER trunk F Transparent Pass through update Ok, I just learnt VLAN 50! trunk CLIENT trunk CLIENT Ok, I just learnt VLAN 50! B Drop VTP Updates trunk OFF C 63 EtherChannel Protocol A logical aggregation of similar links (up to 8) - 10/100/1000/10GE ports Operates between switches, routers, and certain vendors NICs Channel always point-topoint and viewed as one logical link by protocols TWO FLAVORS: Cisco s PAgP and IEEE 802.3ad we support both EtherChannel 64
33 EtherChannel Load Balancing How does it load share? Layer 2 devices Source/destination MAC Layer 3 devices Source/destination IP Server NICs Source/destination MAC Catalyst 6000 family can be switched between MAC, IP or L4 Port Layer 3 Switch or Router Layer 2 Switch Server 65 Port Access Control Port Security Restrict MAC addresses learnt on a port Prevent filling up of CAM table CAM filter can restrict traffic to and from a host CatOS (enable) set port security 5/1 enable CatOS (enable) set port security 5/1 enable b CatOS (enable) set port security 5/1 maximum 10 CatOS (enable) set cam static filter <vlan> !Feature not available in Native IOS for 6500/7600 Platform Switch # configure terminal Switch (config)# interface fastethernet 0/5 Switch (config-if)# switchport port-security? aging Port-security aging commands mac-address Secure mac address maximum Max secure addrs violation Security Violation Mode 66
34 Port Access Control (Cont.) 802.1x Describes a standard link layer protocol used for transporting higher-level authentication protocols. Maintains backend communication to an Authentication (RADIUS) Server Refer to SEC-203: Understanding Identity and Network Policy Management Disable CDP on ports not connecting to other Cisco devices 67 Protecting Spanning Tree BPDU Guard Shutdown PortFast enabled port if it receives a BPDU; prevents unauthorized BPDUs on Access ports Root Guard Block a Port if it receives superior BPDUs; prevents unauthorized device from being the root bridge or being in path to the root bridge 68
35 A PVLAN Isn t a Firewall! Private VLAN provides Layer-2 isolation between isolated ports; if host X on an isolated port unconditionally directs its IP traffic to the router s MAC address, then that router will forward the traffic to host Z Use Router Access-Lists to prevent this behavior Dst_MAC R Src_MAC X Dst_IP Src_IP Isolated Port MAC X Configure Access Lists Denying such hosts (RACL) MAC R MAC Z 69 Protecting VLAN 1 VLAN 1 Used by Control Protocols like VTP, DTP etc Goes over Trunks by default Un-configured ports should not be part of VLAN 1 Remove VLAN 1 from Trunks, if possible Disable unused Ports Prevents unauthorized devices from plugging in 70
36 802.1Q Trunk Configuration Recommendations Frame.1Q.1Q Frame.1Q Frame Trunk Access Port VLAN Blue Native VLAN Blue Access Port VLAN Red Double Encapsulated 802.1q Frame Set Native VLAN on Trunks to be different from Access VLAN number Alternative: Tag all Frames Change Trunk status of non-trunking ports from Auto to Off Prevents a host from becoming a trunk port and receiving traffic that would normally reside on a trunk port 71 Campus WLAN 802.1x EAP Security Model APs on dedicated access-layer VLAN Minimal change 2 RADIUS servers AP blocks all non-authentication traffic until auth. complete EAP-Cisco uses existing windows userid/pw database TKIP and Dynamic per session, per user, time limited keys Cisco NICS or Windows XP(EAP-TLS) Si Cisco ACS Si Si Si Si Si Si Si Cisco ACS 72
37 Campus WLAN VPN with AP Filters DMZ Complex filters on APs and edge routers 3DES/OTP supported by VPN Si Si Si Si Clients must support VPN stack Broadcast and multicast traffic not supported Si Si Si Si CNR DMZ Carefully analyze any network changes for impact to WLAN security VPN Concentrator 73 Is Quality of Service (QoS) Needed in the Campus? Just throw more bandwidth at it. That will solve the problem! Maybe, Maybe Not; Campus Congestion Is a Buffer Management Issue 74
38 Enabling QoS in the Campus Congestion Scenario: TCP Traffic Burst + VoIP Typical 4:1 Data Over- Subscription Core Distribution Si Si Instantaneous Interface Congestion Si Si Typical 20:1 Data Over- Subscription Access = Data = Voice 75 Tips on IP Multicast PIM Sparse-mode Sparse-mode good, Densemode bad. Keep Dense-mode off of the network. Build a fault-tolerant design AutoRP provides ease of administration and multiple C-RPs can take over when failure occurs. Anycast RP provides the fastest failover and allows for more scalable design. More complex configuration. Understand the Application With Tibco IPmc, all receivers can also be sources. Research extensions to PIM (Bi-Dir and SSM) Refer to RST-260: Deploying IP Multicast 76
39 Layer 2 IP Multicast IGMP Snooping IGMP Snooping ON by default IGMP packets intercepted in Hardware without performance penalty Switch examines contents of IGMP messages to determine which ports want what traffic IGMP membership reports + leave messages Without IGMP Switching: Switches process ALL Layer 2 multicast packets Admin. load increases with multicast traffic load, resulting in excessive flooding CGMP Runs on both the Switches and the router Router sends CGMP multicast packets to the Switches at a well known multicast MAC address: cdd.dddd CGMP packet contains: Type field Join or Leave MAC address of the IGMP client Multicast address of the group Switch uses CGMP packet info to add or remove a Layer-2 entry for a particular multicast MAC address 2900/3500 CGMP 2950/3550 IGMP Snooping 4003 CGMP 6500/4006 IGMP Snooping 77 Agenda Multilayer Campus Design Understanding Campus Topologies and Design Alternatives Foundation Services Design Pitfalls 78
40 Design Pitfalls Summarization CEF Polarization Addressing Scheme s 79 Design Pitfalls HSRP Tracking gotcha Daisy Chaining side effect Route summarization pitfall Asymmetric routing side effect Potential slow convergence problem 80
41 CEF Polarization Server Farm HA VLAN With out some tuning CEF will select the same way-out Left/Left or Right/Right and imbalance/overload could occur Hash Left Hash Left Hash Right Hash Right Wireless VLAN Voice Data Guest VLAN Voice Data 81 HSRP Tracking Gotcha Access HSRP Tracking unreliable HSRP Active L3 Link Distribution HSRP Standby Layer 2 UP but Layer 3 down Core Install a Layer 3 link between Distribution Switches to get routed around a Layer 2 up but Layer 3 down condition on distribution Alternative Dual attach distribution to Core 82
42 Daisy Chaining Loopback cable prevents Discontinuous subnet Failure of a stack cable or middle Switch will result in discontinuous subnet if there is a Layer 3 connection between Distribution layer HSRP Active HSRP Active Layer 3 HSRP Standby HSRP Active Loopback Cable 83 Daisy Chaining (Cont.) Utilize Cross Stack UplinkFast feature for Stackables Transitions redundant blocking link directly to forwarding if link to Root fails Root Port Layer 2 Blocking Redundant Link HSRP Active STP Root Primary STP Root Secondary HSRP Standby 84
43 Route Summarization Pitfall HSRP on Right Distribution takes over upon link failure But old router still advertises summary to core Return traffic is dropped on left distribution Switch Summarizing requires a L3 link between the distribution Switches Alternative design: impassive 2 access VLAN interfaces, cumbersome Access Distribution Summary: /16 Core a/ b/24 85 Route Summarization (Cont.) A B If Distribution is not summarizing Access Subnets then there is no need for a Layer 3 link between the Distribution Switches Traffic from Core, diverted to Right Distribution Access Distribution Core 86
44 Asymmetric Routing Cost x links Distribution 1 Cost y links Core 1 Cost=Z A HSRP Active Core 2 Distribution 2 Cost=Q IGP Table Before!Assume Cost to A from Distribution = y IGP Table After!Cost Changed A via Distribution 1 = x + y A via Distribution 2 = x + y Therefore, Load-balance between Distribution 1 and Distribution 2 to reach A A via Distribution 1 = x + Z A via Distribution 2 = x + Q If Q < Z, then go through Distribution 2 to reach A 87 Asymmetric Routing (Cont.) Asymmetric routing produces unnecessary flooding Solution: Adjust IGP access VLAN interfaces cost or Adjust ARP timer to be the same as CAM aging timer Adjust interface cost on non-hsrp active Distribution Layer Router 88
45 PortFast on Trunks I can reach /16 No, you can t Router Layer 2 Trunk Link up will trigger router to advertise network However STP is still transitioning on the Switch Enable PortFast on Trunks connected to Routers MSFC Autostate feature Switch Network /16 Does not allow a Layer 3 VLAN interface to come up/up until STP transitions the VLAN to forwarding 89 Layer 2 Between Distribution? Distribution Layer 2/3 STP Root & HSRP Active Hellos STP Secondary Root & HSRP Standby HSRP Active (Temporarily) Access Layer 2 F 2 F F 2 2 F: Forwarding B: Blocking 2B 2 F 2 B 2 Access-b MaxAge seconds before failure is detected.then Listening and Learning 2 2 Blocking link on Access-b will take 50 seconds to move to forwarding -> traffic black hole until then If a VLAN spans multiple Access Switches then install a Layer 2 link between Distribution Switches 90
46 What Questions Do You Have? 91 Summary Multilayer Campus Design Understanding Campus Topologies and Design Alternatives Foundation Services Design Pitfalls 92
47 Recommended Reading Top-Down Network Design ISBN: Cisco Internetwork Design ISBN: High Availability Network Fundamentals ISBN: Available on-site at the Cisco Company Store 93 Please Complete Your Evaluation Form Session 94
48 95
Building A Resilient Campus: Fundamentals and Best Practices
Building A Resilient Campus: Fundamentals and Best Practices Chara Kontaxi Systems Engineer, ckontaxi@cisco.com 1 The Resilient Enterprise Campus High-Availability Design Requirements Campus network design
More informationCCNP SWITCH (22 Hours)
CCNP SWITCH 642-813 (22 Hours) Chapter-1 Enterprise Campus Network Design 1.1 IIN & SONA 1.2 Campus Network 1.3 Enterprise Model 1.4 Nonhierarchical Network Devices Layer-2 Switching, Layer-3 Routing Multilayer
More informationBuilding Cisco Multilayer Switched Networks (BCMSN)
Building Cisco Multilayer Switched Networks (BCMSN) Table of Contents Module 1 Defining VLANs Implementing Best Practices for VLAN Topologies Describing Issues in a Poorly Designed Network Grouping Business
More information3. What could you use if you wanted to reduce unnecessary broadcast, multicast, and flooded unicast packets?
Nguyen The Nhat - Take Exam Exam questions Time remaining: 00: 00: 51 1. Which command will give the user TECH privileged-mode access after authentication with the server? username name privilege level
More informationMassimiliano Sbaraglia
Massimiliano Sbaraglia Printer Layer 2 access connections to End-Point Layer 2 connections trunk or layer 3 p2p to pair distribution switch PC CSA PVST+ or MST (Spanning Tree Protocol) VLANs LapTop VoIP
More informationPresentation_ID. 2002, Cisco Systems, Inc. All rights reserved.
1 Gigabit to the Desktop Session Number 2 Gigabit to the Desktop What we are seeing: Today s driver for Gigabit Ethernet to the Desktop is not a single application but the simultaneous use of multiple
More informationConfiguring STP and RSTP
7 CHAPTER Configuring STP and RSTP This chapter describes the IEEE 802.1D Spanning Tree Protocol (STP) and the ML-Series implementation of the IEEE 802.1W Rapid Spanning Tree Protocol (RSTP). It also explains
More informationTop-Down Network Design
Top-Down Network Design Chapter Five Designing a Network Topology Original slides copyright by Cisco Press & Priscilla Oppenheimer Network Topology Design Issues Hierarchy Redundancy Modularity Well-defined
More information: Building Cisco Multilayer Switched Networks
Exam : Cisco 642-812 Title : Building Cisco Multilayer Switched Networks Version : Demo Cheat-Test,help you pass any IT exam! Q: 1 Which three statements about the Multiple Spanning Tree (MST) protocol
More informationQuestion No : 1 Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.
Volume: 162 Questions Question No : 1 Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.) A. easy management B. infrastructure
More informationPass-Through Technology
CHAPTER 3 This chapter provides best design practices for deploying blade servers using pass-through technology within the Cisco Data Center Networking Architecture, describes blade server architecture,
More informationitexamdump 최고이자최신인 IT 인증시험덤프 일년무료업데이트서비스제공
itexamdump 최고이자최신인 IT 인증시험덤프 http://www.itexamdump.com 일년무료업데이트서비스제공 Exam : 642-813 Title : Implementing Cisco IP Switched Networks Vendor : Cisco Version : DEMO Get Latest & Valid 642-813 Exam's Question
More informationIntegrated Switch Technology
CHAPTER 2 This section discusses the following topics: Cisco Intelligent Gigabit Ethernet Switch Module for the IBM BladeCenter Cisco Gigabit Ethernet Switch Module for the HP BladeSystem Cisco Intelligent
More informationCampus Networking Workshop. Layer 2 engineering Spanning Tree and VLANs
Campus Networking Workshop Layer 2 engineering Spanning Tree and VLANs Switching Loop When there is more than one path between two switches What are the potential problems? Switching Loop If there is more
More informationCisco 4-Port and 8-Port Layer 2 Gigabit EtherSwitch Network Interface Module Configuration Guide for Cisco 4000 Series ISR
Cisco 4-Port and 8-Port Layer 2 Gigabit EtherSwitch Network Interface Module Configuration Guide for Cisco 4000 Series First Published: 2015-04-06 Last Modified: 2017-12-21 Cisco 4-Port and 8-Port Layer
More informationConfiguring Optional Spanning-Tree Features
CHAPTER 20 This chapter describes how to configure optional spanning-tree features on the Catalyst 3750-E or 3560-E switch. You can configure all of these features when your switch is running the per-vlan
More informationThe multiple spanning-tree (MST) implementation is based on the IEEE 802.1s standard.
CHAPTER 18 This chapter describes how to configure the Cisco implementation of the IEEE 802.1s Multiple STP (MSTP) on the IE 3010 switch. Note The multiple spanning-tree (MST) implementation is based on
More informationAuthorized CCNP. Student. LabManual SWITCH.
Authorized CCNP SWITCH Student LabManual Web:www.networkershome.com Email:info@networkershome.com www.networkershome.com Authorized CCNPSWITCHWORKBOOK Module:01to20 CopyrightsNetworkersHome2007-2015 Website:htp:/www.networkershome.com;info@networkershome.com
More information2V] Chapter 2 Catalyst 3560 Switch Cisco IOS Commands shutdown. This command has no arguments or keywords.
2V] Chapter 2 Catalyst 3560 Switch Cisco IOS Commands shutdown shutdown Use the shutdown interface configuration command to disable an interface. Use the no form of this command to restart a disabled interface.
More informationConfiguring STP. Understanding Spanning-Tree Features CHAPTER
CHAPTER 11 This chapter describes how to configure the Spanning Tree Protocol (STP) on your switch. For information about the Rapid Spanning Tree Protocol (RSTP) and the Multiple Spanning Tree Protocol
More informationConfiguring Optional STP Features
CHAPTER 29 This chapter describes how to configure optional STP features. For complete syntax and usage information for the commands used in this chapter, see the Cisco IOS Master List, at this URL: http://www.cisco.com/en/us/docs/ios/mcl/allreleasemcl/all_book.html
More informationPrepKing. PrepKing
PrepKing Number: 642-961 Passing Score: 800 Time Limit: 120 min File Version: 6.8 http://www.gratisexam.com/ PrepKing 642-961 Exam A QUESTION 1 Which statement best describes the data center core layer?
More informationSWITCH Implementing Cisco IP Switched Networks
Hands-On SWITCH Implementing Cisco IP Switched Networks CCNP Course 2 Course Description Revised CCNP Curriculum and Exams Cisco has redesigned the CCNP courses and exams to reflect the evolving job tasks
More informationActualTest v by-VA
ActualTest-642-813-v2012-10-29-by-VA Number: 154 Passing Score: 790 Time Limit: 140 min File Version: 2.7 http://www.gratisexam.com/ Implementing Cisco IP Switched Networks (SWITCH) I rearranged the last
More informationConfiguring STP and Prestandard IEEE 802.1s MST
20 CHAPTER This chapter describes how to configure the Spanning Tree Protocol (STP) and prestandard IEEE 802.1s Multiple Spanning Tree (MST) protocol on Catalyst 6500 series switches. Note The IEEE 802.1s
More informationFinancial Services Design for High Availability
Financial Services Design for High Availability Version History Version Number Date Notes 1 March 28, 2003 This document was created. This document describes the best practice for building a multicast
More informationConfiguring Rapid PVST+
This chapter describes how to configure the Rapid per VLAN Spanning Tree (Rapid PVST+) protocol on Cisco NX-OS devices using Cisco Data Center Manager (DCNM) for LAN. For more information about the Cisco
More informationConfiguring Spanning Tree Protocol
Finding Feature Information, page 1 Restrictions for STP, page 1 Information About Spanning Tree Protocol, page 2 How to Configure Spanning-Tree Features, page 14 Monitoring Spanning-Tree Status, page
More informationConfiguring Rapid PVST+ Using NX-OS
Configuring Rapid PVST+ Using NX-OS This chapter describes how to configure the Rapid per VLAN Spanning Tree (Rapid PVST+) protocol on Cisco NX-OS devices. This chapter includes the following sections:
More informationVendor: Cisco. Exam Code: Exam Name: Implementing Cisco IP Switched Networks. Version: Demo
Vendor: Cisco Exam Code: 642-813 Exam Name: Implementing Cisco IP Switched Networks Version: Demo QUESTION 1 Which two RSTP port roles include the port as part of the active topology? (Choose two) A. Root
More informationDesign of High-Availability Resilient Converged Enterprise Networks. (C) Petr Grygárek
Design of High-Availability Resilient Converged Enterprise Networks (C) 2009-12 Petr Grygárek Network Blocks Design Areas Enterprise campus design WAN/MAN design High-performance carrier/isp core network
More informationUnderstanding Rapid Spanning Tree Protocol (802.1w)
Understanding Rapid Spanning Tree Protocol (802.1w) Contents Introduction Support of RSTP in Catalyst Switches New Port States and Port Roles Port States Port Roles New BPDU Format Full View of the Cisco
More informationTable of Contents. Cisco Understanding Rapid Spanning Tree Protocol (802.1w)
Table of Contents Understanding Rapid Spanning Tree Protocol (802.1w)...1 Introduction...1 Support of RSTP in Catalyst Switches...2 New Port States and Port Roles...2 Port States...2 Port Roles...3 New
More informationSpanning Tree Protocol(STP)
Introduction Spanning Tree Protocol (STP) is a Layer 2 protocol that runs on bridges and switches. The specification for STP is IEEE 802.1D. The main purpose of STP is to ensure that you do not create
More informationNumber: Passing Score: 800 Time Limit: 120 min File Version: 9.0. Cisco Questions & Answers
300-115 Number: 300-115 Passing Score: 800 Time Limit: 120 min File Version: 9.0 Cisco 300-115 Questions & Answers Implementing Cisco IP Switched Networks Version: 9.0 Cisco 300-115 Exam Topic 1, Layer
More informationConfiguring Spanning Tree Protocol
Restrictions for STP Restrictions for STP, on page 1 Information About Spanning Tree Protocol, on page 1 How to Configure Spanning-Tree Features, on page 13 Monitoring Spanning-Tree Status, on page 25
More informationDescribing the STP. 2003, Cisco Systems, Inc. All rights reserved. 2-1
Describing the STP 2003, Cisco Systems, Inc. All rights reserved. 2-1 IEEE Documents IEEE 802.1D IEEE 802.1Q IEEE 802.1w IEEE 802.1s - Media Access Control (MAC) bridges - Virtual Bridged Local Area Networks
More informationCatalyst 4500 Series IOS Commands
CHAPTER Catalyst 4500 Series IOS Commands New Commands call-home (global configuration) call-home request call-home send call-home send alert-group call-home test clear energywise neighbors clear errdisable
More informationIntroduction to Switched Networks Routing And Switching
Introduction to Switched Networks Routing And Switching 1 Converged Networks Growing Complexity of Networks Our digital world is changing Information must be accessed from anywhere in the world Networks
More informationDescribing the STP. IEEE Documents. Download this file. Enhancements to STP. Download: PT-Topology-STP2.pkt STP
IEEE Documents IEEE 802.1D IEEE 802.1Q IEEE 802.1w IEEE 802.1s - Media Access Control (MAC) bridges - Virtual Bridged Local Area Networks - Rapid Reconfiguration (Supp. to 802.1D) - Multiple Spanning Tree
More informationConfiguring Optional STP Features
CHAPTER 16 This chapter describes how to configure optional STP features. Note For complete syntax and usage information for the commands used in this chapter, refer to the Catalyst 6500 Series Switch
More informationConfiguring Private VLANs
Finding Feature Information, on page 1 Prerequisites for Private VLANs, on page 1 Restrictions for Private VLANs, on page 1 Information About Private VLANs, on page 2 How to Configure Private VLANs, on
More informationIntroducing Campus Networks
Cisco Enterprise Architecture Introducing Campus Networks 2003, Cisco Systems, Inc. All rights reserved. 2-1 2003, Cisco Systems, Inc. All rights reserved. BCMSN v2.0 2-2 Campus Data Center Combines switching
More informationConfiguring Rapid PVST+
This chapter contains the following sections: Information About Rapid PVST+, page 1, page 16 Verifying the Rapid PVST+ Configuration, page 24 Information About Rapid PVST+ The Rapid PVST+ protocol is the
More informationCisco Understanding Multiple Spanning Tree Protocol (802.1
Cisco Understanding Multiple Spanning Tree Protocol (802.1 Table of Contents Understanding Multiple Spanning Tree Protocol (802.1s)...1 Introduction...1 Where to use MST...2 PVST+ Case...2 Standard 802.1q
More informationImplementing Cisco IP Routing ( )
Implementing Cisco IP Routing (300-101) Implementing Cisco IP Routing (ROUTE 300-101) is a 120-minute qualifying exam with 50 60 questions for the Cisco CCNP and CCDP certifications. The ROUTE 300-101
More informationConfiguring STP Extensions
Configuring STP Extensions This chapter describes the configuration of extensions to the Spanning Tree Protocol (STP) on Cisco Nexus 5000 Series switches. It includes the following sections: About STP
More informationUnderstanding and Configuring STP
CHAPTER 14 This chapter describes how to configure the Spanning Tree Protocol (STP) on a Catalyst 4500 series switch. It also provides guidelines, procedures, and configuration examples. This chapter includes
More informationCCNA Routing and Switching (NI )
CCNA Routing and Switching (NI400+401) 150 Hours ` Outline The Cisco Certified Network Associate (CCNA) Routing and Switching composite exam (200-125) is a 90-minute, 50 60 question assessment that is
More informationQuestion No: 1 What is the maximum number of switches that can be stacked using Cisco StackWise?
Volume: 283 Questions Question No: 1 What is the maximum number of switches that can be stacked using Cisco StackWise? A. 4 B. 5 C. 8 D. 9 E. 10 F. 13 Answer: D Question No: 2 A network engineer wants
More informationExam Questions
Exam Questions 200-105 ICND2 Interconnecting Cisco Networking Devices Part 2 (ICND2 v3.0) https://www.2passeasy.com/dumps/200-105/ 1.At which layer of the OSI model is RSTP used to prevent loops? A. physical
More informationCisco EXAM Cisco ADVDESIGN. Buy Full Product.
Cisco EXAM - 352-001 Cisco ADVDESIGN Buy Full Product http://www.examskey.com/352-001.html Examskey Cisco 352-001 exam demo product is here for you to test the quality of the product. This Cisco 352-001
More informationUnderstanding Multiple Spanning Tree Protocol (802.1s)
Understanding Multiple Spanning Tree Protocol (802.1s) Document ID: 24248 Introduction Where to Use MST PVST+ Case Standard 802.1q Case MST Case MST Region MST Configuration and MST Region Region Boundary
More information2.2 Cisco IOS Commands for the Catalyst 4500 Series Switches snmp ifindex clear. This command has no arguments or keywords.
Chapter 2 2.2 snmp ifindex clear snmp ifindex clear To clear any previously configured snmp ifindex commands that were entered for a specific interface, use the snmp ifindex clear command. snmp ifindex
More informationDownload: PT-Topology-STP2.pkt
IEEE Documents Describing the STP IEEE 802.1D IEEE 802.1Q IEEE 802.1w IEEE 802.1s - Media Access Control (MAC) bridges - Virtual Bridged Local Area Networks - Rapid Reconfiguration (Supp. to 802.1D) -
More informationImplementing Cisco IP Switched Networks (SWITCH)
Implementing Cisco IP Switched Networks (SWITCH) COURSE OVERVIEW: Implementing Cisco Switched Networks (SWITCH) v2.0 is a five-day instructor-led training course developed to help students prepare for
More informationCisco.Braindumps v by.Toni.259q. Exam Code: Exam Name: Cisco implementing cisco switched networks
Cisco.Braindumps.642-813.v2014-01-01.by.Toni.259q Number: 642-813 Passing Score: 825 Time Limit: 120 min File Version: 16.5 http://www.gratisexam.com/ Exam Code: 642-813 Exam Name: Cisco implementing cisco
More informationSections Describing Standard Software Features
30 CHAPTER This chapter describes how to configure quality of service (QoS) by using automatic-qos (auto-qos) commands or by using standard QoS commands. With QoS, you can give preferential treatment to
More informationCatalyst 4500 Series IOS Commands
CHAPTER Catalyst 4500 Series IOS Commands New Commands dot1x guest-vlan supplicant ip dhcp snooping information option allow-untrusted port-security mac-address port-security mac-address sticky port-security
More informationCCNA. Murlisona App. Hiralal Lane, Ravivar Karanja, Near Pethe High-School, ,
CCNA Cisco Certified Network Associate (200-125) Exam DescrIPtion: The Cisco Certified Network Associate (CCNA) Routing and Switching composite exam (200-125) is a 90-minute, 50 60 question assessment
More informationConfiguring Private VLANs
CHAPTER 15 This chapter describes how to configure private VLANs on the Cisco 7600 series routers. Note For complete syntax and usage information for the commands used in this chapter, refer to the Cisco
More informationConfiguring EtherChannels and Link-State Tracking
CHAPTER 37 Configuring EtherChannels and Link-State Tracking This chapter describes how to configure EtherChannels on Layer 2 and Layer 3 ports on the switch. EtherChannel provides fault-tolerant high-speed
More informationTEXTBOOK MAPPING CISCO COMPANION GUIDES
TestOut Routing and Switching Pro - English 6.0.x TEXTBOOK MAPPING CISCO COMPANION GUIDES Modified 2018-08-20 Objective Mapping: Cisco 100-105 ICND1 Objective to LabSim Section # Exam Objective TestOut
More informationCisco Certified Network Professional (CCNP)
Cisco Certified Network Professional (CCNP) MSIT106 / 120 Hours / 12 Months / Self-Paced / Materials Included Course Overview: This CCNP Routing & Switching, Troubleshooting & Maintaining, and Implementing
More informationConfiguring STP Extensions
This chapter contains the following sections: Overview, page 1 Overview Cisco has added extensions to Spanning Tree Protocol (STP) that make convergence more efficient. In some cases, even though similar
More informationCCNP Switch Questions/Answers Cisco Enterprise Campus Architecture
In its network design, a company lists this equipment: - Two Catalyst 4503 Layer 3 switches - One 5500 security appliance firewall - Two Catalyst 6509 switches - Two Lightweight Access Points - Two Catalyst
More informationLayer 2 Engineering Spanning Tree
Layer 2 Engineering Spanning Tree Campus Network Design & Operations Workshop These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International license (http://creativecommons.org/licenses/by-nc/4.0/)
More informationITDumpsKR. IT 인증시험한방에패스시키는최신버전시험대비덤프
ITDumpsKR http://www.itdumpskr.com IT 인증시험한방에패스시키는최신버전시험대비덤프 Exam : 300-115 Title : Implementing Cisco IP Switched Networks Vendor : Cisco Version : DEMO Get Latest & Valid 300-115 Exam's Question and
More informationNext Generation Campus Architectures
Next Generation Campus Architectures BRKCRS-2663 BRKCRS-2663 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 2 Enterprise-Class Availability Resilient Campus Communication Fabric Network-level
More informationLAN design. Chapter 1
LAN design Chapter 1 1 Topics Networks and business needs The 3-level hierarchical network design model Including voice and video over IP in the design Devices at each layer of the hierarchy Cisco switches
More informationCCNA Semester 3 labs. Part 1 of 1 Labs for chapters 1 8
CCNA Semester 3 labs Part 1 of 1 Labs for chapters 1 8 2.1.2.12 Lab - Building a Switched Network with Redundant Links 2.3.2.3 Lab - Configuring Rapid PVST+, PortFast and BPDU Guard 2.4.3.4 Lab - Configuring
More informationInternetwork Expert s CCNP Bootcamp. Hierarchical Campus Network Design Overview
Internetwork Expert s CCNP Bootcamp Hierarchical Campus Network Design Overview http:// Hierarchical Campus Network Design Overview Per Cisco, a three layer hierarchical model to design a modular topology
More informationConfiguring StackWise Virtual
Finding Feature Information, page 1 Restrictions for Cisco StackWise Virtual, page 1 Prerequisites for Cisco StackWise Virtual, page 2 Information About Cisco Stackwise Virtual, page 2 Cisco StackWise
More informationInternetwork Expert s CCNP Bootcamp. Gateway Redundancy Protocols & High Availability. What is High Availability?
Internetwork Expert s CCNP Bootcamp Gateway Redundancy Protocols & High Availability http:// What is High Availability? Ability of the network to recover from faults in timely fashion Service availability
More informationBraindumpsIT. BraindumpsIT - IT Certification Company provides Braindumps pdf!
BraindumpsIT http://www.braindumpsit.com BraindumpsIT - IT Certification Company provides Braindumps pdf! Exam : 300-115 Title : Implementing Cisco IP Switched Networks Vendor : Cisco Version : DEMO Get
More informationSections Describing Standard Software Features
27 CHAPTER This chapter describes how to configure quality of service (QoS) by using automatic-qos (auto-qos) commands or by using standard QoS commands. With QoS, you can give preferential treatment to
More informationCisco Certified Network Associate ( )
Cisco Certified Network Associate (200-125) Exam Description: The Cisco Certified Network Associate (CCNA) Routing and Switching composite exam (200-125) is a 90-minute, 50 60 question assessment that
More informationExam Topics Cross Reference
Appendix R Exam Topics Cross Reference This appendix lists the exam topics associated with the ICND1 100-105 exam and the CCNA 200-125 exam. Cisco lists the exam topics on its website. Even though changes
More informationConfiguring VRRP. Finding Feature Information. The Virtual Router Redundancy Protocol (VRRP) is an election protocol that dynamically assigns
The Virtual Router Redundancy Protocol (VRRP) is an election protocol that dynamically assigns responsibility for one or more virtual routers to the VRRP routers on a LAN, allowing several routers on a
More informationCUDN PoP Switch Changes 2018
CUDN PoP Switch Changes 2018 Agenda New PoP switch choices Port assignments Recommendations on connecting Spanning Tree now and changes How these will interact with your network DHCP Snooping & ARP Inspection
More informationactualtests.cisco.ccnp switch by.passforu
actualtests.cisco.ccnp.642-813.switch.2012.07.02.by.passforu Number: 642-813 Passing Score: 800 Time Limit: 120 min File Version: 1.0 http://www.gratisexam.com/ www.passforu.com obtain your it certifications
More informationSTP Optional Characteristic Configuration
Table of Contents Table of Contents Chapter 1 Configuring STP Optional Characteristic... 1 1.1 STP Optional Characteristic Introduction... 1 1.1.1 Port Fast... 1 1.1.2 BPDU Guard... 2 1.1.3 BPDU Filter...
More informationCisco Exam Interconnecting Cisco Networking Devices Part 2 Version: 10.0 [ Total Questions: 149 ]
s@lm@n Cisco Exam 200-101 Interconnecting Cisco Networking Devices Part 2 Version: 10.0 [ Total Questions: 149 ] Topic break down Topic No. of Questions Topic 1: LAN Switching Technologies 18 Topic 2:
More informationCHAPTER 1 Introduction to Scaling Networks
CHAPTER 1 Introduction to Scaling Networks As a business grows, so does its networking requirements. To keep pace with a business s expansion and new emerging technologies, a network must be designed to
More informationCisco CCNP Exam
Cisco CCNP 642-813 Exam Number: 160 Passing Score: 800 Time Limit: 120 min File Version: 1301 http://www.gratisexam.com/ Cisco CCNP 642-813 Exam EnsurePass.com Vendor:Cisco Exam Code:642-813 Contact us:
More informationEnterprise Campus Design: Multilayer Architectures and Design Principles
Enterprise Campus Design: Multilayer Architectures and Design Principles Mark Montañez @MarkMontanez (Montanez@cisco.com) Distinguished Consulting Engineer, CCIE #8798 Architecture Lead, Enterprise Infrastructure
More informationIntroduction to OSPF
Campus Networking Introduction to OSPF Workshop Campus Layer-2 Networking Network Workshop Design These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license
More informationCCNA 3 (v v6.0) Chapter 3 Exam Answers % Full
CCNA 3 (v5.0.3 + v6.0) Chapter 3 Exam Answers 2017 100% Full ccnav6.com /ccna-3-v5-0-3-v6-0-chapter-3-exam-answers-2017-100-full.html CCNA Exam Answers 2017 CCNA 3 (v5.0.3 + v6.0) Chapter 3 Exam Answers
More informationNETLOGIC TRAINING CENTER
Course Content NETLOGIC TRAINING CENTER Course Training CCNP Implement Cisco IP Switch Networks CCNP Switching (300-115 SWITCH) version 2.0 SWITCH v2.0, 5 day ILT, includes major updates follows an updated
More informationConfiguring EtherChannels and Layer 2 Trunk Failover
35 CHAPTER Configuring EtherChannels and Layer 2 Trunk Failover This chapter describes how to configure EtherChannels on Layer 2 and Layer 3 ports on the switch. EtherChannel provides fault-tolerant high-speed
More informationCisco CCNA (ICND1, ICND2) Bootcamp
Cisco CCNA (ICND1, ICND2) Bootcamp Course Duration: 5 Days Course Overview This five-day course covers the essential topics of ICND1 and ICND2 in an intensive Bootcamp format. It teaches students the skills
More informationPASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year
PASS4TEST IT Certification Guaranteed, The Easy Way! \ http://www.pass4test.com We offer free update service for one year Exam : 351-001 Title : CCIE Cisco Certified InterNetworking Expert Vendors : Cisco
More informationAbstract. GAK; Reviewed: WCH 8/14/2003. Solution & Interoperability Test Lab Application Notes 2003 Avaya Inc. All Rights Reserved.
Rapid Reconfiguration Spanning Tree Protocol (RSTP) 802.1w Sample Configurations for Avaya P882/P580 Gigabit Ethernet Switches with Third Party Vendors including Cisco, HP and Foundry - Issue 1.0 Abstract
More informationSymbols. Numerics INDEX
INDEX Symbols $ matches the end of a string 7 ( ) in commands 10 * matches 0 or more sequences of a pattern 7 + matches 1 or more sequences of a pattern 7. matches any single character 7? command 1? matches
More informationMultilayer Campus Architectures and Design Principles BRKCRS-2031
Multilayer Campus Architectures and Design Principles Mark Webb, Director Consulting Engineering Mark Montañez Principle Engineer CiscoLive/Networkers 2012 / San Diego Enterprise-Class Availability Resilient
More information0] Chapter 2 Cisco ME 3400E Ethernet Access Switch Cisco IOS Commands shutdown. This command has no arguments or keywords.
0] Chapter 2 shutdown shutdown Use the shutdown interface configuration command to disable an interface. Use the no form of this command to restart a disabled interface. shutdown no shutdown Syntax Description
More informationDocument ID: Contents. Introduction. Prerequisites. Requirements. Components Used. Conventions. Background Information.
Products & Services Spanning Tree from PVST+ to Rapid-PVST Migration Configuration Example Document ID: 72836 Contents Introduction Prerequisites Requirements Components Used Conventions Background Information
More informationConfiguring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling
CHAPTER 14 Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling With Release 12.1(13)E and later, the Catalyst 6500 series switches support IEEE 802.1Q tunneling and Layer 2 protocol tunneling.
More informationCisco Exam Bundle
Cisco 642-813 Exam Bundle Number: 642-813 Passing Score: 790 Time Limit: 120 min File Version: 22.3 http://www.gratisexam.com/ Cisco 642-813 Exam Bundle Exam Name: Cisco implementing cisco switched networks
More informationChapter 1: Enterprise Campus Architecture. Course v6 Chapter # , Cisco Systems, Inc. All rights reserved. Cisco Public
Chapter 1: Analyzing The Cisco Enterprise Campus Architecture CCNP SWITCH: Implementing IP Switching Course v6 1 Chapter 1 Objectives Describe common campus design options and how design choices affect
More information