A B C D E F G H I J-K L M N O P Q R S T U V W-X-Y-Z
3-1-4 Rule, 92
3G connections, 388
4G connections, 388
10GBASE-LX4, 21
10GBASE-SX4, 21
10GBASE-T, 21
10GigE, 34
100BASE-FX, 21
100BASE-TX, 21
802.1D. See STP (Spanning Tree Protocol)
1000BASE-LX, 21
1000BASE-SX, 21
1000BASE-T, 21
1000BASE-TX, 21
A record (DNS), 365
AAA (Authentication, Authorization, and Accounting) framework, 292
AAAA record (DNS), 365
access control lists. See ACLs (access control lists)
access layer, 24
access layer switches, 14
access-list command, 336, 337–338, 375
ACI (Application Centric Infrastructures), 422–423
Acknowledgment field (TCP), 7–8
Acknowledgment packets (EIGRP), 241
ACL Analysis tool (APIC-EM), 424–425
ACL Path Trace tool (APIC-EM), 424–425
ACLs (access control lists), 337–339
APIC-EM (Application Policy Infrastructure Controller Enterprise Module) and, 424–425
defining, 329
identification numbers, 333
interface processing ACLs, 329–330
IPv4 ACLs
compared to IPv6 ACLs, 343
extended named IPv4 ACLs, 340
extended numbered IPv4 ACLs, 337–339
standard named IPv4 ACLs, 339–340
standard numbered IPv4 ACLs, 335–337
IPv6 ACLs
applying, 344
compared to IPv4 ACLs, 343
creating, 344
extended IPv6 ACLs, 345
operation, 329
planning for, 331
types of, 332
Active mode (LACP), 316
AD (administrative distance), 113–115, 244–245
AD (advertised distance), 245
address conflicts, resolving, 363–364
Address Resolution Protocol (ARP), 4, 364
addressing, Ethernet, 36
addressing, IPv4, 77
binary and alphanumeric representations, 90–91
conventions for writing, 100–102
header format, 78
IPv4-mapped IPv6 address, 97
NAT (network address translation)
benefits of, 373
example, 371
limitations of, 373
verification, 377
private addresses, 81
public addresses, 81
subnetting
bits borrowed, determining, 81–82
overview of, 81
subnet addressing scheme, 83
subnet multiplier, 83
variable-length subnet masking (VLSM), 85–87
troubleshooting, 136
addressing, IPv6
anycast addresses, 100
assigned multicast addresses, 98
binary and alphanumeric representations, 90–91
global unicast addresses, 92–95
IPv4 embedded addresses, 97
loopback addresses, 96
NAT (network address translation)
private address space, 379
solicited-node multicast addresses, 98–100
stateless address autoconfiguration, 104–105
troubleshooting, 136
ULAs (unique local addresses), 96–97
unspecified addresses, 96
addressing schemes
EIGRP (Enhanced Interior Gateway Routing Protocol)
for IPv4, 249
for IPv6, 257
IPv4 static routing, 141
OSPF (Open Shortest Path First), 197
multiarea OSPFv2 implementation, 216
multiarea OSPFv3 implementation, 219
OSPFv2, 226
OSPFv3, 232
administrative distance (AD), 113–115, 244–245
advertised distance (AD), 245
advertisements (VTP), 170
AF (Assured Forwarding), 412–413
algorithms
Dijkstra Shortest Path First (SPF) algorithm, 117–118
DUAL (Diffusing Update Algorithm), 245–246
OSPF (Open Shortest Path First), 189–190
Pseudo-Random Global ID Algorithm, 96
STP (Spanning Tree Protocol), 298–299
alphanumeric representation (IP addresses), 90–91
anycast addresses, 100
APIC (Cisco Application Policy Infrastructure Controller), 423
APIC-EM (Application Policy Infrastructure Controller Enterprise Module), 423–425
Application Centric Infrastructures (ACI), 422–423
application layer
OSI model, 2
TCP/IP model, 5
troubleshooting, 458
Application Policy Infrastructure Controller (APIC), 423
Application Policy Infrastructure Controller Enterprise Module (APIC-EM), 423–425
applying ACLs (access control lists), 344
ARP (Address Resolution Protocol), 4, 364
assigned multicast addresses, 98
assigning VLANs (virtual local-area networks), 65–66
Assured Forwarding (AF), 412–413
asymmetric switching, 30
authentication
AAA (Authentication, Authorization, and Accounting) framework, 292
authentication servers, 293
PPP (Point-to-Point Protocol), 395–396
Auto mode (PAgP), 315
auto-cost reference-bandwidth command, 201, 208
automatic medium-dependent interface crossover (auto-MDIX), 48
automatic summarization
EIGRP (Enhanced Interior Gateway Routing Protocol), 263–264
RIPv1 (Routing Information Protocol version 1), 162–164
RIPv2 (Routing Information Protocol version 2), 167
auto-MDIX (automatic medium-dependent interface crossover), 48
autonomous system (AS), 110
Autonomous System Number field (EIGRP), 243
auto-summary command, 264
backing up
licenses, 447
backup designated routers (BDR), 189
bandwidth
definition of, 409
modifying usage of
EIGRP for IPv4, 266
bandwidth command, 202–203, 244, 254, 266
banner login command, 47
Basic Rate Interface (BRI), 384
BDR (backup designated routers), 189, 229–231
BGP (Border Gateway Protocol)
eBGP (external BGP)
BID (bridge ID), 298–299, 307–309
bidirectional communication, 47
binary representation (IP addresses), 90–91
binary values (subnet masks), 80–82
bits borrowed for subnets, determining, 81–82
black hole VLANs (virtual local-area networks), 59
Border Gateway Protocol. See BGP (Border Gateway Protocol)
bottom-up troubleshooting, 459
BPDU (bridge protocol data unit), 298
BPDU guard, 309
BRI (Basic Rate Interface), 384
bridge ID (BID), 298–299, 307–309
bridge protocol data unit (BPDU), 298
broadcast addresses, 36
broadcast domains, 29
broadcast multiaccess networks, 228
broadcast storms, 297
buffering memory, 30
cable modems, 387
cabling
UTP (unshielded twisted pair) cabling, 34–35
Canonical Format Identifier (CFI), 61
CAPWAP (Control and Provisioning of Wireless Access Points), 19
Carrier Sense Multiple Access with Collision Detection (CSMA/CD), 32–33
CBWFQ (Class-Based Weighted Fair Queueing), 413
CCNA Routing and Switching 200–125 Premium Edition Complete Video Course (Wallace), 425
CCNA Routing and Switching ICND2 200–105 Official Cert Guide (Odom), 404, 421
CDP (Cisco Discovery Protocol)
cdp holdtime command, 280
cellular Internet connections, 388
CFI (Canonical Format Identifier), 61
Challenge Handshake Authentication Protocol (CHAP), 397–398
channel-group command, 316, 319
CHAP (Challenge Handshake Authentication Protocol), 397–398
CIR (Committed Information Rate), 414
circuit-switched connections, 384–385
Cisco 1941 router, 15
Cisco ACI (Application Centric Infrastructures), 422–423
Cisco APIC-EM (Application Policy Infrastructure Controller Enterprise Module), 423–425
Cisco Application Policy Infrastructure Controller (APIC), 423
Cisco devices, connecting to, 41
Cisco Discovery Protocol. See CDP (Cisco Discovery Protocol)
Cisco IOS Integrated File System. See IFS (Integrated File System)
Cisco Open SDN Controller (OSC), 422
Class of Service (CoS), 411
Class Selector (CS) values, 411
Class-Based Weighted Fair Queueing (CBWFQ), 413
classes of IPv4 addresses, 78–80
classful routing protocols, 112
classification
AF (Assured Forwarding), 412–413
DSCP (differentiated service code point), 411–412
EF (Expedited Forwarding), 412–413
classless routing protocols, 112
clear command, 378
clear ip nat translation command, 377
clear ip ospf process command, 230, 236
clear spanning-tree detected protocols command, 309
CLI (command-line interface). See commands
cloud computing
overview of, 416
server virtualization, 416–418
virtual network infrastructure, 419
collisions
collision domains, 29
troubleshooting, 54
command history, 44
commands
access-list, 336, 337–338, 375
auto-cost reference-bandwidth, 201, 208
auto-summary, 264
bandwidth, 202–203, 244, 254, 266
banner login, 47
basic switch configuration commands, 46–47
cdp holdtime, 280
clear, 378
clear ip nat translation, 377
clear ip ospf process, 230, 236
clear spanning-tree detected protocols, 309
command history, 44
configure terminal, 45
copy run start, 124
copy running-config startup-config, 124
copy startup-config running-config, 448
copy tftp flash, 444
crypto key generate rsa, 295
crypto key zeroize rsa, 295
debug, 378
debug ip nat, 378
debug ppp, 398
default-information originate, 165, 227, 233
default-router, 353
dns-server, 353
domain-name, 353
duplex, 52
duplex auto, 46
encapsulation ppp, 396
exit, 46
frequency, 460
icmp-echo, 460
interface port-channel, 316
interface tunnel, 402
interface vlan, 181
ip access-group, 336
ip access-list extended, 340
ip access-list standard, 339
ip address, 46
ip address dhcp, 357
ip bandwidth-percent eigrp, 268
ip default-gateway, 46
ip dhcp excluded-address, 352
ip dhcp pool, 352
ip forward-protocol udp, 357
ip hello-interval eigrp, 266–267
ip http authentication enable, 46
ip http server, 46
ip nat inside source list, 375
ip nat inside source static, 374
ip nat pool name, 375
ip ospf priority, 229
ip route, 140
ip routing, 181
ip sla, 460
ip sla schedule, 460
ipv6 access-class, 344
ipv6 access-list, 344
ipv6 address, 130
ipv6 address autoconfig, 362, 363
ipv6 address dhcp, 363
ipv6 eigrp, 257
ipv6 hello-interval eigrp, 269
ipv6 hold-time eigrp, 269
ipv6 route, 149
ipv6 router eigrp, 257
ipv6 router ospf, 208
ipv6 traffic-filter, 344
ipv6 unicast-routing, 98, 130, 257, 361
lease, 353
license save, 447
line console, 46
lldp holdtime, 280
lldp reinit, 280
lldp run, 280
lldp timer, 280
logging buffered, 434
logging console, 434
logging source-interface, 435
logging trap, 435
login, 46
mdix auto, 46
netbios-name-server, 353
network, 199–200, 250, 353, 406
no cdp run, 273
no debug ip rip, 161
no lldp receive, 280
no lldp transmit, 280
no service dhcp, 354
no switchport, 182
ntp server, 436
passive-interface, 161–162, 208
password, 46
ppp authentication chap, 397, 398
ppp authentication pap, 398
pppoe enable, 400
range, 65
remark, 340
reset, 448
router bgp, 405
router ospf, 198
router rip, 163
service password-encryption, 47
service sequence-numbers, 433
service timestamps, 433
service-password encryption, 123
show access-lists, 341, 346–347
show cdp, 275
show cdp interface, 274
show cdp neighbors, 275
show cdp neighbors detail, 278–279
show cdp traffic, 279
show etherchannel summary, 318
show history, 44
show interface switchport, 318–319
show interface Tunnel, 403
show interfaces, 52–53, 65–66, 397
show interfaces switchport, 71, 74
show interfaces trunk, 69, 73–74
show ip dhcp binding, 354
show ip dhcp conflict, 364
show ip dhcp server statistics, 354
show ip eigrp interface, 269
show ip eigrp interfaces, 270
show ip eigrp neighbors, 252–253, 269
show ip eigrp topology, 253
show ip eigrp topology all-links, 254
show ip interface brief, 125, 179–180, 270, 274, 403, 448
show ip interface brief, 203–204
show ip nat statistics, 377
show ip nat translations, 377, 378
show ip ospf, 198, 205–206, 236
show ip ospf database, 218
show ip ospf interface, 236
show ip ospf interface brief, 206, 217
show ip ospf interfaces, 198
show ip ospf neighbor, 204–205, 236
show ip protocols, 114, 159–160, 167, 198, 203–204, 217, 236, 251–252, 269, 270
show ip route, 112–113, 124, 141–146, 158–159, 179–180, 182, 203–204, 406–407
show ip route eigrp, 255, 265, 269
show ip sla configuration, 461
show ip sla statics, 462
show ipv6 access-list, 347
show ipv6 eigrp interface, 270
show ipv6 eigrp neighbors, 259–260, 270
show ipv6 interface, 132–133, 347–348, 362
show ipv6 interface brief, 131–132
show ipv6 ospf database, 211
show ipv6 ospf interface, 210
show ipv6 ospf interface brief, 211, 221
show ipv6 ospf neighbor, 211
show ipv6 ospf neighbors, 233
show ipv6 protocols, 210, 220, 258, 270
show ipv6 route eigrp, 260–261, 270
show ipv6 route ospf, 212, 221, 233
show license feature, 444
show license udi, 445
show lldp interface, 281
show lldp neighbors, 282
show lldp neighbors detail, 282–283
show lldp traffic, 283
show mac address-table, 71
show ntp associations, 437
show ntp status, 437
show port-security interface, 286–287
show running-config, 124, 342–343
show snmp community, 431
show spanning-tree active, 310
show spanning-tree brief, 310
show spanning-tree detail, 310
show spanning-tree interface, 310
show spanning-tree summary, 310
show spanning-tree vlan, 310
show vtp password, 173
snmpget, 429
snmp-server community, 430
snmp-server contact, 430
snmp-server location, 430
spanning-tree bpduguard default, 309
spanning-tree link-type point-to-point, 309
spanning-tree mode rapid-pvst, 309
spanning-tree portfast default, 309
speed, 52
speed auto, 46
standby preempt, 322
standby priority, 322
switchport access vlan, 46, 71, 291
switchport mode access, 46, 285
switchport mode dynamic auto, 74
switchport mode dynamic desirable, 62
switchport mode trunk, 62
switchport mode trunk dynamic auto, 62
switchport nonegotiate, 62
switchport port-security, 285
switchport port-security mac-address, 286
switchport port-security mac-address sticky, 286
switchport port-security maximum, 285
switchport port-security violation {protect | restrict | shutdown} 285
switchport trunk native vlan, 291
terminal history, 44
terminal no history, 44
traceroute, 134
tracert, 50
tunnel mode gre ip, 402
undebug all, 161
username, 397
vtp domain, 171
vtp mode, 171
vtp password, 171
vtp pruning, 171
Committed Information Rate (CIR), 414
community clouds, 419
composite metric (EIGRP), 244
configuration
CDP (Cisco Discovery Protocol), 274–276
DHCPv6
SLAAC (stateless address autoconfiguration), 358–360
EIGRP for IPv4
addressing scheme, 249
network command, 250
EIGRP for IPv6
addressing scheme, 257
configuration commands, 257–258
topology, 256
GRE (generic route encapsulation), 401–402
HSRP (Hot Standby Router Protocol), 322
IPv4 ACLs
extended named IPv4 ACLs, 340
extended numbered IPv4 ACLs, 337–339
standard named IPv4 ACLs, 339–340
standard numbered IPv4 ACLs, 335–337
IPv4 default route configuration, 144–146
IPv4 static route configuration
addressing scheme, 141
exit interface parameter, 143–144
ip route command, 140
summary route configuration, 147–148
IPv6 ACLs
applying, 344
creating, 344
extended IPv6 ACLs, 345
IPv6 default route configuration, 150–151
IPv6 static route configuration
ipv6 route command, 149
show ipv6 route command, 149–150
summary route configuration, 151–152
topology, 148
LLDP (Link Layer Discovery Protocol), 280–281
multilayer switch inter-VLAN routing
Layer 3 routed ports, 182
SVIs (switch virtual interfaces), 180–181
NAT (network address translation)
overloading, 376
NTP (Network Time Protocol), 436–437
OSPFv2
addressing scheme, 226
dead intervals, 228
default route redistribution, 227
hello intervals, 228
multiarea OSPFv2, 216
topology, 225
OSPFv3
addressing scheme, 232
dead intervals, 234
default route propagation, 233–234
hello intervals, 234
multiarea OSPFv3, 220
topology, 231
PPP (Point-to-Point Protocol), 396–397
PPPoE (PPP over Ethernet), 399–400
RIPv1 (Routing Information Protocol version 1), 156–157
RIPv2 (Routing Information Protocol version 2), 165–167
router configuration with IPv4
command syntax, 122
IP addressing, troubleshooting, 136
network connectivity, verifying, 133–135
topology, 121
router configuration with IPv6
command syntax, 130
IP addressing, troubleshooting, 136
network connectivity, verifying, 133–135
topology, 130
SNMP (Simple Network Management Protocol), 430
STP (Spanning Tree Protocol), 306–307
BPDU guard, 309
PortFast, 309
Rapid PVST+, 309
switches
auto-MDIX, 48
basic switch configuration commands, 46–47
Cisco devices, connecting to, 41
CLI EXEC sessions, 42
CLI navigation and editing shortcuts, 43–44
command history, 44
full-duplex communication, 47
half-duplex communication, 47
network connectivity, verifying, 48–51
port speed, 47
subconfiguration modes, 45
VLANs (virtual local-area networks), 62–64
extended VLANs, 67
VTP (VLAN Trunking Protocol), 170–173
configuration files, 440–442, 451
configure terminal command, 45
congestion management, 413
connectionless protocols, 10
connections. See also configuration
EIGRP (Enhanced Interior Gateway Routing Protocol), 243
TCP (Transmission Control Protocol), 9
WANs (wide area networks)
circuit-switched connections, 384–385
comparison of, 388
dedicated connections, 383–384
packet-switched connections, 385–386
console terminal, 41
Control and Provisioning of Wireless Access Points (CAPWAP), 19
controllers, 421
convergence
with link-state protocols, 118–119
STP (Spanning Tree Protocol), 299–300
copy run start command, 124
copy running-config startup-config command, 124
copy startup-config running-config command, 448
copy tftp flash command, 444
core layer, 24
core layer switches, 14
CoS (Class of Service), 411
creating ACLs (access control lists), 344
crypto key generate rsa command, 295
crypto key zeroize rsa command, 295
CS (Class Selector) values, 411
CSMA/CD (Carrier Sense Multiple Access with Collision Detection), 32–33
cut-through switching, 30
DAD (duplicate address detection), 96, 99, 358
data link layer
overview of, 2
troubleshooting, 456
data VLANs (virtual local-area networks), 59
databases, LSDB (link-state database), 116–117
DBD (database description) packets, 186
dead intervals
OSPFv2, 228
OSPFv3, 234
debug command, 378
debug ip nat command, 378
debug ip rip command, 160–161, 164
debug ppp command, 398
dedicated WAN connections, 383–384
default gateways, troubleshooting, 136
default routing
EIGRP (Enhanced Interior Gateway Routing Protocol)
IPv4 default route configuration, 144–146
IPv6 default route configuration, 150–151
OSPFv2, 227
RIPv1 (Routing Information Protocol version 1), 164–165
default VLANs (virtual local-area networks), 59
default-information originate command, 165, 227, 233
default-router command, 353
defining ACLs (access control lists), 329
delay, 409
on-demand self-service, 418
deny statement, 338
denying
FTP (File Transfer Protocol), 338
subnets, 337
Telnet/SSH access, 337
design guidelines
ACLs (access control lists), 333–334
hierarchical campus network designs, 24–26
multiarea OSPF (Open Shortest Path First) operation, 192–194
designated routers (DR), 189
Desirable mode (PAgP), 315
device discovery. See discovery
device management
Cisco devices, connecting to, 41
IFS (Integrated File System)
definition of, 437
URL prefixes, 440
IOS images
TFTP topology, 442
NTP (Network Time Protocol), 436–437
password recovery, 448
routers, 15
SNMP (Simple Network Management Protocol)
components, 427
configuration, 430
MIB (Management Information Base), 428–429
operation, 427
versions, 428
switches, 13
Syslog
definition of, 432
DHCP (Dynamic Host Configuration Protocol), 3
DHCPv4
overview of, 351
testing, 364
DHCPv6
SLAAC (stateless address autoconfiguration), 358–360
DHCPACK packet, 351
DHCPDISCOVER packet, 351
DHCPNAK packet, 351
DHCPOFFER packet, 351
DHCPREQUEST packet, 351
dialer pool, 400
differentiated service code point (DSCP), 411–412
Diffusing Update Algorithm (DUAL), 245–246
digital subscriber line (DSL), 386–387
Dijkstra Shortest Path First (SPF) algorithm, 117–118
directly connected routes, 109
disabling
CDP (Cisco Discovery Protocol), 275–276
RIPv2 automatic summarization, 167
VLANs (virtual local-area networks). See configuration
discards (TCP), 415
discontiguous networks (EIGRP), 270–271
discovery
CDP (Cisco Discovery Protocol)
LLDP (Link Layer Discovery Protocol)
distance vector protocols, 111
distribution layer, 24
distribution layer switches, 14
DNS (Domain Name System), 3
troubleshooting, 366
dns-server command, 353
documentation, 451
configuration files, 451
Domain Name System (DNS), 3
domain-name command, 353
domains
broadcast domains, 29
collision domains, 29
VTP domains, 169
DR (designated routers), 189, 229–231
DSCP (differentiated service code point), 411–412
DSL (digital subscriber line), 386–387
DTP (Dynamic Trunking Protocol), 61–62
DUAL (Diffusing Update Algorithm), 245–246
dual-homed point-to-point WANs (wide area networks), 381
duplex and speed mismatches, 52–53
duplex auto command, 46
duplex command, 52
duplicate address detection (DAD), 96, 99, 358
duplicate IP addresses, 136
Dynamic Host Configuration Protocol (DHCP), 3
dynamic multipoint VPNs (virtual private networks), 390
dynamic NAT (network address translation)
definition of, 371
dynamic routing
AD (administrative distance), 113–115
classful routing protocols, 112
classless routing protocols, 112
compared to static routing, 109
distance vector protocols, 111
EGP (exterior gateway protocols), 110–111
IGP (interior gateway protocols), 110–111, 115
link-state routing protocols, 115–116
Dijkstra Shortest Path First (SPF) algorithm, 117–118
LSDB (link-state database), building, 116–117
overview of, 111
timeline of routing protocols, 110
Dynamic Trunking Protocol (DTP), 61–62
eBGP (external BGP)
edge ports, Rapid PVST+ and, 305–306
EF (Expedited Forwarding), 412–413
EGP (exterior gateway protocols), 110–111
eHWIC (enhanced high-speed WAN interface card) slots, 15
EIA (Electronics Industry Alliance), 34
EIGRP (Enhanced Interior Gateway Routing Protocol)
administrative distance, 244–245
composite metric, 244
convergence, 243
discontiguous networks, 270–271
DUAL (Diffusing Update Algorithm), 245–246
IPv4 implementation
addressing scheme, 249
automatic summarization, 263–264
bandwidth utilization, modifying, 266
default route propagation, 265–266
hello intervals and hold times, 266–267
network command, 250
IPv6 implementation
addressing scheme, 257
bandwidth utilization, modifying, 268–269
configuration commands, 257–258
default route propagation, 267–268
hello intervals and hold times, 269
overview of, 239
packet types, 241
PDMs (protocol-dependent modules), 240
RTP (Reliable Transport Protocol), 240–241
troubleshooting commands, 269–270
eigrp router-id command, 250, 257
elasticity (cloud), 418
Electronics Industry Alliance (EIA), 34
enable password command, 47, 122
enabling. See configuration
encapsulation
encapsulation process, 4
PDUs (protocol data units), 4–5
encapsulation ppp command, 396
enhanced high-speed WAN interface card (eHWIC) slots, 15
Enhanced Interior Gateway Routing Protocol. See EIGRP (Enhanced Interior Gateway Routing Protocol)
err-disable state, 288
error detection (PPP), 394
EtherChannel
benefits of, 314
implementation restrictions, 314
LACP (Link Aggregation Control Protocol), 315–316
overview of, 313
PAgP (Port Aggregation Protocol), 315
troubleshooting, 319
Ethernet switching
asymmetric switching, 30
broadcast domains, 29
collision domains, 29
CSMA/CD (Carrier Sense Multiple Access with Collision Detection), 32–33
Ethernet addressing, 36
Ethernet standards, 21, 30–31, 33–34
frame formats, 37
Layer 2/Layer 3 switching, 30
legacy Ethernet technologies, 31–33
memory buffering, 30
overview of, 4
physical layer, 38
symmetric switching, 30
UTP (unshielded twisted pair) cabling, 34–35
EXEC sessions, 42
exit command, 46
exit interface parameter (IPv4), 143–144
EXP field (DSCP), 412
Expedited Forwarding (EF), 412–413
extended IPv4 ACLs (access control lists), 332
extended IPv6 ACLs (access control lists), 332, 345
extended named IPv4 ACLs (access control lists), 340
extended system ID, 303
extended VLANs (virtual local-area networks), 66–68
exterior gateway protocols (EGP), 110–111
external BGP. See eBGP (external BGP)
Fast Ethernet, 34
FC (feasible conditions), 245
FCS (frame check sequence), 61
FD (feasible distance), 245
FDDI (Fiber Distributed Data Interface), 24
feasible conditions (FC), 245
feasible distance (FD), 245
feasible successors (FS), 245
FHRPs (First Hop Redundancy Protocols), 313
GLBP (Gateway Load Balancing Protocol), 320
HSRP (Hot Standby Router Protocol)
configuration, 322
definition of, 320
operation, 321
priority and preemption, 322
troubleshooting, 326
versions, 321
VRRP (Virtual Router Redundancy Protocol), 320
Fiber Distributed Data Interface (FDDI), 24
FIFO (first-in, first-out), 409
File Transfer Protocol (FTP), 3
files
configuration files, 440–442, 451
IOS images
TFTP topology, 442
FIN bits, 9
fine-tuning. See configuration
finite state machine (FSM), 246
firewalls, 16
First Hop Redundancy Protocols. See FHRPs (First Hop Redundancy Protocols)
first-in, first-out (FIFO), 409
flash: alias, 438
flooding LSAs (link-state advertisements), 116–117, 229
forwarding
AF (Assured Forwarding), 412–413
EF (Expedited Forwarding), 412–413
fragment-free switching, 30
frame check sequence (FCS), 61
Frame Relay links, 11
frames, 37
FCS (frame check sequence), 61
Frame Relay links, 11
multiple frame transmission, 297
PPP (Point-to-Point Protocol), 393–394
frequency command, 460
FS (feasible successors), 245
FSM (finite state machine), 246
FTP (File Transfer Protocol)
denying, 338
overview of, 3
full mesh WANs (wide area networks), 381
a-full setting, 53
full-duplex communication, 47
Gateway Load Balancing Protocol (GLBP), 320
gateways, default, 136
generic route encapsulation. See GRE (generic route encapsulation)
get-bulk-request, 428
get-next-request, 428
get-request, 428
get-response, 428
Gigabit Ethernet, 34
GLBP (Gateway Load Balancing Protocol), 320
global unicast addresses, 92–95
GRE (generic route encapsulation)
characteristics of, 401
troubleshooting, 403
verification, 403
GRE (generic route encapsulation) tunneling, 401
half-duplex communication, 47
hardening, switch port, 291
HDLC frame, 393
headers
EIGRP (Enhanced Interior Gateway Routing Protocol), 243
TCP (Transmission Control Protocol), 6
headers (IPv4), 78
hello intervals
EIGRP (Enhanced Interior Gateway Routing Protocol)
IPv6 implementation, 269
OSPFv2, 228
OSPFv3, 234
Hello packets
EIGRP (Enhanced Interior Gateway Routing Protocol), 241
OSPF (Open Shortest Path First), 186
hierarchical campus network designs, 24–26
hold times (EIGRP)
IPv6 implementation, 269
hold-down timers, 116
Hot Standby Router Protocol. See HSRP (Hot Standby Router Protocol)
HSRP (Hot Standby Router Protocol)
configuration, 322
definition of, 320
operation, 321
overview of, 313
priority and preemption, 322
troubleshooting, 326
versions, 321
HTTP (Hypertext Transfer Protocol), 3
hub-and-spoke WANs (wide area networks), 381
hybrid clouds, 419
Hypertext Transfer Protocol (HTTP), 3
IaaS (Infrastructure as a Service), 419
IANA (Internet Assigned Numbers Authority), 93
ICMP (Internet Control Message Protocol), 4
icmp-echo command, 460
icons, networking, 23
identification numbers (ACLs), 333
IDS (Intrusion Detection Systems), 16–17
IEEE 802.1D. See STP (Spanning Tree Protocol)
IETF (Internet Engineering Task Force), 89, 185
IFS (Integrated File System)
definition of, 437
URL prefixes, 440
IGP (interior gateway protocols), 110–111, 115, 403
IGRP (Interior Gateway Routing Protocol), 112
images. See IOS images
IMAP (Internet Message Access Protocol), 3
Infrastructure as a Service (IaaS), 419
inside global addresses, 370
inside local addresses, 370
Integrated File System. See IFS (Integrated File System)
interface port-channel command, 316
interface range command, 47, 316
interface status codes, 52, 125–126
interface tunnel command, 402
interface vlan command, 181
interfaces
ACLs (access control lists), 329–330
Rapid PVST+, 304
interior gateway protocols (IGP), 110–111, 115, 403
Interior Gateway Routing Protocol (IGRP), 112
Intermediate System-to-Intermediate System (IS-IS), 185
Internet Assigned Numbers Authority (IANA), 93
Internet Control Message Protocol (ICMP), 4
Internet Engineering Task Force (IETF), 89, 185
Internet layer (TCP/IP model), 10–11
Internet Message Access Protocol (IMAP), 3
Internet Protocol. See IPv4; IPv6
internetworks, 22
inter-VLAN routing
legacy inter-VLAN routing, 175–176
multilayer switch
overview of, 177
overview of, 175
router on a stick
overview of, 176
Intrusion Detection Systems (IDS), 16–17
Intrusion Prevention Systems (IPS), 16–17
IOS images
TFTP topology, 442
ip access-group command, 336
ip access-list extended command, 340
ip access-list standard command, 339
ip address command, 46
ip address dhcp command, 357
ip bandwidth-percent eigrp command, 268
ip default-gateway command, 46
ip dhcp excluded-address command, 352
ip dhcp pool command, 352
ip domain-name command, 277, 295
ip forward-protocol udp command, 357
ip hello-interval eigrp command, 266–267
ip helper-address command, 356–357
ip hold-time eigrp command, 266–267
ip http authentication enable command, 46
ip http server command, 46
ip nat inside command, 374, 375
ip nat inside source list command, 375
ip nat inside source static command, 374
ip nat outside command, 374, 375
ip nat pool name command, 375
ip ospf priority command, 229
ip route command, 140
ip routing command, 181
ip sla command, 460
ip sla schedule command, 460
IPS (Intrusion Prevention Systems), 16–17
IPv4. See also IPv6; OSPF (Open Shortest Path First)
ACLs (access control lists)
compared to IPv6 ACLs, 343
extended IPv4 ACLs, 332
extended named IPv4 ACLs, 340
extended numbered IPv4 ACLs, 337–339
identification numbers, 333
named IPv4 ACLs, 332
numbered IPv4 ACLs, 332
standard IPv4 ACLs, 332
standard named IPv4 ACLs, 339–340
standard numbered IPv4 ACLs, 335–337
addressing, 77
binary and alphanumeric representations, 90–91
embedded addresses, 97
header format, 78
IPv4-mapped IPv6 addresses, 97
private addresses, 81
public addresses, 81
subnet masks, 80
troubleshooting, 136
EIGRP (Enhanced Interior Gateway Routing Protocol)
addressing scheme, 249
automatic summarization, 263–264
bandwidth utilization, modifying, 266
default route propagation, 265–266
hello intervals and hold times, 266–267
network command, 250
NAT (network address translation), 369–370
benefits of, 373
example, 371
limitations of, 373
verification, 377
router configuration
command syntax, 122
IP addressing, troubleshooting, 136
network connectivity, verifying, 133–135
topology, 121
SLA (service level agreement), 459–462
subnetting
bits borrowed, determining, 81–82
overview of, 81
subnet addressing scheme, 83
subnet multiplier, 83
variable-length subnet masking (VLSM), 85–87
IPv6. See also IPv4; OSPF (Open Shortest Path First)
ACLs (access control lists), 330–331, 343
extended IPv6 ACLs, 332
named IPv6 ACLs, 332
addressing
anycast addresses, 100
assigned multicast addresses, 98
binary and alphanumeric representations, 90–91
conventions for writing, 100–102
global unicast addresses, 92–95
IPv4 embedded addresses, 97
loopback addresses, 96
solicited-node multicast addresses, 98–100
stateless address autoconfiguration, 104–105
troubleshooting, 136
ULAs (unique local addresses), 96–97
unspecified addresses, 96
EIGRP (Enhanced Interior Gateway Routing Protocol)
addressing scheme, 257
bandwidth utilization, modifying, 268–269
configuration commands, 257–258
default route propagation, 267–268
hello intervals and hold times, 269
NAT (network address translation)
private address space, 379
router configuration
command syntax, 130
IP addressing, troubleshooting, 136
network connectivity, verifying, 133–135
topology, 130
ipv6 access-class command, 344
ipv6 access-list command, 344
ipv6 address autoconfig command, 362, 363
ipv6 address command, 130
ipv6 address dhcp command, 363
ipv6 eigrp command, 257
IPv6 Fundamentals (Graziani), 89, 380
ipv6 hello-interval eigrp command, 269
ipv6 hold-time eigrp command, 269
ipv6 route command, 149
ipv6 router eigrp command, 257
ipv6 router ospf command, 208
ipv6 traffic-filter command, 344
ipv6 unicast-routing command, 98, 130, 257, 361
IS-IS (Intermediate System-to-Intermediate System), 185
jitter, 409
keywords. See also commands
deny, 338
overload, 376
primary, 308
secondary, 308
LACP (Link Aggregation Control Protocol), 315–316
LANs (local-area networks), 22
device connection guidelines, 21
ports
security configuration, 285–287
switch port hardening, 291
violation verification and restoration, 287–289
SSH (Secure Shell) configuration, 294–295
threat mitigation
Authentication, Authorization, and Accounting (AAA) framework, 292
native and management VLAN modification, 290–291
switch port hardening, 291
WLANs (wireless LANs), 17
large link-state database (LSDB), 192
latency, 409
Layer 1 problems on “up” interfaces, troubleshooting, 54
Layer 2 protocols
CDP (Cisco Discovery Protocol)
LLDP (Link Layer Discovery Protocol)
Layer 2 switching, 30
Layer 3 routed ports, 182
Layer 3 switching, 30
LCP (Link Control Protocol), 394–396
lease command, 353
legacy Ethernet technologies, 31–33
legacy inter-VLAN routing, 175–176
license install command, 445–447
license save command, 447
backing up, 447
uninstalling, 447
Lightweight Access Point Protocol (LWAPP), 19
line console command, 46
Link Aggregation Control Protocol (LACP), 315–316
Link Control Protocol (LCP), 394–396
Link Layer Discovery Protocol. See LLDP (Link Layer Discovery Protocol)
Link Quality Monitoring (LQM), 395
link-state acknowledgment (LSAck) packets, 186
link-state advertisements (LSA), 116, 188, 229
link-state database (LSDB), building, 116–117
link-state request (LSR) packets, 186
link-state routing protocols, 115–116, 190–191
Dijkstra Shortest Path First (SPF) algorithm, 117–118
LSDB (link-state database), building, 116–117
overview of, 111
link-state update (LSU) packets, 186
LLC (Logical Link Control) sublayer, 31
LLDP (Link Layer Discovery Protocol)
lldp holdtime command, 280
lldp reinit command, 280
lldp run command, 280
lldp timer command, 280
LLQ (Low Latency Queueing), 413
local area network security. See LANs (local-area networks)
logging buffered command, 434
logging console command, 434
logging source-interface command, 435
logging trap command, 435
logic
Logical Link Control (LLC) sublayer, 31
logical network topologies, 23–24
login command, 46
Long-Term Evolution (LTE), 388
loopback addresses, 96
looped-link detection, 394
loops, routing loop prevention, 115–116
loss, 409
Low Latency Queueing (LLQ), 413
LQM (Link Quality Monitoring), 395
LSA (link-state advertisements), 116, 188, 229
LSAck (link-state acknowledgment) packets, 186
LSDB (link-state database), 116–117, 192
LSR (link-state request) packets, 186
LSU (link-state update) packets, 186
LTE (Long-Term Evolution), 388
LWAPP (Lightweight Access Point Protocol), 19
MAC (Media Access Control), 11, 28, 31
Management Information Base (MIB), 428–429
management planes, 420
management VLANs (virtual local-area networks), 59, 290–291
marking
AF (Assured Forwarding), 412–413
DSCP (differentiated service code point), 411–412
EF (Expedited Forwarding), 412–413
maximum transmission unit (MTU), 400
mdix auto command, 46
Media Access Control (MAC), 11, 28, 31
media issues, troubleshooting, 51
memory buffering, 30
message format
EIGRP (Enhanced Interior Gateway Routing Protocol)
OSPF (Open Shortest Path First), 185
SNMP (Simple Network Management Protocol), 427–428
Syslog, 433
message-of-the-day (MOTD) banner, 123
methods, troubleshooting, 454–455
metrics
OSPF (Open Shortest Path First), 200–203
MetroE (Metro Ethernet), 385
MIB (Management Information Base), 428–429
models. See networking models
modifying
CLI (command-line interface) shortcuts, 43–44
EIGRP (Enhanced Interior Gateway Routing Protocol) bandwidth usage
for IPv4, 266
hello intervals (EIGRP)
IPv6 implementation, 269
hold times (EIGRP)
IPv6 implementation, 269
OSPFv2
dead intervals, 228
default route redistribution, 227
hello intervals, 228
OSPFv3
dead intervals, 234
default route propagation, 233–234
hello intervals, 234
MOTD (message-of-the-day) banner, 123
MPLS (Multiprotocol Label Switching), 11, 36, 386
MSTP (Multiple Spanning Tree Protocol), 301
MTU (maximum transmission unit), 400
multiarea OSPF (Open Shortest Path First)
multiarea OSPFv2 implementation
addressing scheme, 216
configuration, 216
topology, 215
multiarea OSPFv3 implementation
addressing scheme, 219
configuration, 220
operation
overview of, 192
performance of, 194
multicast addresses (IPv6), 36
anycast addresses, 100
assigned multicast addresses, 98
definition of, 98
solicited-node multicast addresses, 98–100
multilayer switch inter-VLAN routing
configuration
Layer 3 routed ports, 182
SVIs (switch virtual interfaces), 180–181
overview of, 177
multilink PPP (Point-to-Point Protocol), 394
multiple frame transmission, 297
Multiple Spanning Tree Protocol (MSTP), 301
Multiprotocol Label Switching (MPLS), 11, 36, 386
municipal Wi-Fi, 388
MX record (DNS), 365
named ACLs (access control lists), 343–344
IPv4, 332
extended named IPv4 ACLs, 340
standard named IPv4 ACLs, 339–340
IPv6, 332
NAT (network address translation)
benefits of, 373
dynamic NAT
definition of, 371
example, 371
limitations of, 373
NAT for IPv6
private address space, 379
NAT64, 97
NAT-PT, 97
overloading
configuration, 376
static NAT
definition of, 371
verification, 377
National Institute of Standards and Technology (NIST), 418
native VLANs (virtual local-area networks), 59, 290–291
navigating CLI (command-line interface), 43–44
NBI (northbound interface), 421
NBMA (nonbroadcast multiaccess) networks, 228
NDP (Neighbor Discovery Protocol), 98, 359
Neighbor Discovery Protocol (NDP), 98, 359
neighbor establishment, 186–188. See also discovery
Neighbor Solicitation (NS) message, 358
neighbor tables (EIGRP)
netbios-name-server command, 353
NetConf, 422
network access layer (TCP/IP model), 11–12
network address translation. See NAT (network address translation)
network command, 199–200, 250, 353, 406
network connectivity, verifying, 48–51, 133–135
network interface cards (NIC), 47
network layer
overview of, 2
troubleshooting, 456
network management system (NMS), 427
Network Time Protocol (NTP), 436–437
networking models
OSI (Open Systems Interconnection), 1–3
overview of, 1
TCP/IP (Transmission Control Protocol/Internet Protocol)
application layer, 5
PDUs (protocol data units), 4–5
networks. See also LANs (local-area networks); networking models; WANs (wide area networks)
discontiguous networks (EIGRP), 270–271
firewalls, 16
hierarchical campus designs, 24–26
IDS (Intrusion Detection Systems), 16–17
internetworks, 22
IPS (Intrusion Prevention Systems), 16–17
network connectivity, verifying, 48–51
networking icons, 23
physical layer, 19
routers, 15
SDN (software-defined networking)
controllers, 421
management planes, 420
overview of, 419
SOHO (small offices or home offices), 22
virtual network infrastructure, 419
VLANs (virtual local-area networks)
native and management VLAN modification, 290–291
traffic types, 58
types of, 59
WLANs (wireless LANs), 17
next-hop parameter (IPv4), 142–143
NICs (network interface cards), 47
NIST (National Institute of Standards and Technology), 418
NMS (network management system), 427
no cdp enable command, 275–276
no cdp run command, 273
no debug ip rip command, 161
no lldp receive command, 280
no lldp transmit command, 280
no service dhcp command, 354
no shutdown command, 257, 275, 291
no switchport command, 182
noise, troubleshooting, 54
nonbroadcast multiaccess (NBMA) networks, 228
northbound interface (NBI), 421
NS (Neighbor Solicitation) message, 358
NS record (DNS), 365
NTP (Network Time Protocol), 436–437
ntp server command, 436
numbered IPv4 ACLs, 332
object IDs (OIDs), 428
OIDs (object IDs), 428
On mode
LACP (Link Aggregation Control Protocol), 316
PAgP (Port Aggregation Protocol), 315
ONF (Open Networking Foundation), 421–422
Opcode field (EIGRP), 243
Open Networking Foundation (ONF), 421–422
Open SDN Controller (OSC), 422
Open Systems Interconnection (OSI) model, 1–3
OpenDaylight, 421
OpFlex, 423
OSC (Open SDN Controller), 422
OSI (Open Systems Interconnection) model, 1–3
OSPF (Open Shortest Path First), 182
BDR (backup designated routers), 189
DR (designated routers), 189
link-state advertisements, 188
link-state routing process, 190–191
message format, 185
multiarea operation
overview of, 192
performance of, 194
multiarea OSPFv2
addressing scheme, 216
configuration, 216
topology, 215
multiarea OSPFv3
addressing scheme, 219
configuration, 220
neighbor establishment, 186–188
OSPFv2 configuration
addressing scheme, 226
dead intervals, 228
default route redistribution, 227
hello intervals, 228
topology, 225
OSPFv3 configuration
addressing scheme, 232
dead intervals, 234
default route propagation, 233–234
hello intervals, 234
topology, 231
packet types, 186
single-area operation, 185
single-area OSPFv2
addressing scheme, 197
passive interfaces, 200
single-area OSPFv3
troubleshooting, 235
adjacency, 236
states, 235
troubleshooting commands, 236–237
outside global addresses, 370
outside local addresses, 370
overload keyword, 376
overloading NAT (network address translation)
configuration, 376
PaaS (Platform as a Service), 418
packets
CDP (Cisco Discovery Protocol), verifying, 279
DHCPACK, 351
DHCPDISCOVER, 351
DHCPNAK, 351
DHCPOFFER, 351
DHCPREQUEST, 351
EIGRP (Enhanced Interior Gateway Routing Protocol), 241
topology, 108
OSPF (Open Shortest Path First), 186
packet-switched connections, 385–386
PAgP (Port Aggregation Protocol), 315
PAP (Password Authentication Protocol), 398
PAR (positive acknowledgment with retransmission), 8
passive interfaces
RIPv1 (Routing Information Protocol version 1), 161–162
single-area OSPFv2, 200
Passive mode (LACP), 316
passive-interface command, 161–162, 208
Password Authentication Protocol (PAP), 398
password command, 46
passwords
recovery, 448
VTP (VLAN Trunking Protocol), 170
PAT (Port Address Translation), 372–373
PDMs (protocol-dependent modules), 240
PDUs (protocol data units), 4–5
performance, multiarea OSPF (Open Shortest Path First) operation, 194
physical layer, 19
overview of, 2
role of, 38
physical network topologies, 23–24
pi rule, 92
planning for ACLs (access control lists), 331
Platform as a Service (PaaS), 418
point-to-multipoint networks, 228
Point-to-Point Protocol. See PPP (Point-to-Point Protocol)
point-to-point WANs (wide area networks), 228, 381
poison reverse, 116
POP3 (Post Office Protocol), 3
Port Address Translation (PAT), 372–373
Port Aggregation Protocol (PAgP), 315
PortFast, 309
ports
Layer 3 routed ports, 182
PAgP (Port Aggregation Protocol), 315
port numbers, 7
port speed, 47
PVST+ port states, 302
Rapid PVST+
port roles, 305
port states, 304
security
switch port hardening, 291
violation verification and restoration, 287–289
speed, 47
verification, 364
positive acknowledgment, 7
positive acknowledgment with retransmission (PAR), 8
Post Office Protocol (POP3), 3
PPP (Point-to-Point Protocol), 11. See also PPPoE (PPP over Ethernet)
CHAP (Challenge Handshake Authentication Protocol), 397–398
concepts, 393
LCP (Link Control Protocol), 394–396
PAP (Password Authentication Protocol), 398
topology, 396
troubleshooting, 398
ppp authentication chap command, 397, 398
ppp authentication pap command, 398
PPPoE (PPP over Ethernet)
concepts, 399
pppoe enable command, 400
preemption (HSRP), 322
presentation layer (OSI model), 2
preventing routing loops, 115–116
PRI (Primary Rate Interface), 384
primary keyword, 308
Primary Rate Interface (PRI), 384
priority (HSRP), 322
private address space (IPv6), 379
private clouds, 419
private IPv4 addresses, 81
processes (EIGRP)
administrative distance, 244–245
composite metric, 244
convergence, 243
DUAL (Diffusing Update Algorithm), 245–246
processing interface ACLs (access control lists), 329–330
protocol data units (PDUs), 4–5
protocol-dependent modules (PDMs), 240
Pseudo-Random Global ID Algorithm, 96
public clouds, 419
public IPv4 addresses, 81
PVST+
definition of, 301
extended system ID, 303
features of, 301
port states, 302
Rapid PVST+
configuration, 309
definition of, 301
features of, 301
QoS (Quality of Service), 409–410
classification and marking
AF (Assured Forwarding), 412–413
DSCP (differentiated service code point), 411–412
EF (Expedited Forwarding), 412–413
congestion management, 413
TCP discards, 415
Query packets (EIGRP), 241
RA (Router Advertisement) message, 358
RADIUS (Remote Authentication Dial-In User Service), 292
range command, 65
Rapid PVST+
configuration, 309
definition of, 301
features of, 301
interface behavior, 304
port roles, 305
port states, 304
Rapid STP (RSTP)
definition of, 301
features of, 301
rate limiting, 290
RD (reported distance), 245
records (DNS), 365
recovery, password, 448
redistribute static command, 265, 267
redistribution, OSPFv2 default routes, 227
Regional Internet Registries (RIR), 93
reliability, 7
Reliable Transport Protocol (RTP), 240–241
remark keyword, 340
remote access with SSH (Secure Shell), 134–135
Remote Authentication Dial-In User Service (RADIUS), 292
remote terminal, 41
remote-access VPNs (virtual private networks), 389
Reply packets (EIGRP), 241
reported distance (RD), 245
Request messages
DHCP (Dynamic Host Configuration Protocol), 356–357
RIPv1 (Routing Information Protocol version 1), 156
reset command, 448
resolving address conflicts, 363–364
resource pooling, 418
restoring
retransmission timeout (RTO), 253
RFC 2328, 185
RIPv1 (Routing Information Protocol version 1)
automatic summarization, 162–164
operation, 156
RIPv2 (Routing Information Protocol version 2)
automatic summarization, 167
RIR (Regional Internet Registries), 93
roles, Rapid PVST+ ports and, 305
route poisoning, 116
Router Advertisement (RA) message, 358
router bgp command, 405
router configuration, 15. See also routing
IP addressing, troubleshooting, 136
IP SLA (service level agreement), 459–462
with IPv4
command syntax, 122
network connectivity, verifying, 133–135
topology, 121
with IPv6
command syntax, 130
network connectivity, verifying, 133–135
topology, 130
to relay DHCPv4 requests, 356–357
router on a stick
overview of, 176
router on a stick
overview of, 176
router ospf command, 198
router rip command, 163
Router Solicitation (RS) message, 358
router-id command, 198–199, 208
routing. See also EIGRP (Enhanced Interior Gateway Routing Protocol); OSPF (Open Shortest Path First); router configuration
directly connected routes, 109
dynamic routing
AD (administrative distance), 113–115
classful routing protocols, 112
classless routing protocols, 112
compared to static routing, 109
distance vector protocols, 111
EGP (exterior gateway protocols), 110–111
IGP (interior gateway protocols), 110–111, 115
link-state routing protocols, 111, 115–119
timeline of routing protocols, 110
inter-VLAN routing
legacy inter-VLAN routing, 175–176
multilayer switch, 177, 180–182
overview of, 175
router on a stick, 176, 177–180
IPv4 default route configuration, 144–146
IPv4 static route configuration
addressing scheme, 141
exit interface parameter, 143–144
ip route command, 140
summary route configuration, 147–148
IPv6 default route configuration, 150–151
IPv6 static route configuration
ipv6 route command, 149
show ipv6 route command, 149–150
summary route configuration, 151–152
topology, 148
RIPv1 (Routing Information Protocol version 1)
automatic summarization, 162–164
operation, 156
RIPv2 (Routing Information Protocol version 2)
automatic summarization, 167
routing loop prevention, 115–116
routing tables
EIGRP for IPv4, 255
static routing, 109
VTP (VLAN Trunking Protocol)
RS (Router Solicitation) message, 358
RSTP (Rapid STP)
definition of, 301
features of, 301
RTO (retransmission timeout), 253
RTP (Reliable Transport Protocol), 240–241
SaaS (Software as a Service), 418
satellite Internet, 388
SBI (southbound interface), 421
SDN (software-defined networking)
controllers, 421
Cisco ACI (Application Centric Infrastructures), 422–423
Cisco APIC-EM (Application Policy Infrastructure Controller Enterprise Module), 423–425
Open SDN and OpenFlow, 421–422
management planes, 420
overview of, 419
secondary keyword, 308
Secure Shell (SSH)
security
ACLs (access control lists)
defining, 329
identification numbers, 333
interface processing ACLs, 329–330
IP ACLs, list logic with, 330–331
operation, 329
planning for, 331
types of, 332
firewalls, 16
IDS (Intrusion Detection Systems), 16–17
IPS (Intrusion Prevention Systems), 16–17
password recovery, 448
ports
switch port hardening, 291
violation verification and restoration, 287–289
SSH (Secure Shell) configuration, 294–295
threat mitigation
Authentication, Authorization, and Accounting (AAA) framework, 292
native and management VLAN modification, 290–291
switch port hardening, 291
Sequence field (TCP), 7
servers
authentication servers, 293
service password-encryption command, 47
service sequence-numbers command, 433
service timestamps command, 433
service-password encryption command, 123
services, cloud computing, 418–419
session layer (OSI model), 2
set-request, 428
severity levels (Syslog), 432
Shortest Path First (SPF) algorithm, 117–118
show access-lists command, 341, 346–347
show cdp command, 275
show cdp interface command, 274
show cdp neighbors command, 275
show cdp neighbors detail command, 278–279
show cdp traffic command, 279
show etherchannel summary command, 318
show file systems command, 437–438
show flash command, 438–439, 443
show history command, 44
show interface command, 126–129
show interface switchport command, 318–319
show interface Tunnel command, 403
show interfaces command, 52–53, 65–66, 397
show interfaces status command, 52–53
show interfaces switchport command, 71, 74
show interfaces trunk command, 69, 73–74
show ip bgp summary command, 406–407
show ip dhcp binding command, 354
show ip dhcp conflict command, 364
show ip dhcp server statistics command, 354
show ip eigrp interface command, 269
show ip eigrp interfaces commands, 270
show ip eigrp neighbors command, 252–253
show ip eigrp neighbors commands, 269
show ip eigrp topology all-links command, 254
show ip eigrp topology command, 253
show ip interface brief command, 125, 179–180, 203–204, 270, 274, 403, 448
show ip interface command, 341–342
show ip nat statistics command, 377
show ip nat translations command, 377, 378
show ip ospf command, 198, 205–206, 236
show ip ospf database command, 218
show ip ospf interface brief command, 206, 217
show ip ospf interface command, 236
show ip ospf interfaces command, 198
show ip ospf neighbor command, 204–205, 236
show ip protocols command, 114, 159–160, 167, 198, 203–204, 217, 236, 251–252, 269, 270
show ip route command, 112–113, 124, 141–146, 158–159, 179–180, 182, 203–204, 406–407
show ip route eigrp command, 255, 265, 269
show ip route ospf command, 217, 236
show ip sla configuration command, 461
show ip sla statics command, 462
show ipv6 access-list command, 347
show ipv6 eigrp interface command, 270
show ipv6 eigrp neighbors command, 259–260, 270
show ipv6 interface, 362
show ipv6 interface brief command, 131–132
show ipv6 interface command, 132–133, 347–348
show ipv6 ospf command, 209–210
show ipv6 ospf database command, 211, 221–223
show ipv6 ospf interface brief command, 211, 221
show ipv6 ospf interface command, 210
show ipv6 ospf neighbor command, 211
show ipv6 ospf neighbors command, 233
show ipv6 protocols command, 210, 220, 258, 270
show ipv6 route command, 149–150, 268
show ipv6 route eigrp command, 260–261, 270
show ipv6 route ospf command, 212, 221, 233
show license feature command, 444
show license udi command, 445
show lldp interface command, 281
show lldp neighbors command, 282
show lldp neighbors detail command, 282–283
show lldp traffic command, 283
show logging command, 434, 435–436
show mac address-table command, 71
show ntp associations command, 437
show ntp status command, 437
show port-security command, 286–287
show port-security interface command, 286–287
show run command, 68, 317, 346, 377
show running-config command, 124, 342–343
show snmp community command, 431
show spanning-tree active command, 310
show spanning-tree brief command, 310
show spanning-tree command, 308, 310
show spanning-tree detail command, 310
show spanning-tree interface command, 310
show spanning-tree summary command, 310
show spanning-tree vlan command, 310
show standby brief command, 322–325
show version command, 442, 448
show vlan brief command, 63, 65
show vtp password command, 173
show vtp status command, 172, 173–175
Simple Mail Transfer Protocol (SMTP), 3
Simple Network Management Protocol (SNMP), 3
single-area OSPF (Open Shortest Path First)
neighbor establishment, 186–188
operation, 185
single-area OSPFv2
addressing scheme, 197
passive interfaces, 200
single-area OSPFv3
site-to-site VPNs (virtual private networks), 389
SLAAC (stateless address autoconfiguration), 104–105, 358–360
small offices or home offices (SOHO), 22
smooth round trip timer (SRTT), 253
SMTP (Simple Mail Transfer Protocol), 3
SNMP (Simple Network Management Protocol), 3
components, 427
configuration, 430
MIB (Management Information Base), 428–429
operation, 427
versions, 428
snmpget command, 429
snmp-server community command, 430
snmp-server contact command, 430
snmp-server location command, 430
Software as a Service (SaaS), 418
software-defined networking. See SDN (software-defined networking)
SOHO (small offices or home offices), 22
solicited-node multicast addresses, 98–100
southbound interface (SBI), 421
Spanning Tree Protocol. See STP (Spanning Tree Protocol)
spanning-tree bpduguard default command, 309
spanning-tree link-type point-to-point command, 309
spanning-tree mode rapid-pvst command, 309
spanning-tree portfast default command, 309
spanning-tree vlan command, 307–308
speed
duplex and speed mismatches, 52–53
port speed, 47
speed auto command, 46
speed command, 52
SPF (Shortest Path First) algorithm, 117–118
split horizon, 116
SRTT (smooth round trip timer), 253
SSH (Secure Shell)
denying, 337
standard IPv4 ACLs (access control lists), 332
standard IPv6 ACLs (access control lists), 344–345
standard named IPv4 ACLs (access control lists), 339–340
standard numbered IPv4 ACLs (access control lists), 335–337
standards
standby preempt command, 322
standby priority command, 322
stateless address autoconfiguration (SLAAC), 104–105, 358–360
states
OSPF (Open Shortest Path First), 235
port states
PVST+, 302
RSTP (Rapid STP), 304
static NAT (network address translation)
definition of, 371
static routing, 109
IPv4 static route configuration
addressing scheme, 141
exit interface parameter, 143–144
ip route command, 140
summary route configuration, 147–148
IPv6 static route configuration
ipv6 route command, 149
show ipv6 route command, 149–150
summary route configuration, 151–152
topology, 148
status codes (interface), 52, 125–126
store-and-forward switching, 29
STP (Spanning Tree Protocol)
BPDU guard, 309
PortFast, 309
Rapid PVST+, 309
MSTP (Multiple Spanning Tree Protocol), 301
overview of, 297
PVST+
definition of, 301
extended system ID, 303
features of, 301
port states, 302
Rapid PVST+
configuration, 309
definition of, 301
features of, 301
interface behavior, 304
port roles, 305
port states, 304
RSTP (Rapid STP)
definition of, 301
features of, 301
verification, 310
subconfiguration modes, 45
subnet addressing scheme, 83
subnet multiplier, determining, 83
subnets, denying, 337
subnetting
IPv4
bits borrowed, determining, 81–82
overview of, 81
subnet addressing scheme, 83
subnet multiplier, 83
variable-length subnet masking (VLSM), 85–87
successors, 245
summarization, automatic. See automatic summarization
summary route configuration
SVIs (switch virtual interfaces), 180–181
access layer switches, 14
configuration
auto-MDIX, 48
basic switch configuration commands, 46–47
Cisco devices, connecting to, 41
CLI EXEC sessions, 42
CLI navigation and editing shortcuts, 43–44
command history, 44
full-duplex communication, 47
half-duplex communication, 47
IOS examination commands, 44
network connectivity, verifying, 48–51
port speed, 47
subconfiguration modes, 45
core layer switches, 14
distribution layer switches, 14
Ethernet switching
asymmetric switching, 30
broadcast domains, 29
collision domains, 29
CSMA/CD (Carrier Sense Multiple Access with Collision Detection), 32–33
Ethernet addressing, 36
Ethernet standards, 21, 30–31, 33–34
frame formats, 37
Layer 2/Layer 3 switching, 30
legacy Ethernet technologies, 31–33
memory buffering, 30
overview of, 4
physical layer, 38
symmetric switching, 30
UTP (unshielded twisted pair) cabling, 34–35
multilayer switch
overview of, 177
switch port hardening, 291
switching, Ethernet. See Ethernet switching
switchport access vlan command, 46, 71, 291
switchport mode access command, 46, 285
switchport mode dynamic auto command, 74
switchport mode dynamic desirable command, 62
switchport mode trunk command, 62
switchport mode trunk dynamic auto command, 62
switchport nonegotiate command, 62
switchport port-security command, 285
switchport port-security mac-address command, 286
switchport port-security mac-address sticky command, 286
switchport port-security maximum command, 285
switchport port-security violation command, 285
switchport trunk native vlan command, 291
symmetric switching, 30
Syslog
definition of, 432
tables (EIGRP)
neighbor tables, 252–253, 259–260
TACACS+ (Terminal Access Controller Access-Control System Plus), 292
tag protocol ID (TPID), 61
TCP (Transmission Control Protocol)
connection establishment and termination, 9
definition of, 3
headers, 6
port numbers, 7
QoS (Quality of Service), 415
TCP/IP (Transmission Control Protocol/Internet Protocol) model
application layer, 5
PDUs (protocol data units), 4–5
transport layer
TCP (Transmission Control Protocol), 6–9
UDP (User Datagram Protocol), 10
Telecommunications Industry Association (TIA), 34
Telnet
overview of, 3
Terminal Access Controller Access-Control System Plus (TACACS+), 292
terminal history command, 44
terminal no history command, 44
terminating TCP connections, 9
testing DHCPv4 operation, 364
TFTP (Trivial File Transfer Protocol)
location, specifying, 440
topology, 442
threat mitigation
Authentication, Authorization, and Accounting (AAA) framework, 292
native and management VLAN modification, 290–291
switch port hardening, 291
three-tiered campus design, 24–26
TIA (Telecommunications Industry Association), 34
TID (Traffic Identifier) field, 412
Time to Live (TTL) field, 116
timeline of routing protocols, 110
TLV field (EIGRP), 242
Token Ring, 24
top of rack (ToR) switches, 417
topology
EIGRP (Enhanced Interior Gateway Routing Protocol), 253–255
IPv6 static routing, 148
multiarea OSPFv2 implementation, 215
multiarea OSPFv3 implementation, 218–219
NAT (network address translation), 369–370
OSPF (Open Shortest Path First), 197–198
OSPFv2, 225
OSPFv3, 231
packet forwarding, 108
PPP (Point-to-Point Protocol), 396
router configuration
with IPv4, 121
with IPv6, 130
TFTP, 442
VTP (VLAN Trunking Protocol), 171
WANs (wide area networks), 381–382
ToR (top of rack) switches, 417
TPID (tag protocol ID), 61
traceroute command, 134
tracert command, 50
Traffic Identifier (TID) field, 412
Transmission Control Protocol/Internet Protocol. See TCP/IP (Transmission Control Protocol/Internet Protocol) model
transport layer
TCP/IP model
TCP (Transmission Control Protocol), 6–9
UDP (User Datagram Protocol), 10
transport layer (OSI model), 2
triggered updates, 116
Trivial File Transfer Protocol. See TFTP (Trivial File Transfer Protocol)
troubleshooting
application layer, 458
bottom-up, 459
data link layer, 456
DHCP (Dynamic Host Configuration Protocol), 363–364
DNS (Domain Name System), 366
documentation, 451
configuration files, 451
EIGRP (Enhanced Interior Gateway Routing Protocol), 269–270
EtherChannel, 319
GRE (generic route encapsulation), 403
HSRP (Hot Standby Router Protocol), 326
IP addressing, 136
with IP SLA (service level agreement), 459–462
NAT (network address translation), 378–379
network layer, 456
OSPF (Open Shortest Path First), 235
adjacency, 236
states, 235
troubleshooting commands, 236–237
PPP (Point-to-Point Protocol), 398
PPPoE (PPP over Ethernet), 400–401
RIPv1 (Routing Information Protocol version 1), 158–161
RIPv2 (Routing Information Protocol version 2), 167–168
switch configuration
duplex and speed mismatches, 52–53
interface status codes, 52
Layer 1 problems on “up” interfaces, 54
media issues, 51
tools
ping, 133
traceroute, 134
VLANs (virtual local-area networks), 71–72, 73–75
trunking VLANs (virtual local-area networks)
DTP (Dynamic Trunking Protocol), 61–62
VTP (VLAN Trunking Protocol)
trusted ports, 290
TTL (Time to Live) field, 116
tunnel mode gre ip command, 402
tunneling
GRE (generic route encapsulation)
characteristics of, 401
overview of, 401
troubleshooting, 403
verification, 403
Type/Length/Value field (EIGRP), 242
UDP (User Datagram Protocol), 4, 10
ULAs (unique local addresses), 96–97
undebug all command, 161
unicast addresses
definition of, 92
IPv6
global unicast addresses, 92–95
IPv4 embedded addresses, 97
loopback addresses, 96
ULAs (unique local addresses), 96–97
unspecified addresses, 96
Uniform Resource Identifier (URI), 364
uninstalling licenses, 447
unique local addresses (ULAs), 96–97
Universal Resource Locator (URL), 365, 440
unshielded twisted pair (UTP) cabling, 34–35
unspecified addresses, 96
untrusted ports, 290
“up” interfaces, troubleshooting Layer 1 problems on, 54
Update packets (EIGRP), 241
URI (Uniform Resource Identifier), 364
URL (Universal Resource Locator), 365, 440
User Datagram Protocol (UDP), 4, 10
username command, 397
UTP (unshielded twisted pair) cabling, 34–35
variable-length subnet masking (VLSM), 85–87
vectors, distance, 111
verification
CDP (Cisco Discovery Protocol), 277–279
routing tables, 255
EIGRP for IPv6
overview of, 258
GRE (generic route encapsulation), 403
HSRP (Hot Standby Router Protocol), 322–323
LLDP (Link Layer Discovery Protocol), 281–283
NAT (network address translation), 377
network connectivity, 48–51, 133–135
NTP (Network Time Protocol), 436–437
OSPF (Open Shortest Path First)
RIPv1 (Routing Information Protocol version 1), 158–161
RIPv2 (Routing Information Protocol version 2), 167–168
routers
SNMP (Simple Network Management Protocol), 430–431
STP (Spanning Tree Protocol), 310
VLANs (virtual local-area networks), 64–66
VTP (VLAN Trunking Protocol), 173–175
versions (SNMP), 428
VID (VLAN ID), 61
viewing EIGRP (Enhanced Interior Gateway Routing Protocol) tables
routing tables, 255
virtual links, 228
virtual local-area networks. See VLANs (virtual local-area networks)
virtual machines (VMs), 416
virtual network functions (VNF), 419
virtual network infrastructure, 419
Virtual Router Redundancy Protocol (VRRP), 320
VLAN Trunking Protocol. See VTP (VLAN Trunking Protocol)
VLANs (virtual local-area networks)
inter-VLAN routing
legacy inter-VLAN routing, 175–176
multilayer switch, 177, 180–182
overview of, 175
router on a stick, 176, 177–180
native and management VLAN modification, 290–291
traffic types, 58
trunking
DTP (Dynamic Trunking Protocol), 61–62
VTP (VLAN Trunking Protocol), 169–175
types of, 59
VID (VLAN ID), 61
VTP (VLAN Trunking Protocol)
topology, 171
VLSM (variable-length subnet masking), 85–87
VMs (virtual machines), 416
VNF (virtual network functions), 419
voice VLANs (virtual local-area networks), 59–60
VPNs (virtual private networks)
benefits of, 389
VRRP (Virtual Router Redundancy Protocol), 320
VTP (VLAN Trunking Protocol)
topology, 171
vtp domain command, 171
vtp mode command, 171
vtp password command, 171
vtp pruning command, 171
Wallace, Kevin, 425
WANs (wide area networks), 22
BGP (Border Gateway Protocol)
connection options
circuit-switched connections, 384–385
comparison of, 388
dedicated connections, 383–384
packet-switched connections, 385–386
GRE (generic route encapsulation)
characteristics of, 401
overview of, 401
troubleshooting, 403
verification, 403
PPP (Point-to-Point Protocol)
CHAP (Challenge Handshake Authentication Protocol), 397–398
concepts, 393
LCP (Link Control Protocol), 394–396
PAP (Password Authentication Protocol), 398
topology, 396
troubleshooting, 398
PPPoE (PPP over Ethernet)
concepts, 399
VPNs (virtual private networks)
benefits of, 389
web traffic, allowing, 345
wide area networks. See WANs (wide area networks)
Wi-Fi, 388
WiMAX (Worldwide Interoperability for Microwave Access), 388
wireless connections, 19–20, 388
WLANs (wireless LANs), 17
WLCs (wireless LAN controllers), 17–19
Worldwide Interoperability for Microwave Access (WiMAX), 388
Activity: Order the Layers of the OSI and TCP/IP Models
Protocol Data Units and Encapsulation
Connection Establishment and Termination
Activity: Identify the TCP and UDP Characteristics
The TCP/IP Network Access Layer
Access Points and Wireless LAN Controllers
Network Media Forms and Standards
LAN Device Connection Guidelines
Physical and Logical Topologies
CCENT 100-101 ICND1 Exam Topics
Accessing and Navigating the Cisco IOS
CLI Navigation and Editing Shortcuts
Activity: Identify the Cisco IOS Navigation Feature
Basic Switch Configuration Commands
Packet Tracer Activity: Basic Switch Configuration
Half-Duplex, Full-Duplex, and Port Speed
Automatic Medium-Dependent Interface Crossover (auto-MDIX)
Verifying Network Connectivity
Troubleshoot Interface and Cable Issues
Interface Status and the Switch Configuration
CCENT 100-101 ICND1 Exam Topics
Key Points
VLAN Concepts
Traffic Types
Types of VLANs
Activity: Identify the Type of VLAN
Voice VLAN Example
Trunking VLANs
Dynamic Trunking Protocol
VLAN Configuration and Verification
Extended VLANs
Trunking Configuration and Verification
Packet Tracer Activity: VLAN and Trunking Configuration
VLAN Troubleshooting
Disabled VLANs
Trunking Troubleshooting
Check Both Ends of a Trunk
Check Trunking Operational States
Study Resources
Check Your Understanding
CCENT 100-101 ICND1 Exam Topics
Key Topics
IPv4 Addressing
Header Format
Classes of Addresses
Purpose of the Subnet Mask
Private and Public IP Addressing
Activity: Identify Private and Public Addresses
Subnetting in Four Steps
Determine How Many Bits to Borrow
Determine the New Subnet Mask
Determine the Subnet Multiplier
List the Subnets, Host Ranges, and Broadcast Addresses
Subnetting Example 1
Subnetting Example 2
Subnetting Example 3
Packet Tracer Activity: Basic Subnetting Scenario
VLSM
Packet Tracer Activity: VLSM Subnetting Scenario
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Overview and Benefits of IPv6
The IPv6 Protocol
IPv6 Address Types
Unicast
Global Unicast Address
Link-Local Address
Loopback Address
Unspecified Address
Unique Local Address
IPv4 Embedded Address
Multicast
Assigned Multicast
Solicited-Node Multicast
Anycast
Activity: Identify the Type of IPv6 Address
Representing the IPv6 Address
Conventions for Writing IPv6 Addresses
Conventions for Writing IPv6 Prefixes
Activity: Compress IPv6 Address Representations
IPv6 Subnetting
Subnetting the Subnet ID
Subnetting into the Interface ID
EUI-64 Concept
Stateless Address Autoconfiguration
Migration to IPv6
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Packet Forwarding
Path Determination and Switching Function Example
Routing Methods
Activity: Compare Dynamic and Static Routing
Classifying Dynamic Routing Protocols
IGP and EGP
Distance Vector Routing Protocols
Link-State Routing Protocols
Classful Routing Protocols
Classless Routing Protocols
Dynamic Routing Metrics
Administrative Distance
IGP Comparison Summary
Activity: Compare Dynamic Routing Protocol Features
Routing Loop Prevention
Link-State Routing Protocol Features
Building the LSDB
Calculating the Dijkstra Algorithm
Convergence with Link-State Protocols
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topic
Basic Router Configuration with IPv4
Command Syntax
Configuration Example
Verification Example
Activity: Order the Steps for IPv4 Router Configuration
Basic Router Configuration with IPv6
Command Syntax
Configuration Example
Activity: Order the Steps for IPv6 Router Configuration
Verifying IPv4 and IPv6 Network Connectivity
Packet Tracer Activity: Dual-Stack Router Address Configuration
Basic IP Addressing Troubleshooting
Default Gateway
Duplicate IP Addresses
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Static and Default Routing Overview
IPv4 Static Route Configuration
IPv4 Static Routes Using the Next-Hop Parameter
IPv4 Static Routes Using the Exit Interface Parameter
IPv4 Default Route Configuration
IPv4 Summary Static Route Configuration
IPv6 Static Routing
IPv6 Static Route Configuration
IPv6 Default Route Configuration
IPv6 Summary Static Route Configuration
Packet Tracer Activity: Dual-Stack Static and Default Routing Configuration
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topic
RIP Concepts
RIPv1 Message Format
RIPv1 Operation
RIPv1 Configuration
RIPv1 Verification and Troubleshooting
Passive Interfaces
Automatic Summarization
Default Routing and RIPv1
RIPv2 Configuration
Packet Tracer Activity: RIPv2 Configuration
Disabling Autosummarization
RIPv2 Verification and Troubleshooting
Packet Tracer Activity: RIPv2 Troubleshooting
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
VTP Concepts
VTP Configuration and Verification
Inter-VLAN Routing Concepts
Legacy Inter-VLAN Routing
Router on a Stick
Multilayer Switch
Router on a Stick Configuration and Verification
Multilayer Switch Inter-VLAN Routing Configuration and Verification
Creating Additional SVIs
Configuring a Layer 3 Routed Port
Packet Tracer Activity: Router and Layer 3 Switch Inter-VLAN Routing Configuration
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Single-Area OSPF Operation
OSPF Message Format
OSPF Packet Types
Activity: Identify the OSPF Packet Type
Neighbor Establishment
Link-State Advertisements
OSPF DR and BDR
OSPF Algorithm
Link-State Routing Process
OSPFv2 Versus OSPFv3
Similarities Between OSPFv2 and OSPFv3
Differences Between OSPFv2 and OSPFv3
Activity: Compare OSPFv2 and OSPFv3
Multiarea OSPF Operation
Multiarea OSPF Design
Multiarea OSPF Improves Performance
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Single-Area OSPFv2 Configuration
The router ospf Command
Router ID
The network Command
Passive Interfaces
Modifying the OSPF Metric
Verifying OSPFv2
Single-Area OSPFv3 Configuration
The Router ID in OSPFv3
Verifying OSPFv3
Packet Tracer Activity: Dual-Stack Single-Area OSPF Configuration
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Multiarea OSPFv2 Implementation
Multiarea OSPFv3 Implementation
Packet Tracer Activity: Dual-Stack Multiarea OSPF Configuration
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
OSPFv2 Configuration Example
Modifying OSPFv2
Redistributing a Default Route
Modifying Hello and Dead Intervals
OSPF Network Types
DR/BDR Election
Controlling the DR/BDR Election
OSPFv3 Configuration Example
Modifying OSPFv3
Propagating a Default Route
Modifying the Timers
Packet Tracer Activity: Fine-Tuning Dual-Stack OSPF
Troubleshooting OSPF
OSPF States
OSPF Adjacency
OSPF Troubleshooting Commands
Packet Tracer Activity: Troubleshooting Dual-Stack OSPF
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
EIGRP Overview
EIGRP Characteristics
PDMs
RTP
EIGRP Packet Types
EIGRP Message Format
Activity: Identify the EIGRP Packet Type
EIGRP Processes
EIGRP Convergence
EIGRP Composite Metric
Administrative Distance
DUAL
DUAL Concepts
DUAL FSM
Activity: Identify the Administrative Distance
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
EIGRP for IPv4 Configuration
EIGRP Topology and Addressing Scheme
The network Command
The Router ID
EIGRP for IPv4 Verification
Examining the Protocol Details
Examining Neighbor Tables
Examining the Topology Tables
Examining the Routing Table
EIGRP for IPv6 Concepts
EIGRP for IPv6 Configuration
EIGRP for IPv6 Verification
Examining the Protocol Details
Examining the Neighbor Table
Examining the Routing Table
Packet Tracer Activity: Dual-Stack EIGRP Configuration
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Modifying the EIGRP for IPv4 Configuration
Automatic Summarization
EIGRP for IPv4 Topology
Propagating an IPv4 Default Route
Modifying the EIGRP Metric
Modifying Hello Intervals and Hold Times
Modifying EIGRP for IPv6
EIGRP for IPv6 Topology
Propagating an IPv6 Default Route
Modifying Bandwidth Utilization
Modifying Hello Intervals and Hold Times
Packet Tracer Activity: Fine-Tuning Dual-Stack EIGRP
EIGRP Troubleshooting Commands
Discontiguous Networks
Packet Tracer Activity: Troubleshooting EIGRP
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
CDP Overview
CDP Configuration
CDP Verification
Packet Tracer Activity: Use CDP to Discover a Network
LLDP Overview
LLDP Configuration
LLDP Verification
Activity: Compare CDP and LLDP
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Port Security Configuration
Activity: Determine Port Security Action
Port Restoration After a Violation
LAN Threat Mitigation
DHCP Snooping
Native and Management VLAN Modification
Switch Port Hardening
AAA
802.1X
SSH Configuration
Activity: Order the Steps to Configure SSH
Packet Tracer Activity: Implement LAN Security and Device Hardening
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
STP Concepts and Operation
STP Algorithm
STP Convergence
STP Varieties
PVST Operation
Port States
Extended System ID
Activity: Identify the STP Port States
Rapid PVST+ Operation
RSTP Interface Behavior
RSTP Port Roles
Edge Ports
Activity: Identify the PVST+ and Rapid PVST+ Characteristics
Configuring and Verifying Varieties of STP
STP Configuration Overview
Configuring and Verifying the BID
Configuring PortFast and BPDU Guard
Configuring Rapid PVST+
Verifying STP
Packet Tracer Activity: Modify a Default STP Configuration
Switch Stacking
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
EtherChannel Operation
Benefits of EtherChannel
Implementation Restrictions
EtherChannel Protocols
Port Aggregation Protocol
Link Aggregation Control Protocol
Configuring EtherChannel
Verifying EtherChannel
Troubleshooting EtherChannel
First-Hop Redundancy Concepts
FHRPs
HSRP Operation
HSRP Versions
HSRP Priority and Preemption
HSRP Configuration and Verification
HSRP Load Balancing
Troubleshooting HSRP
Packet Tracer Activity: Configure EtherChannel and HSRP
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
ACL Operation
Defining an ACL
Processing Interface ACLs
List Logic with IP ACLs
Planning to Use ACLs
Types of ACLs
ACL Identification
ACL Design Guidelines
Activity: Compare Standard Extended and Named ACLs
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Configuring Standard Numbered IPv4 ACLs
Standard Numbered IPv4 ACL: Permit Specific Network
Standard Numbered IPv4 ACL: Deny a Specific Host
Standard Numbered IPv4 ACL: Deny a Specific Subnet
Standard Numbered IPv4 ACL: Deny Telnet or SSH Access to the Router
Configuring Extended Numbered IPv4 ACLs
Extended Numbered IPv4 ACL: Deny FTP from Subnets
Extended Numbered IPv4 ACL: Deny Only Telnet from Subnet
Activity: Evaluate an Extended ACL
Configuring Named IPv4 ACLs
Standard Named IPv4 ACL Steps and Syntax
Standard Named IPv4 ACL: Deny a Single Host from a Given Subnet
Extended Named IPv4 ACL Steps and Syntax
Adding Comments to Named or Numbered IPv4 ACLs
Verifying IPv4 ACLs
Comparing IPv4 and IPv6 ACLs
Configuring IPv6 ACLs
Step 1: Name the IPv6 ACL
Step 2: Create the IPv6 ACL
Step 3: Apply the IPv6 ACL
Standard IPv6 ACL: Allow SSH Remote Access
Extended IPv6 ACL: Allow Only Web Traffic
Verifying IPv6 ACLs
Troubleshooting ACLs
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
DHCPv4
DHCPv4 Configuration Options
Configuring a Router As a DHCPv4 Server
Configuring a Router to Relay DHCPv4 Requests
Configuring a Router As a DHCPv4 Client
Activity: Order the Steps in the DHCPv4 Operation
Packet Tracer Activity: DHCPv4 Configuration
DHCPv6
SLAAC
Stateless DHCPv6
Stateful DHCPv6
Stateless and Stateful DHCPv6 Operation
DHCPv6 Configuration Options
Configuring a Router As a Stateless DHCPv6 Server
Configuring a Router As a Stateful DHCPv6 Server
DHCP Troubleshooting
Resolve IPv4 Address Conflicts
Test Connectivity Using a Static IP Address
Verify Switch Port Configuration
Test DHCPv4 Operation on the Same Subnet or VLAN
DNS Operation
Troubleshooting DNS
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
NAT Concepts
A NAT Example
Dynamic and Static NAT
NAT Overload
NAT Benefits
NAT Limitations
Activity: Identify NAT Address Types
Configuring Static NAT
Configuring Dynamic NAT
Configuring NAT Overload
Verifying NAT
Troubleshooting NAT
Packet Tracer Activity: Static and Dynamic NAT Configuration
NAT for IPv6
IPv6 Private Address Space
Purpose of NAT for IPv6
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
WAN Topologies
WAN Connection Options
Dedicated Connection Options
Circuit-Switched Connection Options
Packet-Switched Connection Options
Metro Ethernet
MPLS
Internet Connection Options
DSL
Cable Modem
Wireless
Choosing a WAN Link Option
VPN Technology
VPN Benefits
Types of VPN Access
Activity: Identify the WAN Terminology
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
PPP Concepts
The PPP Frame Format
PPP Link Control Protocol (LCP)
Looped-Link Detection
Enhanced Error Detection
PPP Multilink
PPP Authentication
PPP Configuration and Verification
Basic PPP
CHAP
PAP
PPP Troubleshooting
PPPoE Concepts
PPPoE Configuration
PPPoE Configuration Example
PPPoE Troubleshooting
GRE Tunneling
GRE Characteristics
GRE Configuration and Verification
GRE Troubleshooting
BGP Concepts
Packet Tracer Activity: PPP and GRE Configuration
eBGP Configuration and Verification
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
QoS
Classification and Marking
DSCP and IPP
EF and AF
Congestion Management
Policing, Shaping, and TCP Discards
QoS and TCP
Activity: Identify the Assured Forwarding DSCP Value
Cloud Computing
Server Virtualization
Cloud Computing Services
Virtual Network Infrastructure
Software-Defined Networking
Data, Control, and Management Planes
Controllers
SDN Examples
Open SDN and OpenFlow
The Cisco Application Centric Infrastructure
The Cisco APIC Enterprise Module (APIC-EM)
APIC-EM and ACLs
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
SNMP Operation
SNMP Components
SNMP Messages
SNMP Versions
The Management Information Base
Configuring SNMP
Verifying SNMP
Syslog
Syslog Operation
Syslog Configuration and Verification
Network Time Protocol
Cisco IOS File System and Devices
IFS Commands
URL Prefixes for Specifying File Locations
Commands for Managing Configuration Files
Manage Cisco IOS Images
Backing Up a Cisco IOS Image
Restoring a Cisco IOS Image
Managing Cisco IOS Licenses
Password Recovery
Packet Tracer Activity: Device Management and Maintenance
Study Resources
Check Your Understanding
CCNA 200-125 Exam Topics
Key Topics
Troubleshooting Documentation
Configuration Files
Topology Diagrams
Baseline Date
Troubleshooting Methods
Troubleshooting at Each Layer
Physical Layer
Data Link Layer
Network Layer
Transport Layer
Application Layer
Bottom-Up Method and the Layers
Troubleshooting with IP Service Level Agreement
Packet Tracer Activity: CCNA Skills Practice
Study Resources
Check Your Understanding
| ICND 1 100-105 Practice Test |
| ICND 2 200-105 Practice Test |