AutoQoS

February 10th,2012    by Nicholas

AutoQoS is an extremely useful feature that can take a lot of the mystery out of building a QoS policy. Unfortunately, there are several restrictions on this feature that you need to be aware of.

First, it is only available on point-to-point links between routers. This includes point-to-point subinterfaces on ATM and Frame Relay PVCs, as shown in the example. The feature is also available on PPP and HDLC Serial connections. It cannot be used on any multiple access media, including Ethernets, or multipoint subinterfaces.

Second, it can't be used with any virtual templates or frame map statements. It cannot be used with either Frame Relay or ATM SVCs.

Third, it must be enabled on both ends of each link or PVC. This doesn't necessarily mean that both routers must run the same IOS version, however, as long as the AutoQoS feature is available on both routers.

Fourth, you should disable any other service policies or access-groups on the router, even if they are associated with different interfaces.

And finally, you must ensure that CEF is enabled for this feature to work.

AutoQoS for VoIP was introduced in IOS Version 12.2(15)T. This command is actually a macro that adds a series of commands to your router's configuration. You can use the show auto qos command to see exactly what it has added:

Router1#show auto qos
 !
 policy-map AutoQoS-Policy-UnTrust
  class AutoQoS-VoIP-RTP-UnTrust
   priority percent 70
   set dscp ef
  class AutoQoS-VoIP-Control-UnTrust
   bandwidth percent 5
   set dscp af31
  class AutoQoS-VoIP-Remark
   set dscp default
  class class-default
   fair-queue
 !
 ip access-list extended AutoQoS-VoIP-RTCP
  permit udp any any range 16384 32767
 !
 ip access-list extended AutoQoS-VoIP-Control
  permit tcp any any eq 1720
  permit tcp any any range 11000 11999
  permit udp any any eq 2427
  permit tcp any any eq 2428
  permit tcp any any range 2000 2002
  permit udp any any eq 1719
  permit udp any any eq 5060
 !
 rmon event 33333 log trap AutoQoS description "AutoQoS SNMP traps for Voice Drops" owner AutoQoS
 rmon alarm 33333 cbQosCMDropBitRate.1169.1171 30 absolute rising-threshold 1 33333 falling-threshold 0 owner AutoQoS


Serial0/0.1: DLCI 904 -


 !


 interface Serial0/0


  frame-relay traffic-shaping


 !


 interface Serial0/0.1 point-to-point


  frame-relay interface-dlci 904


   class AutoQoS-FR-Se0/0-904


 !


 map-class frame-relay AutoQoS-FR-Se0/0-904


  frame-relay cir 1544000


  frame-relay bc 15440


  frame-relay be 0


  frame-relay mincir 1544000


  service-policy output AutoQoS-Policy-UnTrust


Router1#


Clearly, this little macro has done a lot of work, and in fact this command output doesn't show the class-maps that were created at the same time! Let's examine what it did. First, it created a policy-map called AutoQoS-Policy-UnTrust, which allocates up to 70% of the bandwidth on this link to voice traffic and another 5% to VoIP control packets. It also sets the DSCP values for these traffic streams, overriding whatever values were previously in the packets. All other traffic is configured to use weighted fair-queuing (WFQ).


Then, skipping over the access-lists, whose purpose is fairly clear, the macro has created an RMON rule that will automatically send an SNMP trap every time the router is forced to drop a voice packet. You can then use these trap logs to determine if the queuing parameters are appropriate. If you find that you are dropping a lot of packets, then you may need to increase your bandwidth to reduce congestion.


And finally, it has implemented Frame Relay Traffic Shaping to ensure that the router doesn't attempt to overrun the CIR for the PVC. This is a critical consideration because, by default, the router will assume that it can transmit at wire speed on each PVC individually. So if you have several PVCs on a single physical circuit, it will allow any of them to burst to the full bandwidth capacity of the interface, possibly over-running the CIR of the PVC. As a result, even with the best queuing strategy on the router, you could find yourself dropping packets in the frame cloud.


The AutoQoS for the Enterprise feature was introduced in IOS Version 12.3(7)T. It classifies traffic into 10 categories, which are listed in Table 11-2. Note that if the discovery feature doesn't see any traffic of a particular type, then AutoQoS will not create a corresponding class on the router.








Table 11-2.    AutoQos traffic classes








Class Name




DSCP




Description








IP Routing
CS6
Routing   protocol and ICMP traffic




Interactive   Voice
EF
RTP Voice   traffic




Interactive   Video
AF41
RTP Video   traffic




Streaming   Video
CS4
Various   streaming audio and video protocols, such as CU-SeeMe, RealAudio, and Netshow




Telephony   Signaling
CS3
RTP and   H.323




Transactional/Interactive
AF21
Database   protocols, such as SAP, SQLNet, and SQLServer, as well as interactive   protocols, including Citrix, Telnet, Notes, SSH, and X11




Network   Management
CS2
Primarily   SNMP




Bulk Data
AF11
Batch file   transfer protocols such as FTP, Exchange, POP3, SMTP, NNTP, and network   printing




Scavenger
CS1
Various   peer-to-peer and entertainment protocols, including Napster, Fasttrack, and   Gnutella; this group is given a worse than best-efforts priority




Best Effort
0
Various   miscellaneous protocols, including HTTP, NFS, SunRPC, NTP, and gopher, as   well as any unidentified traffic






We enabled auto discovery QoS on both ends of a Frame-Relay PVC, ran some traffic through the link and then looked at the output of the show auto discovery qos command to see what the router suggested for a QoS policy:


Router1#show auto discovery qos


Serial0/0.1


 AutoQoS Discovery enabled for applications


 Discovery up time: 3 minutes, 41 seconds


 AutoQoS Class information:


 Class Voice:


  No data found.


 Class Interactive Video:


  No data found.


 Class Signaling:


  No data found.


 Class Streaming Video:


  No data found.


 Class Transactional:


  Recommended Minimum Bandwidth: 1 Kbps/<1% (AverageRate)


  Detected applications and data:


  Application/       AverageRate        PeakRate           Total


  Protocol           (kbps/%)           (kbps/%)           (bytes)


  -----------        -----------        --------           ------------


  telnet             1/<1               32/2               53404


 Class Bulk:


  No data found.


 Class Scavenger:


  No data found.


 Class Management:


  Recommended Minimum Bandwidth: 1 Kbps/<1% (AverageRate)


  Detected applications and data:


  Application/       AverageRate        PeakRate           Total


  Protocol           (kbps/%)           (kbps/%)           (bytes)


  -----------        -----------        --------           ------------


  snmp               1/<1               11/<1              50245


 Class Routing:


  Recommended Minimum Bandwidth: 0 Kbps/0% (AverageRate)


  Detected applications and data:


  Application/       AverageRate        PeakRate           Total


  Protocol           (kbps/%)           (kbps/%)           (bytes)


  -----------        -----------        --------           ------------


  icmp               0/0                8/<1               11432


  eigrp              0/0                0/0                6016


 Class Best Effort:


  Current Bandwidth Estimation: 3 Kbps/<1% (AverageRate)


  Detected applications and data:


  Application/       AverageRate        PeakRate           Total


  Protocol           (kbps/%)           (kbps/%)           (bytes)


  -----------        -----------        --------           ------------


  http               3/<1               33/2               84777


  unknowns           0/0                0/0                184




Suggested AutoQoS Policy for the current uptime:


 !


 class-map match-any AutoQoS-Transactional-Se0/0.1


  match protocol telnet


 !


 class-map match-any AutoQoS-Management-Se0/0.1


  match protocol snmp


 !


 policy-map AutoQoS-Policy-Se0/0.1


  class AutoQoS-Transactional-Se0/0.1


   bandwidth remaining percent 1


   random-detect dscp-based


   set dscp af21


  class AutoQoS-Management-Se0/0.1


   bandwidth remaining percent 1


   set dscp cs2


  class class-default


   fair-queue


Router1#


As you can see, we didn't let the discovery phase run for very long, and consequently did not discovery very many types of traffic. The router saw no traffic in the Voice, Interactive Video, Telephony Signaling, Streaming Video, Bulk, or Scavenger classes. But it did see some TELNET traffic in the Transactional class, some SNMP traffic in the Network Management class, as well as some Routing Protocol and Best Efforts traffic. Note that the command output includes average and peak rate traffic statistics, which the router will use to help determine queuing parameters:


Class Best Effort:


  Current Bandwidth Estimation: 3 Kbps/<1% (AverageRate)


  Detected applications and data:


  Application/       AverageRate        PeakRate           Total


  Protocol           (kbps/%)           (kbps/%)           (bytes)


  -----------        -----------        --------           ------------


  http               3/<1               33/2               84777


  unknowns           0/0                0/0                184


The output then ends with a suggestion for a QoS policy-map to be applied to this interface. This output shows that the AutoQoS feature uses the NBAR match command to identify protocols. NBAR is the basis of AutoQoS.


Once we are satisfied that this is a good QoS policy, we enable it by using the auto qos command:


Router1(config)#interface Serial0/0.1 point-to-point


Router1(config-subif)#frame-relay interface-dlci 904


Router1(config-fr-dlci)#auto qos


%Creating new map-class.


Router1(config-fr-dlci)#no auto discovery qos


Router1(config-fr-dlci)#exit


Router1(config-subif)#exit













It is critical to enable     AutoQoS before disabling the discovery feature. Otherwise, the router will     lose all of the traffic information that it has learned.












If you want to see the new configuration commands that AutoQoS has added to your router, use the show auto qos command:


Router1#show auto qos


 !


 policy-map AutoQoS-Policy-Se0/0.1


  class AutoQoS-Transactional-Se0/0.1


   bandwidth remaining percent 1


   random-detect dscp-based


   set dscp af21


  class AutoQoS-Routing-Se0/0.1


   bandwidth remaining percent 1


   set dscp cs6


  class class-default


   fair-queue


 !


 policy-map AutoQoS-Policy-Se0/0.1-Parent


  class class-default


   shape average 1544000


   service-policy AutoQoS-Policy-Se0/0.1


 !


 class-map match-any AutoQoS-Transactional-Se0/0.1


  match protocol telnet


 !


 class-map match-any AutoQoS-Routing-Se0/0.1


  match protocol icmp


  match protocol eigrp


  match protocol rip




Serial0/0.1: DLCI 904 -


 !


 interface Serial0/0.1 point-to-point


  frame-relay interface-dlci 904


   class AutoQoS-FR-Se0/0-904


 !


 map-class frame-relay AutoQoS-FR-Se0/0-904


  frame-relay cir 1544000


  frame-relay bc 15440


  frame-relay be 0


  frame-relay mincir 1544000


  service-policy output AutoQoS-Policy-Se0/0.1-Parent


Router1#


Note that the actual policy map does not exactly match the version that we saw earlier during the data collection phase. The biggest difference is that the router saw some additional RIP traffic in the meantime and added this protocol to the class called AutoQoS-Routing-Se0/0.1. It has also created a Frame Relay map class that includes traffic shaping parameters for the PVC.


Because AutoQoS adds so many different commands to the router configuration, if you want to disable AutoQoS, it is not sufficient to just remove the auto qos command. You will need to remove all of the other commands separately. In fact, you should be careful about removing this command because if you do so, the show auto qos command will no longer function, making it much more difficult to figure out what commands are actually related to this feature. To make matters worse, once you have removed the auto qos command, you can't even put it back because the router needs to repeat the discovery phase first!


If you want to remove this feature after you have enabled it, we recommend capturing the output of the show auto qos command and using a text editor to create a configuration script that selectively eliminates all of the associated commands.


AutoQoS for the Enterprise can be a useful way of generating a detailed queuing strategy for your network. We do urge some caution in using this feature, however. In our experience, the discovery option can be unreliable. In particular, if you are using NBAR or have access-groups enabled on the router, this can interfere with the data collection. Furthermore, we have seen questionable results in the output that went away after disabling and re-enabling the discovery option.


We strongly recommend looking very closely at the recommendations made by this command before implementing them.


Tag :, , 
Posted in CCIE Bootcamps ; 0 Comment


CCIE RS Education - To get a Earth Class IT Certification
February 1st,2012    by Nicholas

CCIE RS  education  is meant for people  highly  possible  networking experts and is a wide-ranging  finding out  program. It is  imagined of to quicken your  competency to an qualified  degree, even when offering you  the capabilities and coaching to  cross this rigorous test. CCIE RS Training may be the simplest way to obtain the Cisco internetwork  Knowledgeable  Certification.  It is also the very best amount of certification, that's furnished by Cisco  Techniques. IT  professionals managing   gigantic  networks and expert in  making use of Cisco  items will  need  to go an extensive examination  to receive this certification.


The CCIE RS coaching is performed at CCIE coaching  colleges, which has tutors,  lecturers, and boot camps. Inside the  CCIE, there are 6 tracks,  particularly,  Storage Networking, Voice and Wireless, Routing &  Switching, Service Provider, and Security. This examination is  considered to be  pretty  tough and excellent one to clear, providing you with technical  experience and dedication. This also makes you a member of an exclusive  group of pros, makes your resume look grand, and will increase your  credibility.


Moving forward in career certainly is the ambition of most IT  gurus. CCIE RS  coaching will provide the platform to supply a bonus  in the job market.  Once you begin  in search of higher opportunities in or exterior your company, the CCIE  certification will provide help to attain your objective simply on this  aggressive entire world.


You'll have many reasons for taking CCIE RS coaching; getting  excessive salary could possibly be considered one of them. Getting this  certification will not be a simple work; it takes years, sometimes, to  clear the exams. It takes eighteen months and a whole bunch of dollars  to clear this test, that's why  there's large marketplace for such licensed  pros. The  plus side to it really is that, with such limited certified  gurus and high  demand for them, the salaries  presented are  very  high.


After receiving the CCIE RS coaching, you might be  considered of to be an knowledgeable  in the networking field. Subsequently, if a tough scenario arises, you  might be at all times called in to settle the problem. When you will  have this certification, you may be acknowledged worldwide for having  high qualification in the  networking and technology industry.


It can be essential to  understand the general means of CCIE RS coaching examination, so that  you will understand the form of  instruction  which can be needed. This examination consists of two principal  elements, the written, and the lab test. The written  half is of two hours size containing a number of-choice question. You'll  be able to sit for the lab examination only if you are successful in  the written exam.  The lab examination is an  eight-hour one that can take a look at your capacity to put collectively  networking and software equipment and your troubleshooting ability.   Three years are furnished for  passing the lab examination, after which you will  be needing to reappear for the written exam before  continuing for the lab exam again.


A lot of the candidates showing for the CCIE RS  schooling  examination do not go on the first attempt. Nonetheless, there is  fairly a high price of success inside  the second attempt. To enhance the probabilities of success in this  examination, you should research the subjects that are  examination specific. One essential issue to be kept in  thoughts is that, after receiving this certificate, you should recertify  each two years.


Consider researching  concerning the expertise in every area as listed inside  of the Cisco blueprint. Its recommended to have not less than four hundred  hours of lab follow by using a simulated gear as a  tactic to succeed within just the CCIE security lab exam.  Dedicate a part of your day in mastering every topic. You will discover various study materials obtainable available in the market for  better understanding of the subjects talked about in the blueprint of Cisco. They assist you to in making  ready yourself by way of the aid of structured software. You'll be able  to spend money on a good  coaching  plan, which lets you  improve your degree of expertise.


You can go for online  teaching  packages from reputed corporations, which provide observe assessments  and different helpful services to enhance your skills. CCIE safety can  be utilized as a ladder in the direction of success. It is accepted as a recognized certification  application inside  of the networking industry worldwide. A CCIE in  security will open the gateway towards a shiny career.


Tag :, , 
Posted in CCIE R&S ; Comments Off


CCIE RS Education - To get a Earth Class IT Certification
January 11th,2012    by Nicholas

CCIE RS  education  is meant for people  highly  possible  networking experts and is a wide-ranging  finding out  program. It is  imagined of to quicken your  competency to an qualified  degree, even when offering you  the capabilities and coaching to  cross this rigorous test. CCIE RS Training may be the simplest way to obtain the Cisco internetwork  Knowledgeable  Certification.  It is also the very best amount of certification, that's furnished by Cisco  Techniques. IT  professionals managing   gigantic  networks and expert in  making use of Cisco  items will  need  to go an extensive examination  to receive this certification.


The CCIE RS coaching is performed at CCIE coaching  colleges, which has tutors,  lecturers, and boot camps. Inside the  CCIE, there are 6 tracks,  particularly,  Storage Networking, Voice and Wireless, Routing &  Switching, Service Provider, and Security. This examination is  considered to be  pretty  tough and excellent one to clear, providing you with technical  experience and dedication. This also makes you a member of an exclusive  group of pros, makes your resume look grand, and will increase your  credibility.


Moving forward in career certainly is the ambition of most IT  gurus. CCIE RS  coaching will provide the platform to supply a bonus  in the job market.  Once you begin  in search of higher opportunities in or exterior your company, the CCIE  certification will provide help to attain your objective simply on this  aggressive entire world.


You'll have many reasons for taking CCIE RS coaching; getting  excessive salary could possibly be considered one of them. Getting this  certification will not be a simple work; it takes years, sometimes, to  clear the exams. It takes eighteen months and a whole bunch of dollars  to clear this test, that's why  there's large marketplace for such licensed  pros. The  plus side to it really is that, with such limited certified  gurus and high  demand for them, the salaries  presented are  very  high.


After receiving the CCIE RS coaching, you might be  considered of to be an knowledgeable  in the networking field. Subsequently, if a tough scenario arises, you  might be at all times called in to settle the problem. When you will  have this certification, you may be acknowledged worldwide for having  high qualification in the  networking and technology industry.


It can be essential to  understand the general means of CCIE RS coaching examination, so that  you will understand the form of  instruction  which can be needed. This examination consists of two principal  elements, the written, and the lab test. The written  half is of two hours size containing a number of-choice question. You'll  be able to sit for the lab examination only if you are successful in  the written exam.  The lab examination is an  eight-hour one that can take a look at your capacity to put collectively  networking and software equipment and your troubleshooting ability.   Three years are furnished for  passing the lab examination, after which you will  be needing to reappear for the written exam before  continuing for the lab exam again.


A lot of the candidates showing for the CCIE RS  schooling  examination do not go on the first attempt. Nonetheless, there is  fairly a high price of success inside  the second attempt. To enhance the probabilities of success in this  examination, you should research the subjects that are  examination specific. One essential issue to be kept in  thoughts is that, after receiving this certificate, you should recertify  each two years.


Consider researching  concerning the expertise in every area as listed inside  of the Cisco blueprint. Its recommended to have not less than four hundred  hours of lab follow by using a simulated gear as a  tactic to succeed within just the CCIE security lab exam.  Dedicate a part of your day in mastering every topic. You will discover various study materials obtainable available in the market for  better understanding of the subjects talked about in the blueprint of Cisco. They assist you to in making  ready yourself by way of the aid of structured software. You'll be able  to spend money on a good  coaching  plan, which lets you  improve your degree of expertise.


You can go for online  teaching  packages from reputed corporations, which provide observe assessments  and different helpful services to enhance your skills. CCIE safety can  be utilized as a ladder in the direction of success. It is accepted as a recognized certification  application inside  of the networking industry worldwide. A CCIE in Security will open the gateway towards a shiny career.


Tag :, , 
Posted in CCIE RS Training ; Comments Off


CCIE Lab Examination - Some Beneficial Ideas and Steering
January 10th,2012    by Nicholas

CCIE Lab Examination - Some  Beneficial  Ideas  and Steering


Using CCIE,  experts have an  opportunity to determine  on their own within the field of  networking. Just a few thousand persons are  believed to apparent the CCIE exam. CCIE labs  are thought of to impart  substantial  phase of training  environment, which acts for a  major  profit for candidates.


CCIE examination entails two assessments, which might be a CCIE  published  investigate  as well as a CCIE lab exam. In order to endeavor the lab  exam, you must  distinct the  composed  examination. For  everybody who is not in a  very place to  obvious the  created  examination the first  time, you really should watch to  get a hundred and eighty days for  retaking it. Right after clearing  the  authored  take a look  at, it truly is optimum to  help make an test for your CCIE  lab examination within just  eighteen months. It you're  incapable to apparent the lab examination, then  you definitely have to re-try inside  of 12 months along with a  look at to maintain the  written  examination end result legitimate.


It has a time limit of two  hrs and it is carried out in  an assortment  of have a look at centers the world over. The  matters lined inside the  created  examination depend on the  specialization or track you decide  on. For support  provider, it's possible you'll  pick out from  categories like Cable, DSL, IP Telephony, Dial,  Information  materials Networking, Optical, WAN  switching, and Metro Ethernet. Every  prepared  examination is  formed  around inside the beta  form at a worth of $50  USD.


The CCIE lab examination is  distinctive in naturel, as  it is an eight-hour examination, which  exams the facility  within the candidate to configure and  troubleshoot networking  machines. Cisco has  substantial  degree of kit in its CCIE labs for use  inside lab exams. The blue print of the lab examination is obtainable on  its site. The lab  examination isn't  accessible in any respect Pearson VUE or Prometric testing  centers.


A regular CCIE R&S  lab examination contains a two-hour hassle-taking pictures section by  which that you're presented a collection of  tickets for preconfigured networks within the CCIE labs. It is advisable to have the ability to identify and  resolve the faults. You can proceed towards the configuration part  soon after you end the  troubleshooting part.


A sound passing score is critical to try a CCIE  lab test. Cisco uses the help of proctors to guage  the candidates inside the preliminary rounds in its CCIE Lab Exam located worldwide. Factors are awarded when a criterion is met and  grading is completed using some  computerized tools. The outcomes of a lab examination are mirrored  inside of forty eight hours. A  move/fail is projected in the end  consequence and in case of a fail, the  areas where you happen to be lacking  behind are talked about so as to put together properly earlier than a  re-try.


Cisco stands out within the  field of networking by providing a  CCIE certification so that you can pursue your education as well as get  acknowledged by a reputed organization. The CCIE Labs test can be utilized like a platform to challenge your capability in varied tracks provided  by Cisco. Attempting a lab examination requires rigorous  training  and  large  sense of understanding. The CCIE labs  variety step one to your  significant  potential career.


Tag :, , , 
Posted in CCIE R&S ; Comments Off


CCIE Bootcamp and are the Bootcamp Coaching affords offered by CathaySchool?
January 9th,2012    by Nicholas

It really is aimed to select the  professionals within the networking business enterprise for the famend  firm  supplying  options to the specialized departments. Along with a objective  to have CCIE certification the  applicants really need  to move by two  obligatory  option  exams. First of all, the  prepared  examination is to be  handed once which the candidates  can sit for your Lab exam.  The brief-listed candidates can exclusively have CCIE  certification. In an effort to get  ready for that CCIE exams, CCIE Bootcamp is made.


CCIE Bootcamps  give basically probably the  most  easy  solution of  passing out the checks of CCIE. One can find a variety of companies  relatively institutes which  offer CCIE Bootcamp  schooling  comparable to Cathay School. Using a watch to  improve to  get qualified for that  bootcamps the institutes  quite  often current a prerequisite. It can help to spice up the  prospect for  the applicants to  maneuver the CCIE exams in the better way  than other folks. This prerequisite known as CCNP  status.


The involved  price for taking the CCIE  Security examination is  huge,  so most candidates go to get a planning study course to cross it in a single sitting.  Some unbiased  firms and  institutions  offer you programs and workshop to  these  deciding upon CCIE Protection  coaching.   Nevertheless, most  candidates choose to make  the most of the instructor-led  and on-line workshops, which Cisco  provide, being a  element of  Authorized Finding  out Companions  system.  The  instruction   methods are  offered in  addition to the educators are accepted by  Cisco.


For your CCIE  Protection certification, you will need to sign-up for  that  authored  examination inside your area  of specialization. Each of the exams are executed on the Cisco  authorized facility, which also accepts  expenses for  the examination.  The price of using a CCIE  developed  examination is from $80 to $325. The  written  examination is supervised and carried  out on a pc.  It's of one or two hrs paper made up of numerous  options, drag and drop  queries  and fill while in the blanks. Apart from white boards  and markers for calculations, like a  applicant for CCIE Security  coaching examination, you are not  permitted to carry some other product  on the  exam hall.


CCIE Bootcamp is accompanied along with a  number of  techniques to  deliver the most effective  preparing materials  with the  pupils. They  principally  offer you some must-have  publications to arrange them for the  published  CCIE just take a glance at  collectively with some  world wide web  access for your Lab  check. Counting on these two  classes the CCIE Bootcamps is divided into two  sections. The divisions are class  development and the Lab simulation. The category  building  calls  for two phases and they're fingers-on  coaching and lectured-based  mainly courses. Within the category  composition the pupils are provided  together with the  info of Little bit splitting, VLSM  and many others. But the lab simulation is  crucial element of CCIE  Bootcamp. Right here the students are subjected  to cope with lots of real-life  conditions  as well as the troubleshooting  skills are checked  properly. That is the  ultimate phase of CCIE Bootcamps  the location the students are nicely-prepared for your  Blueprintv4, MPLS and so on.  These methodologies  support  students to troubleshoot any real-life  dilemmas  and  enhance the power to learn  the proper  choices.


But there can be very few trusted  institutes obtainable  on hand from the market which provides  entire CCIE Bootcamps. Amongst lots of  properly-renowned institutes is Cathay Faculty which  renders  exceedingly  perfect  organisations  just in case of bootcamps for CCIE. They  supply bootcamp amenities to  rather  substantial  variety of  school college  students from many different  corners on the planet like Australia,  Norway, United kingdom, Sweden, USA and a multitude of further. In  accordance considering the research of this institute from  2005, they are sustaining document selection of proportion of passing  rate in CCIE test.  This file is by itself a sort of  assure for them. There are  numerous  will cause to choose out Cathay College for CCIE Bootcamps. The  report quantity of passing  fee of just about 90%  is among the most  captivating  purpose of it. Other  than it, a particular other  outstanding  characteristic would be the one-to-one lab coaching which  help  the college students to filter out each of the  doubts relating to any downside with the instructors.


The  necessary  answers regarding the bootcamp is  obtainable on the reliable  provider web site  that's cathayschool.com. It is a  extremely  simple  website which  supplies a  couple of placing amenities  like on-line Self-Study CCIE Lab Workbooks, one-on-one  by going online coaching, Teacher Led  training  and so forth. All of the facilities in addition to the course durations jointly  aided by the  money are effectively-described right here such the  buyers will want to not need  to  confront any form  of inconvenience  with regards to CCIE Bootcamps.


Tag :, , 
Posted in CCIE Bootcamps ; Comments Off


Perfect CCIE Coaching
January 7th,2012    by Nicholas

There is not a  need to have an  alternative  skilled  education  or program certificates to  qualify. The CCIE Security  instruction  consists of a  written  examination to qualify and after that the  lab test.  You might be  proposed to get with the  least 3-5 yrs of  occupation  knowledge  earlier than wanting this certification.


The examination for that CCIE  Security is of two-hour  size with many  possibilities. This  includes hundred  questions,  which can go  over topics equivalent to computer software protocols,  working  programs,  protection technologies,  basic safety protocols, and Cisco  security  programs. The examination  supplies are  presented on the spot and also you  aren't permitted to usher in  external reference  products.


Network engineers possessing a CCIE certificates are  thought of as since the  pro while in the group  engineering self-control and the masters of CISCO  services. The CCIE has introduced  revolution inside of the  neighborhood  field in terms of technically  complicated  assignments and  methods with all  the mandatory  instruments and methodologies. There exists a  application which updates and  reorganizes the instruments to supply  superior  provider. You can get  several modes of CCIE  Teaching  like  penned  examination preparing and  effectivity primarily  based lab. This  aids to bolster the  efficiency and  regular of your  trade. CISCO has launched this certification policy in 1993  which  includes a watch to  distinguish the highest industry  experts in the relaxation.


In order to be certified,  to begin with  published  examination will have to be handed  immediately after which has to cross the lab examination. CISCO in  any way  moments tries to  apply 100  %  varied CCIE  Training  techniques for  higher overall  performance. There are a number of  basic steps for that CCIE  certification. The first phase for certification is usually to pass a two hours lasting  pc based mostly  typically MCQ oriented  developed  exam. For this examination  essential  payments need to be  accomplished by way of using the net. This examination is  associated with  examination vouchers and promotional codes. The authenticity  on the voucher  supplying  agency must be  very well  known  to the  candidates. The promotional code will be  accessed properly and just in case of  fraudulent vouchers along with promotional codes should  not satisfactory  and CISCO won't repay the value. The candidates ought to  wait around five days for your  penned  examination following  fee and so they cannot sit for your exact  same  exam for your  following 100 eighty days just in  case of recertification.


Using a look at to get certified and  eligible for that CCIE  Schooling  some aspects are  to get remembered  properly. As a  result of passing the  prepared  examination the candidates use a most of 18 months time for  striving  the lab test. Should the time period exceeds then  the authenticity of the  authored  examination may be invalid. For your first of all  timer used to have CCIE certification the  created  exam is obtainable within the sort of Beta examination with  reductions  for sale. From the Beta time period the  candidates can sit only the moment  for the test. The  outcomes will come within  six to 8 weeks once the examination is in  excess of.


Another  stage for that CCIE  certification is definitely the Lab exam. The  shortlisted candidates of  your  penned  test can solely  apply for that fingers-on lab  test. Even  though there are plenty of  published  examination centers of CISCO then again Lab exam facilities  are minimal. It  really is an  eight hour fingers-on functional  based mostly  principally examination whereby the power of  troubleshooting and configuring group  chiefly  centered  difficulties  and application are checked. For the scheduling  of Lab examination the shortlisted candidates for the  previously  created  examination will need  to  existing the identification quantity in conjunction with passing score and then  the date of passing.


The price for Lab examination  must be cleared  before than ninety days of the  scheduled test. With out the  fee the reservation can be  cancelled. Immediately  after passing  the Lab exam combined together with the  created  check the candidates can  implement for the CCIE  certification. By considering most of the  particulars  affiliated along with the  pointed out  measures, it's possible to get  the CISCO certification in hand and be  qualified  for that CCIE  Training.  CCIE Training


Tag :, , , 
Posted in CCIE R&S ; Comments Off


CCIE RS Training, Adjusting Local Preference Values
January 3rd,2012    by Nicholas

When BGP routers within an AS exchange information about a particular route using iBGP, they include the Local Preference value. All of the routers in the AS are then able to use this value to decide how to weight this route versus other BGP routes to the same destination. BGP consults the Local Preference value early in the route selection process, before even the AS Path attribute. So this provides an extremely useful and flexible way of forcing particular routes to use particular paths. Routers do not include Local Preference information when exchanging routes through eBGP connections.

A common example would be if you had two connections to an external network and you wanted to ensure that one was the primary path and the other was a backup. Suppose further that one of the routers in the AS handles the primary path and a second router handles the secondary path. The first example shows how to globally increase the Local Preference values of all routes received by one of these routers:

Router1(config)#router bgp 65500

Router1(config-router)#bgp default local-preference 200

Now all of the external routes that this router handles will have a Local Preference value of 200. If you can reach a particular prefix through more than one path, the other routers in this AS will prefer to use the one with the highest Local Preference value. The default Local Preference is 100.

The following output shows two paths to the network 10.0.0.0/8. This router learned the first route through iBGP from another router. You can see from the LocPrf column that this route has the default Local Preference value of 100:

Router2#show ip bgp

BGP table version is 4, local router ID is 172.18.5.3

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete


Network          Next Hop            Metric LocPrf Weight Path

* i10.0.0.0         172.18.5.2                    100      0 65510 65531 i

*>                  192.168.2.5                            0 65520 65531 i

Router2#

This router learned the second route through eBGP, so it doesn't have a Local Preference value. The router treats any missing Local Preference values as if they had the default value of 100. Note that although BGP has a route selection rule that prefers eBGP routes to iBGP routes, this rule is consulted after the Local Preference is, but for now the Local Preference values are equal. So, all other things being equal, this router prefers to use the more direct route that it learned itself, which is indicated by the ">" character at the beginning of the line.

Now we will change the default Local Preference value on the other router to 200, using the bgp default local-preference command as shown above:

Router2#show ip bgp

BGP table version is 4, local router ID is 172.18.5.3

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete


Network          Next Hop            Metric LocPrf Weight Path

*>i10.0.0.0         172.18.5.2                    200      0 65510 65531 i

*                   192.168.2.5                            0 65520 65531 i

Router2#

As you can see, the Local Preference value has changed to 200 for the iBGP route. So this router now prefers the iBGP route. You can see more detail by specifying the prefix with this command:

Router2#show ip bgp 10.0.0.0/8

BGP routing table entry for 10.0.0.0/8, version 4

Paths: (2 available, best #1, table Default-IP-Routing-Table)

Advertised to non peer-group peers:

192.168.2.5

65510 65531

172.18.5.2 from 172.18.5.2 (172.18.5.2)

Origin IGP, localpref 200, valid, internal, best

65520 65531

192.168.2.5 from 192.168.2.5 (172.21.1.1)

Origin IGP, localpref 100, valid, external

Router2#

This clearly shows that the router interprets the missing Local Preference value as 100 on this router. If we now change the default value on this router to 75, you can see that it will use this new value instead when the value is missing:

Router2#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router2(config)#router bgp 65500

Router2(config-router)#bgp default local-preference 75

Router2(config-router)#end

Router2#clear ip bgp *


Router2#show ip bgp 10.0.0.0/8

BGP routing table entry for 10.0.0.0/8, version 2

Paths: (2 available, best #2, table Default-IP-Routing-Table)

Advertised to non peer-group peers:

192.168.2.5

65520 65531

192.168.2.5 from 192.168.2.5 (172.21.1.1)

Origin IGP, localpref 75, valid, external

65510 65531

172.18.5.2 from 172.18.5.2 (172.18.5.2)

Origin IGP, localpref 200, valid, internal, best

Router2#

Notice that we had to clear the BGP peers and wait until they reconnected for this change to take effect. Also notice that, by chance, the router displays the routes in the opposite order. There is no particular significance to this ordering. The route that entered the AS via eBGP on this router (Router2) now has a Local Preference value of 75, while the route that entered via Router1 has a Local Preference of 200, which we configured earlier in this recipe.

You can also use route maps to define different Local Preference values for different individual routes. This gives you a finer granularity, even allowing you to manually balance the load between these links by forcing some routes through one path and the rest through the other path.

The second example shows how to use a route map to adjust Local Preference values:

Router1(config)#ip prefix-list LOW_LP_PREFIXES seq 10 permit 172.22.0.0/16

Router1(config)#route-map LOCALPREF permit 10

Router1(config-route-map)#match ip address prefix-list LOW_LP_PREFIXES

Router1(config-route-map)#set local-preference 50

Router1(config-route-map)#exit

Router1(config)#route-map LOCALPREF permit 20

Router1(config-route-map)#exit

Here we have defined a prefix list that just matches the prefix 172.22.0.0/16. Whenever the route map sees a route that matches this prefix list, it sets the Local Preference value for this route to 50.

We have included an empty clause at the end of the route map, which simply passes all other routes unchanged. Every route map ends with an implicit deny all. So if we didn't include this, the router would simply drop any prefixes that didn't match the first clause.

Then we invoke this rule by using the standard route-map option to the neighbor command:

Router1(config)#router bgp 65500

Router1(config-router)#neighbor 192.168.1.5 remote-as 65510

Router1(config-router)#neighbor 192.168.1.5 route-map LOCALPREF in

Notice that we are applying this route map to all incoming routes received from this specific eBGP peer. Now you can see that this particular route has a local preference value of 50:

Router1#show ip bgp 172.22.0.0/16

BGP routing table entry for 172.22.0.0/16, version 5

Paths: (2 available, best #2, table Default-IP-Routing-Table)

Flag: 0x208

Advertised to non peer-group peers:

192.168.1.5

65510 65531

192.168.1.5 from 192.168.1.5 (172.25.26.55)

Origin IGP, localpref 50, valid, external

65520 65531

172.18.5.3 from 172.18.5.3 (172.18.5.3)

Origin IGP, localpref 75, valid, internal, best

Router1#

Note also that the other iBGP router is still using the Local Preference value of 75 that we configured a moment ago. CCIE RS Training


Because this method used a route map, you can easily construct rules that would change the Local Preference values based on a large variety of different parameters. You could do this to give a higher or lower Local Preference value, based on whether or not the route passes through a particular remote AS:

Router1(config)#ip as-path access-list 17 permit _65531_

Router1(config)#route-map LOCALPREF permit 25

Router1(config-route-map)#match as-path 17

Router1(config-route-map)#set local-preference 75

Router1(config-route-map)#exit


Tag :, , 
Posted in CCIE R&S ; Comments Off


CCIE Certification,  Redistributing Static Routes into OSPF
December 30th,2011    by Nicholas

To redistribute static routes into an OSPF process, use the redistribute static configuration command:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#ip route 192.168.10.0 255.255.255.0 172.22.1.4

Router1(config)#ip route 172.24.1.0 255.255.255.0 172.22.1.4

Router1(config)#ip route 10.100.1.0 255.255.255.0 172.22.1.4

Router1(config)#router ospf 55

Router1(config-router)#redistribute static

% Only classful networks will be redistributed

Router1(config-router)#exit

Router1(config)#end

Router1#

As the warning message indicates, OSPF will only redistribute classful network routes by default. In the example, we included three static routes. Of these routes, only 192.168.10.0/24 is classful. If we then look at the routing table on a different router, we can see that the other two routes are not present:

Router5#show ip route ospf

O E2 192.168.10.0/24 [110/20] via 172.25.1.5, 00:02:49, Ethernet0

     172.16.0.0/24 is subnetted, 1 subnets

O       172.16.2.0 [110/20] via 172.25.1.5, 00:02:49, Ethernet0

     172.20.0.0/16 is variably subnetted, 3 subnets, 3 masks

O IA    172.20.10.0/24 [110/1582] via 172.25.1.5, 00:02:49, Ethernet0

O IA    172.20.1.0/30 [110/1572] via 172.25.1.5, 00:02:49, Ethernet0

O IA    172.20.100.1/32 [110/1573] via 172.25.1.5, 00:02:49, Ethernet0

     172.22.0.0/24 is subnetted, 1 subnets

O       172.22.1.0 [110/20] via 172.25.1.5, 00:02:49, Ethernet0

     172.25.0.0/16 is variably subnetted, 3 subnets, 2 masks

O       172.25.25.1/32 [110/11] via 172.25.1.5, 00:02:49, Ethernet0

     10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks

O IA    10.2.2.2/32 [110/1573] via 172.25.1.5, 00:02:49, Ethernet0

O IA    10.1.1.0/30 [110/1572] via 172.25.1.5, 00:02:49, Ethernet0

Router5#

You can ensure that all routes are redistributed, regardless of whether they are classful or not, by including the subnets keyword:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#router ospf 55

Router1(config-router)#redistribute static subnets

Router1(config-router)#exit

Router1(config)#end

Router1#

As you can see, all three static routes are advertised now:

Router5#show ip route ospf

O E2 192.168.10.0/24 [110/20] via 172.25.1.5, 00:04:23, Ethernet0

     172.16.0.0/24 is subnetted, 1 subnets

O       172.16.2.0 [110/20] via 172.25.1.5, 00:04:23, Ethernet0

     172.20.0.0/16 is variably subnetted, 3 subnets, 3 masks

O IA    172.20.10.0/24 [110/1582] via 172.25.1.5, 00:04:23, Ethernet0

O IA    172.20.1.0/30 [110/1572] via 172.25.1.5, 00:04:23, Ethernet0

O IA    172.20.100.1/32 [110/1573] via 172.25.1.5, 00:04:23, Ethernet0

     172.22.0.0/24 is subnetted, 1 subnets

O       172.22.1.0 [110/20] via 172.25.1.5, 00:04:23, Ethernet0

     172.25.0.0/16 is variably subnetted, 3 subnets, 2 masks

O       172.25.25.1/32 [110/11] via 172.25.1.5, 00:04:23, Ethernet0

     172.24.0.0/24 is subnetted, 1 subnets

O E2    172.24.1.0 [110/20] via 172.25.1.5, 00:00:24, Ethernet0

     10.0.0.0/8 is variably subnetted, 3 subnets, 3 masks

O IA    10.2.2.2/32 [110/1573] via 172.25.1.5, 00:04:23, Ethernet0

O IA    10.1.1.0/30 [110/1572] via 172.25.1.5, 00:04:23, Ethernet0

O E2    10.100.1.0/24 [110/20] via 172.25.1.5, 00:00:24, Ethernet0

Router5#

Another useful thing to notice about this output is the fact that all of these external static routes are marked as type E2, meaning that they are external routes of Type 2. As we discussed in the Introduction to this chapter, any time you distribute a foreign route into OSPF, it is always considered external. This helps OSPF to ensure that it doesn't create any loops through an external network when there are multiple connection points.

When OSPF distributes Type 2 External routes, it doesn't add the internal link cost to the net route cost. OSPF always prefers Type 1 to Type 2 External routes because Type 1 routes do include the internal path cost in the metric. If you want to distribute static routes as Type 1 instead of the default type 2, you need to include the metric-type keyword in the redistribute static command:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#router ospf 55

Router1(config-router)#redistribute static subnets metric 40 metric-type 1

Router1(config-router)#exit

Router1(config)#end

Router1#

In this example, we have also set the default metric for these static routes to a value of 40. Notice that the next hop router now shows the total cost of the path as 60 because it now includes the internal link cost of 20:

Router5#show ip route 192.168.10.0

Routing entry for 192.168.10.0/24

  Known via "ospf 87", distance 110, metric 60, type extern 1

  Redistributing via ospf 87

  Last update from 172.25.1.5 on Ethernet0, 00:01:20 ago

  Routing Descriptor Blocks:

  * 172.25.1.5, from 172.25.25.1, 00:01:20 ago, via Ethernet0

      Route metric is 60, traffic share count is 1

Router5#


Tag :, , 
Posted in CCIE Bootcamps ; Comments Off


CCIE boot camp to organize for this CCIE Exam
December 28th,2011    by Nicholas

Obtaining CCIE certification is essential to stand forward among the many crowd and to get paid high salaries. You need to put in lot of efforts with instructor led coaching to go the examination and get the CISCO credentials. You can use Google to locate online courses to organize for the written exam and without spending a dime books.


CCIE certification is most respected one throughout the world. It's good to prepare properly to be able to clear this exam. It is also costly examination. Only less than ten p.c of professionals, who appeared for CCIE examination, will pass the examination. Subsequently, people, who wish to get acknowledged with this prestigious examination among the many crowd and to get a extremely paid job, have to put in efforts to learn vigorously for this exam. You possibly can search for the help of CCIE boot camp to organize for this exam.


CCIE examination requires you to clear two parts namely the written examination and the lab examination. The written examination is of two hours duration. You need to pay US$250 per every attempt. You can either attend instructor led coaching courses or select online courses to prepare for the written examination. You may go this examination with ease. You'll want to acquire at least 300 out of one thousand to clear this examination. CISCO also presents many text books and online material that can assist you to organize for the written examination. Professionals, who are already working in the networking area, can simply perceive the theoretical and sensible networking concepts to simply cross the examination.


IT professionals, who have handed the written examination, need to register for the CCIE lab inside three years to get the coveted certification from the Internetworking leader - CISCO. It is advisable to pay US$1400 for the lab examination. It is the hardest part of the certification. You need to put in at the very least 9 months to prepare for the lab examination, which is of eight hours duration. You have to clear the lab examination in the first try to get CCIE certification. Otherwise, you have to pay US$1400 for the examination again.


I recommend you to decide on teacher led coaching for the lab examination. The lab is especially geared toward imparting sensible training in all points of the CCIE networking security. It's essential to pay large sums for the training. Subsequently, it is best to put together to pay for the training as well as the examination fees.


With teacher led training, you possibly can easily understand numerous features of the sensible networking concepts. You should choose a center that provides training by experienced instructors. You must read the CCIE workbook and observe the labs repeatedly until you're aware of each networking concept. CCIE boot camp will have necessary amenities to help you perceive the ideas by way of essential lab lessons utilizing CCIE workbook. People, who've thorough data in CCIE networking, can skip this step. I like to recommend you to endure teacher led coaching to grasp all of the concepts.


Professionals, who are unable to pay for the teacher led training, might simulate the lab at their residence by buying essential components and practising it with the assistance of CCIE Voice Workbook. The basic thing to apply the lab is doing the workout routines repeatedly till you master the course and its concepts using CCIE workbook. You might want to spend lengthy days and nights before one month of showing for the lab exam.


That you must examine with CISCO to about the latest modifications within the syllabus and the examination sample to get CCIE certification. The 4 open ended core data questions can be faraway from the CCIE safety lab examination with efficient from 15 August 2011. The professionals can make the most of this time to give attention to the troubleshooting and configuration aspects.


Tag :, , , , 
Posted in CCIE Bootcamps ; 0 Comment


CCIE Security Training - EIGRP Route Summarization
December 23rd,2011    by Nicholas

The ip summary-address eigrp configuration command allows you to configure manual summary addresses on a per-interface basis:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#interface Serial0/0.2

Router1(config-subif)#ip summary-address eigrp 55 172.25.0.0 255.255.0.0

Router1(config-subif)#exit

Router1(config)#end

Router1#

EIGRP can automatically summarize subnet routes into classful network-level routes. You can enable this command with the auto-summary command or disable it with the no auto-summary configuration command:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#router eigrp 55

Router1(config-router)#no auto-summary

Router1(config-router)#exit

Router1(config)#end

Router1#

A useful new feature allows you to configure a leak-map so that the router will advertise the summary route, as well as some subset of the summarized addresses:

Router9# configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router9(config)#ip prefix-list 10.5.5/24 permit 10.5.5.0/24

Router9(config)#route-map LEAK10-5-5 permit 10

Router9(config-route-map)#match ip address prefix-list 10.5.5/24

Router9(config-route-map)#exit

Router9(config)#interface Serial0/0

Router9(config-if)#ip summary-address eigrp 55 10.5.0.0 255.255.0.0 leak-map LEAK10-5-5

Router9(config-if)#exit

Router9(config)#end

Router9#

Summarization is one of the most powerful features of EIGRP, and one of the most frequently overlooked methods for improving network efficiency. Unlike RIP, which summarizes along classful network boundaries, EIGRP uses CIDR, allowing you to summarize at any bit in the address, as well as allowing supernets. Conversely, EIGRP allows you to summarize at any router in the network. This means that with EIGRP, you can have multiple hierarchical levels of address summarization, which can greatly improve the maximum size and efficiency of a large network, but only if it is designed properly to allow it.

The auto-summary command was enabled by default until IOS version 12.2(8)T, when it started to be disabled by default.


You can see all of the summarization information, including which interfaces will send out summary addresses, using the show ip protocols command:

Router1#show ip protocols

Routing Protocol is "eigrp 55"

Outgoing update filter list for all interfaces is not set

Redistributed static filtered by 7

Incoming update filter list for all interfaces is not set

Default networks flagged in outgoing updates

Default networks accepted from incoming updates

EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0

EIGRP maximum hopcount 100

EIGRP maximum metric variance 1

Redistributing: static, eigrp 55

Automatic network summarization is not in effect

Address Summarization:

172.25.0.0/16 for Serial0/0.2

Summarizing with metric 28160

Maximum path: 4

Routing for Networks:

10.0.0.0

172.22.0.0

172.25.0.0

Routing Information Sources:

Gateway         Distance      Last Update

10.1.1.1              90      1d23h

172.25.1.7            90      00:00:57

172.25.2.2            90      00:00:57

172.22.1.4            90      00:00:57

Distance: internal 90 external 170

Router1#

In this example, we have only summarized 172.25.0.0/16 on interface Serial0/0.2. However, it is important to remember that you can summarize several networks at the same time on a single interface by simply configuring all of the different summary addresses, as follows:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#interface Serial0/0.2

Router1(config-subif)#ip summary-address eigrp 55 172.25.0.0 255.255.0.0

Router1(config-subif)#ip summary-address eigrp 55 10.0.0.0 255.0.0.0 80

Router1(config-subif)#end

Router1#

When it summarizes addresses, EIGRP will automatically suppress all of the routes that are included in the summary. Of course, if there are no routes to summarize, the router won't distribute the summary address.

The metric of this summary route will be equal to the best metric of the routes being summarized. It is important to remember this because if the route with the best metric goes away for any reason, EIGRP will change the metric of the summary. So if the route with the best metric is unstable, it will make the summary route unstable. If you want to ensure that this doesn't happen, you can configure a static route within the summarized range, and point it to a null interface. Then you must configure the router to redistribute this static route into EIGRP.

The following example shows a CIDR supernet summarization:

Router1#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router1(config)#interface Serial0/0.2

Router1(config-subif)#ip summary-address eigrp 55 0.0.0.0 0.0.0.0

Router1(config-subif)#end

Router1#

In this case, if there are any routes to distribute at all, EIGRP will distribute only the default route 0.0.0.0/0 and suppress all of the individual routes. This is actually an extremely useful technique on low-speed WAN links, particularly when this link represents the only path to the rest of the network. In such cases, the remote site only needs to know that it can get to everything it needs through this link. Further, because routing is always done by taking the longest match first, if the remote site happens to have more specific routing information for a particular destination, it won't use this summary route.

Router2#show ip route eigrp

D*   0.0.0.0/0 [90/2172416] via 172.25.2.1, 00:00:30, Serial0.1

Router2#

Leak-maps became available in IOS level 12.3(14)T. This feature allows you to configure a summary address, and also advertise some of the summarized networks. In the example shown in the Solutions section above, we have summarized all of the 10.5.0.0/16 range of addresses:

Router9(config)#interface Serial0/0

Router9(config-if)#ip summary-address eigrp 55 10.5.0.0 255.255.0.0 leak-map LEAK10-5-5

This summary includes a leak-map called LEAK10-5-5, which is defined by using a route map:

Router9(config)#ip prefix-list 10.5.5/24 permit 10.5.5.0/24

Router9(config)#route-map LEAK10-5-5 permit 10

Router9(config-route-map)#match ip address prefix-list 10.5.5/24

This route map does nothing but match a particular prefix, 10.5.5.0/24, and exclude it from summarization. We can then look at the routing table on a neighboring router:

Router2#show ip route 10.0.0.0

Routing entry for 10.0.0.0/8, 9 known subnets

Variably subnetted with 3 masks

Redistributing via eigrp 55


D       10.1.2.1/32 [90/2300416] via 172.20.10.9, 00:20:34, Serial0/0

D       10.5.5.0/24 [90/2838016] via 172.20.10.9, 00:00:37, Serial0/0

D       10.1.1.0/24 [90/2300416] via 172.20.10.9, 00:20:34, Serial0/0

D       10.5.0.0/16 [90/2838016] via 172.20.10.9, 00:18:53, Serial0/0

Router2#

This router now receives both the summary address, 10.5.0.0/16, and the specific prefix 10.5.5.0/24. This can be quite useful in situations when you have imperfect summarization. That is, you might be able to reduce all of the routes for a particular part of your network to a single summary route, 10.5.0.0/17. But if the single network 10.5.5.0/24 resides in a different part of the network, you need to make sure that this specific prefix also appears in routing tables throughout the network. Recall that routers will always use the most specific route when forwarding packets. CCIE RS Training


Previously, if you couldn't summarize all of the prefixes in a network, you had to advertise all of the individual routes. So the leak-map feature allows you to reduce the size of your routing table without causing problems for a few exceptions. CCIE Voice Training


Note that because the feature uses route maps to define the leaked routes, you could also match parameters such as the route type (internal, external, or local) tag, or the router's next-hop interface for that route. For example you could use the interface matching to leak individual routes only if the remote site is on dial backup. CCIE Security Training


Tag :, , 
Posted in CCIE RS Training ; Comments Off


« Previous Page