AI, ML, Development + Cisco Learning Blog Learning about Machine Learning, Artificial Intelligence, related devlopment topics and formerly Routing and Switching, Datacenter, Security and other topics, CCIE #23664, Frank Wagner

24. August 2006

Lot’s of information on the CCIE Lab

Filed under: Lab — ocsic @ 10:32

and lot’s of rumours and talk abouts. Well for me i think i have filtered the most important things out.

1. Read the Lab and check things for at least 20-30 minutes and try to find the pit falls and what might become difficult.
2. Know the DocCD in and out.
3. Try to sleep good before the lab, to get there in good shape. Don’t be to scared. The Lab is a big part of psychological stress testing.
4. Don’t let surrunding influence you to much. Wear maybe earplugs. Take a jacket in. Might be cold also, because of airconditioning. It’s just you, noone else. You can only ask the proctor inelligent questions.
5. Don’t spend to much time on questions, you just get 3 point’s on. There is only 80 from 100 to get. There is no report about the passing points.

This could become a first try success. Even it will not, i will have learned a lot.

Quite nice site with some usefull tips

Filed under: Tips / Hints — ocsic @ 08:45

about the CCIE lab.

Check out:
http://www.sureshhomepage.com/ccie/index.html

23. August 2006

The doc CD my only one

Filed under: Lab — ocsic @ 09:15

In the Lab you will not be able to search any kind of internet resources other than looking into the cisco doc CD. Currently i’m trying to only find things without any searching on the database or by google.

Multicast networks

Filed under: Multicast — ocsic @ 09:14

IP Multicast is defined in RFC 1112/2236(IGMPv2).

Ip Multicast can send traffic to a single address and does not care about the receiving hosts. Only one destination address is needed and all hosts listening to the stream or host that have registred can receive the datastream. It does support dynamic meberships to groups. So clients can themselfes register for the stream.

One multicast address can carry multiple streams. It uses UDP as transport protocol.

Address range:

Class D 224.0.0.0 – 239.255.255.255

The range from 224.0.0.0 to 224.0.0.255 is reserved for routing protocols and other types of protocols.

Static Addresses (local scope):

  • 224.0.0.1 all hosts on a subnet
  • 224.0.0.2 all routers on a subnet
  • 224.0.0.4 Distance Vector Multicast Routing Protocols (DVMRP)
  • 224.0.0.5 OSPF routers
  • 224.0.0.6 OSPF designated routers
  • 224.0.0.9 RIP Version 2 routers
  • 224.0.0.10 EIGRP
  • 224.0.0.13 Protocol independent Multicast (PIM)

Global scope addresses:

224.0.1.0 – 238.255.255.255

Administratively scoped:

239.0.0.0 – 239.255.255.255

Internet Multicast address range reserved by IANA (lower 23 bits):

0100.5e00.000 – 0100.5e7f.ffffAll Multicast addresses use the 01.00.5e in their multicast address.

Source:

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/ipmulti.htm#xtocid1

http://www.iana.org/assignments/multicast-addresses

Traffic types

Filed under: Multicast — ocsic @ 08:51
  • Unicast – individual packets are send to every requesting address, so the number of clients is fixed to the bandwidth the streaming applications needs
  • Broadcast – traffic is send to one broadcast address and then forwarded to the entire broadcast domain, you can ping for example a broadcast address and see, that all hosts receive this ping. But broadcast are limitted to layer 3 boarders
  • Multicast – sending a packet to a predefined multicast address, receiving hosts, can register for receiving streams in groups

CCIE Lab booked

Filed under: Allgemein — ocsic @ 08:30

The wire transfer is complete know. I don’t have a credit card. Don’t need one, normaly, so i had to send the money directly from my bank. They have carged 1512 $ US for the Lab exam in Brussels. This is about 250 $ US more than in all the other Lab locations. I don’t really know the reason why it’s like this. It has change some time ago. I might be the reason, the euro is so strong against the us dollar. I don’t know. Nevertheless after about one week i got the confirmation, that the wire transfer was complete. So i stil can change the date until 28 days before the exam. After that i can not change it any more.
CCIE Lab date

21. August 2006

Finding RFC’s

Filed under: Tips / Hints — ocsic @ 07:34

A good source of information are RFC’s (Request for Comments). You can find definitions at this FTP address:

ftp://ftp.rfc-editor.org/in-notes/

STP / Spanning-Tree / IEEE 802.1D

Filed under: Bridging + Switching — ocsic @ 07:24

Spanning-Tree is an algorithm to keep a switched network loopfree. This means if you have multiple redundant switching paths in a network, without spanning-tree i will happen, that there will be switching loops in the network, which could take the whole network down. So spanning-tree is a layer2 protocol, which algorithm is selecting one bridge as the root bridge and each port a certain role. These can be:

  • Root – elected forwarding port in the STP topology
  • Designated – elected forwarding port in every switched LAN segment
  • Alternate – providing an alternate path to the root bridge
  • Backup – loopback configuration of a blocked port

These are port states that are passed in the process of becoming a forwarding port:

  • Disabled – inactive port, does not participate the STP
  • Blocking – a port is at first in the blocking stage, not forwarding any frames
  • Listening – STP decided this port should participate in forwarding, but not forwarding any frames at now, takes 15 seconds and then goes into
  • Learning – prepares to forward frames, 15 seconds duration, after that goes into last state, which is forwarding
  • Forwarding – the interface is forwarding frames

An interface can be disabled at any state of the process to become a forwading port.
The root election is based by default on the switch with the lowest MAC address value. You can also set the root bridge by setting the prioority, so the it’s the lowest priority in the STP topology.

At first every switch assumes itself as the root bridge, when it’s first powered up. It communicates with BPDU’s send every two seconds to compute the spanning-tree topology.
A BPDU (Bridge Protocol Data Units) contains the following:

  • a unique ID which the switch sending the BPDU itself identifies as the root switch
  • the path cost to the root
  • the bridge ID of the sending switch
  • the age of the message
  • identifier of the sending interface
  • hello, forward dely, max-age timer values

A BPDU packet conversation does have the following consequences.

  • electing one switch as the root switch, counting priority (default 32768) fist and then if these are equal, the lowest MAC address
  • electing a root port an each switch, except the root switch
  • calculating the shortest distance to the root switch based on path cost. Path cost it based on the interface bandwidth
  • selecting a designated switch which has the so called designated port, as this is the port with the lowest path cost to the root switch

There are also TCN BPDU’s (topology change notification) messages send in a spanning-tree network.
Each configured VLAN has it’s own bridge ID. As each VLAN is it own bridge. Take a look at this with „show spanning tree“. You will see that each vlan has it’s own priority. So changing the priority for a vlan change the probability of the switch being elected as the root bridge

There are several possible configuration values to setup. If you want, for example to to change the election of the root port use the „port-cost“ variable for the local switch. To change the choosen root port for a downstream switch, take the „port-priority“ variable.

For Example: SW1 and SW2 are connected over 3 trunks SW1 is the root for vlan 7. To setup SW1 as the root for vlan 7: „spanning-tree vlan 7 root primary

Now you want to select a certain trunk for carrying the vlan 7 traffic. When you are on the root bridge use „port-priority“ to select the trunk and set a lower prio as on the others. Default is 128. If you are on the downstream switch, use „port-cost“ to let the downstream switch elect the root port, for example:

spanning-tree vlan 7 cost 20

Here are the STP costs for different link bandwidths:

  • 4 Mbps – 250
  • 10 Mbps – 100
  • 16 Mbps – 62
  • 45 Mbps – 39
  • 100 Mbps – 19
  • 155 Mbps – 14
  • 622 Mbps – 6
  • 1 Gbps – 4
  • 10 Gbps – 2

So after the root bridge is selected based upon the Bridge ID/MAC address and Bridge priority, the differnet types of ports are selected based upon the cost and path cost.

The root port of each bridge is selected upon path cost to the root bridge. Each path is summarized to a path cost and the port with the lowest path cost gets the root port.

Source:

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12225see/scg/swstp.htm

http://www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/sw_ntman/cwsimain/cwsi2/cwsiug2/vlan2/stpapp.htm

14. August 2006

QoS and what to manage with what

Filed under: QoS — ocsic @ 14:09

There are many different kind of QoS techniques around at Cisco. All of them are like a tollbox for managing traffic. Each technique has it’s preferred operational area. So here are some scenarios in which you would use a certain technique.

  • Classification

You want to provide a prefered service to a type of traffic. The packet may be marked or not. Classification don only on one device, without marking the packet is described as a per-hop based classification. PQ (priority queing) and CQ (custom queing) are techniques used for this. Possible methods to identify certain traffic are ACL’s, policy based routing, comiited acces rate (CAR) or network-based application recognistion (NBAR).

  • Congestion Management

What if an interface is accessed above it’s given bandwidth? Congestion occurs and priority queuing (PQ), custom queuing (CQ), weighted fair queuing (WFQ), and class-based weighted fair queuing (CBWFQ) are tools to mangage congestion.

  • Queue Management

If a queue does fill up and buffers are flowing over, packets must be dropped. Which packets to drop, maybe packets with lower priority, to be able to deliver higher priority, this is done with Weighted early random detect (WRED).

  • Link Efficiency

Some packets might be to large for efficent transport and it might be neccessary to compress these packets. RTP header compression (Compressed Real-Time Protocol header) can be used for this.

  • Traffic shaping and policing

When shaping traffic, you would take care of a certain link not to exceed the configured bandwitdh or maybe another certain bandwith. Traffic is buffered then, with poicing it’s just discarded as other functions are similar for policing.

Queuing techniques, algorithms and when to use them.

  • FIFO, First-in, first-out

Is the default queuing algorithm, and delivers packet in the same row it receives them, but could buffer them in between

  • PQ, Priority queuing

PQ gives priority to traffic over other traffic, each packet is placed into one of four queues: high, medium, normal, low. There is absolut preferential treatment over low-priority queues.

  • CQ, Custom queuing

is used to provide a garantied bandwidth, leaving the remaining bandwidth to other traffic. CQ does this by assigning a specific amount of queue space to each class of packet and then servicing the queues round-robin. PQ and CQ are statically configured. They don’t adapt network changes automatically.

  • WFQ, Flow-based weighted fair queuing

provides consistent response time to congested networks, each queue ist serviced on a bye counted base. Each time 1000 bytes are serviced, one stream with 2×500 bytes it qually serviced, like the 1×1000 byte packet. It’s mostly used on serial interfaces. WFQ is IP-precedence aware

  • CBWFQ, Class-based weighted fair queuing

CBWFQ is used to provide a minimum of bandwidth to a certain flow. It’s a garanteed amount of bandwidth. If it’s not used by the class other applications can use it.

Tools for congestion avoidance:

  • WRED  Weighted random early detection is to avoid congestion before it becomes a problem. It’s an algorithm to drop packets if congestion is about to occuring. Senders themself then slows down transmitions speed.

Sources:

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/qos.htm

QoS and where and what can be marked (MQC)

Filed under: QoS — ocsic @ 08:18

QoS means, to give certain types of traffic in a network priority above other types of traffic or to garanty certain functionallity. And this could be done on many different kind of architectures.
But dependend on the type of traffic QoS can only be used, when certain demands are satisfied. That means, there has to be at least one field in the header of a packet.

Here is a list of Marking Fields

Field Location Length

IP Precedence (IPP) IP header 3 bits

IP DSCP IP header 6 bits

DS field IP header 1 byte

ToS byte IP header 1 byte

Cos ISL and 802.1Q header 3 bits

Discard Eligible (DE) Frame Relay header 1 bit

Cell Loss Priority (CLP) ATM cell header 1 bit

MPLS Experimental MPLS header 3 bits

Cisco has decided to give a more general approach to QoS with the Modular QoS CLI (MQC). This client defines a common set of configuration commands for the definition of for QoS features on a router or switch.

Cisco is in favor of configuring with MQC.

There are three steps that have to be configured within a MQC based setup.

  1. class-map for matching packets into service classes, the match command can include QoS fields, ACL’s and MAC addresses, the match name is case sensitiv, the match any command matches any packet
  2. policy-map PHB actions configured under policy-map
  3. service-policy enabled on an interface

Here is an example:

class-map match-all SMTP-FROM-SERVER1
match access-group name
SMTP-FROM-SERVER1

policy-map CBWFQ
class SMTP-FROM-SERVER1
bandwidth 256

interface s0/0
bandwidth 512
service-policy output CBWFQ

ip access-list extended SMTP-FROM-SERVER1
permit tcp host 150.1.1.100 eq smtp any

Here the SMTP protocol is serviced with CBWFQ at interface serial0/0.

The class-map command is one of the new MQC based tools for classifying packets.

It possible to match many different kind of options. Including QoS fileds, ACL’s and MAC addresses. Be carefule the map names are case sensitiv.

Multiple match commands can be used in a class-map. The following points need to be considered.

  1. Four CoS and IPP or eight DSCP values can be listed on a single match cos, match precedence, or match dscp command.
  2. if a class map matches with multiple match commands, the match-any or match-all parameter on the class-map command defines whether a logical OR or a logical AND is used between the match commands. match-all means AND logic between the parameters, for example: class-map match-all name, match cos 3 4, means to match 3 and 4. With match-any only one match parameter has to be true for the rule to match. So 3 or 4 would suffice.
  3. The match class name command is nesting the name of another class map logicaly.

Here is a nesting example:

class-map match-all nesting
match access-group 101
match precedence 10

class-map match-any morenesting
match class nesting
match cos 10

Source:

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/qos.htm

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cg/hqos_c/qchintro.htm

Older Posts »

Powered by WordPress