GET THE CORRET TRAINING

Cisco provides several useful commands for looking at an interface's queuing configuration and performance. The first of these is the show queue command:

Router#show queue FastEthernet0/0

  Input queue: 0/75/105/0 (size/max/drops/flushes); Total output drops: 0

  Queuing strategy: weighted fair

  Output queue: 0/1000/96/0 (size/max total/threshold/drops)

     Conversations  0/1/128 (active/max active/max total)

     Reserved Conversations 0/0 (allocated/max allocated)

     Available Bandwidth 75000 kilobits/sec

Router#

Use the show queuing command to look the router's queuing configuration in general:

Router#show queuing

Current fair queue configuration:

  Interface           Discard    Dynamic  Reserved  Link    Priority

                      threshold  queues   queues    queues  queues

  FastEthernet0/0     96         128      258       8       1

  Serial0/0           64         256      37        8       1

  Serial0/1           96         128      256       8       1

Current DLCI priority queue configuration:

Current priority queue configuration:

List   Queue  Args

1      high   protocol ip          tcp port 198

1      high   protocol pppoe-sessi

2      high   protocol ip          udp port 199

3      low    default

3      high   protocol ip          list 101

Current custom queue configuration:

Current random-detect configuration:

Router#

The show queue and show queuing commands augment the show interface output, which also shows important queuing information:

Router#show interface FastEthernet0/0

FastEthernet0/0 is up, line protocol is up

  Hardware is AmdFE, address is 0001.9670.b780 (bia 0001.9670.b780)

  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

     reliability 255/255, txload 1/255, rxload 1/255

  Encapsulation ARPA, loopback not set

  Keepalive set (10 sec)

  Full-duplex, 100Mb/s, 100BaseTX/FX

  ARP type: ARPA, ARP Timeout 04:00:00

  Last input 00:00:00, output 00:00:00, output hang never

  Last clearing of "show interface" counters never

  Input queue: 0/75/105/0 (size/max/drops/flushes); Total output drops: 0

  Queuing strategy: weighted fair

  Output queue: 0/1000/96/0 (size/max total/threshold/drops)

     Conversations  0/1/128 (active/max active/max total)

     Reserved Conversations 0/0 (allocated/max allocated)

     Available Bandwidth 75000 kilobits/sec

  5 minute input rate 1000 bits/sec, 2 packets/sec

  5 minute output rate 2000 bits/sec, 2 packets/sec

     2495069 packets input, 181306312 bytes

     Received 2333309 broadcasts, 0 runts, 0 giants, 0 throttles

     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored

     0 watchdog

     0 input packets with dribble condition detected

     1927544 packets output, 197958017 bytes, 0 underruns

     0 output errors, 0 collisions, 21 interface resets

     0 babbles, 0 late collision, 0 deferred

     0 lost carrier, 0 no carrier

     0 output buffer failures, 0 output buffers swapped out

Router#

The show queue command is a good starting point when looking at queuing issues. It tells you what queuing algorithm is used, as well as information about any drops:

Router#show queue FastEthernet0/0

  Input queue: 0/75/105/0 (size/max/drops/flushes); Total output drops: 0

  Queuing strategy: weighted fair

  Output queue: 0/1000/96/0 (size/max total/threshold/drops)

     Conversations  0/1/128 (active/max active/max total)

     Reserved Conversations 0/0 (allocated/max allocated)

     Available Bandwidth 75000 kilobits/sec

In this case, you can see that the interface uses WFQ. This can be slightly deceptive because we actually configured this interface for CBWFQ. The Reserved Connections line indicates that no RSVP reservation queues have been allocated for this interface. So if you tried to use RSVP on this interface, it would not work right now.

The show queue command gives no output at all when you use Custom Queuing or Priority Queuing on an interface.

The first section of output from the show queuing command gives some useful summary information on fair queuing parameters:

Router#show queuing

Current fair queue configuration:

  Interface           Discard    Dynamic  Reserved  Link    Priority

                      threshold  queues   queues    queues  queues

  FastEthernet0/0     96         128      258       8       1

  Serial0/0           64         256      37        8       1

  Serial0/1           96         128      256       8       1

In this case, you can immediately see and compare the queue sizes between different interfaces.

Finest CCIE Education and also the correct strategy to get CCIE Certification CCIE Training

There is just not a must have one other experienced exercise or class certificates to qualify. The CCIE Protection exercise includes a penned examination to qualify and after that the lab exam. You happen to be suggested to acquire with the minimum 3-5 many years of work experience before than making an attempt this certification.

The examination for that CCIE Stability is of two-hour duration with numerous selections. This includes hundred queries, which will go over subjects equivalent to software package protocols, doing work techniques, basic safety technologies, protection protocols, and Cisco security apps. The exam materials are offered to the spot therefore you are not allowed to usher in external reference products.

Network engineers possessing a CCIE certificates are deemed as the professional around the community engineering discipline as well as the masters of CISCO merchandise. The CCIE has introduced revolution within just the group market place when it comes to technically tricky assignments and methods while using the mandatory instruments and methodologies. There may be a program which updates and reorganizes the instruments to produce superior quality service. There's varied modes of CCIE Workout like penned examination planning and effectiveness primarily based lab. This helps to reinforce the efficiency and typical belonging to the market place. CISCO has launched this certification coverage in 1993 having a watch to differentiate the highest pros from your rest.

So as to be licensed, foremost written examination should be passed following which has to cross the lab exam. CISCO whatsoever periods tries to use entirely completely different CCIE Exercise procedures for increased efficiency. There are a number of basic steps for your CCIE certification. The primary stage for certification could be to pass a two hrs lasting laptop based mostly for the most part MCQ oriented penned exam. For this test important payments must be accomplished through on line. This examination is affiliated with examination vouchers and promotional codes. The authenticity with the voucher furnishing company should be perfectly recognized into the candidates. The promotional code need to be accessed properly and in the event of fraudulent vouchers as well as promotional codes should not suitable and CISCO is not going to repay the cost. The candidates need to wait around 5 days for the authored examination soon after cost and so they cannot sit for the very same exam for that following 100 eighty days in the event of recertification.

Which includes a see to obtain licensed and qualified for that CCIE Workout some components are for being remembered effectively. When passing the developed examination the candidates have got a a majority of 18 months time for trying the lab test. If the time period exceeds then the authenticity within the written examination will likely to be invalid. For your first of all timer applied to possess CCIE certification the composed exam is obtainable inside of the form of Beta examination with discounts readily available. From the Beta time period the candidates can sit only the moment for your test. The outcomes will come inside six to 8 weeks soon after the examination is in excess of.

Another phase for your CCIE certification is considered the Lab exam. The shortlisted candidates with the composed exam can entirely apply for that fingers-on lab exam. However there are numerous authored examination centers of CISCO still Lab examination facilities are restricted. You'll find it an 8 hour fingers-on sensible based mostly primarily examination whereby the power of troubleshooting and configuring local community primarily dependent troubles and applications are checked. For your scheduling of Lab examination the shortlisted candidates of this before composed examination ought to present the identification quantity coupled with passing score along with the date of passing.

The cost for Lab examination must be cleared previously than 90 days of your scheduled exam. With out the charge the reservation may well be cancelled. Right after passing the Lab examination blended while using created check the candidates can utilize for the CCIE certification. By considering all of the points linked aided by the talked about guidelines, one can obtain the CISCO certification in hand and be certified for your CCIE Coaching.

The solution to this challenge depends on the sort of targeted traffic distinctions you prefer to make, at the same time the version of IOS you may be managing in the routers.

There need to be one thing that defines the various different types of site visitors that you just wish to prioritize. Usually, the less complicated the distinctions are to help make, the better. It is because all the checks consider router assets and introduce processing delays. The most prevalent principles for distinguishing in between website traffic kinds use the packet's input interface and straightforward IP header tips these kinds of as TCP port figures. The subsequent examples indicate easy methods to set an IP Precedence price of speedy (2) for all FTP management traffic that arrives by using the serial0/0 interface, and an IP Precedence of concern (one) for all FTP knowledge targeted visitors. This distinction is possible seeing that FTP management page views utilizes TCP port 21, and FTP knowledge utilizes port twenty.

The new approach for configuring this utilizes class maps. Cisco primary released this aspect in IOS Model 12.0(five)T. This process earliest defines a class-map that specifies how the router will identify this sort of traffic. It then defines a policy-map that truly helps make the changes into the packet's TOS subject:

Router#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#access-list 101 permit any eq ftp any
Router(config)#access-list 101 permit any any eq ftp
Router(config)#access-list 102 permit any eq ftp-data any
Router(config)#access-list 102 permit any any eq ftp-data
Router(config)#class-map match-all ser00-ftpcontrol
Router(config-cmap)#description branch ftp control traffic
Router(config-cmap)#match input-interface serial0/0
Router(config-cmap)#match access-group 101
Router(config-cmap)#exit
Router(config)#class-map match-all ser00-ftpdata
Router(config-cmap)#description branch ftp data traffic
Router(config-cmap)#match input-interface serial0/0
Router(config-cmap)#match access-group 102
Router(config-cmap)#exit
Router(config)#policy-map serialftppolicy
Router(config-pmap)#description branch ftp traffic policy
Router(config-pmap)#class ser00-ftpcontrol
Router(config-pmap-c)#set ip precedence immediate
Router(config-pmap-c)#exit
Router(config-pmap)#class ser00-ftpdata
Router(config-pmap-c)#set ip precedence priority
Router(config-pmap-c)#exit
Router(config-pmap)#exit
Router(config)#interface serial0/0
Router(config-if)#ip route-cache policy
Router(config-if)#service-policy input serialftppolicy
Router(config-if)#exit
Router(config)#end
Router#

For before IOS variations, where by class-maps had been not readily available, you have to use policy-based routing to alter the TOS area inside of a packet. Making use of this coverage towards the interface tells the router to implement this coverage to test all incoming packets on this interface and rewrite those that match the route map:Router#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#access-list 101 permit any eq ftp any
Router(config)#access-list 101 permit any any eq ftp
Router(config)#access-list 102 permit any eq ftp-data any
Router(config)#access-list 102 permit any any eq ftp-data
Router(config)#route-map serialftp-rtmap permit 10
Router(config-route-map)#match ip address 101
Router(config-route-map)#set ip precedence immediate
Router(config-route-map)#exit
Router(config)#route-map serialftp-rtmap permit 20
Router(config-route-map)#match ip address 102
Router(config-route-map)#set ip precedence priority
Router(config-route-map)#exit
Router(config)#interface serial0/0
Router(config-if)#ip policy route-map serialftp-rtmap
Router(config-if)#ip route-cache policy
Router(config-if)#exit
Router(config)#end
Router#

Well before you are able to tag a packet for special therapy, you've gotten to have an extremely distinct idea of what different types of targeted traffic have to have amazing treatment method, and also exactly what kind of special cure they'll need. With the illustration, we have now chose to give a exclusive priority to FTP site traffic acquired on the special serial interface. We indicate how to try this utilizing both equally the aged and new configuration solutions.
This might show up to get a considerably synthetic instance. Just after all, why would you treatment about tagging inbound visitors that you just have by now received from a low-speed interface? Literally, one of several most significant ideas for employing QoS in a very network is that it is advisable to often tag the packet as early as you possibly can, ideally in the edges of this network. Then, since it passes in the network, each router only must take a look at the tag, and would not ought to do any even more classification. In cases like this, we might guarantee the FTP visitors returning inside other gestion is tagged by 1st router that gets it. And so the outbound targeted visitors has presently been tagged, and this is a waste of router assets to reclassify the outbound packets.

Quite a few organizations actually just take this idea of marking at the edges a person step more, and remark all obtained packet. This allows to ensure that customers aren't requesting unique QoS privileges that they aren't allowed to have. Having said that, you need to be mindful of this due to the fact it may possibly every so often disrupt reputable markings. For instance, a real-time application may well use RSVP to order bandwidth with the network. It happens to be really important the packets for this application hold the appropriate Expedited Forwarding (EF) DSCP marking or the network might not deal with them accordingly. Even so, additionally you do not prefer to allow other non-real-time apps from this very same supply have the identical EF concern stage. So, for anyone who is going to configure your routers to remark all incoming packets in the edges, be certain that you perceive what incoming markings are authentic.

In that case, the routers are jogging DLSw to bridge SNA targeted traffic thru an IP network. Therefore the routers their selves honestly produce the IP packets. This produces an additional challenge due to the fact there may be no incoming interface. Making sure that recipe makes use of nearby policy-based routing. The very fact the router generates the packets also offers it an important benefit mainly because it doesn't have to take into consideration any DLSw packets which may just take place to pass through.

The advantages within the newer class-map process aren't noticeable on this case in point, but among the foremost large strengths appears if you'd like to make use of the more contemporary DSCP tagging scheme. As the mature policy-based routing way will not immediately help DSCP, you could have to faux it by setting both equally the IP Precedence and the TOS independently as follows.

Router(config)#route-map serialftp-rtmap permit 10
Router(config-route-map)#match ip address 115
Router(config-route-map)#set ip precedence immediate
Router(config-route-map)#set ip tos max-throughput

In this case, the packet will wind up with an IP Precedence value of immediate, or 2 (010 in binary), and TOS of max-throughput, or 4 (0100 in binary).

Doing the same thing with the class-map method is much more direct:

Router(config)#policy-map serialftppolicy
Router(config-pmap)#class serialftpclass
Router(config-pmap-c)#set ip dscp af21

Class-maps may also be invaluable later on in this particular chapter when we speak about class-based weighted fair queuing and class-based page views shaping.
It is vital to note that all over this complete instance, now we have only put a extraordinary value in to the packet's TOS or DSCP field. This, by by itself, won't have an affect on how the packet is forwarded through the network. To do that, you have got to be certain that as each router from the network forwards these marked packets, the interface queues will react appropriately to this detail.

Last but not least, we should observe that whereas this recipe exhibits two advantageous strategies of marking packets, employing Dedicated Accessibility Price (Car or truck) functions. Automotive tends to become a bit more successful on bigger pace interfaces.

The solution to this challenge depends on the sort of targeted traffic distinctions you prefer to make, at the same time the version of IOS you may be managing in the routers.

There need to be one thing that defines the various different types of site visitors that you just wish to prioritize. Usually, the less complicated the distinctions are to help make, the better. It is because all the checks consider router assets and introduce processing delays. The most prevalent principles for distinguishing in between website traffic kinds use the packet's input interface and straightforward IP header tips these kinds of as TCP port figures. The subsequent examples indicate easy methods to set an IP Precedence price of speedy (2) for all FTP management traffic that arrives by using the serial0/0 interface, and an IP Precedence of concern (one) for all FTP knowledge targeted visitors. This distinction is possible seeing that FTP management page views utilizes TCP port 21, and FTP knowledge utilizes port twenty.

The new approach for configuring this utilizes class maps. Cisco primary released this aspect in IOS Model 12.0(five)T. This process earliest defines a class-map that specifies how the router will identify this sort of traffic. It then defines a policy-map that truly helps make the changes into the packet's TOS subject:

Router#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#access-list 101 permit any eq ftp any
Router(config)#access-list 101 permit any any eq ftp
Router(config)#access-list 102 permit any eq ftp-data any
Router(config)#access-list 102 permit any any eq ftp-data
Router(config)#class-map match-all ser00-ftpcontrol
Router(config-cmap)#description branch ftp control traffic
Router(config-cmap)#match input-interface serial0/0
Router(config-cmap)#match access-group 101
Router(config-cmap)#exit
Router(config)#class-map match-all ser00-ftpdata
Router(config-cmap)#description branch ftp data traffic
Router(config-cmap)#match input-interface serial0/0
Router(config-cmap)#match access-group 102
Router(config-cmap)#exit
Router(config)#policy-map serialftppolicy
Router(config-pmap)#description branch ftp traffic policy
Router(config-pmap)#class ser00-ftpcontrol
Router(config-pmap-c)#set ip precedence immediate
Router(config-pmap-c)#exit
Router(config-pmap)#class ser00-ftpdata
Router(config-pmap-c)#set ip precedence priority
Router(config-pmap-c)#exit
Router(config-pmap)#exit
Router(config)#interface serial0/0
Router(config-if)#ip route-cache policy
Router(config-if)#service-policy input serialftppolicy
Router(config-if)#exit
Router(config)#end
Router#

For before IOS variations, where by class-maps had been not readily available, you have to use policy-based routing to alter the TOS area inside of a packet. Making use of this coverage towards the interface tells the router to implement this coverage to test all incoming packets on this interface and rewrite those that match the route map:Router#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#access-list 101 permit any eq ftp any
Router(config)#access-list 101 permit any any eq ftp
Router(config)#access-list 102 permit any eq ftp-data any
Router(config)#access-list 102 permit any any eq ftp-data
Router(config)#route-map serialftp-rtmap permit 10
Router(config-route-map)#match ip address 101
Router(config-route-map)#set ip precedence immediate
Router(config-route-map)#exit
Router(config)#route-map serialftp-rtmap permit 20
Router(config-route-map)#match ip address 102
Router(config-route-map)#set ip precedence priority
Router(config-route-map)#exit
Router(config)#interface serial0/0
Router(config-if)#ip policy route-map serialftp-rtmap
Router(config-if)#ip route-cache policy
Router(config-if)#exit
Router(config)#end
Router#

Well before you are able to tag a packet for special therapy, you've gotten to have an extremely distinct idea of what different types of targeted traffic have to have amazing treatment method, and also exactly what kind of special cure they'll need. With the illustration, we have now chose to give a exclusive priority to FTP site traffic acquired on the special serial interface. We indicate how to try this utilizing both equally the aged and new configuration solutions.
This might show up to get a considerably synthetic instance. Just after all, why would you treatment about tagging inbound visitors that you just have by now received from a low-speed interface? Literally, one of several most significant ideas for employing QoS in a very network is that it is advisable to often tag the packet as early as you possibly can, ideally in the edges of this network. Then, since it passes in the network, each router only must take a look at the tag, and would not ought to do any even more classification. In cases like this, we might guarantee the FTP visitors returning inside other gestion is tagged by 1st router that gets it. And so the outbound targeted visitors has presently been tagged, and this is a waste of router assets to reclassify the outbound packets.

Quite a few organizations actually just take this idea of marking at the edges a person step more, and remark all obtained packet. This allows to ensure that customers aren't requesting unique QoS privileges that they aren't allowed to have. Having said that, you need to be mindful of this due to the fact it may possibly every so often disrupt reputable markings. For instance, a real-time application may well use RSVP to order bandwidth with the network. It happens to be really important the packets for this application hold the appropriate Expedited Forwarding (EF) DSCP marking or the network might not deal with them accordingly. Even so, additionally you do not prefer to allow other non-real-time apps from this very same supply have the identical EF concern stage. So, for anyone who is going to configure your routers to remark all incoming packets in the edges, be certain that you perceive what incoming markings are authentic.

In that case, the routers are jogging DLSw to bridge SNA targeted traffic thru an IP network. Therefore the routers their selves honestly produce the IP packets. This produces an additional challenge due to the fact there may be no incoming interface. Making sure that recipe makes use of nearby policy-based routing. The very fact the router generates the packets also offers it an important benefit mainly because it doesn't have to take into consideration any DLSw packets which may just take place to pass through.

The advantages within the newer class-map process aren't noticeable on this case in point, but among the foremost large strengths appears if you'd like to make use of the more contemporary DSCP tagging scheme. As the mature policy-based routing way will not immediately help DSCP, you could have to faux it by setting both equally the IP Precedence and the TOS independently as follows.

Router(config)#route-map serialftp-rtmap permit 10
Router(config-route-map)#match ip address 115
Router(config-route-map)#set ip precedence immediate
Router(config-route-map)#set ip tos max-throughput

In this case, the packet will wind up with an IP Precedence value of immediate, or 2 (010 in binary), and TOS of max-throughput, or 4 (0100 in binary).

Doing the same thing with the class-map method is much more direct:

Router(config)#policy-map serialftppolicy
Router(config-pmap)#class serialftpclass
Router(config-pmap-c)#set ip dscp af21

Class-maps may also be invaluable later on in this particular chapter when we speak about class-based weighted fair queuing and class-based page views shaping.
It is vital to note that all over this complete instance, now we have only put a extraordinary value in to the packet's TOS or DSCP field. This, by by itself, won't have an affect on how the packet is forwarded through the network. To do that, you have got to be certain that as each router from the network forwards these marked packets, the interface queues will react appropriately to this detail.

Last but not least, we should observe that whereas this recipe exhibits two advantageous strategies of marking packets, employing Dedicated Accessibility Price (Car or truck) functions. Automotive tends to become a bit more successful on bigger pace interfaces.

The biggest potential problem that you will encounter with redistributing routes into RIPv1 comes from breaking network class boundaries. This version of RIP is classful, so you have to be rather careful about how you distribute routing information from other sources that may be classless. In the example in this recipe, Router1 redistributes a static route for the Class C network 192.168.10.0. But if we tried instead to redistribute a larger range, such as 192.168.12.0/22, RIPv1 would not generate any errors; the router would just quietly refuse to forward this route. RIPv2, on the other hand, will redistribute this supernet route.
Looking at the RIP database on a router with IOS level 12.0(6)T or higher shows the redistributed static route:
Router1#show ip rip database 192.168.10.0 255.255.255.0
192.168.10.0/24 redistributed
[5] via 0.0.0.0,
Router1#
After configuring the second example, the output of show ip protocols includes information about the filtering. This command also tells you what other protocols RIP is redistributing routes from:
Router1#show ip protocols
Routing Protocol is "rip"
Sending updates every 30 seconds, next due in 5 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
Outgoing update filter list for all interfaces is not set
Redistributed static filtered by 7
Incoming update filter list for all interfaces is not set
Redistributing: static, rip
Default version control: send version 1, receive any version
Interface Send Recv Triggered RIP Key-chain
FastEthernet0/0.1 1 1 2
Serial0/0.2 1 1 2
FastEthernet0/1 1 1 2
Automatic network summarization is in effect
Maximum path: 4
Routing for Networks:
172.22.0.0
172.25.0.0
Routing Information Sources:
Gateway Distance Last Update
172.25.1.7 120 00:00:03
172.25.2.2 120 00:00:06
172.22.1.4 120 00:00:08
Distance: (default is 120)
Router1#
In addition to static routes, you can distribute information from other dynamic routing protocols into RIP simply by specifying which protocol's routes you want RIP to use. For example, if you have an EIGRP network that uses process number 65530 on the same router, you would redistribute it into RIP like this:
Router1#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router1(config)#router eigrp 65530
Router1(config-router)#network 192.168.1.0
Router1(config-router)#exit
Router1(config)#router rip
Router1(config-router)#redistribute eigrp 65530
Router1(config-router)#end
Router1#
If you look at the show ip protocols command now, you can see that RIP redistributes routes it learns from EIGRP, but EIGRP does not redistribute routes learned from RIP. If you also want EIGRP to redistribute RIP routes, you must explicitly configure it to do so.
Router1#show ip protocols
Routing Protocol is "rip"
Sending updates every 30 seconds, next due in 0 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
Outgoing update filter list for all interfaces is
Incoming update filter list for all interfaces is
Redistributing: static, rip, eigrp 65530
Default version control: send version 1, receive any version
Interface Send Recv Key-chain
FastEthernet0/0.1 2 2
Serial0/0.2 2 2
FastEthernet0/1 2 2
Automatic network summarization is in effect
Maximum path: 4
Routing for Networks:
172.22.0.0
172.25.0.0
Routing Information Sources:
Gateway Distance Last Update
172.25.1.7 120 00:00:03
172.25.2.2 120 00:00:06
172.22.1.4 120 00:00:08
Distance: (default is 120)

Routing Protocol is "eigrp 65530"
Outgoing update filter list for all interfaces is
Incoming update filter list for all interfaces is
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
EIGRP maximum hopcount 100
EIGRP maximum metric variance 1
Redistributing: eigrp 65530
Automatic network summarization is in effect
Routing for Networks:
192.168.1.0
Routing Information Sources:
Gateway Distance Last Update
Distance: internal 90 external 170

Router1#

Table 6-1 shows a list of foreign protocols that RIP can redistribute.
Table 6-1. Protocols that RIP can redistribute
Type Description
bgp Border Gateway Protocol
connected Directly connected interfaces
egp Exterior Gateway Protocol
eigrp Enhanced IGRP
igrp Interior Gateway Routing Protocol
isis ISO IS-IS Routing Protocol
mobile IP Mobility routes
ospf Open Shortest Path First
rip Routing Information Protocol
static Static routes

The second example shows how to set a particular metric when redistributing a route into RIP:
Router1(config)#router rip
Router1(config-router)#redistribute static metric 5
In this case, all static routes will appear with a RIP metric of 5. Because of the maximum metric value of 16, you need to be extremely careful with how you distribute routes into RIP. This example shows how to set a metric when redistributing static routes, but you can use the same technique when redistributing routes from any source:
Router1(config)#router rip
Router1(config-router)#redistribute eigrp 65530 metric 5
Finally, we will point out a slightly confusing irregularity with the redistribute command. Although this command seems to allow you to redistribute RIP into RIP, in fact it won't allow it:
Router1(config)#router rip
Router1(config-router)#redistribute rip
redistribution of "rip" via "rip" not allowed
dialhost(config-router)#

This is actually a good thing because RIP doesn't support process numbers, unlike other routing protocols available on Cisco routers. It makes sense to redistribute, for example, one EIGRP process into another EIGRP process; it doesn't make sense to redistribute within a process. If this were possible, it would be ambiguous which routes were internal and which were external.

The first version sends all packets destined to the single host 10.35.15.5 out through the Ethernet0 interface. In this case, the router will need to figure out which device on this segment to forward the packet to, because it must put the MAC address of the next hop router in the Layer 2 frame header. The standard mechanism for associating IP addresses with MAC addresses is the Address Resolution Protocol (ARP). The router will send out an ARP request onto the Ethernet segment. If the device that owns the packet's destination IP address happens to be on this segment, it will respond with its MAC address. Otherwise, a router that is configured for Proxy ARP will have to respond on its behalf. This is important because if you do not have Proxy ARP configured on the next hop router, this command will fail. So for multiple access media such as Ethernet segments, we recommend using specifying the IP address of the next hop router rather than the interface.

You can also specify a point-to-point media such as a Serial interface for the route destination:

Router#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#ip route 10.35.15.5 255.255.255.255 Serial0 5

Router(config)#end

Router#

In this case there is no ambiguity. You can reach only one other device through this Serial interface, so the Proxy ARP issues that we just described do not apply.

The ip route command in the second example affects any packet whose destination address is in the range from 172.16.0.1 to 172.16.255.254, which will be forwarded to the next hop router, 10.35.6.1:

 Router(config)#ip route 172.16.0.0 255.255.0.0 10.35.6.1 2

The last number in this ip route command, 2, is the administrative distance for this route. This specifies a distance value that indicates how good this route is. The router will use this distance value to help it to decide between routes to the same destination prefix from different sources. For example, if you have more than one static route to the same destination, or if the router has learned another route to this destination via RIP, it will compare this administrative distances and use the route with the lowest distance value.

If there is no administrative distance value, as in the first example, the router will use a default value of 1.

The syntax for static routes specifies both an IP address and a netmask. This follows the standard rules for netmasks. However, it is useful to remember that the static route statement only controls how packets should be handled on this router. For example, suppose the range 172.16.0.0/16 includes the networks 172.16.1.0/24, 172.16.2.0/24, 172.16.5.4/30, and 172.16.5.8/30. If all the paths to all of these networks go through the router whose address is 10.35.6.1, then they can all be taken together with the same single route statement, as follows:

Router(config)#ip route 172.16.0.0 255.255.0.0 10.35.6.1 2

It is interesting to see what happens when you need to break up a range of addresses. Carrying on with the same example, suppose there is another network, 172.16.3.0/24, that is connected through a different next-hop router, 10.35.7.2. In this case, you can configure the router as follows:

Router#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#ip route 172.16.0.0 255.255.0.0 10.35.6.1 2

Router(config)#ip route 172.16.3.0 255.255.255.0 10.35.7.2 2

Router(config)#end

Router#

This may appear to have a conflict, because 172.16.3.0/24 is contained within the range 172.16.0.0/16, but there is in fact no conflict because of the longest match rule that we discussed earlier in this chapter. Also note that the router will use the more specific route, even if it has a higher administrative distance. The distance values are used only when selecting between routes with the same mask length. So for example, you could configure two static routes to the same destination:

Router#configure terminal

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#ip route 172.16.3.0 255.255.255.0 10.35.6.1 2

Router(config)#ip route 172.16.3.0 255.255.255.0 10.35.7.3 5

Router(config)#end

Router#

In this case, as long as the router has a route for the better next hop, 10.35.6.1, it will use only this line. The router will install the other route with the higher distance only if it can't reach the better next-hop device.

Note that this is a cumbersome and unreliable way of achieving automatic rerouting because it works only when the route to the next hop disappears, not when the next hop itself becomes unavailable. So, for example, if these two next hop routers were connected through different physical interfaces, and one of those interfaces went down, the router could switch to the router with the higher distance. But if both devices were on the same directly connected Ethernet segment, this would not provide a fail-over. So while this method is useful for some limited applications, in general it is better to use a dynamic routing protocol such as RIP, EIGRP, or OSPF, which are described in later chapters.

By default, the router does this adjustment to evaluate the validity of the next-hop device once every 60 seconds. In 12.3(10), Cisco introduced a new command that allows you to change this time if you need a faster update period:

Router(config)#ip route static adjust-time 30

In this example, we have reduced the adjust-time interval for next-hop evaluation of static routes from 60 to 30 seconds. This has the obvious effect of improving convergence times for networks with static routes, but it also has some negative consequences. If you have a lot of static routes, setting the adjust-time interval too low can cause CPU overhead problems.

The third example in this recipe uses the permanent keyword:

Router(config)#ip route 10.35.15.5 255.255.255.255 Ethernet0 permanent

Router(config)#ip route 172.16.0.0 255.255.0.0 10.35.6.1 2 permanent

You would use this when you want to ensure that the static route always remains in the routing table, even if the next-hop interface is down. There is sometimes a danger that the dynamic routing protocol will install a route that you do not want to use, and it may be preferable to drop the packets than to use the dynamic route. For example, if you had a private link to another IP network, and this link went down, you might not want your routers to try to find a path via the public Internet, even if one were advertised.

The last example in this recipe uses routing tags:

Router(config)#ip route 172.16.0.0 255.255.0.0 10.35.6.1 2 tag 36291

Core Knowledge Questions Removed for CCIE R&S and Voice Lab Exams

With more than six months of exam results now available, Cisco is now able to report that the troubleshooting components of the CCIE R&S v4.0 and CCIE Voice v3.0 lab exams are performing well in validating expert level networking skills. Considering these results, Cisco has decided to eliminate the Core Knowledge questions from the current CCIE R&S v4.0 and CCIE Voice v3.0 Lab Exams. Beginning on May 10, 2010, CCIE R&S and CCIE Voice Lab Exams, in all global locations, will no longer include the four open-ended Core Knowledge questions. The total lab time will remain eight hours. For the CCIE R&S Lab Exam, this means candidates will begin with the two-hour Troubleshooting section, followed by a six-hour Configuration section. For CCIE Voice, candidates will have the full eight hours to complete the integrated exam. At this time, only the R&S and Voice certifications have been designed and validated to allow removal of Core Knowledge.

Core Knowledge Questions on Remaining CCIE Lab Exams

CCIE Service Provider, CCIE Security, CCIE Storage Networking and CCIE Wireless Lab Exams will continue to start with a brief Core Knowledge section consisting of four, computer-delivered short-answer questions. Candidates will type in their answers, which typically require five words or less. Questions will cover topics included on the current lab exam blueprint.

Candidates are allowed a maximum of 30 minutes to complete the questions and may not use the Cisco documentation which is available for the remainder of the lab. Well-prepared candidates should be able to answer the questions in 15 minutes or less and move immediately to the next section. No extra time is being added to the eight-hour exam. All candidates must pass the Core Knowledge section in order to achieve CCIE certification. For more information, access CCIE Lab Exam Q&A.

Note:This pdf demo do not include the question's picture.
Exam : Cisco 350-026
Title : CCIE SP Content Networking ENU
1. How does RADIUS implement AAA?
A. Authentication, Authorization and Accounting are in separate exchanges, yet on the same UDP connection. The
entire connection
is encrypted.
B. Authentication, Authorization and Accounting are in separate exchanges and each occurs on a different UDP
connection. Only the
authentication connection is encrypted.
C. Authentication, Authorization and Accounting are in separate exchanges and each occurs on a different UDP
connection. Only the
password in the authentication connection is encrypted.
D. Authentication, Authorization and Accounting are in separate exchanges, yet on the same UDP connection. Only
passwords are
encrypted.
E. Authentication and Authorization is combined in one exchange. Accounting happens in a separate exchange.
Authentication and
Authorization data are carried on a UDP connection. The user password is encrypted. Accounting data is carried
unencrypted
over another UDP connection.
Answer: E
2. The website www.foo.com is having problems. The PC you are troubleshooting from does not have a web browser
or sniffer software installed. Which method is the next best way to verify that the website will return the web page with
content:
A. tracert www.foo.com 80
B. ping www.foo.com
C. telnet www.foo.com 80
GET / HTTP/1.0
D. telnet www.foo.com 80
E. telnet www.foo.com 80
HEAD / HTTP/1.0
Answer: C
3. To maintain schema-consistency in an LDAP Directory Information Tree (DIT), the LDAP standard specifies that:
A. The client first downloads the DIT schema from the server and then makes sure every request it sends conforms to
the schema;
The server therefore doesn't have to check DIT for consistency
B. The operator periodically scans the DIT to check that the schema is not violated, and manually corrects any
inconsistencies caused by clients
C. The server periodically scans the DIT to check that the schema is not violated, and sends a notification to the
operator when it finds an inconsistency caused by clients
D. The server periodically converts the DIT to an SQL database; Schema-checking is done by the SQL engine and
then the database is converted back to a DIT
E. The server checks every client operation for schema consistency, and ignores requests that would result in a DIT
inconsistency
Answer: E
4. ATM cells are received across a link on a:
A. Known PVC or SVC value
B. Known VCI or VPI value
C. Known PVC or VCI value
D. Known SVC or VPI value
Answer: B
5. What is the usual procedure taken if an unrecognized non-mandatory ISDN IE is received by a network?
A. Final handle the call
B. Final handle the call if 2 such IE is received
C. Ignore only if the IE received is not CS0, otherwise final handle the call
D. Send a Facility msg to the user notifying the user of sending unknown IEs but don't final handle
E. Ignore the IEs
Answer: E
6. Click the Exhibit button to view the topology.
In this diagram, Host G is attempting to send a packet to Host A through Router E. All routers are running EIGRP,
and Router E has installed the following route in its routing table:
10.1.1.0/24 via router F
What will occur when Router E receives packets from Host G that are destined for Host A?
A. E cannot have a route to 10.1.1.0/24 through F; so it will always choose the path through C.
B. This is a routing loop; E will forward the traffic to F, and F will send the traffic back to E.
C. Router E will forward the traffic to Router F.
D. Router E will forward the traffic to Router F and send a 'host not reachable this direction' ICMP packet to Host G.
E. Router E will forward the traffic to Router F and send an ICMP redirect to Host G.
Answer: E
7. In box-to-box redundancy on the CSS, to configure an ip circuit (VLAN) as a redundant circuit, what command is
used?
A. Redundant-circuit
B. Redundant-type-circuit
C. Redundancy
D. Redundancy-type-circuit
E. None of the above
Answer: C
8. MPLS traffic engineering routing information is carried by:
A. BGP MEDs
B. MP-BGP
C. OSPF Opaque LSAs or IS-IS TLVs
D. RTP or RTCP packets
Answer: C
9. Click the Exhibit to view the topology.
In this network, Host A is trying to reach Host D. There is no routing protocol running, but Router B and C have the
following static routes configured:
Router B: ip route 10.1.3.0 255.255.255.0 ethernet 1
Router C: ip route 10.1.1.0 255.255.255.0 ethernet 1
A. This will not work because Router B has no idea of how to forward traffic to the 10.1.3.0/24 network.
B. This will work because Router B will recognize that Router C is on the 10.1.2.0/24 network through a router
discovery protocol and will forward traffic for 10.1.3.0/24 to Router C.
C. This will not work because a broadcast interface in a static route command cannot be specified.
D. This will work because Router B will ARP for Host D's IP address on the 10.1.2.0/24 network and Router C will
answer.
Answer: D
10. Click the Exhibit button to view the topology.
The diagram shows an L2 switched campus. Switch X is the STP root and switch Y is the standby root. How many of
the links in the diagram will be placed in blocking mode by STP?
A. 6
B. 7
C. 12
D. 13
E. 18
F. 19
Answer: E