did-you-know? rent-now

Amazon no longer offers textbook rentals. We do!

did-you-know? rent-now

Amazon no longer offers textbook rentals. We do!

We're the #1 textbook rental company. Let us show you why.

9781587052194

CCNP Self-Study : Building Cisco Multilayer Switched Networks (BCMSN)

by ; ;
  • ISBN13:

    9781587052194

  • ISBN10:

    1587052199

  • Edition: 3rd
  • Format: Hardcover
  • Copyright: 2006-01-01
  • Publisher: Cisco Press
  • View Upgraded Edition
  • Purchase Benefits
  • Free Shipping Icon Free Shipping On Orders Over $35!
    Your order must be $35 or more to qualify for free economy shipping. Bulk sales, PO's, Marketplace items, eBooks and apparel do not qualify for this offer.
  • eCampus.com Logo Get Rewarded for Ordering Your Textbooks! Enroll Now
  • Write a Review Icon Write a Review
List Price: $65.00
We're Sorry.
No Options Available at This Time.

Summary

"CCNP Self-Study: Building Cisco Multilayer Switched Networks (BCMSN), Third Edition, is a Cisco authorized, self-paced learning tool for CCNP switching foundation learning. This book provides you with the knowledge needed to build scalable multilayer switched networks, to create and deploy a global intranet, and to implement basic troubleshooting techniques in environments that use Cisco multilayer switches for client hosts and services. By reading this book, you will learn how to improve traffic flow, reliability, redundancy, performance, and security for Layer 2 and Layer 3 switched networks. This comprehensive book provides detailed information and easy-to-grasp tutorials on design, configuration, operation, and troubleshooting of modern multilayer switched networks."--BOOK JACKET.

Table of Contents

Foreword xxix
Introduction xxx
Introduction to Building Cisco Multilayer Switched Networks
3(44)
Hardware-Switching and Software-Switching Terminology
5(1)
Multilayer Switching Overview
6(8)
Understanding Layers 2, 3, 4, and 7 Switching Terminology
6(1)
Layer 2 Switching
7(1)
Layer 3 Switching
8(1)
Layer 4 Switching
9(1)
Layer 7 Switching
9(1)
Layer 2 Switching In-Depth
10(1)
Layer 3 Switching In-Depth
11(2)
Multilayer Switching
13(1)
Enterprise Composite Network Model for Building Cisco Multilayer Switched Networks
14(19)
The Cisco AVVID Framework
15(1)
Why Build Layer 3 Networks?
16(2)
Enterprise Composite Network Model
18(4)
Enterprise Campus
22(1)
Enterprise Campus Infrastructure
22(3)
How Enterprise Campus Modules Meet the Needs of Enterprise Networks
25(2)
Enterprise Edge
27(1)
E-Commerce Module
28(1)
Internet Connectivity Module
29(1)
Remote Access and VPN Module
30(1)
WAN Module
30(1)
Service Provider Edge
31(1)
ISP Module
31(1)
PSTN Module
32(1)
Frame Relay, ATM, and PPP Module
32(1)
Introducing the Cisco Catalyst Switches
33(7)
Catalyst 6500 Family of Switches
34(2)
Catalyst 4500 Family of Switches
36(1)
Catalyst 3550, 3560, and 3750 Family of Switches
37(2)
Catalyst 2950, 2955, and 2970 Family of Switches
39(1)
Study Tips
40(1)
Summary
41(1)
Review Questions
41(6)
The Roles of Switches in Designing Cisco Multilayer Switched Networks
47(30)
Data-Link Technologies
47(10)
10-Mbps Ethernet
47(2)
Fast Ethernet
49(1)
Gigabit Ethernet
50(3)
Fast Ethernet and Gigabit Ethernet Auto-Negotiation
53(1)
10-Gigabit Ethernet
54(1)
Gigabit Interface Converters
55(1)
Cisco Long-Reach Ethernet
55(1)
Metro Ethernet
56(1)
Designing Cisco Multilayer Switched Networks Using the Cisco Catalyst Switches and Data-Link Technologies
57(12)
Reviewing the Campus Infrastructure Module of the Enterprise Composite Network Model
57(1)
Selecting Layer 2 or Layer 3 Switches
58(1)
Small Campus Network Design
59(1)
Medium-Sized Campus Network Design
60(1)
Large Campus Network Design
61(3)
Server Farm Module
64(2)
Server Farm Infrastructure Architecture
66(2)
Enterprise Edge
68(1)
Case Study: Designing a Cisco Multilayer Switched Network
69(2)
Study Tips
71(1)
Summary
71(1)
Review Questions
72(5)
Initial Configuration and Troubleshooting of Cisco Multilayer Switches
77(52)
Comparing Cisco CatOS and Cisco IOS
78(2)
Initial Configuration of Management Parameters of Cisco Catalyst Switches
80(14)
System Name
80(1)
Management IP Configuration
81(2)
Clock and NTP Settings
83(3)
Telnet and SSH
86(4)
DNS
90(1)
System Logging
91(1)
SNMP
91(2)
SNMP Configuration
93(1)
Managing Catalyst Switch Configurations
94(2)
Understanding the Cisco IOS File System (IFS) and Software Images on Catalyst Switches
96(5)
Determining the IFS Size and Contents
98(1)
Cisco IOS Image Naming
99(1)
Naming Conventions Used by Hybrid and Cisco IOS Images on the Catalyst 6500 Family of Switches
100(1)
Upgrading Software Versions on Catalyst Switches
101(5)
Overview of Converting Cisco CatOS to Cisco Native IOS
106(1)
Basic Troubleshooting Practices
107(4)
show and debug Commands
108(1)
Configurations and Commands Useful When Troubleshooting
109(1)
The Impact of debug Commands and Recommended Use
109(2)
Initial Configuration Troubleshooting Tips
111(2)
What to Do When You Are Unable to Connect to a Switch via Console Port
111(1)
What to Do When You Are Unable to Establish IP Connectivity to or from a Switch Using Telnet or SSH
112(1)
Study Tips
113(2)
Summary
115(1)
Configuration Exercise: Configuring a Cisco IOS--Based Catalyst Switch
115(10)
Required Resources
115(1)
Exercise Objective
116(1)
Network Diagram
116(1)
Command List
116(2)
Task 1: Establish Console (Out-of-Band) Connectivity and Configure Switch Name
118(1)
Task 2: Configure Switch for IP Connectivity
119(1)
Task 3: Configure Switch Usernames and Passwords for Privileged and In-Band Access
120(1)
Task 4: Configure Switch for SSH and Disable Telnet Access
121(1)
Task 5: Configure the Switch Time Settings, NTP Configuration, and System Logging Configuration
121(1)
Task 6: Upgrade Switch Cisco IOS Version to a Later Release
122(3)
Review Questions
125(4)
Implementing and Configuring VLANs
129(68)
VLANs
130(14)
Implementing VLANs in Campus Networks
132(1)
Understanding the Role and Benefits of VLANs in the Multilayer Switched Network Design
132(1)
Benefits of End-to-End and Local VLANs in Campus Networks
133(1)
Static and Dynamic VLANs
134(2)
VLAN Ranges
136(1)
Configuring VLANs
136(5)
Verifying the VLAN Configuration
141(3)
Troubleshooting VLANs
144(1)
Troubleshooting Slow Throughput
144(1)
Troubleshooting Communication Issues
145(1)
Private VLANs
145(7)
VLAN Trunking
152(9)
Implementing Trunking in Multilayer Switched Networks
153(1)
Trunking Protocols
153(1)
ISL
154(1)
IEEE 802.1Q
155(3)
VLAN Ranges and Mappings
158(1)
Service Provider-Managed VLAN Services
159(1)
Cisco Trunking Modes and Methods
160(1)
Configuring ISL and 802.1Q Trunking
161(4)
Verifying Trunking Configurations
163(2)
Troubleshooting Trunking
165(1)
VLAN Trunking Protocol
165(12)
VTP Pruning
169(1)
VTP Versions
170(1)
VTP Versions 1 and 2
170(1)
VTP Version 3
171(2)
VTP Authentication
173(1)
Configuring VTP
173(3)
Verifying the VTP Configuration
176(1)
Troubleshooting VTP
177(1)
Study Tips
177(3)
Summary
180(1)
Configuration Exercise: Configuring VLAN, Trunking, and VTP in Multilayer Switched Networks
181(8)
Required Resources
181(1)
Exercise Objective
181(1)
Network Diagram
181(1)
Command List
182(2)
Task 1: Create a VTP Management Domain
184(1)
Task 2: Configure Trunking
185(1)
Task 3: Configure VLANs
186(1)
Task 4: Assign VLANs with Ports on Your Switch
186(1)
Task 5: Add a New Switch to the Existing Network
186(1)
Task 6: Verify the VLAN and VTP Status
187(1)
Task 7: Configure pVLANs
188(1)
Review Questions
189(8)
Understanding and Configuring the 802.1D, 802.1s, and 802.1w Spanning Tree Protocols
197(58)
Overview of the Spanning Tree Protocol
197(1)
Identifying Bridging Loops
198(4)
Preventing Bridging Loops
199(1)
Building Loop-Free Networks
200(2)
STP (IEEE 802.1D)
202(5)
Bridge Identifier
202(1)
Spanning-Tree Path Cost
202(1)
Bridge Protocol Data Units
203(2)
Spanning-Tree Port States and BPDU Timers
205(2)
STP Operation
207(5)
Root Bridge Election
208(1)
Planning Root Bridge Selection
209(1)
Selection of Root and Designated Port on Nonroot Bridges
210(1)
Understanding Primary and Backup Root Bridges
211(1)
Sample Scenario of STP Election Process
212(1)
STP Topology Changes
213(2)
Per VLAN Spanning Tree Plus
215(3)
MAC Address Allocation and Reduction
217(1)
STP and IEEE 802.1Q Trunks
218(1)
Configuring the Basic Parameters of PVST+
218(3)
Configuring the Root Bridge
219(1)
Configuring Port Cost
220(1)
Verifying the STP Configuration
221(2)
Rapid Spanning Tree Protocol
223(8)
RSTP Port States
224(1)
RSTP Port Roles
225(1)
RSTP BPDU Format and BPDU Handling
226(1)
Rapid Transition to Forwarding
227(2)
RSTP Topology Change Mechanism
229(1)
Compatibility with 802.1D
230(1)
Multiple Spanning Tree
231(5)
PVST+ Case
232(1)
802.1Q Case
232(1)
MST Case
233(1)
MST Regions
233(1)
IST Instances
234(2)
MST Instances
236(1)
Configuring Basic Parameters of MST
236(4)
Study Tips
240(2)
Summary
242(1)
Configuration Exercise: Configuring and Verifying Spanning-Tree Bridge Priorities and Spanning-Tree Port Cost
242(8)
Required Resources
242(1)
Exercise Objective
243(1)
Network Diagram
243(1)
Command List
243(1)
Task 1: Configure and Verify Spanning Tree Root and Backup Bridges and STP Priorities
244(3)
Task 2: Configure and Verify Spanning Tree Port Cost
247(2)
Task 3: Identifying STP Topology Changes
249(1)
Review Questions
250(5)
Adding Resiliency to Spanning Tree Using Advanced Features and Troubleshooting STP Issues
255(42)
Enhancements to 802.1D Spanning Tree Protocol
256(8)
PortFast
256(1)
Configuring the PortFast Feature
257(1)
UplinkFast
258(1)
Configuration and Verification of UplinkFast
259(1)
BackboneFast
260(4)
Configuration and Verification of BackboneFast
264(1)
Improving Spanning-Tree Resiliency
264(5)
BPDU Guard
264(1)
BPDU Filtering
265(1)
Root Guard
266(3)
Preventing Forwarding Loops and Black Holes
269(4)
Loop Guard
269(3)
Comparison Between Aggressive Mode UDLD and Loop Guard
272(1)
Troubleshooting STP
273(7)
Potential STP Problems
273(1)
Duplex Mismatch
274(1)
Unidirectional Link Failure
274(1)
Frame Corruption
275(1)
Resource Errors
275(1)
PortFast Configuration Error
276(1)
Inappropriate STP Diameter Parameter Tuning
276(1)
Troubleshooting Methodology for STP Problems
277(1)
Know the Network
277(1)
Identify a Bridging Loop
277(1)
Restore Connectivity
278(1)
Check Port Status
279(1)
Look for Resource Errors
279(1)
Disable Unneeded Features
279(1)
Study Tips
280(1)
Summary
281(1)
Configuration Exercise: Configuring BackboneFast, UplinkFast, Root Guard, and PortFast
281(5)
Required Resources
281(1)
Exercise Objective
282(1)
Network Diagram
282(1)
Command List
282(1)
Task 1: Configure and Verify BackboneFast
283(1)
Task 2: Configure and Verify UplinkFast
284(1)
Task 3: Configure and Verify Root Guard
285(1)
Task 4: Configure and Verify PortFast
285(1)
Configuration Exercise: Identify and Resolve a Layer 2 Loop
286(7)
Required Resources
286(1)
Exercise Objective
286(1)
Network Diagram
287(1)
Command List
287(1)
Task 1: Identifying the Layer 2 Loop
287(3)
Task 2: Divide and Conquer (Disconnect Redundancy)
290(1)
Task 3: Find Root Cause of Layer 2 Loop (Investigate Network and Hardware)
290(1)
Task 4 (optional): Check Software Statistics
291(2)
Review Questions
293(4)
Enhancing Network Stability, Functionality, Reliability, and Performance Using Advanced Features
297(68)
Ether Channel
298(13)
PAgP Modes
300(1)
LACP Modes
301(1)
EtherChannel Guidelines
302(1)
EtherChannel Configuration Example
303(6)
EtherChannel Load Balancing
309(2)
CDP
311(5)
Voice VLAN and CDP
315(1)
Security Issues
316(1)
Multiple Default Gateways
316(1)
MAC Address Notification
317(2)
Layer 3 Protocol Filtering
319(1)
DHCP for Management IP Configuration
320(2)
Debounce Timer Feature
322(2)
Broadcast and Multicast Suppression
324(2)
Baby Giants and Jumbo Frames
326(3)
Error-Disable Feature
329(5)
IEEE 802.3 Flow Control
334(1)
UDLD and Aggressive Mode UDLD
335(5)
Case Study: Function of Aggressive Mode UDLD
340(4)
Study Tips
344(2)
Summary
346(1)
Configuration Exercise
346(15)
Required Resources
346(1)
Exercise Objective
346(1)
Network Diagram
347(1)
Command List
347(1)
Task 1: Configure and Verify EtherChannel
348(3)
Task 2: Configure and Verify LACP EtherChannel
351(2)
Task 3: Configure and Verify CDP
353(1)
Task 4: Configure and Verify Aggressive Mode UDLD
354(3)
Task 5: Configure and Verify Jumbo Frame
357(2)
Task 6: Configure and Verify Error-Disable
359(2)
Review Questions
361(4)
Understanding and Configuring Inter-VLAN Routing
365(26)
IP Address Hierarchy in a Multilayer Switched Network
365(1)
Introduction to Inter-VLAN Routing
366(12)
Connecting VLANs with Multilayer Catalyst Switches
368(2)
Routed Ports
370(1)
Switch Virtual Interfaces
371(2)
Bridge Virtual Interfaces
373(1)
Router on a Stick (External Router)
373(3)
Verifying the Inter-VLAN Routing Configuration
376(2)
IP Broadcast Forwarding
378(2)
DHCP Relay Agent
378(1)
UDP Broadcast Forwarding
379(1)
Study Tips
380(2)
Summary
382(1)
Configuration Exercise: Configuring Inter-VLAN Routing on Cisco IOS--Based Catalyst Switches
382(5)
Required Resources
382(1)
Exercise Objective
382(1)
Network Diagram
383(1)
Command List
383(2)
Task 1: Configure Inter-VLAN Routing Using SVIs on a Building Distribution Switch
385(1)
Task 2: Configure Simple Routing Using EIGRP
385(1)
Task 3: Configure Inter-VLAN Routing Using a Router on a Stick
386(1)
Task 4: Configure SVI Interfaces for DHCP Forwarding
387(1)
Review Questions
387(4)
Understanding and Configuring Multilayer Switching
391(30)
Understanding Traditional MLS
392(1)
Understanding CEF-Based MLS
393(11)
Centralized and Distributed Switching
395(1)
Address Resolution Protocol Throttling
396(2)
Switching Table Architectures
398(1)
CAM
398(1)
TCAM
399(3)
Sample CEF-Based MLS Operation
402(2)
CEF-Based MLS Load Sharing
404(1)
CEF-Based MLS Configuration, Verification, and Troubleshooting
404(8)
CEF-Based MLS Configuration
404(1)
CEF-Based MLS Verification and Troubleshooting
405(1)
Viewing the Layer 3 Engine CEF Table
406(2)
Viewing the Layer 3 Engine Adjacency Table
408(2)
Debugging CEF on the Layer 3 Engine
410(1)
CEF-Based MLS Troubleshooting Methodology
411(1)
Study Tips
412(2)
Summary
414(1)
Configuration Exercise: Troubleshooting CEF-Based MLS
415(3)
Required Resources
415(1)
Exercise Objective
415(1)
Network Diagram
415(1)
Command List
416(1)
Task 1: Establish Console (Out-of-Band) Connectivity or Telnet or SSH Connectivity to the Switch
416(1)
Task 2: Determine the IP Routing Entry or Subnet That Is Experiencing Connectivity Problems or a CEF-Based MLS Issue
416(1)
Task 3: Verify the Cisco IOS IP Routing Table and ARP Entries for the Route
417(1)
Task 4: Verify the IP CEF FIB and Adjacency Entries for the Route
417(1)
Task 5: Debug the CEF FIB and Adjacency Table's Downloads to the Centralized Switching and Distributed Switching Engines, and Verify the TCAM Contents for FIB and Adjacency Tables
418(1)
Review Questions
418(3)
Understanding and Implementing Quality of Service in Cisco Multilayer Switched Networks
421(58)
The Need for QoS
422(5)
Latency
424(1)
Jitter
425(1)
Packet Loss
426(1)
QoS-Enabled Solutions
426(1)
QoS Service Models
427(5)
Integrated Services Architecture
428(1)
Differentiated Services
428(3)
Assured Forwarding and Expedited Forwarding
431(1)
Assured Forwarding
431(1)
Expedited Forwarding
432(1)
Catalyst QoS Fundamentals
432(28)
Classification
435(1)
Trust Boundaries and Configurations
436(5)
NBAR
441(2)
Marking
443(2)
Traffic Conditioning: Policing and Shaping
445(1)
Shaping
445(1)
Policing
446(3)
Congestion Management
449(1)
FIFO Queuing
450(1)
Weighted Round Robin Queuing
451(3)
Shared Round Robin (SRR)
454(1)
Priority Queuing
455(1)
Custom Queuing
456(1)
Other Congestion-Management Features and Components
456(1)
Congestion Avoidance
456(1)
Tail Drop
457(1)
Weighted Random Early Detection
458(2)
QoS in the Multilayer Switched Network
460(3)
QoS in the Building Access Submodule
462(1)
QoS in the Building Distribution Submodule
462(1)
QoS in the Campus Backbone
463(1)
Auto QoS
463(1)
Study Tips
464(1)
Summary
465(1)
Configuration Exercise: Configuring QoS on Cisco IOS--Based Catalyst Switches
466(8)
Required Resources
466(1)
Exercise Objective
467(1)
Network Diagram
467(1)
Command List
468(1)
Task 1: Globally Enable QoS
469(1)
Task 2: Configure the Switch to Trust DSCP on Interfaces FastEthernet 0/1 Through 0/10 if a Cisco IP Phone Is Attached
470(1)
Task 3: Configure the Switch to Classify All Incoming Frames on Interface FastEthernet 0/11 with a CoS Value of 4 for Untagged Frames
471(1)
Task 4: Configure a Policy Map, Class Map, and the Interface Such That All Ingress TCP Port 30000 Packets on FastEthernet0/11 Have Their DSCP Set to 16
471(1)
Task 5: Configure All Egress Queues Such That CoS Values 4, 6, and 7 Use Queue 3 and a CoS Value of 5 Uses Queue 4
472(1)
Task 6: Configure Queue 4 as a Strict-Priority Queue
472(1)
Task 7: Configure WRR Weights Such That Queue 3 Receives Twice as Much Service as Any Other Single Queue
473(1)
Task 8: Verify All Configurations by Viewing Interface Statistics
473(1)
Review Questions
474(5)
Deploying Multicast in the Multilayer Switched Network
479(50)
Introduction to Multicast
479(12)
Multicast IP Address Structure
482(1)
Reserved Link Local Addresses
483(1)
Globally Scoped Addresses
484(1)
Source-Specific Multicast Addresses
484(1)
GLOP Addresses
484(1)
Limited-Scope Addresses
484(1)
Multicast MAC Address Structure
485(1)
Reverse Path Forwarding
486(2)
Multicast Forwarding Tree
488(1)
Source Trees
488(1)
Shared Trees
489(1)
Comparing Source Trees and Shared Trees
490(1)
IP Multicast Protocols
491(11)
PIM
491(1)
PIM Dense Mode
491(2)
PIM Sparse Mode
493(1)
PIM Sparse-Dense Mode
494(1)
Automating Distribution of RP
494(2)
Comparison and Compatibility of PIM Version 1 and Version 2
496(1)
IGMP
497(1)
IGMPv1
498(1)
IGMPv2
498(2)
IGMPv3
500(1)
IGMPv3 Lite
501(1)
Multicast Hardware-Based Switching Methods
502(2)
MMLS
503(1)
CEF-Based MMLS
503(1)
MFIB
504(1)
Layer 2 Multicast Protocols
504(3)
IGMP Snooping
505(1)
Cisco Group Management Protocol
506(1)
IP Multicast in the Multilayer Switched Network
507(1)
Configuring Multicast
508(4)
Monitoring and Verifying IP Multicast Traffic
512(5)
Study Tips
517(2)
Summary
519(1)
Configuration Exercise: Configuring and Verifying Multicast in the Multilayer Switched Network to Support Stock Ticker Video Applications
520(4)
Required Resources
520(1)
Exercise Objective
520(1)
Network Diagram
520(1)
Command List
520(2)
Task 1: Configure Multicast Routing with Sparse-Dense Mode on Distribution Switches
522(1)
Task 2: Configure the RP/Mapping Agent for Auto-RP on the Core Switches
523(1)
Review Questions
524(5)
Implementing High Availability Options in Multilayer Switches
529(66)
Achieving High Availability in Multilayer Switches
529(4)
Implementing Redundant Supervisor Engines in Catalyst Switches
533(7)
Route Processor Redundancy
535(2)
Route Processor Redundancy Plus
537(2)
Configuring and Verifying RPR+ Redundancy
539(1)
Stateful Switchover (SSO)
540(5)
Configuring and Verifying SSO
542(1)
NSF with SSO
543(1)
Configuring and Verifying NSF with SSO
543(2)
Router Redundancy Using Single Router Mode on the Catalyst 6500 Series of Switches
545(5)
SRM Failure Scenario with a Catalyst 6500 Supervisor Engine II and MSFC2
546(1)
SRM Failure Scenario with Supervisor Engine IA
547(1)
SRM Configuration
547(2)
Implementing Redundant Supervisor Uplink Modules in Catalyst Switches
549(1)
Implementing Redundant Power Supplies
550(2)
Implementing Default Gateway Router Redundancy in Multilayer Switched Networks
552(26)
Proxy ARP
553(1)
IRDP
554(1)
Static Default Gateway Configuration
555(1)
Hot Standby Routing Protocol
556(2)
HSRP States
558(1)
HSRP Virtual MAC Address
559(1)
HSRP Load Balancing
560(2)
Configuring HSRP
562(5)
Verifying HSRP
567(1)
HSRP Debugging
568(3)
Virtual Router Redundancy Protocol
571(1)
VRRP Scenarios
572(1)
VRRP Operation Details
573(1)
Configuring and Verifying VRRP
574(1)
Gateway Load Balancing Protocol
575(3)
Cisco IOS Server Load Balancing
578(5)
Cisco IOS SLB Modes of Operation
579(1)
Configuring the Server Farm with Real Servers
580(2)
Configuring Virtual Servers
582(1)
Study Tips
583(3)
Summary
586(1)
Configuration Exercise: Configuring and Verifying RPR+ and HSRP
586(5)
Required Resources
586(1)
Exercise Objective
586(1)
Network Diagram
587(1)
Command List
587(1)
Task 1: Configure and Verify RPR+
588(1)
Task 2: Configure and Verify HSRP
589(2)
Review Questions
591(4)
Introduction to Deploying Cisco IP Telephony
595(22)
Introduction to IP Telephony Components
595(1)
Network Design Recommendations for IP Telephony
596(8)
QoS
597(1)
Voice (Auxiliary) VLANs
598(2)
Network Bandwidth Provisioning
600(1)
Power Considerations
601(1)
Network Management
602(1)
IP Telephony High Availability
602(1)
Security
603(1)
Best Practices for Deploying IP Telephony in the Enterprise Composite Network Model
604(1)
Study Tips
605(3)
Summary
608(1)
Configuration Exercise: Configuring Voice VLANs on a Catalyst Switch
608(5)
Required Resources
608(1)
Exercise Objective
608(1)
Network Diagram
608(1)
Command List
609(1)
Task 1: Configure Access and Voice VLAN
610(1)
Task 2: Configure Interfaces for Access and Voice VLANs
610(1)
Task 3: Configure Interface FastEthernet 0/1 Through 0/10 for a Recommended QoS Configuration for Congestion Management
611(1)
Task 4: Configure Interface FastEthernet 0/1 for a Classification Based on Trusting CoS
611(1)
Task 5: Configure Interface FastEthernet 0/2 for Classification Based on Trusting DSCP
611(1)
Task 6: Configure Interfaces FastEthernet 0/3 Through 0/10 for Trusting CoS Based on Whether an IP Phone Is Attached to the Interface
612(1)
Task 7: Verify the Voice VLAN Configuration of the FastEthernet Interfaces
612(1)
Review Questions
613(4)
Implementing Management and Data Plane Security Features on Cisco Catalyst Switches
617(62)
Catalyst Switch Configurations for Security in Multilayer Switched Networks
617(6)
Configuring Strong System Passwords
618(1)
Restricting Management Access Using Access Control Lists
618(1)
Securing Physical Access to the Console
619(1)
Securing Access to vty Lines
619(1)
Configuring System Warning Banners
620(1)
Disabling Unneeded or Unused Services
620(1)
Trimming and Minimizing Use of CDP
621(1)
Disabling the Integrated HTTP Daemon
621(1)
Configuring Basic System Logging
622(1)
Securing SNMP
622(1)
Limiting Trunking Connections and Propagated VLANs
622(1)
Securing the Spanning-Tree Topology
623(1)
Configuring AAA
623(8)
Authentication
624(1)
Authorization
624(1)
Accounting
625(1)
Configuring AAA Authentication
626(1)
Configuring AAA Authorization
627(2)
Configuring AAA Accounting
629(1)
A Step-by-Step Example of Configuring Cisco AAA on a Cisco IOS-Based Catalyst Switch
630(1)
Additional Resources for Understanding and Configuring AAA
631(1)
Port Security
631(8)
Allowing Traffic Based on Host MAC Addresses
631(5)
Restricting Traffic Based on Host MAC Addresses
636(2)
Blocking Unicast Flooding on Desired Ports
638(1)
Port Security Summary
639(1)
Network Access Security Using IEEE 802.1X
639(3)
Configuring IEEE 802.1X
640(2)
Applying Security Using Access Control Lists
642(5)
RACLs
643(1)
VACLs
644(2)
Port ACLs
646(1)
Securing Networks Using Firewalls
647(2)
Security Through Network Address Translation (NAT)
649(1)
DHCP Snooping
649(5)
IP Source Guard
652(1)
Configuring IPSG
653(1)
Dynamic ARP Inspection
654(4)
Understanding the Role of Private VLANs as a Security Feature
658(1)
Understanding the Role of QoS as a Security Feature
659(1)
Case Study: Understanding and Preventing VLAN Hopping Attacks
660(2)
Study Tips
662(2)
Summary
664(1)
Configuration Exercise 1: AAA, 802.1X, and VACLs
665(3)
Required Resources
665(1)
Exercise Objective
665(1)
Network Diagram
665(1)
Command List
666(1)
Task 1: Enable AAA, Disable Telnet, and Enable SSH
667(1)
Task 2: Configure AAA Authentication for VTY Access Using RADIUS and the Local Username and Password Database if the Radius Server Is Unavailable
667(1)
Task 3: Configure 802.1X on a Per-Interface Basis
668(1)
Task 4: Configure VACL to Drop All Ingress Frames on TCP Port 8889
668(1)
Configuration Exercise 2: Securing a Cisco Multilayer Switched Network Using DHCP Snooping, IPSG, and DAI
668(7)
Required Resources
668(1)
Exercise Objective
669(1)
Network Diagram
669(1)
Command List
669(1)
Task 1: Enable DHCP Snooping
670(2)
Task 2: Verify DHCP Snooping, IPSG, and DAI Status
672(2)
Task 3: Simulate an IP Source Guard and DAI Violation
674(1)
Review Questions
675(4)
Introduction to the Catalyst Switching Architectures
679(24)
Catalyst 6500
679(9)
Catalyst 6500 Supervisor Engine I
682(1)
Catalyst 6500 with Supervisor Engine II
683(2)
Catalyst 6500 with Supervisor Engine 720
685(1)
Catalyst 6500 Modules
686(1)
Catalyst 6500 Service Modules
686(1)
Catalyst 6500 Summary
687(1)
Catalyst 4500
688(3)
Catalyst 3750
691(2)
Catalyst 3560
693(1)
Catalyst 3550
694(2)
Catalyst 2950
696(2)
Study Tips
698(1)
Summary
698(1)
Review Questions
698(5)
Designing, Building, and Connecting Cisco Multilayer Switched Networks Using Metro Solutions
703(22)
Introduction to Cisco Metro Solutions
704(2)
Metro Ethernet
706(16)
Metro Ethernet Connectivity and Transport
707(1)
Transparent LAN Services
708(2)
Directed VLAN Service
710(1)
Metro Ethernet over SONET
711(3)
Metro Ethernet over Wave Division Multiplexing Optical Solutions
714(1)
Metro Ethernet over DWDM
714(4)
Metro Ethernet over CDWM
718(2)
Optical Distance Challenges
720(2)
Summary
722(1)
Review Questions
722(3)
Performance and Connectivity Troubleshooting Tools for Multilayer Switches
725(38)
Techniques to Enhance Performance
725(2)
Monitoring Performance with SPAN and VSPAN
727(8)
Using SPAN to Monitor the CPU Interface of Switches
733(2)
Case Study: Troubleshooting a Catalyst 6500 Using a SPAN Session to Monitor the sc0 Interface
735(1)
Monitoring Performance with RSPAN
735(8)
Monitoring Performance Using VACLs with the Capture Option
743(2)
Troubleshooting Using L2 Traceroute
745(3)
Performance Monitoring Using the Network Analysis Module in the Catalyst 6500 Family of Switches
748(8)
Verification of the NAM Configuration
754(1)
Troubleshooting Common Problems with the NAM
755(1)
Study Tips
756(1)
Summary
757(1)
Review Questions
758(5)
Appendix A In-Depth Review of 802.3u and 802.3ad Auto-Negotiation 763(6)
Appendix B Answers to Review Questions 769(18)
Appendix C Introduction to Storage Networking (Only Available Online at ciscopress.com)
Index 787

Supplemental Materials

What is included with this book?

The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.

The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.

Rewards Program