You are on page 1of 37

4th Asia Pacific & Japan

Student Technology Forum


16th July 2010

Brought to you by

APJ Technical Advocacy Team

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 1
Australia New Zealand Fiji Tonga Samoa

India Sri Lanka Maldives Bangladesh Papua New Guinea

Bhutan Nepal China Hong Kong Taiwan

Macau Mongolia Korea Singapore Cambodia

Malaysia Indonesia Thailand Laos Vietnam

Philippines
Presentation_ID Japan © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 2
Agenda

 Who are we?


 Building your 1st IP phone network on PT 5.3
 Ping! Ping! Ping! Illustrated
 What you need to know about port negotiation
 Hacking Google - How to use Google effectively?
 Recording for previous APJ Student Technology Forum
 Feed back & Evaluation

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 3
Asia Pacific & Japan TA Team
Gary Coman
Director, Technical Advocacy
World Wide

John Lim
CCIE #2977
Senior Manager, Technical Advocacy
Asia Pacific & Japan

Eric Kwok Liu Kang Ananth B. S Masato Fujiwara


Technical Manager CCIE #17564 Technical Manager CCIE #22931
Hong Kong Technical Manager India Technical Manager
China Japan

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 4
Building your 1st IP
phone network on
PT 5.3

John Lim
CCIE #2977
Senior Manager, Technical Advocacy
Asia Pacific & Japan

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 5
Packet Tracer 5.3 Protocol Support
 Application
FTP , SMTP, POP3, HTTP, TFTP, Telnet, SSH, DNS, DHCP, NTP, SNMP, AAA,
ISR VOIP, SCCP config and calls ISR command support, Call Manager Express

 Transport
TCP and UDP, TCP Nagle Algorithm & IP Fragmentation, RTP

 Network
BGP, IPv4, ICMP, ARP, IPv6, ICMPv6, IPSec, RIPv1/v2/ng, Multi-Area OSPF,
EIGRP, Static Routing, Route Redistribution, Multilayer Switching, L3 QoS, NAT,
CBAL , Zone-based policy firewall and Intrusion Protection System on the ISR,
GRE VPN, IPSec VPN

 Network Access/Interface
Ethernet (802.3), 802.11, HDLC, Frame Relay, PPP, PPPoE, STP, RSTP, VTP,
DTP, CDP, 802.1q, PAgP, L2 QoS, SLARP, Simple WEP, WPA, EAP

*New in PT 5.3 *Enhanced in PT 5.3

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 6
Building your 1st IP phone network

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 7
Ping! Ping! Ping!
Illustrated

Liu Kang
Technical Manager, Technical Advocacy
Beijing, China

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 8
What is your level of understanding for ping?

0 5 10

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 9
What kinds of “ping” results have you seen?

A. !!!!!
B. .!!!! ! = echo reply received
. = timeout
C. U.U.U U = destination unreachable
D. .U.U.
E. …..

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 10
All answers are correct!

ICMP echo-reply received x4

Timeout x5

Unreachable x3 timeout x2
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 11
Why “.!!!!”

 You may see this kind of result when ping some IP in


the first time
 Why?
 Is it a system bug? Or performance issue?

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 12
“.!!!!”

Why do you say “ARP”?


We need evidence!!

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 13
U.U.U Unreachable x3 timeout x2

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 14
U.U.U Unreachable x3 timeout x2

Why not Timeout x5 ?


Why not Unreachable x5 ?
Is there any issue?

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 15
ICMP packet is generated by router CPU
“show process cpu history”

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 16
ICMP packet is generated by router CPU

 In this demo, I will:


–Disable “rate-limit” for ICMP unreachable packet
–Find the ways to change “U.U.U” to
•“UUUUU”
•“U….U”
•“…..”

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 17
Protect your router
by disabling ICMP unreachable

After apply “no ip unreachables”

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 18
Why we need ICMP unreachable

 Source can not know if destination are reachable or not


–May not able to trace route
–Can’t terminate “unreachable” connection rapidly

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 19
“ping” results
A. !!!!! --congratulations, seems fine 
B. .!!!! -- don’t worry, just ping again
C. U.U.U – possible routing issue
D. .U.U. – possible routing issue
E. ….. -- ……
! = echo reply received
. = timeout
U = destination unreachable

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 20
Some useful commands

 ping <ip> repeat <Repeat count>


 debug arp
 debug ip icmp / undebug all
 ip icmp rate-limit unreachable
 <no> ip unreachables (interface mode)
 show processes cpu history
 “ctrl+shift+6, then x”

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 21
Curriculum reference

 CCNA exploration 2
–Chapter 1: introduction for routing and packet forwarding

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 22
More resources

 Using the Extended ping and Extended traceroute


Commands
–http://www.cisco.com/en/US/tech/tk365/technologies_tech_
note09186a0080093f22.shtml

 ICMP Unreachable Rate Limiting User Feedback


–http://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbip
icmp.html

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 23
What you need to know
about port negotiation

Eric Kwok
Technical Manager, Technical Advocacy
Hong Kong

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 24
Making Ethernet Connection

C  Cable Type
–Connectivity issue
D  Duplex
–Performance issue
S  Speed
–Connectivity issue

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 25
Scenario
Connecting 2 Fast Ethernet Switches

Duplex: auto Link up, full duplex, 100Mbps Duplex: auto


1 Eric John
Speed: auto Speed: auto

Link up, full duplex, 100Mbps


2 Duplex: full Duplex: full
Speed: 100 Eric John Speed: 100

Link up, half duplex, 10Mbps


3 Duplex: half Duplex: auto
Speed: 10 Eric John Speed: auto

Link up, 100Mbps


Full Duplex Mismatch Half
4 Duplex: full Duplex: auto
Speed: 100 Eric John Speed: auto

Duplex: full No link Duplex: full


5 Eric John
Speed: 100 Speed: 10
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 26
Auto Negotiation Fail – Running Half
duplex
Link up, half duplex, 10Mbps
3 Duplex: half Duplex: auto
Speed: 10 Eric John Speed: auto

 The standard requires that the system configured for


auto negotiation must use half duplex
– Switch# show internface fa0/1
– Eric: Half-duplex, 10Mb/s, 100BaseTX/FX
– John: Auto-duplex (Half), Auto Speed (10), 100BaseTX/FX

 Even the speed and duplex is set to manual at one side,


the other side with auto negotiation still be able to
determine the correct speed

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 27
Auto Negotiation Fail – Duplex Mismatch
Link up, 100Mbps
Full Duplex Mismatch Half
4 Duplex: full Duplex: auto
Speed: 100 Eric John Speed: auto

CSMA/CD Collision Collision


is disabled Detected

 The standard requires that the system configured for auto negotiation
must use half duplex
– Switch# show internface fa0/1
– Eric: Full-duplex, 100Mb/s, 100BaseTX/FX
– John: Auto-duplex (Half), Auto Speed (100), 100BaseTX/FX

 Halfduplex side: The half duplex end will see late collisions, alignment
errors, and FCS errors.
 Full duplex side: collision counter is not active. If the FCS, CRC, alignment,
or runt counters increment, check for a duplex mismatch

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 28
Things you must know
 Autonegotiation issues can result from nonconforming implementation,
hardware incapabilities, or software defects.
 When Autonegotiation fail, the standard requires that the system
configured for auto negotiation must use half duplex
 Duplex Mismatch issues mainly result in performance-related issues.
 Speed mismatch will cause link down
 Even the speed and duplex is set to manual at one side, the other side
with auto negotiation still be able to determine the correct speed
 CSMA/CD is not used on Full Duplex Ethernet networks.
 A port duplex misconfiguration would cause the interface to go into
errdisable
 Gigabit Ethernet only support full duplex
 AutoMDIX is disable when manual speed/duplex
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 29
Command for troubleshooting

 show interface fastethernet 0/1


 show interfaces fastethernet 0/1 status
 show controller ethernet-controller fa0/1

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 30
More Reading
 Troubleshooting Cisco Catalyst Switches to NIC
Compatibility Issues
–http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09
186a00800a7af0.shtml

 Troubleshooting Ethernet
–http://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.
html

 Introduction to LAN Protocols


–http://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-
to-LAN.html

 Errdisable Port State Recovery on the Cisco IOS


Platforms
–http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00
806cd87b.shtml
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 31
Hacking Google -
How to use Google
effectively?

Ananth B.S
Technical Manager, Technical Advocacy
India

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 32
Recording for APJ
Student Technology
Forum is available!

John Lim
CCIE #2977
Senior Manager, Technical Advocacy
Asia Pacific & Japan

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 33
Recording for previous Student Technology Forum

http://www.alumni-advantage.com/skills/technical/Student_Webinars.html
1000+ students from 27 different countries joined previous online session!

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 34
Feedback & Evaluation

Thank You!

Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 35
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 36
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 37

You might also like