4 Asia Pacific & Japan Student Technology Forum: APJ Technical Advocacy Team

4th Asia Pacific & Japan
Student Technology Forum

16th July 2010
Brought to you by
APJ Technical Advocacy Team
Presentation_ID © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 1
Australia New Zealand Fiji Tonga Samoa
India Sri Lanka Maldives Bangladesh Papua New Guinea
Bhutan Nepal China Hong Kong Taiwan
Macau Mongolia Korea Singapore Cambodia
Malaysia Indonesia Thailand Laos Vietnam
Philippines
Presentation_ID Japan © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential 2
Agenda
 Who are we?

 Building your 1st IP phone network on PT 5.3
 Ping! Ping! Ping! Illustrated
 What you need to know about port negotiation
 Hacking Google - How to use Google effectively?
 Recording for previous APJ Student Technology Forum
 Feed back & Evaluation
Asia Pacific & Japan TA Team
Gary Coman
Director, Technical Advocacy
World Wide
John Lim
CCIE #2977
Senior Manager, Technical Advocacy
Asia Pacific & Japan
Eric Kwok Liu Kang Ananth B. S Masato Fujiwara

Technical Manager CCIE #17564 Technical Manager CCIE #22931
Hong Kong Technical Manager India Technical Manager
China Japan
Building your 1st IP
phone network on
PT 5.3
John Lim
CCIE #2977
Packet Tracer 5.3 Protocol Support
 Application
FTP , SMTP, POP3, HTTP, TFTP, Telnet, SSH, DNS, DHCP, NTP, SNMP, AAA,
ISR VOIP, SCCP config and calls ISR command support, Call Manager Express
 Transport
TCP and UDP, TCP Nagle Algorithm & IP Fragmentation, RTP
 Network
BGP, IPv4, ICMP, ARP, IPv6, ICMPv6, IPSec, RIPv1/v2/ng, Multi-Area OSPF,
EIGRP, Static Routing, Route Redistribution, Multilayer Switching, L3 QoS, NAT,
CBAL , Zone-based policy firewall and Intrusion Protection System on the ISR,
GRE VPN, IPSec VPN
 Network Access/Interface
Ethernet (802.3), 802.11, HDLC, Frame Relay, PPP, PPPoE, STP, RSTP, VTP,
DTP, CDP, 802.1q, PAgP, L2 QoS, SLARP, Simple WEP, WPA, EAP
*New in PT 5.3 *Enhanced in PT 5.3
Building your 1st IP phone network
Ping! Ping! Ping!
Illustrated
Liu Kang
Technical Manager, Technical Advocacy
Beijing, China
What is your level of understanding for ping?
0 5 10
What kinds of “ping” results have you seen?
A. !!!!!
B. .!!!! ! = echo reply received
. = timeout
C. U.U.U U = destination unreachable
D. .U.U.
E. …..
All answers are correct!
ICMP echo-reply received x4
Timeout x5
Unreachable x3 timeout x2
Why “.!!!!”
 You may see this kind of result when ping some IP in

the first time
 Why?
 Is it a system bug? Or performance issue?
“.!!!!”
Why do you say “ARP”?

We need evidence!!
U.U.U Unreachable x3 timeout x2
U.U.U Unreachable x3 timeout x2
Why not Timeout x5 ?

Why not Unreachable x5 ?
Is there any issue?
ICMP packet is generated by router CPU
“show process cpu history”
ICMP packet is generated by router CPU
 In this demo, I will:

–Disable “rate-limit” for ICMP unreachable packet
–Find the ways to change “U.U.U” to
•“UUUUU”
•“U….U”
•“…..”
Protect your router
by disabling ICMP unreachable
After apply “no ip unreachables”
Why we need ICMP unreachable
 Source can not know if destination are reachable or not

–May not able to trace route
–Can’t terminate “unreachable” connection rapidly
“ping” results
A. !!!!! --congratulations, seems fine 
B. .!!!! -- don’t worry, just ping again
C. U.U.U – possible routing issue
D. .U.U. – possible routing issue
E. ….. -- ……
! = echo reply received
. = timeout
U = destination unreachable
Some useful commands
 ping <ip> repeat <Repeat count>

 debug arp
 debug ip icmp / undebug all
 ip icmp rate-limit unreachable
 <no> ip unreachables (interface mode)
 show processes cpu history
 “ctrl+shift+6, then x”
Curriculum reference
 CCNA exploration 2
–Chapter 1: introduction for routing and packet forwarding
More resources
 Using the Extended ping and Extended traceroute

Commands
–http://www.cisco.com/en/US/tech/tk365/technologies_tech_
note09186a0080093f22.shtml
 ICMP Unreachable Rate Limiting User Feedback

–http://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbip
icmp.html
What you need to know
about port negotiation
Eric Kwok
Hong Kong
Making Ethernet Connection
C  Cable Type
–Connectivity issue
D  Duplex
–Performance issue
S  Speed
–Connectivity issue
Scenario
Connecting 2 Fast Ethernet Switches
Duplex: auto Link up, full duplex, 100Mbps Duplex: auto

1 Eric John
Speed: auto Speed: auto
Link up, full duplex, 100Mbps

2 Duplex: full Duplex: full
Speed: 100 Eric John Speed: 100
Link up, half duplex, 10Mbps

3 Duplex: half Duplex: auto
Speed: 10 Eric John Speed: auto
Link up, 100Mbps

Full Duplex Mismatch Half
4 Duplex: full Duplex: auto
Duplex: full No link Duplex: full

5 Eric John
Speed: 100 Speed: 10
Auto Negotiation Fail – Running Half
duplex
Link up, half duplex, 10Mbps
3 Duplex: half Duplex: auto
 The standard requires that the system configured for

auto negotiation must use half duplex
– Switch# show internface fa0/1
– Eric: Half-duplex, 10Mb/s, 100BaseTX/FX
– John: Auto-duplex (Half), Auto Speed (10), 100BaseTX/FX
 Even the speed and duplex is set to manual at one side,

the other side with auto negotiation still be able to
determine the correct speed
Auto Negotiation Fail – Duplex Mismatch
Link up, 100Mbps
Full Duplex Mismatch Half
4 Duplex: full Duplex: auto
CSMA/CD Collision Collision

is disabled Detected
 The standard requires that the system configured for auto negotiation
must use half duplex
– Switch# show internface fa0/1
– Eric: Full-duplex, 100Mb/s, 100BaseTX/FX
– John: Auto-duplex (Half), Auto Speed (100), 100BaseTX/FX
 Halfduplex side: The half duplex end will see late collisions, alignment
errors, and FCS errors.
 Full duplex side: collision counter is not active. If the FCS, CRC, alignment,
or runt counters increment, check for a duplex mismatch
Things you must know
 Autonegotiation issues can result from nonconforming implementation,
hardware incapabilities, or software defects.
 When Autonegotiation fail, the standard requires that the system
configured for auto negotiation must use half duplex
 Duplex Mismatch issues mainly result in performance-related issues.
 Speed mismatch will cause link down
 Even the speed and duplex is set to manual at one side, the other side
with auto negotiation still be able to determine the correct speed
 CSMA/CD is not used on Full Duplex Ethernet networks.
 A port duplex misconfiguration would cause the interface to go into
errdisable
 Gigabit Ethernet only support full duplex
 AutoMDIX is disable when manual speed/duplex
Command for troubleshooting
 show interface fastethernet 0/1

 show interfaces fastethernet 0/1 status
 show controller ethernet-controller fa0/1
More Reading
 Troubleshooting Cisco Catalyst Switches to NIC
Compatibility Issues
–http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09
186a00800a7af0.shtml
 Troubleshooting Ethernet
–http://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.
html
 Introduction to LAN Protocols

–http://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-
to-LAN.html
 Errdisable Port State Recovery on the Cisco IOS

Platforms
–http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00
806cd87b.shtml
Hacking Google -
How to use Google
effectively?
Ananth B.S
India
Recording for APJ
Student Technology
Forum is available!
John Lim
CCIE #2977
Recording for previous Student Technology Forum
http://www.alumni-advantage.com/skills/technical/Student_Webinars.html
1000+ students from 27 different countries joined previous online session!
Feedback & Evaluation
Thank You!

4 Asia Pacific & Japan Student Technology Forum: APJ Technical Advocacy Team

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

4 Asia Pacific & Japan Student Technology Forum: APJ Technical Advocacy Team

Uploaded by

Copyright:

Available Formats

4th Asia Pacific & Japan

Student Technology Forum

APJ Technical Advocacy Team

India Sri Lanka Maldives Bangladesh Papua New Guinea

Bhutan Nepal China Hong Kong Taiwan

Macau Mongolia Korea Singapore Cambodia

Malaysia Indonesia Thailand Laos Vietnam

 Who are we?

Eric Kwok Liu Kang Ananth B. S Masato Fujiwara

*New in PT 5.3 *Enhanced in PT 5.3

ICMP echo-reply received x4

 You may see this kind of result when ping some IP in

Why do you say “ARP”?

Why not Timeout x5 ?

 In this demo, I will:

After apply “no ip unreachables”

 Source can not know if destination are reachable or not

 ping <ip> repeat <Repeat count>

 Using the Extended ping and Extended traceroute

 ICMP Unreachable Rate Limiting User Feedback

Duplex: auto Link up, full duplex, 100Mbps Duplex: auto

Link up, full duplex, 100Mbps

Link up, half duplex, 10Mbps

Link up, 100Mbps

Duplex: full No link Duplex: full

 The standard requires that the system configured for

 Even the speed and duplex is set to manual at one side,

CSMA/CD Collision Collision

 show interface fastethernet 0/1

 Introduction to LAN Protocols

 Errdisable Port State Recovery on the Cisco IOS

You might also like

New in PT 5.3 Enhanced in PT 5.3