Tekcert = jeremys blog

06 – IOS tools to monitor and maintain network part 2

Filtering and redirecting output

Testing connectivity

Checking resources

SPAN and RSPAN

Syslog, SNMP, Netflow, EEM (for making scripts)

07 – vlans and spanning tree concepts

STP: Key troubleshooting

 Show spanning-tree
 Show spanning-tree interface detail
 Show process cpu
 Shutdown

TTL only decrements when it goes through a layer 3 device (router)

08 – vlans and spanning tree part 1

Tshoot commands: best command to start with is showipint brief

Show ip interfaces

Show int status

Show vlan

09 – vlans and spanning tree part 2

10 – L3 switching and redundancy protocols concept review

HSRP:

 Created by Cisco, for Cisco in 1994

 Uses a default hello timer of 3 seconds with a hold timer of 10 seconds

VRRP:

 Created by IETF in 1999

 Works between multiple vendors
 Has faster times than HSRP by default – hello of 1 second, hold timer of 3 seconds

GLBP:

 Created by Cisco, for Cisco in 2005

 Identical features to HSRP, but allows an active-active connection that adds load-balancing

Tuning and Optimising HSRP

 Priority
 Pre-empt
 Tracking
 Timers

L3 Switching, Redundancy Key Troubleshooting

 L3 Switching – Vlans + Routing

 Show standby brief (subst VRRP/GLBP)
 Show standby <interface> (subst VRRP/GLBP)
 Debug standby TERSE (Subst GLBP)

11 –

Copy run tftf 10.151.1.1

12 –

a reason vlans go down is when there is no active port assigned to that vlan

13 – L3 connectivity and eigrp concept review

A router running eigrp maintains three tables

 Neighbour table
  Topology Table (Successor and Feasible Successor)
 Routing Table

14 – L3 connectivity and eigrp part 1

If shooting from the hip lasts for more than 5 minutes, backup and adopt a structured approach.

15 – L3 connectivity and eigrp part 2

Show int description

Show int trunk – view port channels and allowed vlans

In CMD: Tracert – d (this command is better as it does not take lots of time trying to resolve
hostnames)

16 – l3 connectivity and eigrp part 3

17 – ospf and route redistribution concept review

Most popular routing protocol

All areas must connect to area 0

Understanding ospf neighbour relationships

The following information have to match between neighbours:

 Hello and dead timers

 Network mask
 Area ID
 Authentication password

OSPF Neighbour State

 Attempt
 Init
 2-way
 Exstart
 Exchange
  Loading
 Full

The only full neighbours that will form will be with the DR and BDR.

Rest of the neighbours will be in 2-way

The Process of Redistribution

EIGRP has an admin distance for ext routes as 170 (90 internal)

Troubleshooting Keys

 Show ip ospf neigh

 Show ip ospf interface (check the timers)
 Show ip ospf database
 Debug ip ospf adj / packets
 Clear IP OSPF Proc (resets the neighbour relationships)
 Debug ip routing (changes to the routing table as they happen)
 Seed metrics (Rip and EIGRP have no default seed metric, always ensure seed metric!)
 Proper filtering (make sure routes are filtered, using distribute lists etc.)

18 – ospf and route redistribution part 1

20 – bgp concept review

 Facts about BGP:

 BGP runs on top of TCP (port 179)
 TCP used for reliability and keepalives
 Updates are incremental and triggered

Packets:

 Open
 KeepAlive
 Update
 Notification
Tables:

 Neighbor table – connected bgp friends

 BGP table – list of all bgp routes
 Routing table – list of the best routes

Key troubleshooting BGP

 Show ip bgp summary **(any words under state e.g., idle, active etc is a bad thing, u wanna
see a number)
 Show ip bgp
 Show ip bgp neighbors
 Debug ip bgp
 Debug ip bgp updates

21 - bgp

22 – router performance – concept review

Key performance Areas:

 Processor
 Memory
 Throughput

Processor Overload

Areas to check:

 Default route pointed to interface

 Interface throttles, overruns, ignores
 Show tcp statistics/brief
 Show process cpu (history, excl 0/00%)

Skinny port: used for VOIP is on port 2000

Memory Overload
Key symptoms:

 Syslog messages: sys-2-mallocfail

 Show commands return blank output
 Console: “unable to create exec – no memory or too many process”

Areas to check:

 Wrong IOS image (not enough memory to run)

 Memory leak due to bad IOS image (reload in)
 Worm/virus focused on IOS
 BGP (show process memory)

Interface utilization

Key Symptoms:

 High cpu/memory utilization

 Packet drops
 Unreachable destinations

Areas to check

 Verify switching mode (that it is set up for CEF)

 Verify routing table
 Verify CEF/ARP cache

24 – access list concepts

Adding access list capabilities:

 Standard (good for NAT)

 Extended
 Dynamic (requires authentication)
 Established (reflexive)
 Time-based
 Context-based access control (CBAC) – uses inspect rules, inspects traffic that goes out, and
edits ACLs to allow the inspected traffic to come back into the network

26 – ipv6 and ipv6 routing protocols

IPv6 Addressing
  Moved from 32 bit to 128 bit
 Eliminate groups of zeros
 Eliminate leading zeros

Types of Communication and Addresses

 Unicast: one-to-one
 Multicast: one-to-many
 Anycast: one-to-closest

Ipv6 unicast-routing (to turn on ipv6 routing)

IPv6 RIPng

 Ipv6 unicast-routing
 (global) Ipv6 rip <tag> enable
 (interface) Ipv6 router rip <tag>

OSPFv3

 Ip6 unicast routing

 (global) ipv6 routerospf <process>
 (router) router-id <id>
 (interface) ipv6 ospf <process> area <area>