CCNP Self-Study : Building Cisco Multilayer Switched Networks (BCMSN)
Cisco authorized self-study book for CCNP switching foundation learning Prepare for the CCNP BCMSN exam 642-811 with a Cisco authorized self-study guide. This book teaches you how to:Configure basic parameters for Catalyst switches, including SSH, system host name, and IP address management in both Cisco IOS and Cisco CatOS Employ private VLANs, VTP, and 802.1Q trunking in Cisco multilayer switched networks Deploy 802.1D, 802.1D-2004, 802.1s, and 802.1w STP and utilize advanced spanning-tree features such as UplinkFast and root guard Enable Layer 2 features such as including aggressive-mode UDLD, CDP, and Jumbo Ethernet Frames Deploy Inter-VLAN routing Implement QoS on Catalyst switches at Layers 2 and 3 Enable Layer 2 and Layer 3 multicasting features such as IGMP snooping Employ VRRP, HSRP, and Supervisor Engine redundancy for high availability Describe the requirements for IP telephony in multilayer switched networks Implement control plane and data plane security features such as 802.1X and DHCP snooping Deploy Ethernet over long distances with Metro Ethernet solutions such as DWDM and CDWMCCNP Self-Study: Building Cisco Multilayer Switched Networks (BCMSN), Third Edition, is a Cisco (R) authorized, self-paced learning tool for CCNP (R) switching foundation learning. This book provides you with the knowledge needed to build scalable multilayer switched networks, to create and deploy a global intranet, and to implement basic troubleshooting techniques in environments that use Cisco multilayer switches for client hosts and services. By reading this book, you will learn how to improve traffic flow, reliability, redundancy, performance, and security for Layer 2 and Layer 3 switched networks. This comprehensive book provides detailed information and easy-to-grasp tutorials on design, configuration, operation, and troubleshooting of modern multilayer switched networks. This book introduces Cisco Catalyst (R) switching architectures, including Cisco Express Fowarding, ternary content addressable memory (TCAM), and the Cisco 6500, 4500, 3750, 3550, and 2950 series of switches. The book places an emphasis on configuring Cisco Catalyst switches with Cisco IOS (R) Software, with many chapters covering both Cisco IOS and Cisco CatOS. You will also learn about emerging technologies such as multicasting, security, IP telephony, storage area networking, and quality of service (QoS) as additions to the campus network design. The book concludes with a discussion of troubleshooting methodologies and tools. Each chapter opens with a list of objectives to help focus your study. Lab exercises are offered throughout to help illuminate theoretical concepts. Each chapter concludes with a summary of key concepts as well as review questions to reinforce your understanding. This revision to the popular second edition is fully updated to include designs using new Catalyst products, references to the Catalyst 6500 Sup720, security updates throughout the entire book as well as added coverage of Dynamic Host Configuration Protocol (DHCP) snooping, Address Resolution Protocol (ARP) inspection, ARP throttling, revised metro coverage, and new discussions on voice virtual LANs (VLAN) and Rapid Spanning Tree Protocol (RSTP). CCNP Self-Study: Building Cisco Multilayer Switched Networks (BCMSN), Third Edition, is part of a recommended learning path from Cisco Systems (R) that includes simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led training, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners worldwide, please visit www.cisco.com/go/authorizedtraining.
- Hardback | 840 pages
- 180.3 x 228.6 x 50.8mm | 1,519.55g
- 01 Mar 2005
- Pearson Education (US)
- Cisco Press
- Indianapolis, United States
- 3rd edition
About Richard Froom
Richard Froom, CCIE (R) No. 5102, is a technical leader for the Storage Area Networking (SAN) team of the Data Switching Wireless Customer Operation Group at Cisco Systems. Balaji Sivasubramanian is an escalation engineer for the Cisco Systems Gigagbit Switching Business Unit. Erum Frahim, CCIE No. 7549, is a support engineer working for the Data Switching Wireless Customer Operation Group at Cisco Systems.
Table of contents
Chapter 1 Introduction to Building Cisco Multilayer Switched Networks Hardware-Switching and Software-Switching Terminology Multilayer Switching Overview Understanding Layers 2, 3, 4, and 7 Switching Terminology Layer 2 Switching In-Depth Layer 3 Switching In-Depth Multilayer Switching Enterprise Composite Network Model for Building Cisco Multilayer Switched Networks The Cisco AVVID Framework Why Build Layer 3 Networks? Enterprise Composite Network Model Enterprise Campus Enterprise Edge Service Provider Edge Introducing the Cisco Catalyst Switches Catalyst 6500 Family of Switches Catalyst 4500 Family of Switches Catalyst 3550, 3560, and 3750 Family of Switches Catalyst 2950, 2955, and 2970 Family of Switches Study Tips Summary Review Questions Chapter 2 The Roles of Switches in Designing Cisco Multilayer Switched Networks Data-Link Technologies 10-Mbps Ethernet Fast Ethernet Gigabit Ethernet Fast Ethernet and Gigabit Ethernet Auto-Negotiation 10-Gigabit Ethernet Gigabit Interface Converters Cisco Long-Reach Ethernet Metro Ethernet Designing Cisco Multilayer Switched Networks Using the Cisco Catalyst Switches and Data-Link Technologies Reviewing the Campus Infrastructure Module of the Enterprise Composite Network Model Selecting Layer 2 or Layer 3 Switches Small Campus Network Design Medium-Sized Campus Network Design Large Campus Network Design Server Farm Module Enterprise Edge Case Study: Designing a Cisco Multilayer Switched Network Study Tips Summary Review Questions Chapter 3 Initial Configuration and Troubleshooting of Cisco Multilayer Switches Comparing Cisco CatOS and Cisco IOS Initial Configuration of Management Parameters of Cisco Catalyst Switches System Name Management IP Configuration Clock and NTP Settings Telnet and SSH DNS System Logging SNMP Managing Catalyst Switch Configurations Understanding the Cisco IOS File System (IFS) and Software Images on Catalyst Switches Naming Conventions Used by Hybrid and Cisco IOS Images on the Catalyst 6500 Family of Switches Upgrading Software Versions on Catalyst Switches Overview of Converting Cisco CatOS to Cisco Native IOS Basic Troubleshooting Practices Show and debug Commands Configurations and Commands Useful When Troubleshooting The Impact of debug Commands and Recommended Use Initial Configuration Troubleshooting Tips What to Do When You Are Unable to Connect to a Switch via Console Port What to Do When You Are Unable to Establish IP Connectivity to or from a Switch Using Telnet or SSH Study Tips Summary Configuration Exercise: Configuring a Cisco IOS-Based Catalyst Switch Required Resources Exercise Objective Network Diagram Command List Task 1: Establish Console (Out-of-Band) Connectivity and Configure Switch Name Task 2: Configure Switch for IP Connectivity Task 3: Configure Switch Usernames and Passwords for Privileged and In-Band Access Task 4: Configure Switch for SSH and Disable Telnet Access Task 5: Configure the Switch Time Settings, NTP Configuration, and System Logging Configuration Task 6: Upgrade Switch Cisco IOS Version to a Later Release Review Questions Chapter 4 Implementing and Configuring VLANs VLANs Implementing VLANs in Campus Networks Understanding the Role and Benefits of VLANs in the Multilay Benefits of End-to-End and Local VLANs in Campus Networks Static and Dynamic VLANs VLAN Ranges Configuring VLANs Verifying the VLAN Configuration Troubleshooting VLANs Troubleshooting Slow Throughput Troubleshooting Communication Issues Private VLANs VLAN Trunking Implementing Trunking in Multilayer Switched Networks Trunking Protocols VLAN Ranges and Mappings Service Provider-Managed VLAN Services Cisco Trunking Modes and Methods Configuring ISL and 802.1Q Trunking Verifying Trunking Configurations Troubleshooting Trunking VLAN Trunking Protocol VTP Pruning VTP Versions VTP Authentication Configuring VTP Verifying the VTP Configuration Troubleshooting VTP Study Tips Summary Configuration Exercise: Configuring VLAN, Trunking, and VTP in Multilayer Switched Networks Required Resources Exercise Objective Network Diagram Command List Task 1: Create a VTP Management Domain Task 2: Configure Trunking Task 3: Configure VLANs Task 4: Assign VLANs with Ports on Your Switch Task 5: Add a New Switch to the Existing Network Task 6: Verify the VLAN and VTP Status Task 7: Configure pVLANs Review Questions Chapter 5 Understanding and Configuring the 802.1D, 802.1s, and 802.1w Spanning Tree Protocols Overview of the Spanning Tree Protocol Identifying Bridging Loops Preventing Bridging Loops Building Loop-Free Networks STP (IEEE 802.1D) Bridge Identifier Spanning-Tree Path Cost Bridge Protocol Data Units Spanning-Tree Port States and BPDU Timers STP Operation Root Bridge Election Planning Root Bridge Selection Selection of Root and Designated Port on Nonroot Bridges Understanding Primary and Backup Root Bridges Sample Scenario of STP Election Process STP Topology Changes Per VLAN Spanning Tree Plus MAC Address Allocation and Reduction STP and IEEE 802.1Q Trunks Configuring the Basic Parameters of PVST+ Configuring the Root Bridge Configuring Port Cost Verifying the STP Configuration Rapid Spanning Tree Protocol RSTP Port States RSTP Port Roles RSTP BPDU Format and BPDU Handling Rapid Transition to Forwarding RSTP Topology Change Mechanism Compatibility with 802.1D Multiple Spanning Tree PVST+ Case 802.1Q Case MST Case MST Regions IST Instances MST Instances Configuring Basic Parameters of MST Study Tips Summary Configuration Exercise: Configuring and Verifying Spanning-Tree Bridge Priorities and Spanning-Tree Port Cost Required Resources Exercise Objective Network Diagram Command List Task 1: Configure and Verify Spanning Tree Root and Backup Bridges and STP Priorities Task 2: Configure and Verify Spanning Tree Port Cost Task 3: Identifying STP Topology Changes Review Questions Chapter 6 Adding Resiliency to Spanning Tree Using Advanced Features and Troubleshooting STP Issues Enhancements to 802.1D Spanning Tree Protocol PortFast Configuring the PortFast Feature UplinkFast Configuration and Verification of UplinkFast BackboneFast Configuration and Verification of BackboneFast Improving Spanning-Tree Resiliency BPDU Guard BPDU Filtering Root Guard Preventing Forwarding Loops and Black Holes Loop Guard Comparison Between Aggressive Mode UDLD and Loop Guard Troubleshooting STP Potential STP Problems Troubleshooting Methodology for STP Problems Know the Network Identify a Bridging Loop Restore Connectivity Check Port Status Look for Resource Errors Disable Unneeded Features Study Tips Summary Configuration Exercise: Configuring BackboneFast, UplinkFast, Root Guard, and PortFast Required Resources Exercise Objective Network Diagram Command List Task 1: Configure and Verify BackboneFast Task 2: Configure and Verify UplinkFast Task 3: Configure and Verify Root Guard Task 4: Configure and Verify PortFast Configuration Exercise: Identify and Resolve a Layer 2 Loop Required Resources Exercise Objective Network Diagram Command List Task 1: Identifying the Layer 2 Loop Task 2: Divide and Conquer (Disconnect Redundancy) Task 3: Find Root Cause of Layer 2 Loop (Investigate Network and Hardware) Task 4 (optional): Check Software Statistics Review Questions Chapter 7 Enhancing Network Stability, Functionality, Reliability, and Performance Using Advanced Features EtherChannel PAgP Modes LACP Modes EtherChannel Guidelines EtherChannel Configuration Example EtherChannel Load Balancing CDP Voice VLAN and CDP Security Issues Multiple Default Gateways MAC Address Notification Layer 3 Protocol Filtering DHCP for Management IP Configuration Debounce Timer Feature Broadcast and Multicast Suppression Baby Giants and Jumbo Frames Error-Disable Feature IEEE 802.3 Flow Control UDLD and Aggressive Mode UDLD Case Study: Function of Aggressive Mode UDLD Study Tips Summary Configuration Exercise Required Resources Exercise Objective Network Diagram Command List Task 1: Configure and Verify EtherChannel Task 2: Configure and Verify LACP EtherChannel Task 3: Configure and Verify CDP Task 4: Configure and Verify Aggressive Mode UDLD Task 5: Configure and Verify Jumbo Frame Task 6: Configure and Verify Error-Disable Review QuestionsChapter 8 Understanding and Configuring Inter-VLAN Routing IP Address Hierarchy in a Multilayer Switched Network Introduction to Inter-VLAN Routing Connecting VLANs with Multilayer Catalyst Switches Router on a Stick (External Router) Verifying the Inter-VLAN Routing Configuration IP Broadcast Forwarding DHCP Relay Agent UDP Broadcast Forwarding Study Tips Summary Configuration Exercise: Configuring Inter-VLAN Routing on Cisco IOS-Based Catalyst Switches Required Resources Exercise Objective Network Diagram Command List Task 1: Configure Inter-VLAN Routing Using SVIs on a Building Distribution Switch Task 2: Configure Simple Routing Using EIGRP Task 3: Configure Inter-VLAN Routing Using a Router on a Stick Task 4: Configure SVI Interfaces for DHCP Forwarding Review Questions Chapter 9 Understanding and Configuring Multilayer Switching Understanding Traditional MLS Understanding CEF-Based MLS Centralized and Distributed Switching Address Resolution Protocol Throttling Switching Table Architectures Sample CEF-Based MLS Operation CEF-Based MLS Load Sharing CEF-Based MLS Configuration, Verification, and Troubleshooting CEF-Based MLS Configuration CEF-Based MLS Verification and Troubleshooting CEF-Based MLS Troubleshooting Methodology Study Tips Summary Configuration Exercise: Troubleshooting CEFBased MLS Required Resources Exercise Objective Network Diagram Command List Task 1: Establish Console (Out-of-Band) Connectivity or Telnet or SSH Connectivity to the Switch Task 2: Determine the IP Routing Entry or Subnet That Is Experiencing Connectivity Problems or a CEF-Based MLS Issue Task 3: Verify the Cisco IOS IP Routing Table and ARP Entries for the Route Task 4: Verify the IP CEF FIB and Adjacency Entries for the Route Task 5: Debug the CEF FIB and Adjacency Table's Downloads to the Centralized Switching and Distributed Switching Engines, and Verify the TCAM Contents for FIB and Adjacency Tables Review Questions Chapter 10 Understanding and Implementing Quality of Service in Cisco Multilayer Switched Networks The Need for QoS Latency Jitter Packet Loss QoS-Enabled Solutions QoS Service Models Integrated Services Architecture Differentiated Services Assured Forwarding and Expedited Forwarding Catalyst QoS Fundamentals Classification Marking Traffic Conditioning: Policing and Shaping Congestion Management Congestion Avoidance QoS in the Multilayer Switched Network QoS in the Building Access Submodule QoS in the Building Distribution Submodule QoS in the Campus Backbone Auto QoS Study Tips Summary Configuration Exercise: Configuring QoS on Cisco IOS-Based Catalyst Switches Required Resources Exercise Objective Network Diagram Command List Task 1: Globally Enable QoS Task 2: Configure the Switch to Trust DSCP on Interfaces FastEthernet 0/1 Through 0/10 if a Cisco IP Phone Is Attached Task 3: Configure the Switch to Classify All Incoming Frames on Interface FastEthernet 0/11 with a CoS Value of 4 for Untagged Frames Task 4: Configure a Policy Map, Class Map, and the Interface Such That All Ingress TCP Port 30000 Packets on FastEthernet0/11 Have Their DSCP Set to 16 Task 5: Configure All Egress Queues Such That CoS Values 4, 6, and 7 Use Queue 3 and a CoS Value of 5 Uses Queue 4 Task 6: Configure Queue 4 as a Strict-Priority Queue Task 7: Configure WRR Weights Such That Queue 3 Receives Twice as Much Service as Any Other Single Queue Task 8: Verify All Configurations by Viewing Interface Statistics Review Questions Chapter 11 Deploying Multicast in the Multilayer Switched Network Introduction to Multicast Multicast IP Address Structure Multicast MAC Address Structure Reverse Path Forwarding Multicast Forwarding Tree IP Multicast Protocols PIM IGMP Multicast Hardware-Based Switching Methods MMLS CEF-Based MMLS MFIB Layer 2 Multicast Protocols IGMP Snooping Cisco Group Management Protocol IP Multicast in the Multilayer Switched Network Configuring Multicast Monitoring and Verifying IP Multicast Traffic Study Tips Summary Configuration Exercise: Configuring and Verifying Multicast in the Multilayer Switched Network to Support Stock Ticker Video Applications Required Resources Exercise Objective Network Diagram Command List Task 1: Configure Multicast Routing with Sparse-Dense Mode on Distribution Switches Task 2: Configure the RP/Mapping Agent for Auto-RP on the Core Switches Review Questions Chapter 12 Implementing High Availability Options in Multilayer Switches Achieving High Availability in Multilayer Switches Implementing Redundant Supervisor Engines in Catalyst Switches Route Processor Redundancy Route Processor Redundancy Plus Stateful Switchover (SSO) Configuring and Verifying SSO NSF with SSO Router Redundancy Using Single Router Mode on the Catalyst 6500 Series of Switches SRM Failure Scenario with a Catalyst 6500 Supervisor Engine II and MSFC2 SRM Failure Scenario with Supervisor Engine IA SRM Configuration Implementing Redundant Supervisor Uplink Modules in Catalyst Switches Implementing Redundant Power Supplies Implementing Default Gateway Router Redundancy in Multilayer Switched Networks Proxy ARP IRDP Static Default Gateway Configuration Hot Standby Routing Protocol Virtual Router Redundancy Protocol VRRP Scenarios Gateway Load Balancing Protocol Cisco IOS Server Load Balancing Cisco IOS SLB Modes of Operation Configuring the Server Farm with Real Servers Configuring Virtual Servers Study Tips Summary Configuration Exercise: Configuring and Verifying RPR+ and HSRP Required Resources Exercise Objective Network Diagram Command List Task 1: Configure and Verify RPR+ Task 2: Configure and Verify HSRP Review Questions Chapter 13 Introduction to Deploying Cisco IP Telephony Introduction to IP Telephony Components Network Design Recommendations for IP Telephony QoS Voice (Auxiliary) VLANs Network Bandwidth Provisioning Power Considerations Network Management IP Telephony High Availability Security Best Practices for Deploying IP Telephony in the Enterprise Composite Network Model Study Tips Summary Configuration Exercise: Configuring Voice VLANs on a Catalyst Switch Required Resources Exercise Objective Network Diagram Command List Task 1: Configure Access and Voice VLAN Task 2: Configure Interfaces for Access and Voice VLANs Task 3: Configure Interface FastEthernet 0/1 Through 0/10 for a Recommended QoS Configuration for Congestion Management Task 4: Configure Interface FastEthernet 0/1 for a Classification Based on Trusting CoS Task 5: Configure Interface FastEthernet 0/2 for Classification Based on Trusting DSCP Task 6: Configure Interfaces FastEthernet 0/3 Through 0/10 for Trusting CoS Based on Whether an IP Phone Is Attached to the Interface Task 7: Verify the Voice VLAN Configuration of the FastEthernet Interfaces Review Questions Chapter 14 Implementing Management and Data Plane Security Features on Cisco Catalyst Switches Catalyst Switch Configurations for Security in Multilayer Switched Networks Configuring Strong System Passwords Restricting Management Access Using Access Control Lists Securing Physical Access to the Console Securing Access to vty Lines Configuring System Warning Banners Disabling Unneeded or Unused Services Trimming and Minimizing Use of CDP Disabling the Integrated HTTP Daemon Configuring Basic System Logging Securing SNMP Limiting Trunking Connections and Propagated VLANs Securing the Spanning-Tree Topology Configuring AAA Authentication Authorization Accounting Configuring AAA Authentication Configuring AAA Authorization Configuring AAA Accounting A Step-by-Step Example of Configuring Cisco AAA on a Cisco IOS-Based Catalyst Switch Additional Resources for Understanding and Configuring AAA Port Security Allowing Traffic Based on Host MAC Addresses Restricting Traffic Based on Host MAC Addresses Blocking Unicast Flooding on Desired Ports Port Security Summary Network Access Security Using IEEE 802.1X Configuring IEEE 802.1X Applying Security Using Access Control Lists RACLs VACLs Port ACLs Securing Networks Using Firewalls Security Through Network Address Translation (NAT) DHCP Snooping IP Source Guard Configuring IPSG Dynamic ARP Inspection Understanding the Role of Private VLANs as a Security Feature Understanding the Role of QoS as a Security Feature Case Study: Understanding and Preventing VLAN Hopping Attacks Study Tips Summary Configuration Exercise 1: AAA, 802.1X, and VACLs Required Resources Exercise Objective Network Diagram Command List Task 1: Enable AAA, Disable Telnet, and Enable SSH Task 2: Configure AAA Authentication for VTY Access Using RADIUS and the Local Username and Password Database if the Radius Server Is Unavailable Task 3: Configure 802.1X on a Per-Interface Basis Task 4: Configure VACL to Drop All Ingress Frames on TCP Port 8889 Configuration Exercise 2: Securing a Cisco Multilayer Switched Network Using DHCP Snooping, IPSG, and DAI Required Resources Exercise Objective Network Diagram Command List Task 1: Enable DHCP Snooping Task 2: Verify DHCP Snooping, IPSG, and DAI Status Task 3: Simulate an IP Source Guard and DAI Violation Review Questions Chapter 15 Introduction to the Catalyst Switching Architectures Catalyst 6500 Catalyst 6500 Supervisor Engine I Catalyst 6500 with Supervisor Engine II Catalyst 6500 with Supervisor Engine 720 Catalyst 6500 Modules Catalyst 6500 Service Modules Catalyst 6500 Summary Catalyst 4500 Catalyst 3750 Catalyst 3560 Catalyst 3550 Catalyst 2950 Study Tips Summary Review Questions Chapter 16 Designing, Building, and Connecting Cisco Multilayer Switched Networks Using Metro Solutions Introduction to Cisco Metro Solutions Metro Ethernet Metro Ethernet Connectivity and Transport Metro Ethernet over SONET Metro Ethernet over Wave Division Multiplexing Optical Solutions Optical Distance Challenges Summary Review Questions Chapter 17 Performance and Connectivity Troubleshooting Tools for Multilayer Switches Techniques to Enhance Performance Monitoring Performance with SPAN and VSPAN Using SPAN to Monitor the CPU Interface of Switches Monitoring Performance with RSPAN Monitoring Performance Using VACLs with the Capture Option Troubleshooting Using L2 Traceroute Performance Monitoring Using the Network Analysis Module in the Catalyst 6500 Family of Switches Verification of the NAM Configuration Troubleshooting Common Problems with the NAM Study Tips Summary Review Questions Appendix A In-Depth Review of 802.3u and 802.3ad Auto-NegotiationAppendix B Answers to Review QuestionsAppendix C Introduction to Storage Networking (Only Available Online at ciscopress.com) 1587052199TOC91405