What a Year 2011 Was

It has been quite a year. I have not written much but I have studied and learned a lot. I have been piling lots of training material and that has kept me very busy. I have a set of favorites that I want to detail.

INE CCIE ATC by Brian McGahan

If I have to choose the best training material this is my favorite, Advanced Technologies Class. There are other courses that I list below but this the all-around winner. While it requires some supplemental studying on my part, Brian leaves nearly no stone unturned in the path to mastering the technologies. I purchased the download videos and I am watching each video several times. Each time I pick up little details that I have missed in previous views. Sometimes I miss a word or an inflection and then miss the importance of what he is teaching. This has been a great bargain for me.

While other instructors try to liven such a dry subject as Cisco IOS by inserting many silly jokes in the sessions, I still have to find the first one by Brian. This, if you listen several times like I do, you come to appreciate. Listening to a joke for the n-th time gets boring if not annoying. There are no distractions in Brian’s classes.

INE Special Topic Courses

These are courses that were developed while Anthony Sequeira was with INE. The BGP and IPv6 ones are taught by Anthony, the ones on MPLS and Security are taught  by Keith Barker and the one on Multicast done by Brian McGahan. These are 3-day courses going deep into these topics and they have helped me round up my understanding of the technologies. INE does not push them much anymore but if you feel that you need a bit more extensive coverage of these topics consider them.

Compsolv aka Anthony Sequeira

Anthony is a cool guy whose approach to teaching is, let’s get a 5-year-old-kid to understand networking. His objective is to simplify the topics as much as he can. And do not get it wrong, it is not that he does not know the subject and that is why he teaches it simpleton. He is very knowledgeable. He just feels that there is no need to scare anyone, much less a 5 year old kid.

His Nom-de-Plum is Compsolv. He has produced an incredible number of short videos on Cisco IOS. My favorite is the one on Private VLANs which was a topic I was struggling to understand. Well, take a look if you want to see a very down-to-earth explanation of this and Anthony at his very best. I follow him on Twitter.

I also attended the CCIE written web course that Anthony taught through IP Expert. This course just finished a few days ago and it is being packaged as Video-on-Demand course. It was an interesting experience as Anthony had guests such as Keith Barker, Scott Morris and Kevin Wallace who would at times take over the class entirely. I subscribe on YouTube to Keith and Kevin channels.

CCIE R&S Certification Guide – Odom et. all

This is a favorite of many people and I bought it in Oct 2009, according to Amazon. Just happens that I am using it heavily nowadays. This book is really thorough. At first, when I initially got it, I found it confusing. I was not ready for it. These days I have a better understanding of the technologies and I enjoy the detailed coverage of the topics. I have other books that cover particular topics in greater detail but this is my main guide in print.

I have another favorite book, Cisco IP Routing: Packet Forwarding and Intra-domain Routing Protocols, by Alex Zinin. I have mentioned this book before and while a 10-year old book it has a very interesting focus. It teaches a pseudo-code of the protocols. For someone like me with a heavy systems background this is the best way to learn routing protocols.

8 Gigabytes of RAM

My Acer 7745G is core to my studying. There I keep most of the videos, PDF of just about everything and most important, my labs. I use mainly GNS3 but I am fortunate to have a good lab at work. I can play there with anything from 3560s to 6509s, 2900s and pretty soon Cisco IP phones.

But my laptop was getting choked. Windows 7 is like cancer. It keeps growing and asphyxiating the host. I decided to give it some more room and went from 4 GB to 12 GB ram. Plenty of room to grow. And some of my labs can easily take 4 to 6 GBs.

GNS3

It is a great combination, to watch a video class and pause it to replicate what the instructor is teaching in your own lab, anywhere and at anytime. Rewind and Rinse again, thanks to GNS3.

Samsung Galaxy Tab 7

I somewhat timidly bought this tablet and turned out to be a great asset. This tablet complements my Laptop. I have most of the video classes, many PDF documents, my calendar, shopping list, some Kindle books and occasionally use to check emails, search and take notes. Before getting this tablet I was not too hot on them. Now, I do not leave home without it. I just wish I had bought it with a cell radio, but that is ok. It is still a great tool.

These are my tools that I have use heavily this year to prepare for my Cisco certification. I have spent quite a few dollars equipping myself but it is all paying well. I have everything I need within reach all the time. And I love it.

Testing a U-shaped HSRP Topology (Part II)

HSRP_U Lab Setup

In part I we covered the preparation needed to get this HSRP lab running. Here we cover in more detail the configuration of the components.
Servers usually, like any other computer, are not concerned with redundant paths to the network. There are though some systems that are designed with redundancy in mind, they are generally called High Availability (HA) systems. The server operating system can determine when one interface or group of them has failed and selects an alternate interface or group of them to communicate with the outside world.
The loss of connection could be caused by the edge switch becoming unavailable. To remedy this loss of a switch we provide a separate switch for the alternate path used by the server. As a minimum we would provide two access switches going up to the distribution layer. As stated at the beginning access switches provide alternate paths to the distribution layer. This connection from an access switch to a couple of distribution routers forms a “V” shape when drawn. By adding a second switch at the base the drawing forms a “U” this is the reason for the U in the Lab name.
Central to this lab is the First Hop Redundancy concept, that is, provide a redundant default gateway for the servers. the added value of the lab is the experimentation with failures of the various components, both the switches, their switchportsand the links between devices. We also study the issues we have when we lose the primary management path to the edge switches.
The Server is simulated by QEMU. This is a virtual machine emulator, similar to VMWare. Being an Open Source project, the GNS3 developers have tailored a version of QEMU for the specific requirements of GNS3. While QEMU can be a platform for the emulation of ASAs, Juniper Routers or IDS devices, we use it here to emulate a computer running Linux. We run a strip down version called MicroCore. This version of MicroCore has been tailored to for the requirements of GNS3 labs.
Of particular interest to us is the possibility of bonding two (or more) network interfaces under one IP address. There are two basic modalities for this operation, Load Balancing (similar to Cisco layer 3 port channeling) and Active/Standby bonding. The latter is what we use in this lab. In our case the Server has an IP address of 10.24.13.1 and two interfaces, eth0 and eth1. Initially eth0 is the active interface and it connects to the network. If ARPed eth0 MAC address is sent.
The project folder has two subfolders where configuration information is stored. The “configs” subfolder has the Cisco devices configuration files and the “working” subfolder cntains the QEMU/MicroCore files.

Cisco Configuration Files

The five Cisco devices have very simple configuration lines. All devices share some lines shown below:

host <name>
no ip domain-lookup
line 0
logg s
no exec-t
privi l 15

In addition the devices have the participating interfaces defined, the routers have the OSPF routing process defined and the switches have their VLANs and SVIs defined. The Core router defines the default route and injects it to the other routers via OSPF. The Distribution routers have HSRP implemented. The switches track connectivity to the Distribution routers to determine their proper default route.

Core Router

int l0
ip addr 10.24.50.1 255.255.255.255
!
int f0/0
ip addr 10.24.0.254 255.255.255.252
no shut
!
int f0/1
ip addr 10.24.0.250 255.255.255.252
ip ospf cost 3
no shut
int f1/0
ip addr 192.168.137.254 255.255.255.0
no shut
!
router ospf 1
net 10.24.0.0 0.0.255.255 area 0
net 192.168.137.0 0.0.0.255 area 0
passive f1/0
default-information originate
!
ip route 0.0.0.0 0.0.0.0 192.168.137.1

Notice that interface f0/1 that connects to Distr_SEC sets OSPF cost to 3. Regularly a fast Ethernet cost would be 1. This would create a load balancing path to the server. Our design calls for using the primary path for all traffic. The secondary path normally has other functions not considered in this simulation.
Also notice the default route definition and the default-information originate command in the router section. This is how this router creates and injects the default gateway to the outside world. Making the interface connected to the outside passive, no OSPF adjacencies are attempted in that direction.
OSPF is used but any routing protocol would do even statically defined routes. The only requirement is that the path through the primary Distribution router be preferred and that path through the secondary router be taken when the primary is unavailable.

Primary Distribution Router

int l0
ip addr 10.24.50.2 255.255.255.255
!
int f0/0
no shut
exit
!
int f0/0.4
ip addr 10.24.1.254 255.255.255.0
encap dot1q 4
int f0/0.17
ip addr 10.24.13.252 255.255.255.0
encap dot1q 17
standby 1 ip 10.24.13.254
standby 1 timers 2 6
standby 1 priority 120
standby 1 preempt
!
int f0/1
ip addr 10.24.0.253 255.255.255.252
no shut
!
router ospf 1
net 10.24.0.0 0.0.255.255 area 0

In a real-life scenario we would use Cisco Catalyst multilayer switches and use VLAN interfaces. For this small simulation I am using routers with sub-interface encapsulation, very much as one would do in a multi-vlan, router-on-a-stick situation.
We have two interfaces defined, f0/1, the uplink to the Core, and f/0/0 in the LAN where we have the server. This being a small simulation we have this only interface downward. In a real life network the router would be part of many other networks. As said above, a Catalyst is the device of choice.
The primary Distribution router is defined as the primary path from layer 2/3 transitioning. The important VLAN is the production VLAN which services the server. In sub-interface f0/0.17 the router act as the default gateway for the server. Notice the standby set of commands. We define an HSRP standby group, 1 in this case, and by defining a higher than default priority we make it the primary path, where the secondary router stays with the default priority.
The standby group reacts to a virtual IP, 10.24.13.254, when ARPed. The MAC address given is 0000.0c07.ac**, where ** is the HSRP standby group, 0x01 in our case. This IP address is separate from either of the IP addresses assigned to the Distribution routers in this network segment.

Secondary Distribution Router

int l0
ip addr 10.24.50.3 255.255.255.255
!
int f0/0
no shut
!
int f0/0.5
ip addr 10.24.2.254 255.255.255.0
encap dot1q 5
int f0/0.17
ip addr 10.24.13.253 255.255.255.0
encap dot1q 17
standby 1 ip 10.24.13.254
standby 1 timers 2 6
standby 1 priority 100
standby 1 preempt
!
int f0/1
ip addr 10.24.0.249 255.255.255.252
ip ospf cost 3
no shut
!
router ospf 1
net 10.24.0.0 0.0.255.255 area 0

The secondary router has a similar configuration with just a lower priority in the standby group, the default value of 100. It also increases the OSPF cost to avoid a secondary path to network 10.24.0.252/30.
All three routers have a Loopback interface. While this is not strictly needed for the simulation, later in the lab we will use them for other purposes.

Edge Switch 1

vtp mode transparent
!
vlan 4
vlan 5
vlan 17
!
int f1/0
sw mode access
sw access vlan 17
!
int f1/12
sw mode trunk
!
int f1/14
sw mode trunk
!
int vlan4
ip addr 10.24.1.25 255.255.255.0
!
int vlan5
ip addr 10.24.2.25 255.255.255.0

Interface f1/0 services the server with VLAN 17. VLANs 4 and 5 are the management VLANs through the primary and the secondary paths. Interface f1/12 is the uplink and interface f1/14 is the connection to switch 2.

Edge Switch 2

vtp mode transparent
!
vlan 4
vlan 5
vlan 17
!
int f1/0
sw mode access
sw access vlan 17
!
int f1/12
sw mode trunk
!
int f1/14
sw mode trunk
!
int vlan4
ip addr 10.24.1.26 255.255.255.0
!
int vlan5
ip addr 10.24.2.26 255.255.255.0

Except for the IP addresses assigned to VLAN interfaces the configuration is equivalent to that of switch 1.

Other Configuration Files

We turn our attention to the configuration of other components, particularly, those related to the server being simulated.

QEMU Configuration

[qemu 127.0.0.1:10525]
workingdir = working
udp = 20000
[[QemuDevice]]
image = T:\DynamipsLabs\images\Qemu\linux-microcore-3.4.img
ram = 64
netcard = e1000
options = -no-acpi -vga none -vnc none
[[QEMU Server]]
e0 = Edge_Switch1 f1/0
e1 = Edge_Switch2 f1/0
symbol = server

Above we show the parameters as defined inside the GNS3 topology configuration file. In the QemuDevice section I define parameters that may be different from those defined in GNS3 preferences. For example in the options parameter I remove the QEMU console with –vga none and –vnc none. I rather use the serial connection that the MicroCore image offers through PuTTY.

Server [MicroCore]

/bin/hostname Server
/usr/local/bin/slocate –u
#
/sbin/modprobe bonding
/bin/echo active-backup > /sys/class/net/bond0/bonding/mode
/sbin/ifconfig bond0 10.24.13.1 netmask 255.255.255.0 up
/bin/echo +10.24.13.254 > /sys/class/net/bond0/bonding/arp_ip_target
/bin/echo 2000 > /sys/class/net/bond0/bonding/arp_interval
/sbin/ifconfig eth0 down
/bin/echo +eth0 > /sys/class/net/bond0/bonding/slaves
/sbin/ifconfig eth1 down
/bin/echo +eth1 > /sys/class/net/bond0/bonding/slaves
#
/sbin/route add -net 0.0.0.0 gw 10.24.13.254
/bin/echo nameserver 192.168.137.1 >> /etc/resolv.conf

The code lines above are the ones I added to the /opt/bootlocal file. The first line changes the host name from tc to Server. The second line creates the database for slocate (Secure Locate) an application I added to help me locate any file inside Linux. This application does not add to the simulation, it is there for convenience.
The last line adds a line to /etc/resolv.conf. I setup my laptop as the DNS server. The next to last line defines my default gateway as the virtual IP address of the HSRP standby group in the Distribution routers.
The rest of the lines set the bonding of the two physical interfaces up, eth0 and eth1, to a virtual interface, bond0, which handles layer 3. You may find the gory details of how to do this here. I just want to clarify that there are several methods to implement this bonding and I chose the sysfs method. I selected the ARP method of monitoring instead of the Media Independent Interface (MII) monitoring. The default gateway is ARPed every 2000 milliseconds.
Go here for the configuration files. Part III covers the actual running of the simulation.

Testing a U-shaped HSRP Topology (Part I)

Datacenters networks have one distinguishing characteristic, redundancy everywhere. Layer 1, 2 and 3 redundancy. In a datacenter network using 3-tier architecture (Core, Distribution and Access) we can provide robustness by having the access layer switches have uplinks to two distribution layer routers. This provides first hop (default gateway) redundancy with protocols such as Hot Standby Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP) or Gateway Load Balancing Protocol (GLBP). The first graph depicts what we will call the V redundancy, and in our example described below, HSRP_V.

In this topology the server does not participate in the redundancy. The server is setup with just one layer 2/3 gateway to other network segments, called the default gateway. We are showing only one server but we could have several servers on that LAN. The magic is in the V connection where the switch provides the layer 1 path and the distribution routers provide the redundant first hop.

If the server adds its own redundancy we could have various topologies. We could have a load balancing connection to the edge switch, port-channeling in Cisco lingo, an active-standby connection, or some others. We take a look at the active-standby setup where we provide a separate layer 1 path to the network. We call this the HSRP_U topology. This second graph shows this arraignment. Once again, we are showing only one server but we could have several of these devices using this setup. Also, we use two switches in this example, but we could have more of them adding to the complexity without much marginal benefit.

While not the object of this exercise, we show what an HSRP_V lab would look like. Above the distribution routers we would have the core devices. We show only one core but we could and would have at least a secondary core router. This would be regular layer 3 redundancy managed by the routing protocol, OSPF in our case.

In this lab as in our HSRP_U lab we have a connection to our host computer, a laptop in my case. This setup is explained in detail below. This connection gives us a great deal of versatility were the host can provide special support as explained later.

The laboratory below offers an HSRP simulation with the added requirement of having redundancy at the access switch and server level too. This adds to the complexity of the setup and the configuration of all devices. To keep it simple the lab disregards redundancy at the core tier. We have only one dual-home server, no port channeling. On the other hand we have all the functionality related to device management, OSPF, interface costing, default route injection in addition to examining packets and the state of devices through show and debug commands.

The configuration, as shown, consists of one Core router, two Distribution routers, 2 Access switches and one Server. In addition we have our simulation host participate in the network by providing access through a loopback interface.

The host machine that I am using is ACER 7745G with 4GB RAM, and 2 quad processors and Windows 7/64. The simulation is run in GNS3, all Cisco devices are 3660s running 12.4T. The server is simulated by QEMU (part of GNS3) running MicroCore Linux. The switches are simulated using NM-16ESW inside the 3660s.

To provide connectivity from the simulated network to the Internet I am sharing my wireless network with the Loopback interface. This setup can be tricky as explained in the section about Windows setup.

I am assigning the 10.24.0.0/16 network for this simulation. I chose this network because I do not use it at home and we do not have this network at work. If you plan to run this lab, make sure that you are not using this network anywhere. The network from the loopback interface to the GNS3 network is 192.168.137.0/24. This is predetermined by Windows 7 when I share a physical to any other device like the Loopback one. Windows XP uses 192.168.0.0/24.

The network plan is as follows:

The Server (production) segment in on VLAN 17 and uses IP 10.24.13.0/24. We have 2 management segments for the switch devices. A primary IP range is 10.24.1.0/24 on VLAN 4. There is a secondary management segment, 10.24.2.0/24 on VLAN 5, for the access layer switches when the primary segment is not working. There are individual point-to-point segments between the Core and each of the distribution routers, 10.24.0.252/30 and 10.24.0.248/30. Routers have Loopback interfaces in the 10.24.50.0/24 segment.

Windows Setup

I am using GNS3 (0.7.3), Wireshark (1.4.3), PuTTY (0.60), Tinycore/Microcore (4.3), QEMU (0.13.0). In addition I have Meinberg NTP server, Kiwi Syslog server and SolarWinds TFTP server. The first group is required for the simulation. The second group is there as “nice to have” support software.

I place all GNS3 simulations under drive T:. I can either place them in a flash drive to move them around and assign this drive letter to the flash drive when I plug it in or I can create this drive under a folder in my C: drive with the command “subst t: c:\Portable”. Inside drive T: I place the labs in their corresponding folder under the DynamipsLabs folder. In this case the folder is T:\DynamipsLabs\HSRP_U.

Technorati Tags: HSRP,GNS3,dynamips,microcore,first hop redundancy

As stated above I created a Loopback interface to allow connectivity between my computer and the simulation. My regular connection to the outside world is wireless. I modified the wireless interface to share the Internet connection with the Loopback interface. When you do this the Loopback interface is assigned a fixed IP address of 192.168.137.1/24 (Windows 7).

As said, this is tricky. I found out that while I would create the Loopback network as a “Home” network, Windows could, on its own, change it to a public network therefore losing this connection to the wireless interface. I had originally assigned the address of the Core router inside the simulation as the gateway, but it seems (from what I have found on the Web) that Windows 7 checks connectivity to this device to determine if the network interface is private (home/work) or public. Well, the simulation is not always up and running so the network loses its home characteristic and therefore its access to the Internet. A trick I learned was to add an IP address to this interface (click Advanced…) and then make it the default gateway. The Interface is its own gateway, weird.

To route traffic to the simulator from my PC (or the outside) to the network I have added a persistent route in windows.

route /p add 10.24.0.0 mask 255.255.0.0 192.168.137.254

This is what you would see when running:

Route print more

Part II goes into the actual GNS3 simulation.

It has been a while…

I have attempted several times to comment on my progress and in each occasion something has popped up that ruins my intent. Hopefully this time I can deliver the positive message that I have to tell.

I am moving along fine and have made substantial progress in my studies. All along my strategy has been to first have a firm grasp of some theoretical aspects and become familiar with the concepts and later ‘learn by doing’. Fortunately, I am in this second phase.

Tales of two schools

I have purchased training products from the 2 schools that many prople subscribe to, Internetwork Expert (INE) and IP Expert (IPX). Each one offer good products and also have some shortcomings. INE has a vast selection of products, very knowledgeable instructors. I have not attended any bootcamp and I have no doubt that they would be impressive. On the other hand their web support is not what one would regard as gold standard. Given the number of instructors one would expect that they would be on top of the mailing lists and tackling those questions that are relevant to the students.

IP Expert products are not as impressive in number. Still there are a couple of things I like about them. The video is delivered in DVD. I can take the courses with me everywhere, even into places where I do not have Internet access. This is way better that the Internet delivery from INE. The quality of content is about the same, just different instructors. The audio course, can be downloaded and the basic difference is that IP Expert product is complete, while INE’s is slowly coming out. It has been maybe a couple of month since the latest segment was published. As for content, Scott Morris (INE) is a great instructor with total mastery of the media. Marko Milivojevic (IPX) while very knowledgeable, does not have the mastery of the language that a native would have, nevertheless, he present topics in such a detail manner that one cannot miss a sentence or risk backing the ‘tape’ often. I equate his talk with a school field trip through technology. He makes us look at each technology from different angles and form inside. I value that approach.

Where IPX excels is in the mailing lists. I am inclined to think that Wayne Lawson, IP Expert president, pays the instructors based on the speed they answer student queries. Kidding, but still impressive.

Speaking of Wayne Lawson, a short while ago I emailed him with a complaint and less that 5 minutes later he replied with a satisfactory answer. It seems like a corporate culture thing. Anyway, credit where it is due.

At about the same time I send a complaint to INE’s support. A few seconds later I got an automated response that gave me a URL to look into the ticket. An hour later and still no response. Moral of this mini-story, If you want prompt action deal with IP Expert. If you want big names behind the products, there is INE. Whatever suits you. Or, if you can afford it, do as I do, buy from both of them.

Dynamips/GNS3 is your buddy

I am still studying the individual technologies and for this both schools have good products. I have a hybrid lab with 4 3560s a couple of 2811s and the rest are simulated in an old DELL server. It suit me well. But at times this is just too much hardware and at occasions i do not have remote access to this lab.

Sometimes I just want to practice and learn with specific technology. In these cases I take sections out of the Lab Workbooks and create a little simulated lab in GNS3. I am conscious of the limitations, simulation, computer Dynamips, etc. and I can live with that. Even these limitations are very educational.

Passive Knowledge, Active Knowledge

Throughout my years of teaching (and studying) I have identified two basic types of knowledge that I call passive and active. In my case passive knowledge allows me to understand well what I am reading or listening to. Active knowledge is what allows me to use it or explain it to someone else, or in this case develop a lab as I have to ‘explain’ it to the computer.

I have a junior partner in my studies and I realize how easily it is for me to explain to him what I have been practicing earlier in the day or the week. Teaching helps me develop active knowledge which is what is needed in the CCIE lab.

It has been a while since I wrote INE’s customer support and still no reply. They have good instructors, though.

Funny, I should have publish this 4 days ago and forgot to do it. :-)

Little Labs in GNS3

I find very useful to split the labs that IP Expert (IPX) and Internetwork Expert (INE) offer. While I have a fairly decent lab at work (a hybrid one) I find a very good learning experience to break them apart and place them into Dynamips/GNS3.

It takes quite a while to set them up but determining what would work in the simulator and what not is a good lesson. This also helps me master the technologies in smaller chunks.

These are of course tier one labs, that is, single technology labs or if more than one technology is involved it is light stuff. This approach would not be the right one for complex multi-technology labs.

By breaking them into small GNS3 labs I can add features that are a bit more cumbersome in a real lab. For example I can add a connection to the host O.S. so I can use tools like Syslog and SNMP servers. And of course, I can always do packet capture nearly everywhere. It is amazing what I can learn from these packet capture files.

Take for example the lab topology shown below. I have simplified one of INEs lab. I have removed some of the routers that are not relevant in this lab which is about Ethernet technologies, substituting them with virtual PCs simulated by VPCS useful to test connectivity. I also added a connection to my PC shown as Server in VLAN 99.

I can simulate the essence of the lab excluding fancy stuff like DTP or port-channel negotiation. Everything else is there and I can even extend it with some basic routing technologies or test some layer 2 traffic engineering that is not part of INE’s lab. I can also add Syslog and SNMP functionality to my simulation, and really see what transpires with these technologies.

And I can do all this with connecting to the real lab at the office.

If you care to know the GNS3.NET file here it is.

[localhost:7200]
workingdir = T:\DynamipsLabs\basicvlans\working
udp = 10000
[[3660]]
image = T:\DynamipsLabs\images\C3660-IS.BIN
idlepc = 0x607231c0
ghostios = True
sparsemem = True
chassis = 3660
[[ROUTER R4]]
model = 3660
console = 2014
cnfg = T:\DynamipsLabs\advVlans\configs1\R4.txt
f0/0 = SW2 f1/4
f0/1 = SW4 f1/4
x = 79.0
y = 79.0
[[ROUTER R6]]
model = 3660
console = 2016
cnfg = T:\DynamipsLabs\advVlans\configs1\R6.txt
f0/0 = SW2 f1/6
x = 115.043526225
y = 155.09529697
[[ROUTER SW1]]
model = 3660
console = 2001
disk0 = 256
cnfg = T:\DynamipsLabs\advVlans\configs1\SW1.txt
slot1 = NM-16ESW
f1/0 = nio_gen_eth:\device\npf_{5177fc2a-372c-4835-a3c8-a9f6e1a269df}
f1/1 = NIO_udp:30000:127.0.0.1:20000
f1/3 = NIO_udp:30002:127.0.0.1:20002
f1/5 = NIO_udp:30004:127.0.0.1:20004
f1/7 = SW2 f1/7
f1/8 = SW2 f1/8
f1/9 = SW2 f1/9
f1/10 = SW3 f1/7
f1/11 = SW3 f1/8
f1/12 = SW3 f1/9
f1/13 = SW4 f1/7
f1/14 = SW4 f1/8
f1/15 = SW4 f1/9
x = -260.0
y = -34.0
[[ROUTER SW3]]
model = 3660
console = 2003
cnfg = T:\DynamipsLabs\advVlans\configs1\SW3.txt
slot1 = NM-16ESW
f1/0 = NIO_udp:30005:127.0.0.1:20005
f1/7 = SW1 f1/10
f1/8 = SW1 f1/11
f1/9 = SW1 f1/12
f1/10 = SW2 f1/10
f1/11 = SW2 f1/11
f1/12 = SW2 f1/12
f1/13 = SW4 f1/13
f1/14 = SW4 f1/14
f1/15 = SW4 f1/15
x = -69.5608236654
y = -128.2513197
[[ROUTER SW2]]
model = 3660
console = 2002
cnfg = T:\DynamipsLabs\advVlans\configs1\SW2.txt
slot1 = NM-16ESW
f1/0 = NIO_udp:30003:127.0.0.1:20003
f1/2 = NIO_udp:30001:127.0.0.1:20001
f1/4 = R4 f0/0
f1/6 = R6 f0/0
f1/7 = SW1 f1/7
f1/8 = SW1 f1/8
f1/9 = SW1 f1/9
f1/10 = SW3 f1/10
f1/11 = SW3 f1/11
f1/12 = SW3 f1/12
f1/13 = SW4 f1/10
f1/14 = SW4 f1/11
f1/15 = SW4 f1/12
x = -68.0
y = 57.0
[[ROUTER SW4]]
model = 3660
console = 2004
cnfg = T:\DynamipsLabs\advVlans\configs1\SW4.txt
slot1 = NM-16ESW
f1/4 = R4 f0/1
f1/7 = SW1 f1/13
f1/8 = SW1 f1/14
f1/9 = SW1 f1/15
f1/10 = SW2 f1/13
f1/11 = SW2 f1/14
f1/12 = SW2 f1/15
f1/13 = SW3 f1/13
f1/14 = SW3 f1/14
f1/15 = SW3 f1/15
x = 113.378266312
y = -28.7290852347
[GNS3-DATA]
configs = wip
workdir = working
[[NOTE 1]]
text = SW1\nVL7 155.7.1.7/24\nVL67 155.1.67.7/24\nVL79 155.1.79.7/24\nf0/3 155.1.37.7/24\nVL99 192.168.99.7/24
x = -261.0
y = -190.5
rotate = 0
[[Cloud PC6]]
symbol = computer
x = 121.0
y = -214.0
connections = SW3:f1/0:NIO_udp:30005:127.0.0.1:20005
[[Cloud PC5]]
symbol = computer
x = -208.5
y = 59.5
connections = SW1:f1/5:NIO_udp:30004:127.0.0.1:20004
[[Cloud PC4]]
symbol = computer
x = -142.0
y = 204.0
hx = 7.5
hy = -26.0
connections = SW2:f1/0:NIO_udp:30003:127.0.0.1:20003
[[Cloud PC3]]
symbol = computer
x = -292.5
y = 61.5
connections = SW1:f1/3:NIO_udp:30002:127.0.0.1:20002
[[Cloud PC2]]
symbol = computer
x = -246.5
y = 204.5
connections = SW2:f1/2:NIO_udp:30001:127.0.0.1:20001
[[Cloud PC1]]
symbol = computer
x = -376.5
y = 60.5
connections = SW1:f1/1:NIO_udp:30000:127.0.0.1:20000
[[NOTE 2]]
text = 155.1.58.5\nvlan 58
x = -212.0
y = 119.5
rotate = 0
[[NOTE 3]]
text = 192.168.99.100/24\n(vlan 99)
x = -318.0
y = -251.5
rotate = 0
[[NOTE 4]]
text = 204.12.1.254\n(vlan 43)
x = 108.0
y = -272.5
rotate = 0
[[Cloud Server]]
symbol = computer
x = -376.5
y = -234.5
connections = SW1:f1/0:nio_gen_eth:\device\npf_{5177fc2a-372c-4835-a3c8-a9f6e1a269df}
[[NOTE 5]]
text = SW3\nVL9 155.1..9.9/24\nVL79 155.1.79.9/24
x = -75.0
y = -218.5
rotate = 0
[[SHAPE 1]]
type = ellipse
x = -277.0
y = 172.0
width = 230.0
height = 132.0
rotate = 0
border_style = 2
[[NOTE 6]]
text = 155.1.37.3
x = -298.0
y = 119.5
rotate = 0
[[NOTE 7]]
text = 192.10.1.2
x = -251.0
y = 256.5
rotate = 0
[[NOTE 8]]
text = 155.1.146.1\nvlan 146
x = -384.0
y = 120.5
rotate = 0
[[NOTE 9]]
text = R4\nf0/0 204.12.1.4/24\n(vlan 43)\nf0/1 155.1.146.4/24\n(vlan 146)
x = 147.0
y = 37.5
rotate = 0
[[NOTE 10]]
text = 192.10.1.254
x = -155.0
y = 256.5
rotate = 0
[[NOTE 11]]
text = R6\nf0/0.67 155.1.67.6/24\n(vlan 67)\nf0/0.146 155.1.146.6/24\n(vlan 146)
x = 109.0
y = 199.5
rotate = 0
[[SHAPE 2]]
type = ellipse
x = 40.0
y = 23.0
width = 33.0
height = 24.0
fill_color = "#ffffff"
rotate = 30
[[NOTE 12]]
text = SW4\nVL10 155.1.10.10/24\nPo108 155.1.108.10/24
x = 114.0
y = -111.5
rotate = 0
[[NOTE 13]]
text = (vlan 22)
x = -186.0
y = 278.5
rotate = 0
z = 1.0
[[NOTE 14]]
text = SW2\nVL8 155.1.8.8/24\nVL58 155.1.58.8\nPo108 155.1.108.8/24
x = -53.0
y = 132.5
rotate = 0

Can I do this?

Of course I can, if you ask me. It just happens that I ask other fellows this questions and I invariably hear yes. Then from some of them I hear stories of attempts, at all levels (CCNA/CCNP/CCIE), and then something happens and they abandon the effort. Do I have doubts? At times? Yes, I do and that signals that I am tired and need some sleep. I never have doubts in the morning.

The Study Group

I have come up with a strategy for the Study Group that suits me quite well. I send them emails with tips or news that are either challenging, amusing or inspiring. I am also creating small labs (GNS3 based) to learn about specific topics. I document them as well as I can (with Powerpoint presentation, GNS3.net files, initial configs) and, this is what I find beneficial for me, with as much reference to packet captures, syslog, debug and show commands and SNMP commands as I can research. It can be something as simple as creating a couple of VLANs in 2 switches or elaborate as testing some obscure BGP feature, the idea is to leave no stone unturned.

I package this and present it in a face to face meeting. Well, at least this is my plan. Is this beneficial in any way? It is for me as I force myself to have answers for any question or doubt that may come my way, you know, that line of thinking that ‘you learn when you teach’. But I also want to help those that can be helped. Those that, like me, even when they have doubts before going to sleep, wake up not having any doubts.

What Am I studying?

I thought I would dedicate December to study BGP. Maybe not a good idea, December that is. There is so much interruption. Maybe it will take me until the middle of January. What can I do? It is what it is.

Anyway, BGP has been quite a challenge. It is so different from any IGP, and well, just about everything else I have studied so far. For a few days I thought maybe this is where my dream dies, thought but did not believed it. There is always a way to overcome, given enough time and effort. BGP had become my nemesis and I had to find out how it worked, and more important, why. And then master it.

I have been reading Sam Halabi’s Internet Routing Architectures and in the first few chapters I learned why it was developed the way it was. Now pieces are beginning to fall into place. I just need some time to learn the basics and later develop some labs to go into the obscure sections.

After I finish with Halabi I will move to Doyle’s Routing TCP/IP Volume II Which I know will help me cement what I am learning now.

While commuting or whenever i have a chance, I listen to Scott Morris audio lessons, published by Internetwork Expert, and right now I am listing to this BGP section, over and over. I also have his previous work at IP Expert and i am absorbing that too.

Is this something I can do? You bet. How about you?

Covering Territory

The past 2 weeks have been very productive. Our study group is beginning to move along, I have found plenty of resources on YouTube and have been building flashcards to help me memorize some of those facts/words that we simply need to remember without much effort.

Thanks for the Memories

I ma using Mnemosyne as a flashcard reader and have looked into Anki as an alternative but for the time being Mnemosyne seems to do the job.

I think this method will help me with to areas, first, remember things like acronyms, SLA, ASBR and OSPF come to mind, and certain parameter values like the administrative distances. It can also help me with more generic topics, the ones that could pop up as Open Ended Questions in those first 30 minutes of the CCIE lab exam.

YouTube Resources

As with many other web resources there is plenty of not so valuable resources in YouTube but there are also some fine gems. Certainly some of these gems are amateurish in its elaboration and still one can learn a lot from what other are experiencing. Many of the videos are based on GNS3 and this is very encouraging as it shows the power of GNS3 as a training tool. Steve Bowler is one of those contributors that are sharing their experiences. Nick Golden is another contributor.

These videos provide an interesting starting point for those that are new to Dynamips or the Cisco in general. This is the case of several of our study group members.

Study Strategy

There are people that maximize their learning by focusing on one activity at a time, say reading. I tackle my studying on several fronts. I do a little reading, alternate with some labbing, then listen to some audio of watch a video or review some flashcards. Not only do I alternate the method, I also alternate the topics. I may be listening on Multicast, trying a lab on OSPF and reading static routing. Many people would find this approach maddening but I find myself being very productive this way. I can be lifting weights while watching a video (not really paying that much attention), I listen while commuting or while going for a stroll. I do a little reading before going to sleep but my main reading time is when I wake up in the morning. I have noticed that it is my best time for that method.

As I go to sleep I do some more listening and usually fall asleep quite fast. Every now and then I may wake up in the middle of the night and continue listening for short periods before falling asleep again. Funny is that I recognize the topic, refresh it in my mind and fall asleep again. Am I learning anything while sleeping. I doubt it but those short spans of listening I find helpful.

My MP3 player is my buddy. I think that listening has help me the most as I become familiar with the topic more easily that way and with some of the terms. The flashcards are helping me cement that familiarity with words and topics. Reading and labs help me with the in depth understanding of everything.

I feel comfortable that I can master the study material, but still I do not have a clear idea as to when I will be taking the tests.

What Am I Reading?

These days I am almost entirely focused on Doyle’s Routing TCP/IP Vol I. This book is a real gem. It is quite lauded and I add my praise to that chorus. I am on chapter 6 (RIPv2). The previous chapter on RIPv1, while not a topic in the exam, I read it because Doyle’s writing style makes it easy to read and one learns a lot. I even learned how RIP solves the issue of discontiguous subnets. I am using the questions at the end of every chapter to prepare flashcards. I am also labbing some of the troubleshooting and configuration exercises included there.

What Am I Listening?

I have been listening on BGP. No doubt this topic is vast and may become quite a challenge. Before that i have been listen on Multicast. This seems challenging but I am fascinated by this topic. To me it seems as networking in reverse motion. BGP on the other hand, to me , resembles the Dark Side. Maybe it is not that bad but that is how I feel about it. I will master it As I will put my heart into it, nonetheless it will require a lot of studying.

what Am I Labbing?

In addition to the exercises in Routing TCP/IP I am labbing OSPF. In particular I am developing a lab that will get me to understand Network LSAs. This type of LSA is a sort of a mystery to me. I hope to unveil the secrets of this LSA with this lab.

I still have a long way to go. How long? I do not have an answer yet. I do hope to have a better idea by year’s end.