Recently in Training Category
illustrating the weakness of MAC authentication...
PickupLine is a network exploration tool that, among other things, is capable of bypassing authentication on authenticated wireless networks.
Monday, August 27
09:00 - 12:00
1412 ACE™ Uncovered: How ACE Analysis Really Works - Atrium Ballroom B (Reagan)
---
8:36 AM 8/27/2007
just had a great continenal breakfast, the coffee was superb.
I am sitting now in the atrium ballroom waiting for session 1412 to begin.
I have been working for more than a year on ACE analysis, and this will be my
second OPNETWORK conference
There was a reception last night in the Willard Hotel, wonderful ambience, and
the light finger foods, and spinach stuffed ravioli was really really good.
9:04 AM 8/27/2007
technical assistants introduction.
think of it as the science behind ace.
not point and click, how to, this is the theory of how the numbers are
calculated.
explaining to app dev that he broke a underforming app. you must be able to
support your conclusions.
not blind acceptance of the math, but understanding what the math behind the
answers is.
pdf copy of the slides on the desktop.
going over two main analysis components.
the summary of delays.
where it has spent it's time
quick predict
where it will spend it's time
talk about the various source of delays...
finish with how simulation works.
components of delay:
where should i spend my energy on troubleshooting?
summary delay chart pinpoints the areas that need analysis.
review of network delays
network hops...
complexity can be simplified... analogy of resistors and circuits.
there is an equivalent network between the client and server. it's not crucial to
model the actual, reducing complexity to simplify analysis.
bandwidth is the easiest to understand. we all agree, basically bandwidth delay
is the time it takes to clock a certain number bits per second on to the wire.
varies with the size of the packet!
the longer the packet, the longer it takes to clock on to the circuit.
from start of the packet to the end... 2000 bit packet, on a 2000 bit/second
circuit equals 1 second from start to end of packet to hit the wire.
latency delay:
length of time that it takes the rising edge of the bit to transit the circuit.
thousand mile cable, with an electric cable, propgation delay, longer to reach
california, than bethesda.
opnet defines latency ONE WAY... ping would return round-trip latency...!!!!
remember to divide in half if using ping
the bottleneck link controls how much the bandwidth plays in the equation...
usually the slowest links are entry and exit of the circuit... t1 is three times
slower than a t3 because of throttling delay.
throwing more bandwidth at a problem, only solves one of the components of the
problem.
roads, bandwidth = how many lanes the road has...
latency is the distance of that road, one lane road to new york, four hours, four
lane road still takes four hours, but if i want to send a fleet of trucks, the
four lane road allows me to send more data.
***warehouse analogy... could be created here***
application turns
application will experience the latency of the circuit, for each application
turn.
latency delay = circuit latency * (turns +1)
CONGESTION DELAY
is queing delay on devices, not the wire, you can not store data on the wire.
this is variable based on congestion.
you have to calulate the congestion delay for every single packet.
calculating network delays
clocking data on to the wire, and latency delay. BUT then we see additional delay
due to congestion delays.
clocking the data off the wire will take the same amount of time... but it does
not matter as much...
40% of mistakes because they did not specify bandwidth on import. you MUST answer
to the extent that you can.
you can not change them once they are imported... import configuration, toggle it
to previous, and then tweak the numbers when you select bandwidth and latency.
packet trains
bundles of packets, an application may send a block of data, 10 k forinstance,
and tcp chops it up into chunks
calulating delay for packet trains
so we will treat packet trains like 1 big packet
we see how bundles act like small packets, but can experience the same congestion
delays.
turns + 1 = application turns
you always experience latency once
pie chart
is telling you the benefit you will get for fixing this thing... bandwidth,
latency, congestion.
calculating delays, advanced
take the mental image if you started increasing bandwidth, to infinity , the
whole thing would compress , squeezing out bandwidth, what do you have left...
lab excercise.
response time = 26.03
bandwidth delay = (3.199,760*8)/1544000 = 16.58
percentage of bandwidth = 16.58/26.03 = 63.7
user think time is a new feature of it guru 14.
you can specify anything greater than X time factor is user think time... telling
the user to wait five seconds between screen refreshes.
you must perform the sanity check to defend your results in ACE
key concept.
every packet has a time value when you look at it in wireshark
ace knows TWO time values for each packet, when it was received and when it left.
Trace merge:
based on lining up clocks this is trivial, packet left, packet received.
single side adjust
if you specify the latency too high, you would get packet crosses.
sending a packet train... 10 packets... the ack's come back...........big gap in
the ack's
either the packet was delayed, or that ack was delayed.
acknowledgements may delayed...
there are rules that govern how ack's get delayed.
key concept: if we graph the delays... packet size, packet delay... small packets
have small delays... large packets have large delays.
*
/congestion
/____
/bandwidth ^
/______
/latency ^
/ -------
never zero latency
tcp guarantees that a packet will cross the network, it also protects the
network.
prevents single users from hogging the network
what does protocol delay look like
it is delay added by the network layer, that is overhead on the packet train.
tcp protocol delay causesd by:
tcp windowing
slow start
notice the inflight data graph is ramping up...
http 1.0 would be susceptible to this issue
frozen window
nagle's window
sending one packet at a time is inefficient
bundling to prevent inefficiency in the network
can be a problem in mainframe communications
retranmission
tcp covers how long it takes to recover from packet loss
out of sequence packets
lab 2
summary of labs, conclusion
was a congestion problem
the trace file showed the effect of protocol congestion which was slowing down
the packets
how to explain parrallel effects
reading the paper while eating breakfast
another example, dessert in the oven, making steaks... things that happen at the
same time
two types of applications:
transactional
e.g. database queries
sequential
or
parallel
multiple calls with dependencies
asynchronous
voice calls...
so parallel effects are something you have to do TWO things to make them go away.
analysis vs experimentation
simulation, is recreating variables and tuning them for determining different
effects
use QuickPredict for experiments
barchart
sweep
multi-user quick predict
I am in Washington DC For the OPNETWORK 2007 conference.
Registration Desk and Internet Café open on Sunday:
Please check in at the registration desk located, in the Amphitheater Foyer of The Ronald Reagan Building, to obtain your conference badge, personal agenda, and welcome bag.
Registration opens Sunday, Aug 26th between the hours of 2 pm and 9 pm.
and at 7 am on Monday morning.
I am reviewing this under safari, so far the text seems relevant.
Network Warrior
by Gary A. Donahue
Publisher: O'Reilly
Pub Date: June 01, 2007
Print ISBN-10: 0-596-10151-1
Print ISBN-13: 978-0-59-610151-0
Pages: 598
This is my agenda for this year's conference, hope to see some of you there!
OPNETWORK 2007
MY SESSION AGENDA
Kenneth Hunt
Monday, August 27
09:00 - 12:00 1412 ACE™ Uncovered: How ACE Analysis Really Works
12:00 - 13:00 2011 Keynote
13:00 - 14:00 2000 Lunch
14:00 - 16:00 1453 Implementing a Performance Engineering Process Within Your Organization
17:00 - 18:00 1440 Live Demo — Active Application Performance Monitoring with SLA Commander™ and ACE™
18:00 - 22:00 2001 Dinner / Reception and Entertainment
Tuesday, August 28
09:00 - 12:00 1418 Modeling Applications with the Standard Application Models
12:00 - 13:00 2012 Keynote
13:00 - 14:00 2000 Lunch
14:00 - 18:00 1415 Application Capture and Import Strategies with ACE™ — Advanced
18:00 - 19:00 1721 Birds of a Feather: Network Documentation
18:00 - 22:00 2001 Dinner / Reception and Entertainment
Wednesday, August 29
09:00 - 12:00 1423 Case Studies: Application, Server, and Enterprise Analysis I
12:00 - 13:00 2013 Keynote
13:00 - 14:00 2000 Lunch
14:00 - 16:00 1427 Capacity and Performance Planning for Mainframes — Introduction
16:00 - 18:00 1456 Importing Performance Data for Effective Capacity Management with IT Guru® Systems Planner
18:00 - 19:00 1717 Birds of a Feather: NETWARS
18:00 - 22:00 2002 Partner Pavilion / Dinner
Thursday, August 30
09:00 - 12:00 1465 Server Consolidation and Virtualization Planning with IT Guru® Systems Planner
12:00 - 13:00 2014 Keynote
13:00 - 14:00 2000 Lunch
16:00 - 18:00 1459 Capacity and Performance Planning for Mainframes — Advanced
18:00 - 22:00 2001 Dinner / Reception and Entertainment
Friday, August 31
09:00 - 12:00 1413 Troubleshooting and Predicting Web Application Performance with ACE™
12:00 - 13:00 2000 Lunch
Anatomy of the Linux networking stack
One of the greatest features of the Linuxョ operating system is its networking stack. It was initially a derivative of the BSD stack and is well organized with a clean set of interfaces. Its interfaces range from the protocol agnostics, such as the common sockets layer interface or the device layer, to the specific interfaces of the individual networking protocols. This article explores the structure of the Linux networking stack from the perspective of its layers and also examines some of its major structures.
Last year was great, some of the best technical training I've ever seen. I was in these sessions:
- 1102 Introduction to Using Sentinel for Network Security Audits
- 1302 Traffic Modeling Techniques
- 1307 Planning and Analyzing ATM and Frame Relay Networks
- 1358 Habits of Highly Effective SP Guru
- IT Guru
- and Modeler Users
- 1402 Planning Application Deployments with ACE
- 1412 Troubleshooting and Predicting Application Performance with ACE--Advanced
- 1413 Troubleshooting and Predicting HTTP Performance with ACE
- 1415 Application Capture and Import Strategies with ACE--Advanced
- 1435 Habits of Highly Effective ACE Users
- 1442 Application Capture and Import Strategies with ACE--Introduction
- 1443 Creating Custom ACE Visualizations and Advanced Analyses with Python
Looking to jump into some refresher sessions this year, and retake all the advanced courses!
OPNETWORK is the largest event of its kind, attracting thought leaders from industry, government, and academic communities from all over the world, to advance best practices for:
• Application Performance Management
• Network Operations
• Capacity Planning and Design
• Network R&D
OPNETWORK 2007 will be held in Washington D.C. from August 27 - 31, at the Ronald Reagan Building.
Attendees will include OPNET users, technical and business leaders, and engineering practitioners representing corporate and government enterprises, defense agencies and contractors, network service providers, and network equipment manufacturers.
Enhanced Interior Gateway Routing Protocol - Wikipedia, the free encyclopedia
Enhanced Interior Gateway Routing Protocol is a Cisco proprietary routing protocol loosely based on their original IGRP. EIGRP is an advanced distance-vector routing protocol, with optimizations to minimize both the routing instability incurred after topology changes, as well as the use of bandwidth and processing power in the router.
Here's a nice explanation of the SSL handshake, note if you are using Wireshark to examine a network transaction that you must have the entire handshake from the first packet the client sends to the web server.
Description of the Secure Sockets Layer (SSL) Handshake
The Secure Sockets Layer (SSL) protocol uses a combination of public-key and symmetric-key encryption. Symmetric-key encryption is much faster than public-key encryption; however, public-key encryption provides better authentication techniques. An SSL session always begins with an exchange of messages called the SSL handshake. The handshake allows the server to authenticate itself to the client by using public-key techniques, and then allows the client and the server to cooperate in the creation of symmetric keys used for rapid encryption, decryption, and tamper detection during the session that follows. Optionally, the handshake also allows the client to authenticate itself to the server.
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|Version| IHL |Type of Service| Total Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Identification |Flags| Fragment Offset |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Time to Live | Protocol | Header Checksum |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Source Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Destination Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Options | Padding |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+Example Internet Datagram Header
PCS is a set of Python modules and objects that make building network protocol code easier for the protocol developer. The core of the system is the pcs module itself which provides the necessary functionality to create classes that implement packets.
Configuring Visual Uptime CSU/DSU
I have configured and installed quite a few of these interfaces. They're not hard to work with, and here are a few pointers for setting up your T1 interface. Keep in mind some changes are immediate and others require a reboot.
>private
SITE NAME [] : CIRCUIT-NUMBER-HERE DLCI NUMBER
Admin> site location
SITE LOCATION [] : CITY, State ZIP+4
Admin> site contact
SITE CONTACT [] : Name and Number
>from old—-
copy ip, subnet and router!
>frame unless for frame circuits—-
for point to point HDLC, check,check,check!!!
>none—-
>initial
>on
>from old
Password: ******
LAN interface address [192.168.1.238]:—-
LAN interface subnet mask [255.255.255.240]:—-
SLIP interface address [NONE]:—-
SLIP interface subnet mask [255.255.0.0]:—-
Primary router address [192.168.1.229]: DON’T HIT ENTER UNTIL YOU VERIFY THIS
Network Coding (AMI, B8ZS) [B8ZS] :—-
Network Framing (ESF, D4) [ESF] :—-
Network Line Build Out (0,-7.5,-15,-22.5) [0 dB] :—-
Network FDL Protocol (ANSI, AT&T, Both, None) [AT&T TR54016] :—-
Network Timing (Loop, Internal, DSX1) [Loop] :—-
Data Channel Rate [64K] :—-
note!!!! this is port size not the pvc!!!—-
Data Channels [1-4 (256K)] :—-
DSX1 Coding (AMI, B8ZS) [B8ZS] :—-
DSX1 Framing (ESF, D4) [ESF] :—-
DSX1 Channels [NONE] :—-
DSX1 Line Build Out (133,266,399,533,655) Less Than [133 feet] :
MySite 123 CarrierName> show
APPFILTER
App Filters are DISABLED.
Application FLOWS and SERVERS will be
collected for all hosts in all subnets.
Local Subnets
==================
COMMUNITY
Read-Write Community : private
Public read-only : Yes
Read-Only Community : public
EVENT
Elapsed Time Event Description
------------ -----------------
0d-05:29:06 Frame relay link is UP
0d-05:29:16 Frame relay link is ROUTER DOWN
0d-05:29:28 Frame relay link is LMISOLATE ACTIVE.ROUTER DOWN
0d-19:32:00 Frame relay link is NETWORK DOWN
0d-19:32:18 Frame relay link is LMISOLATE ACTIVE.ROUTER DOWN
0d-19:32:23 Signal change: T1 OK
0d-19:32:23 Reboot
FRAME
Link Statistics
Near Octets: 345136 Far Octets: 31694
Near Frames: 22181 Far Frames: 1981
Near Frame Errors: 2 Far Frame Errors: 0
Near Aborted Frames: 0 Far Aborted Frames: 0
Near Short Frames: 0 Far Short Frames: 0
Near Long Frames: 0 Far Long Frames: 0
Current Utilization: 0.00 Current Utilization: 0.00
Maximum Utilization: 0.01 Maximum Utilization: 0.01
Current Frames/sec: 0 Current Frames/sec: 0
Maximum Frames/sec: 1 Maximum Frames/sec: 1
Drop Events: 0
Link State: Up
Port Unavailable Secs: 50552
Frame Relay LMI is working correctly.
0 frame relay circuits were reported.
ID
Visual UpTime Select Multiprotocol T1 CSU DROP & INSERT ASE
Software version: M 2.0.023 - Feb 07 2006
Serial Number: 0049-0000000
Installed memory: 64M
Protected by U.S. patents: 5,867,483; 5,521,907; 6,058,102;
6,147,998; and 6,564,214.
This product may also be protected by other U.S. or foreign patents.
Copyright (c) 2006 Fluke Corporation(R).
All Rights Reserved.
LAN interface IP Address: 192.168.1.21
LAN interface Subnet Mask: 255.255.255.0
INBAND interface IP Address: NONE
INBAND interface Subnet Mask: 255.255.255.255
Default Router IP Address: 192.168.1.1
Running for 0 days 19 hours 33 minutes 4 seconds
INBAND
In-band communication: NONE
LMIsolate: INITIAL
Router timeout: 30
IP
Management IP address: 192.168.1.21
Management IP subnet mask: 255.255.255.0
SLIP interface address: NONE
SLIP interface subnet mask: 255.255.0.0
Primary router address: 192.168.1.1
IP Statistics
In Receives: 64519 Out Requests: 1061
In Delivers: 64517 Out Discards: 0
In Header Errors: 0 Out No Routes: 0
In Address Errors: 0 Reassemble Requests: 10
In Unknown Protocols: 0 Reassemble Oks: 5
In Discards: 0 Reassemble Fails: 0
Datagrams Fragmented: 5 Forwarded Datagrams: 0
Fragments Created: 10
Fragment Fails: 0
LINK
Link interface type: Frame
LOOP
T1 Network Loopback: None
Data Port Loopback: None
PASSWD
SECURITY
The security table is empty
Host address security is DISABLED
SERIAL
Console/SLIP speed : 19200
SITE
NAME: MySite 123 CarrierName
LOCATION:
CONTACT:
SLA
Inter-ASE messaging: ON
Message octets: 200
SLIP
Connection Type : Dial
STATUS
This ASE has been running for 0d-19:33:04.
T1 network side interface: OK.
V.35 data side interface: OK.
Frame Relay LMI is working correctly.
T1
Network Coding : B8ZS
Network Framing : ESF
Network Line Build Out : 0 dB
Network FDL Protocol : AT&T TR54016
Network Timing : Loop
Data Channel Rate : 64K
Data Channels : 1-24 (1536K)
DSX1 Coding : B8ZS
DSX1 Framing : ESF
DSX1 Channels : NONE
DSX1 Line Build Out : 133 feet
Network DSX1
------- ----
Signal OK Disabled
Excess Zeros OK Disabled
Frame Sync OK Disabled
Yellow Alarm Rx No No
Yellow Alarm Tx No No
Blue Alarm Rx No No
Blue Alarm Tx N/A No
Looped Back No No
B8ZS Detected No No
BPVs 0 0
CRC Errors 0 0
SESs 0 0
ESs 0 0
ESBs 0 0
Unavail Secs 0 0
Frame Slips 0 0
V35
Transmit Clock Source : SCT
Polarity: Normal
RLSD : Normal
Rate : 1536 Kbps
Activity: SD: Yes RD: Yes SCLK: Yes RCLK: Yes
Signals: RTS: Yes CTS: Yes DSR: Yes RLSD: Yes
DTR: Yes LL: No
Here's a sample chapter from the Cisco Press Book on Routers and Firewalls...
Broadband Routers and Firewalls > How Broadband Routers and Firewalls Work
How Broadband Routers and Firewalls WorkMany broadband routers and firewalls function primarily through the use of Network Address Translation (NAT) to hide the internal systems behind a single external IP address. These so-called "NAT routers" or "NAT firewalls" do an adequate job of hiding resources from casual attack methods, but they do not perform advanced firewall functions; therefore, it is really a bit of a misnomer to call them firewalls, at least in the sense that firewalls such as the Cisco Secure PIX Firewall, Microsoft ISA Server, and Check Point Firewall-1 products are considered firewalls. Rather, many broadband routers and firewalls are just NAT-based packet-filtering routers providing a degree of privacy, but they typically lack advanced firewall features such as stateful packet inspection (SPI), proxying of data, or deep packet inspection.
| hosts | netmask | amount of a class c | |
|---|---|---|---|
| /30 | 4 | 255.255.255.252 | 1/64 |
| /29 | 8 | 255.255.255.248 | 1/32 |
| /28 | 16 | 255.255.255.240 | 1/16 |
| /27 | 32 | 255.255.255.224 | 1/8 |
| /26 | 64 | 255.255.255.192 | 1/4 |
| /24 | 256 | 255.255.255.0 | 1 |
| /23 | 512 | 255.255.254.0 | 2 |
| /22 | 1024 | 255.255.252.0 | 4 |
| /21 | 2048 | 255.255.248.0 | 8 |
| /20 | 4096 | 255.255.240.0 | 16 |
| /19 | 8192 | 255.255.224.0 | 32 |
| /18 | 16384 | 255.255.192.0 | 64 |
| /17 | 32768 | 255.255.128.0 | 128 |
| /16 | 65536 | 255.255.0.0 | 256 |
FlowScan: A Network Traffic Flow Reporting and Visualization Tool
FlowScan can be readily deployed in most modern educational institution, corporate, and ISP networks. The information presented by FlowScan assists in understanding the nature of the traffic that your network is carrying. It can be useful in the identification and investigation of anomalies such as poor performance and attacks on hosts. It can provide a foundation on which to develop usage-based billing or to verify the effectiveness of Quality-of-Service policies. By understanding the flows of traffic carried by the network, your institution should be able to make informed network management and bandwidth provisioning decisions.
Some of these are technically oriented to the embedded design envirnonment, but a few cover basics and networking technologies. Take a look!
TechOnLine - Educational Resources - Courses
NetworkingA Novel Bus Arbiter Lecture In Progress
A Platform-Based Approach to Building Security and Management into Ethernet-Attached Devices Lecture 60 min.
A Software Agent Brokering Environment for Real-Time Resource Allocation Lecture
Adaptive Traffic Rate Control of ATM Networks Lecture
Aggregated IP Network Traffic Collection, Characterization and Performance Analysis Lecture
An Introduction To ATM Lecture 20 min. In Progress
Bridge, Switch, and Router Basics Lecture 40 min.
Broadband Wireless Access Lecture 25 min.
CAN Basics: Part 1 Technology course 30 min.
CAN Basics: Part 2 Technology course 30 min.
CAN Bus for Real Time Applications Lecture
Data Networking Hardware 1: Basics Technology course 1.5 hours
Data Networking Hardware 2: Passive Hardware Technology course 1.5 hours
Data Networking Hardware 3: Data Link Technology course 1.5 hours
Data Networking Hardware 4: Upper Layer Technology course 1.5 hours
Data Networking Hardware 5: Concentrators & Hubs Technology course 1 hour
Data Networking Hardware 6: Switches Technology course 2.5 hours
Embedded System Based on CAN Bus Lecture
FPGA-Based Cryptography for Internet Security Lecture
Infineon Technologies' Controller Area Network Product course 3 hours Completed
IPSec VPN Fundamentals Lecture 35 min.
Linear Time PK Encryption (PKE) Lecture
M16C CAN API Product course 45 min.
M16C CAN MCUs Product course 35 min.
Network Coding Theory Lecture
Network Processors from the Software Point of View Lecture In Progress
Networked Multimedia Lecture
Optimizing Bandwidth on IP Lecture
Policy and Management in a QoS Internet Lecture 35 min.
PowerQUICC III Ethernet Protocol Product course 25 min.
QoS Internet Data Networks Lecture 45 min.
Rationik: A 'Best Fit' Approach to Industrial Communications Lecture
Shortest Path Planning Tutorial: Understand the Basic Algorithm Lecture
SSL and TLS Essentials: Securing the Web Lecture 35 min. In Progress
Wireless Local Area Networks Lecture
xDSL Technologies
I was asked to check the speed on a Cisco Catalyst 4000 L3 Switch Port.
Username: user01
Enter PASSCODE:
switch01#en
Password:
switch01##show version
Cisco IOS Software, Catalyst 4000 L3 Switch Software (cat4000-I5S-M), Version 12 .2(25)EWA2, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by Cisco Systems, Inc.
Compiled Tue 05-Jul-05 13:05 by ccai
Image text-base: 0x10000000, data-base: 0x114DD0D4
ROM: 12.2(20r)EW1
Dagobah Revision 95, Swamp Revision 6
switch01 uptime is 46 weeks, 2 days, 6 hours, 21 minutes
Uptime for this control processor is 46 weeks, 2 days, 6 hours, 32 minutes
System returned to ROM by power-on
System restarted at 07:48:07 EDT Sat Sep 17 2005
System image file is "bootflash:"
cisco WS-C4510R (MPC8245) processor (revision 8) with 524288K bytes of memory.
Processor board ID FOX00000000
MPC8245 CPU at 400Mhz, Supervisor V
Last reset from PowerUp
2 Virtual Ethernet interfaces
288 FastEthernet interfaces
2 Gigabit Ethernet interfaces
511K bytes of non-volatile configuration memory.
Configuration register is 0x2101
switch01##show interfaces fastEthernet 7/29
FastEthernet7/29 is up, line protocol is up (connected)
Hardware is Fast Ethernet Port, address is 0014.a915.b1cc (bia 0014.a915.b1cc)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, link type is auto, media type is 10/100BaseTX
input flow-control is unsupported output flow-control is unsupported
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters 8w5d
Input queue: 0/2000/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 10000 bits/sec, 11 packets/sec
5 minute output rate 29000 bits/sec, 13 packets/sec
29397779 packets input, 17656391723 bytes, 0 no buffer
Received 17341 broadcasts (270 multicast)
0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 input packets with dribble condition detected
44211266 packets output, 27434551259 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
switch01##show run interface fastethernet 7/29
Building configuration...
Current configuration : 135 bytes
!
interface FastEthernet7/29
switchport access vlan 40
switchport mode access
no snmp trap link-status
spanning-tree portfast
end
switch01#
The Cisco Catalyst® 4000 Series of modular switches include the Cisco Catalyst 4003 and Catalyst 4006 chassis. As a key component of Cisco AVVID (Architecture for Voice, Video, and Integrated Data), the Cisco Catalyst 4000 Series extends control from the backbone to the network edge with intelligent network services including advanced quality of service (QoS), scalable performance, comprehensive security, and simple manageability.
Anyone studying for their CCNA needs to know how to subnet backwards and forwards. Here's another informative explanation. See if you can wrap your head around this!
IP subnetting made easy
IP network engineers need a solid understanding of how IP subnetting works--yet the subject is often taught so poorly, students wind up completely baffled. George Ou has developed a simple, graphical approach that explains IP subnetting in a way that finally makes sense.
Cisco Systems - Binary Game - Cisco.com
Very very well done binary decimal math game, looks like a flash based interface. if you're worried about needing help with binary math, applicable to subnetting, take a look at this tool.
I was asked to check the speed on a Catalyst 6500 Series Switch.
switch01> (enable) show version
WS-C6509 Software, Version NmpSW: 6.4(16)
Copyright (c) 1995-2005 by Cisco Systems
NMP S/W compiled on Apr 6 2005, 19:15:11
System Bootstrap Version: 5.3(1)
System Web Interface Version: Engine Version: 5.3.4 ADP Device: Cat6000 ADP Version: 1.9 ADK: 40
Hardware Version: 3.0 Model: WS-C6509 Serial #:
PS1 Module: WS-CAC-2500W Serial #:
PS2 Module: WS-CAC-2500W Serial #:
Mod Port Model Serial # Versions
--- ---- ------------------- ----------- --------------------------------------
1 2 WS-X6K-SUP1A-2GE Hw : 7.1
Fw : 5.3(1)
Fw1: 5.4(2)
Sw : 6.4(16)
Sw1: 6.4(16)
WS-F6K-PFC Hw : 1.1
2 2 WS-X6K-SUP1A-2GE Hw : 7.1
Fw : 5.3(1)
Fw1: 5.4(2)
Sw : 6.4(16)
Sw1: 6.4(16)
WS-F6K-PFC Hw : 2.0
3 48 WS-X6348-RJ-45 Hw : 5.0
Fw : 5.4(2)
Sw : 6.4(16)
4 48 WS-X6348-RJ-45 Hw : 5.0
Fw : 5.4(2)
Sw : 6.4(16)
5 16 WS-X6316-GE-TX Hw : 1.2
Fw : 5.4(2)
Sw : 6.4(16)
6 16 WS-X6316-GE-TX Hw : 1.2
Fw : 5.4(2)
Sw : 6.4(16)
7 16 WS-X6316-GE-TX Hw : 1.2
Fw : 5.4(2)
Sw : 6.4(16)
9 48 WS-X6348-RJ-45 Hw : 1.5
Fw : 5.4(2)
Sw : 6.4(16)
15 1 WS-F6K-MSFC2 Hw : 1.2
Fw : 12.1(22)E1
Sw : 12.1(22)E1
16 1 WS-F6K-MSFC2 Hw : 2.1
Fw : 12.1(19)E1
Sw : 12.1(19)E1
DRAM FLASH NVRAM
Module Total Used Free Total Used Free Total Used Free
------ ------- ------- ------- ------- ------- ------- ----- ----- -----
1 65408K 53678K 11730K 16384K 15466K 918K 512K 354K 158K
Uptime is 42 days, 14 hours, 29 minutes
switch01> (enable) show port 7/14
Port Name Status Vlan Duplex Speed Type
----- -------------------- ---------- ---------- ------ ----- ------------
7/14 server01 (2) notconnect 400 full 1000 1000BaseT
Port Security Violation Shutdown-Time Age-Time Max-Addr Trap IfIndex
----- -------- --------- ------------- -------- -------- -------- -------
7/14 disabled shutdown 0 0 1 disabled 285
Port Num-Addr Secure-Src-Addr Age-Left Last-Src-Addr Shutdown/Time-Left
----- -------- ----------------- -------- ----------------- ------------------
7/14 0 - - - - -
Port Broadcast-Limit Multicast Unicast Total-Drop
-------- --------------- --------- ------- --------------------
7/14 - - - 0
Port Send FlowControl Receive FlowControl RxPause TxPause
admin oper admin oper
----- -------- -------- --------- --------- ---------- ----------
7/14 desired off off off 0 0
Port Status Channel Admin Ch
Mode Group Id
----- ---------- -------------------- ----- -----
7/14 notconnect off 224 0
Port Align-Err FCS-Err Xmit-Err Rcv-Err UnderSize
----- ---------- ---------- ---------- ---------- ---------
7/14 0 0 0 0 0
Port Single-Col Multi-Coll Late-Coll Excess-Col Carri-Sen Runts Giants
----- ---------- ---------- ---------- ---------- --------- --------- ---------
7/14 0 0 0 0 0 0 0
Port Last-Time-Cleared
----- --------------------------
7/14 Mon Mar 27 2006, 00:03:32
I can tell from the settings above in bold that this port is configured for Full Duplex and 1000Mbit operation.
The Catalyst 6500 Series delivers highly available secure converged network services for Enterprise and Service Provider networks. Designed to address the increased requirements for gigabit scalability, high-availability, rich services, and multilayer switching in backbone, distribution, and wiring closet topologies as well as datacenter environments, the Catalyst 6500 Series delivers exceptional scalability and price/performance, supporting a wide range of interface densities, performance, and integration of powerful services modules.
Cisco 7200 Simulator - IPFlow Netflow Collector
Of course, this emulator cannot replace a real router, it is simply a complementary tool to real labs for administrators of Cisco networks or people wanting to pass their CCNA/CCNP/CCIE exams. [...] Now, it also supports Cisco 3600 series (3620, 3640 and 3660), 3700 series (3725, 3745) and 2600 series (2610 to 2650XM, 2691)
I've decided to order two more books to supplement what I already have:
- CCNA Self-Study: CCNA Preparation Library
- CCNA Flash Cards and Exam Practice Pack
- CCNA Self-Study: CCNA Preparation Library
- CCNA Flash Cards and Exam Practice Pack
- CCNA Portable Command Guide (CCNA Self-Study)
- CCNA Official Exam Certification Library with CD (2nd Edition)
- Networking Basics CCNA 1 Companion Guide (Cisco Networking Academy Program)
- Networking Basics CCNA 1 Labs and Study Guide
- Routers and Routing Basics CCNA 2 Labs and Study Guide
- Switching Basics and Intermediate Routing CCNA 3 Labs and Study Guide
- WAN Technologies CCNA 4 Labs and Study Guide
I already am studying these, and have found them to be exceptionally well written and very informative.
Here's the complete list of books you should consider while preparing for your CCNA:
I like the Command Guide, and will be using it alot. It reminds me of all the good things about O'Reilly, too bad they didn't write it.
I've had the CCNA Certification Library by Wendell Odom for awhile and have been reading it extensively. Very well written, paced well.
If you are thinking about getting a CCNA cert, take a look at this reading list.
Frame Relay for ICND Exam > "Do I Know This Already?" Quiz
I really like the way Wendell can describe and show you how something works. The writing is excellent, pacing is great. Take a look at this sample chapter on Frame Relay.
Wendell Odom tells you what you need to know to ace the Frame Relay portion of the ICND Exam. In this sample chapter, he concentrates on Frame Relay protocols and configuration.
I'm always looking for new podcasts to stuff on my iPod Nano for when I'm trudging through something tedious and want to distract myself. Here is the feed for Cisco's podcast which includes the following:
The News@Cisco Podcast Feed includes all audio content provided by News@Cisco including executive keynotes, news conferences, and educational audio programs geared towards the general public.
Subscribe to News@Cisco Podcast
Cisco Data Center PodcastKeep up with current technology topics in the Data Center by subscribing to the Cisco Data Center Podcast series.
http://www.cisco.com/cdc_content_elements/podcast/enterprise-data-center.rss
Subscribe to PodcastCisco Data Center Podcast Feed Contains The Following Audio Files
Network Accelerated Serverless Backup (Published - Thu, 16 Feb 2006)
Topics Covered:
- Understanding Backup/Recovery, Replication, Protection, & Archival
- Evolution of Backup technologies
- Cisco technology development in accelerating backup.
- Experience of Cisco IT in evaluating network accelerated serverless backup.
Further Info:
Read the solutions brief on Network Accelerated Serverless Backup at: http://www.cisco.com/application/pdf/en/us/guest/netsol/ns515/c643/cdccont_0900aecd80332bfa.pdf
Read the lab test report on NASB at: http://www.cisco.com/application/pdf/en/us/guest/netsol/ns515/c654/cdccont_0900aecd803e9d79.pdf
(10.8 MB - 23:45 Duration)Impact of Infrastructure on Service Oriented Architectures (Published - Thu, 12 Jan 2006)
Topics Covered:
- Understanding SOA, On-Demand Computing, & Real-Time Infrastructure
- Experience of Cisco IT in evolving to a Service Oriented Infrastructure
- Experience of Cisco IT in evolving applications to a Service Oriented Architecture.
- What is the role of the network and what is the Service Oriented Network Architecture?
- Experience of Cisco IT in adopting service orientation in the network.
Further Info:
Read more about the Cisco Service Oriented Network Architecture at www.cisco.com/go/sona
(19.7 MB - 28:49 Duration)Centralizing Branch Servers into the Data Center (Published - Thu, 15 Dec 2005)
Topics Covered:
- Why servers were deployed in the branch
- Understanding application performance and latency
- Cisco technology development in improving application delivery
- Experiences at two U.S. Fortune 500 companies.
Further Info:
Read more about branch server centralization at www.cisco.com/go/applicationservices
(29.3 MB - 32:03 Duration)Data Center Facilities (Published - Thu, 1 Dec 2005)
Topics Covered:
- Why are data center facilities top of mind now?
- Understanding what facilities go into a data center
- Standards bodies
- New technologies in the facilities space
- Experiences and lessons learned after Cisco builds and supports its own global data centers.
Further Info:
Cisco Press book, "Build the Best Data Center Facility for Your Business," by Doug Alger. White Paper, "Facilities Considerations for the Data Center," available at www.cisco.com/go/datacenter
