CCA ( CISCO CERTIFIED ARQUITECT. )

FInally the next Level Has arrive!!!!! Cisco finally released the more higher level of the cisco career certification program, the cisco certified arquitect. Focusing in Bussines and design, the elite level!.

Cisco Certified Architect:

• The Cisco Certified Architect certification recognizes the architectural experience and competency of network designers who can support the increasingly complex networks of global organizations and effectively translate business strategies into evolutionary technical strategies.
• Cisco channel partners play a critical role in enabling customers to deploy advanced new technologies supported by professionals with the skills required to use these innovative solutions.
• The certification stands above the expert-level CCIE® certification in terms of difficulty, with an emphasis on expertise in network infrastructure architecture and a proven ability to work with executive-level customers to ensure that business requirements are incorporated into successful designs.

Certification Process:

• The Cisco Certified Architect certification will be administered as a board exam.
• Candidates will propose and defend an architecture solution to a set of business requirements, and the candidates will be asked to modify their proposals “on the fly,” based on additional requirements presented by the board.
• Prerequisites include a CCDE^TM certification, approximately 10 years of industry experience, and acceptance into the program via an application process.

http://newsroom.cisco.com/dlls/2009/prod_062909.html?CMP=AF17154&vs_f=News@Cisco:+Press+Releases+and+Features&vs_p=News@Cisco:+Press+Releases+and+Features&vs_k=1

The First!!! CCA will be Gods! in the Networking World!!!…

Very interesting Reading here http://brokenpipes.blogspot.com/2009/06/cisco-certified-architect.html, choose your destiny…!

Kool Stuff!!!

Searching Trough the web i found this interesting stuff in Jeff Doyle Blog.

Here’s a piece of trivia that Dave Katz told me about ten years ago, when he was still with Cisco Systems:

In the early 1990s he and Dino Farinacci, who had both read Garcia-Luna-Aceves’s academic papers on loop-free diffusing route computations, were involved in an internal project to add support for classless routing to IGRP. “Wouldn’t it be cool,” they concluded in a hallway discussion, “to use the diffusing update algorithm in the enhancement project?” That was the birth of EIGRP.

Interesting!

i`m Back.

i now, i have mostly abandoned jeje this Blog in this last days, but now i`m back again, lately i was a little bit occupied , working on a CCDA Proyect of one of my Clasess , i was asked to make a design for a 1500 users Network , applications Survey, pc,workstations,SERVERS,Network Devices, even Building Infrastructure, so mainly i have been doing something Very kool.

Now to begin with my Posting again, i`ll post my design and reasons of what i did , you know descriptions of why y used X devices in spite of X devices etc. It would be Good to say , Today i am Working Toward EIGRP ( Reading CCNP V5.0 then BSCI Self study Book i have, and then Routing TCP/IP Jeff doyle. ). Now i really understand the reasons behind EIGRP Fast convergence, i was pretty sceptical about EIGRP convergence issues, but now that i have the whole picture in my head, i pretty much understand the mecanism that mades EIGRP Faster than other Protocols ( In cisco implementacion Obviously ).

Later…………..

Finally my Books are Here.

finally my BSCI and BCMSN books are here, cannot say the happy i am, now i will be able to test my new Strategy, the one ill post if it works, i am also looking for a better way to post configuration guides ( easier for me when i do references, and lot better for you ) i`ll look to some other bloggers which also do this and then i`ll see if i like it .

Happy Happy

New strategy.

Right now i`m testing a new strategy toward my learning, the one ill post if it works for me. in the mean time i can say i`m pretty amazed with Ipv6 addresses, and routing ipv6 with static routes ( you must be like WTF!!!, where do the CCNA stuff is! ).

VTP Configuration.

Here we are Once again! Now on VTP ( Vlan Trunk Protocol ) lets see Cisco Definition of VTP ( for general Knowledge purpose ).

VLAN Trunk Protocol (VTP) reduces administration in a switched network. When you configure a new VLAN on one VTP server, the VLAN is distributed through all switches in the domain. This reduces the need to configure the same VLAN everywhere. VTP is a Cisco-proprietary protocol that is available on most of the Cisco Catalyst series products.

Here is the Rest of the Document ( http://www.cisco.com/en/US/tech/tk389/tk68/technologies_tech_note09186a0080094c52.shtml ).

Configuring VTP.

-Configuring VTP Domain.

-Configuring VTP Password.

-Configuring VTP Server/Client/transparent.

-Configuring VTP Prunning.

-Troubleshooting VTP.

I have to see configuring VTP is pretty Much simple , so this will not be extensive!.

Remenber i Realize you know how to make basic configuration ( hostname,password,etc ). so i`ll just go to configuration Section.

Topology this will be pretty simple, 3 switches , 1 2960-24TT and 2 2950T-24, i was going to use 3 3640 Routers with the NM-16ESW but, configuration commands will be kinda different and in different modes, so i decided to stick to PKT devices.

This Time i will not Post Topology Picture ( some tecnical issues !!!1 ) and this is pretty much straightfoward so i realize you `ll understand, Here is the Setup.

Hostnames SW1,SW2,SW3

SW1 F0/24 To SW2 F0/14

SW1 F0/23 To SW2 F0/23

SW1 F0/22 To SW3 F0/24

SW1 F0/21 To SW3 F0/23.

SW1 Basic Conf.

SW1#show running-config

Building configuration…

Current configuration : 1117 bytes

!

version 12.2

service password-encryption

!

hostname SW1

!

enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

!

!

!

interface FastEthernet0/1

!

interface FastEthernet0/2

!

interface FastEthernet0/3

!

interface FastEthernet0/4

!

interface FastEthernet0/5

!

interface FastEthernet0/6

!

interface FastEthernet0/7

!

interface FastEthernet0/8

!

interface FastEthernet0/9

!

interface FastEthernet0/10

!

interface FastEthernet0/11

!

interface FastEthernet0/12

!

interface FastEthernet0/13

!

interface FastEthernet0/14

!

interface FastEthernet0/15

!

interface FastEthernet0/16

!

interface FastEthernet0/17

!

interface FastEthernet0/18

!

interface FastEthernet0/19

!

interface FastEthernet0/20

!

interface FastEthernet0/21

!

interface FastEthernet0/22

!

interface FastEthernet0/23

!

interface FastEthernet0/24

!

interface GigabitEthernet1/1

!

interface GigabitEthernet1/2

!

interface Vlan1

ip address 192.168.1.1 255.255.255.0

!

line con 0

password 7 0822455D0A16

login

exec-timeout 6 0

!

line vty 0 4

exec-timeout 6 0

password 7 0822455D0A16

login

line vty 5 15

exec-timeout 6 0

password 7 0822455D0A16

login

!

!

end

SW2 conf.

SW2#show running-config

Building configuration…

Current configuration : 1150 bytes

!

version 12.1

service password-encryption

!

hostname SW2

!

enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

!

!

!

interface FastEthernet0/1

!

interface FastEthernet0/2

!

interface FastEthernet0/3

!

interface FastEthernet0/4

!

interface FastEthernet0/5

!

interface FastEthernet0/6

!

interface FastEthernet0/7

!

interface FastEthernet0/8

!

interface FastEthernet0/9

!

interface FastEthernet0/10

!

interface FastEthernet0/11

!

interface FastEthernet0/12

!

interface FastEthernet0/13

!

interface FastEthernet0/14

!

interface FastEthernet0/15

!

interface FastEthernet0/16

!

interface FastEthernet0/17

!

interface FastEthernet0/18

!

interface FastEthernet0/19

!

interface FastEthernet0/20

!

interface FastEthernet0/21

!

interface FastEthernet0/22

!

interface FastEthernet0/23

!

interface FastEthernet0/24

!

interface GigabitEthernet1/1

!

interface GigabitEthernet1/2

!

interface Vlan1

ip address 192.168.1.2 255.255.255.0

!

ip default-gateway 192.168.1.1

!

line con 0

password 7 0822455D0A16

login

exec-timeout 6 0

!

line vty 0 4

exec-timeout 6 0

password 7 0822455D0A16

login

line vty 5 15

exec-timeout 6 0

password 7 0822455D0A16

login

!

!

end

SW3 Conf.

SW3#show running-config

Building configuration…

Current configuration : 1150 bytes

!

version 12.1

service password-encryption

!

hostname SW3

!

enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0

!

!

!

interface FastEthernet0/1

!

interface FastEthernet0/2

!

interface FastEthernet0/3

!

interface FastEthernet0/4

!

interface FastEthernet0/5

!

interface FastEthernet0/6

!

interface FastEthernet0/7

!

interface FastEthernet0/8

!

interface FastEthernet0/9

!

interface FastEthernet0/10

!

interface FastEthernet0/11

!

interface FastEthernet0/12

!

interface FastEthernet0/13

!

interface FastEthernet0/14

!

interface FastEthernet0/15

!

interface FastEthernet0/16

!

interface FastEthernet0/17

!

interface FastEthernet0/18

!

interface FastEthernet0/19

!

interface FastEthernet0/20

!

interface FastEthernet0/21

!

interface FastEthernet0/22

!

interface FastEthernet0/23

!

interface FastEthernet0/24

!

interface GigabitEthernet1/1

!

interface GigabitEthernet1/2

!

interface Vlan1

ip address 192.168.1.3 255.255.255.0

!

ip default-gateway 192.168.1.1

!

line con 0

password 7 0822455D0A16

login

exec-timeout 6 0

!

line vty 0 4

exec-timeout 6 0

password 7 0822455D0A16

login

line vty 5 15

exec-timeout 6 0

password 7 0822455D0A16

login

!

!

end

Configuring VTP Domain.

The first Step in configuring VTP its setting the DOmain on which de Server and CLient will be in.

SW1(config)#vtp domain cisco

Changing VTP domain name from NULL to cisco ! This is the Message You should see when you configure the domain name.

On SW2

SW2(config)#vtp domain cisco

Changing VTP domain name from NULL to cisco.

Pretty Simple.

Configuring VTP Password.

Note: VTP Password if you configure a password for VTP, you must configure the password on all switches in the VTP domain. The password must be the same password on all those switches. The VTP password that you configure is translated by algorithm into a 16-byte word (MD5 value) that is carried in all summary-advertisement VTP packets.

The second Step ( another Pretty simple step. )

SW1(config)#vtp password cisco

Setting device VLAN database password to cisco ! This is the message Again that shows that the password has changed.

On SW2.

SW2(config)#vtp password cisco

Setting device VLAN database password to cisco

Configuring VTP Server/Client/transparent.

Ok now to Terms.

You can configure a switch to operate in any one of these VTP modes:

• Server—In VTP server mode, you can create, modify, and delete VLANs and specify other configuration parameters, such as VTP version and VTP pruning, for the entire VTP domain. VTP servers advertise their VLAN configuration to other switches in the same VTP domain and synchronize their VLAN configuration with other switches based on advertisements received over trunk links. VTP server is the default mode.
• Client—VTP clients behave the same way as VTP servers, but you cannot create, change, or delete VLANs on a VTP client.
• Transparent—VTP transparent switches do not participate in VTP. A VTP transparent switch does not advertise its VLAN configuration and does not synchronize its VLAN configuration based on received advertisements, but transparent switches do forward VTP advertisements that they receive out their trunk ports in VTP Version 2.

SW1(config)#vtp mode server

Device mode already VTP SERVER.   ! Cisco Switches by default come in the Server VTP mode.

On SW2 ( Client Switch ).

SW2(config)#vtp mode client

Setting device to VTP CLIENT mode.

On SW3 ( Transparent Switch ).

SW3(config)#vtp mode transparent

Setting device to VTP TRANSPARENT mode.

Configuring VTP Prunning.

VTP Pruning

VTP ensures that all switches in the VTP domain are aware of all VLANs. However, there are occasions when VTP can create unnecessary traffic. All unknown unicasts and broadcasts in a VLAN are flooded over the entire VLAN. All switches in the network receive all broadcasts, even in situations in which few users are connected in that VLAN. VTP pruning is a feature that you use in order to eliminate or prune this unnecessary traffic.

This can be set with the global command “set vtp pruning enable” or entering the vlan database mode issuing “vlan database” in EXec mode, then “vtp prunning”.

Troubleshooting VTP.

There are a couple of show commands that will be very useful in the time to Troubleshoot VTP.

show vtp status.

show vtp counter.

show vtp password.

This are the main ones ( yes i know this commands Vary depending on Plataform and IOS, this i CCNA focus i`m not going to post different Plataforms COnfigs and any other unrelated stuff ).

Examples of show Commands.

show vtp status

SW1#show vtp status

VTP Version : 2

Configuration Revision : 0

Maximum VLANs supported locally : 255

Number of existing VLANs : 5

VTP Operating Mode : Server

VTP Domain Name : cisco

VTP Pruning Mode : Disabled

VTP V2 Mode : Disabled

VTP Traps Generation : Disabled

MD5 digest : 0xAB 0x8A 0xB6 0xF8 0×91 0×34 0×79 0xDA

Configuration last modified by 0.0.0.0 at 0-0-00 00:00:00

Local updater ID is 192.168.1.1 on interface Vl1 (lowest numbered VLAN interface found)

Show vtp Counter.

SW1#show vtp counters

VTP statistics:

Summary advertisements received : 0

Subset advertisements received : 0

Request advertisements received : 0

Summary advertisements transmitted : 0

Subset advertisements transmitted : 0

Request advertisements transmitted : 0

Number of config revision errors : 0

Number of config digest errors : 0

Number of V1 summary errors : 0

VTP pruning statistics:

Trunk Join Transmitted Join Received Summary advts received from

non-pruning-capable device

—————- —————- —————- —————————

show vtp password.

SW1#show vtp password

VTP Password: cisco

Ok now, for you to see VTP operations there you have to consider some more stuff, First of all the links between the Switches should be set up to trunk mode. You can do this with the “Switchport mode trunk” on interfaces mode, remenber the trunk must be set up in both side of the link ( meaning on both switches interchanging vlan info ).

The next thing you should consider is VLANS , you have to set up vlans on the vlan database ( which is saved on the vlan.dat file in the flash memory ,not on the NVRAM ), cause this will be the info VTP is Going to Exchange ( pretty obvious ) you can set vlans in the vlan database mode ( “vlan database” on EXEc mode ) then using “vlan x” x being the number of the vlan you are adding , you can also use names “vlan 2 name Accounting” and so on.

I will stop now, but i know this post lacks lots of information Regarding this subject, i would advice if someone reads this post to not, used it to learn VTP ,trunks and VLANS, use the information on Cisco Website, this information is for Quick reference as you may know ( if not read the Post related to the FOcus of this Blog ).

i leave you guys for now, i have to take care of something and keep reading ( lol ), in the future i`ll post a real document on Vlans and VTP.

CCNA Practice Agenda.

I have almost Finished reading ICND2 ( lasted to long reading ICND1 -.- personal issues, and deception), so ill be posting every Practice aspect that i am going to be doing on this and the other week ( Covering CCNA Subjets only jejeje ).

Note: I will not cover Basic conf and IOS navigation Commands Cause you should know them.

Routing Section.

-EIGRP

-OSPF ( finishing the Draft ).

-Ripv2 ( Already Posted ).

-Static Routing.

-Load Balancing.

-Redistribution ( only in CCNA concern ).

-Authentication.

Switching Section.

-STP ( RSTP ).

-VTP

-VLANS

-Port Security.

-Inter-vlan Routing.

Security Features.

-ACLs

-SSH

Other Features.

-NAT&PAT

-DHCP

-IPv6 ( in CCNA concern ).

-PPP

-HDLC

-Frame-Relay.

Note: I may Edit this post.

4.18AM!……VLANSSS,VTP,EIGRP!!!!.

No I was not Dreaming about networking ( please tell me i`m not the only oneeeeee!!!! ), i was just playing with EIGRP,VTP and vlans mainly!!!! a 5 Router Topology, 2 acting as Switches! i decided to Practice , Routing and Switching, finished VLAN and VTP Portion of the ICND2! ( it lacks information -.- ) and wanted to play with it!!!!!! i have some Thoughts in my mind of something i just figure ( well its been a long time !! i realize it ) regarding Network Desing and other Stuff! maybe tomorrow i`ll post something! ( no promise ).

In other issued and almost Crazy!!!1 waiting for the books i ordered to finally arrive!!!! BSCI and BCMN cisco press Study Guide!, they will be my Phisical Reference ( cause i already have themmm on di…….. ). !!!.

see you later lets see if my brain wants some sleep!!!!.

Main Changes on CCIE Routing and Switching 4.0 Revision.

The main changes on the new CCIE R&S v4.0 certifications standards are:

1. The addition of MPLS/VPN, EIGRPv6 and the emphasis on troubleshooting.
2. The addition of a separated 2 hours troubleshooting section to the exam.

We did not remove any topics from the syllabus and we will cover the certification standards (aka blueprint) through 3 sections:

1. Open Ended Questions: up to 30 minutes.
2. Troubleshooting: up to 2 hours.
3. Configuration: up to 5 1/2 hours.

You can find more detailed information on the CCIE R&S v4.0 at
https://cisco.hosted.jivesoftware.com/docs/DOC-4605

Very Cool Stuff, MORE TO LEARN, MORE TO HAVE FUN .

Update:

Replied by: kronos_13 – none – May 24, 2009, 11:14pm PST

hi Maurilio Gorito.

I would really apreciate a more Inside View of the new Troubleshooting Section in the CCIE R&S 4.0 Revision.

Thank you in advacne.

Replied by: mgorito – CISCO SYSTEMS – May 26, 2009, 10:20pm PST

Hi,

The Troubleshooting section will have a maximum of 2 hours. The candidate will be presented a series of questions or ‘trouble tickets’ for a given scenario or topology. The referred topology will pre-configured.

Based on the information provided such as IP addressing diagrams, IGP routing diagrams, and so on you will work to identify and fix the issues. You will be given points for working scenarios.

Regards,
Maurilio

Update#2:

Hello,

During the lab exam you will have access to the documentation online at http://www.cisco.com/web/psa/products/index.html.

Regards,
Maurilio

note: time to stat Being Familiar to the Products index

OSPF Hidden show commands. ( Part Two ).

I Decided to Ask in the Cisco Netpro Forums and this is The answer i got, For those of you who are curios of the “Hidden commands”

“I can not speak to the details of these hidden commands. But I can say that in general there are a number of commands that are not documented, and therefore are “hidden”. Many of them are inserted because they provide helpful diagnostic functions. But they may not have been through the level of testing and evaluation for Cisco feeling comfortable in making them generally available and documented. Because they are not documented they do not qualify for support assistance if you use them and something unexpected happens.

I would advise you to be cautious about using the undocumented commands. Many of them are helpful and useful, but some of them are dangerous.

HTH”