All posts by Anthony Sequeira

Cisco ENARSI: The Expanded Blueprint

Here is the initial expanded blueprint for ENARSI! If there are changes to this document, they will be listed in the Change Log below the list. Enjoy your studies!

  • 1.0 Layer 3 Technologies
    • Troubleshoot administrative distance (all routing protocols)
    • Troubleshoot route maps for any routing protocol (attributes, tagging, filtering)
    • Troubleshoot loop prevention mechanisms
      • Filtering
      • Tagging
      • Split horizon
      • Route poisoning
    • Troubleshoot redistribution between any routing protocols or routing sources
    • Troubleshoot manual and auto-summarization with any routing protocol
    • Configure and verify policy-based routing
    • Configure and verify VRF-Lite
    • Describe Bidirectional Forwarding Detection
    • Troubleshoot EIGRP (classic and named mode)
      • Address families
        • IPv4
        • IPv6
      • Neighbor relationship and authentication
      • Loop-free path selections
        • RD, FD, FC
        • Successor
        • Feasible successor
        • Stuck in active
      • Stubs
      • Load balancing (equal and unequal cost)
      • Metrics
    • Troubleshoot OSPF (v2/v3)
      • Address families (IPv4, IPv6)
      • Neighbor relationship and authentication
      • Network types, area types, and router types
        • Point-to-point, multipoint, broadcast, nonbroadcast
        • Area type: backbone, normal, transit, stub, NSSA, totally stub
        • Internal router, backbone router, ABR, ASBR
        • Virtual link
        • Path preference
    • Troubleshoot BGP (Internal and External)
      • Address families
        • IPv4
        • IPv6
      • Neighbor relationship and authentication
        • Next-hop
        • Mulithop
        • 4-byte AS
        • Private AS
        • Route refresh
        • Synchronization
        • Operation
        • Peer group
        • States and timers
      • Path preference
      • Route reflector
      • Policies
        • Inbound/outbound filtering
        • Path manipulation
  • 2.0 VPN Technologies
    • Describe MPLS operations
      • LSR
      • LDP
      • Label switching
      • LSP
    • Describe MPLS Layer 3 VPN
    • Configure and verify DMVPN (single hub)
      • GRE/mGRE
      • NHRP
      • IPsec
      • Dynamic neighbor
      • Spoke-to-spoke
  • 3.0 Infrastructure Security
    • Troubleshoot device security using IOS AAA
      • TACACS+
      • RADIUS
      • Local database
    • Troubleshoot router security features
      • IPv4 access control lists (standard, extended, time-based)
      • IPv6 traffic filter
      • Unicast reverse path forwarding (uRPF)
    • Troubleshoot control plane policing (CoPP)
      • Telnet
      • SSH
      • HTTP(S)
      • SNMP
      • EIGRP
      • OSPF
      • BGP
    • Describe IPv6 First Hop security features
      • RA guard
      • DHCP guard
      • binding table
      • ND inspection/snooping
      • source guard
  • 4.0 Infrastructure Services
    • Troubleshoot device management
      • Console and VTY
      • Telnet, HTTP, HTTPS, SSH, SCP
      • (T)FTP
    • Troubleshoot SNMP
      • Version 2c
      • Version 3
    • Troubleshoot network problems using logging
      • local
      • syslog
      • debugs
      • conditional debugs
      • timestamps
    • Troubleshoot IPv4 and IPv6 DHCP
      • DHCP client
      • IOS DHCP server
      • DHCP relay
      • DHCP options)
    • Troubleshoot network performance issues using IP SLA
      • jitter
      • tracking objects
      • delay
      • connectivity
    • Troubleshoot NetFlow
      • v5
      • v9
      • flexible NetFlow
    • Troubleshoot network problems using Cisco DNA Center assurance
      • Connectivity
      • Monitoring
      • Device health
      • Network health

Google Cloud Platform: Deploying Cloud Marketplace Solutions to Google Kubernetes Engine (GKE)

Enjoy this demonstration covering the ease of building GKE clusters complete with configured workloads thanks to the Google Cloud Marketplace.

Interested in obtaining the Google Associate Cloud Engineer certification? Check out the best of breed training for this certification in the current ITPro.TV library: https://www.itpro.tv/

Cert Summit BGP Issue – SOLVED!

Wow! How interesting. I have never seen VIRL fail like that before. It was indeed a flawed loading of my configurations that was the issue with the demonstration. Check out how smoothly our intended configuration went after reloading the VIRL topology!

What is surprising about this whole thing was that I cannot believe BGP worked at all!

R3#conf t
 Enter configuration commands, one per line.  End with CNTL/Z.
 R3(config)#router bgp 65213
 R3(config-router)#neighbor 192.168.0.5 remote-as 500
 R3(config-router)#neighbor 192.168.0.5 update-source lo0 
 R3(config-router)#neighbor 192.168.0.5 ebgp-multihop 2
 R3(config-router)#end
 R3#
R5#conf t
 Enter configuration commands, one per line.  End with CNTL/Z.
 R5(config)#router bgp 500
 R5(config-router)#neighbor 192.168.0.3 remote-as 65213
 R5(config-router)#neighbor 192.168.0.3 update-source lo0
 R5(config-router)#neighbor 192.168.0.3 ebgp-multihop 2
 R5(config-router)#end
 R5#
 *Mar 31 16:48:10.197: %SYS-5-CONFIG_I: Configured from console by console
 *Mar 31 16:48:10.843: %BGP-5-ADJCHANGE: neighbor 192.168.0.3 Up 
 R5#
 *Mar 31 16:48:11.700: %PNP-6-PNP_DISCOVERY_STOPPED: PnP Discovery stopped (Config Wizard)
 R5#
R5#show ip bgp summary 
 BGP router identifier 192.168.0.5, local AS number 500
 BGP table version is 1, main routing table version 1
 Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
 192.168.0.3     4        65213       8       8        1    0    0 00:03:42        0