Techno And Science News | Rssonmyspace.com

Posts Tagged ‘access’

BCMSN exam success and earning your CCNP certification requires you to add to your knowledge of VLAN configuration. When you studied for your CCNA exam, you learned how to place ports into a VLAN and what the purpose of VLANs was, but you may not be aware that there are two types of VLAN membership. To pass the BCMSN exam, you must know the details of both types.

In this tutorial, we’ll take a look at the VLAN type you are most familiar with, the “static VLAN”. As you know, VLANs are a great way to create smaller broadcast domains in your network. Host devices connected to a port belonging to one VLAN will receive broadcasts and multicasts only if they were originated by another host in that same VLAN. The drawback is that without the help of a Layer 3 switch or a router, inter-VLAN communication cannot occur.

The actual configuration of a static VLAN is simple enough. In this example, by placing switch ports 0/1 and 0/2 into VLAN 12, the only broadcasts and multicasts hosts connected to those ports will receive are the ones transmitted by ports in VLAN 12.

SW1(config)#int fast 0/1

SW1(config-if)#switchport mode access

SW1(config-if)#switchport access vlan 12
Read the rest of this entry »

QoS is a big topic on your BCMSN and CCNP exams, and for good reason. As more and more traffic flows through today’s networks, accurately applying QoS to both your routers and switches becomes more important.

Note the phrase “accurately applying”. You must have a plan in place before you start configuring QoS on your switches, and to create such a plan you should use Cisco’s Three-layer Hierarchical Model.

This model breaks switches down into three main groups – Access, Distribution, and Core. You’re familiar with these groups from your CCNA studies, and now you’ve got to apply this knowledge.

The QoS workload should be borne by the Access and Distribution layers, because the Core layer switches need to be left alone as much as possible to their primary purpose – switching!

Traffic should generally be classified and marked at the Access layer. This allows traffic to be assigned the desired QoS values and carry that value throughout the network.

If you choose to change CoS-DSCP mappings, this will generally be done at the Distribution layer. Since distribution layer switches will be receiving frames and packets with QoS values from the access layer switches, the appropriate “trust” and “no trust” statements should be configured on the appropriate distribution layer switches.
Read the rest of this entry »

Access Control Lists (ACLs) allow a router to permit or deny packets based on a variety of criteria. The ACL is configured in global mode, but is applied at the interface level. An ACL does not take effect until it is expressly applied to an interface with the ip access-group command. Packets can be filtered as they enter or exit an interface.

If a packet enters or exits an interface with an ACL applied, the packet is compared against the criteria of the ACL. If the packet matches the first line of the ACL, the appropriate “permit” or “deny” action is taken. If there is no match, the second line’s criterion is examined. Again, if there is a match, the appropriate action is taken; if there is no match, the third line of the ACL is compared to the packet.

This process continues until a match is found, at which time the ACL stops running. If no match is found, a default “deny” takes place, and the packet will not be processed. When an ACL is configured, if a packet is not expressly permitted, it will be subject to the implicit deny at the end of every ACL. This is the default behavior of an ACL and cannot be changed.

A standard ACL is concerned with only one factor, the source IP address of the packet. The destination is not considered. Extended ACLs consider both the source and destination of the packet, and can consider the port number as well. The numerical range used for each is different: standard ACLs use the ranges 1-99 and 1300-1399; extended lists use 100-199 and 2000 to 2699.

There are several points worth repeating before beginning to configure standard ACLs.

Standard ACLs consider only the source IP address for matches.

The ACL lines are run from top to bottom. If there is no match on the first line, the second is run; if no match on the second, the third is run, and so on until there is a match, or the end of the ACL is reached. This top-to-bottom process places special importance on the order of the lines.

There is an implicit deny at the end of every ACL. If packets are not expressly permitted, they are implicitly denied.

If Router 3’s Ethernet interface should only accept packets with a source network of 172.12.12.0, the ACL will be configured like this:

R3#conf t

R3(config)#access-list 5 permit 172.12.12.0 0.0.0.255

Read the rest of this entry »

CCNA exam success depends on knowing the details, and nowhere is this more true than knowing the various components of a Cisco router. This is also where you can quickly start drowning in acronyms! The terms “RAM” and “ROM” probably aren’t new to you, but keeping up with “what goes where” with RAM, ROM, NVRAM, and Flash Memory can be quite a challenge! In this tutorial, we’ll take a look at all four of these components and their contents.

ROM stands for Read-Only Memory. ROM stores the router’s bootstrap startup program, operating system software, and power-on diagnostic test programs (the POST).

Flash memory is generally referred to as “flash” The Cisco Internetwork Operating System (IOS) images are held here. Flash is erasable and reprogrammable ROM. Flash memory content is retained by the router on power-down or reload.

RAM is short for Random-Access Memory. RAM on a Cisco router stores operational information such as routing tables and the running configuration file. RAM contents are lost when the router is powered down or reloaded.
Read the rest of this entry »