When BPDU Guard is enabled and a switch port receives a BPDU it stops forwarding and disables itself. It is common to enable this on a access port, usually in addition to portfast. In theory a user should never generate legitimate BPDUs therefore this mechanism helps prevent malicious alteration of …

The best practices for securing switches; Select an unused VLAN (other than VLAN1) and use for the native VLAN on all trunks Avoid using VLAN1 anywhere because it is the default Admin configure access ports as access ports so users cannot negotiate a trunk and disable the negotiation of trunking (no …

I have found myself using the Cisco ASA more and more in the day job. This is mainly due to me changing jobs back in March and looking after customers who have ASA deployed (and some PIX :-)) for both firewalls and VPN’s, as a result I really need to learn more about them so I though the best way …

The new estate that I look after has some Brocade switches (well planned at time of writing), as a result I thought I should start to gain some knowledge of their area. While getting access sorted to the myBrocade (like CCO) pages I started to look around the certifications site. The first that …

A key thing to understand with OSPF are the different Link State Advertisements (LSA’s) and what they mean to you network configuration and design. The following table tries to summarise the important details.[table id=17 /]LSA types 1 and 2 are found in all areas, and are never flooded outside of …

NOTE: This entry is to be completed! The BIG-IP combines the two encoded values and inserts them into the persistence cookie. For example, using the IP address and port 10.1.1.100:8080 as encoded above, the persistence value BIG-IP LTM encodes in the cookie is as follows: 1677787402.36895.0000 Note: …

The VTP password can be done in 3 places; privilege mode VLAN database global config mode VTP can be configured under the VLAN database; vlan database vtp domain CCIE exit VTP password can be configured in 3 places; privileged mode VLAN database global configuration mode

Frame relay is; High Performance WAN protocol Layer 2 Originally designed for use in ISDN links but now for a variety of others Packet Switched Types of Frame Relay Point-to-point; L2-L3 mapping not required as only one DLCI is allowed on P2P interface Broadcast capability is automatically enabled …

Versions commonly used;- SNMPv1 – RFC 1157 - SNMPv2c (an extension to SNMPv2 to allow for communities) – RFC 1901, RFC 1905, and RFC 1906 - SNMPv3 (provides mechnism to encrypt and authenticate) – RFCs 3413 to 3415 SNMP Framework is made up of- SNMP manager - SNMP agent - Management Information Base …

Use alias exec for Privileged Mode (any command you use at the router# prompt). Use alias configure for Global Configuration Mode (any command you use at the router(config)# prompt). Use alias interface for Interface Configuration Mode (any command you use at the router(config-if)# prompt).