CCNP Enterprise Advanced Routing: ENARSI 300-410 Official .
CCNP EnterpriseAdvanced RoutingENARSI 300-410Official Cert GuideRAYMOND LACOSTEBRAD EDGEWORTH, CCIE No. 31574Cisco Press221 River StreetHoboken, NJ 07030 USA
iiCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideCCNP Enterprise Advanced RoutingENARSI 300-410 Official Cert GuideRaymond Lacoste, Brad EdgeworthCopyright 2020 Cisco Systems, Inc.Published by:Cisco Press221 River StreetHoboken, NJ 07030 USAAll rights reserved. This publication is protected by copyright, and permission must be obtained from thepublisher prior to any prohibited reproduction, storage in a retrieval system, or transmission in any formor by any means, electronic, mechanical, photocopying, recording, or likewise. For information regardingpermissions, request forms, and the appropriate contacts within the Pearson Education Global Rights &Permissions Department, please visit www.pearson.com/permissions.No patent liability is assumed with respect to the use of the information contained herein. Althoughevery precaution has been taken in the preparation of this book, the publisher and author assume noresponsibility for errors or omissions. Nor is any liability assumed for damages resulting from the use ofthe information contained herein.ScoutAutomatedPrintCodeLibrary of Congress Control Number: 2019919828ISBN-13: 978-1-58714-525-4ISBN-10: 1-58714-525-1Warning and DisclaimerThis book is designed to provide information about the Implementing Cisco Enterprise Advanced Routingand Services (ENARSI) exam. Every effort has been made to make this book as complete and as accurateas possible, but no warranty or fitness is implied.The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shallhave neither liability nor responsibility to any person or entity with respect to any loss or damagesarising from the information contained in this book or from the use of the discs or programs that mayaccompany it.The opinions expressed in this book belong to the author and are not necessarily those ofCisco Systems, Inc.Trademark AcknowledgmentsAll terms mentioned in this book that are known to be trademarks or service marks have beenappropriately capitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of thisinformation. Use of a term in this book should not be regarded as affecting the validity of any trademarkor service mark.
iiiSpecial SalesFor information about buying this title in bulk quantities, or for special sales opportunities (which mayinclude electronic versions; custom cover designs; and content particular to your business, training goals,marketing focus, or branding interests), please contact our corporate sales department at corpsales@pearsoned.com or (800) 382-3419.For government sales inquiries, please contact governmentsales@pearsoned.com.For questions about sales outside the U.S., please contact intlcs@pearson.com.Feedback InformationAt Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each bookis crafted with care and precision, undergoing rigorous development that involves the unique expertise ofmembers from the professional technical community.Readers’ feedback is a natural continuation of this process. If you have any comments regarding how wecould improve the quality of this book, or otherwise alter it to better suit your needs, you can contact usthrough email at feedback@ciscopress.com. Please make sure to include the book title and ISBN in yourmessage.We greatly appreciate your assistance.Editor-in-Chief: Mark TaubTechnical Editors: Hector Mendoza, Jr, Russ LongAlliances Manager, Cisco Press: Arezou GolEditorial Assistant: Cindy TeetersDirector, Product Manager: Brett BartowDesigner: Chuti PrasertsithManaging Editor: Sandra SchroederComposition: codeMantraDevelopment Editor: Marianne BartowIndexer: Cheryl Ann LenserProject Editor: Mandie FrankProofreader: Abigail BassCopy Editor: Kitty WilsonAmericas HeadquartersCisco Systems, Inc.San Jose, CAAsia Pacific HeadquartersCisco Systems (USA) Pte. Ltd.SingaporeEurope HeadquartersCisco Systems International BV Amsterdam,The NetherlandsCisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks,go to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner doesnot imply a partnership relationship between Cisco and any other company. (1110R)
ivCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideCreditsFigure 7-1Screenshot of wireshark 2019 wireshark
vContents at a GlanceIntroductionxxxiChapter 1IPv4/IPv6 Addressing and Routing ReviewChapter 2EIGRPChapter 3Advanced EIGRPChapter 4Troubleshooting EIGRP for IPv4Chapter 5EIGRPv6Chapter 6OSPFChapter 7Advanced OSPFChapter 8Troubleshooting OSPFv2Chapter 9OSPFv3Chapter 10Troubleshooting OSPFv3Chapter 11BGPChapter 12Advanced BGPChapter 13BGP Path SelectionChapter 14Troubleshooting BGPChapter 15Route Maps and Conditional ForwardingChapter 16Route RedistributionChapter 17Troubleshooting RedistributionChapter 18VRF, MPLS, and MPLS Layer 3 VPNsChapter 19DMVPN TunnelsChapter 20Securing DMVPN TunnelsChapter 21Troubleshooting ACLs and Prefix ListsChapter 22Infrastructure 640668718748802846824
viCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideChapter 23Device Management and Management Tools Troubleshooting 868Chapter 24Final PreparationAppendix AAnswers to the “Do I Know This Already?” Quiz QuestionsAppendix BCCNP Enterprise Advanced Routing ENARSI 300-410 OfficialCertification Guide Exam Updates 932Glossary912934Index 952Online ElementsGlossaryAppendix CCommand Reference ExercisesAppendix DCommand Reference Exercises Answer KeyAppendix EStudy Planner922
ContentsContentsIntroductionChapter 1xxxiIPv4/IPv6 Addressing and Routing Review2“Do I Know This Already?” Quiz 3Foundation TopicsIPv4 Addressing77IPv4 Addressing Issues7Determining IP Addresses Within a SubnetDHCP for IPv411Reviewing DHCP Operations11Potential DHCP Troubleshooting IssuesDHCP Troubleshooting CommandsIPv6 Addressing161718IPv6 Addressing ReviewEUI-64101920IPv6 SLAAC, Stateful DHCPv6, and Stateless DHCPv6SLAAC2222Stateful DHCPv626Stateless DHCPv6DHCPv6 Operation2829DHCPv6 Relay Agents29Packet-Forwarding Process30Reviewing the Layer 3 Packet-Forwarding ProcessTroubleshooting the Packet-Forwarding ProcessRouting Information SourcesSources of Routing Information383941IPv4 Static Routes41IPv6 Static Routes45Trouble Tickets3438Data Structures and the Routing TableStatic Routes3047IPv4 Addressing and Addressing Technologies Trouble TicketsTrouble Ticket 1-148Trouble Ticket 1-249IPv6 Addressing Trouble TicketsTrouble Ticket 1-353Trouble Ticket 1-4565347vii
viiiCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideStatic Routing Trouble TicketsTrouble Ticket 1-560Trouble Ticket 1-663Exam Preparation TasksReview All Key TopicsDefine Key Terms60656566Command Reference to Check Your MemoryChapter 2EIGRP6770“Do I Know This Already?” Quiz 70Foundation Topics73EIGRP Fundamentals73Autonomous SystemsEIGRP TerminologyTopology Table737475EIGRP Neighbors76Inter-Router CommunicationForming EIGRP NeighborsEIGRP Configuration Modes78Classic Configuration ModeEIGRP Named Mode76777879EIGRP Network Statement80Sample Topology and ConfigurationConfirming Interfaces8183Verifying EIGRP Neighbor AdjacenciesDisplaying Installed EIGRP RoutesRouter ID848586Passive InterfacesAuthentication8791Keychain Configuration91Enabling Authentication on the InterfacePath Metric Calculation93Wide Metrics 96Metric Backward Compatibility 98Interface Delay Settings 98Custom K Values 99Load Balancing 99References in This Chapter 102Exam Preparation Tasks10291
ContentsReview All Key Topics102Complete Tables and Lists from MemoryDefine Key Terms103103Use the Command Reference to Check Your MemoryChapter 3Advanced EIGRP103106“Do I Know This Already?” Quiz 106Foundation Topics108Failure Detection and TimersConvergence108109Stuck in Active112Route Summarization113Interface-Specific SummarizationSummary Discard RoutesSummarization Metrics116Automatic SummarizationWAN Considerations114116117118EIGRP Stub Router118Stub Site Functions121IP Bandwidth Percentage125Split Horizon 126Route ManipulationRoute Filtering128129Traffic Steering with EIGRP Offset ListsReferences in This ChapterExam Preparation TasksReview All Key Topics134135135Complete Tables and Lists from MemoryDefine Key Terms132135135Use the Command Reference to Check Your MemoryChapter 4Troubleshooting EIGRP for IPv4135138“Do I Know This Already?” Quiz 138Foundation Topics141Troubleshooting EIGRP for IPv4 Neighbor AdjacenciesInterface Is Down142Mismatched Autonomous System NumbersIncorrect Network StatementMismatched K ValuesPassive Interface146145144142141ix
xCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideDifferent shooting EIGRP for IPv4 RoutesBad or Missing network CommandBetter Source of InformationRoute Filtering152154157Stub Configuration158Interface Is Shut DownSplit Horizon151160160Troubleshooting Miscellaneous EIGRP for IPv4 IssuesFeasible Successors162Discontiguous Networks and AutosummarizationRoute SummarizationLoad Balancing167Trouble Ticket 4-1169Trouble Ticket 4-2177Trouble Ticket 4-3180Exam Preparation TasksReview All Key Topics169184184185Use the Command Reference to Check Your MemoryChapter 5EIGRPv6188“Do I Know This Already?” Quiz 188Foundation Topics190EIGRPv6 Fundamentals190EIGRPv6 Inter-Router CommunicationEIGRPv6 Configuration191191EIGRPv6 Classic Mode Configuration191EIGRPv6 Named Mode Configuration192EIGRPv6 Verification192IPv6 Route Summarization195Default Route Advertising196Route Filtering165168EIGRP for IPv4 Trouble TicketsDefine Key Terms162196Troubleshooting EIGRPv6 Neighbor IssuesInterface Is Down 198197185
ContentsMismatched Autonomous System NumbersMismatched K ValuesPassive Interfaces198198Mismatched AuthenticationTimers198199200Interface Not Participating in Routing ProcessACLs200201Troubleshooting EIGRPv6 Routes201Interface Not Participating in the Routing ProcessBetter Source of InformationRoute Filtering201201201Stub Configuration202Split Horizon 203Troubleshooting Named EIGRP204EIGRPv6 and Named EIGRP Trouble TicketsTrouble Ticket 5-1209Trouble Ticket 5-2213Exam Preparation TasksReview All Key TopicsDefine Key Terms208218218219Use the Command Reference to Check Your MemoryChapter 6OSPF222“Do I Know This Already?” Quiz 223Foundation TopicsOSPF FundamentalsAreas225225226Inter-Router CommunicationRouter ID229OSPF Hello PacketsNeighbors228229230Requirements for Neighbor AdjacencyOSPF Configuration232OSPF Network Statement232Interface-Specific ConfigurationPassive Interfaces230233233Sample Topology and ConfigurationConfirmation of Interfaces233235Verification of OSPF Neighbor Adjacencies237219xi
xiiCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideViewing OSPF Installed RoutesExternal OSPF Routes238239Default Route Advertisement241The Designated Router and Backup Designated RouterDesignated Router ElectionsDR and BDR PlacementOSPF Network Point Networks247Point-to-Multipoint NetworksLoopback NetworksFailure DetectionHello Timer248251252252Dead Interval Timer252Verifying OSPF TimersAuthentication253253References in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms255255255256Use the Command Reference to Check Your MemoryChapter 7Advanced OSPF258“Do I Know This Already?” Quiz 258Foundation Topics261Link-State AdvertisementsLSA Sequences261262LSA Age and FloodingLSA Types242262263LSA Type 1: Router Link263LSA Type 2: Network Link269LSA Type 3: Summary Link271LSA Type 5: External Routes274LSA Type 4: ASBR Summary276LSA Type 7: NSSA External SummaryLSA Type SummaryOSPF Stubby Areas 281Stub Areas 282280278256
ContentsTotally Stubby Areas284Not-So-Stubby Areas286Totally NSSAs289OSPF Path SelectionLink Costs292292Intra-Area RoutesInterarea Routes292293External Route Selection294E1 and N1 External Routes294E2 and N2 External Routes294Equal-Cost MultipathingSummarization of Routes295295Summarization FundamentalsInterarea Summarization296297Configuration of Interarea SummarizationExternal SummarizationDiscontiguous NetworkVirtual Links298300302303References in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms306306307308Use the Command Reference to Check Your MemoryChapter 8Troubleshooting OSPFv2310“Do I Know This Already?” Quiz 310Foundation Topics312Troubleshooting OSPFv2 Neighbor AdjacenciesInterface Is Down315Interface Not Running the OSPF ProcessMismatched TimersMismatched Area TypePassive Interface317319320320Mismatched Authentication InformationACLs323MTU Mismatch315316Mismatched Area NumbersDifferent Subnets312323321308xiii
xivCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideDuplicate Router IDs325Mismatched Network Types326Troubleshooting OSPFv2 Routes327Interface Not Running the OSPF ProcessBetter Source of InformationRoute Filtering328329332Stub Area ConfigurationInterface Is Shut Down335336Wrong Designated Router ElectedDuplicate Router IDs336340Troubleshooting Miscellaneous OSPFv2 Issues341Tracking OSPF Advertisements Through a NetworkRoute SummarizationDiscontiguous AreasLoad BalancingDefault Route343345347348OSPFv2 Trouble Tickets348Trouble Ticket 8-1349Trouble Ticket 8-2356Trouble Ticket 8-3359Exam Preparation TasksReview All Key TopicsDefine Key Terms361361362Use the Command Reference to Check Your MemoryChapter 9OSPFv3364“Do I Know This Already?” Quiz 364Foundation Topics341365OSPFv3 Fundamentals365OSPFv3 Link-State AdvertisementOSPFv3 CommunicationOSPFv3 ConfigurationOSPFv3 Verification366367368371The Passive Interface 372IPv6 Route Summarization 373Network Type 374OSPFv3 Authentication375OSPFv3 Link-Local ForwardingOSPFv3 LSA Flooding Scope378377362
ContentsReferences in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms384384384385Use the Command Reference to Check Your MemoryChapter 10Troubleshooting OSPFv3385386“Do I Know This Already?” Quiz 386Foundation Topics388Troubleshooting OSPFv3 for IPv6388OSPFv3 Troubleshooting CommandsOSPFv3 Trouble Tickets389395Trouble Ticket 10-1395Trouble Ticket 10-2398Troubleshooting OSPFv3 Address FamiliesOSPFv3 AF Trouble TicketTrouble Ticket 10-3Define Key Terms412412Exam Preparation TasksReview All Key Topics402416416417Use the Command Reference to Check Your MemoryChapter 11BGP420“Do I Know This Already?” Quiz 420Foundation Topics422BGP Fundamentals422Autonomous System Numbers (ASNs)BGP SessionsPath Attributes423Loop Prevention423Address Families423Inter-Router CommunicationBGP Messages422423424425BGP Neighbor States426Basic BGP Configuration428Verification of BGP SessionsPrefix Advertisement431433Receiving and Viewing Routes436Understanding BGP Session Types and BehaviorsiBGP441441417xv
xviCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideiBGP Full Mesh Requirement443Peering Using Loopback AddresseseBGP444446eBGP and iBGP TopologiesNext-Hop Manipulation447449iBGP Scalability EnhancementsRoute Reflectors450Confederations454Multiprotocol BGP for IPv6IPv6 Configuration464466References in This ChapterExam Preparation Tasks470470Review All Key TopicsDefine Key Terms458459IPv6 SummarizationIPv6 over IPv4450470471Use the Command Reference to Check Your MemoryChapter 12Advanced BGP471474“Do I Know This Already?” Quiz 474Foundation Topics476Route Summarization476Aggregate Addresses476The Atomic Aggregate Attribute 481Route Aggregation with AS SET483BGP Route Filtering and ManipulationDistribution List FilteringPrefix List FilteringAS Path Filtering487488489Regular Expressions (Regex)AS Path ACLsRoute Maps486489495497Clearing BGP ConnectionsBGP Communities499499Enabling BGP Community SupportWell-Known Communities500500The No Advertise BGP CommunityThe No Export BGP Community501502The Local-AS (No Export SubConfed) BGP Community503
ContentsConditionally Matching BGP CommunitiesSetting Private BGP CommunitiesMaximum Prefix504506507Configuration ScalabilityIOS Peer Groups509509IOS Peer Templates510References in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms511511511512Use the Command Reference to Check Your MemoryChapter 13BGP Path Selection512514“Do I Know This Already?” Quiz 515Foundation Topics516Understanding BGP Path SelectionBGP Best PathWeight516517519Local Preference522Phase I: Initial BGP Edge Route Processing525Phase II: BGP Edge Evaluation of Multiple PathsPhase III: Final BGP Processing State526527Locally Originated in the Network or Aggregate AdvertisementAccumulated Interior Gateway Protocol (AIGP)Shortest AS PathOrigin Type530532Multi-Exit Discriminator534Missing MED Behavior537Always Compare MED538BGP Deterministic MEDeBGP over iBGP538540Lowest IGP Metric540Prefer the Oldest EBGP PathRouter ID541541Minimum Cluster List LengthLowest Neighbor AddressBGP Equal-Cost MultipathExam Preparation Tasks541541542543528528xvii
xviiiCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideReview All Key TopicsDefine Key Terms543543Use the Command Reference to Check Your MemoryChapter 14Troubleshooting BGP544546“Do I Know This Already?” Quiz 547Foundation Topics549Troubleshooting BGP Neighbor Adjacencies549Interface Is Down 551Layer 3 Connectivity Is Broken551Path to the Neighbor Is Through the Default Route552Neighbor Does Not Have a Route to the Local RouterIncorrect neighbor Statement553BGP Packets Sourced from the Wrong IP AddressACLs554555The TTL of the BGP Packet ExpiresMismatched Authentication559Misconfigured Peer Groups560Timers553557561Troubleshooting BGP Routes562Missing or Bad network mask CommandNext-Hop Router Not ReachableBGP Split-Horizon Rule568Better Source of InformationRoute Filtering564566569572Troubleshooting BGP Path Selection577Understanding the Best-Path Decision-Making ProcessPrivate Autonomous System NumbersUsing debug Commands581Troubleshooting BGP for IPv6BGP Trouble Tickets 587Trouble Ticket 14-1588Trouble Ticket 14-2593Trouble Ticket 14-3600MP-BGP Trouble TicketTrouble Ticket 14-4Exam Preparation TasksReview All Key Topics604604607607583581577
ContentsDefine Key Terms608Use the Command Reference to Check Your MemoryChapter 15Route Maps and Conditional Forwarding608610“Do I Know This Already?” Quiz 610Foundation Topics612Conditional Matching612Access Control Lists (ACLs)Standard ACLs612Extended ACLs613Prefix Matching614612Prefix Lists 617IPv6 Prefix ListsRoute Maps617618Conditional Matching619Multiple Conditional Match ConditionsComplex MatchingOptional ActionsContinue620621621622Conditional Forwarding of Packets623PBR Configuration 624Local PBR626Trouble Tickets628Trouble Ticket 15-1629Trouble Ticket 15-2632Trouble Ticket 15-3634Exam Preparation TasksReview All Key TopicsDefine Key Terms636637637Use the Command Reference to Check Your MemoryChapter 16Route Redistribution640“Do I Know This Already?” Quiz 640Foundation Topics641Redistribution Overview641Redistribution Is Not Transitive643Sequential Protocol RedistributionRoutes Must Exist in the RIBSeed Metrics647645645637xix
xxCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideProtocol-Specific ConfigurationSource-Specific BehaviorsConnected NetworksBGP648649649649Destination-Specific BehaviorsEIGRP650650EIGRP-to-EIGRP RedistributionOSPF653655OSPF-to-OSPF Redistribution658OSPF Forwarding Address 659BGP662Reference in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms664665665665Use the Command Reference to Check Your MemoryChapter 17Troubleshooting Redistribution665668“Do I Know This Already?” Quiz 668Foundation Topics671Troubleshooting Advanced Redistribution Issues671Troubleshooting Suboptimal Routing Caused by RedistributionTroubleshooting Routing Loops Caused by RedistributionTroubleshooting IPv4 and IPv6 RedistributionRoute Redistribution Review680680Troubleshooting Redistribution into EIGRPTroubleshooting Redistribution into OSPFTroubleshooting Redistribution into BGP683688693Troubleshooting Redistribution with Route MapsRedistribution Trouble TicketsTrouble Ticket 17-1697Trouble Ticket 17-2701Trouble Ticket 17-3705Trouble Ticket 17-4711Exam Preparation TasksReview All Key TopicsDefine Key Terms696696715715716Use the Command Reference to Check Your Memory716673671
ContentsChapter 18VRF, MPLS, and MPLS Layer 3 VPNs718“Do I Know This Already?” Quiz 718Foundation Topics720Implementing and Verifying VRF-LiteVRF-Lite Overview720721Creating and Verifying VRF InstancesAn Introduction to MPLS OperationsMPLS LIB and LFIB734734Label Switching RoutersLabel-Switched PathLabels721735736736Label Distribution ProtocolLabel Switching737738Penultimate Hop Popping739An Introduction to MPLS Layer 3 VPNsMPLS Layer 3 VPNsMPLS Layer 3 VPNv4 Address741MPLS Layer 3 VPN Label StackReference in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms739740743745745745746Use the Command Reference to Check Your MemoryChapter 19DMVPN Tunnels746748“Do I Know This Already?” Quiz 748Foundation Topics750Generic Routing Encapsulation (GRE) TunnelsGRE Tunnel Configuration751GRE Sample Configuration753Next Hop Resolution Protocol (NHRP)Dynamic Multipoint VPN (DMVPN)Phase 1: Spoke-to-Hub756758759Phase 2: Spoke-to-Spoke759Phase 3: Hierarchical Tree Spoke-to-SpokeDMVPN Phase ComparisonDMVPN Configuration750759760761DMVPN Hub Configuration762DMVPN Spoke Configuration for DMVPN Phase 1 (Point-to-Point)764xxi
xxii CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideViewing DMVPN Tunnel StatusViewing the NHRP Cache766769DMVPN Configuration for Phase 3 DMVPN (Multipoint)IP NHRP AuthenticationUnique IP NHRP Registration775Spoke-to-Spoke Communication777Forming Spoke-to-Spoke Tunnels777NHRP Routing Table Manipulation782NHRP Routing Table Manipulation with SummarizationProblems with Overlay NetworksRecursive Routing Problems788788Outbound Interface Selection789Front Door Virtual Routing and Forwarding (FVRF)Configuring Front Door VRF (FVRF)FVRF Static Routes792DMVPN Hub RedundancyIPv6 DMVPN Configuration793IPv6 DMVPN VerificationExam Preparation Tasks792793IPv6-over-IPv6 Sample Configuration794797798799Review All Key TopicsDefine Key Terms799799Use the Command Reference to Check Your MemoryChapter 20Securing DMVPN Tunnels802“Do I Know This Already?” Quiz 802Foundation Topics803Elements of Secure TransportIPsec FundamentalsSecurity Protocols803805806Authentication Header806Encapsulating Security Payload (ESP)Key Management806806Security AssociationsESP Modes790790DMVPN Failure Detection and High AvailabilityReferences in This Chapter806807DMVPN Without IPsec773775808DMVPN with IPsec in Transport Mode808800784
ContentsDMVPN with IPsec in Tunnel ModeIPsec Tunnel Protection808Pre-Shared Key AuthenticationIKEv2 KeyringIKEv2 Profile808808809810IPsec Transform SetIPsec Profile812813Encrypting the Tunnel InterfaceIPsec Packet Replay ProtectionDead Peer DetectionNAT Keepalives814814815815Complete IPsec DMVPN Configuration with Pre-SharedAuthentication 816Verification of Encryption on DMVPN TunnelsIKEv2 Protection819References in This ChapterExam Preparation TasksReview All Key TopicsDefine Key Terms817820821821821Use the Command Reference to Check Your MemoryChapter 21Troubleshooting ACLs and Prefix Lists824“Do I Know This Already?” Quiz 824Foundation Topics827Troubleshooting IPv4 ACLsReading an IPv4 ACL827827Using an IPv4 ACL for FilteringUsing a Time-Based IPv4 ACLTroubleshooting IPv6 ACLsReading an IPv6 ACL831Troubleshooting Prefix ListsPrefix List ProcessingTrouble Tickets829830Using an IPv6 ACL for FilteringReading a Prefix List829832833833835836Trouble Ticket 21-1: IPv4 ACL Trouble Ticket836Trouble Ticket 21-2: IPv6 ACL Trouble Ticket839Trouble Ticket 21-3: Prefix List Trouble Ticket842Exam Preparation Tasks844821xxiii
xxiv CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideReview All Key TopicsDefine Key Terms844845Use the Command Reference to Check Your MemoryChapter 22Infrastructure Security845846“Do I Know This Already?” Quiz 846Foundation Topics849Cisco IOS AAA Troubleshooting849Troubleshooting Unicast Reverse Path Forwarding (uRPF)Troubleshooting Control Plane Policing (CoPP)Creating ACLs to Identify the Traffic854Creating Class Maps to Define a Traffic Class856Creating Policy Maps to Define a Service Policy859Applying the Service Policy to the Control Plane861CoPP Summary863IPv6 First-Hop Security863Router Advertisement (RA) GuardDHCPv6 GuardBinding Table863864864IPv6 Neighbor Discovery Inspection/IPv6 SnoopingSource GuardReview All Key TopicsDefine Key Terms864864Exam Preparation Tasks864865865Use the Command Reference to Check Your MemoryChapter 23852854865Device Management and Management Tools Troubleshooting 868“Do I Know This Already?” QuizFoundation Topics868871Device Management TroubleshootingConsole Access Troubleshootingvty Access TroubleshootingTelnetSSH874875Remote Transfer Troubleshooting875HTTP(S)SCP871872872Password Encryption LevelsTFTP871877876875
ContentsManagement Tools TroubleshootingSyslog Troubleshooting879SNMP Troubleshooting881878Cisco IOS IP SLA TroubleshootingObject Tracking Troubleshooting885891NetFlow and Flexible NetFlow TroubleshootingBidirectional Forwarding Detection (BFD)Cisco DNA Center AssuranceExam Preparation TasksReview All Key TopicsDefine Key Terms892900901908909910Use the Command Reference to Check Your MemoryChapter 24Final Preparation910912Advice About the Exam Event 912Think About Your Time Budget Versus Numbers of QuestionsA Suggested Time-Check Method913Miscellaneous Pre-Exam SuggestionsExam-Day Advice912914914Reserve the Hour After the Exam in Case You FailTake Practice Exams915916Advice on How to Answer Exam Questions917Assessing Whether You Are Ready to Pass (and the Fallacy ofExam Scores) 918Study Suggestions After Failing to PassOther Study TasksFinal Thoughts919920921Appendix AAnswers to the “Do I Know This Already?” Quiz QuestionsAppendix BCCNP Enterprise Advanced Routing ENARSI 300-410 OfficialCertification Guide Exam Updates 932GlossaryIndex934952Online ElementsGlossaryAppendix CCommand Reference ExercisesAppendix DCommand Reference Exercises Answer KeyAppendix EStudy Planner922xxv
xxviCCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert GuideAbout the AuthorsRaymond Lacoste has dedicated his career to developing the skills of those interestedin IT. In 2001, he began to mentor hundreds of IT professionals pursuing their Ciscocertification dreams. This role led to teaching Cisco courses full time. Raymond iscurrently master instructor for Cisco Enterprise Routing and Switching, AWS, and ITILat StormWind Studios. Raymond treats all technologies as an escape room, working touncover every mystery in the protocols he works with. Along this journey, Raymond haspassed more than 110 exams, and his office wall includes certificates from Microsoft,Cisco, ISC2, ITIL, AWS, and CompTIA. If you were visualizing Raymond’s office, you’dprobably expect the usual network equipment, certifications, and awards. Those certainlytake up space, but they aren’t his pride and joy. Most impressive, at least to Raymond,is his gemstone and mineral collection; once he starts talking about it, he just can’t stop.Who doesn’t get excited by a wondrous barite specimen in a pyrite matrix? Raymondpresently resides with his wife and two children in eastern Canada, where they experiencemany adventures together.Brad Edgeworth, CCIE No. 31574 (R&S and SP), is a systems architect at CiscoSystems. He is a distinguished speaker at Cisco Live, where he has presented on varioustopics. Before joining Cisco, Brad worked as a network architect and consultant forvarious Fortune 500 companies. Brad’s expertise is based on enterprise and serviceprovider environments, with an emphasis on architectural and operational simplicity andconsistency. Brad holds a bachelor of arts degree in computer systems management fromSt. Edward’s University in Austin, Texas. Brad can be found on Twitter as@BradEdgeworth.
xxviiAbout the Technical ReviewersHector Mendoza, Jr., No. 10687 (R&S, SP, and Security) has spent the past 14 yearsat Cisco Systems and is currently a solutions integration architect supporting large SPcustomers. Prior to this proactive role in CX, he spent nearly a decade providing reactivesupport in High Touch Technical Services in the Security Group, where he providedescalation support for some of the largest customers for Cisco. A four-time Cisco Livespeaker and an Alpha reviewer of Cisco Security courseware, he is a huge advocate ofcontinuing education and knowledge sharing. Hector has a passion for technology, enjoyssolving complex problems, and loves working with customers. In his spare time, he techreviews his esteemed colleagues’ Cisco Press books.Russ Long was introduced to computers and networking at a very young age, when hetried to save the world from digital monsters and aliens, an endeavor that keeps himbusy to this day. Russ started his career in enterprise-level IT work splicing fiber-opticnetworks in the Pacific Northwest. His career has taken a long and winding path fromthere: from systems administrator, to IT consultant and computer shop owner, to ITinstructor. Roughly the last decade of his career has focused solely on instruction andconsulting in IT environments. Some of his favorite topics include Cisco routing andswitching, real-world security, storage solutions, and virtualization.
xxviiiCCNP Enterprise Advanced Routing EN
x CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert Guide Different Subnets 148 Authentication 148 ACLs 150 Timers 151 Troubleshooting EIGRP for IPv4 Routes 151 Bad or Missing network Command 152 Better Source of Information 154 Route Filtering 157 Stub Confi
CCNP Enterprise: Advanced Routing and Services (ENARSI) - Scope and Sequence Last Updated April 20, 2020 Target Audience The Cisco Networking Academy CCNP Enterprise curriculum is designed for participants who are seeking professional-level jobs in the ICT industry, or hope to fulfill prerequisites to p
CCNP Bootcamp (ENCOR, ENARSI) COURSE OVERVIEW: ENCOR and ENARSI classes are covered in this 10-day course designed to help you achieve CCNP Enterprise certification. The Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) v1.0 course gives you the knowledge and
CCIE Collaboration CCIE Data Center CCDE CCIE Routing & Switching CCIE Security CCIE SP CCIE Wireless Network Programmability Service Provider Internet of Things CCNP Wireless CCNP SP CCNP Security CCNP Routing & Switching CCDP CCNP Data Center CCNP Collaboration CCNP Cloud Customer Success Security Data Center CCNA Wireless
Routing & Switching [CCNA, CCNP] CCIE Security [CCNA, CCNP] CCIE Data Center [CCNA, CCNP] CCIE Service Provider [CCNA, CCNP] CCIE Wireless [CCNA, CCNP] CCIE Collaboration [CCNA, CCNP] CCIE Network Design [CCNA, CCNP] CCIE Cyber Ops CCNA
Build hands-on skills Additional preparation for certification exams New! Certification practice exam New! Virtual Machine lab to practice network programmability New! Final exam and hands-on skills assessment New! Ability to earn a Cisco digital learning credential (70% min score on 1st attempt of final)
Cisco Notecards CCNP / CCIE CCNP flash cards CCIE flash cards Hands on cisco training Study guides CCIE study plan Cisco TSHOOT 642-813 preparation Cisco SWITCH 642-832 preparation Cisco ROUTE 642-902 preparation Cisco CCIE study summary CCIE mobile app CCNP mobile app ANKI CCIE APP ANKI CCNP APP CCNP Ankidroid CCIE Ankidroid TCP / IP training .
CCNP SWITCH 642-813 Official Certification Guideis an excellent self-study resource for the CCNP SWITCH exam. Passing this exam is a crucial step to attaining the valued CCNP Routing and Switching certification. Gaining certification in Cisco technology is key to the continuing educational develop-ment of today's networking professional.
A Course on Rough Paths With an introduction to regularity structures June 2014 Errata (last update: April 2015) Springer. To Waltraud and Rudolf Friz and To Xue-Mei. Preface Since its original development in the mid-nineties by Terry Lyons, culminating in the landmark paper [Lyo98], the theory of rough paths has grown into a mature and widely applicable mathematical theory, and there are by .
