12. CCNP 802.1X Authentication (驗證)
12.1 Basic Concept of 802.1X Authentication
12.2 Installation of CiscoSecure ACS and Creation of User Account
12.3 Configuration of 802.1X Authentication on a 3550 Switch
13. CCNP Security Features
13.1 Port Security
13.1.1 Understanding of Secure MAC Address
13.1.2 Understanding of Security Violations
13.1.3 MAC Address Spoofing (虛假) and Flooding (泛濫) Attacks
13.2 DHCP Snooping (窺探)
13.3 IP Source Guard
13.4 Dynamic ARP Inspection (DAI)
13.5 VLAN Hopping (跳躍)
13.5.1 802.1Q or ISL Tagging Attack or Information Gathering
13.5.2 Double-Encapsulated 802.1Q
14. CCNP STP (Spanning Tree Protocol)
14.1 Overview
14.1.1 Spanning-Tree Algorithm (原理)
14.1.2 Network Topology Changes
14.2 STP Configuration
14.3 Features for Improving STP Performance
14.3.1 PortFast
14.3.2 BPDU Filtering
14.3.3 BPDU Guard
14.3.4 Root Guard
14.3.5 Problems Affecting STP
14.3.5.1 Duplex Mismatch
14.3.5.2 Unidirectional (單向的) Link
14.3.5.3 Sudden Loss of BPDUs
15. CCNP RSTP (Rapid Spanning Tree Protocol)
15.1 RSTP Port States
15.2 Behavior (行為) of RSTP
15.2.1 Behavior of RSTP on an Edge Port
15.2.2 Behavior of RSTP on a Point-to-Point Port
15.3 RSTP BPDUs
15.4 Working of RSTP
15.4.1 Convergence Using STP (802.1D)
15.4.2 Convergence Using RSTP (802.1w)
15.5 Working of RSTP
16. CCNP MST (Multiple Spanning Tree)
16.1 Why MST?
16.2 General Descriptions on MST Configuration
16.3 An Example on MST Configuration
17. CCNP QoS (Quality of Service)
17.1 QoS Overview
17.2 QoS Classification on Layer 2 through CoS
17.3 Reassign (重新設置) or Trust (信任) CoS
17.3.1 Reassign CoS to a Non-zero Value
17.3.2 Trust CoS
17.4 Congestion Management (擠塞管理)
17.4.1 Mapping CoS Values to Egress Queues
17.4.2 Congestion Management Method
17.4.2.1 Weighted Round Robin (WRR) Scheduling
17.4.2.2 Strict Priority and WRR Scheduling
18. CCNP Cisco IP Phones
18.1 Background Knowledge
18.2 Behavior of Cisco IP Phone When Using “switchport voice vlan none”
18.3 Behavior of Cisco IP Phone When Using “switchport voice vlan <vlan_id>”
18.4 Behavior of Cisco IP Phone When Using “switchport voice vlan dot1p”
18.5 QoS Settings on Switch Port Connecting with a Cisco IP Phone
19. CCNP Cisco Express Forwarding (CEF)
19.1 Process Switching
19.2 Fast Switching
19.3 Cisco Express Forwarding (CEF)
20. CCNP Supervisor Engine and Route Processor Redundancy
20.1 General Concepts
20.2 Route Processor Redundancy (RPR)
20.3 Route Processor Redundancy plus (RPR+)
20.4 Stateful SwitchOver (SSO)
20.5 NonStop Forwarding with Stateful SwitchOver (NSF)
21. CCNP Cisco IOS IP Service Level Agreements (SLAs)作者: 角色 時間: 2014-9-14 13:06
CCNP Supplement:
Assigning VLAN Dynamically
DHCP Option 82
Private VLAN (PVLAN)
STP
CST and PVST+
Improving STP Performance
Wireless LAN (WLAN)
ROUTE: Implementing Cisco IP Routing (54hrs.)
1. CCNP Open Shortest Path First (OSPF)
1.1 Link State Protocol
1.2 OSPF Features
1.2.1 Classless Routing Protocol
1.2.2 No Limits in Hop Count
1.2.3 Less Bandwidth Usage
1.3 OSPF Operation
1.3.1 Discovering Neighbors
1.3.2 Exchanging LSAs
1.3.3 Parameters (參數) Used in OSPF
1.4 Basic OSPF Configuration
1.5 Designated Router (DR)
1.6 OSPF on Non-Broadcast MultiAccess Network
1.6.1 RFC method that uses DR - Nonbroadcast Multiaccess (NBMA) mode
1.6.2 RFC method that does not use DR - Point-to-Multipoint mode
1.7 OSPF Area
1.7.1 OSPF Area Overview
1.7.2 Area 0
1.7.3 Intra Area and Inter Area LSA Traffic
1.7.4 Routing to Networks Outside the OSPF Network
1.7.5 Stub Area (殘缺區)
1.7.6 Totally Stubby Area (完全殘缺區)
1.7.7 Not So Stubby Area (NSSA,並非如此殘缺區)
1.7.8 NSSA Totally Stubby Area
1.7.9 Virtual Links (虛擬連結)
2. CCNP Enhanced Interior Gateway Routing Protocol (EIGRP)
2.1 EIGRP Neighbor
2.2 Feasible Distance (可行的距離), Successor (後繼者) and Feasible Successor (可行的後繼者)
2.3 Diffused Update Algorithm (DUAL,擴散式更新原理)
2.3.1 Routing Table Changes without DUAL Computation
2.3.2 Routing Table Changes with DUAL Computation
2.4 Basic EIGRP Configuration
2.5 EIGRP Authentication Configuration
2.6 Using EIGRP over WAN Link
2.6.1 Modifying Bandwidth Used by EIGRP
2.6.2 Bandwidth Used by EIGRP in Multipoint Interfaces
2.6.3 Bandwidth Used by EIGRP in Point-to-Point Subinterfaces
2.7 EIGRP Route Summarization
2.7.1 Basic Concept
2.7.2 Using Null (無效) Interface in Route Summarization
2.8 Configuration for EIGRP Route Summarization
2.8.1 Disabling EIGRP Automatic Route Summarization
2.8.2 Manual EIGRP Route Summarization
2.9 EIGRP Stub Routing
2.9.1 Problems in Stub Routing
2.9.2 EIGRP Stub Router functionality
2.9.3 Configuration for EIGRP Stub Routing
2.10 EIGRP Load Balancing (載入平衡)
2.11 Configuration for EIGRP Load Balancing
3. CCNP Border Gateway Protocol (BGP)
3.1 Autonomous System (AS,自主系統)
3.2 Path Vector (路線向量) Protocol
3.3 Usage of BGP
3.4 Operation of BGP
3.5 Basic Configuration of BGP
3.6 EBGP (External BGP) and IBGP (Internal BGP)
3.7 IBGP Route Reflector (反映者)
3.8 IBGP and Route Reflector Configuration
3.8.1 Basic IBGP Configuration
3.8.2 Route Reflector Configuration
3.9 BGP Synchronization (同步化)
3.10 Exercises in BGP Synchronization
3.11 BGP Attributes (屬性)
3.11.1 Origin (起源)
3.11.2 AS_Path
3.11.3 Next Hop
3.11.4 Local Preference (本地喜好)
3.11.5 Community (社團)
3.11.6 Multi Exit Discriminator (MED,多重出口歧視)
3.11.7 Cisco-Specific Attribute - Weight
3.11.8 Criteria (準則) in Selecting a BGP Route
3.12 BGP Policy-Based (原則為本) Routing
3.13 BGP Prefix List (前置清單)
3.14 Configuration for Controlling and Filtering BGP Routing Update
3.14.1 Sample Configuration for BGP Attribute and Route Map
3.14.2 Configuration of BGP Prefix List
3.15 BGP Peer Group
3.16 Using Loopback Interface for BGP Peering
3.16.1 Using Loopback Interface in IBGP Peering
3.16.2 Using Loopback Interface in EBGP Peering
3.17 BGP Problem in NBMA network
5. CCNP IP Version 6
5.1 Overview
5.2 IPv6 Addressing Representation
5.2.1 Normal IPv6 Format
5.2.2 Compressed IPv6 Format
5.3 IPv6 Unicast Address
5.3.1 Aggregatable Global Address
5.3.2 Site-Local Address
5.3.3 Link-Local Address
5.4 IPv6 Header Fields
5.5 IPv6 Basic Configuration
5.6 IPv6 Stateless Autoconfiguration
5.7 IPv6 Routing Protocol
5.8 Implementing IPv6 in IPv4 Networks
5.8.1 Dual Stack
5.8.2 NAT
5.8.3 Overlay (包裝) Tunneling
5.8.4 6to4 Tunneling Configuration
6. CCNP IPSec VPN (IP Security Virtual Private Network)
6.1 IPSec Communication Modes
6.1.1 Transport Mode
6.1.2 Tunnel Mode
6.2 IPSec Header
6.3 Transform Set (變形組合)
6.4 IKE (Internet Key Exchange)
6.5 IPSec VPN Configuration
6.6 NAT Configuration under IPSec VPN Environment
7. CCNP GRE over IPSec
7.1 Features of GRE and IPSec
7.2 GRE over IPSec Headers
7.3 Configuration of GRE over IPSec with EIGRP Across the Tunnel
7.4 Backing Up a WAN Link by GRE over IPSec Tunnel
8. CCNP PPPoE Client, PAT and DHCP Server Configuration
8.1 PPPoE (Point-to-Point Protocol over Ethernet) Client Configuration
8.2 PAT (Port Address Translation) Configuration
8.3 DHCP (Dynamic Host Configuration Protocol) Server Configuration
2. CCNP Simple Network Management Protocol (SNMP)
2.1 SNMP Overview
2.2 SNMP Notifications
2.3 SNMP Versions
2.4 Commands for SNMPv1 and SNMPv2c
2.5 Commands for SNMPv3
3. CCNP Logging
3.1 Sending System Message Loggings to Console and/or Virtual Terminal
3.2 Storing System Message loggings in Internal Buffer
3.3 Sending System Message Loggings to a Syslog Server
4. CCNP Redistribution Between IPv6 Routing Protocols
4.1 IPv6 Basic Configuration
4.2 IPv6 EIGRP and IPv6 RIP Configuration
4.3 Redistribution Between IPv6 EIGRP and IPv6 RIP Configuration
5. CCNP GRE Tunnel Connecting Isolated IPv6 Networks
6. CCNP Default Passive Interface
7. CCNP Redistribution Using Route Map Tag
7.1 Set Tag in Route Map
7.2 Match Tag in Route Map
