My CCIE Security V6 Home Lab Overview
So I have had some time to put everything together in my small CCIE Security V6 lab.
I want to spend a few moments explaining how everything is put together so others can benefit from it.
At the core of the whole thing is my new server, which is running great!
So I have further evidence that I might be crazy:
I have decided to abandon any and all CCIE DC studies. Why you might ask? Simple: I dont have access to the required equipment continually so I can practice and reinforce any knowledge.
Passed the CCIE SP Lab exam.
Well, a short update. I managed to pass the CCIE Service Provider lab exam on March 14th.
I am quite exhausted from the experience, but very happy 🙂
I am happy to announce that this week i passed the R&S CCIE lab exam. CCIE #29189.
Its been a long journey for me. Working full time, not taking any dedicated time off work to do so, has been challenging.
Working through detailed blueprint.
I am going through the detailed blueprint, one item at a time and verifying that there are no surprises. Especially IP services and security is something i havent paid enough attention to in the past.
Anyways, there are lots of items on that darn list and going through them all takes alot of time.
Frame-relay compression and fragmentation.
Link optimization on frame-relay.
Using frame-relay, bandwidth is especially a concern.
It is possible to optimize this bandwidth in several ways.
I will concentrate this post about compression and fragmentation.
First off, with compression on frame-relay there several methods of accomplishing this.
Final Rack Photo
As promised, here is a couple of photos of the final layout.
More detailed view
Thats all there is to it 🙂
So I modified the previous layout a bit.
The concern i voiced about the 3640 was enough to make me figure out a way to have that one as the bottom piece of equipment.
This is what i ended up with:
I need to start cabling all of this gear into place. I have made a layout which i think i will try out.
The only thing that concerns me is the weight of the 3640 router. Its a heavy baby.
Beginning of March
I have received the rest of my routers (1841s), I have also received the memory and flash upgrades for them all (256meg memory and 64mb flash). The guy who sold them to me was very helpful and it turned out he had the cables that i needed as well (some Smart-serial to Smart-serial, as well as some DB60 ones).
NTP and modes of operation.
NTP is one of those things that really keeps messing with my head.
To break it down, what does it do for us?
Simple. It provides the correct time of the day.
How does it accomplish this? Now this is where it gets interesting.
I want to point everyones attention at this blog post made by Marko over at IPX. Its a good read and i think you will all enjoy it!
Welcome to 2011
Welcome to 2011.
I hope that you have had time to enjoy the holidays and all the festivities that come with it.
Personally i have been doing alot of work stuff. Moving data centers is no small task when the customers want constant uptime.
Work Work and more Work.
The month of December has been crazy for me.
A ton of work related stuff has been going on. Our HQ move has taken its toll on everybody. Ive been working through every weekend, putting in some 20 odd hours on some days.
IRB – Integrated Routing and Bridging.
My understanding of IRB:
I did another Volume 1 lab yesterday. Again i hit my head against the infamous IRB feature.
IRB stands for Integrated Routing and Bridging. Below is my understanding of the technology. I could be very wrong about this, so please correct me if i state something completely incorrect.
Its been just over two weeks since my lab attempt.
I have basically done no studying at all during that time.
Time has come to get back in the game. I do have alot of work to do in the near future, but i will still try and do all the studying i can squeeze in.
Great walkthrough of the Cisco Documentation.
I had a bit of spare time yesterday, and i stumbled across a great video walkthrough of the Cisco documenation by Internetwork Expert (INE), and i thought i would share it with you in case you hadnt already discovered it:
At the bootcamp last week, i was almost out of reach from my lab.
Even though i just got the remote power controller, the network at both the conference place as well as the hotel (especially the hotel!) was pretty bad.
Bootcamp October 2010 and General Update.
This was all written yesterday 🙂
So right now (im sitting in London Stansted Airport after having attended the last of Narbiks bootcamp. Its going to be good to get home to the girlfriend and my puppy.
He had a guest with him this time around.
Learning EEM (Embedded Event Manager).
Awesome. Got alot of EEM ground covered today.
Seems like a very powerful scripting engine that stands out, by having the ability to be triggered under certain
Lets check out an example using the topology below:
EEM Topology R1 is connected to an ethernet segment.
Progress report – Monday 23-08-2010.
I have started doing IPexpert Vol 1. technology labs. They are pretty challeging. They make you think out of the box. Almost none of it is vanilla configuration.
I dont know how closely these labs reflect the real one. Ofcourse these are Vol.
Progress report – Saturday 14-08-2010.
Woke up early this morning to get a head-start on the Video-on-Demand courses. I do it by looking at the PDF’s thats covered on each configuration section, and try and replicate the topology as well as solving all the tasks.
Update 11-08-2010: I can now create RMON alarms and events. It seems the command set for RMON is pretty limited. Not much around the net as to how deep to go into this. Hope its enough.
I just looked over the detailed blueprint which is authored by cisco.
The art of troubleshooting.
Troubleshooting. An artform in itself.
I have been doing trouble-shooting labs for the last week and its not going the way i want it to.
In all fairness, its very good practice! having all the components in one lab, with all sorts of technologies interconnected really makes life interesting.
Time Time Time or the lack thereof.
My apologies for the huge lack of content lately.
I have been insanely busy with work along with doing lots of labs. Especially IPv6 labs was challenging. I have done 50% of a blog post about my trials with this beast.
I wanted to take some time to write up something about the cost of doing the CCIE track.
This is prompted by some recent events in the CCIE training community and some discussion on twitter about studying in an economic downturn.
PVC Interface Priority Queueing – PIPQ
New technology i just learned about! Its called PIPQ, and stands for PVC Interface Priority Queueing.
As the name implies, its a Queueing method, and its only for frame-relay.
It basically functions in the same way as a PQ scheme, in that it has 4 queues, high, medium, normal and low.
OEQ = Thing of the past
This just in, well not really, as the news is a couple of days old. The dreaded OEQ for the R&S lab exam is now a thing of the past.
The news created alot of buzz on the forums, twitter and facebook.
What sort of lab do you use?
Morning BGP command.
I have a few minutes this morning that i want to use to clarify a special BGP feature which i had misunderstood until a few days ago.
This has to do with the aggregate-address that you use to create a summary address.
In my continued quest through BGP i ran into a couple of things which i wanted to share my thoughts about.
All of them has to do with a non-direct peering between BGP peers.
Originally the BGP protocol was designed to be run between directly connected routers.
Learning new things.
Im learning something new at work almost every day.
We do alot of voice installations, some directly for the customer, others we host.
Voice has always been a strange world to me, and it still is. Basically it boils down to the fact that it doesnt interest me what so ever.
Tidbit of the day: NSSA – External forwarding address.
I wanted to share a very interesting tidbit i figured out the hard way.
Again, its about NSSA areas in OSPF. When redistributing a route into an NSSA area, how is the forwarding address chosen?
Some say the lowest IP address of any loopback interfaces thats advertised into the NSSA area.
Labs again and again and again.
I havent been very good at updating my blog lately. The reason for this is that i have been really focused on doing labs. Im still doing Narbik’s labs. They are great! They really make you think about what you are doing and contains the nasty 007 tricks 🙂
I wanted to give a status update on my study progress as it stands on February 28th 2010.
At the moment im still hitting Narbik labs. There are alot of good ones, and i havent even hit the troubleshooting labs yet.
I had a very long day at work yesterday, but still felt like doing a lab when i got home.
My next lab was about fallback-bridging. Yet another topic i know nothing about 🙂
So today/tonights plan calls for figuring this technology out.
Lan QoS – going insane
I was doing some lan QoS yesterday evening. Specifically i wanted to mark some packets.
As usual, i wanted to create a policy-map, referencing some class-map, and then set the IP precedence value.
I tried to get this working for like 3 hours.
SNMP traps and NMS
I was just playing around with some switching labs.
As i was doing this, i ran into configuring SNMP, sending traps when mac-addresses was added/removed, and all sorts of other things. I could (as in the lab) just set the IP address of the NMS (Network Management System), but i wanted to actually make sure that these were being picked up correctly by an NMS.
Narbik Bootcamp 2010
I thought i would write a bit about my bootcamp last week. Here’s what I have come up with. I will update this as more thoughts flow into my head 🙂
Day one at Narbik’s bootcamp:
What an eye opener.
Just wanted to let everyone know that im working on a post describing the Narbik bootcamp. Just concentrated on labs at the moment. It will arrive shortly 🙂