CCIE SP Operations Breakout BRKCCIE-4200 - The Cisco Learning ...
CCIE SP Operations Breakout BRKCCIE-4200 - The Cisco Learning ...
CCIE SP Operations Breakout BRKCCIE-4200 - The Cisco Learning ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> <strong>Breakout</strong><br />
BRK<strong>CCIE</strong>-<strong>4200</strong><br />
David Bourke – <strong>CCIE</strong> R&S #20371<br />
Elaine Lopes – PMP<br />
Veronica Tebbe<br />
July, 2011<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public
Agenda<br />
1 <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Overview<br />
2<br />
3<br />
Differences Between <strong>CCIE</strong> <strong>SP</strong> and <strong>CCIE</strong> <strong>SP</strong><br />
<strong>Operations</strong><br />
4 <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Preparation<br />
5 Q&A<br />
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong>: Topics<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 2
Disclaimer<br />
� Not all the topics discussed today appear on every exam<br />
� Due to time limitations, we‘re unable to discuss every feature and<br />
topic possible on the exam<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 3
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Overview<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 4
Certification Process<br />
Written<br />
Exam<br />
350-060<br />
pass<br />
Scenario Section<br />
Troubleshooting Section<br />
(Lab)<br />
Practical Exam<br />
� Candidates will need to achieve minimum score on each section to pass the<br />
Practical exam.<br />
� Candidates take both sections, independent of passing on the first section or<br />
not.<br />
� Re-reads are not available for the <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Practical exam.<br />
<strong>CCIE</strong><br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 5
Certification Process – Practical Exam<br />
� Eight-hour exam to demonstrate expertise across two sections:<br />
1. Scenario section (3 hours)<br />
– Covers Technology, Process and NMS areas of expertise<br />
– 4 modules: Design, Implement, Operate, Optimize (PPDIOO framework)<br />
– Situation-based: Tier3 NOC engineer<br />
– Uses Multiple-choice, Drag&Drop, Charts question types<br />
– No ―skip-question‖, no ―go back‖<br />
– Self-scored, similar to the Written exam<br />
2. Troubleshooting section (5 hours)<br />
– Troubleshooting on Hardware<br />
– IOS and IOS XR<br />
– Traffic and route injection<br />
– Troubleshooting and configuration from command line<br />
– Grading:<br />
� Automatic tools aid proctors with simple grading tasks, but are never solely<br />
responsible for lab exam grading—proctors are<br />
� Points are awarded for working solutions only<br />
� Some incidents have multiple solutions<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 6
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> – Lab Locations<br />
Hong<br />
Kong<br />
San Jose<br />
RTP Brussels<br />
Bangalore<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 7
Differences Between <strong>CCIE</strong> <strong>SP</strong><br />
and <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 8
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> – Job Role-based<br />
Approach<br />
“<strong>The</strong> <strong>SP</strong> <strong>Operations</strong> <strong>CCIE</strong>s can apply their expert-level knowledge of<br />
networking, network management, and network operations processes to<br />
managing complex networks and network services, including capacity and<br />
performance. Furthermore, they should be able to proactively identify and<br />
resolve potential network problems in order to provide the highest quality<br />
network services to internal or external customers.”<br />
Capacity Planning<br />
Engineer<br />
Architecture<br />
Engineering<br />
Infrastructure<br />
Architect<br />
Solution Design<br />
Engineer<br />
Advanced NOC Support<br />
Engineer Tier 3<br />
Network<br />
<strong>Operations</strong><br />
NOC Support Engineer<br />
Technology Specialist<br />
NOC Support Engineer<br />
Tier 2<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 9<br />
NOC Support Technician<br />
Tier 1<br />
Network Management<br />
Engineer<br />
Field Engineer<br />
Network<br />
Engineering<br />
Implementation<br />
Engineer<br />
Security Engineer
<strong>Cisco</strong> <strong>SP</strong> Certifications Comparison<br />
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Practical Exam: Scenario and Troubleshooting sections<br />
Job Role: Network <strong>Operations</strong> Support Engineer<br />
Target Audience: <strong>SP</strong> Network <strong>Operations</strong> Center (NOC)<br />
personnel, Tier III – IV Support Engineers / Technicians<br />
3 Major Areas:<br />
� <strong>SP</strong> IP NGN technologies<br />
� Management process framework (ITIL® v3)<br />
� NMS tools<br />
Target Skills: Troubleshooting, management processes<br />
(incident, fault, change, configuration, and performance)<br />
CCNP <strong>SP</strong> <strong>Operations</strong><br />
OFCN: Operational Foundations for <strong>Cisco</strong> Service Provider Core Networks<br />
M<strong>SP</strong>RP: Maintaining <strong>Cisco</strong> Service Provider Routing Protocols<br />
M<strong>SP</strong>VM: Maintaining <strong>Cisco</strong> Service Provider VPNs and MPLS Networks<br />
M<strong>SP</strong>QS: Maintaining <strong>Cisco</strong> Service Provider Quality of Service<br />
CCNA <strong>SP</strong> <strong>Operations</strong><br />
S<strong>SP</strong>O: Supporting <strong>Cisco</strong> Service Provider IP NGN <strong>Operations</strong><br />
ICND1: Interconnecting <strong>Cisco</strong> Networking Devices (Part 1)<br />
CCIP<br />
ROUTE: Implementing <strong>Cisco</strong> IP Routing<br />
QOS: Implementing <strong>Cisco</strong> Quality of Service<br />
BGP: Configuring BGP on <strong>Cisco</strong> Routers<br />
MPLS: Implementing <strong>Cisco</strong> MPLS<br />
<strong>CCIE</strong> <strong>SP</strong><br />
Lab Exam: Integrated Configuration and Troubleshooting<br />
Job Role: Network Engineer<br />
Target Audience: <strong>SP</strong> Core /Aggregation/Access Infrastructure<br />
Network Engineers, IP Backbone Engineers<br />
Major Areas: <strong>SP</strong> IP NGN core/edge/access technologies<br />
Target Skills: Design, implement, optimize and troubleshoot<br />
<strong>SP</strong> infrastructure and transport managed services<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 10
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Blueprint<br />
Major Skills Area of expertise<br />
Troubleshoot and fix network performance problems<br />
Troubleshoot and fix reachability and transport<br />
Technology<br />
problems within the network Technology<br />
Identify problems in implementation plans Technology<br />
Manage the network fault management system Process<br />
Manage operations processes Process<br />
Manage performance and capacity NMS<br />
Detailed checklist is posted on CLN:<br />
https://learningnetwork.cisco.com/docs/DOC-9705<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 11
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Process Overview<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 12
ITIL® v3 Functional Framework<br />
� A set of publications suggesting best practices for managing IT services<br />
� Contains codes of practice for quality management of IT services and<br />
infrastructure<br />
� <strong>The</strong> most widely accepted approach to IT service management<br />
� Five core areas:<br />
1. Service Strategy<br />
2. Service Design<br />
3. Service Transition<br />
4. Service <strong>Operations</strong><br />
5. Continual Service Improvement<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 13
Certification Focuses on Two Components<br />
SERVICE OPERATION<br />
� Incident Management<br />
� Problem Management<br />
� Event Fulfillment<br />
� Access Management<br />
� Request Management<br />
ITIL® v3 Lifecycle Framework<br />
SERVICE TRANSITION<br />
� Transition Planning and<br />
Support<br />
� Change Management<br />
� Service Asset and<br />
Configuration Management<br />
� Release and Deployment<br />
Management<br />
� Service Validation and Testing<br />
� Evaluation<br />
� Knowledge Management<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 14
ITIL® v3 Service Management<br />
Service <strong>Operations</strong><br />
Service Processes Brief Description<br />
Incident Management Handle unplanned interruptions<br />
Problem Management Problem resolution<br />
Event Management Handle alerts and notifications<br />
Access Management Provision of user access to services<br />
Request Management Handle requests from users<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 15
ITIL® v3 Service Management<br />
Service Transition<br />
Service Processes Brief Description<br />
Transition Planning and Support<br />
Change Management<br />
Service Asset and Configuration<br />
Management<br />
Transition services from design and<br />
development into production<br />
Agree on and control the service levels<br />
Understand business needs<br />
Ensure optimal use of IT<br />
Release and Deployment Management Control and plan the distribution of releases<br />
Service Validation and Testing Validate service integrity<br />
Evaluation Validate metrics for service have been met<br />
Knowledge Management Data, best practices, and qualified staff<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 16
Sample Process Written Exam Question 1<br />
According to ITIL® v3 framework, which event category is<br />
applied when an OLA or SLA defined by the organization<br />
has been breached?<br />
a) Threshold<br />
b) b) Warning<br />
c) Exception<br />
d) d) Informational<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 17
Sample Process Written Exam Question 2<br />
According to ITIL® v3 framework, which three are formula<br />
components used to determine the pain value level<br />
associated with the impact of an incident or problem on an<br />
organization? (Choose Three.)<br />
a) customer customer affected<br />
b) cost to the business<br />
c) timeline of events<br />
d) downtime duration<br />
e) event trigger<br />
f) sequence of events<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 18
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Network Management Overview<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 19
What is Network Management?<br />
� Network Management refers to the activities, methods, procedures,<br />
and tools that pertain to the operation, administration, maintenance,<br />
and provisioning of networked systems.<br />
� Areas of interest include:<br />
– Operation—keeping the network (and the services that the network<br />
provides) up and running smoothly<br />
– Administration—keeping track of resources in the network and how<br />
they are assigned<br />
– Maintenance—performing repairs and upgrades<br />
– Provisioning—configuring resources in the network to support a given<br />
service<br />
� Certification does not require detailed knowledge of specific Network<br />
Management tools.<br />
Source: Wikipedia http://en.wikipedia.org/wiki/Network_management<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 20
<strong>The</strong> Five Facets of Proper Network<br />
Management<br />
� Addresses the network management<br />
applications that reside upon the NMS.<br />
� <strong>The</strong> OSI model categorizes<br />
five areas of function (FCAPS model).<br />
1. Fault<br />
2. Configuration<br />
3. Accounting<br />
4. Performance<br />
5. Security<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 21
Syslog Management<br />
� Syslog is a client/server protocol that proactively captures chronic issues<br />
affecting the network.<br />
� Because of its verbose nature, Syslog must be implemented precisely.<br />
– Adequate thresholds and filters must be defined to generate actionable alerts<br />
based on the Syslog messages<br />
– Critical Syslog messages must be easily identified<br />
– <strong>The</strong> Syslog messages must be prioritized<br />
� <strong>The</strong>se requirements will be very customer-specific, due to the uniqueness of<br />
each organization's network deployment.<br />
� Certification requires detailed understanding of syslog including each of its<br />
distinct fields.<br />
– Facility<br />
– Severity<br />
– Hostname<br />
– Timestamp<br />
– Message<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 22
SNMP Protocol<br />
� Protocol used to configure and<br />
monitor network elements with a<br />
management application<br />
– <strong>The</strong> Manager Aims to Provide<br />
Solutions for ISO‘s FCAPS<br />
– <strong>The</strong> agent is embedded in the<br />
device<br />
– <strong>The</strong> manager and the agent<br />
exchange management<br />
information using the SNMP<br />
protocol<br />
� Certification requires detailed<br />
knowledge of SNMP and how it is<br />
used throughout the FCAPS<br />
model<br />
SNMP<br />
Manager<br />
DB MIB<br />
SNMP<br />
Protocol<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 23<br />
SNMP<br />
Agent
<strong>Cisco</strong> IP SLA<br />
� Assures IP service levels<br />
� Proactively verifies network operation<br />
� Accurately measures network performance<br />
Enterprise and Small Medium Business<br />
Understand network<br />
performance and<br />
ease of deployment<br />
Access Enterprise<br />
Backbone<br />
Verify service levels<br />
verify outsourced SLAs<br />
Enterprise<br />
Premise Edge<br />
<strong>Cisco</strong> IOS Software<br />
Service Provider<br />
Aggregation Edge<br />
Service Providers<br />
Measure and provide<br />
SLAs<br />
Service<br />
Provider Core<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 24
How Does IP SLA Work?<br />
� Hop-by-hop analysis and Edge-to-<br />
Edge measurement<br />
� Proactive Notification<br />
– Robust threshold definition for SLAs<br />
– SNMP traps generated when<br />
SLA violated<br />
– Thresholds can trigger SLA<br />
operation activation for further<br />
analysis<br />
� Certification requires detailed<br />
knowledge of IP SLA including how it<br />
is used in the network<br />
IP SLA<br />
IP Host<br />
Measure<br />
(IP SLA Responder)<br />
Measure<br />
SNMP<br />
Trap<br />
IP SLA<br />
Management<br />
Application<br />
Configure<br />
Collect<br />
Present<br />
<strong>Cisco</strong><br />
IOS<br />
Device<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 25
<strong>Cisco</strong> IOS NetFlow – What is it?<br />
� Developed and patented at<br />
<strong>Cisco</strong>® Systems in 1996<br />
� NetFlow is the defacto standard<br />
for acquiring IP operational data<br />
� Provides network and security<br />
monitoring, network planning,<br />
traffic analysis, and IP<br />
accounting<br />
� Certification requires a detailed<br />
understanding of NetFlow<br />
technology<br />
Network World article – NetFlow Adoption on the Rise<br />
http://www.networkworld.com/newsletters/nsm/2005/0314nsm1.html<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
26
Information Found in NetFlow Data<br />
� Who are my top N talkers? Which percentage?<br />
� How many users are on the network at any given time? When will<br />
upgrades effect the least number of users?<br />
� How long do my users surf?<br />
� Where: which Internet sites do they use?<br />
� Are users staying with in an acceptable usage policy?<br />
� DOS attack detections!<br />
� NetFlow is now the primary network accounting technology in the<br />
industry.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 27
Sample NMS Written Exam Question<br />
*Mar 6 22:48:34.452 UTC: %LINEPROTO-5-UPDOWN: Line<br />
protocol on Interface Loopback0, changed state to up<br />
Refer to the exhibit. In the syslog message generated<br />
by a <strong>Cisco</strong> IOS device, what is the facility?<br />
a) UTC<br />
b) LINEPROTO<br />
c) c) 5<br />
d) d) UPDOWN<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 28
Sample NMS Written Exam Question 2<br />
How can IP SLA be used to troubleshoot a network issue?<br />
(Choose Two.)<br />
a) a) It It can can identify identify route route convergence convergence times times causing causing<br />
delays<br />
b) b) It It can can be be configured configured with with thresholds thresholds that that can can<br />
generate traps<br />
c) It can obtain hop-by-hop performance information to<br />
identify bottlenecks<br />
d) It can measure access-list failure attempts to identify<br />
information information loss<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 29
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Scenario Section<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 30
Scenario Section – What to Expect<br />
� End-to-end <strong>Operations</strong> workflow (project)<br />
– Network migration<br />
– New implementation<br />
– Customer requirement<br />
� You are the Senior NOC Engineer<br />
� Stages of project<br />
– Design<br />
– Implement<br />
– Operate<br />
– Optimize<br />
� Resources<br />
– Network Diagram<br />
– Global Documents<br />
– Question-Specific Documents<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 31
Scenario Example – Overarching Objective<br />
� I<strong>SP</strong> X<br />
– Residential triple play (voice, video and data) services<br />
– Business L2/L3VPN transport services<br />
� Assignment<br />
– Migrate 7600 edge routers to ASR 9000<br />
– Hitless (no down time)<br />
– Continued support for all protocols, features and services<br />
– Priority 1 – Feature parity<br />
– Priority 2 – Optimization<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 32
Scenario Example – Topology Diagram<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 33
Scenario Example – Reference<br />
Documentation<br />
� Global Documents<br />
– Operational Level Agreement<br />
– Service Description<br />
– Service Level Agreement<br />
� Question Specific Documents<br />
– Device configuration, show command output<br />
– Performance graphs, traffic reports<br />
– Trouble Tickets, Incident reports<br />
– Feature descriptions<br />
– SNMP output, SNMP traps, and syslog messages<br />
– Internal process documents<br />
– Email correspondence<br />
– Device data sheets<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 34
Scenario: You Will Be Asked To…<br />
� Design<br />
– Process validation<br />
– Feature verification and test<br />
– Validate network design<br />
– Create Method of Procedure<br />
– <strong>Operations</strong> team enablement<br />
� Implement<br />
– Migration windows<br />
� Operate<br />
– Incidents<br />
� Optimize<br />
– Analyze performance data<br />
– Operational Feasibility of ASR 9000 specific features<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 35
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Technology Overview<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 36
IP NGN Service Provider Network<br />
� Next Generation Networks are formed by three elements<br />
� Infrastructure Convergence<br />
� Service Convergence<br />
� Network Simplification<br />
Frame<br />
Relay<br />
PPP<br />
IP/MPLS<br />
IP<br />
VPN<br />
ATM<br />
Internet Ethernet<br />
Typical Protocols/Features:<br />
VPLS, L2VPN, L3VPN Services<br />
Multicast, BGP, MPLS, O<strong>SP</strong>F, ISIS, QOS, NAT<br />
ACLs, LPTS, CoPP, MPP<br />
PE-CE connection protocols<br />
Inter-AS, CSC<br />
L4 – L7 protocols<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 37
L3VPN<br />
VPN A<br />
10.2.0.0<br />
VPN B<br />
10.2.0.0<br />
VPN A<br />
11.6.0.0<br />
VPN B<br />
10.1.0.0<br />
CE MP–iBGP Sessions<br />
CE<br />
CE<br />
CE<br />
PE<br />
PE<br />
Five keys to make MPLS VPNs work:<br />
1. MPLS Forwarding for label switching.<br />
2. VPN Routing and Forwarding Instances (VRF).<br />
3. Route Target to filter routes.<br />
P P<br />
4. MP-BGP for routing updates (Ps typically don‘t run BGP).<br />
5. Route Distinguisher to separate IP addresses.<br />
P<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 38<br />
P<br />
PE<br />
PE<br />
CE<br />
CE<br />
CE<br />
VPN A<br />
11.5.0.0<br />
VPN A<br />
10.1.0.0<br />
VPN B<br />
10.3.0.0
CE<br />
L2VPN/VPLS<br />
Attachment Circuit<br />
IP/MPLS<br />
CE CE<br />
PW<br />
CE CE<br />
Red VSI<br />
Blue VSI<br />
Green VSI<br />
n-PE n-PE<br />
CE<br />
Tunnel L<strong>SP</strong><br />
n-PE<br />
Red VSI<br />
Blue VSI<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 39<br />
PW<br />
PW<br />
CE<br />
Attachment Circuit<br />
Red VSI<br />
Blue VSI<br />
CE<br />
Green VSI<br />
� CE—Customer Edge Device; used to connect to the <strong>SP</strong>‘s network<br />
� n-PE—Network facing-Provider Edge; acts as a gateway between the MPLS core and edge domain<br />
� VSI/VFI—Virtual Switching/Forwarding Instance; describes an Ethernet bridge function within the n-PE; the VSI/VFI<br />
terminates the Pseudowire<br />
� PW—Pseudowire; a PW connects two VSI‘s; Consists of a pair of MPLS uni-directional VC‘s<br />
� AC—Attachment Circuit; a customer connection to the service provider; may be a physical port or Ethernet VLAN<br />
� Tunnel L<strong>SP</strong>—Tunnel Label Switch Path is used to tunnel PW‘s between VSI‘s
Service Provider Concerns:<br />
Operational Perspective<br />
� Device Up-time<br />
� MTBF<br />
� Bandwidth<br />
� Packets per second<br />
� Fast Convergence<br />
� Network redundancy<br />
� Hardware redundancy<br />
� Maintenance<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 40
How to Approach the Technology:<br />
A Compilation of Common <strong>SP</strong> Issues<br />
� IOS XR architecture<br />
� Core security<br />
� IOS XR vs. IOS<br />
– Inter-operational issues<br />
– Protocols and features<br />
– Management<br />
– Process distribution<br />
– Process management<br />
– Configuration HINT!!!<br />
Understand how<br />
IOS XR is unique.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 41
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
IOS XR Overview<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 42
IOS XR Characteristics<br />
� Pre-emptive multi-tasking, multi-threaded<br />
� Virtual Memory<br />
Each process owns its own protected address space<br />
� Message passing between processes<br />
� Multiple Instances<br />
� Distributed processing<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 43
IOS XR Architecture — Physical View<br />
R Ps<br />
D<br />
R P<br />
RP/DRP<br />
Mgmt Interfaces Security Performance<br />
Unicast/Multicast Policy GMPLS<br />
LPTS IM RIB Sysdb LR G<strong>SP</strong><br />
Kernel and Kernel Services<br />
Netflow Performance<br />
Platform Svcs APS/IPS IP IO L2<br />
IM<br />
Diagnostics Stats Mgr<br />
Alarm Mgr<br />
FABRIC CARD<br />
LINE CARD<br />
G<strong>SP</strong> Sysdb FIB Svcs<br />
Kernel and Kernel Services<br />
FGID<br />
Kernel and Infrastructure<br />
LPTS<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
� Each node (RP, line card,<br />
shelf controller, fabric card<br />
runs an independent copy of<br />
Kernel and Infrastructure<br />
services<br />
� Processes and directory<br />
structure is unique to each<br />
node<br />
� To show processes you must<br />
use the location keyword<br />
show process location R/S/M<br />
� Same is true for files<br />
44
IOS XR HA Software Design Principles<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
45
LPTS – Illustration<br />
� DCoPP is an automatic, built in firewall for<br />
control plane traffic.<br />
� Every Control and Management packet from<br />
the line card is rate limited in hardware to<br />
provide flood protection to the RP.<br />
LC 1 IFIB TCAM HW Entries<br />
Local Port Remote Port Rate Priority<br />
Any ICMP Any Any 1000 low<br />
Any 179 Any Any 100 medium<br />
Any 179 202.4.48.99 Any 1000 medium<br />
202.4.48.1 179 202.4.48.99 2223 10000 medium<br />
200.200.0.2 13232 200.200.48.99 55 100 medium<br />
LC 2 IFIB TCAM HW Entries …<br />
ttl<br />
255<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
LPTS<br />
router bgp<br />
neighbor 202.4.48.99<br />
…ttl_security<br />
!<br />
mpls ldp<br />
…<br />
!<br />
Socket<br />
BGP<br />
LDP<br />
SSH<br />
TCP Handshake<br />
46
IOS XR Software Packages<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
47
Show < > Trace Commands<br />
� Many major functions proactively save some debugging<br />
information<br />
– a form of always–on debug<br />
– reduces the effort of reproducing the problem with debugging<br />
enabled<br />
– Stored circular buffer in shared memory so has limited history in very<br />
active processes<br />
� Show Command keyword trace<br />
– When troubleshooting use the ―?‖ to see if trace is available<br />
– tailf option follows the tail of the file for new entries<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
48
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Troubleshooting Section<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 49
Incident 1 – IOS XR <strong>Operations</strong><br />
Sample Incident<br />
Device X should be generating syslog<br />
messages as follows. Determine why<br />
these syslogs are not seen:<br />
20% remaining memory threshold is reached --- Minor Alarm<br />
10% remaining memory threshold is reached --- Severe Alarm<br />
5% remaining memory threshold is reached --- Critical Alarm<br />
This question is referring to a device<br />
in your lab running IOS XR.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
50
Incident 1 – IOS XR <strong>Operations</strong><br />
Making Sense Out of the Incident<br />
20% remaining memory threshold is reached --- Minor Alarm<br />
10% remaining memory threshold is reached --- Severe Alarm<br />
5% remaining memory threshold is reached --- Critical Alarm<br />
� Not memorizing commands<br />
� <strong>The</strong> question mark is not the answer<br />
� Think architecture of IOS XR<br />
– How is IOS XR different from IOS?<br />
– What are the processes of IOS XR?<br />
HINT!!!<br />
Since this is an IOS XR device there is a good<br />
chance there is an easy IOS XR specific answer.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
51
Incident 1 – IOS XR <strong>Operations</strong><br />
IOS XR Essentials<br />
BGB<br />
RIP<br />
Control Plane Data Plane Management Plane<br />
Control Plane Data Plane Management Plane<br />
Control Plane Data Plane Management Plane<br />
ISIS<br />
O<strong>SP</strong>F<br />
RS VP<br />
PIM<br />
IGMP<br />
RIB<br />
L2 Drivers<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
ACL<br />
FIB<br />
QoS<br />
Checkpoint DB Multicast IPC System DB*<br />
Scheduler<br />
Distributed Subsystems/Processes<br />
Distributed Infrastructure<br />
Synch. Services<br />
LPTS<br />
Host Service<br />
PFI<br />
IPC Mech<br />
Lightweight Micro Kernel<br />
Kernel System Services<br />
Interface<br />
CLI<br />
SNMP<br />
XML<br />
Netflow<br />
Memory Mgmt<br />
Alarm<br />
Per.fMgmt<br />
SSH<br />
SSH<br />
SSH<br />
52
Incident 1 – IOS XR <strong>Operations</strong><br />
Process Control<br />
� Priority Range [ 0 – 63].<br />
– 0 = idle; 63 = highest<br />
– Routing protocols = 10<br />
– Mission critical > 10<br />
– Preemptive Multitasking<br />
� 64 ready queues per priority.<br />
� Threads are queued in FIFO<br />
per priority.<br />
� What about high priority<br />
process hogs?<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
53
Incident 1 – IOS XR <strong>Operations</strong><br />
Need for a Watchdog<br />
Monitored resource<br />
Persistent CPU Hog<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
Action<br />
Minor Severe<br />
CPU Hog Restart the process except for persistent hog<br />
Memory depletion<br />
Disk Space<br />
Deadlock detection<br />
OOR Process<br />
Notification<br />
Syslog message<br />
OOR notification and kill<br />
processes<br />
Syslog message, Kill the processes involved<br />
Kernel Threads Reset the Node<br />
Shared memory Syslog providing the top 10 users of shared memory<br />
File descriptors syslog Kill process<br />
Environment<br />
After 20 secs, log a msg and reset the node after 30 sec<br />
QNET transport Restart qnet<br />
Adjust fan speed and reset the node if too high<br />
54
Incident 1 – IOS XR <strong>Operations</strong><br />
Watchdog threads<br />
RP/0/RP1/CPU0:CRS1#show process<br />
JID TID Stack pri state TimeInState HR:MM:SS:MSEC NAME<br />
89 2 40K 63 Nanosleep 0:00:00:0445 0:00:00:0014 wd-critical-mon<br />
89 3 40K 11 Nanosleep 0:00:00:0053 0:00:00:0122 wd-critical-mon<br />
89 4 40K 10 Nanosleep 0:00:00:0000 0:00:01:0149 wd-critical-mon<br />
59 1 56K 10 Receive 0:00:00:0013 0:01:35:0296 dllmgr<br />
59 2 56K 10 Nanosleep 0:00:59:0106 0:00:01:0231 dllmgr<br />
59 3 56K 10 Receive 0:01:21:0202 0:00:12:0012 dllmgr<br />
59 4 56K 10 Receive 2:53:02:0892 0:00:51:0269 dllmgr<br />
59 5 56K 10 Receive 1:18:34:0182 0:00:48:0595 dllmgr<br />
383 1 72K 10 Receive 1:52:58:0538 0:05:01:0249 qsm<br />
383 4 72K 10 Receive 2172:47:52:0115 0:00:00:0004 qsm<br />
383 5 72K 10 Receive 0:00:59:0302 0:00:00:0055 qsm<br />
383 7 72K 10 Nanosleep 0:00:00:0135 0:00:02:0849 qsm<br />
383 9 72K 10 Receive 1571:23:06:0745 0:01:25:0622 qsm<br />
383 10 72K 10 Receive 0:00:00:0415 0:03:50:0668 qsm<br />
159 1 20K 10 Receive 0:00:59:0218 0:00:00:0063 chkpt_proxy<br />
79 1 48K 10 Receive 0:00:00:0017 0:00:07:0670 pkgfs<br />
79 2 48K 10 Sigwaitinfo 2172:50:11:0223<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
55
Incident 1 – IOS XR <strong>Operations</strong><br />
Now the Question Mark is Useful<br />
RP/0/RP1/CPU0:host(config)#watchdog ?<br />
monitor Watchdog monitor configurations<br />
restart Watchdog restart configurations<br />
threshold Watchdog threshold configuration<br />
RP/0/RP1/CPU0:host(config)#watchdog threshold memory location<br />
0/0/cpu0 minor 20 severe 10 critical 5<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
56
Incident 2 – <strong>SP</strong> Core Optimization<br />
Sample Incident<br />
<strong>The</strong> current implementation makes the RIB on the<br />
BGP route-reflector is too large. Ensure BGP<br />
learned prefixes do not enter the RIB.<br />
BGP RR Client<br />
Must See Prefixes<br />
from 7600-2<br />
7600-1<br />
PE<br />
iBGP<br />
XR12000<br />
RR<br />
no iBGP<br />
iBGP<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
BGP Route Reflector<br />
Do not install BGP<br />
learned prefixes into<br />
Routing Table<br />
BGP RR Client<br />
Advertising network prefixes<br />
10.11.1.1/32<br />
10.22.1.1/32<br />
10.33.1.1/32<br />
10.44.1.1/32<br />
7600-2<br />
PE<br />
10.55.1.1/32<br />
10.66.1.1/32<br />
57
Incident 2 – <strong>SP</strong> Core Optimization<br />
Making Sense Out of the Incident<br />
<strong>The</strong> BGP Route Reflector is not in the data path. To save on processing and<br />
memory, BGP prefixes should not be installed in the RIB.<br />
BGP RR Client<br />
Must See Prefixes<br />
from 7600-2<br />
7600-1<br />
PE<br />
iBGP<br />
XR12000<br />
RR<br />
no iBGP<br />
BGP Route Reflector<br />
Do not install BGP<br />
learned prefixes into<br />
Routing Table<br />
iBGP<br />
How do we prevent the RR from installing the routes into the RIB?<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
BGP RR Client<br />
Advertising network prefixes<br />
10.11.1.1/32<br />
10.22.1.1/32<br />
10.33.1.1/32<br />
10.44.1.1/32<br />
7600-2<br />
PE<br />
10.55.1.1/32<br />
10.66.1.1/32<br />
A common way of filtering routes is via a policy… route-policy?<br />
We need a policy to prevent installing BGP prefixes into the routing<br />
table… a table-policy.<br />
58
Incident 2 – <strong>SP</strong> Core Optimization<br />
What do We Currently Have on the RR?<br />
router bgp 65000<br />
bgp router-id 192.168.254.2<br />
address-family ipv4 unicast<br />
!<br />
neighbor-group iBGP<br />
remote-as 65000<br />
address-family ipv4 unicast<br />
route-reflector-client<br />
!<br />
!<br />
neighbor 192.168.253.1<br />
use neighbor-group iBGP<br />
update-source Loopback0<br />
!<br />
neighbor 192.168.253.2<br />
use neighbor-group iBGP<br />
update-source Loopback0<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
59
Incident 2 – <strong>SP</strong> Core Optimization<br />
What Do the Tables Look Like?<br />
XR12000-RR#show route bgp<br />
B 10.11.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
B 10.22.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
B 10.33.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
B 10.44.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
B 10.55.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
B 10.66.1.1/32 [200/0] via 192.168.253.2, 00:29:52<br />
7600-1-PE#show ip route bgp<br />
B 10.11.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.22.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.33.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.44.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.55.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.66.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
60
Incident 2 – <strong>SP</strong> Core Optimization<br />
Trial and Error OR Documentation<br />
� Route-policy applied to a neighbor?<br />
� Route-policy language (RPL)?<br />
� Wait, this is an XR device… a one-liner macro?<br />
� <strong>Cisco</strong> Documentation …<br />
http://www.cisco.com/cisco/web/psa/default.html?mode=prod<br />
� Search IOS XR > Configuration Guides > Routing guide<br />
for XR12000 3.9 > BGP > route-reflector … at minimum<br />
you harden your understanding of how a RR operates …<br />
we‘re on the right page.<br />
� Search the page for forwarding or routing or table or<br />
policy or RIB or install.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
61
Incident 2 – <strong>SP</strong> Core Optimization<br />
Jackpot!!!<br />
Table Policy<br />
<strong>The</strong> table policy feature in BGP allows you to configure traffic<br />
index values on routes as they are installed in the global routing<br />
table. This feature is enabled using the table-policy command<br />
and supports the BGP policy accounting feature.<br />
Table policy also provides the ability to drop routes from the RIB<br />
based on match criteria. This feature can be useful in certain<br />
applications and should be used with caution as it can easily<br />
create a routing ‗black hole‘ where BGP advertises routes to<br />
neighbors that BGP does not install in its global routing table<br />
and forwarding table.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
62
Incident 2 – <strong>SP</strong> Core Optimzation<br />
Updating the Config on the RR?<br />
route-policy No_BGP_Routes<br />
drop<br />
end-policy<br />
router bgp 65000<br />
bgp router-id 192.168.254.2<br />
address-family ipv4 unicast<br />
table-policy No_BGP_Routes<br />
!<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
63
Incident 2 – <strong>SP</strong> Core Optimization<br />
Question Answered<br />
XR12000-RR#show bgp<br />
Network Next Hop Metric LocPrf Weight Path<br />
*>i10.11.1.1/32 192.168.253.2 0 100 0 i<br />
*>i10.22.1.1/32 192.168.253.2 0 100 0 i<br />
*>i10.33.1.1/32 192.168.253.2 0 100 0 i<br />
*>i10.44.1.1/32 192.168.253.2 0 100 0 i<br />
*>i10.55.1.1/32 192.168.253.2 0 100 0 i<br />
*>i10.66.1.1/32 192.168.253.2 0 100 0 i<br />
XR12000-RR#show route bgp<br />
% No matching routes found<br />
7600-1-PE#show ip route bgp<br />
B 10.11.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.22.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.33.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.44.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.55.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
B 10.66.1.1/32 [200/0] via 192.168.253.2, 00:29:46<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
64
<strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong><br />
Preparation<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 65
Exam Tips<br />
� Use the Blueprint and Checklist on CLN to determine your experience and<br />
knowledge level in the major topic areas:<br />
Blueprint: https://learningnetwork.cisco.com/docs/DOC-6592<br />
Checklist: https://learningnetwork.cisco.com/docs/DOC-9705<br />
� For areas of strength: practice for speed.<br />
� For weaker areas: boost knowledge with preparation resources, then practice.<br />
Note the reading list materials are suggestions only.<br />
� Read extensively and do not try to prepare for the Written and Practical<br />
exams at the same time. Pass the Written exam then start preparing for the<br />
Practical exam.<br />
� You can use the CCNP <strong>SP</strong> <strong>Operations</strong> as a starting point to confirm your<br />
body of knowledge required for the <strong>CCIE</strong>, but do not limit your study to the<br />
material for the Professional certification.<br />
� Beware of rumors!<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
66
Preparation Resources<br />
� Training<br />
O<strong>SP</strong>F, IS-IS & BGP: Advanced Services:<strong>Cisco</strong> IOS XR Software Version 3.4.0 IPv4<br />
Routing (XIPV4R)(TRN-XIPV4R - 1.0)<br />
IPv6, O<strong>SP</strong>Fv3 & EIGRPv6: Advanced Services: <strong>Cisco</strong> IOS XR IPv6 Routing for<br />
Service Providers (XIPV6R)(TRN-XIPV6R - 3.5.2)<br />
IOS-XR:<br />
Advanced Services: <strong>Cisco</strong> IOS XR Software Fundamentals for Network <strong>Operations</strong>(TRN-<br />
XRFUND - 1)<br />
Deploy, Maintain, & Troubleshoot <strong>Cisco</strong> IOS XR Software on the <strong>Cisco</strong> CRS & <strong>Cisco</strong> XR<br />
12000 Router (TRN-CRS12 - 1.0)<br />
� White papers<br />
Multicast: SSM, PIM-SM, MSDP, BSR, IPv6 multicast: IP Multicast<br />
Technical Overview<br />
uRPF: Understanding Unicast Reverse Path Forwarding<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
67
Preparation Resources (Cont.)<br />
<strong>Cisco</strong> Press Books<br />
BGP:<br />
Internet Routing Architectures, 2nd Edition<br />
<strong>Cisco</strong> BGP-4 Command and Configuration<br />
Handbook<br />
BGP Design and Implementation<br />
High Availability (HA):<br />
High Availability Network Fundamentals<br />
IOS XR:<br />
<strong>Cisco</strong> IOS XR Fundamentals<br />
IS IS:<br />
IS-IS Network Design Solutions<br />
L2VPN (VPWS and VPLS):<br />
Layer 2 VPN Architectures<br />
Troubleshooting Virtual Private Networks (VPN)<br />
L3VPN:<br />
Comparing, Designing, and Deploying VPNs<br />
MPLS & Traffic Engineering:<br />
Traffic Engineering with MPLS<br />
Advanced MPLS Design and Implementation<br />
Building MPLS-Based Broadband Access VPNs<br />
Definitive MPLS Network Designs<br />
MPLS and VPN Architectures<br />
MPLS and VPN Architectures, Volume II<br />
Multicast - SSM, PIM-SM, MSDP, BSR, IPv6<br />
multicast:<br />
Interdomain Multicast Solutions Guide<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
Network attacks, Layers 2 and 3 infraestructure<br />
security, NAT:<br />
Network Security Technologies and Solutions (<strong>CCIE</strong><br />
Professional Development Series)<br />
MPLS VPN Security<br />
<strong>Cisco</strong> Access Control Security: AAA Administration<br />
Services<br />
<strong>Cisco</strong> Network Security Troubleshooting Handbook<br />
Network Security Architectures<br />
Router Security Strategies: Securing IP Network<br />
Traffic Planes<br />
Designing Network Security, 2nd Edition<br />
Network Security Principles and Practices (<strong>CCIE</strong><br />
Professional Development)<br />
Network Management:<br />
Network Management Fundamentals<br />
Accounting and Performance Strategies<br />
O<strong>SP</strong>F:<br />
<strong>Cisco</strong> O<strong>SP</strong>F Command and Configuration<br />
Handbook<br />
Troubleshooting IP Routing Protocols (<strong>CCIE</strong><br />
Professional Development Series)<br />
QoS: MQC, Netflow, IP SLA, NBAR (IOS):<br />
End-to-End QoS Network Design: Quality of Service<br />
in LANs, WANs, and VPNs<br />
IP Quality of Service
Preparation Resources (Cont.)<br />
ITIL®v3 Core Service Management<br />
ITIL Lifecycle Publication Suite Books<br />
author: Office of Government Commerce<br />
ISBN-10: 9780113310500<br />
ISBN-13: 978-0113310500<br />
• Service Strategy<br />
• Service Design<br />
• Service <strong>Operations</strong><br />
• Service Transitions<br />
• Continual Service Improvements<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public
Other Resources<br />
� <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> on <strong>Cisco</strong> <strong>Learning</strong> Network<br />
https://learningnetwork.cisco.com/community/certifications/ccie_sp_operations<br />
� <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> Study Group<br />
https://learningnetwork.cisco.com/groups<br />
� <strong>Cisco</strong> Product Pages (former <strong>Cisco</strong> Documentation CD)<br />
http://www.cisco.com/web/psa/products/index.html<br />
� <strong>CCIE</strong> Customer support and FAQ<br />
http://www.cisco.com/go/certsupport<br />
� <strong>Cisco</strong> Press<br />
http://www.ciscopress.com<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
70
Q&A<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 71
Complete Your Online<br />
Session Evaluation<br />
� Receive 25 <strong>Cisco</strong> Preferred Access points for each session<br />
evaluation you complete.<br />
� Give us your feedback and you could win fabulous prizes. Points are<br />
calculated on a daily basis. Winners will be notified by email after<br />
July 22nd.<br />
� Complete your session evaluation online now (open a browser<br />
through our wireless network to access our portal) or visit one of the<br />
Internet stations throughout the Convention Center.<br />
� Don‘t forget to activate your <strong>Cisco</strong> Live and Networkers Virtual<br />
account for access to all session materials, communities, and ondemand<br />
and live activities throughout the year. Activate your account<br />
at any internet station or visit www.ciscolivevirtual.com.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 72
Visit the <strong>Cisco</strong> Store for<br />
Related Titles<br />
http://theciscostores.com<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 73
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public
Thank you.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public
Backup Slides<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public 76
Current <strong>CCIE</strong> Certifications<br />
� <strong>CCIE</strong> R&S: Configure and troubleshoot complex converged networks<br />
� <strong>CCIE</strong> Security: Configure complex, end-to-end secure networks, troubleshoot environments,<br />
and anticipate and respond to network attacks<br />
� <strong>CCIE</strong> Service Provider: Configure and troubleshoot advanced technologies to support<br />
service provider networks<br />
� <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong>: Troubleshoot and maintain complex service provider IP NGN<br />
core, validate knowledge of operations management processes and NMSs.<br />
� <strong>CCIE</strong> Storage: Configure and troubleshoot<br />
storage area networks over a variety of<br />
interfaces<br />
� <strong>CCIE</strong> Voice: Configure complex, end-to-end<br />
telephony, as well as network, troubleshoot,<br />
<strong>CCIE</strong><br />
and resolve VoIP-related problems<br />
� <strong>CCIE</strong> Wireless: Plan, design, implement, operate,<br />
and troubleshoot wireless network and mobility<br />
infrastructure<br />
CCNP<br />
www.cisco.com/go/learnnetspace<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
CCNA<br />
CCENT<br />
77
<strong>CCIE</strong> Exam Development Process<br />
� Goal is to ensure exam content is realistic and relevant.<br />
� <strong>Cisco</strong> Business Units<br />
� <strong>Cisco</strong> Technology groups<br />
� <strong>Cisco</strong> Subject Matter Experts<br />
� <strong>Cisco</strong> Technical Support<br />
teams (TAC, AS, ..)<br />
� Customer Advisory Boards<br />
� Customer Focus Groups<br />
� Customer and <strong>Cisco</strong> field<br />
surveys (Marketing)<br />
Input<br />
<strong>CCIE</strong> Written and Practical Blueprint<br />
<strong>CCIE</strong><br />
Product<br />
Manager<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
Feedback<br />
CAG (Content<br />
Advisory Group)<br />
<strong>CCIE</strong> Team<br />
Exams<br />
78
Certification Process – Step 1: Written Exam<br />
350-060<br />
� Pre-requisite to <strong>CCIE</strong> <strong>SP</strong> <strong>Operations</strong> practical; recertification.<br />
� Two-hour exam with 90-110 multiple-choice and drag&drop questions.<br />
� Skipping questions or going back previously answered questions is not allowed.<br />
� Available worldwide at Pearson VUE for $350 USD, adjusted for exchange rate<br />
and local taxes where applicable.<br />
� Closed book; no outside reference materials allowed.<br />
� Pass/fail results available immediately; passing score set by statistical analysis<br />
and subject to periodic change.<br />
� Candidates must wait a period of five days before retaking a failed exam.<br />
� Candidates who pass a <strong>CCIE</strong> Written exam must wait a minimum of six months<br />
before taking the same exam number.<br />
� Must take first Practical exam attempt within 18 months of passing written, or<br />
Written exam expires.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
79
Certification Process – Step 2: Practical<br />
Exam<br />
� Proctors complete grading of the exam and submits the final score within 48<br />
hours.<br />
� Pass/fail results can be viewed online within 48 hours; passing score set by<br />
statistical analysis and subject to periodic change. Failing score reports<br />
indicate broad areas where additional study may be useful.<br />
� Waiting period of 30 days to retake a failed practical exam.<br />
� <strong>Cisco</strong> online documentation available via <strong>Cisco</strong> Web; no materials of any<br />
kind allowed in lab.<br />
� Available in select <strong>Cisco</strong> locations for $1,400 USD, not including travel and<br />
lodging.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
80
Rack Connection Method<br />
Candidate PC<br />
Ethernet<br />
Comm Server<br />
� <strong>The</strong> Comm Server and all Troubleshooting equipment are preconfigured<br />
� <strong>The</strong> Troubleshooting section is presented online, and all devices are<br />
accessible by clicking on them from the main topology<br />
� Calculator and Notepad are also available from the Candidate PC<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
Troubleshooting<br />
Equipment<br />
81
Scenario Section Tips<br />
� Remember that you cannot go back to a previously answered<br />
Scenario question.<br />
� Always refer to the reference documents to respond the questions, as<br />
this section is situation-based.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
82
Troubleshooting Section Tips<br />
� Know how to navigate the <strong>Cisco</strong> documentation CD inside out. Do not rely on the search feature.<br />
� Review and practice core material to ensure on the exam day you can move quickly through the less<br />
challenging questions. Practice break and fix. Learn show and debug commands on both IOS and<br />
IOS-XR.<br />
� Go beyond the basics, practice additional features. If a topic has multiple ways to be configured<br />
practice all of them, as specific requirements and restrictions will be laid out.<br />
� Read the entire Troubleshooting section for crucial information with regards to passwords, do‘s and<br />
don‘ts in the exam. Do not assume requirements which are not mentioned in an incident.<br />
� Do not skip any details and start on the incidents in the order they are provided as much as possible.<br />
� Do each incident as a unit, but do not forget that a fix implemented earlier may either "break" the<br />
network as you progress with your troubleshooting, or enable a fix to be implemented later.<br />
� During the exam, make notes on configurations and settings as you move through, and keep a list of<br />
items you have not been able to address or where you have not achieved the desired result which<br />
you will need to revisit.<br />
� If you are caught off-guard by an unfamiliar topic do not let it absorb too much time. Work on the<br />
things you are more comfortable with and go back to difficult items later. Do not make any drastic<br />
changes in the last half hour.<br />
� Save your configurations often.<br />
� <strong>The</strong>re is no partial marking, you only get credit for working solutions.<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public<br />
83
Troubleshooting Section: Lab Equipment<br />
and Images<br />
<strong>The</strong> Troubleshooting section tests any feature that can be configured<br />
on the equipment and the versions indicated on the <strong>CCIE</strong> web page.<br />
You may see more recent versions installed in the lab, but you will not<br />
be tested on the new features of a release unless indicated below.<br />
� <strong>Cisco</strong> ME-C3750 series switches – IOS 12.2 Mainline - METRO C3750 EMI<br />
CRYPTO IMAGE<br />
� <strong>Cisco</strong> 7201 series routers – IOS 12.2 SRE Train and IOS 12.4 T Train - <strong>SP</strong><br />
SERVICES<br />
� <strong>Cisco</strong> 7603 series routers – IOS 12.2 SRE Train – ADVANCED IP SERVICES<br />
� <strong>Cisco</strong> ASR-1002 series routers - IOS-XE Release 3.2 - RP1 ADVANCED IP<br />
SERVICES<br />
� <strong>Cisco</strong> XR-12000/4 & XR-12000/10 series routers – IOS XR 3.9<br />
� <strong>Cisco</strong> ASR-9006 series routers – IOS XR 3.9<br />
BRK<strong>CCIE</strong>-<strong>4200</strong> © 2011 <strong>Cisco</strong> and/or its affiliates. All rights reserved. <strong>Cisco</strong> Public