- Maintenance of your network is fundamental to protect assets and to ensure seamless operations. The environment is growing more complex with operations conducted over VPNs, wireless, remote access and the Internet. You need proven experts to choose, implement and maintain the solutions required.
- Having certified staff can increase the confidence of your customers, investors and business partners, and thereby boost your organization’s credibility, reputation and value.
- Certified CCIEs are a highly-select group. Less than 3% of all Cisco certified individuals make it to the CCIE level, a tiny fraction of IT professionals worldwide.
- Passing the exams is not easy. Earning your CCIE requires passing a lab exam in a time pressured environment. Hands-on experience is the only way to prepare for the lab.
- CCIEs have invested a lot to expand their knowledge and further their careers. The average candidate spends thousands of their own dollars and at least 18 months pursuing certification. He or she will attempt the lab exam more than once before passing.
- CCIEs are committed to maintaining their expert skills. Keeping their status active requires passing a recertification exam every two years.
Wednesday, August 27, 2008
Why you should hire a CCIE
Tuesday, August 26, 2008
CCIE labs changing from UniversCD to Cisco Documentation
On Sept 24 2008 CCIE labs will no longer support using the UniversCD documentation for the lab exam.
All labs are migrating to Cisco Documentation only. For those scheduled to take the CCIE lab prior to Sept 24 access will still be available for UniversCD.
The Cisco Documentation pages have the same information that currently resides on UniversCD, please refer to the links on the CCIE web pages to view these pages and become familiar with the new format.
After Sept 24 2008 only the Cisco Documentation web pages will be available for CCIE labs.
http://cisco.com/web/psa/products/tsd_products_support_configure.html
Thursday, August 21, 2008
Cacti, the complete traffic monitoring
I've been using it for almost 2 years and it's really great tools for traffic monitoring.
I installed on Fedoara core 6 and after installation, i dont need to touch any configuration.
Just using web administration and add/remove devices to monitor.
Comapre to MRTG, it has SQL database inside and can store history data and its good for reporting.
Because of php frontend, its slighter longer than to view simple html on MRTG.
Build in user management and authentication features, I can easily specify use level, graph levels and permission
which are not so easy to do with MRTG and Apache.
The graph trees also useful for collecting groups of interfaces/devices under the same link.
The plug-in architecture will complete you more with lots of features.
I found 1 post in forum and list all the plug-in
http://forums.cacti.net/post-72427.html
can downloads those inside this.
http://cactiusers.org/downloads/
If you dont want to read about intallation and just want to use cacti, CactiEz is the right thing.
It comes with OS and just install OS by bootable CD. Once complte, can start to use cacti.
more details
http://www.cacti.net/
Installation notes/ manual
http://www.cacti.net/documentation.php
http://docs.cacti.net/
Installation notes on Ubuntu
https://help.ubuntu.com/community/Cacti?action=show&redirect=CactiHowTo
CAR configuration example.
In/Out rate-limiting (limit 15MB out of 45MB)
interface Hssi0/0/0
description 45Mbps to R1
rate-limit input 15000000 2812500 2812500 conform-action transmit exceed-action drop
rate-limit output 15000000 2812500 2812500 conform-action transmit exceed-action drop
Ratelimit by access list
access-list 101 permit tcp any any eq www
access-list 102 permit tcp any any eq ftp
interface Hssi0/0/0
description 45Mbps to R2
rate-limit output access-group 101 20000000 3750000 7500000 conform-action set-prec-
transmit 5 exceed-action set-prec-transmit 0
rate-limit output access-group 102 10000000 1875000 3750000 conform-action
set-prec-transmit 5 exceed-action drop
rate-limit output 8000000 1500000 3000000 conform-action set-prec-transmit 5
exceed-action drop
interface Hssi0/0/0
description 45Mbps to R1
rate-limit input 15000000 2812500 2812500 conform-action transmit exceed-action drop
rate-limit output 15000000 2812500 2812500 conform-action transmit exceed-action drop
Ratelimit by access list
access-list 101 permit tcp any any eq www
access-list 102 permit tcp any any eq ftp
interface Hssi0/0/0
description 45Mbps to R2
rate-limit output access-group 101 20000000 3750000 7500000 conform-action set-prec-
transmit 5 exceed-action set-prec-transmit 0
rate-limit output access-group 102 10000000 1875000 3750000 conform-action
set-prec-transmit 5 exceed-action drop
rate-limit output 8000000 1500000 3000000 conform-action set-prec-transmit 5
exceed-action drop
NBAR using MQC (sample from cisco)
must enable cef
ip cef
define class
class-map
define policy
policy-map
Apply the service policy
service-policy
Router# configure terminal
Router(config)# class-map cmap1
Router(config-cmap)# match protocol citrix
Router# configure terminal
Router(config)# policy-map policy1
Router(config-pmap)# class class1
Router(config-pmap-c)# bandwidth percent 50
Router# configure terminal
Router(config)# interface ethernet 2/4
Router(config-if)# service-policy input policy1
ip cef
define class
class-map
define policy
policy-map
Apply the service policy
service-policy
Router# configure terminal
Router(config)# class-map cmap1
Router(config-cmap)# match protocol citrix
Router# configure terminal
Router(config)# policy-map policy1
Router(config-pmap)# class class1
Router(config-pmap-c)# bandwidth percent 50
Router# configure terminal
Router(config)# interface ethernet 2/4
Router(config-if)# service-policy input policy1
Monday, August 18, 2008
Done featuers rich BGP
Hard week to finish features rich BGP LABS. will have to practice some more labs from other work book.
Need to memorize regular expression for route filtering with regexp.
so far only remember :P
.
^
_
+
$
( )
Need to memorize regular expression for route filtering with regexp.
so far only remember :P
.
^
_
+
$
( )
Thursday, August 7, 2008
bgp regexp deterministic
Short notes from cisco
The default Cisco IOS regular expression engine uses a recursive algorithm.
This engine is effective but uses more system resources as the complexity of regular expressions increase.
In some cases, CPU watchdog timeouts and stack overflow traces have occurred because of the length of time that the default engine requires to process very complex regular expressions.
The Regex Engine Performance Enhancement feature introduces a deterministic processing time regular expression engine in Cisco IOS software.
if you need to evaluate complex regular expressions or if you have observed problems related to evaluating regular expressions, recommanded use new regular expression engine.
Steps to do,
- enable BGP
- bgp regexp deterministic
Router> enable
Router# configure terminal
Router(config)# router bgp 1
Router(config-router)#bgp regexp deterministic
more
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t4/feature/guide/gt_rexpe.html
The default Cisco IOS regular expression engine uses a recursive algorithm.
This engine is effective but uses more system resources as the complexity of regular expressions increase.
In some cases, CPU watchdog timeouts and stack overflow traces have occurred because of the length of time that the default engine requires to process very complex regular expressions.
The Regex Engine Performance Enhancement feature introduces a deterministic processing time regular expression engine in Cisco IOS software.
if you need to evaluate complex regular expressions or if you have observed problems related to evaluating regular expressions, recommanded use new regular expression engine.
Steps to do,
- enable BGP
- bgp regexp deterministic
Router> enable
Router# configure terminal
Router(config)# router bgp 1
Router(config-router)#bgp regexp deterministic
more
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t4/feature/guide/gt_rexpe.html
Subscribe to:
Posts (Atom)
