routeprotocol.com

CCNP Enterprise Core (350-401)

  • NFV Instructure

    NFV Instructure (NFVI) is all the hardware and software components that form part of the platform environment where virtual network functions (VNFs) are deployed

  • Network Functions Virtualisation

    Network Functions Virtualisation (NFV) is an architectural framework created by the European Telecommunications Standards Institute (ETSI) It defines standards to decouple network functions from proprietary hardware-based appliances and have them ran in software instead on standard servers. It defines how to manage and orchestrate the network functions. Network function refers to a function performance by…

  • Virtual Switching

    A virtual switch, or vSwitch, is a software based Layer-2 switch that operates like a physical ethernet switch. A vSwitch allows virtual machines to communicate with each other within a virtual network and with external physical networks through the physical network interface cards (pNICs). Multiple vSwitches can be created under a virtualised server but network…

  • Containers

    A container is an isolated environment where a containerised application runs. A container contains the application with the dependencies the application needs to run. Even though they have many similarities to virtual machines, containers are not the same as virtual machines. A virtual machine requires an operating system, but all containers share the same operating…

  • Virtual Machines

    A virtual machine (VM) is a software emulation of a physical server with an operating system. From the applications point of view, the virtual machine provides the look and feel of a real physical machine including all its hardware components. The virtualisation software that creates the VMs and performs the hardware virtualisation is known as…

  • Virtualisation

    One of the main drivers for server virtualisation was server hardware was being underutilised. Physical servers were running a single operating system with a single application and using very little CPU. VMs and containers increase this overall efficiency and cost-effectiveness of a server by maximising the use of available resources.

  • Cisco Device Hardening

    Disable Topology Discovery Tools Tools such as Cisco Discovery Protocol and Link Layer Discovery Protocol can provide unnecessary information to devices outside of your control. Disable the services on these interfaces with the commands no cdp enable, no lldp transmit, and no lldp receive Disable TCP and UDP Small Services The commands service tcp-keepalive-in and…

  • Verifying Control Plane Policing Policy (CoPP)

    When a control plane policing policy is applied to the control plane, it needs to be verified to ensure that it is not dropping packets when it shouldn’t. The command show policy-map control-plane input will give statistics on the packets that have conformed, exceeded, or violated the policies put in place.

  • Applying a Control Plane Policing Policy (CoPP) Map

    Any created control plane policing policy maps need to be applied to the control plane. control-plane service-policy input POLICY-CoPP

  • Configuring a Policy Map to be used in Control Plane Policing Policy (CoPP)

    The policy map will show how to police traffic at a given rate to minimise any ability to try overload the router. Finding the correct rate without overloading the network can be a difficult task. To try ensure that CoPP will not introduce issues, the violate action should be set to transmit for all the…