Index
Symbols
:: (double colon), 531
Numbers
2-way state (OSPF), 453-454, 457
2.4-GHz band, 626
5-GHz band, 626
10GBASE-T, 37
ESS, 618
IBSS, 619
WLAN, 614
802.1Q, 182
802.1x, EAP integration, 658
1000BASE-LX, 37
A
AAA (Authentication, Authorization, and Accounting) servers, 136
abbreviating IPv6 addresses, 531-532
ABR (Area Border Routers), 460-461
access
protected credentials, 659
access interfaces, 185
access points. See AP
access switches, 241
ad hoc wireless networks. See IBSS
addresses
BIA, 52
calculating hosts and subnets in networks, 313-315
classless versus classful addressing, 312-313
exhaustion, 525
experimental, 290
group addresses, 51
host addresses, 293
IPv4 addresses. See individual entry
IPv6 addresses. See individual entry
LAN addresses, 52
loopback address, 295
MAC addresses, 50-52, 111-114, 117-124, 218
multicast addresses, 50-52, 290
NAT, 277
network broadcast addresses, 293-295
NIC addresses, 52
private addresses, 542
public addresses, 542
range of subnet addresses, finding, 331
sender MAC, 661
subnet addresses, 272, 283, 324-327, 334-338
unicast addresses, 50-52, 290, 322
universal addresses, 51
adjacencies (OSPF neighbors), troubleshooting, 510-516
adjacent-layer interaction, 21-22
adjacent neighbors, 457
administrative distance, 382-383, 448-449, 594-595
administrative mode, trunking, 191
administratively shutdown interfaces, 217
AES (Advanced Encryption Standard), 661
aging MAC address tables, 121-122
algorithms
AES, 661
CSMA/CD, 55
Dijkstra SPF, 451
IGP routing protocol algorithm, 445
key mixing, 661
RC4 cipher, 657
STA, 216
anycast addresses (IPv6), 574-576
AP (Access Points), 35, 614, 629
authentication, 654
Bridge mode, 647
BSSID, 615
cloud-based AP architectures, 636-637
ESS, 618
fake, 654
Flex+Bridge mode, 647
FlexConnect mode, 647
IBSS, 619
Local mode, 647
management interface, 674
Monitor mode, 647
multiple SSID, supporting, 617
noninfrastructure modes, 620-622
passing through, 615
roaming, 618
Rogue Detector mode, 647
SE Connect mode, 647
Sniffer mode, 647
SSID, 615
VLAN, 668
application layer (TCP/IP), 19-20
architectures
cloud-based
WLC deployments, 643
networking, 16
ARIN (American Registry for Internet Numbers), 445
ARP (Address Resolution Protocol), 72, 77, 378-379
AS (Authentication Servers), 658
AS (Autonomous Systems), 444-445
ASN (AS Numbers), 445
assigning
IPv6 addresses to hosts, 550
IPv6 subnets to internetwork topology, 549
subnets to different locations, 285
authentication. See also security
AP, 654
AS, 658
clients, 653
EAP-FAST, 659
EAP-TLS, 660
external authentication servers, 135-136
LEAP, 659
open authentication, 656
PEAP, 659
web (WebAuth), 657
WEP, 657
WLAN, 682
WLC, 642
authenticators, 658
auto-cost reference-bandwidth command, 493, 496
auto-mdix, 45
autonomous AP (Access Points), 634-635, 638
autonomous architectures, 634-635, 638
autonomous systems. See AS
auxiliary ports (routers), 362
B
backbone routers, 461
bandwidth
reference, 492
router serial interfaces, 361
Basic Service Areas. See BSA
Basic Service Sets. See BSS
BDR (Backup DR), 456-457, 504-506
Bellman-Ford protocols. See distance vector protocols
Berners-Lee, Tim, 20
BGP (Border Gateway Protocol), 445
BIA (Burned-In Addresses), 52
BID (Bridge ID)
bidirectional communication, 613
binary/hexadecimal conversion chart (IPv6), 531
binary subnet analysis, 326
binary practice problems, 328-329
Boolean math, 331
finding
range of addresses, 331
subnet ID, 327
shortcut for binary process, 330
blocking state, interfaces, 215-217
blueprint (networking), 16
Boolean AND, 331
Boolean math, 331
Boolean OR, 331
borrowing host bits to create subnet bits, 280-281
BPDU (Bridge Protocol Data Units), 218, 225
BPDU Guard, 236
BPDU tunneling, 247
bridge ID. See BID
Bridge mode (AP), 647
bridges. See switches
bridging tables. See MAC address tables
broadcast addresses, 50-52, 325-327
broadcast network type (OSPF), 500-506
BSA (Basic Service Areas), 614
BSS (Basic Service Sets), 614-618, 629
AP, 614
associations, 615
BSSID, 615
IBSS, 619
stations, 615
traffic flows, 615
burned-in MAC addresses, 218
C
CA (Certificate Authorities), 659
cables
CLI, cabling console connections, 88-90
enterprise networks, 351
Ethernet, 35
fiber-optic cabling, 38, 46-49
IP telephony, 197
physical console connections, 88-90
pinouts
rollover pinouts, 89
straight-through cable pinout, 42-45
caches (ARP), 77
CAM (Content-Addressable Memory) tables. See MAC address tables
candidate default routes, 384
CAPWAP (Control and Provisioning of Wireless Access Points) tunneling protocol, 639-640
carrier sense multiple access with collision detection (CSMA/CD), 55
CCMP (Counter/CBC-MAC Protocol), 661
cells. See BSA
centralized architectures, 642-643
centralized controllers
dynamic interfaces, creating, 678
RADIUS servers, configuration, 676
WLAN security, 682
certificate authorities. See CA
CFN (Cisco Feature Navigator), 404
channel-group command, 248-249, 259
EtherChannels, 416
Layer 3 EtherChannels, troubleshooting, 413
channel-group number mode on command, 411
channels, 627
dynamic assignment, 642
nonoverlapping, 628
CIDR (Classless Interdomain Routing), subnet masks, 305
circuits. See leased-line WAN
Cisco Binary Game, 306
Cisco Catalyst switches, 86
Cisco integrated services routers, 352
cladding (fiber-optic cable), 47
Class A networks, 290-295, 312
Class B networks, 290-293, 312
Class C networks, 290-295, 312
Class D networks, 290
Class E networks, 290
classful IP addresses, 312-313
classful IP networks, 289, 296-297
calculating hosts per network, 293
default masks, 292
number of, 291
octet values, 290
size of, 291
subnet masks, 302
unusual addresses, 295
classful routing protocols, 447-448
classless routing protocols, 447-448
clear ip arp [ip-address] command, 378, 391
clear ip ospf process command, 481, 497
clear mac address-table dynamic command, 122, 125
CLI (Command-Line Interface)
cabling console connections, 88-90
Cisco Catalyst switches, 86
command edit and recall, 95
common command prompts, 98
configuration submodes and contexts, 97-99
clients
load balancing, 642
roaming, 642
Telnet clients, 91
WLAN, 684
CLN (Cisco Learning Network), 306
clock rates, router serial interfaces, 361
cloud-based architectures, 636-637, 643
collisions, 167
commands
auto-cost reference-bandwidth, 496
bandwidth, 496
channel-group, 248-249, 259, 413, 416
channel-group number mode on, 411
clear ip arp [ip-address], 378, 391
clear ip ospf process, 481, 497
clear mac address-table dynamic, 122, 125
com?, 94
command, 495
command ?, 94
command parm?, 94
command parm<Tab>, 94
command parm1 ?, 94
configure terminal, 97, 101, 104, 132, 189, 355
copy, 356
copy running-config startup-config. 102-104
copy startup-config running-config, 104
crypto key, 137
crypto key generate rsa, 137-139, 148
debug, 96
default-information originate, 489, 496
default-information originate always, 490
delete vlan.dat, 117
disable, 104
duplex, 152-154, 165, 170, 355, 363
enable password, 131
enable secret love, 94
encapsulation dot1q, 415
encapsulation dot1q vlan_id, 397
encapsulation dot1q vlan-id, 401
erase nvram, 104
erase startup-config, 104, 117
hostname, 99-103, 117, 138, 148
hostname Fred, 97
how interfaces status, 156
interface, 97, 103, 169, 185, 198, 356, 363, 391, 415
interface ethernet, 357
interface fastethernet, 357
interface gigabitethernet, 357
interface loopback, 470, 481, 496
interface port-channel, 416
interface port-channel number, 411
interface range, 154, 169, 187
interface type number.subint, 397
interface vlan 1, 142
interface vlan vlan_id, 403
ip -6 neighbor show, 600
ip address, 142, 148, 360, 363, 381, 391-392, 397-398, 470
ip address address mask, 397, 403, 411
ip address dhcp, 148
ip domain-name, 139
ip mtu, 515
ip ospf, 495
ip ospf dead-interval, 517
ip ospf hello-interval, 517
ip ospf process-id, 511
ip ospf process-id area area-id, 483-485
ip route, 367, 376, 380-385, 391
ip ssh version 2, 139
ipv6 address, 557, 560, 564-568, 576-578, 583
ipv6 address dhcp, 578
ipv6 address eui-64, 563
ipv6 address link-local, 568
ipv6 unicast-routing, 558, 578
line aux 0, 362
line console 0, 97-98, 103, 147, 356
login local, 147
mac-address, 564
ndp -an, 600
netsh interface ipv6 show neighbors, 600
network, 473-475, 480-486, 511
no debug all, 104
no ip address, 412
no ip domain-lookup, 146
no passive-interface, 487, 496
no password, 134
no shutdown, 142, 155-157, 170, 207, 253, 356, 363, 399, 403-405
[no] shutdown vlan number, 201
passive-interface, 487, 496, 517
passive-interface default, 488
password, 97, 103, 130-132, 147
password faith, 94
port-channel load-balance method, 254
quit, 104
reload, 91-92, 102-104, 117, 402-404
router ospf process-id, 480, 510
sdm prefer lanbase-routing, 402, 415
show crypto key mypubkey rsa, 149
show etherchannel, 248, 259, 416
show etherchannel 1 summary, 250
show etherchannel summary, 413
show interfaces, 119-120, 156, 162-164, 167-170, 357-358, 361, 364, 376, 408, 416, 515-517, 583
show interfaces description, 162, 170
show interfaces interface-id trunk, 203-205
show interfaces status, 118, 125, 153, 162-165, 408, 412
show interfaces switchport, 192-199, 202-203, 208
show interfaces trunk, 193-194, 199-205, 208, 401
show interfaces type number switchport, 199
show interfaces type number trunk, 200
show interfaces vlan, 143-144, 149, 416
show ip arp, 391
show ip default-gateway, 144, 149
show ip interface brief, 357-361, 364, 406
show ip ospf, 481, 496, 510-511, 517
show ip ospf database, 450, 462, 475, 497
show ip ospf interface, 486-488, 496, 503-505, 510-513, 517
show ip ospf interface [brief], 479-480, 511
show ip ospf interface brief, 488, 491, 496, 503, 505, 508-510, 514, 517
show ip ospf interface G0/0, 505
show ip ospf neighbor, 452-453, 457, 475, 480, 497, 502, 505, 508-517
show ip ospf neighbor interface brief, 513
show ip protocols, 479, 485, 496, 517
show ip route, 324, 356, 367, 376-391, 400-402, 408, 416, 449, 475-478, 497, 585
show ip route address, 388
show ip route [connected], 398
show ip route EXEC, 404
show ip route static, 380, 490
show ipv6 interface, 558-559, 567, 570-573, 579
show ipv6 interface brief, 558-560, 567, 575, 579
show ipv6 route, 566, 579, 585-590, 605
show ipv6 route connected, 560, 586
show ipv6 route local, 585-586
show ipv6 route static, 587-590, 593, 595
show mac address-table, 120, 125, 356
show mac address-table aging-time, 122, 125
show mac address-table count, 122, 125
show mac address-table dynamic, 96, 117, 123-125, 170
show mac address-table dynamic address, 125
show mac address-table dynamic interface, 120-121, 125
show mac address-table dynamic vlan, 125
show mac address-table static, 170
show mac address-table vlan, 121
show running-config, 93, 101, 104, 132-133, 143, 149, 155, 158, 170, 398, 479, 488, 511, 584
show running-config | interface, 170
show spanning-tree vlan, 259
show spanning-tree vlan vlan-id, 204
show startup-config, 101, 104, 158
show vlan id, 187
shutdown, 143, 155, 170, 207, 253, 356, 359, 363, 399-401, 405
shutdown command, 163
spanning-tree, 259
spanning-tree mode, 242-243, 259
spanning-tree vlan, 244
spanning-tree vlan x root primary, 244-245
spanning-tree vlan x root secondary, 244-245
speed, 98-99, 152-154, 165, 170, 355, 363
switchport access vlan, 185-189, 198-199, 207
switchport mode access, 185, 188, 198-199
switchport mode dynamic auto, 202
switchport mode dynamic desirable, 193
switchport mode trunk, 191, 203, 396
switchport nonegotiate, 195, 203, 207
switchport trunk allowed vlan, 204, 207
switchport trunk encapsulation, 191, 207
switchport trunk native vlan, 207
switchport trunk native vlan vlan-id, 205
switchport voice vlan, 198-199, 207
switchport voice vlan vlan-id, 200
terminal history size, 145, 149
test etherchannel load-balance EXEC, 255
transport input, 138, 148, 356
transport input all, 139
transport input none, 139
transport input ssh, 139
transport input telnet ssh, 139
undebug all, 104
username, 134
vlan number, 201
vtp mode, 207
vtp mode off, 190
vtp mode transparent, 190
write erase, 104
communication
bidirectional, 613
passing through, 615
unidirectional, 613
configuration BPDU. See Hello BPDU
configuration changes (STP topology, influencing), 223
configuration mode (CLI), 96-97
configure terminal command, 97, 101, 104, 132, 189, 355
connected routes, 366, 376-378, 583-585
connectors
pins, 40
RJ-45, 41
console connections, cabling, 88-90
console passwords, 129
console ports, 672
context-setting commands, 97
control plane (cloud-based AP architectures), 637
controllers
management interfaces, 674
redundancy management, 674
service port interfaces, 674
virtual interfaces, 674
VLANs, mapping, 673
WLAN controller configuration, 685
converting subnet mask formats, 305-309
copy command, 356
copy running-config startup-config command, 102-104
copy startup-config running-config command, 104
cores (fiber-optic cable), 47
costs (metrics)
EIGRP, 446
ports, 247
IEEE default, 223
STP, 221
CRC (Cyclic Redundancy Checks), 167-168
crossover cable pinouts, 44-45
crosstalk, 40
crypto key command, 137
crypto key generate rsa command, 137-139, 148
CSMA/CD (Carrier Sense Multiple Access with Collision Detection), 55, 167
CUCM (Cisco Unified Communication Manager), 196
cycles, waves, 625
D
DAD (Duplicate Address Detection), 598, 602
data
decryption, 655
encapsulation
OSI terminology, 30
integrity, 656
privacy, 655
privacy/integrity methods, 660-661
data centers, 108
data link layer
data-link protocols, leased-line WAN, 63-64
data paths, autonomous wireless networks, 635
data plane (cloud-based AP architectures), 637
Data VLAN (Virtual Local Area Networks), 197-199
DDN (Dotted-Decimal Notation), 24, 305-309
de-encapsulating IP packets, 373-374
Dead Interval timers, 455
dead timers, troubleshooting, 512-513
debug command, 96
decimal masks. See DDN
decimal subnet analysis, 331
easy masks, 332
finding
subnet broadcast addresses, 336-338
predictability in interesting octets, 333-334
reference table: DDN mask values and binary equivalent, 338-339
decrypting data, 655
default-information originate always command, 490
default-information originate command, 489, 496
default VLAN (Virtual Local Area Networks), 186
delete vlan.dat command, 117
description command, 153, 170, 363
designated ports. See DP
DHCP (Dynamic Host Configuration Protocol), 143, 286
difficult subnet masks, 334-338
digital certificates, split-MAC architectures, 640
Dijkstra SPF algorithm, 451
directed broadcast addresses, 283
disable command, 104
disabling
autonegotiation, 160
DTP, 203
ports, 230
VLAN, troubleshooting, 201-202
WLAN, 680
discarding state (RSTP), 229-230
discovering
duplicate addresses, 602
neighbor link addresses, 598-600
distance vector protocols, 446
distributed architectures, 634-638
distribution switches, 241
distribution system ports, 672-673
distribution systems. See DS
DNS (Domain Name Systems), 76-77
documentation, subnet plans, 267
double colon (::), 531
DP (Designated Ports), 217, 222-223, 230
DR (Designated Routers)
elections, configuration with broadcast network type (OSPF), 504-506
DRAM (Dynamic Random-Access Memory), 99
DROthers routers, 457
DS (Distribution Systems), 616-618
DTP (Dynamic Trunking Protocol), 203
duplex command, 152-154, 165, 170, 355, 363
duplexes
configuration on switch interfaces, 152-154
mismatches, 161
Duplicate Address Detection. See DAD
dynamic auto trunking, 191
dynamic desirable trunking, 191
dynamic EtherChannels, configuration, 250-251
Dynamic Host Configuration Protocol (DHCP), 143, 286
dynamic interfaces, 674-675, 678
dynamic IP address configuration, DHCP, 143
dynamic ranges per subnet, choosing, 286-287
dynamic unicast address configuration (IPv6), 564
E
E-Line, 66
EAP (Extensible Authentication Protocol), 657-660
EAP-FAST (EAP Flexible Authentication by Secure Tunneling), 659
EAP-TLS (EAP Transport Layer Security), 660
easy subnet masks, 332
echo requests/replies (ICMP), 78, 419
edge ports, 233
EGP (Exterior Gateway Protocol), 444
EIGRP (Enhanced Interior Gateway Routing Protocol), 446
EIGRPv6 (EIGRP for IPv6), 529
electric waves, traveling, 624
embedded WLC deployments, 644
enable secret command, 131, 148
enable secret love command, 94
encapsulation
IPv4, 70
OSI terminology, 30
encapsulation command, 397-398
encapsulation dot1q command, 415
encapsulation dot1q vlan_id command, 397, 401
encoding schemes, 39
encryption (data), 655
end-user perspectives on networking, 14-15
enterprise LAN (Local Area Networks), 36-37
enterprise mode (WPA), 663
enterprise networks, 15, 268, 350-352
EoMPLS (Ethernet over MPLS), 66
erase nvram command, 104
erase startup-config command, 104, 117
erasing switch configuration files, 102
errors
detection, FCS field, 53
TCP error recovery rates, 21
ESS (Extended Service Sets), 618
dynamic EtherChannels, 250-251
Layer 3 EtherChannels, 392, 410-414
manual Layer 2 EtherChannels, 248-250
Ethernet, 26
addresses, 52
cables, 35
E-Line, 66
EoMPLS, 66
GBIC, 42
IPv6 static routes over Ethernet links, 591
LAN. See also subnets
enterprise networks, 350
Ethernet data link protocols, 38-50
Ethernet frames, 38
Ethernet physical layer standards, 37
Ethernet ports, 40
Ethernet Type field, 52
FCS field, 53
SOHO LAN, 35
switches, 35, 106-124, 152-162
links, 40
OSPF
point-to-point, 56
shared media, 56
switches, fiber-optic cables, 48
WAN
enterprise networks, 350
EoMPLS, 66
point-to-point network type (OSPF), 506-508
Ethernet Alliance web page, 38
EtherType, 52
EUI-64 (extended unique identifier), 560-564
EXEC modes
simple password configuration, 130-133
exec-timeout command, 145, 148
exit command, 98, 101-103, 355
expanding IPv6 addresses, 532
experimental addresses, 290
extended ping command, 423-426
F
failed interfaces, 217
fake AP, 654
Fast Ethernet, 37
FCS (Frame Check Sequence) field, 53
fiber-optic cables, 37-38, 46-49
finding
MAC address table entries, 120-121
mismatched Hello/dead timers, 512
range of subnet addresses, 331
routers best routes, 451
subnet broadcast addresses, 327, 336-338
first octet values, classes by, 290
first usable IP addresses, deriving, 293-294
flash memory, 100
Flex+Bridge mode (APs), 647
FlexConnect mode (APs), 647
floating static routes, 381-383, 593-595
Forward delay timers (STP), 225
forward secrecy, 663
forward-versus-filter decisions, 113
forwarding, 115
data. See routes/routing
forwarding state, interfaces, 215-217
CRC, 167
flooding, 114
giants, 167
multiple frame transmissions, 214-215
packet output errors, 167
runts, 167
unknown unicast frames, 114
full addresses (IPv6), 530
G
G0/0 status code, 359
G0/1 status code, 359
GBIC (Gigabit Ethernet Interface Converter), 42
GCMP (Galois/Counter Mode Protocol), 661
Get IEEE 802 program, 228
GET requests (HTTP), 20
GHz (Gigahertz), 625
giants, 167
Gigabit Ethernet, 37
global routing prefix (IPv6), 543-544
global unicast addresses, 542-550
global unicast next-hop addresses, 589
group addresses, 51
groupings (IP address), 70
GTC (Generic Token Cards), 660
H
HDLC (High-Level Data Link Control), 63-64
headers
Ethernet header fields, 50
HDLC, 63
HTTP, 20
IP headers, 73
Hello Interval timers, 455
hexadecimal/binary conversion chart (IPv6), 531
history buffer commands, 144-145
history size command, 145, 148
hopping (VLAN), 205
host addresses, calculating number per network, 293
host bits, 272
host forwarding logic (IPv4), 69
host part (of IP addresses), 292, 302, 311
IPv4 routing process, 370
static host routes, 381
hostname command, 97-103, 117, 138, 148
hosts, 68
analyzing subnet needs, 269-271
assigning addresses to, 550
host bits, 272
HTTP (Hypertext Transfer Protocol), 19-20
hubs
Hypertext Transfer Protocol (HTTP), 19-20
Hz (Hertz), 625
I
IANA (Internet Assigned Numbers Authority), 445, 540
IBSS (Independent Basic Service Sets), 619. See also BSS
ICANN (Internet Corporation for Assigned Names and Numbers), 540
ICMP (Internet Control Message Protocol), 78, 419
ICMPv6 (Internet Control Message Protocol version 6), 526
ID (identification)
ID numbers, WLAN, 680
interface ID, 547
subnet ID, 272, 283, 324, 327, 330, 334-336, 548
VLAN ID, 180
IEEE (Institute of Electrical and Electronic Engineers), 18
802.1D Spanning-Tree states, 227
802.1D standard, 228
802.1w amendment, 228
802.1x, EAP integration, 658
default port costs, 223
Get IEEE 802 program, 228
IGP (Interior Gateway Protocol), 444-448
IGRP (Interior Gateway Routing Protocol), 446
inferior Hello messages, 219
infrastructure mode, 614
integrated services routers (Cisco), 352
interarea routes, 461
interesting octets, predictability in, 333-334
interface command, 97, 103, 169, 185, 198, 356, 363, 391, 415
interface ethernet command, 357
interface fastethernet command, 357
interface gigabitethernet command, 357
interface ID, 547
interface loopback command, 470, 481, 496
interface port-channel command, 416
interface port-channel number command, 411
interface range command, 154, 169, 187
interface type number.subint command, 397
interface vlan command, 148, 415
interface vlan 1 command, 142
interface vlan vlan_id command, 403
interfaces, 87
administratively shutdown, 217
blocking state, 215
dynamic interfaces, 674-675, 678
EtherChannels, adding, 251-253
failed interfaces, 217
forwarding state, 215
learning state, 227
listening state, 227
management interfaces, 674
OSPF
metrics, 493
physical interface configuration, 251-253
ports, compared, 671
routed interfaces, Layer 3 (multilayer) switches, 407-409
bandwidth, 361
clock rates, 361
service port interfaces, 674
speed and duplex issues, 163-166
status codes, 162-163, 358-359
subcommands, 97
switch interface configuration, 152-162
virtual interfaces, 674
VLAN interfaces, 402
working interfaces, 217
interference, simultaneous transmissions, 613
internal routers, 461
Internet Protocol. See IP
intra-area routes, 461
intrusion protection, WLC, 642
IP (Internet Protocol), 22. See also IPv4; IPv6
addresses
management, 635
forwarding
longest prefix matches, 386-389
routing, 366
de-encapsulating IP packets, 373-374
encapsulating IP packets in new frames, 375
host forwarding of IP packets to default routers (gateways), 372
IP forwarding, 374-375, 386-389
routing tables, 70-72, 388-389
ip -6 neighbor show command, 600
ip address address mask command, 397, 403, 411
ip address command, 142, 148, 360, 363, 381, 391-392, 398
IP addresses on loopback interfaces, 470
subinterfaces, 397
ip address dhcp command, 148
ip address subcommand, 376
ip_address parameter, network command, 473
ip default-gateway command, 142, 148
ip domain-name command, 139
ip mtu command, 515
ip name-server command, 142, 148
ip ospf command, 495
ip ospf cost command, 492, 496
ip ospf dead-interval command, 517
ip ospf hello-interval command, 517
ip ospf process-id area area-id command, 483-485
ip ospf process-id command, 511
ip route command, 367, 376, 379-385, 391, 402-404, 415
ip ssh version 2 command, 139
IPv4 (Internet Protocol Version 4). See also IP
address exhaustion, 525
calculating hosts and subnets in network, 313-315
classless versus classful addressing, 312-313
configuration on switch, 142-143
dynamic IP address configuration with DHCP, 143
headers, 73
private addresses, 542
public addresses, 542
router support
auxiliary ports, 362
subnets, 70, 73, 264-267, 322-339
multiple subnet sizes, 274
number of hosts, 271
number of subnets, 270
one-size subnets, 273
single-size subnets, 273
subnet addresses, 272
subnet ID, 272
subnet masks, 272, 275, 279-283, 302-312, 315
subnet numbers, 272
testing connectivity, 78
troubleshooting tools
unusual addresses within classes, 295
VLSM, 275
IPv6 (Internet Protocol Version 6). See also IP
abbreviating addresses, 531-532
address configuration summary, 576
assigning subnets to internetwork topology, 549
dual-stack strategies, 556
dynamic unicast address configuration, 564
expanding addresses, 532
global routing prefix, 543-544
global unicast addresses, 542-550
hexadecimal/binary conversion chart, 531
interface ID, 547
loopback addresses, 574
overview, 524
representing full IPv6 addresses, 530
static unicast address configuration, 557-564
subnets, 543
global unicast addresses, 545-549
router anycast addresses, 549
unique local addresses, 551-552
unicast addresses, 556
unique local addresses, 542, 551-553
unknown addresses, 574
ipv6 address command, 557, 560, 564-568, 576-578, 583
ipv6 address dhcp command, 578
ipv6 address eui-64 command, 563
ipv6 address link-local command, 568
ipv6 enable command, 568-569, 576-578
ipv6 route command, 586-597, 604
ipv6 unicast-routing command, 558, 578
IS-IS (Integrated Intermediate System to Intermediate System), 446
ISL (Inter-Switch Link), 182
ISO (International Organization for Standardization), 17
IV (Initialization Vectors), 661
J - K
keys
forward secrecy, 663
mixing algorithm, 661
PKIs, 660
shared-key security, 657
WEP, 657
kHz (kilohertz), 625
kilohertz (kHz), 625
L
LACP (Link Aggregation Control Protocol), 250
LAG (link aggregation group), 673
LAN (Local-Area Networks). See also subnets
addresses, 52
definition of, 179
DP on each segment, choosing, 222-223
enterprise networks, 350
switch interface configuration, 152-162
STP security exposures, 236
switching, 35
analyzing, 116
flooding, 114
interface configuration, 152-162
MAC address table, 113-114, 117-124
switch forwarding and filtering decisions, 110-113
switch interfaces, 118-120, 152-162
verifying, 116
VLAN
AP, 668
configuration, 185-195, 198-199
default VLAN, 186
supported VLAN list on trunks, 203-205
VLAN ID, 180
WLAN, 32
802.11 WLAN, 614
client session timeouts, 684
configuration, 675-678, 681-685
controller configuration, 685
creating too many, 676
defined, 675
displaying list of, 679
ESS, 618
IBSS, 619
limiting, 676
management access, 685
mesh networks, 622
WGBs, 621
LAP (Lightweight Access Points), 639-642
last usable IP addresses, deriving, 293-294
late collisions, 167
Layer 1 problems, troubleshooting, 166-168
Layer 3 EtherChannel, 392
Layer 3 (multilayer) switches, 141, 184
LEAP (Lightweight EAP), 659
learning state, interfaces, 227
leased-line WAN (Wide Area Networks), 61-65
lightweight AP (Access Points), 638
line aux 0 command, 362
line console 0 command, 97-98, 103, 147, 356
link-local addresses (IPv6), 566-569
link-local next-hop address, 589-590
link-state protocols, 446
list of subnets
listening state, interfaces, 227
load balancing
clients, 642
OSPF, 494
load distribution, EtherChannel, 253-257
Local mode (AP), 647
local scope multicast addresses, 569-573
logging console command, 145, 148
logging synchronous command, 145, 148
logical networks, user segregation, 676
login command, 94, 103, 130-132, 147
login local command, 147
loops, avoiding with STP, 114-115
LSA (Link-State Advertisements), 449, 454
flooding, 450
LSDB relationship, 450
network LSA, 464
router LSAs, 463
LSDB (Link-State Database)
best routes, finding, 451
LSA relationship, 450
OSPF/LSDB neighbor exchanges, 454-456
LSU (Link-State Update) packets, 454
LWAPP (Lightweight Access Point Protocol), 639
M
MAC address tables, 111
clearing, 122
mac-address command, 564
burned-in, 218
sender MAC addresses, 661
source MAC addresses, 113
split-MAC architectures, 638-642
macrobending, 163
magic number, 334
magnetic waves, traveling, 624
man-in-the-middle attacks, 654
management access (WLAN), allowing, 685
management interfaces (controllers), 674
management IP addresses, autonomous AP, 635
manual Layer 2 EtherChannels, 248-250
mapping VLAN, 673
MaxAge timer (STP), 225
maximum-paths command, 494-496
mesh networks, 622
messages
Hello, 219
inferior Hello, 219
OSPF Hello, 452
RSTP, 232
superior Hello, 219
metrics (costs)
EIGRP, 446
ports, 247
IEEE default, 223
STP, 221
MHz (Megahertz), 625
MIC (Message Integrity Checks), 656, 660-661
Mobility Express WLC deployments, 645
models, networking
modified EUI-64 (Extended Unique Identifier-64), 560-564
Monitor mode (AP), 647
MP BGP-4 (Multiprotocol BGP version 4), 529
MSCHAPv2 (Microsoft Challenge Authentication Protocol version 2), 660
MSTP (Multiple Spanning Tree Protocol), 242-243
MTU (Maximum Transmission Units), 50, 515
multiarea OSPF (Open Shortest Path First), 482
multicast addresses, 50-52, 290, 569-576
N
NA (Neighbor Advertisement), 599
NAT (Network Address Translation), 277, 542
native VLAN (Virtual Local-Area Networks), 183, 205, 398
NDP (Neighbor Discovery Protocol), 526, 573-574, 598-603
ndp -an command, 600
neighbors
adjacent neighbors, 457
fully adjacent neighbors, 457, 502
link addresses, discovering, 598-600
NA, 599
NS, 599
OSPF, 451
broadcast network type, 502-506
RID, 452
troubleshooting adjacencies, 510-516
netsh interface ipv6 show neighbors command, 600
network command, 473-475, 480-486, 495, 511
network ID. See network numbers
ARP, 77
protocols, identifying with Ethernet Type field, 52
routing
testing connectivity, 78
network types (OSPF)
point-to-point, 500-501, 506-508
troubleshooting mismatched network types, 515-516
networks
architectures, 16
blueprint, 16
definition of, 268
enterprise networks, 15, 268, 350-352
internetworks, 268
IP networks, 70-73, 292, 302, 312
logical networks, user segregation, 676
LSA, 464
masks, 376
mesh, 622
NAT, 277
networking model overview, 16
routes, 379
SOHO networks, 15
subnets versus, 324
VLAN switches, 140
WAN, 60
wireless networks, 628-629, 662-663
next-hop IPv6 addresses, 589-590
NIC addresses, 52
NIM (Network Interface Modules), 352
no debug all command, 104
no description command, 157, 170
no ip address command, Layer 3 EtherChannels, 412
no ip domain-lookup command, 146
no logging console command, 145, 148
no network network-id area area-id subcommands, 483
no passive-interface command, 487, 496
no password command, 134
no shutdown command, 142, 155-157, 170, 207, 253, 356, 363, 399, 403-405
[no] shutdown vlan number command, 201
no switchport command, 408, 411-415
nonoverlapping channels, 628
nonworking states, troubleshooting, 162-163
NS (Neighbor Solicitation), 599
numbers
DDN, 24
magic number, 334
SEQ, 21
subnet numbers, 272, 283, 324, 327, 334-336
NVRAM (nonvolatile RAM), 100
O
open authentication, 656
operational view of subnetting, 267-268
optical transmitters (fiber-optic cable), 47
OSI (Open Systems Interconnection), 17, 28-30
OSPF (Open Shortest Path First), 450
backbone areas, 460
broadcast network type, 500-506
calculating best routes with SPF, 457-459
Dijkstra SPF algorithm, 451
Hello messages, 452
interfaces, 493
load balancing, 494
mismatched network types, 515-516
MTU mismatched settings, 515
multiarea OSPF, 482
neighbors, 451
broadcast network type, 502-506
RIDs, 452
troubleshooting adjacencies, 510-516
point-to-point network type, 500-501, 506-508
process-id, 472
processes, shutting down, 513-514
verifying
OSPFv2 (OSPF version 2), 440, 463
interface configuration, 483-486
load balancing, 494
metrics, 493
single-area configuration, 470-475
P
PAC (Protected Access Credentials), 659
packets, 28
data packets, routing VLAN, 184
IP packets
encapsulating in new frames, 375
hot forwarding to default routers (gateways), 372
output errors, 167
PAgP (Port Aggregation Protocol), 250
passing through (communications), 615
passive-interface command, 487, 496, 517
passive-interface default command, 488
password command, 97, 103, 130-132, 147
password faith command, 94
passwords
console passwords, 129
enable passwords, 130
shared passwords, 130
Telnet passwords, 129
PBX (Private Branch Exchange), 196
PDU (Protocol Data Units), 30
PEAP (Protected EAP), 659
permanent keywords, 385
personal mode (WPA), 663
physical console connections, 88-90
physical interfaces, configuration, 251-253
physical layer (TCP/IP), 25-26
ping command, 78, 419-429, 587
pinouts (cables)
rollover pinouts, 89
pins (connectors), 40
PKIs (Public Key Infrastructures), 660
point-to-multipoint outdoor bridges, 622
point-to-point (Ethernet), 56
point-to-point edge ports, 233
point-to-point lines. See leased-line WAN
point-to-point network type (OSPF), 500-501, 506-508
point-to-point outdoor bridges, 622
point-to-point ports, 233
policies, WLAN client exclusion, 684
Port Aggregation Protocol. See PAgP
port-channel load-balance method command, 254
PortChannels. See EtherChannel
PortFast, 235
ports, 87
802.1w RSTP roles, 230
backup, 230
blocking, choosing, 212
console ports, 672
costs, 247
IEEE default, 223
STP, 221
disabled ports, 230
distribution system ports, 672-673
Ethernet ports, 40
interfaces, compared, 671
redundancy ports, 672
RJ-45, 40
routed ports, VLAN routing, 406-414
router auxiliary ports, 362
RSTP
backup, 233
roles, 230
states, 232
switch ports, 110
switch roots, choosing, 220-221
USB ports, 89
postal service forwarding, 22
predictability in interesting octet, 333-334
prefixes
dividing into network and subnet parts, 312
host part and, 311
routing, 378
primary root switches, 247
privacy
CCMP, 661
data, 655
GCMP, 661
private addresses (IPv4), 542
private branch exchange. See PBX
private lines. See leased-line WAN
problem isolation, traceroute command, 429-431
process-ids (OSPF), 472
proprietary routing protocols, 446
protected access credentials. See PAC
protocols
BGP, 445
CAPWAP, 639
CCMP, 661
definition of, 16
distance vector, 446
DTP, 203
EAP-FAST, 659
EAP-TLS, 660
GCMP, 661
IGRP, 446
LACP, 250
LEAP, 659
link-state, 446
LWAPP, 639
OSPF, 450
backbone areas, 460
broadcast network type, 500-506
calculating best routes with SPF, 457-459
Dijkstra SPF algorithm, 451
Hello messages, 452
interfaces, 493
load balancing, 494
mismatched network types, 515-516
MTU mismatched settings, 515
multiarea OSPF, 482
point-to-point network type, 500-501, 506-508
process-id, 472
processes, shutting down, 513-514
interface configuration, 483-486
load balancing, 494
metrics, 493
single-area configuration, 470-475
PAgP, 250
PEAP, 659
RIP, 446
routable protocols, 442
routed protocols, 442
routing protocols, 376-378, 442-449
backup port role, 233
BID, 218
configurable priority values, 244
configuration, 240
discarding state, 229
forwarding or blocking criteria, 216-217
link types, 233
looping frames, preventing, 213
multiple spanning tree support, 246
processes, 232
STA, 216
standards, 228
steady-state operation, 225
STA, 216
802.1D standard, 228
configurable priority values, 244
convergence, 216
Forward delay timer, 225
forwarding or blocking criteria, 216-217
Hello timer, 225
interface states, changing, 227
looping frames, 213
MaxAge timer, 225
modes, 242
multiple STP, 241
PortFast, 235
roles, 227
security, 236
STA, 216
standards, 242
states, 227
steady-state operation, 225
switch reactions to changes, 226-227
TCP/IP
compared to OSI, 29
data encapsulation terminology, 27-28
network layer, 22-25, 68-72, 76-78
overview, 18
RFC, 18
public addresses (IPv4), 542
Public Key Infrastructures. See PKIs
Q - R
QoS (Quality of Service), WLAN, 683-684
quit command, 104
RA (Router Advertisement), 600
radio frequencies. See RF
radios, selecting WLAN, 680
RADIUS servers
configuration, 676
WLAN authentication, 682
RAM (Random Access Memory), 99
ranges for global unicast addresses, 544-545
RC4 cipher algorithm, 657
receivers, communication, 613
redundancy
management, 674
ports, 672
reference bandwidth, defined, 492
registered private IP networks, 277-278
registered public IP networks, 276-278
reload command, 91-92, 102-104, 117, 402-404
remote subnets, 375
replies
ARP replies, 77
HTTP, 20
ICMP echo replies, 78
requests
ARP requests, 77
ICMP echo requests, 78
reserved multicast addresses, 569-571
resident subnets, 322
reverse routes, testing, 423-425
RF (Radio Frequencies), 613, 626, 642
RID (Router ID)
defined, 470
OSPF, 511
neighbors, 452
troubleshooting, 511
RIP (Routing Information Protocol), 446
RIPng (RIP next generation), 529
RIPv2 (Routing Information Protocol version 2), 446-447
RIR (Regional Internet Registries), 524
RJ-45 connectors, 41
RJ-45 ports, 40
roaming
AP, 618
clients, 642
ROAS (Router-On-A-Stick), 392, 396-401
Rogue Detector mode (AP), 647
roles
RSTP port, 230
STP, 227
rollover pinouts (cables), 89
ROM (Read-Only Memory), 100
root bridge ID, 218
root costs, switches, 216
root ports. See RP
root switches, 217
RSTP root switches, 247
timer values, 218
routable protocols, 442
route redistribution, 448
routed ports, VLAN routing, 406
routed protocols, 442
router ospf 1 command, 472, 480
router ospf process-id command, 480, 510
routers/routing, 35
auxiliary ports, 362
backbone, 461
best routes, finding, 451
candidate default routes, 384
Cisco integrated services routers, 352
classful versus classless, 313
connected routes, 366, 376-378
DROthers, 457
dynamic unicast address configuration, 564
floating static routes, 381-383
flooding, 450
logic, 370
static host routes, 381
internal routers, 461
de-encapsulating IP packets, 373-374
encapsulating IP packets in new frames, 375
host forwarding of IP packets to default routers (gateways), 372
IPv4 routing, 24-25, 68-75, 355-362, 369-371, 527
IPv6 routing, 527-530, 558, 583-598
processing incoming frames, 373
transmitting frames, 376
link-local address configuration, 566-569
local routes, 378
logic
host routing, 370
IPv4 routing, 371
LSA, 463
network masks, 378
network routes, 379
OSPF interface costs, 493
overview, 348
path selection, 69
prefixes, 378
protocol codes, 378
protocols, 376
administrative distance, 448-449
algorithms, 445
AS, 444
classful versus classless, 313
convergence, 443
defined, 442
distance vector, 446
EGP, 444
EIGRP, 446
functions, 443
link-state, 446
OSPF, 446-447, 450-464, 475-482, 487-491
path selections, 442
proprietary, 446
route redistribution, 448
remote subnets, 375
reverse routes, testing, 423-425
ROAS
SOHO routers, 354
static unicast address configuration, 557-564
default routes, 379
floating static routes, 381-383
static default routes, 383-384
static network routes, 379
subnet router anycast addresses, 576
Layer 3 (multilayer) switch routed ports, 406-414
Layer 3 (multilayer) switch SVI, 401-406
RP (Root Ports), 217, 220-221, 230
RPVST+ (Rapid Per VLAN Spanning Tree+), 242-243, 246
RS (Router Solicitation), 600
RSTP (Rapid Spanning Tree Protocol), 228, 242-243
backup port role, 233
BID, 218
configurable priority values, 244
configuration, 240
discarding state, 229
link types, 233
looping frames, preventing, 213
multiple spanning tree support, 246
ports, 233
blocking, 212
roles, 230
states, 232
processes, 232
STA, 216
standards, 228
steady-state operation, 225
switches
electing, 219
priority, 247
running-config file, 100
runts, 167
S
S0/0/0 status code, 359
scopes of multicast addresses, 571-572
sdm prefer lanbase-routing command, 402, 415
SE Connect mode (APs), 647
secondary root switches, 247
Secure Shell. See SSH
security. See also authentication
attacks, 654
data integrity, 656
data privacy, 655
decryption, 655
encryption, 655
fake AP, 654
forward secrecy, 663
intrusion protection, 642
MIC, 656
privacy/integrity methods, 660-661
shared-key, 657
STP, 236
transmissions reaching unintended recipients, 652
WLC authentication, 642
self-healing coverage, 642
sender MAC addresses, 661
SEQ (Sequence Numbers), 21
sequence counters (TKIP), 661
sequence numbers (SEQ), 21
serial lines. See leased-line WAN
Serial WAN (Wide Area Networks), 350
servers
AAA servers, 136
AS, 658
external authentication servers, 135-136
Telnet servers, 91
service set identifiers. See SSID
session timeouts (WLAN), 684
SFP (Small Form Pluggable), 42, 48
SFP+ (Small Form Pluggable Plus), 42, 48
shared-key security, 657
shared media (Ethernet), 56
shared passwords, 130
shared ports, 234
shorter VLAN configuration example, 189
Shortest Path First algorithm. See SPF algorithm
show arp command, 391
show command, 95, 166, 361, 480, 508
show crypto key mypubkey rsa command, 149
show dhcp lease command, 143-144, 149
show etherchannel 1 summary command, 250
show etherchannel command, 248, 259, 416
show etherchannel summary command, 413
show history command, 145, 149
show interfaces command, 119-120, 156, 162-164, 167-170, 357-358, 361, 364, 376, 408, 416, 515-517, 583
show interfaces description command, 162, 170
show interfaces interface-id trunk command, 203-205
show interfaces status command, 118, 125, 153, 156, 162-165
Layer 3 EtherChannels, 412
routed ports, 408
show interfaces switchport command, 192-195, 199, 202-203, 208
show interfaces trunk command, 193-194, 199-200, 203-205, 208, 401
show interfaces type number switchport command, 199
show interfaces type number trunk command, 200
show interfaces vlan command, 143-144, 149, 416
show ip arp command, 391
show ip default-gateway command, 144, 149
show ip interface brief command, 357-361, 364, 406
show ip ospf command, 481
duplicate OSPF RID, 511
OSPF neighbors, troubleshooting, 510
show ip ospf database command, 450, 462, 475, 497
show ip ospf interface brief command, 479-480, 488, 491, 503-505, 508, 511, 514
OSPF neighbors, troubleshooting, 510
show ip ospf interface command, 488, 503-505, 513
Hello/dead timer mismatches, 512
OSPF neighbors, troubleshooting, 510
OSPFv2 interface configuration, 486
show ip ospf interface G0/0 command, 505
show ip ospf neighbor command, 452-453, 457, 475, 480, 497, 502, 505, 508-511, 513-517
show ip ospf neighbor interface brief command, 513
show ip protocols command
OSPFv2 interface configuration, 485
show ip route address command, 388
show ip route command, 324, 356, 367, 376, 378-391, 400-402, 408, 475-478, 585
administrative distance, 449
defined, 497
routing tables, displaying, 416
show ip route [connected] command, 398
show ip route EXEC command, 404
show ip route ospf command, 387, 497
show ip route static command, 380, 490
show ipv6 interface brief command, 558-560, 567, 575, 579
show ipv6 interface command, 558-559, 567, 570-573, 579
show ipv6 route command, 566, 579, 585-590, 605
show ipv6 route connected command, 560, 586
show ipv6 route local command, 585-586
show ipv6 route static command, 587-590, 593-595
show mac address-table aging-time command, 122, 125
show mac address-table command, 120, 125, 356
show mac address-table count command, 122, 125
show mac address-table dynamic address command, 125
show mac address-table dynamic command, 96, 117, 123-125, 170
show mac address-table dynamic interface command, 120-121, 125
show mac address-table dynamic vlan command, 125
show mac address-table static command, 170
show mac address-table vlan command, 121
show protocols command, 361, 364
show running-config | interface command, 170
show running-config command, 93, 101, 104, 132-133, 143, 149, 155, 158, 170, 398, 479, 488, 511, 584
show spanning-tree command, 249, 259
show spanning-tree vlan command, 259
show spanning-tree vlan vlan-id command, 204
show startup-config command, 101, 104, 158
show vlan brief command, 186-189, 202
show vlan command, 201, 208, 398-401, 416
show vlan id command, 187
show vtp status command, 190, 208
shutdown command, 143, 155, 163, 170, 207, 253, 356, 359, 363, 399-401, 405
signals
sending messages, 623
single-area OSPF, 459
single-mode fiber-optic cables, 47-49
SLAAC (Stateless Address Auto Configuration), 560, 598, 601
slash masks, 305
small office/home office (SOHO) LANs, 35
small office/home office (SOHO) networks, 15
SNA (Systems Network Architecture), 16
Sniffer mode (APs), 647
software configuration
common command prompts, 98
configuration submodes and contexts, 97-99
SOHO (Small Offices/Home Offices)
LAN, 35
networks, 15
routers, 354
solicited-node multicast addresses, 573-574
source MAC addresses, 113
spanning-tree algorithm. See STA
spanning-tree commands, 259
spanning-tree mode command, 242-243, 259
Spanning Tree Protocol. See STP
spanning-tree vlan command, 244
spanning-tree vlan x root primary command, 244-245
spanning-tree vlan x root secondary command, 244-245
speed, switch interface configurations, 152-154
speed command, 98-99, 152-154, 165, 170, 355, 363
SPF (Shortest Path First) algorithm
Dijkstra SPF, 451
OSPF best routes, calculating, 457-459
split-MAC architectures, 638-643
SSH (Secure Shell), 91, 136-139, 432-434
SSID (Service Set Identifiers), 615
broadcasting, 681
multiple on one AP, supporting, 617
STA (spanning-tree algorithm), 216
startup-config file, 100
state change reactions (STP topology), 224-225
Stateless Address Auto Configuration. See SLAAC
states
discarding, 230
ports, 232
STP, 227
static default routes (IPv6), 592-593
static host routes (IPv6), 593
static ranges per subnet, choosing, 286-287
default routes, 379
floating static routes, 381-383, 593-595
global unicast next-hop address, 589
link-local next-hop address, 589-590
over Ethernet links, 591
overview, 586
static default routes, 383-384, 592-593
static host routes, 593
static network routes, 379
troubleshooting, 385-386, 595-598
static unicast address configuration (IPv6)
configuration full 128-bit address, 557-558
enabling IPv6 routing, 558
generating unique interface ID with modified EUI-64, 560-564
status codes
STP (Spanning Tree Protocol), 114-115, 210, 243
802.1D standard, 228
blocking criteria, 212, 216-217
configurable priority values, 244
convergence, 216
Forward delay timer, 225
Hello timer, 225
interface states, changing, 227
LAN
segment DPs, choosing, 222-223
looping frames, preventing, 213
MaxAge timer, 225
modes, 242
multiple STP, 241
PortFast, 235
ports
blocking criteria, 212, 216-217
cost, 221
states, 232
roles, 227
root switches, electing, 218-219
security, 236
STA, 216
standards, 242
states, 227
steady-state operation, 225
switch reactions to changes, 226-227
straight-through cable pinouts, 42-45
subcommands, 97
auto-cost reference-bandwidth, 493
bandwidth, 492
ip address, 376
no network network-id area area-id, 483
switchport trunk allowed vlan, 204
subdivided networks. See subnets
subnet masks, 272, 302. See also subnets
classful IP networks before subnetting, 279-280
converting between formats, 305-309
easy masks, 332
hosts
borrowing bits to create subnet bits, 280-281
calculating in network, 313-315
choosing bits, 281
sample design, 282
VLSM, 275
subnet numbers, 272, 283, 334-336
subnets, 543. See also subnet masks
addresses, 272, 283, 324, 327, 334-336
analyzing
assigning to different locations, 285
binary math, 326
Boolean math, 331
finding range of addresses, 331
finding subnet IDs, 327
shortcut for binary process, 330
Boolean math, 331
broadcasts, 272, 283, 325-327, 336-338
decimal math, 331
easy masks, 332
finding subnet broadcast addresses, 336-338
predictability in interesting octet, 333-334
reference table: DDN mask values and binary equivalent, 339
dynamic ranges, choosing, 286-287
examples of
networks with four subnets, 322-323
simple example, 267
finding with binary math, 327
finding with decimal math, 334-336
IPv4, 548
IPv6, 548
IP addresses, 283-284, 302, 312
IPv6
assigning to internetwork topology, 549
interface ID, 547
with global unicast addresses, 545-549
with unique local addresses, 551-552
multiple subnet sizes, 274
networks versus, 324
number of hosts, 271
number of subnets, 270
one-size subnets, 273
overview, 266
plan documents, 267
planning implementations, 284-287
range of usable addresses, 325
remote subnets, 375
resident subnets, 322
router anycast addresses, 549, 576
simple example, 267
single-size subnets, 273
static ranges, choosing, 286-287
subnet numbers, 272, 283, 324, 327, 334-336
VLSM, 275
superior Hello messages, 219
supplicants, 658
SVI (Switched Virtual Interfaces), 392, 401-406
switch ports, 110
switches
access switches, 241
alternate ports, 229
auto-mdix, 45
backup ports, 230
Cisco Catalyst switches, 86
DHCP, 143
distribution switches, 241
EtherChannels, 234
Ethernet switches, 48
history buffer commands, 144-145
enabling/disabling interfaces, 155-156
overview, 152
removing configuration, 157-158
LAN segment DP, choosing, 222-223
LAN switches, 35
analyzing, 116
flooding, 114
interface configuration, 152-162
MAC address table, 113-114, 117-124
switch forwarding and filtering decisions, 110-113
switch interfaces, 118-120, 152-162
verifying, 116
Layer 3 (multilayer) switches, 141, 184, 401-414
links, 233
MAC address tables, 111, 214-215
management
DHCP, 143
history buffer commands, 144-145
overview, 126
multilayer switches, 184
PortFast, 235
root costs, 216
RSTP switch priority, 247
STP
unknown unicast frames, 114
VLAN configuration, 140
voice switches, 196
switching tables. See MAC address tables
switchport access vlan command, 185-189, 198-199, 207
switchport command
Layer 3 switches, 415
routed ports, 408
switchport mode access command, 185, 188, 198-199
switchport mode command, 191, 207
switchport mode dynamic auto command, 202
switchport mode dynamic desirable command, 193
switchport mode trunk command, 191, 203, 396
switchport nonegotiate command, 195, 203, 207
switchport trunk allowed vlan command, 204, 207
switchport trunk encapsulation command, 191, 207
switchport trunk native vlan command, 207
switchport trunk native vlan vlan-id command, 205
switchport voice vlan command, 198-199, 207
switchport voice vlan vlan-id command, 200
T
T1. See leased-line WAN
tables
IP routing tables, 70-72, 388-389
MAC address tables, 111-124, 214-215
TCP (Transmission Control Protocol), 20-21
TCP/IP (Transmission Control Protocol/Internet Protocol)
data encapsulation terminology, 27-28
ARP, 77
testing connectivity, 78
OSI, compared, 29
overview, 18
RFC, 18
terminal history size command, 145, 149
test etherchannel load-balance EXEC command, 255
testing
IPv4 connectivity, 78
WAN neighbors, 427
three-area OSPF (Open Shortest Path First), 460
time stamps, 661
timers
Hello/dead mismatches, troubleshooting, 512-513
Hello messages, 455
TKIP (Temporal Key Integrity Protocol), 660-661
topologies
AP noninfrastructure modes, 620-622
traceroute command, 428-432, 587
traffic flows, BSS, 615
trailer fields (Ethernet), 50
transmissions
bidirectional communication, 613
interference, 613
unidirectional communication, 613
unintended recipients, 652
transmitters, communication, 613
transmitting
frames, IP routing, 376
optimizing transmit power, 642
transport input all command, 139
transport input command, 138, 148, 356
transport input none command, 139
transport input ssh command, 139
transport input telnet ssh command, 139
transport layer (TCP/IP), 20-22
troubleshooting
IP routing
Layer 3 EtherChannels, 413-414
Layer 3 (multilayer) switch SVI, 404-406
native VLAN, 205
OSPF
mismatched MTU settings, 515
mismatched network types, 515-516
shutting down processes, 513-514
RID, 511
traceroute command, 428-432, 587
trunking
802.1Q, 182
administrative mode, 191
dynamic auto mode, 191
dynamic desirable mode, 191
ISL, 182
type of, 191
VLAN
mismatched native VLAN, 205
mismatched trunking operational states, 202-203
supported VLAN list on trunks, 203-205
TTL (Time To Live), 429
U
UDP (User Datagram Protocol), 20
unabbreviated addresses (IPv6), 530
undebug all command, 104
undefined VLAN, troubleshooting, 201-202
unicast addresses, 50-52, 290, 322, 540, 556-564
unidirectional communication, 613
unified architectures. See centralized architectures
unique local addresses, 542, 551-553
universal addresses, 51
unknown addresses (IPv6), 574
unknown unicast frames, 114
URI (Universal Resource Identifiers), 20
URL (Uniform Resource Locators), 20
USB ports, 89
User Datagram Protocol (UDP), 20
user mode
external authentication servers, 135-136
users, segregating into logical networks, 676
UTP (Unshielded Twisted-Pair) cables, 37
uWGB (Universal Workgroup Bridges), 621
V
verifying
EtherChannel configuration before adding interfaces, 251-253
Ethernet switching, 116
Layer 3 (multilayer) switch SVI, 403-404
OSPF
OSPFv2 interface configuration, 485-486
static unicast address configuration, 558-560
virtual interfaces (controllers), 674
VLAN (Virtual Local Area Networks)
configuration, 185-195, 198-199
default VLAN, 186
disabled VLAN, troubleshooting, 201-202
dynamic interface ID, 678
hopping, 205
ID, 180
interfaces, 402
LAN trunking, 182
mapping, 673
split-MAC architecture, 640
supported VLAN list on trunks, 203-205
switches, 140
troubleshooting
supported VLAN list on trunks, 203-205
VLAN ID, 180
vlan number command, 201
VLSM (Variable Length Subnet Masks), 275
voice switches, 196
VTP (VLAN Trunking Protocol), 189-190
vtp mode command, 207
vtp mode off command, 190
vtp mode transparent command, 190
W - X - Y - Z
WAN (Wide Area Networks), 32, 60
enterprise networks, 350
point-to-point network type (OSPF), 506-508
neighbors, testing, 427
Serial WAN, enterprise networks, 350
waves
continuous pattern, 623
cycles, 625
electric/magnetic, 624
electromagnetic, 624
propagation with idealistic antenna, 624
WebAuth (Web Authentication), 657
WEP (Wired Equivalent Privacy), 657
WGB (Workgroup Bridges), 621
wireless band frequencies, 627
wireless LAN, 32
wireless networks
waves, 625
wired networks, compared, 612-613
WLAN (Wireless Local Area Networks)
802.11 WLAN, 614
client session timeouts, 684
configuration, 675
controller configuration, 685
dynamic interfaces, 678
RADIUS servers, 676
defined, 675
dynamic interfaces, creating, 678
ESS, 618
IBSS, 619
limiting, 676
listings of, displaying, 679
management access, allowing, 685
mesh networks, 622
RADIUS server, configuration, 676
too many, creating, 676
user segregation into logical networks, 676
WGB, 621
WLC (Wireless LAN Controllers)
activities, 642
cloud-based architectures, 643
embedded deployments, 644
management interfaces, 674
Mobility Express WLC deployments, 645
redundancy management, 674
service port interfaces, 674
virtual interfaces, 674
working interfaces, defined, 217
WPA (Wi-Fi Protected Access), 662-663
WPA2 (Wi-Fi Protected Access version 2), 662-663
WPA3 (Wi-Fi Protected Access version 3), 662-663
write erase command, 104