<p>Introduction xxi</p> <p>Assessment Test xxviii</p> <p><b>Chapter 1 Networking Fundamentals 1</b></p> <p>The OSI Model 2</p> <p>The Upper Layers: Application, Presentation, and Session 4</p> <p>Making Sense of Layers 4</p> <p>The Lower Layers: Physical, Data Link, Network, and Transport 6</p> <p>Layer 1: The Physical Layer 7</p> <p>Layer 2: The Data Link Layer 8</p> <p>A Brief History of Ethernet 8</p> <p>The MAC Address Table 10</p> <p>Maximum Transmission Unit 12</p> <p>Subnet Limits 12</p> <p>Layer 3: The Network Layer 13</p> <p>Forwarding within a Subnet 14</p> <p>Forwarding between Subnets 14</p> <p>Address Resolution Protocol 16</p> <p>Fragmentation 17</p> <p>Routing vs. Forwarding 18</p> <p>Layer 4: The Transport Layer 18</p> <p>Transmission Control Protocol 19</p> <p>Encapsulation and Decapsulation 21</p> <p>Summary 22</p> <p>Exam Essentials 22</p> <p>Review Questions 24</p> <p><b>Chapter 2 Spanning Tree Protocols 29</b></p> <p>The Need for Spanning Tree 31</p> <p>VLANs and Trunking 32</p> <p>Dynamic Trunking 34</p> <p>Unconditional Trunking 35</p> <p>Active and Allowed VLANs 36</p> <p>Rapid Per-VLAN Spanning Tree 38</p> <p>Electing the Root Bridge 38</p> <p>Calculating the Root Ports 41</p> <p>Calculating the Root Ports of Indirectly Connected Switches 44</p> <p>Modifying Port Cost 46</p> <p>Modifying Port Priority 47</p> <p>Calculating Blocked Ports 48</p> <p>Port States 49</p> <p>Port Roles 49</p> <p>Link Types 49</p> <p>Multiple Spanning Tree 50</p> <p>Root Bridges and Port Priority 52</p> <p>Internal Spanning Tree 53</p> <p>Native VLAN 54</p> <p>Topology Change Detection 55</p> <p>Spanning Tree Extensions 55</p> <p>Root Guard 55</p> <p>BPDU Guard and BPDU Filter 57</p> <p>Unidirectional Link Detection 58</p> <p>Loop Guard 58</p> <p>Summary 58</p> <p>Exam Essentials 59</p> <p>Exercises 60</p> <p>Review Questions 62</p> <p><b>Chapter 3 Enterprise Network Design 67</b></p> <p>Physical Network Architectures 68</p> <p>Comparing Campus and Data Center Networks 69</p> <p>The Three-Tier Architecture 70</p> <p>The Two-Tier Collapsed Core: A Cheaper Alternative 73</p> <p>Layer 2 Design 74</p> <p>Switched and Routed Interfaces 75</p> <p>Switched Topologies 76</p> <p>Routed Access Topology 81</p> <p>EtherChannels 82</p> <p>Load-Balancing Methods 83</p> <p>Static EtherChannels 84</p> <p>Port Aggregation Control Protocol 88</p> <p>Link Aggregation Control Protocol 90</p> <p>First-Hop Redundancy Protocols 91</p> <p>Hot Standby Router Protocol 92</p> <p>Virtual Router Redundancy Protocol 94</p> <p>Gateway Load-Balancing Protocol 95</p> <p>Summary 97</p> <p>Exam Essentials 98</p> <p>Review Questions 100</p> <p><b>Chapter 4 Wireless LAN (WLAN) 105</b></p> <p>Radio Frequency Fundamentals 106</p> <p>Frequency and Amplitude 107</p> <p>Carrier Frequency 109</p> <p>Power Levels 110</p> <p>WLAN 802.11 Standards 115</p> <p>The Physical Layer: Frequencies and Channels 115</p> <p>Layer 2: 802.11 Media Access Control (MAC) 119</p> <p>Access Point Modes 124</p> <p>Autonomous 124</p> <p>Lightweight 124</p> <p>Wireless LAN Controller Selection Process 125</p> <p>Roaming and Location Services 126</p> <p>Roaming 126</p> <p>Location Services 128</p> <p>Summary 128</p> <p>Exam Essentials 129</p> <p>Review Questions 130</p> <p><b>Chapter 5 Open Shortest Path First (OSPF) 135</b></p> <p>Link-State Advertisements 136</p> <p>OSPF Areas 137</p> <p>LSA Types 137</p> <p>Neighbor Operations 141</p> <p>Configuring OSPF 142</p> <p>Configuring Area 0 on a Broadcast Network 142</p> <p>Viewing Neighbor Adjacencies 143</p> <p>Rigging the Designated Router Election 144</p> <p>Viewing and Understanding LSAs 146</p> <p>Authentication 154</p> <p>Passive Interfaces 158</p> <p>Injecting a Default Route 159</p> <p>Inter-Area Summarization 161</p> <p>Route Filtering 162</p> <p>Distribute Lists 162</p> <p>Summary 163</p> <p>Exam Essentials 164</p> <p>Exercises 164</p> <p>Review Questions 166</p> <p><b>Chapter 6 Enhanced Interior Gateway Routing Protocol (EIGRP) 171</b></p> <p>EIGRP Fundamentals 172</p> <p>EIGRP Packet Types 172</p> <p>The Diffusing Update Algorithm (DUAL) 173</p> <p>Weighted Metrics 176</p> <p>Configuring EIGRP 178</p> <p>Equal Cost Multipathing 181</p> <p>Modifying Metrics 182</p> <p>Switching Types 186</p> <p>Unequal Cost Multipathing 187</p> <p>Summary 190</p> <p>Exam Essentials 190</p> <p>Exercises 191</p> <p>Review Questions 192</p> <p><b>Chapter 7 The Border Gateway Protocol (BGP) 197</b></p> <p>BGP Fundamentals 198</p> <p>BGP AS Numbers 199</p> <p>BGP Session States 201</p> <p>Configuring BGP 202</p> <p>Advertising Prefixes 204</p> <p>Path Selection 205</p> <p>Route Redistribution among BGP, OSPF, and EIGRP 210</p> <p>Testing IP Reachability Using Tcl Scripts 214</p> <p>Troubleshooting 215</p> <p>Modifying Weight 218</p> <p>Advertising Summary Routes Using Route Aggregation 220</p> <p>Route Filtering Using Route Maps and Prefix Lists 222</p> <p>Summary 225</p> <p>Exam Essentials 226</p> <p>Exercises 226</p> <p>Review Questions 228</p> <p><b>Chapter 8 Network Address Translation and Multicast 233</b></p> <p>Network Address Translation 234</p> <p>Address Types 234</p> <p>Static NAT 236</p> <p>Dynamic NAT 241</p> <p>NAT Overload with Port Address Translation 247</p> <p>Outside Static NAT 250</p> <p>Removing NAT Configurations 251</p> <p>Multicast 252</p> <p>IP Multicast 253</p> <p>LAN Multicast 253</p> <p>Multicast Routing 257</p> <p>Configuring PIM 258</p> <p>Configuring a Multicast Receiver 262</p> <p>IP Multicast and Ethernet 264</p> <p>Summary 265</p> <p>Exam Essentials 267</p> <p>Exercises 268</p> <p>Review Questions 270</p> <p><b>Chapter 9 Quality of Service 275</b></p> <p>Understanding Quality of Service 276</p> <p>Classification and Marking 277</p> <p>Differentiated Services 277</p> <p>Layer 2 Marking 280</p> <p>Class Maps and Policy Maps 280</p> <p>Wireless QoS 281</p> <p>Policing 284</p> <p>Single-Rate, Two-Color Policing 284</p> <p>Single-Rate, Three-Color Policing 285</p> <p>Two-Rate Policing 287</p> <p>Queuing 288</p> <p>Class-Based Weighted Fair Queuing 288</p> <p>Low-Latency Queuing 293</p> <p>Explicit Congestion Notification 295</p> <p>Shaping 295</p> <p>Summary 297</p> <p>Exam Essentials 297</p> <p>Exercises 298</p> <p>Review Questions 299</p> <p><b>Chapter 10 Network Virtualization 303</b></p> <p>Virtual Machines, Hypervisors, and Network Virtualization 304</p> <p>Virtual Machines and Server Virtualization 305</p> <p>Network Virtualization 307</p> <p>Generic Routing Encapsulation Tunnels 312</p> <p>Configuring a GRE Tunnel to Tunnel IPv4 and IPv6 over IPv4 312</p> <p>Recursive Routing 318</p> <p>IP Security 319</p> <p>Internet Key Exchange 320</p> <p>Encapsulating Security Payload 320</p> <p>Configuring IPsec in Transport Mode with a GRE Tunnel 321</p> <p>Configuring IPsec in Tunnel Mode 324</p> <p>Location/ID Separation Protocol 326</p> <p>LISP Terminology 328</p> <p>Configuring LISP 328</p> <p>Simulating IP Mobility 332</p> <p>Is LISP a Routing Protocol? 334</p> <p>Virtual Extensible Local Area Network 334</p> <p>MAC Address Learning 335</p> <p>Forwarding 335</p> <p>Configuring VXLAN 336</p> <p>VXLAN Control Planes 336</p> <p>Configuring the Underlay 337</p> <p>Configuring the Overlay 338</p> <p>Configuring R1 and R2 339</p> <p>Virtual Routing and Forwarding 340</p> <p>Configuring a VRF 340</p> <p>Configuring Multi-VRF EIGRP 342</p> <p>Summary 345</p> <p>Exam Essentials 345</p> <p>Exercises 346</p> <p>Review Questions 347</p> <p><b>Chapter 11 Software-Defined Networking and Network Programmability 353</b></p> <p>What Is Software-Defined Networking? 355</p> <p>Software-Defined Access 356</p> <p>SD-Access Layers 357</p> <p>Physical Layer 357</p> <p>Network Underlay 358</p> <p>Fabric Overlay 359</p> <p>Controller Layer 363</p> <p>Management Layer 364</p> <p>Software-Defined WAN 369</p> <p>vManage Network Management System 370</p> <p>vSmart Controller 370</p> <p>vBond Orchestrator 371</p> <p>vEdge Routers 371</p> <p>Network Programmability and Automation 372</p> <p>The Cisco DNA Center Intent API 372</p> <p>vManage REST API 379</p> <p>NETCONF 383</p> <p>Embedded Event Manager 386</p> <p>Configuration Management Platforms 388</p> <p>Summary 391</p> <p>Exam Essentials 391</p> <p>Exercises 392</p> <p>Review Questions 393</p> <p><b>Chapter 12 Network Security and Monitoring 397</b></p> <p>Infrastructure Security 398</p> <p>Device Access 399</p> <p>Authentication, Authorization, and Accounting 402</p> <p>Access Control Lists 407</p> <p>Control Plane Policing 412</p> <p>Cisco Security Products 414</p> <p>AnyConnect Secure Mobility Client 414</p> <p>Umbrella 414</p> <p>Advanced Malware Protection ThreatGrid 414</p> <p>Advanced Malware Protection for Endpoints 415</p> <p>Firepower Next-Generation Firewall 415</p> <p>TrustSec 416</p> <p>MAC Security 418</p> <p>Wireless Security 418</p> <p>WebAuth 418</p> <p>Configuring WPA2 with 802.1X 422</p> <p>Configuring 802.1X on the Client 422</p> <p>Configure Preshared Keys 424</p> <p>Monitoring 425</p> <p>Conditional Debugs 425</p> <p>Simple Network Management Protocol (SNMP) 425</p> <p>Syslog 426</p> <p>Network Time Protocol 428</p> <p>NetFlow and Flexible NetFlow 429</p> <p>Switched Port Analyzer 432</p> <p>IP Service Level Agreement 434</p> <p>Summary 436</p> <p>Exam Essentials 437</p> <p>Exercises 438</p> <p>Review Questions 439</p> <p>Appendix Answers to Review Questions 443</p> <p>Chapter 1: Networking Fundamentals 444</p> <p>Chapter 2: Spanning Tree Protocols 445</p> <p>Chapter 3: Enterprise Network Design 447</p> <p>Chapter 4: Wireless LAN (WLAN) 448</p> <p>Chapter 5: Open Shortest Path First (OSPF) 450</p> <p>Chapter 6: Enhanced Interior Gateway Routing Protocol (EIGRP) 451</p> <p>Chapter 7: The Border Gateway Protocol (BGP) 453</p> <p>Chapter 8: Network Address Translation and Multicast 454</p> <p>Chapter 9: Quality of Service 456</p> <p>Chapter 10: Network Virtualization 457</p> <p>Chapter 11: Software-Defined Networking and Network Programmability 459</p> <p>Chapter 12: Network Security and Monitoring 460</p> <p>Index 463</p>