UDLD

Unidirectional: - refers to data either sent or received in one direction.

Consider the couple of cisco catalyst switches interconnected with fiber like we see here           

The interesting things about fiber optic cable is we have typically 2 straight interconnected our devices because one device is going to transmit on one straight and it will receive on the other

For Example in switch Sw1. We have got these 2 orange lines representing the two fiber optics straight. They both plugging in same switch port. But there are straight of fiber in that connecter and, the top straight on SW1 is, being used for transmission, and that straight is being used for receiving on SW2 and vice versa. The transmission or the “TX straight” on Sw2 is, the receiver the “RX straight” on SW1. SW1 will send traffic over SW2 using its transmission straight, and the same thing in SW2 will used its transmission straight to send traffic over SW1.

However let’s imagine that one of the straight get damaged. There is phenomena in the industry known as “backhoe fade”

 that’s where backhoe might come and damage fiber optic cable as doing some digging, or other things cause it to happen But the term often “backhoe fade” where fiber optic straight has been damaged by somebody digging, and they hit the cable, and this situation let’s imagine that “backhoe” is damaged the top straight, but not the bottom straight

                               With these switches have been anyway knowing that there interconnection was damaged. SW1 it can still transmit traffic, and it would not know if that traffic got dropped, and SW2 would not know that traffic got dropped. Because it never knew that it getting the traffic. SW2 it could send traffic, it being received by SW1.How these switches know something wrong

                               That’s why cisco proprietary feature called UDLD comes in. UDLD is layer 2 technology and its going to allow cisco switches enable for UDLD

To communicate one another at layer2. It gonna use well known mac address 01:00:0C:CC:CC:CC , different model of cisco devices use different interval for sending out UDLD messages But usually on order of about 15 seconds

                            When switch sends the UDLD message to far end device. It expect that UDLD message to be returned, if it not returned that can be indication to the switch “something went wrong”. We might have unidirectional link if we do have unidirectional link what the switch can do, it can put that port into “err-disable” state. Where the switch not gonna consider that port for forwarding traffic

In CCNA we could logically bundled together multiple physical link into “etherchannel” 

Using UDLD with Etherchannel is that if we detect we have unidirectional link on one of those physical connection making up etherchannel bundle. The switch not going to put entire bundle into “err-disable” state. It only gonna put one physical port into “err-disable” state

Different mode of UDLD

Normal Mode: - if a switch detect but it believes to be unidirectional link one of its ports. It just going to mark that port has having an “undetermined” state and also generate syslog message.

Aggressive mode: - Recommended mode use for most of the time. If switch believes it has a unidirectional link on of its ports. It’s going to send UDLD message, every seconds for 8 Seconds, if it never sees those UDLD message returned to itself. It’s going to place that port into “err-disable”  

Configuration and Verification

I have 3560 Series switch. It have mainly copper port and couple of gigabit fiber ports. In UDLD our focus on fiber, normally UDLD used with Fiber ports. It can be used with copper ports

Message Time:-How often in seconds we gonna sending out UDLD message

Ø  Enable Mode: - Normal mode

Its only enable UDLD on fiber ports. The recommendation from Cisco is that we do turned on UDLD globally as supposed to dong an interface by interface bases

To Turn UDLD to copper Port

we think we resolved the issue. Fiber issue has been repaired. If we have to reset all over the port set have been put into ‘err-disabled”, state because of UDLD

This command same effect as we going into interface and doing “shutdown” followed by “no shutdown”

Click Here To Download The PDF FIle

Read More

PoE

Ø Cisco inline Power:-Power of Ethernet (POE) on Cisco Devices. Cisco introduce this back in year 2000 and cisco inline power maximum output 7.7 Watts of power. That’s was fine for many iPhone back on those days

Ø  IEEE 802.3af:- Around 2003 IEEE came out with standard. It was the IEEE 802.3af standard. It was provided exactly double what cisco inline provided. It provided 15.4 Watts of Power

Ø  IEEE 802.3at (PoE+):- More reasoned standard notified in 2009 is IEEE 802.at (PoE+). It can provide 25.5 Watts of Power. That we for use just 4 of 8 wire in that Ethernet cable but there is a way to use all 8 wire and we can double the power. We can get 51 Watts of power use of 802.at (PoE+).

Ø  Cisco universal PoE (60w) :- But not yet standard

Aside from the Power differences something else that distinguish cisco inline power from the IEEE standard is how switchport an example

                                               Will detect that it is attached to a device that want to receive power. The way cisco inline power works, is sends the tone out of port to the attached device, and if that attached device support cisco inline power, and its unpowered state currently. There is a circuit that closed, and that tone get sent to that attached device flows back to the switch. The switch send the out of tone, it our tone coming back, it conclude that this device need to receive power, and that attached device can use CDP to tell the switch how much power he needs. 

                                                  However IEEE standard instead of sending out of tone, it measure the resistance of attached device. It’s looking for a resistance around 25 Kilo Ohms. Then switch knows how much voltage it applied to wires, it sees how much current flowing, and it able to determine the resistance, and different ranges of resistance can determine, what class of device this is, different class of devices can get different amount of power. The valid range of classes is 0-4, and class 0 device means that don’t support power discovery and class 2, 3 and 4 they support different maximum power levels. However class 4 device only compatible with (PoE+)

Configuration and Verification

I have Cisco catalyst 3750 Series switch that support POE

By default POE is enabled

Click Here to Download The "PoE" PDF File

Read More

CDP vs LLDP

 CDP or LLDP both run at Layer2  

We don’t need even ip addressing on neighboring devices to see one another  

CDP	LLDP
Cisco Proprietary	Open Standard
CDP tends to more lightweight protocol  as compared to LLDP	We have availability to do more customization with LLDP
	LLDP control what information is sent between neighbors. We can send a collection of attribute and these attribute control type, length and value description. That often abbreviated TLV. We have variety of TLV

CDP enabled by default

To Enable LLDP in Cisco Switch   

Ø  Sw1(config)#lldp run  

 For controlling the LLDP to what information sent to neighbors 

Ø  Sw1(config)# lldp tlv-select ?    

  

To Show more information about neighbors  

Ø  Sw1#show lldp neighbors  

Ø  Sw1#show lldp neighbors detail  

To Disable LLDP in particular interface  

Ø  Sw1(config)#interface fastethernet 1/0/1  

Ø  Sw1(config-if)#no lldp receive  

Ø  Sw1(config-if)# no lldp transmit  

  

  

Conclusion: - LLDP can give us very similar information like CDP. Infact bit more information we have more granular control over what information get exchanged and its Vendor inoperable   

Click Here To Download The PDF File

Read More

Layer 2 vs. Multilayer Switches (CCNP)

Ethernet Switch:-A Device that make forwarding decision based on Layer2 or Mac-address information 

  Remember the Structure of MAC Address

Its 48 bits in length and first portion of mac-address identifies Vendor(That manufacture that device).This Vendor identification called OUI(Organizationally Unique Identifier) and remainder of  24 bits are assigned by Vendor and this help keep all the different network devices in the world unique from one another base on the unique mac address and 

Layer2 switch can use this mac-address information to make forwarding decisions 

                         Switch Populates the mac-address table also called as “CAM TABLE” and it can make forwarding decisions based on destination mac-address. That’s the general theory of Ethernet switch operation

Switch Inspection:- 

Here if we Layer2 Switch if this switch trying to determine at which port it should forward the frame it can inspect multiple things:-
1. Layer2 Forwarding information (information in CAM table)
2. May be we have some “ACL for security” and also “ACL for Qos”
So Cisco Switch take those “Security ACL” and “Qos ACL” and some other information and merge that together logically and put that information to table referred to “TCAM Table”

Router vs. Switches

Router	Switch
Ø         Router have Auxiliary Port	Ø         Switch will not
Ø         Router tend to have more flexibility in interface type	Ø         Many switches only support “Ethernet” connection
Ø         Router might be able to support serial connection like T1,E1 interfaces also might have analog interface(for telephony)	Ø         Some high and catalyst switches have similar set of connection
	Ø Switch uses ASIC that give switches very fast performance

Layer Structure:-

Ø  Building Access Layer:- End user devices connected to the network in this layer might have L2 or L3 switches and these access layer switches may connect to the switches that reside at the network “building distribution layer”

Ø  Building Distribution Layer:- Probably Layer3 or Router which have multiple connection between switches and we have “red oval” going around the connection that called “etherchannel” 

Ø  Campus backbone: - concern with speed, getting traffic from one building distribution layer switch to other building distribution layer switch. We don’t do much packet manipulation at campus backbone. Some higher level switch cisco catalyst 6500 or other

Click Here To Download The PDF File

Read More

PFSense Firewall

Notes

Read More

Cisco iOS

Ø  Cisco iOS Use IFS (Integrated file System) To keep track of files and Folders

Ø  IFS give us Differnet Places where we Store and Retrive the Files 

Load the iOS from TFTP Server to Router

First Check the Connectivity with TFTP Server

TFTP Server is nothing But a PC which we install the TFTP software to Copy the Files from the Router}

Ø  Router# ping 192.168.1.50 (tftp Server ip address)

Ø  Router# copy tftp: flash:

Ø  Address or name of remote host []? 192.168.1.50                               {tftp server ip address}

Ø  Source filename []? c2900-universalk9-mz.SPA.151-4.M4.bin           {iOS file name}

Ø  Destination filename [c2900-universalk9-mz.SPA.151-4.M4.bin]             {enter}

  {iOS file name same as above}

{This will take some time}

Ø  Router# show flash:                                      (to check the iOS}

To Boot from this iOS image

Ø  Router(config)#boot system flash c2900-universalk9-mz.SPA.151-4.M4.bin            {new iOS}

Ø  Router(config)#no boot system flash c2600-universalk9-mz.SPA.151-4.M4.bin  

{To Train the router to Boot the system with newly iOS instead of Previous}

Click Here To Download The PDF File

Read More