Network technologies and trends


December 14, 2008  7:04 AM

Cisco Systems announces CCIE Wireless Certification

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dear Friends Cisco Systems has announced the availably of CCIE Wireless Certification and it’s confirmed. So what are waiting for, you can start planning for the prestigious CCIE Wireless Certification, again Cisco proves they are concerned about the latest technological developments in the field of networking. Please do check a great article about CCIE Wireless Certification from Search Networking.Beta candidate registration should begin this fall, along with a blueprint release. Beginning early 2009 the Wireless CCIE beta testing will begin! As of now, topics of the test are expected to cover all aspects of wireless from design through implementation including the implications of security, routing and switching and voice technologies. Check back often for any additional information!Cisco CCIE Wireless Certification
The Cisco CCIE Wireless certification assesses and validates wireless expertise. Candidates who pass the CCIE Wireless certification exams demonstrate broad theoretical knowledge of wireless networking and a solid understanding of wireless local area networking (WLAN) technologies from Cisco, the market leader in WLAN technology.Benefits of CCIE Certified Wireless Certification

  • Greater opportunity for salary increase and job advancement in wireless networking industry
  • Validates expertise in major aspects of WLAN technology
  • Provides next step for individuals interested in a career in managing or working with Cisco wireless technologies

The written exam for CCIE Wireless will be made available through Pearson VUE on February 17th, 2009. The lab exam for CCIE Wireless will be made available in April 2009. To find out more about the CCIE Wireless Certification and access the latest blueprints and study materials, visit the Cisco Learning Network.

December 13, 2008  6:27 AM

How to configure an interface to default settings in a Cisco Switch or a Cisco Router?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

This is a cool command to erase just the configuration for a particular interface in a Cisco Switch or a Cisco Router.

In the following example we will configure the interface fast Ethernet 0/9  to default configuration

Current Configuration for fast Ethernet 0/9  

ITKE-Cisco#sho running-config interface fastEthernet 0/9

Building configuration…

 

Current configuration : 85 bytes

!

interface FastEthernet0/9

 switchport access vlan 100

 switchport mode access

end

ITKE-Cisco

 

Now we will configure the fast Ethernet 0/9 to default configuration using the following command

“default interface fastEthernet 0/9” 

ITKE-Cisco#configure t

Enter configuration commands, one per line.  End with CNTL/Z.

ITKE-Cisco(config)#default interface fastEthernet 0/9

Interface FastEthernet0/6 set to default configuration

ITKE-Cisco(config)#

 

Running configuration for fast Ethernet 0/9 after configuring to default settings

ITKE-Cisco#sho running-config interface fastEthernet 0/9

Building configuration…

 

Current configuration : 68 bytes

!

interface FastEthernet0/9

 switchport mode dynamic desirable

end

 

ITKE-Cisco#


December 3, 2008  5:58 AM

Switching Secrets for Multimedia by TechWise TV

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dear Friends here is one more opportunity from Cisco Systems TechWise TV which reveals how to use the techniques, tools and innovations you might already have to effectively support rich communication and full service video without adding bandwidth. 

Industry

Large Corporations
Mid Size / Enterprise Business
Who Should Attend
Technology decision makers.
Details
TechWiseTV
Switching Secrets for Multimedia
Thursday, December 18, 2008, 10–11 a.m. Pacific Time, 1–2 p.m. Eastern Time

As networks become vital for connecting people and processes, full-service video and other rich media communications are quickly gaining adoption. In this environment, your network foundation becomes more important than ever. This TechWiseTV episode will show you how to make the most of the switching technologies you might already have to achieve the performance you need.

Carl Solder, Cisco Distinguished Marketing Engineer and one of only four Distinguished Switch Engineers in the world, joins TechWiseTV to reveal the valuable techniques, tools, and innovations that can help you make the most of your switching investments.

Discover how rich multimedia is affecting switch and network design. Find out how to architect a real-time network to support rich communication and full-service video through extensive whiteboarding sessions. Learn the most overlooked and underpublicized secrets for effective core security as well as:  How to use Generic Online Diagnostics (GOLD), NetFlow, and other built-in tools to identify and eliminate the sources of jitter   What makes a switch truly “stackable” and why the distinction is vitally important   How to use the Programmable Intelligent Services Accelerator (PISA) to achieve effective Layer 4–7 security   How to take advantage of the Cisco Virtual Switching System (VSS) to maximize availability, scalability, management, and ease of maintenance

Live Q&A

Our expert guests will be available to answer your switching questions during the broadcast.

Agenda
Segment 1: “A Switch Is Just a Switch, Right?”
Segment 2: Enhancing Core Security
Segment 3: Maximizing Redundancy
Segment 4: Switch and Network Design for Rich Media

Cisco only privacy policy: You are being invited to attend a Cisco-sponsored event. By providing your contact details, a representative may contact you regarding this event. All personal information will be handled in accordance with Cisco’s privacy notice. http://www.cisco.com/en/US/swassets/sw293/privacy_statement.html

 

Register


December 2, 2008  7:30 AM

How to configure SPAN(Switched Port Analyzer ) feature in a Cisco Catalyst Switch

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

It’s quite important for Network Engineers and an essential network troubleshooting technique to utilize the ability of Cisco Catalyst Switches to mirror the traffic and send it to a sniffer for analysis. All Cisco Catalyst Switches support the Switched Port Analyzer (SPAN) feature. The SPAN copies traffic from the specified interface or VLANs and mirrors this traffic to a specified destination interface (SPAN interface).  Then you can connect the PC with a sniffing tool (Wireshark) installed on the destination SPAN interface to capture all the mirrored traffic.Let’s see how to configure the SPAN in Cisco Catalyst Switches. SPAN To enable the switch SPAN mirroring feature configure the following on the catalyst switch: Configuration Example – Monitoring traffic from a specific interfaceITKEAS01#configure tITKEAS01(config) monitor session 1 source interface gigabitEthernet 0/5

ITKEAS01(config)#monitor session 1 destination interface gigabitEthernet 0/10 

The  above configuration will capture all traffic from interface gigabitEthernet 0/5  and send it to SPAN port interface gigabitEthernet 0/10 

Configuration Example – Monitoring an entire VLAN traffic
ITKEAS01(config)#monitor session 1 source vlan 100
ITKEAS01(config) monitor session 1 destination interface gigabitEthernet 0/10
The  above configuration will capture all traffic of VLAN 100 and send it to SPAN port interface gigabitEthernet 0/10

Use  show monitor session 1 to verify your configuration.


December 2, 2008  7:17 AM

“Understanding the Latest Security Trends in an Evolving Landscape” Online Seminar By Cisco

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dear Friends

Are you interested in understanding the latest security trends, if yes then there is a golden opportunity for you all waiting on 16th of December, 2008 at 11:00 CET a Webcast series will be hosted by Cisco which is dedicated to discussing the latest security trends and the solutions available to address these emerging issues .

Security Event

Pic Courtesy: Cisco Systems

Topics Include:

  • How today’s business challenges are increasing the need for security
  • Evolving technology and staying secure
  • Driving a systems approach with a Cisco Self-Defending Network
  • An update on Cisco’s Security Solutions Portfolio
  • Case studies – Insight into how a variety of organizations have used Cisco Solutions to ensure they stay secure
  • Live Q&A

Don’t miss the opportunity to join this online event and have your questions answered live, by a Security expert.Register to attend here 
 


November 29, 2008  12:51 PM

Networking Professionals good news from Cisco to recertify your Cisco Certifications

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Cisco has extended the recertification for the networking professionals whose certifications are lapsing soon. With this special offer you start recertifying by taking an exam at the regular prick and if you don’t succeed in your first attempt no need to panic , you’ll get a second opportunity to pass the exam that too free.

Cisco reccert

Picture Courtesy:Cisco Systems.

So, what’s holding you back?
Cisco exams are challenging—that’s one of the reasons they’re so highly valued by IT professionals and employers alike. Because Cisco certification is an investment in your future, we’re offering you a way to help secure your investment. To get details on this special offer and sign-up for a risk-free exam, visit www.pearsonvue.com/cisco/recertify today.Click here to view the Cisco recertification policy.  http://www.cisco.com/web/learning/le3/learning_about_recertification.htm 

How to Recertify

Renewal requires certification holders to register for and pass the appropriate Cisco recertification exam(s). In order to recertify, exam requirements must be met prior to the certification expiration date. Individuals with an expired certification(s) must repeat the entire certification exam process in order to regain their certification(s). Visit the Cisco Career Certifications Tracking System to check the status of your certification(s).

Next Steps


November 29, 2008  5:56 AM

Cisco announces Winners of the Digital Cribs Video Contest for Aspiring Filmmakers

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dear Friends

As we all aware Cisco conducted a digital crib contest and now the much awaited results are announced and the Winners are

Brand Winners:

 1) Robin Glass for the film “Robin Glass – Digital Crib” (Brazil)

2) Ankur Kapoor for the film “Jasmit Digital Crib” (India)

3) Mark Brindle for the film “Mike Cotton” (United Kingdom)

4) Spike McKenzie for the film “Travis’s Digital Crib” (Australia)

5) Dr. Babu Sundaram for the film “Enga VeeduCHD” (United States)

6) CJ Bruce for the film “DigiCrib(AustinScott)” (United States)

7) Jake Wehrman for the film “Roscoe Wright” (United States)

8) Paul Eduard Schneider for the film “Moving on Fast” (Romania)

9) Jacinta Britton for the film “Mafs DC” (Australia)

10) Dawn Natalia for the film “Larry Natalia’s Crib” (United States)

Viewer’s Choice Winners:

1) Regina Gelfo for the film “Tech Geek Warehouse” (United States)

2) Matthew Collins for the film “Andrew’s Digital Crib” (United States)

3) Jethro Patalinghug for the film “Digital Cribs/Henry Lim” (Phillipines)

4) Alan Gonzalez for the film “Cinthya’s Digital Crib” ( Mexico)

5) Alessandro Merletti de Palo for the film “Public Digital Crib” (Italy)

6) Vivek Rathi for the film “Mixed Media Painting” (India)

7) Chris Hughes for the film “The House That Geek Built” (United States)

8) Lukasz Pruchnik for the film “Arnaud’s Digital Crib” (United States/France)

9) Patrick Smith for the film “A Japanese Digital Crib” (United States/Japan)

10) Varala Aanand for the film “Long Battle with Short” (India)

[kml_flashembed movie="http://www.youtube.com/v/hJOQaxDn9ck" width="425" height="350" wmode="transparent" /] 


November 26, 2008  5:59 AM

What is Dynamic ARP Inspection (DAI) ?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dynamic ARP inspection is a security feature which validates ARP packet in a network. Dynamic ARP inspections validates the packet by performing IP to MAC address binding inspection stored in a trusted database (the DHCP snooping database) before forwarding the packet. Dynamic ARP intercepts, logs, and discards ARP packets with invalid IP-to-MAC address bindings. This capability protects the network from certain man-in-the-middle attacks.

Dynamic ARP inspection ensures that only valid ARP requests and responses are relayed.

The switch performs these activities:·        

Intercepts all ARP requests and responses on untrusted ports ·        

Verifies that each of these intercepted packets has a valid IP-to-MAC address binding before it updates the local ARP cache or before it forwards the packet to the appropriate destination·        

Drops invalid ARP packets


November 22, 2008  12:56 PM

How to configure DHCP Snooping in a Cisco Catalyst Switches.

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

 So here we go, with the configuration of DHCP snooping on a Cisco Switch. This feature protects the network by allowing the Cisco Switches to accept DHCP response message only from the authorized servers connected to the trusted interfaces in a Cisco Switch.

DHCP

All Switch to  Switch connections are configured as 802.1 1Q Trunk ports.

IP Address and HSRP Details for the Core Switches  DHCP 1From the above scenario we have two Cisco 6513 Series Switches as a Core/ Distribution with three VLANS one for management of Switches VLAN 50,VLAN 100 for all the servers and VLAN 101 for clients. Two Cisco 3560 Series Switches as Server Farm Switches and a Cisco 3560 Series Switch as an Access Switch.There are two DHCP servers with an IP address 10.0.1.100 and 10.0.1.101 connected with Server Farm Switches with HP NIC teaming. We configure DHCP Snooping based on above scenario. 

The first step to configure DHCP Snooping is to turn on DHCP snooping in all Cisco Switches using the “ip dhcp snooping” command. 

All Cisco Switches (config)#ip dhcp snooping  Second step is to configure the trusted interfaces, from the above scenario all trunk ports are configured as trusted ports as well as the interfaces G0/7,(ITKESF01 50.0.0.6),  G0/17,(ITKESF02 50.0.0.7),  G0/9 ITKESF01 50.0.0.6)  and G0/18 ITKESF02 50.0.0.7)  connected to DHCP servers with IP 10.0.1.100 and 10.0.1.101. Lets configure all trunk ports in ITKEBB01 

ITKEBB01(config)#interface range  gigabitEthernet 3/21 – 23

ITKEBB01 (config-if)#ip dhcp snooping trust 

Now let’s configure all trunk ports in ITKEBB02 

ITKEBB02(config)#interface range  gigabitEthernet 3/21 – 23 ITKEBB02 (config-if)#ip dhcp snooping trust 

ITKEBB02 (config)#interface gigabitEthernet 3/16

ITKEBB02 (config-if)#ip dhcp snooping trust 

Now let’s configure the trusted ports for the DHCP servers  

ITKESF01(config)#interface gigabitEthernet 0/7

ITKESF01 (config-if)#ip dhcp snooping trust 

ITKESF01(config)#interface gigabitEthernet 0/17 ITKESF01 (config-if)#ip dhcp snooping trust 

ITKESF02(config)#interface gigabitEthernet 0/9

ITKESF02 (config-if)#ip dhcp snooping trust 

ITKESF02(config)#interface gigabitEthernet 0/18 ITKESF02 (config-if)#ip dhcp snooping trust 

Now let’s configure the trunk ports  Access Switch ITKEAS01 

ITKEAS01(config)#interface range  gigabitEthernet 0/49 – 52

ITKEAS01 (config-if)#ip dhcp snooping trust 

Finally we are going to configure VLANS for DHCP snooping DHCP snooping will used on all the VLANs (VLAN 100 & 101)except management VLAN 50 . Also we will limit the requests rate received in the Access Switch (ITKEAS01)  ALL SWITCHES(config)# ip dhcp snooping VLAN 100,101 

ITKEAS01(config)#interface range  gigabitEthernet 0/1 – 48

ITKEAS01 (config-if)#ip dhcp snooping limit rate 20

Displaying the DHCP snooping  

DHCP2

For further reference please do check this article from Cisco about DHCP snooping.


November 22, 2008  7:22 AM

Why should we consider implementing DHCP Snooping?

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Dear FriendsIn my previous post I was discussing about the DHCP Snooping, it may be hard to believe a DHCP sever can lead to lot troubles in your network. Consider a host sends out DHCP discovery packets, it listens for a DHCP offers packets and accepts the first available offer from a DHCP server. Guess what happens if the host gets a DHCP offer from a rouge DHCP server? The host could end up with using rouge DHCP server with an IP address and the default gateway. The host cannot access any of the resources from your network. 

Yes we can prevent this with DHCP snooping thanks to Cisco. DHCP snooping classifies interfaces as either trusted or untrusted. DHCP messages received on trusted interfaces will be permitted to pass through the Cisco switch, but DHCP messages received on untrusted interface in a Cisco Switch results in putting the interface into error disable state. Configuring DHCP snooping in a Network is quite troublesome job but I will try to make things easier for you by using a scenario, which hopefully I am going post soon.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: