SPAM-LOW: CCIE written (UNCLASSIFIED)

July 2nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

 
Well, I finally took my ccie written and passed! Actually i’m not excited at all, because the only thing that matters is the lab. But at least I have an annoying obstacle out of my way. I’m not going to waste anyone’s time with details, but there were a few things that threw me off. For one, its 105 questions, not 100. Just odd. Then, there were way more QoS questions than I expected, and its almost as if i didn’t see MPLS at all? It seems that there was too much of a focus on EIGRP route selection and stub routing, but the biggest topic was OSPF. Also, there was more BGP than i expected (um… why didn’t I expect much bgp in the first place?). But, it’s behind me now. Oh, and you can mark your questions and go back. But the weirdest thing was, after the NDA check box screen, it jumped straight into the test. No survey. Shocking if you don’t see it coming. To sum things up, it was not an easy test, and there were many concepts I feel I wouldn’t need to know for the lab. You can’t study for the lab solely, then just take the written. A 2 week hiatus for the written will be necessary.
 
Some engineers seem to believe that if they hoard information, they become irreplaceable.
Trust me on this one — you and I are replaceable. In fact, I’ve made a living by coming in to document networks when “irreplaceable” engineers were fired
 
-O’Really Network Warrior
 

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

SPAM-LOW: CCIE written (UNCLASSIFIED)

July 2nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

 
Well, I finally took my ccie written and passed! Actually i’m not excited at all, because the only thing that matters is the lab. But at least I have an annoying obstacle out of my way. I’m not going to waste anyone’s time with details, but there were a few things that threw me off. For one, its 105 questions, not 100. Just odd. Then, there were way more QoS questions than I expected, and its almost as if i didn’t see MPLS at all? It seems that there was too much of a focus on EIGRP route selection and stub routing, but the biggest topic was OSPF. Also, there was more BGP than i expected (um… why didn’t I expect much bgp in the first place?). But, it’s behind me now. Oh, and you can mark your questions and go back. But the weirdest thing was, after the NDA check box screen, it jumped straight into the test. No survey. Shocking if you don’t see it coming. To sum things up, it was not an easy test, and there were many concepts I feel I wouldn’t need to know for the lab. You can’t study for the lab solely, then just take the written. A 2 week hiatus for the written will be necessary.
 
Some engineers seem to believe that if they hoard information, they become irreplaceable.
Trust me on this one — you and I are replaceable. In fact, I’ve made a living by coming in to document networks when “irreplaceable” engineers were fired
 
-O’Really Network Warrior
 

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

SPAM-LOW: CCIE written (UNCLASSIFIED)

July 2nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

 
Well, I finally took my ccie written and passed! Actually i’m not excited at all, because the only thing that matters is the lab. But at least I have an annoying obstacle out of my way. I’m not going to waste anyone’s time with details, but there were a few things that threw me off. For one, its 105 questions, not 100. Just odd. Then, there were way more QoS questions than I expected, and its almost as if i didn’t see MPLS at all? It seems that there was too much of a focus on EIGRP route selection and stub routing, but the biggest topic was OSPF. Also, there was more BGP than i expected (um… why didn’t I expect much bgp in the first place?). But, it’s behind me now. Oh, and you can mark your questions and go back. But the weirdest thing was, after the NDA check box screen, it jumped straight into the test. No survey. Shocking if you don’t see it coming. To sum things up, it was not an easy test, and there were many concepts I feel I wouldn’t need to know for the lab. You can’t study for the lab solely, then just take the written. A 2 week hiatus for the written will be necessary.
 
Some engineers seem to believe that if they hoard information, they become irreplaceable.
Trust me on this one — you and I are replaceable. In fact, I’ve made a living by coming in to document networks when “irreplaceable” engineers were fired
 
-O’Really Network Warrior
 

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

RPF Failure - The easy way (UNCLASSIFIED)

May 30th, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

 
I’ve been a bit busy lately, but still cracking at these tech specific labs. I want to make sure I have a fundamental grasp of these topics as well as some rote memorization of the configuration. I’d hate to leave this phase of my study only to find my self forgetting half of the concepts and need a constant review. But it seems a review is necessary afterall, since I have been spending an incredible amount of time per topic. Is it overkill? Well as I’m on multicasting now, it seems learning the IGMP/CGMP from the OECG 3rd edition seems to be so. When the end result is just ip igmp join-group x.x.x.x , do I need to complicate my studies even more?
 
So as I soldier on my labs, I have had some thoughts on RPF failure. IE’s blog had an excellent entry on discovering and fixing RPF failures. But I had to ask my self this question:
 
Isn’t there a better way to detect the multicast flow? when there is an RPF failure, the rpf neighbor in the sh ip mroute doesn’t reflect your configured multicast domain, but instead represents where the multicast packets are coming from according to the unicast domain, since multicast packets will follow the unicast routing table. So it seems you just have to remember where pim was configured and compare that with the best unicast path. I was hoping the sh ip mroute would show the rpf neighbor from where the multicast domain is actually configured. What a fool… what a fool.
 
So in one sentence, what I will look for is - configured multicast path vs unicast best path selection
 
 

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

Review of BGP vol 1 lab workbook (UNCLASSIFIED)

May 22nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

Finally i’ve completed the volume of BGP labs which has taken me about a month to do. Could it have taken longer? Sometimes its really hard to squeeze in the time with work. I’ve also taken the approach by which I don’t watch all the COD videos initially before the labs, but during my lab series. Mostly in an alternating fashion of Mon labs, Tue COD, etc. So let me hit the high points here.
 
Basic Peering
 
Straight forward so far. These are things you get down with muscle memory and never forget. I also made it a point to force myself to do certain things by default to prepare myself for more complex scenerios, such as creating loopbacks to update-source to, or using ebgp-multihop between peers. The good thing about this is, I get the habit down, and don’t hurt the lab, or contradict the purpose of the lab.
 
Passing routes through the AS
 
scenarios
 
iBGP Synchronization, Transiting Non-BGP Speaking Devices -
Redistribution Transiting
Non-BGP Speaking Devices - Tunneling
 
Ok, once you understand how these work, its not a problem. Mainly forgetting to check for these things can be a pain. So thats where my questions to ask yourself for BGP come into play. Is BGP running everywhere? Is there a full mesh of iBGP peerings? Instead of getting caught up repeating the Sync rule or the Split-Horizon rule to yourself, and wondering whether to turn sync off (its off by default anyway in newer IOS’s), just know that these rules don’t matter. Think in terms of BGP routing, if a middle router isn’t running BGP, that router is going to black hole routes unless you do something.
 
BGP Bestpath Selection - Various attributes
 
So after fumbling through these scenarios a few times, I noticed that the concept is simple enough, but its not understanding route maps entirely that was hurting me. To sum this up, attributes that work in an outbound direction (e.g. Weight, Local Pref) need a route-map in statement to work properly. The logic? You have to tag the routes from your neighbor with that attribute, and the router sees those attributes in an outbound way. For attributes that work in an inbound way (e.g. AS_PATH, MED) you route-map out. Just think opposite. Thing is, you have to remember what attributes work in which direction, or at least use reasoning to figure it out.
 
Route Reflectors and Confederations
 
The Route Reflectors were easy enough, you can’t reflect non-client routes to other non-clients. As for confederations, wow that screwed with me for a little bit. Configuring the confederations and getting it to work wasn’t a problem. Conceptually, nothing too tough. Its how the next-hop processing works for Sub-AS’s . Even now, I keep doubling back on my notes unsure of myself. But I have to conclude you think of next-hop processing in terms of the Sub-AS, not the actual AS.
 
BGP Communities
 
This boiled down to correctly using route-maps and knowing the difference between local-as and no-export. Remember, No-Export keeps it inside the real AS, Local-AS keeps it inside the Sub-AS.
 
Regular Expressions
 
Yeah, i need lots of practice on this one. Suppose i’ll save a config with loopbacks and use the sh ip bgp regexp  command to practice this often during my journey.
 
Outbound Route Filtering
 
I read internetworkexpert.com’s tutorial on this subject, then had no problems with this. To sum this up:
 
With BGP ORF, the downstream CE router dynamically tells the upstream PE router what routes to filter outbound. This means the CE router will only receive updates about prefixes that it wants. To configure, match the routes with a prefix list, then configure the BGP neighbors to negotiate ORF capability as send (CE), or receive (PE) done in ipv4 address-family mode. Then apply on the CE router, e.g. neighbor x.x.x.x prefix-list AS_100_in . The logic here, your tagging routes from the PE router, which points that direction, and the capability send / receive commands acknowledges this.
 
 
BGP Aggregation
 
Seems to be a focus on knowing which aggregation options work globally, and which work on a per neighbor basis. Also key here is knowing that aggregation hides the AS-path, so knowing how to use as-set is essential, and knowing the consequences as well.
 
BGP Allow AS in
 
Problem with using the as-set option with aggregate-address is, you might have a router (like one summarized in the summary) seeing its own AS in the as-path. allow-as-in overrides this behavior
 
All in all, I really enjoyed this workbook. I hope to buy Narbik’s volumes and try his take on it.

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

Review of BGP vol 1 lab workbook (UNCLASSIFIED)

May 22nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

Finally i’ve completed the volume of BGP labs which has taken me about a month to do. Could it have taken longer? Sometimes its really hard to squeeze in the time with work. I’ve also taken the approach by which I don’t watch all the COD videos initially before the labs, but during my lab series. Mostly in an alternating fashion of Mon labs, Tue COD, etc. So let me hit the high points here.
 
Basic Peering
 
Straight forward so far. These are things you get down with muscle memory and never forget. I also made it a point to force myself to do certain things by default to prepare myself for more complex scenerios, such as creating loopbacks to update-source to, or using ebgp-multihop between peers. The good thing about this is, I get the habit down, and don’t hurt the lab, or contradict the purpose of the lab.
 
Passing routes through the AS
 
scenarios
 
iBGP Synchronization, Transiting Non-BGP Speaking Devices -
Redistribution Transiting
Non-BGP Speaking Devices - Tunneling
 
Ok, once you understand how these work, its not a problem. Mainly forgetting to check for these things can be a pain. So thats where my questions to ask yourself for BGP come into play. Is BGP running everywhere? Is there a full mesh of iBGP peerings? Instead of getting caught up repeating the Sync rule or the Split-Horizon rule to yourself, and wondering whether to turn sync off (its off by default anyway in newer IOS’s), just know that these rules don’t matter. Think in terms of BGP routing, if a middle router isn’t running BGP, that router is going to black hole routes unless you do something.
 
BGP Bestpath Selection - Various attributes
 
So after fumbling through these scenarios a few times, I noticed that the concept is simple enough, but its not understanding route maps entirely that was hurting me. To sum this up, attributes that work in an outbound direction (e.g. Weight, Local Pref) need a route-map in statement to work properly. The logic? You have to tag the routes from your neighbor with that attribute, and the router sees those attributes in an outbound way. For attributes that work in an inbound way (e.g. AS_PATH, MED) you route-map out. Just think opposite. Thing is, you have to remember what attributes work in which direction, or at least use reasoning to figure it out.
 
Route Reflectors and Confederations
 
The Route Reflectors were easy enough, you can’t reflect non-client routes to other non-clients. As for confederations, wow that screwed with me for a little bit. Configuring the confederations and getting it to work wasn’t a problem. Conceptually, nothing too tough. Its how the next-hop processing works for Sub-AS’s . Even now, I keep doubling back on my notes unsure of myself. But I have to conclude you think of next-hop processing in terms of the Sub-AS, not the actual AS.
 
BGP Communities
 
This boiled down to correctly using route-maps and knowing the difference between local-as and no-export. Remember, No-Export keeps it inside the real AS, Local-AS keeps it inside the Sub-AS.
 
Regular Expressions
 
Yeah, i need lots of practice on this one. Suppose i’ll save a config with loopbacks and use the sh ip bgp regexp  command to practice this often during my journey.
 
Outbound Route Filtering
 
I read internetworkexpert.com’s tutorial on this subject, then had no problems with this. To sum this up:
 
With BGP ORF, the downstream CE router dynamically tells the upstream PE router what routes to filter outbound. This means the CE router will only receive updates about prefixes that it wants. To configure, match the routes with a prefix list, then configure the BGP neighbors to negotiate ORF capability as send (CE), or receive (PE) done in ipv4 address-family mode. Then apply on the CE router, e.g. neighbor x.x.x.x prefix-list AS_100_in . The logic here, your tagging routes from the PE router, which points that direction, and the capability send / receive commands acknowledges this.
 
 
BGP Aggregation
 
Seems to be a focus on knowing which aggregation options work globally, and which work on a per neighbor basis. Also key here is knowing that aggregation hides the AS-path, so knowing how to use as-set is essential, and knowing the consequences as well.
 
BGP Allow AS in
 
Problem with using the as-set option with aggregate-address is, you might have a router (like one summarized in the summary) seeing its own AS in the as-path. allow-as-in overrides this behavior
 
All in all, I really enjoyed this workbook. I hope to buy Narbik’s volumes and try his take on it.

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

Review of BGP vol 1 lab workbook (UNCLASSIFIED)

May 22nd, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

Finally i’ve completed the volume of BGP labs which has taken me about a month to do. Could it have taken longer? Sometimes its really hard to squeeze in the time with work. I’ve also taken the approach by which I don’t watch all the COD videos initially before the labs, but during my lab series. Mostly in an alternating fashion of Mon labs, Tue COD, etc. So let me hit the high points here.
 
Basic Peering
 
Straight forward so far. These are things you get down with muscle memory and never forget. I also made it a point to force myself to do certain things by default to prepare myself for more complex scenerios, such as creating loopbacks to update-source to, or using ebgp-multihop between peers. The good thing about this is, I get the habit down, and don’t hurt the lab, or contradict the purpose of the lab.
 
Passing routes through the AS
 
scenarios
 
iBGP Synchronization, Transiting Non-BGP Speaking Devices -
Redistribution Transiting
Non-BGP Speaking Devices - Tunneling
 
Ok, once you understand how these work, its not a problem. Mainly forgetting to check for these things can be a pain. So thats where my questions to ask yourself for BGP come into play. Is BGP running everywhere? Is there a full mesh of iBGP peerings? Instead of getting caught up repeating the Sync rule or the Split-Horizon rule to yourself, and wondering whether to turn sync off (its off by default anyway in newer IOS’s), just know that these rules don’t matter. Think in terms of BGP routing, if a middle router isn’t running BGP, that router is going to black hole routes unless you do something.
 
BGP Bestpath Selection - Various attributes
 
So after fumbling through these scenarios a few times, I noticed that the concept is simple enough, but its not understanding route maps entirely that was hurting me. To sum this up, attributes that work in an outbound direction (e.g. Weight, Local Pref) need a route-map in statement to work properly. The logic? You have to tag the routes from your neighbor with that attribute, and the router sees those attributes in an outbound way. For attributes that work in an inbound way (e.g. AS_PATH, MED) you route-map out. Just think opposite. Thing is, you have to remember what attributes work in which direction, or at least use reasoning to figure it out.
 
Route Reflectors and Confederations
 
The Route Reflectors were easy enough, you can’t reflect non-client routes to other non-clients. As for confederations, wow that screwed with me for a little bit. Configuring the confederations and getting it to work wasn’t a problem. Conceptually, nothing too tough. Its how the next-hop processing works for Sub-AS’s . Even now, I keep doubling back on my notes unsure of myself. But I have to conclude you think of next-hop processing in terms of the Sub-AS, not the actual AS.
 
BGP Communities
 
This boiled down to correctly using route-maps and knowing the difference between local-as and no-export. Remember, No-Export keeps it inside the real AS, Local-AS keeps it inside the Sub-AS.
 
Regular Expressions
 
Yeah, i need lots of practice on this one. Suppose i’ll save a config with loopbacks and use the sh ip bgp regexp  command to practice this often during my journey.
 
Outbound Route Filtering
 
I read internetworkexpert.com’s tutorial on this subject, then had no problems with this. To sum this up:
 
With BGP ORF, the downstream CE router dynamically tells the upstream PE router what routes to filter outbound. This means the CE router will only receive updates about prefixes that it wants. To configure, match the routes with a prefix list, then configure the BGP neighbors to negotiate ORF capability as send (CE), or receive (PE) done in ipv4 address-family mode. Then apply on the CE router, e.g. neighbor x.x.x.x prefix-list AS_100_in . The logic here, your tagging routes from the PE router, which points that direction, and the capability send / receive commands acknowledges this.
 
 
BGP Aggregation
 
Seems to be a focus on knowing which aggregation options work globally, and which work on a per neighbor basis. Also key here is knowing that aggregation hides the AS-path, so knowing how to use as-set is essential, and knowing the consequences as well.
 
BGP Allow AS in
 
Problem with using the as-set option with aggregate-address is, you might have a router (like one summarized in the summary) seeing its own AS in the as-path. allow-as-in overrides this behavior
 
All in all, I really enjoyed this workbook. I hope to buy Narbik’s volumes and try his take on it.

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

Test (UNCLASSIFIED)

May 15th, 2008
0

Classification: UNCLASSIFIED

Caveats: NONE

 

Classification: UNCLASSIFIED

Caveats: NONE

[?]
Share This
Posted in Uncategorized | No Comments »

3 DoD contracting interview questions to ask

May 15th, 2008
0
Ok, I thought I’d put out my personal questions I ask at interviews (or should ask) when I am interviewing with DoD contracting companies .They have an odd habit of exciting you with an environment that lets you have "hands on everything you ever wanted", only to let you down. Contracting can be lucrative, but keep these questions in mind.
 
Is this an all in one shop?
 
A very important questions indeed. You can ask all the questions you can imagine, and not even realize that you forgot this tidbit. The problem is, its nearly impossible to visualize an environment until you are in it. Can you imagine yourself doing networking in Iraq? what would he facilities look like? what would be the process flows through the organization? what would the personalities of your co-workers be like? You just can’t understand unless you are there. So, as to not paint yourself the wrong picture, remember to ask if its an all in one shop. Because, perhaps you love to be dynamic and work on WAN routing one minute, LAN switching the next, and go for a stroll somewhere one your way to patching some copper. OR, its the opposite, and you want to work on your specialty, but your constantly side tracked with duties that you didn’t sign up for. Such as, crawling between racks doing monkey work that any unambitious "easy road" person could do or swapping vlans all day.
 
what contract is this on?
 
All contracting jobs are not the same. The DoD and its components have many different contracts that blanket different areas and branches or military service, and that contract stipulates what the government will pay for its services. Them more money the government is paying, the more the contracting companies are gonna pay. Also, you will be able to track the status of the contracts, such as the incumbents and who’s bidding it. If its a new contract, and bidding is still taking place, you might be interviewing for a losing party and waste your time
 
Is there an at risk status or warning of losing a contract?
 
Ok, this sounds vague. But in a nutshell, contracts are lost sometimes, and you need to know your company will find you another position and pay to move you there. If you relocated to fill in a position in say, Italy, and Northrop Grumman loses the contract, let’s hope they will  1) Not make you pay back your relocation allowance, and 2) pay to relocate you to another position of equal pay and responsibility or let you interview for one better. A good company will warn you if your at risk anytime soon of losing your position (like if another contractor company has recently been under bidding contracts in the area) and prepare you for the coming storm.
[?]
Share This
Posted in Uncategorized | No Comments »

Mega CCIE Blog Collection - Tons of links

May 15th, 2008
0
I hope to keep this one updated. Possibly have a separate link on this page to another aggregating RSS feeds from all of these sites. I want to mention that Ethan Banks and CCIE Pursuits blogs are my favorite.
 

Antonie Henning
ttp://last40days.wordpress.com/

Brandon Carroll
http://www.globalconfig.net/

Carl Yost
http://www.sunpenguin.net/

Caue Wailemann
http://cauew.blogspot.com/

http://cciepursuit.wordpress.com/

Matt Hill
http://www.matthillccie.com/

(Sesano) Ogunsakin
http://sesano.wordpress.com/ Olu

http://rbcciequest.wordpress.com/ Richard Banister

http://www.netvibes.com/ccie#CCIE_Blogs

http://ccie-lounge.blogspot.com/

http://www.lessaid.net/ccie

http://ciscotips.wordpress.com/

http://ccie-chronicles.blogspot.com/

http://ccie-in-3-months.blogspot.com/

http://kintner.wordpress.com/

http://vcappuccio.wordpress.com/

http://blog.internetworkexpert.com/

http://blog.humanmodem.com/

http://ccielab.wordpress.com/

http://connection.netcordia.com/blogs/default.aspx?GroupID=8

http://shouldhavegonewithcisco.com/

http://www.davidsudjiman.info/

http://brokenpipes.blogspot.com/

http://dorreke.wordpress.com/

http://cciep3.blogspot.com/

http://www.cciequest.com/

http://www.bitbucketblog.com/

http://www.djerk.nl/wordpress

http://blog.sazza.de/

http://mysecretofsuccess.wordpress.com/

http://xcke.securebox.hu/

http://etherealmind.com/

http://ardenpackeer.com/

http://cciejourney.wordpress.com/

http://ccienotes.blogspot.com/

[?]
Share This
Posted in Uncategorized | No Comments »
« Previous Entries