12 - Introducing Virtualisation Protocols and Techniques Flashcards
___ refers to the creation of independent logical traffic paths over a shared physical infrastructure
path isolation
What is a hypervisor?
- Thin OS between hardware and virtual machine
- allocates resources to virtual machines
- Manages VMs (create, modify, destroy, move)
The virtualisation of the interconnection between devices is called…
data path virtualisation
___ combines the used of VRF instances with either 802.1q trunking for hop-by-hop path isolation or GRE/multipoint GRE for multihop path isolation
VRF-lite
__ can also be used to extend VRFs across an IP infrastructure, and would be the best choice for large scale enterprises that require more than 32 virtual networks per device, or require traffic engineering and optimal path selection with Fast Reroute capabilities along with the ability to provide extremely scalable full mesh connectivity.
MPLS
Within each networking device, there are two planes to virtualise. What are these?
- Control plane – all the protocols, databases and tables necessary to make forwarding decisions and maintain a functional network toplogy free of loops or unintended black holes
- Forwarding plane – all the processes and tables used to forward traffic
A VRF consists of…
- IP routing table
- A derived forwarding table
- Set of interfaces that use the forwarding table
- Set of rules and routing protocols that determine what goes into the forwarding table
What are some advantages of VRF-lite technology?
- Allows for routing and forwarding separation
- Simplifies the management and troubleshooting of traffic belonging to specific VRF
- Enables support for alternate default routes
How do you apply a VRF to an interface?
ISP(config)# interface Ethernet 0/1
ISP(config-if)# ip vrf forwarding CUST-A
% Interface Ethernet0/1 IPv4 disabled and address(es) removed due to enabling VRF CUST-A
ISP(config-if)# ip address 172.16.2.18 255.255.255.240
Why does applying a VRF remove the addressing?
Because the interface is being moved from global routing table to VRF routing table
What commands verifies a VRF?
show ip vrf , show ip vrf interfaces
Generic routing encapsulation – a tunnelling protocol which provides a secure path for transporting packets over a public network by encapsulating packets inside a ___ protocol
transport
What are the main characteristics of GRE?
- One of many tunnelling protocols
- IP protocol 47 defines GRE packets
- Allows routing information to pass between connected networks
- No encryption used
GRE adds a __ byte IP header and a _ byte GRE header, hiding existing packet headers
20, 4
A GRE header contains a ___ field and ___ field to identify the L3 protocol being transported. It may contain a tunnel checksum, tunnel key and tunnel sequence
flag, protocol type
GRE does not __ traffic or use any strong security measures to protect traffic
encrypt
GRE can be used along with ___ to provide data source authentication and data confidentiality, and data integrity
IPSec (IP security)
GRE over IPsec tunnels are typically configured in a___ topology over an untrusted WAN in order to minimise the number of tunnels that each router must maintain
hub and spoke
A tunnel interface supports a header for each of the following…
- A passenger protocol or encapsulated protocol such as ipv4 or ipv6, this protocol is the one being encapsulated
- A carrier or encapsulation protocol (GRE, in this case)
- A transport deliver protocol, such as IP, which is the protocol that carries the encapsulated protocol
You may have to adjust the __ on GRE tunnels by using the __ interface configuration command. This must match both sides.
MTU, ip mtu
How do you configure a GRE tunnel?
Create a tunnel interface.
• Router(config)# interface tunnel tunnel-id
Configure the GRE tunnel mode. This mode is a default tunnel mode so it is not necessary to configure it.
• Router(config-if)# tunnel mode gre ip
Configure an IP address for the tunnel interface.
• Router(config-if)# ip address ip-address mask
Specify the tunnel source IP address.
• Router(config-if)# tunnel source ip-address
Specify the tunnel destination IP address.
• Router(config-if)# tunnel destination ip-address
How do you verify if tunnel interface is up or down?
show ip inter brief tunnel tunnel-id
How do you show the state of GRE tunnel?
show interface tunnel tunnel-id
