CCNP Route Flashcards

1
Q

Routing Protocols common in WAN

A

RIP, OSPF, EIGRP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Routing Protocols common to Internet

A

BGP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What factors affects which protocol you would choose

A
Availability 
Vendor interoperability  
IT Staff Familiarity 
Speed of Convergence 
Capability to preform summarazation 
Interior or Exterior Routing 
Type of Protocol 
How it Advertises, stores and receives info
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Distance Vector Attributes

A

Sends full copy of routing table to neighbor

  • inefficient
  • slow convergence
  • potential routing loops
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Solution to Routing loops

A

Split horizon

Poison reverse

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does AS stand for

A

Autonomous system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Distance Vector Protocols

A

RIP

EIGRP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

RIP Attributes

A

Hop count

Versions RIPv1, RIPv2, RIPng(next gen)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

RIPv2 Attributes

A

Supports variable-length subnet masks

Uses multicast NOT broadcast -224.0.0.9

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

EIGRP Attributes

A

Does NOT send entire IP routing table
Uses triggered updates
Quick Convergence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

EIGRP Metrics/ K Values

A
Minimum Bandwidth* 
Cumulative Delay* 
Reliability 
Load 
MTU
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What Algorithm does EIGRP use

A

DUAL or Diffusing Update Algorithm

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Path Vector Attributes

A
Exact path packets take to reach the destination 
Slow convergence
Very Scalable 
Routing protocol of the Internet 
    BGP
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Example of Path Vector Protocols?

A

BGP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

BGP Versions

A

1-4

MP-BGP * supports routing of multi routed protocols

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What does Route Distribution allow?

A

A network to simultaneously support more than one routing protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What was the predecessor to EIGRP

A

IGRP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Network Architecture Types

A

Point to Point
Broadcast
NBMA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

NBMA (Non-Broadcast Multiaccess)

A

Does not support broadcast
Individual messages must be sent to each router
Issues with dynamic routing protocols

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

NBMA Network Examples

A

ATM

Frame Relay

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Multicast IPv6 prefix

A

ff00::/8

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Anycast

A

Single IPv6 addresses -to multiple devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What traffic type does ARP use ?

A

ARP uses broadcast.

IPv6 cannot use ARP/Broadcast so it uses Network Discovery messages

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What is Asymmetric routing ?

A

Traffic leaves through one path and returns through a different path

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

ICMP Header Fields

A

Type - 1 byte
Code - 1 byte
Checksum - 2 byte
Rest of Header - 4 byte

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

TCP Sliding Window

A

Where the window size begins with one segment. If there is a successful acknowledgment of that one segment (that is, the receiver sends an ACK asking for the next segment), the window size doubles to two segments

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Link State Protocols

A

OSPF

IS-IS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

Link State Attributes

A
  • Builds a topological map of the network
  • Routers send LSA’s
  • Exchanges full routing info only at initially forming an adjacency ****Then updated in response to changes
  • Shorter convergence times
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Common approaches to routing migration

A
* AD (Administrative Distance)
       new routing protocols should be higher than the 
       exiting 
*Route Distribution 
    cut over one network at a time
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

When migrating from RPVST to RPVST+ what needs to be removes?

A

UplinkFast

BackboneFast

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

IPv6 Migration Consideration

A

*Check equipment for IPv6 compatibility
*Run IPv4 and IPv6 concurrently
*Check the ISP’s IPv6 support
*Configure NAT64
* Allows IPv6 addresses to be translated to IPv4
addresses
*Not scalable
*Use NPTv6
*Send IPv6 traffic over an IPv6-over-IPv4 tunnel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

VRF - Virtual Routing & Forwarding

A

*Allows a single router to run multiple virtual router instances
○ It router has its own configuration and its
own routing process
*Segments networks and isolates paths as needed
*Can use overlapping address spaces in different VR

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

EVN - Easy Virtual Networking

A

Same as VRF with more features

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

VNET - Virtual network trunk

EVN

A

○ Carriers traffic for each virtual network and eliminates
the need to manually configure a sub-interface
○ Traffic tagged with VNET tag
○ Connects to switch via trunk link
* Route Replication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Route Replication

EVN

A

○ When virtual networks need to be accessible by other virtual networks
Allows IP routes know to one virtual network to
be known by others

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

MPLS - Multiprotocol Label Switching

A

Makes forwarding decisions based on labels rather than IP addresses

32bit label
shim header
between layer 2 & layer 3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

Layer 2 MPLS

A

Allows customer edge (CE) routers at different sites to form routing neighborhsips as if adjacent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Layer 3 MPLS

A

Allows a service providers edge (PE) router to establish peer relationships with customers edge (CE) router

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Hybrid VPN

A

MPLS with tunnel based VPN’s

MPLS over DMVPN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

What should you consider in the deign with Hybrid VPN ?

A

Overhead - every time you add an encapsulation you are adding to the total header

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Tunnel-Based Technologies

A
GRE
DMVPN
Multi point GRE
NHRP
IPSEC
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

GRE Generic Routing Protocol

A

Encapsulates nearly every type of data data out of a physical router interface
Any layer 3 protocol

Very flexible
No security
unless paired with IPSEC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

DMVPN Dynamic Multipoint VPN

A

Allows VPN tunnels to be dynamically built and torn down between remote sites as needed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

What is a common DMVPN Issue?

A

Flapping - connection keeps tearing down and establishing

Check the routing protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

What other technologies does DMVPN require?

A

Multipoint GRE
NHRP
IPSEC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

Multipoint GRE

A

Allows routers to supper multiple GRE tunnels on a single GRE interface

Dynamically form GRE tunnels by using NHRP to discover IP address of the device on the other end of the tunnel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

NHRP - Next Hop Resolution Protocol

A

Router designated as the hub /server
All other routers the spoke/client

Spokes inform hub of physical and logical interfaces info

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

IPSEC

A

Can only protect unicast IP packets
Unless paired with GRE

Security features

IKE protocols

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

What are IPSEC’s security features

A
Confidentiality 
Integrity 
Auth
Anti-replay
     packets sent are not duplicates
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

What are the two IKE protocols and what is the difference?

A

AH - Authentication header
ESP -
ESP offers encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

What are the IKE Protocol modes ?

A

Transport

Tunnel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

Tunnel Mode

A

Encapsulates the entire packet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

Transport Mode

A

Users only the original packet header

used mainly for client-to-site VPN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

IPv6 Benefits

A
No broadcast
      Only multicast to reach hosts 
No need for NAT/PAT 
More Addresses 
Smaller routing tables 
     Fewer changes to Internet routing table
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

How does IPv6 addressing work ?

A

Public addresses group by geographic region
subdivided by ISP’s inside that region
further subdivided by customer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

IPv6 global unicast address

A

the 2000::/3 prefix as global unicast addresses.

all unicast begins with 2 or 3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

What does IPv6 use to dynamically learn addresses ?

A

Stateful DHCP

Starless autoconfig

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

Steps to add Routes to IP routing table using EIGRP ?

A

Neighbor Discovery
Topology Exchange
Choosing Routes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

Steps to learning best available EIGRP route ?

A

Establish neighbor relationships
Exchange EIGRP topology data with neighbors
Calculate the best IP route for each subnet based on
known topology data and add best routes to the
routing table

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
60
Q

EIGRP and RTP (Reliable Transport Protocol)

A

Resends routing table updates that are lost in transit

Confirms receipt

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
61
Q

What is MTU used for in EIGRP ?

A

Used as a tie breaker if two paths have equal metrics but different MTU sizes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
62
Q

EIGRP default Hold Timers ?

A
Hello  = 5
Hold  = 15
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
63
Q

EIGRP and BFD (Bi-Directional Forwarding)

A

Provides subsecond detection of a failure in IP connectivity between two neighboring routers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
64
Q

What EIGRP features must match to form neighborships?

A
Same subnet
	○ As local router  
Must not be passive on connected interface 
AS number 
Authentication 
K-Values
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
65
Q

What is the default K-Value for EIGRP ?

A

Metric weights 0 1 0 1 1 0
First value is ToS (Type of Service) and cannot be
changed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
66
Q

What does the EIGRP passive-interface command do ?

A

•Tells the router not to send any EIGRP messages on an interface
○ Still advertises the route
No neighbors possible on the interface

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
67
Q

Why would you configure a static neighbor in EIGRP?

A

To reduce multicasts
NO dynamic neighbors can be discovered OR continue to work if already discovered

  • Frame Relay
    Only intended neighbors sent unicast
68
Q

What are the EIGRP protocol messages

A
Hello
Update 
Query 
Reply 
ACK
69
Q

What protocols does EIGRP use in Query and Reply messages?

A

RTP - Reliable Transport Protocol

70
Q

What does the Update EIGRP message include

A

Prefix
Prefix Length
Metrics
MTU and Hop count

71
Q

What is EIGRPs multicast address

A

224.0.0.10

72
Q

What does Split-Horizon do?

A

Limits the prefixes that EIGRP advertises out of an interface

73
Q

What is Feasible Distance (FD) in EIGRP ?

A

Best route
Lowest metric
Successor

74
Q

What is Reported Distance (RD)in EIGRP ?

A

Perspective next hop

Feasible successor OR alternative route

75
Q

What is an Offset List ?

A

Allows engineering to add value to calculate integer metrics for a given prefix

Defines value to be added to he KValues/Metroics 
    Match
          Prefixes 
           Direction of Updates 
           Interface 
           Metric added to FD and RD
76
Q

What is Convergence Manipulation used for ?

A

To make a router pick one route instead of another

77
Q

What does Going Active mean ?

A

When a successor router is removed and no feasible successor is available, the router tries to discover whether any loop free alternatives exists to reach that prefix

78
Q

What command would be use for load balancing in EIGRP ?

A

maximum-paths

variance multiplier
To overcome exact metric matches

79
Q

What reduces the work load of Query messages in EIGRP for convergence purposes ?

A

Stub Routers

Route Summarization

80
Q

Stub router features ?

A

Routers should not forward traffic between remote EIGRP

Non-Stub routers lean which routers are stub and do not send Query messages to those

81
Q

Route Summarization Features ?

A

Summary routes include the prefix ad the
router immediately sends an EIGRP reply
and does not flood Query to other
neighbors

Keeps routing tables small

82
Q

What commands do you use for Route Filtering ?

A

distribute-list (refers to ACL)
prefix list
route map

83
Q

What are the features for IPv6 EIGRP ?

A

Advertises prefix lengths NOT subnets

No concept of classful networks / No route summarization

Does not require neighbors to be in the same subnet

84
Q

What is the multicast address for IPv6 EIGRP

A

ff02::A

85
Q

What are the features of Name EIGRP IPv6 ?

A

Consolidates IPv4 and IPv6 EIGRP configurations under a single hierarchical structure

Single virtual instance
Includes two address families. One for IPv4 and
one for IPv6

86
Q

What are the steps of Link State for OSPF?

A

Neighbor Discovery
Topology Database Exchange
Route Computation

87
Q

OSPF Features that must match?

A
Router ID
Stub Area Flag 
Intervals/Timers 
Subnet Mask 
Auth
88
Q

What OSPF metric does not have to match but can prevent data from being exchanged?

A

MTU

89
Q

What type of information does the OSPF LSDB Include?

A

Router ID’s
Interfaces/IP Adds/Masks/Subnets
List of routers reachable by each route on each interface

90
Q

What Protocol is OSPF?

A

89

91
Q

What is OSPFs multicast address?

A

224.0.0.5

92
Q

What are the parts of a OSPF hierarchical design?

A

ABR
Backbone
Internal Router

93
Q

Details about a ABR (Area Boarder Router)

A

Boundary between areas
Only generates Type 3 LSA’s
Only advertises subnets between areas

94
Q

OSPF Network Types

A
Broadcast 
Point-to-Point 
Loopback 
Nonbroadcast (NBMA)
Point-to-Multipoint
Point-to-Multipoint nonbroadcast
95
Q

Metro Eth/VPLAS (Virtual Private LAN Service)

A

Uses VLAN trunking with subinterfaces off a FA or GIG interface

Does NOT form OSPF neighborships with routes in the service providers network
Only between customer routers

96
Q

What purpose does Virtual OSPF links serve?

A

Alternative to help networks meet backbone area designs without redesigning areas

Allows two ABRs that connect to the same nonbackbone area to form neighbortships

Acts as a virtual point-to-point connection

97
Q

What are the different tables used in OSPF?

A

Neighbor table
Topology table
IP routing table

98
Q

How does the OSPF Topology table work?

A

Sends individual LSA’s
Copies those to the LSDB
Router applies the SPF algorithm to the
LSDB to determine the best path

99
Q

Why would you limit the number of LSA’s?

A

Protect the router memory
Router is unable to process LSA’s
Cannot converge in a reasonable amount of
time

100
Q

Type 1 LSA

A

Router - each routers has its own type 1 LSA/ It contains the RID and all interface IP addresses on that router that are in that area

101
Q

Type 2 LSA

A

Network - represents a subnet in which a DR exists

102
Q

Type 3 LSA

A

Summary - a subnet in another area

103
Q

What are three options for metric tuning?

A

Change the reference bandwidth
Setting the interface bandwidth
Setting OSPF cost directly

104
Q

Intra-areas

A

Uses pure link -state logic w/full topology information

From Type 1 & 2 LSA’s

105
Q

Inter-areas

A

Uses distance vector logic

Takes it’s know metric to reach the ABR and add the metric for that subnet as advertised by the ABR
NO additional SPD calculation required

106
Q

What methods are used for Route Filtering?

A

Filtering would need to a happen with LSA transmissions

LSA Type 3 filtering using filter-list

Distribute list

107
Q

Where in the OSPF hierarchy should route summarization be done?

A

ASBR andf ASR

108
Q

What do defaults accomplish in OSPF?

A

Tells the ASBR to flood a default route into OSPF

109
Q

What features were introduced in OSPFv2

A

Renames LSAs
Type 3 Inter-area prefix
Type 4 Inter-area rourer

New LSAs
Type 8 Link LSA
Type 9 Intra-area prefix

110
Q

OSPFv3 Address Family configs accomplish what?

A

Combining IPv4 and IPv6

111
Q

Stub/Stubby Area ?

A

Are shielded from external routes but receive information about networks that belong to other areas of the same OSPF domain

NO type 5 LSA’s

112
Q

Totally Stub Area?

A

Keep their LSDB-only information about routing within their area, plus the default route.

NO Type 3,4 or 5 LSA’s

113
Q

Not-So-Stubby Area ?

A

They prevent the flooding of AS-external link-state advertisements (LSAs) into NSSAs and instead rely on default routing to external destinations

Placed on edge of routing domain

Can import external routes

No type 5 LSA’s

114
Q

Why do you need route redistribution?

A

When one routing protocol needs to be distributed into a second routing protocol

115
Q

What are the requirements for routing redistribution?

A

At least one working physical link with each routing domain

A working routing protocol config for each routing domain

An additional redistribution config for each routing protocol

116
Q

Redistribution uses what table?

A

IP Routing Table

117
Q

How is Redistribution manipulated?

A

Filtering and summarization

118
Q

Redistribution tells other routers what information?

A

All routes in the routing table learned by the routing protocols

All connected routes of the interfaces on which that routing protocol is enabled

119
Q

What does Redistribution from OSPF into EIGRP require>

A

Default metric settings

120
Q

OSPF LSA 5 Includes?

A

Link-state ID
Subnet mask Advertising router Metric
External metric type

121
Q

OSPF Redistributes what networks only?

A

Classful networks

NOT subnets

122
Q

Redistribution from EIGRP into OSPF requires what command?

A

redistribute eigrp # subnets

123
Q

What is a common Redistribution Issue?

A

Domain Loop - using multi redistribution points

124
Q

How do you prevent Domain Loop?

A

Higher Metric

AD-Administrative Distance

125
Q

What is Packet Switching?

A

How a router takes packets arriving on an ingress interface and being sent out an appropriate egress interface

126
Q

Modes of Packet Switching

A

Process Switching
Fast Switching
Cisco Express Forwarding (CEF)

127
Q

Features of CEF Cisco Express Forwarding

A

Two tables in Data plan

Does not require first packet to be switched

128
Q

What two tables does CEF use

A

FIB

Adjacency

129
Q

Define Policy Based Routing

A

Override a routers natural destination based forwarding logic. Uses other parameters to forward on packets.

130
Q

What does omitting the default parameter with policy based routing tell a router to do?

A

Try the Policy Based Route first, if it doesn’t work, try to route as usual.

131
Q

What are some other PBR features?

A

QoS

IP SLA

132
Q

Define VRF

A

Allows a single physical router to host multiple virtual routers, with those virtual routers logically isolated from one another, each with its own IP routing table.

133
Q

What is a requirement to configure VRF-Lite?

A

Must configure a subinterface for each VRF on each router

134
Q

Nat Limitations/Considerations

A

End to end connectivity

Issues w/Ipsec

PKI environment, digital certs could be incorrect

135
Q

What is NVI - NAT Virtual Interface ?

A

Allows you to do NAT configurations without specifying an interface inside/outside

136
Q

Addressing Hierarchy

A
• ICANN
	○ IANNA 
		§Geographical regions 
	○ RIR - Regional Internet Registries 
		§ NIR  - National Internet Registry 
		§ LIR  - Local Internet Registries 
					®ISP's
	○ IR   -  Internet Registry
                gives IP's to end- 
                user organizations
137
Q

What is the purpose of route aggregation?

A

The solution to keep up with the rare increase in the size of the IP routing tables.

138
Q

What methods aid route aggregation?

A

Route summarization

Prefix/length based on geography or ISP

139
Q

Review Classful Network Assignments

A

Class A - 1 Network 10.0.0.0/8
Class B - 16 Networks 172.16.0.0/12
Class C- 256 Networks 192.168.0.0/16

140
Q

Benefits of BGP Boarder Gateway Protocol

A

Best-path inside the global internet

More complex best-path algorithm

Flexibility to configure different settings that influence path selection

Does not require neighbors to be attached to the same subnet

Emphasis on scalability

Path Vector logic

141
Q

AS_PATH key functions

A

Choose the best route for a prefix based on the shortest AS_PATH

Prevent routing loops

142
Q

When should you choose BGP as a routing protocol?

A

When you have at least two internet connections

You want to choose one outbound path over another path for a particular destination

143
Q

Features of eBGP

A

Updates the AS_PATH PA

Forms neighbor relationships

Exchanging topology information

144
Q

Requirements for eBGP neighbor relationships

A

Router ID’s cannot be the same

Configuration must pass auth

Must be apart of a TCP connection

145
Q

BGP Public/Private ASN’s

A

1 - 64,495 Public

64,512 - 65,534 Private

146
Q

What iBGP Behavior prevents Routing Loops?

A

When a router learns routes from an iBGP peer, that router does not advertise the same routes to another iBGP peer

147
Q

Solutions to Routing Loops?

A

Run BGP on at least some of the routes internal to the enterprise

Redistribute BGP orutes into the IGP (not recommened)

148
Q

Clearing BGP Peers Options

A

Hard
Soft in/out
In
Out

clear ip bgp neighbor-id “option”

149
Q

BGP Best-Path Algorithm

A

N WLLA OMNI

0 - 8

150
Q

Which Best-Path Algorithm attributes influence outbound routes?

A

W L A

151
Q

Which Best-Path Algorithm attributes influence inbound routes?

A

M = MED

152
Q

RIB failure

A

An event that occurs when the Routing Table Manager (RTM) attempts to add a route to the IP routing table, but a problem exists with the route that prevents RTM from adding the route.

153
Q

Methods for assigning IPv6 Addresses

A

Manual Configuration

Stateless Address Config (SLAAC)

Stateless DHCPv6
○ Router needs more IPv6 information than just the address

Stateful DHCPv6

DHCPv6 Prefix Delegation
Assigns a collection of IPv6 networks to the router

154
Q

3 Implicit instructions in a IPv6 ACL

A

permit icmp any any nd-na
permit icmp any any nd-ns
deny ipv6 any any

155
Q

How are IPv6 ACL’s different from IPv4?

A

ACLs are always extended and named

156
Q

Common concerns for IPv6 Security

A

Neighbor Discovery can be used to launch man-in-the middle attacks
§ Similar to gratuitous ARP

IPv6 addresses are not concealed with NAT

157
Q

BGP IPv6 Routing Design w/Single IPv4 Session Features?

A

Fewer neighborships are formed.

When sending IPv6 route information over the IPv4 BGP session, you need to create a route map to modify the Next-Hop BGP attribute.

158
Q

BGP IPv6 Routing Design w/Dual IPv4 Sessions Features?

A

More neighborships must be configured.

You do not need to configure a route map to modify the Next-Hop BGP attribute.

159
Q

MGP-BGP Features

A

Address Family Identifier AFI

Subsequent Address Family Identifier SAFI

Multiprotocol Reachable Network Layer Reachability Information

Multiprotocol Unreachable Network Layer Reachability Information

BGP Capability Advertisements

Backward compatible with BGP-4

160
Q

Management Plane Security

A
SSH
Password Encryption 
Username/Privilege/Password 
Unicast Reverse-Path Forwarding 
AAA
SNMP Config & Verification 
NTP Authentication
161
Q

What two types of ACL’s extend router security?

A

Time Based ACL’s

Infrastructure ACL’s

162
Q

Two attributes of time-based key chains?

A

Accepted Lifetime

Send Lifetime

163
Q

Features of EIGRP Authentication

A

Helps prevent DoS attacks but no privacy

Attackers can join multicast subnet 224.0.0.10 and read packets

Prevents attackers from forming neighborships

164
Q

EIGRP Auth command?

A

ip authen mode eigrp # md5

ip authen key-chain eigrp # #####

165
Q

OSPFv3 Auth Details?

A

Relies on IPSEC to provide authentication

IPSEC can encrypt and authenticate

166
Q

OSPF MD5 Auth command?

A

int fa0/0
ip ospf message-digest-ket md5 ####

router ospf 1
area # authen message-digest

167
Q

BGP Auth command?

A

router bgp #

neighbor x.x.x.x password ####