Chap 1 - Forwarding

Question 1

What is Unknown Unicast Flooding?

Answer 1

A destination MAC address is not in the MAC table so the switch floods the packet out all ports.

Question 2

What separates broadcast domains?

Answer 2

A router.

Question 3

What do VLANs do?

Answer 3

They create multiple broadcast domains on a single switch.

Question 4

What 4 fields did IEEE 802.1q add to the VLAN packet structure?

Answer 4

• Tag Protocol Identifier (TID)
• Priority Code Point (PCP)
• Drop Eligible Indicator (DEI)
• VLAN Identifier (VLAN ID)

Question 5

How many bits in the TID field, what is its hex value, and what does it identify?

Answer 5

• 16 bits
• set to 0x8100 identifying the packet as an 802.1q packet

Question 6

What does the Priority Code Point field do?

Answer 6

• 3 bits
• indicates Class of Service for QOS between switches

Question 7

How many bits in the Drop Eligible Indicator and what does it do?

Answer 7

• 1 bit
• indicates whether the packet can be dropped due to congestion

Question 8

How many bits in the VLAN ID field and what does it do?

Answer 8

• 12 bits
• specifies the VLAN associated with the packet

Question 9

What is VLAN 0 reserved for?

Answer 9

802.1P traffic

Question 10

What is different about VLAN 1?

Answer 10

• default VLAN
• It can’t be deleted.

Question 11

What is the range of normal VLANs?

Answer 11

2 - 1001

Question 12

What VLANs above 1000 are reserved?

Answer 12

1002 - 1005

Question 13

What is the range of extended VLANs?

Answer 13

1006 - 4094

Question 14

After being in VLAN configuration mode and creating a VLAN at what point does the VLAN actually get created?

Answer 14

• when you leave VLAN config mode
• when you move to a different VLAN configuration

Question 15

What VLAN are ports put in by default?

Answer 15

VLAN 1

Question 16

What is the default Native VLAN?

Answer 16

VLAN 1

Question 17

What is the CAM?

Answer 17

• Content addressable memory
• MAC address table resides here

Question 18

What is the fallback for CEF?

Answer 18

Process switching

Question 19

What is process switching?

Answer 19

Switching in software

Question 20

What are the 3 types of packets that need to be process switched?

Answer 20

• Packets sourced by or destined for the router itself
• Packets too complex for hardware (packets with IP options)
• Packets that need extra information that isn’t already known (like ARP)

Question 21

What 5 things happen when a packet is punted by CEF to be process switched?

Answer 21

• ip_input process checks the routing table and ARP for next hop routers IP address, outgoing interface and MAC
• Overwrites source MAC with its own MAC, and destination MAC with next hop router’s MAC
• Decrements TTL
• Recomputes checksum of IP header
• Delivers packet to next hop router

Question 22

What is another name for the routing table?

Answer 22

Routing Information Base (RIB)

Question 23

What 3 sources build the RIB?

Answer 23

• info from dynamic routing protocols
• static routes
• connected routes

Question 24

How is the ARP table built?

Answer 24

From info from the ARP protocol

Question 25

Where is CEF used?

Answer 25

• Default switching mechanism used on Cisco routers that do packet switching on general purpose CPU
• Default switching machinism on platforms with ASICs and hardware-based routers

Question 26

Why do most switches contain multiple TCAM partitions?

Answer 26

So that inbound/outbound security, QOS, L2/L3 forwarding decisions occur all at once

Question 27

Concerning ACLs what does TCAM make possible?

Answer 27

ACLs can be processed at the same speed whether the ACL has 10 lines or 500 lines

Question 28

What is Centralized Forwarding Architecture?

Answer 28

When a Route Processor is equipped with a Forwarding Engine so it can make all forwarding decisions.

Question 29

What is Distributed Forwarding Architecture?

Answer 29

When Line Cards are equipped with Forwarding Engines and can forward without intervention of the Route Processor (RP()

Question 30

What 3 steps occur in Centralized Forwarding?

Answer 30

• Packet received on ingress Line Card, transmitted to Forwarding Engine on RP
• Forwarding Engine determines where packet will exit
• Forwards packet to Egress Line Card

Question 31

What are 4 steps in Distributed Forwarding?

Answer 31

• Packet received on Ingress Line Card,
• Transmitted to Local Forwarding Engine
• If destination is local Forwarding Engine sends packet out Egress Port
• If not local, Forwarding Engine sends packet across Switch Fabric directly to Egress Line Card

Question 32

What is another name for Software CEF?

Answer 32

Software Forwarding Information Base

Question 33

What does Software CEF consist of?

Answer 33

• Forwarding Information Base (FIB)
• Adjacency Table (Adjacency Information Base)

Question 34

How is the Forwarding Information Base (FIB) built and what does it contain?

Answer 34

• Built from Routing Table to have a mirror image
• Contains next hop IP address for each destination in routing table

Question 35

How does CEF use the FIB?

Answer 35

CEF uses the FIB to make switching decisions based on IP destination prefixes

Question 36

How is the Adjacency Table (AIB) built and what does it contain?

Answer 36

• Built from ARP and other L2 protocols
• Contains directly-connected next hop IP/MAC addresses and egress interfaces MAC

Question 37

What is a Glean Adjacency in CEF and when does it occur?

Answer 37

• CEF punts to CPU where ARP is invoked
• Glean Adjacency occurs when a packet arrives but no entry in FIB

Question 38

In CEF switching what 6 things happen during packet forwarding process?

Answer 38

• Packets headers are re-written
• Destination MAC overwritten with info from Adjacency Table
• Source MAC overwritten with MAC from egress interface
• TTL is decremented
• Header checksum is re-computed
• Packet delivered to next hop router

Question 39

What happens when a router receives a packet with TTL = 0 ?

Answer 39

Packet is discarded

Question 40

What is done to prevent starving of CPU cycles by packets with an invalid or imcomplete adjacency?

Answer 40

Rate limiter

Question 41

What is an NPU?

Answer 41

Network Processing Unit

Question 42

What is the difference between an NPU and an ASIC?

Answer 42

The NPU is programmable but the ASIC is not.

Question 43

In a Distributed Forwarding Architecture what mechanism is used for packet switching?

Answer 43

It uses Distributed CEF (dCEF)

Question 44

What does dCEF stand for and what 2 things are true about it?

Answer 44

• Distributed CEF
• CEF data structures are downloaded to ASICs and CPUs of all the Line Cards
• Increases packet throughput of the router

Question 45

What is Hardware CEF?

Answer 45

CEF switching done in ASICs and NPUs

Question 46

In hardware-based platforms what is Software CEF used for?

Answer 46

For programming Hardware CEF in ASICs / NPUs

Question 47

What is Stateful Switchover?

Answer 47

Redundancy feature that allows 2 RPs to synchronize configuration and control plane info

Question 48

What is the process called for mirroring information between RPs?

Answer 48

Checkpointing

Question 49

What does Non-Stop Forwarding (NSF) do?

Answer 49

Informs routers to maintain CEF entries and to continue forwarding packets during an RP failure until the control plane recovers

Question 50

What is SDM

Answer 50

Switching Database Manager

Question 51

What do SDM templates do?

Answer 51

Used to adjust the Allocation Ratios of memory allocated to various TCAM tables

Question 52

What is particular about SDM templates when used in a switch stack?

Answer 52

The switches all need to use the same SDM template.

Question 53

What is the ‘show’ command that allows you to see the current SDM template?

Answer 53

show sdm prefer’

Question 54

What 2 components make up CEF?

Answer 54

• Forwarding Information Base (FIB)
• Adjacency Table

Question 55

Display the MAC address table for a switch

Answer 55

• show mac address-table address (mac_address)
• show mac address-table dynamic
• show mac address-table vlan (vlan_id)

Question 56

Display the Layer 2 configuration for a specific switchport.

Answer 56

show interfaces (interface_id) switchport

Question 57

Display the ARP table.

Answer 57

• show ip arp (mac_address)
• show ip arp (ip_address)
• show ip arp vlan (vlan_id)
• show ip arp (interface_id)

Question 58

Display the SDM template.

Answer 58

show sdm prefer

Question 59

How is TCAM different than CAM?

Answer 59

TCAM allows for the matching and evaluation of a packet on more than one field.

Question 60

Architecturally, describe what the TCAM is.

Answer 60

It is an extension of the CAM table but enhanced so that it can do upper-layer processing.

Question 61

Name 3 things TCAM can identify.

Answer 61

• L2 / L3 source/destination address
• Protocol
• QOS markings

Question 62

Name 2 differences between TCAM and CAM.

Answer 62

• TCAM (ternary) provides more flexibility in searching than CAM (binary)
• TCAM does upper-layer processing, CAM does not

Question 63

What are the states TCAM can match on?

Answer 63

1’s, 0’s, and X’s where X is ‘don’t care’

example:

TCAM can search for a value that has 0 1 1 1 X X 1 0 . This will match:

01110010

01110110

01111010

01111110

Question 64

What 3 components make up a TCAM entry?

Answer 64

• Value 172.19.0.0
• Mask 255.255.0.0
• Result Deny

Question 65

What are 3 things that the TCAM Result can be?

Answer 65

• Permit or deny
• Pointer to a next hop in the routing table
• An index to a QOS Policer

Question 66

What 2 factors allow TCAM to be really fast?

Answer 66

• TCAM operates in hardware
• Each of the 5 TCAM partitions can be processing simultaneously allowing multiple operations to be done at the same time