Week 1: Troubleshooting approaches

Question 1

What is the troubleshooting process?

Answer 1

1 - Defining the problem
2 - Gathering information
3 - Analyzing information
4 - Eliminating possible causes
5 - Formulating / proposing a hypothesis
6 - Testing hypothesis

Question 2

Is the shoot-from-the-hip a good approach?

Answer 2

Quite ineffective for inexperienced troubleshooters and huge set backs when it does not yield immediate results.

Question 3

What are all the troubleshooting approaches?

Answer 3

• Top-down
• Bottom-up
• Divide-and-conquer
• Follow-the-path
• Spot-the-difference
• Move-the-problem

Question 4

What are the logging severity levels?

Answer 4

(0) Emergency
(1) Alert
(2) Critical
(3) Error
(4) Warning
(5) Notification
(6) Informational
(7) Debugging

Question 5

What do these commands mean?
logging buffered 16384
logging console warnings
logging 10.1.152.1

Answer 5

• logging buffered 16384
  Messages are logged to a circular buffer in RAM, that is limited to 16384 bytes
• logging console warnings
  logging messages are limited to level 4 (warnings) and lower
  By default every logging message is enabled

logging 10.1.152.1
messages are logged to a syslog server at IP

Question 6

What are the functions of the control plane?

Answer 6

Responsible for processing Layer 2 and Layer 3 control packets. (e.g. OSPF, ISIS, STP, CDP)

Responsible for procession packets that cannot be CEF switched

Question 7

What are the protection mechanism of the control plane?

Answer 7

• Control Plane Policing (CoPP)
• Access lists to control routing updates

Question 8

What are the key show commands for troubleshooting the control plane?

Answer 8

• show processes cpu
• show ip arp
• show ip route

Question 9

What are the functions of the management plane?

Answer 9

Responsible for management functions for a network device.

Question 10

What are the protection mechanism for the management plane?

Answer 10

• Management plane protection
• Access lists to limit users access to Telnet

Question 11

What are the key show commands for troubleshooting the management plane?

Answer 11

• show snmp user
• show snmp view
• show ip ssh

Question 12

What are the functions of the data plane?

Answer 12

Responsible for the switching / forwarding of data packets through the network device using specialized hardware

Question 13

What are the protection mechanism of the data plane?

Answer 13

Access lists to block unwanted users or traffic

Question 14

What are the key show commands for troubleshooting the data plane?

Answer 14

• show ip cef
• show adjacency table
• show cef not-cef switched

Question 15

What are CEF’s data structures?

Answer 15

Forwarding Information Base (FIB):
- reflects the routing table with all recursive lookups resolved
- a lookup up in the FIB results in a pointer to an adjacency entry in the adjacency table

CEF Adjacency Table
- consists of egress interface only for a point-to-point interface or an egress interface and next-hop IP address for a multipoint interface

Question 16

Which commands do you use to verify CEF’s FIB and Adjacency table?

Answer 16

• show ip cef “ip-address”
• show ip cef “network-mask”
• show adjacency detail

Question 17

How should you use the ip debug command?

Answer 17

• Always use an access-list
  access-list 101 permit tcp any any eq telnet
  debug ip packet detail 101

Question 18

What do the numbers mean in “show processes cpu”?

Answer 18

CPU utilization for five seconds: 30% / 26% ; one minute: 31% ; five minutes: 14%

• 30%, 31%, 14% : Total CPU spent on processes and interrupts
• 26% CPU spent on interrupts
• Total time spent on processes: 30% - 26%

Question 19

What are the DHCP messages?

Answer 19

Discover
Offer
Request
Acknowledge

Question 20

What is a DHCP relay agent?

Answer 20

DISCOVER messages are sent as broadcast, but cannot leave the router boundary. You can use a boundary router to send DISCOVER messages further into the network towards the actual server

Question 21

What are the commands for troubleshooting DHCP?

Answer 21

show ip dhcp conflict
show ip dhcp binding
debug ip dhcp server packet

Question 22

What is SLAAC?

Answer 22

StateLess Address Auto Configuration: preferred method of assigning IP addresses in an IPv6 network
The device sends the router a request for the network prefix, and then uses this prefix with its own MAC address to create an IP address.

Question 23

How do you troubleshoot SLAAC?

Answer 23

• show ipv6 interface g0/0
  -> check if RAs are suppressed
• only works if route is using a /64 prefix
• check if IPv6 unicast routing is enabled

Question 24

What is stateful DHCPv6?

Answer 24

It provides an IP address to the device as well as other information such as NTP server, DNS, etc.

Question 25

What is stateless DHCPv6?

Answer 25

It provides the client with an IP address, a default gateway, and tells it to contact a DHCPv6 server for other information