Scribd Logo
Hochladen

Willkommen bei Scribd!

  • CCIE Routing & Switching Version 5.0 - VPN

    Hochgeladen von

    bomoarebun
    87 Ansichten6 Seiten
    CCIE RS - VPN topics

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    DOCX, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    CCIE RS - VPN topics

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    87 Ansichten6 Seiten

    CCIE Routing & Switching Version 5.0 - VPN

    Hochgeladen von

    bomoarebun
    CCIE RS - VPN topics

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 6

    CCIE Routing & Switching Version 5.

    0 - VPN
    Section 1: VPN introduction

    Introduction to VPN Networks


    VPN models overview
    VPN models -Advantages and Disadvantages
    Cisco express forwarding
    MPLS VPN overview

    Section 2: MPLS Label Distribution Protocol

    MPLS introduction
    MPLS labels and MPLS stacks
    sharing Label information
    MPLS LDP configuration
    MPLS LDP configuration - Continued
    MPLS label forwarding
    Penultimate hop popping
    MPLS LDP troubleshooting

    Section 3: MPLS layer 3 VPN

    MPLS Layer3 VPN


    Steps to Configure MPLS Layer3 VPN
    VRF- Route Distinguisher-Route Target
    VRF Configuration
    MPLS L3 VPN Support for Static-Default Routing
    VPNV4 Peering between PE to PE routers
    VPNv4 Redistribution under VRF

    Section 4: MPLS L3 VPN support for RIP-EIGRP-OSPF

    MPLS L3 VPN for RIPv2


    MPLS L3 VPN for EIGRP
    MPLS L3 VPN for OSPF

    Section 5: MPLS L3 VPN Advance Routing

    MPLS OSPF Superbackbone


    Understanding OSPF Domain-ID
    Verify OSPF Domain-ID
    Purpose of OSPF Sham-Link
    LAB- Verify OSPF sham-link
    MPLS L3 VPN EBGP
    Section 6: MPLS L3 VPN Advance Options

    Overlapping VPNs
    Overlapping VPNs- Continued
    Overlapping VPN- Advance
    Layer 2 MPLS VPN- Overview
    IPV6 support - MPLS
    MPLS Traffic Engineering- overview
    Inter AS VPN overview

    Section 7: MPLS L3 VPN Troubleshooting

    MPLS L3 VPN- Troubleshooting

    Section 8: GRE -Generic Routing encapsulation

    VPN over Internet


    Generic Routing encapsulation
    Default Lab setup
    LAB- GRE point to point Configuration
    LAB- GRE point to point Configuration Advance
    Drawbacks of GRE

    Section 9: DMVPN-Dynamic Multipoint VPN

    Dynamic Multipoint VPN


    DMVPN phases
    DMVPN phase-1 Static NHRP
    DMVPN Phase-1 Dynamic NHRP
    DMVPN Phase-2 Static NHRP
    DMVPN phase-2 Dynamic NHRP

    Section 10: Routing protocols over DMVPN

    DMVPN Phase-1 routing using RIPv2


    DMVPN Phase-1 routing using EIGRP
    DMVPN Phase-1 routing using OSPF
    DMVPN phase-2 RIPv2 Routing
    DMVPN phase-2 OSPF Routing

    Section 11: IPsec VPN

    IPsec VPN Introduction


    IPsec Mode-Protocols
    IPsec process-Overview
    IPsec- IKE phase 1
    IPsec- IKE phase 2
    Section 1: VPN introduction
    Introduction to VPN Networks
    VPN models overview
    VPN models -Advantages and Disadvantages
    Cisco express forwarding
    MPLS VPN overview

    Modern Service Provider networks (VPN)


    - Concepts of VPNs
    - Why VPNs was introduced
    - VPN implementation models
    - Benefits and drawbacks of VPNs
    Traditional Router Networks:
    Traditional router-based networks connected customer sites through routers
    connected via dedicated point-to-point links

    VPNs replace dedicated point-to-point links with emulated point-to-point links that share
    common infrastructure.
    Customers use VPNs primarily to reduce their operational costs.
    Examples: X.25, Frame-relay, ATM, GRE, DMVPN, IPsec, MPLS, L2TPv3
    Advantages of VPNs
    - Cost savings: replacing expensive long-distance leased lines with much less
    expensive dedicated connection to SP (DSL, fibre): Offloading support cost as well.
    - Scalability: Adding a new branch office is fast and simple by adding an additional link
    to the ISP (adding a site to the customer VPN)
    - Improved Security: Use of encryption protocols and authentication
    - Better Performance: More high-capacity service options can be used (cheaper
    bandwidth)
    - Flexibility and reliability: Widespread availability of DSL, fibre and other broadband
    options. Using more than one ISP
    - Greater access to mobile users: Increasing productivity and responsiveness for
    employees working from home or nosiness trips.
    VPN MODELS
    Overlay model: in which SP provides virtual point-to-point links between customer sites
    Implementing optimum routing requires a full mesh of VCs
    VCs have to be provisioned manually
    Bandwidth must be provisioned on site-to-site basis.
    Overlay VPNs always incur encapsulation overhead (GRE or IPsec).
    Peer-to-peer model: in which the SP participates in the customer routing
    The SP participates in customer routing. Filters should be applied to customer links.
    The SP becomes responsible for customer convergence
    PE routers carry all routes from all customers
    A secure environment must be provided for customers
    Complex configuration
    The SP needs detailed IP routing knowledge

    Overlay Layer 2 VPNs:


    - The SP establishes Layer 2 VCs between customer sites, the customer is responsible for all
    higher layers.

    Das könnte Ihnen auch gefallen