Upload
others
View
0
Download
0
Embed Size (px)
Citation preview
1
Cisco Certified Network Associate CCNA 640-802Access the WAN
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE I Chapter 6 1
Assist.Prof.It-arun [email protected]
DAY 4
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 2
DAY 4
Agenda
Services in a Converged WAN
Point-to-Point Protocol
Frame Relay
Enterprise Network Security
Access Control Lists
P idi T l k S i
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 3
Providing Teleworker Services
Implementing IP Addressing Services
SERVICES IN A CONVERGED WAN
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 4
SERVICES IN A CONVERGED WAN
2
Describe How ECNM Provides Integrated Services over an Enterprise Network
Explain the purpose and function of WANs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 5
Describe the Key WAN Technology Concepts
Describe WAN functions in terms of the OSI Reference Model
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 6
Describe the Key WAN Technology Concepts
Describe the key WAN physical layer concepts for network and Internet communications
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 7
Describe the Key WAN Technology Concepts
Describe the key WAN data link layer protocols used in today’s Enterprise WAN networks
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 8
3
Select the Appropriate WAN Technology to meet ECNM Requirements
List the various options for connecting subscribers to the WAN
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 9
Select the Appropriate WAN Technology to meet ECNM Requirements
List factors to consider when selecting a WAN connection
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 10
POINT TO POINT PROTOCOL
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 11
POINT-TO-POINT PROTOCOL(PPP)
Describe the Fundamental Concepts of Point-to-Point Serial Communication
Explain the terms DTE and DCE with relative to the location of devices in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 12
4
Describe the Fundamental Concepts of Point-to-Point Serial Communication
Describe how high-level data link control (HDLC) uses one of three frame types to encapsulate data
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 13
Describe the Fundamental Concepts of Point-to-Point Serial Communication
Explain when and how to configure HDLC encapsulation on a router
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 14
Describe the Fundamental Concepts of Point-to-Point Serial Communication
Describe the procedure to follow when troubleshooting a serial connection
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 15
Describe Point-to-Point Concepts Describe PPP in terms of its use in WAN links
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 16
5
Describe Point-to-Point Concepts Describe the general function of each layer of PPP architecture
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 17
Describe Point-to-Point Concepts Define the three phases of PPP session establishment
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 18
Describe Point-to-Point Concepts Explain the role of the LCP in PPP
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 19
Configure PPP on a Serial Interface Explain the purpose of the commands used to configure and verify PPP connections
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 20
6
Configure PPP on a Serial Interface Explain the output of the show interfaces serial command
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 21
Configure PPP on a Serial Interface Explain the output of the debug ppp command
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 22
Configuring PPP with AuthenticationDifferentiate between PAP and CHAP
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 23
Configuring PPP with AuthenticationExplain how to configure a PPP connection with authentication
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 24
7
Configuring PPP with AuthenticationExplain the output of the debug ppp authentication command
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 25
FRAME RELAY
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 26
FRAME RELAY
Describe the Fundamental Concepts of Frame Relay Technology
Describe how Frame Relay is used to provide WAN services to the Enterprise
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 27
Describe the Fundamental Concepts of Frame Relay Technology
Describe how Frame Relay uses virtual circuits to carry packets from one DTE to another
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 28
8
Describe the Fundamental Concepts of Frame Relay Technology
Describe the types of topologies that are used for implementing Frame Relay in different environments
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 29
Describe the Fundamental Concepts of Frame Relay Technology
Describe how a router attached to a Frame Relay network uses LMI status messages and inverse ARP queries to map VCs to layer 3 network IP Addressesqueries to map VCs to layer 3 network IP Addresses
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 30
Configure a Basic Frame Relay PVCConfigure a basic Frame Relay PVC on a router serial interface
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 31
Configure a Basic Frame Relay PVCConfigure a static Frame Relay map
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 32
9
Describe Advanced Concepts of Frame Relay Technology
Explain the reachability issues associated with the Frame Relay NBMA topology
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 33
Describe Advanced Concepts of Frame Relay Technology
Describe how to implement bandwidth control in the Frame Relay technology
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 34
Configure an Advanced Frame Relay PVC Explain the steps to configure point-to-point subinterfaces on a physical interface
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 35
Configure an Advanced Frame Relay PVC Describe the commands used for verifying Frame Relay operation
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 36
10
ENTERPRISE NETWORK SECURITY
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 37
ENTERPRISE NETWORK SECURITY
Describe the General Methods used to Mitigate Security Threats to Enterprise Networks
Describe the most common types of network attacks and how they impact enterprises
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 38
Describe the General Methods used to Mitigate Security Threats to Enterprise Networks
Describe the common mitigation techniques that enterprises use to protect themselves against threats
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 39
Describe the General Methods used to Mitigate Security Threats to Enterprise Networks
Explain the concept of the Network Security Wheel
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 40
11
Configure Basic Router Security Explain why the security of routers and their configuration settings is vital to network operation
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 41
Configure Basic Router Security Describe the recommended approach to applying Cisco IOS security features on network routers
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 42
Configure Basic Router Security Describe the basic security measures needed to secure Cisco routers
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 43
Explain How to Disable Unused Cisco Router Network Services and Interfaces
Describe the router services and interfaces that are vulnerable to network attack
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 44
12
Explain How to Use Cisco SDMProvide an overview of Cisco SDM
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 45
Explain How to Use Cisco SDMExplain the steps you follow to start SDM
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 46
Explain How to Use Cisco SDMDescribe the Cisco SDM Interface
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 47
Manage Cisco IOS DevicesDescribe how to backup and upgrade a Cisco IOS image
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 48
13
Manage Cisco IOS DevicesExplain how to back up and upgrade Cisco IOS software images using a network server
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 49
Manage Cisco IOS DevicesExplain how to recover a Cisco IOS software image
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 50
ACCESS CONTROL LISTS
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 51
ACCESS CONTROL LISTS
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Describe the steps that occur in a complete TCP conversation
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 52
14
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Explain how a packet filter allows or blocks traffic
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 53
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Describe how ACLs control access to networks
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 54
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Use a flow chart to show how ACLs operate
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 55
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Describe the types and formats of ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 56
15
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Explain how Cisco ACLs can be identified using standardized numbering or names
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 57
Explain How ACLs are Used to Secure a Medium-Size Enterprise Branch Office Network
Describe where ACLs should be placed in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 58
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Explain why the order in which criteria statements are entered into an ACL is important
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 59
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Explain how to configure a standard ACL
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 60
16
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Describe how to use wildcard masks with ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 61
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Describe how to apply a standard ACL to an interface
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 62
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Explain the process for editing numbered ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 63
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Explain how to create a named ACL
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 64
17
Configure Standard ACLs in a Medium-Size Enterprise Branch Office Network
Explain the process for editing named ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 65
Configure Extended ACLs in a Medium-Size Enterprise Branch Office Network
Describe how to configure extended ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 66
Configure Extended ACLs in a Medium-Size Enterprise Branch Office Network
Describe how to apply an extended ACL to an interface
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 67
Configure Extended ACLs in a Medium-Size Enterprise Branch Office Network
Describe how to create named extended ACLs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 68
18
PROVIDING TELEWORKER SERVICES
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 69
PROVIDING TELEWORKER SERVICES
Describe the Enterprise Requirements for Providing Teleworker Services
List remote connection technologies and describe scenarios in which each would be implemented.
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 70
Describe the Enterprise Requirements for Providing Teleworker Services
Describe the key differences between private and public network infrastructures
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 71
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Explain the importance and benefits of VPN technology
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 72
19
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Compare site-to-site VPNs to remote-access VPNs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 73
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Describe the characteristics of secure VPNs
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 74
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Describe the concept of VPN tunneling
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 75
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Describe the concept of VPN encryption
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 76
20
Describe How VPN Technology Provides Secure Teleworker Services in an Enterprise Setting
Describe the concept of IPsec Protocols
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 77
IMPLEMENTING IP ADDRESSING SERVICES
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 78
IMPLEMENTING IP ADDRESSING SERVICES
Configure DHCP in an Enterprise Branch Network
Describe the function of DHCP in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 79
Configure DHCP in an Enterprise Branch Network
Describe how DHCP dynamically assigns an IP address to a client
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 80
21
Configure DHCP in an Enterprise Branch Network
Describe how to configure a DHCP server
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 81
Configure DHCP in an Enterprise Branch Network
Explain how DHCP Relay can be used to configure a router to relay DHCP messages when the server and the client are not on the same segmentthe client are not on the same segment
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 82
Configure NAT on a Cisco Router Describe the operation and benefits of using private and public IP addressing
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 83
Configure NAT on a Cisco Router Explain the key features of NAT and NAT overload
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 84
22
Configure NAT on a Cisco Router Explain the advantages and disadvantages of NAT
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 85
Configure NAT on a Cisco Router Describe how to configure static NAT to conserve IP address space in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 86
Configure NAT on a Cisco Router Describe how to configure dynamic NAT to conserve IP address space in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 87
Configure NAT on a Cisco Router Describe how to configure NAT Overload to conserve IP address space in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 88
23
Configure New Generation RIP (RIPng) to use IPv6
Describe the format of the IPv6 addresses and the appropriate methods for abbreviating them
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 89
Configure New Generation RIP (RIPng) to use IPv6
Explain the various methods of assigning IPv6 addresses to a device
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 90
Configure New Generation RIP (RIPng) to use IPv6
Describe the transition strategies for implementing IPv6
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 91
Configure New Generation RIP (RIPng) to use IPv6
Describe how Cisco IOS dual stack enables IPv6 to run concurrently with IPv4 in a network
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 92
24
Configure New Generation RIP (RIPng) to use IPv6
Describe the concept of IPv6 tunneling
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 93
Configure New Generation RIP (RIPng) to use IPv6
Describe how IPv6 affects common routing protocols, and how these protocols are modified to support IPv6
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 94
Configure New Generation RIP (RIPng) to use IPv6
Explain how to configure a router to use IPv6
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 95
Configure New Generation RIP (RIPng) to use IPv6
Explain how to configure and verify RIPng for IPv6
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 96
25
Configure New Generation RIP (RIPng) to use IPv6
Explain how to verify and troubleshoot IPv6
© 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 97 © 2006 Cisco Systems, Inc. All rights reserved. Cisco PublicITE 1 Chapter 6 98