8/8/2019 4th APJ Student Technology Forum V3 All

1/37

2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ialPresentation_ID 1

Brought to you by

APJ Technical Advocacy Team

4th Asia Pacific & Japan

Student Technology Forum16th July 2010

8/8/2019 4th APJ Student Technology Forum V3 All

2/37

Presentation_ID 2 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ialPhilippines Japan

Australia

Korea

China TaiwanHong KongNepal

India Bangladesh

Singapore

Malaysia Indonesia Thailand Vietnam

Cambodia

Sri Lanka

Bhutan

Maldives

Fiji Samoa

Papua New Guinea

Tonga

Mongolia

Laos

Macau

New Zealand

8/8/2019 4th APJ Student Technology Forum V3 All

3/37

Presentation_ID 3 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Agenda

Who are we?

Building your 1st IP phone network on PT 5.3

Ping! Ping! Ping! Illustrated

What you need to know about port negotiation

Hacking Google - How to use Google effectively?

Recording for previous APJ Student Technology Forum

Feed back & Evaluation

8/8/2019 4th APJ Student Technology Forum V3 All

4/37

Presentation_ID 4 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Asia Pacific & Japan TA Team

John LimCCIE #2977

Senior Manager, Technical AdvocacyAsia Pacific & Japan

Eric KwokTechnical ManagerHong Kong

Liu KangCCIE #17564Technical ManagerChina

Ananth B. STechnical ManagerIndia

Masato FujiwaraCCIE #22931Technical ManagerJapan

Gary ComanDirector, Technical AdvocacyWorld Wide

http://wwwin-tools.cisco.com/dir/details/angetan

8/8/2019 4th APJ Student Technology Forum V3 All

5/37

2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ialPresentation_ID 5

Building your 1st IP

phone network onPT 5.3

John LimCCIE #2977Senior Manager, Technical AdvocacyAsia Pacific & Japan

8/8/2019 4th APJ Student Technology Forum V3 All

6/37

Presentation_ID 6 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Packet Tracer 5.3 Protocol Support

Application

FTP , SMTP, POP3, HTTP, TFTP, Telnet, SSH, DNS, DHCP, NTP, SNMP, AAA,

ISR VOIP, SCCP config and calls ISR command support, Call Manager Express

Transport

TCP and UDP, TCP Nagle Algorithm & IP Fragmentation, RTP

Network

BGP, IPv4, ICMP, ARP, IPv6, ICMPv6, IPSec, RIPv1/v2/ng, Multi-Area OSPF,

EIGRP, Static Routing, Route Redistribution, Multilayer Switching, L3 QoS, NAT,

CBAL , Zone-based policy firewall and Intrusion Protection System on the ISR,

GRE VPN, IPSec VPN

Network Access/Interface

Ethernet (802.3), 802.11, HDLC, Frame Relay, PPP, PPPoE, STP, RSTP, VTP,

DTP, CDP, 802.1q, PAgP, L2 QoS, SLARP, Simple WEP, WPA, EAP

*New in PT 5.3 *Enhanced in PT 5.3

8/8/2019 4th APJ Student Technology Forum V3 All

7/37Presentation_ID 7 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Building your 1st IP phone network

8/8/2019 4th APJ Student Technology Forum V3 All

8/37Presentation_ID 8 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Ping! Ping! Ping!

Illustrated

Liu KangTechnical Manager, Technical AdvocacyBeijing, China

8/8/2019 4th APJ Student Technology Forum V3 All

9/37Presentation_ID 9 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

What is your level of understanding for ping?

0 5 10

8/8/2019 4th APJ Student Technology Forum V3 All

10/37Presentation_ID 10 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

What kinds of ping results have you seen?

A. !!!!!B. .!!!!

C. U.U.UD. .U.U.

E. ..

! = echo reply received. = timeoutU = destination unreachable

8/8/2019 4th APJ Student Technology Forum V3 All

11/37Presentation_ID 11 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

All answers are correct!

Unreachable x3 timeout x2

ICMP echo-reply received x4

Timeout x5

8/8/2019 4th APJ Student Technology Forum V3 All

12/37Presentation_ID 12 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Why .!!!!

You may see this kind of result when ping some IP in

the first time Why?

Is it a system bug? Or performance issue?

8/8/2019 4th APJ Student Technology Forum V3 All

13/37Presentation_ID 13 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Why do you say ARP?

We need evidence!!

.!!!!

8/8/2019 4th APJ Student Technology Forum V3 All

14/37Presentation_ID 14 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

U.U.U Unreachable x3 timeout x2

8/8/2019 4th APJ Student Technology Forum V3 All

15/37Presentation_ID 15 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

U.U.U Unreachable x3 timeout x2

Why not Timeout x5 ?

Why not Unreachable x5 ?Is there any issue?

8/8/2019 4th APJ Student Technology Forum V3 All

16/37Presentation_ID 16 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

ICMP packet is generated by router CPU

show process cpu history

8/8/2019 4th APJ Student Technology Forum V3 All

17/37Presentation_ID 17 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

ICMP packet is generated by router CPU

In this demo, I will:

Disable rate-limit forICMP unreachable packet

Find the ways to change U.U.U to

UUUUU

U.U

..

8/8/2019 4th APJ Student Technology Forum V3 All

18/37Presentation_ID 18 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Protect your routerby disabling ICMP unreachable

After apply no ip unreachables

8/8/2019 4th APJ Student Technology Forum V3 All

19/37Presentation_ID 19 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Why we need ICMP unreachable

Source can not know if destination are reachable or not

May not able to trace route

Cant terminate unreachable connection rapidly

8/8/2019 4th APJ Student Technology Forum V3 All

20/37Presentation_ID 20 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

ping results

A. !!!!! --congratulations, seems fine B. .!!!! -- dont worry, just ping again

C. U.U.U possible routing issue

D. .U.U. possible routing issueE. .. --

! = echo reply received

. = timeoutU = destination unreachable

8/8/2019 4th APJ Student Technology Forum V3 All

21/37Presentation_ID 21 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Some useful commands

ping repeat

debug arp

debug ip icmp / undebug all

ip icmp rate-limit unreachable

ip unreachables (interface mode)

show processes cpu history

ctrl+shift+6, then x

8/8/2019 4th APJ Student Technology Forum V3 All

22/37Presentation_ID 22 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Curriculum reference

CCNA exploration 2

Chapter 1: introduction for routing and packet forwarding

8/8/2019 4th APJ Student Technology Forum V3 All

23/37Presentation_ID 23 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

More resources

Using the Extended ping and Extended tracerouteCommands

http://www.cisco.com/en/US/tech/tk365/technologies_tech_

note09186a0080093f22.shtml

ICMP Unreachable Rate Limiting User Feedback

http://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbipicmp.html

http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f22.shtmlhttp://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f22.shtmlhttp://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbipicmp.htmlhttp://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbipicmp.htmlhttp://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbipicmp.htmlhttp://www.cisco.com/en/US/docs/ios/12_2sb/feature/guide/sbipicmp.htmlhttp://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f22.shtmlhttp://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080093f22.shtml

8/8/2019 4th APJ Student Technology Forum V3 All

24/37 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ialPresentation_ID 24

What you need to know

about port negotiation

Eric Kwok

Technical Manager, Technical Advocacy

Hong Kong

8/8/2019 4th APJ Student Technology Forum V3 All

25/37Presentation_ID 25 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Making Ethernet Connection

Cable Type

Connectivity issue

DuplexPerformance issue

Speed

Connectivity issue

C

D

S

8/8/2019 4th APJ Student Technology Forum V3 All

26/37

Presentation_ID 26 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

ScenarioConnecting 2 Fast Ethernet Switches

Eric JohnDuplex: auto

Speed: auto

Duplex: auto

Speed: auto1

Eric JohnDuplex: full

Speed: 100

Duplex: full

Speed: 1002

Eric JohnDuplex: half

Speed: 10

Duplex: auto

Speed: auto3

Eric JohnDuplex: full

Speed: 100

Duplex: auto

Speed: auto4

Eric John

Duplex: full

Speed: 100

Duplex: full

Speed: 10

5

Link up, full duplex, 100Mbps

Link up, full duplex, 100Mbps

Link up, half duplex, 10Mbps

Link up, 100Mbps

Duplex Mismatch

No link

Full Half

8/8/2019 4th APJ Student Technology Forum V3 All

27/37

Presentation_ID 27 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Auto Negotiation Fail Running Halfduplex

The standard requires that the system configured forauto negotiation must use half duplex

Switch# show internface fa0/1

Eric: Half-duplex, 10Mb/s, 100BaseTX/FX

John: Auto-duplex (Half), Auto Speed (10), 100BaseTX/FX

Even the speed and duplex is set to manual at one side,the other side with auto negotiation still be able todetermine the correct speed

Eric JohnDuplex: half

Speed: 10

Duplex: auto

Speed: auto3

Link up, half duplex, 10Mbps

8/8/2019 4th APJ Student Technology Forum V3 All

28/37

Presentation_ID 28 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Auto Negotiation Fail Duplex Mismatch

The standard requires that the system configured for auto negotiationmust use half duplex

Switch# show internface fa0/1

Eric: Full-duplex, 100Mb/s, 100BaseTX/FX

John: Auto-duplex (Half), Auto Speed (100), 100BaseTX/FX

Halfduplex side: The half duplex end will see late collisions, alignmenterrors, and FCS errors.

Full duplex side: collision counter is not active. If the FCS, CRC, alignment,or runt counters increment, check for a duplex mismatch

Eric JohnDuplex: full

Speed: 100

Duplex: auto

Speed: auto4

Full Half

CSMA/CD

is disabled

Collision Collision

Detected

Link up, 100Mbps

Duplex Mismatch

8/8/2019 4th APJ Student Technology Forum V3 All

29/37

Presentation_ID 29 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Things you must know

Autonegotiation issues can result from nonconforming implementation,hardware incapabilities, or software defects.

When Autonegotiation fail, the standard requires that the systemconfigured for auto negotiation must use half duplex

Duplex Mismatch issues mainly result in performance-related issues.

Speed mismatch will cause link down

Even the speed and duplex is set to manual at one side, the other sidewith auto negotiation still be able to determine the correct speed

CSMA/CD is not used on Full Duplex Ethernet networks.

A port duplex misconfiguration would cause the interface to go intoerrdisable

Gigabit Ethernet only support full duplex

AutoMDIX is disable when manual speed/duplex

8/8/2019 4th APJ Student Technology Forum V3 All

30/37

Presentation_ID 30 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Command for troubleshooting

show interface fastethernet 0/1

show interfaces fastethernet 0/1 status

show controller ethernet-controller fa0/1

8/8/2019 4th APJ Student Technology Forum V3 All

31/37

Presentation_ID 31 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

More Reading

Troubleshooting Cisco Catalyst Switches to NICCompatibility Issues

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800a7af0.shtml

Troubleshooting Ethernethttp://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.

html

Introduction to LAN Protocols

http://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.html

Errdisable Port State Recovery on the Cisco IOSPlatforms

http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00

806cd87b.shtml

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800a7af0.shtmlhttp://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800a7af0.shtmlhttp://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.htmlhttp://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtmlhttp://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtmlhttp://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtmlhttp://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/technology/handbook/Intro-to-LAN.htmlhttp://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.htmlhttp://www.cisco.com/en/US/docs/internetworking/troubleshooting/guide/tr1904.htmlhttp://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800a7af0.shtmlhttp://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00800a7af0.shtml

8/8/2019 4th APJ Student Technology Forum V3 All

32/37

2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ialPresentation_ID 32

Hacking Google -

How to use Googleeffectively?

Ananth B.STechnical Manager, Technical AdvocacyIndia

8/8/2019 4th APJ Student Technology Forum V3 All

33/37

Presentation_ID 33 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Recording for APJStudent TechnologyForum is available!

John LimCCIE #2977Senior Manager, Technical AdvocacyAsia Pacific & Japan

8/8/2019 4th APJ Student Technology Forum V3 All

34/37

Presentation_ID 34 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

http://www.alumni-advantage.com/skills/technical/Student_Webinars.html1000+ students from 27 different countries joined previous online session!

Recording for previous Student Technology Forum

http://www.alumni-advantage.com/skills/technical/Student_Webinars.htmlhttp://www.alumni-advantage.com/skills/technical/Student_Webinars.htmlhttp://www.alumni-advantage.com/skills/technical/Student_Webinars.htmlhttp://www.alumni-advantage.com/skills/technical/Student_Webinars.html

8/8/2019 4th APJ Student Technology Forum V3 All

35/37

Presentation_ID 35 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

Feedback & Evaluation

Thank You!

8/8/2019 4th APJ Student Technology Forum V3 All

36/37

Presentation_ID 36 2009 C isco Sys tems, Inc . A ll rights reserved. Cisco Conf ident ial

8/8/2019 4th APJ Student Technology Forum V3 All

37/37