CartAs many of you are aware on the CCIE Security exam you need to be aware of the difference between the control-plane and data plane traffic. The data plane consists of traffic traversing a device, while the control-plane is traffic that is processed by a device for evaluation. There are exceptions to the rule but typically control-plane traffic is destined to the device itself.
IPexpert Around the Web
Search
Technical Blogs by Track
5 Day CCNA Bootcamp!
CCNA 5 Day Bootcamp
CCNA Instructor Led Bootcamp is delivered by CCIEx2 #8918 (R&S,Sec) Senior Technical Instructor Rahim Raoufi. Register and get Free CCNA Self Study Tools, Exam Voucher and $1000 Credit towards CCNP Training.
Join Our Free Online Study List
View CCIE Job Opportunities
Cisco Certification Training
Tags
CCIE ccie exam CCIE Job CCIE Jobs ccie lab CCIE lab training CCIE R&S CCIE R&S Lab CCIE R&S Training ccie r&s written CCIE Routing & Switching CCIE Security CCIE Security 3.0 ccie security training CCIE Service Provider CCIE Success CCIE Success Stories CCIE Training ccie voice ccie voice jobs ccie voice lab CCIE Voice Training CCIE Wireless CCIE Wireless Training ccna ccnp Cisco exam free ccie training free ccie voice training ipexpert IPv6 lab MPLS multicast OSPF practice r&s Security Strategy study training Troubleshooting Voice WrittenQuick Links
Recently on the Security Online Study List a discussion was started on how to match a MAC address using flexible packet matching. After looking into it a bit I found that it was quite a process to get Flexible Packet Matching to Match on a MAC address.
I will outline the process I followed to determine match a MAC address.
Good Day Everyone,
Marko has posted several blogs on how to connect to proctorlabs using SecureCRT (Windows/MAC_and_Linux) and how to connect using Putty Connection Manager with the Database File.
I would like to add to these posts by giving a script that will allow for some automation while working on Proctorlabs, (And this script can actually be ported to use within your own company if you are interested.)
Each time I connect to the devices for a new session there are a few commands I always enable on the devices. For instance setting the logging to synchronous and disabling the idle timeout timer on the console, creating aliases, and disabling domain lookup. Instead of having to enter these commands each time I connect to Proctorlabs I have created a small expect script to automatically connect and post these commands for me each time I start a new vrack session.
Last week I ran into a problem while presenting a virtual lecture on VRF Aware IPsec that the implementation using crypto maps was not working. Today I wanted to re-touch on this, I think I simply ran into problems due to too many different VRF implementation scenario’s on the routers. i.e. VRF Aware Static VT, VRF Aware DMVPN, VRF Aware EZVPN, and VRF Aware L2L.
I have erased the configurations and created a very similar configuration shown below, (It should be essentially the same only names have possibly changed). My configuration on the vlecture was good but something was causing R2 to ignore the incoming traffic.
Here is the configuration and the verification output
Background
L2-Protocol Tunnels and 802.1q tunnels seems to be a topic that often confuse people and people misunderstand the requirements to run these services.
The 802.1q tunnel feature allows a provider to tunnel customer traffic thru the provider network without revealing the underlying L2 architecture of the provider network. In addition many customers will likely share the same L2 VLAN’s thus there is a need to keep the customer VLAN traffic separated.