Troubleshooting and maintaining Cisco IP networks (TSHOOT ...

Troubleshooting and Maintaining Cisco IP

(TSHOOT) Foundation Learning Guide Networks Foundation

learning for

the CCNP TSHOOT 642-832 Amir

Cisco Press 800 East 96th Street

Indianapolis, IN

46240

Ranjbar,

CCIE No. 8669

Table of Contents Introduction

Chapter

1

xvi

Planning Maintenance for Complex Networks 1

Applying Maintenance Methodologies Maintenance Models and

2

Methodologies

Determining Procedures and Tools

to

Support

Maintenance Processes and Procedures

Maintenance Models

6

7

Network Maintenance Planning 7

Scheduling Maintenance

8

Formalizing Change-Control Procedures Establishing Network

Documentation Procedures

Establishing Effective

Communication

8

9

Defining Templates/Procedures/Conventions (Standardization) Planning for Disaster Recovery Network

Monitoring

Fundamental Tools,

Configuration

Network

Summary Review

Chapter

2

11

12

12

15

16

Monitoring and

Implementing Backup Disaster

Resources

and Resources

and Documentation Tools

Services

Logging

Applications, and

Applications,

10

10

and Performance Measurement

Network Maintenance Tools,

4

5

Maintenance Task Identification

Network

1

Performance Measurement Tools

and Restore Services

Recovery Tools

17

18

22

23

Questions

27

Troubleshooting Processes for Complex Enterprise Networks 31

Troubleshooting Methodologies Troubleshooting Principles Structured

32 34

Troubleshooting Approaches

Top-Down Troubleshooting Bottom- Up

Method

Troubleshooting Method

Follow-the-Path

35 36

Troubleshooting Method

36

Spot-the-Differences Troubleshooting Method Move-the-Problem

Troubleshooting

Method

Troubleshooting Example: Methodologies

39

37 38

31

Implementing Troubleshooting Procedures The

Troubleshooting

Defining the Gathering

Problem

and

Eliminating

Process

41

42

Analyzing Information

Example on Elimination

Solving

the Problem

and

Troubleshooting and Documentation

Chapter

3

Using Using

Assumptions

46

the Network Maintenance Process

Control

50

53

Change Control

54

56

57

Questions

59

Maintenance and

Troubleshooting

Tools and

Cisco IOS Software for Maintenance and

Collecting

and

Collecting Real-time Information Using

Troubleshooting

Telnet

Cisco IOS

debug ip packet [access-list-number]/defaj7] debug ip rip

Applications

debug Commands

73

Diagnosing Hardware Issues Using Cisco IOS Commands

Checking Interfaces

77

78

Using Specialized Maintenance and Troubleshooting Tools Categories of Troubleshooting Tools Using Traffic-Capturing Tools SPAN and RSPAN

81

83

84

Gathering Information with

SNMP

87

Gathering Information with NetFlow

88

Network Event Notification

91

Summary

94

Review Questions

97

74

75

Checking Memory Utilization

64

69

74

Checking CPU Utilization

63

63

Filtering Information Using Cisco IOS show Commands

Testing Network Connectivity Using ping and

Enabling

50

51

Communication and

Review

46

Network Maintenance

Creating a Baseline

Change

45

47

Integrating Troubleshooting into

Summary

43

Possible Problem Causes

Formulating/Testing a Hypothesis An

41

81

73

Chapter

4

Maintaining and Troubleshooting Campus Troubleshooting VLANs LAN Switch

104

Verifying Layer 2 Forwarding

Electing

Root Port

111

112

Spanning-Tree Operation

a

113

Bridge

113

Electing Designated Ports Ports

109

Tree

Troubleshooting Spanning

Electing a

115

Going into Blocking,

or

Learning,

and

Forwarding

EtherChannel Operation

120

Troubleshooting Example:

Switch

Replacement

Gone Bad

Multilayer Switching

Switched Virtual Interfaces and Routed Ports

Using First-Hop Redundancy

Verifying FHRP Operation

Chapter

5

to HSRP

Routing

127 129

Troubleshooting First-Hop Redundancy Protocols

Review

121

Switched Virtual Interfaces and Inter-VLAN

Inter-VLAN Routing and

Summary

131

131

134

138

139

Questions

Maintaining

and

142

Troubleshooting Routing Solutions

Routing and Routing Data Structures

Troubleshooting

to

EIGRP

150

Verify Routing

Functions

156

159

Troubleshooting Example: Routing Problem Network

Troubleshooting

154

156

EIGRP Routing Review

Monitoring EIGRP

149

149

Troubleshooting Network Layer Connectivity Using IOS Commands

in an EIGRP

160 OSPF

OSPF Data Structures

116

119

Spanning-Tree Failures

Alternatives

State

117

Analyzing the Spanning-Tree Topology

Troubleshooting

103

103

Operation

Root

Switched Solutions

165

166

OSPF Information Flow Within

an Area

OSPF Information Flow Between Areas

170 171

126

Cisco IOS OSPF Commands

172

Troubleshooting Example: Routing Troubleshooting Route

Problem in

Route Redistribution

Injection

179

and Redistribution Process

Verifying and Troubleshooting

179

BGP Route BGP

BGP

OSPF

and Data Structures

Information Flow

Cisco IOS BGP Commands

Review Questions

187

190 in a BGP Network

Common IPv4

NAT/PAT

211

Services

Addressing

Operation

Troubleshooting

Service Issues

211

212

Common NAT/PAT Issues

215

Troubleshooting Example: Routing Issue 217

NAT/PAT Problem Caused

Troubleshooting Example:

NAT Problem Caused

Access List

Common DHCP

Troubleshooting

Troubleshooting Tips

DHCP

Troubleshooting Example:

Issues

Inaccurate

227

and Commands

231

Problems After

DHCP

Troubleshooting Example: Duplicate

DHCP

Troubleshooting Example: Relay

Identify Common IPv6 Routing Issues

a

Security

IPv6 Issues

Agent Issue

Stateless

Autoconfiguration Issue

Troubleshooting Example: OSPFv3 Configuration

IPv6

Troubleshooting Example: 276 279

OSPFv3

over

246

253

IPv6

Questions

238

240

243

IPv6 Troubleshooting Example: Redistribution Issue

Review

233

244

Troubleshooting Example:

Summary

Audit

Client IP Addresses

243

Troubleshooting IPv6

an

226

DHCP

Routing

by

by a

220

Reviewing DHCP Operation

IPv6

191

202

Troubleshooting Addressing Identify

183

197

Summary

6

EIGRP

189

Troubleshooting Example: Routing Problem

Chapter

to

187

Processing

Routing

181

Route Propagation

Troubleshooting Example: Redistribution from Troubleshooting

174

OSPF Network

an

Errors

6to4 Tunnel

270

261

Chapter

7

Network Performance Issues

Troubleshooting

Troubleshooting Network Applications Services Network Application Services NetFlow

283

284

286

Cisco IP SLA NBAR

289

292

293

SLB

QoS and AutoQoS

294

Common Issues with Network Common NetFlow Issues

Common NBAR Issues Common

AutoQoS

IP SLA

297

Issues

297 Network

Application

Troubleshooting Example

Identifying

Performance Issues

Troubleshooting Switch

on

304 Switches

Switches

on

308 308

Switch Interface Performance Problems

Port/Interface

Issues

315

317

Forwarding Hardware

318 318

Troubleshooting TCAM Problems

Control Plane: Troubleshooting High CPU Load DHCP Issues

325

Spanning-Tree

Issues

HSRP

310

314

Troubleshooting Example: Duplex Problem Auto-MDIX

297

298

AutoQoS Troubleshooting Example Performance Issues

Services Problem

301

Troubleshooting Example

Troubleshooting

296

Services

296

Troubleshooting Example: NetFlow

Application

296

Common IP SLA Issues

The

283

on

Switches

322

326

327

Switch Performance Troubleshooting

Speed and Duplex Settings

Example:

327

Switch Performance

Troubleshooting Example:

Excessive Broadcasts

Switch Performance

Troubleshooting Example:

Excessive

Troubleshooting Performance Troubleshooting High

CPU

Troubleshooting Switching Process

Switching

Issues

348

on

Usage Paths

Routers

Issues 347

on

Security

343 Routers

344

332 336

Fast

Switching

348

Cisco Express Forwarding

Troubleshooting Troubleshooting

CEF

IOS Tools to

Analyze

Troubleshooting Summary

Packet Forwarding

Memory

Issues

354 357

360

361

Review Questions

365 Networks

Troubleshooting Converged Troubleshooting Converged

Networks

to

Common Wireless Integration Issues WLAN

3S0

Switching

351

Router

BGP Memory Use

Chapter 8

349

Process and Fast

371

Support

Wireless

Trunk

374

and Trust Issues

378

Connectivity Troubleshooting Example: Misconfigured Connectivity Troubleshooting Example: Duplex

WLAN

Connectivity Troubleshooting Example:

Security Implementations

LWAPP Denied

Unified Communications Issues in

a

Converged

Common Unified Communications Integration Issues Unified Communications Voice VLAN Issues

Troubleshooting Example:

Trunk Issues

390

Port

Security

Example:

Video-Integration

a

ACL and

Converged Network

Issues

410

410

Topology

416 IP Multicast

Video-Integration Troubleshooting Example: Error

Configuration

Review

Chapter

9

426

431

Questions

433

Maintaining and Troubleshooting 435 Implementations Troubleshooting

Secure Networks

Troubleshooting Challenges in Security

and

Example: Invalid Marking of

Video-Integration Troubleshooting Example: Performance

Summary

390

405

Troubleshooting Video Issues in

STP

Network

399

Unified Communications Troubleshooting

Common

385

395

Unified Communications Troubleshooting VoIP Packets

by New

382

Connectivity Troubleshooting Example: DHCP Issues

Troubleshooting

371

372

WLAN

WLAN

Operations

Features

Review

Network

Security

435 Secured Networks

437

436

Issues Due to

Troubleshooting Management Management Plane

The

Plane

Security

438

Securing the Management Plane

440

Troubleshooting Security Implementations

Troubleshooting Control Plane Security Securing the Control Plane

Troubleshooting

Control Plane

the Data Plane

Stateful Packet Inspection

44 9

Using the Zone-Based Policy Firewall

Troubleshooting Security Implementations

452

454

in the Data Plane

Office and Remote Worker

Branch Office and Remote Worker Connectivity

Connectivity

455 456

456

Issues with Branch Office and Remote Worker

Identifying

448

449

Other Methods of Securing the Data Plane

Troubleshooting Branch

in the

442

449

Securing the Data Plane Using IOS

Securing

Management Plane

448

Plane Security

Securing The Data Plane

in the

447

Troubleshooting Security Implementations Data

438

45 7

Connectivity

Branch Office/Remote Worker Troubleshooting Example: Address Translation Error 460 Branch Office/Remote Worker

Crypto Map

ACL Error

Branch Office/Remote Worker

Configuration Error

Troubleshooting Example:

463

Troubleshooting Example:

Branch Office/Remote Worker Troubleshooting

Routing

Problem

Chapter

10

Questions

Preparation 485

Review of

Appendix A Index

501

ACL Denies

480

Review and

Summary

Troubleshooting Example:

476

Networks

Applying

Recursive

478

Summary Review

Example:

471

Branch Office/Remote Worker IPsec Protocols

GRE

467

for

Key Maintenance

Maintenance and

Troubleshooting Complex Enterprise

and

Troubleshooting Concepts and Tools

Troubleshooting Concepts and Tools

491

Answer to Review Questions

493

488

485