Narbik - End of Day 1

Geeze… What a long day.  Apparently the easiest one of the whole course.  Spent the whole morning doing basic L2/Switching stuff, and then later (probably around 8pm) moving onto Frame Relay.  We just walked out of the classroom, and it is now 9:15pm.  I want to go through the rest of my L2 stuff (L2 QOS and Frame-relay) after a shower.  I picked up heaps today.  Most of the stuff I already know, but I split hairs and went extremely pedantic to convey the dodgy rough notes follow:

IP Source guard needs to have DHCP Snooping and port-security configured first

MAC ACL - Decnet reference is always Decnet phase IV, can only be applied inbound

Switchport protect wont let ports in the same vlan talk to each other, can talk to unprotected ports. 

Switchport Block stops unknown unicasts and multicasts, what defines “unknown” is if there is a MAC entry in the CAM table or not.

Private VLANs : Primary needs to be promiscuous, default gateway needs to be here.  You need to configure the mapping AND the host-association for it to work.  Isolated cant talk to each other, can to talk to promiscuous.  Community - can talk to others in same community and to promiscuous.  The switches need to be VTP transparent for PVLANs to work.

SRR queue - (before today I wanted all this to be in the “Far Queue”.  Say it out loud and you will understand.  Sharing = “real” shaping.  Shaping = “real” policing - WTF??  QOS map is easy.  Once you know the threshold and queue just keep adding to it.  One line can map 8 DSCP values.

Remember to turn mls qos on or it wont work.

PPP over FR - just remember make virtual-template, then apple VT to DLCI with frame-relay interface-dlci xxx ppp virtual-template y

Shower time…. Then Ill come back and do the rest of the Switching and Frame-relay labs.