Geekly Articles each Day
📜 ⬆️ ⬇️

CCNP Certification Routing and Switching Update

Hello!
Not so long ago, Cisco updated the track CCNA, CCIE R & S, as well as CCNP Security. Therefore, one would expect that CCNP R & S would change soon.
And so, on July 28, they reworked the exams for this certification.
Now the necessary exams for CCNP R & S status are:

These exams can be passed from July 29, 2014, and the last day of the old exams is January 29, 2015.
So everyone who is on the way to the CCNP should hurry!

Exam Topics:
ROUTE
Network Principles 10%
  1. Identify Cisco Express Forwarding concepts
    1. Fib
    2. Adjacency table
  2. Explain general network challenges
    1. Unicast
    2. Out-of-order packets
    3. Asymmetric routing
  3. Describe IP operations
    1. ICMP Unreachable and Redirects
    2. IPv4 and IPv6 fragmentation
    3. TTL
  4. Explain TCP operations
    1. IPv4 and IPv6 (P) MTU
    2. MSS
    3. Latency
    4. Windowing
    5. Bandwidth-delay product
    6. Global synchronization
  5. Describe UDP operations
    1. Starvation
    2. Latency
  6. Recognize proposed changes to the network
    1. Changes to routing protocol parameters
    2. Migrate parts of the network to IPv6
    3. Routing protocol migration

Layer 2 Technologies 10%
  1. Configure and verify PPP
    1. Authentication (PAP, CHAP)
    2. PPPoE (client side only)
  2. Explain Frame Relay
    1. Operations
    2. Point-to-point
    3. Multipoint

Layer 3 Technologies 40%
  1. Identify, configure, and verify IPv4 addressing and subnetting
    1. Address types (Unicast, broadcast, multicast, and VLSM)
    2. ARP
    3. DHCP relay and server
    4. DHCP protocol operations
  2. Identify IPv6 addressing and subnetting
    1. Unicast
    2. EUI-64
    3. ND, RS / RA
    4. Autoconfig (SLAAC)
    5. DHCP relay and server
    6. DHCP protocol operations
  3. Configure and verify static routing
  4. Configure and verify default routing
  5. Evaluate routing protocol types
    1. Distance vector
    2. Link state
    3. Path vector
  6. Describe administrative distance
  7. Troubleshoot passive interfaces
  8. Configure and verify VRF lite
  9. Configure and verify filtering with any protocol
  10. Configure and verify redistribution between routing protocols or routing sources
  11. Configure and verify routing protocol
  12. Configure and verify policy-based routing
  13. Identify suboptimal routing
  14. Explain ROUTE maps
  15. Configure and verify loop prevention mechanisms
    1. Route tagging and filtering
    2. Split-horizon
    3. Route poisoning
  16. Configure and verify RIPv2
  17. Describe RIPng
  18. Describe EIGRP packet types
  19. Configure and verify EIGRP neighbor relationship and authentication
  20. Configure and verify EIGRP stubs
  21. Configure and verify EIGRP load balancing
    1. Equal cost
    2. Onequal cost
  22. Describe and optimize EIGRP metrics
  23. Configure and verify EIGRP for IPv6
  24. Describe OSPF packet types
  25. Configure and verify OSPF neighbor relationship
  26. Configure and verify network types, area types, and router types
    1. Point-to-point, multipoint, broadcast, nonbroadcast
    2. LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub
    3. Internal router, backbone router, ABR, ASBR
    4. Virtual link
  27. Configure and verify OSPF path preference
  28. Configure and verify OSPF operations
  29. Configure and verify OSPF for IPv6
  30. Describe, configure, and verify BGP peer relationships and authentication
    1. Peer group
    2. Active, passive
    3. States and timers
  31. Configure and verify eBGP (IPv4 and IPv6 address families)
    1. eBGP
    2. 4-byte AS number
    3. Private AS
  32. Explain BGP attributes and best-path selection

VPN Technologies 10%
  1. Configure and verify GRE
  2. Describe DMVPN (single hub)
  3. Describe Easy Virtual Networking (EVN)

Infrastructure Security 10%
  1. Describe IOS AAA using local database
  2. Describe device security using IOS AAA with TACACS + and RADIUS
    1. AAA with TACACS + and RADIUS
    2. Local privilege authorization fallback
  3. Configure and verify device access control
    1. Lines (VTY, AUX, console)
    2. Management plane protection
    3. Password encryption
  4. Configure and verify security features
    1. IPv4 access control lists (standard, extended, time-based)
    2. IPv6 traffic filter
    3. Unicast reverse path forwarding

Infrastructure Services 10%
  1. Configure and verify device management
    1. Console and VTY
    2. Telnet, HTTP, HTTPS, SSH, SCP
    3. (T) FTP
  2. Configure and verify SNMP
    1. v2
    2. v3
  3. Configure and verify logging
    1. Local logging, syslog, debugs, conditional debugs
    2. Timestamps
  4. Configure and verify Network Time Protocol (NTP)
    1. NTP master, client, version 3, version 4
    2. NTP authentication
  5. Configure and verify IPv4 and IPv6 DHCP
    1. DHCP client, IOS DHCP server, DHCP relay
    2. DHCP options (describe)
  6. Configure and verify IPv4 Network Address Translation (NAT)
    1. Static NAT, dynamic NAT, PAT
  7. Describe IPv6 NAT
    1. NAT64
    2. Nptv6
  8. Describe SLA architecture
  9. Configure and verify IP SLA
    1. ICMP
  10. Configure and verify tracking objects
    1. Tracking objects
    2. Tracking different entities (for example, interfaces, IPSLA results)
  11. Configure and verify Cisco NetFlow
    1. NetFlow v5, v9
    2. Local retrieval
    3. Export (configuration only)

The author does not know where the missing 10% was lost.

SWITCH
Layer 2 Technologies 65%
  1. Configure and verify switch administration
    1. SDM templates
    2. Managing MAC address table
    3. Troubleshoot Err-disable recovery
  2. Configure and verify Layer 2 protocols
    1. CDP, LLDP
    2. UDLD
  3. Configure and verify VLANs
    1. Access ports
    2. VLAN database
    3. Normal, extended VLAN, voice VLAN
  4. Configure and verify trunking
    1. VTPv1, VTPv2, VTPv3, VTP pruning
    2. dot1Q
    3. Native vlan
    4. Manual pruning
  5. Configure and verify EtherChannels
    1. LACP, PAgP, manual
    2. Layer 2, Layer 3
    3. Load balancing
    4. EtherChannel misconfiguration guard
  6. Configure and verify spanning tree
    1. PVST +, RPVST +, MST
    2. Switch priority port priority path cost STP timers
    3. Portfast, BPDUguard, BPDUfilter
    4. Loopguard and Rootguard
  7. Configure and verify other LAN switching technologies
    1. PAN, RSPAN
  8. Describe chassis virtualization and aggregation technologies
    1. Stackwise

Infrastructure Security 20%
  1. Configure and verify switch security features
    1. DHCP snooping
    2. IP Source Guard
    3. Dynamic ARP inspection
    4. Port security
    5. Private VLAN
    6. Storm control
  2. Describe device security using Cisco IOS AAA with TACACS + and RADIUS
    1. AAA with TACACS + and RADIUS
    2. Local privilege authorization fallback

Infrastructure Services 15%
  1. Configure and verify first-hop redundancy protocols
    1. HSRP
    2. VRRP
    3. GLBP


TSHOOT
Network Principles 5%
  1. Use Cisco IOS troubleshooting tools
    1. Debug, conditional debug
    2. Ping and trace route with extended options
  2. Apply troubleshooting methodologies
    1. Diagnose the root cause of networking issues
    2. Design and implement valid solutions
    3. Verify and monitor resolution

Layer 2 Technologies 40%
  1. Troubleshoot switch administration
    1. SDM templates
    2. Managing MAC address table
    3. Troubleshoot Err-disable recovery
  2. Troubleshoot Layer 2 protocols
    1. CDP, LLDP
    2. UDLD
  3. Troubleshoot VLANs
    1. Access ports
    2. VLAN database
    3. Normal, extended VLAN, voice VLAN
  4. Troubleshoot trunking
    1. VTPv1, VTPv2, VTPv3, VTP pruning
    2. dot1Q
    3. Native vlan
    4. Manual pruning
  5. Troubleshoot EtherChannels
    1. LACP, PAgP, manual
    2. Layer 2, Layer 3
    3. Load balancing
    4. EtherChannel misconfiguration guard
  6. Troubleshoot spanning tree
    1. PVST +, RPVST +, MST
    2. Switch priority port priority path cost STP timers
    3. Portfast, BPDUguard, BPDUfilter
    4. Loopguard, Rootguard
  7. Troubleshoot other LAN switching technologies
    1. SPAN, RSPAN
  8. Troubleshoot chassis virtualization and aggregation technologies
    1. Stackwise

Layer 3 Technologies 40%
  1. Troubleshoot IPv4 addressing and subnetting
    1. Address types (Unicast, broadcast, multicast, and VLSM)
    2. ARP
    3. DHCP relay and server
    4. DHCP protocol operations
  2. Troubleshoot IPv6 addressing and subnetting
    1. Unicast
    2. EUI-64
    3. ND, RS / RA
    4. Autoconfig (SLAAC)
    5. DHCP relay and server
    6. DHCP protocol operations
  3. Troubleshoot static routing
  4. Troubleshoot default routing
  5. Troubleshoot administrative distance
  6. Troubleshoot passive interfaces
  7. Troubleshoot VRF lite
  8. Troubleshoot filtering with any protocol
  9. Troubleshoot between any routing protocols or routing sources
  10. Troubleshoot manual routing protocol
  11. Troubleshoot policy-based routing
  12. Troubleshoot suboptimal routing
  13. Troubleshoot loop prevention mechanisms
    1. Route tagging filtering
    2. Split-horizon
    3. Route poisoning
  14. Troubleshoot RIPv2
  15. Troubleshoot EIGRP neighbor relationship
  16. Troubleshoot loop free path selection
    1. RD, FD, FC, successor, feasible successor
  17. Troubleshoot EIGPR operations
    1. Stuck in active
  18. Troubleshoot EIGRP stubs
  19. Troubleshoot EIGRP load balancing
    1. Equal cost
    2. Onequal cost
  20. Troubleshoot EIGRP metrics
  21. Troubleshoot EIGRP for IPv6
  22. Troubleshoot OSPF neighbor relationship and authentication
  23. Troubleshoot network types, area types, and router types
    1. Point-to-point, multipoint, broadcast, nonbroadcast
    2. LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub
    3. Internal router, backbone router, ABR, ASBR
    4. Virtual link
  24. Troubleshoot OSPF path preference
  25. Troubleshoot OSPF operations
  26. Troubleshoot OSPF for IPv6
  27. Troubleshoot BGP peer relationships and authentication
    1. Peer group
    2. Active, passive
    3. States and timers
  28. Troubleshoot eBGP
    1. eBGP
    2. 4-byte AS number
    3. Private AS

VPN Technologies 5%
  1. Troubleshoot GRE

Infrastructure Security 5%
  1. Troubleshoot IOS AAA using local database
  2. Troubleshoot device access control
    1. Lines (VTY, AUX, console)
    2. Management plane protection
    3. Password encryption
  3. Troubleshoot router security features
    1. IPv4 access control lists (standard, extended, time-based)
    2. IPv6 traffic filter
    3. Unicast reverse path forwarding

Infrastructure Services 5%
  1. Troubleshoot device management
    1. Console and VTY
    2. Telnet, HTTP, HTTPS, SSH, SCP
    3. (T) FTP
  2. Troubleshoot SNMP
    1. v2
    2. v3
  3. Troubleshoot logging
    1. Local logging, syslog, debugs, conditional debugs
    2. Timestamps
  4. Troubleshoot Network Time Protocol (NTP)
    1. NTP master, client, version 3, version 4
    2. NTP authentication
  5. Troubleshoot IPv4 and IPv6 DHCP
    1. DHCP client, IOS DHCP server, DHCP relay
    2. DHCP options (describe)
  6. Troubleshoot IPv4 Network Address Translation (NAT)
    1. Static NAT, Dynamic NAT, PAT
  7. Troubleshoot SLA architecture
  8. Troubleshoot tracking objects


Features ROUTE v2.0 :

Features SWITCH v2.0 :

Features TSHOOT v2.0 :

There are not so many changes. As for me, it is very unfortunate that they did not get rid of Frame Relay.
Still, I personally plan to hurry and hand over the old SWITCH and TSHOOT.

Good luck to all!
PS The GNS3 1.0 beta version was recently released with support for switching to IOU, so now it's much easier to prepare for these exams if there are no labs with real equipment. If there is such a need, then I can write a post, how to tie the IOU to the new GNS3.

')

Source: https://habr.com/ru/post/231547/

More articles:


All Articles