Tecccie 3000

CCIE Routing and Switching techtorial
TECCCIE-3000
Kurt Claes CCIE R&S Exam Support Engineer #9483
Himawan Nugroho Solution Architect #8171
Bruno van de Werve CCIE R&S Exam Program Manager #20066
2014 Cisco and/or its affiliates. All rights reserved. TECCCIE-3000 Cisco Public
TECCCIE-3000 Session Abstract
This session covers CCIE Routing & Switching Program updates, and provides
you an in-depth overview of what is covered in both the written and the lab exams.
This includes examples and lab exam case studies focusing on topics candidates
frequently miss out during their lab attempt.
The main objective of this session is to give you an overview of how the exams
are conducted and to provide you good guidance on what you need to look at
when preparing and taking the exams.
The session is mainly focusing on exam centric approaches and strategies and is
not aimed at covering all technical topics susceptible to appear in the exams.
Know what you dont know
Disclaimer
Not all topics discussed today appear on every exam
For time reasons, were unable to discuss every feature and topic possible on
the exam
Agenda
Overall CCIE Program
New CCIE R&Sv5 Curriculum
New CCIE R&Sv5 Exam Format
Written Exam Sample Questions
Lab Exam Case Studies
Preparation Materials
Exam Tips & Tricks
Questions & Answers
6
Cisco Certifications
learningnetwork.cisco.com
7
CCIEs Worldwide
Most highly respected IT certification since 20+ years!

Industry standard validating and endorsing expert-level skills and experience

Demonstrate strong commitment and investment to networking career, life-long
learning, and dedication to remaining an active CCIE
8
CCIE and CCDE Tracks
Security

Expert level knowledge of security
and VPN solutions

Demonstrate in-depth
understanding of Layer 2 and 3
network infrastructure; Solid
understanding of Windows, Unix,
Linux and HTTP, SMTP, FTP and
DNS
Service Provider
Expert level knowledge of IP
fundamentals and technologies
Expertise in building an extensible
service provider network

Expert level knowledge to
troubleshoot and maintain complex
service provider networks

Data Center

Expert level knowledge of Data
Center Technologies, including DC
infrastructure, storage, compute and
virtualization

Capable of building, configuring,
and troubleshooting an end-to-end
virtualized Data Center using Cisco
DC technologies
Wireless
Expert level knowledge of WLAN
technologies

Provides next step for individuals
interested in a career in managing or
working with Cisco wireless
technologies

Design

Expert level knowledge of
network design principles for the
Layer 2 and 3 network
infrastructure

Capable of assessing and
translating network business
requirements into technical
designs
Routing & Switching

Expert level knowledge of
networking across LAN and WAN
interfaces and variety of routers and
switches
Solve complex connectivity
problems to increase bandwidth,
improve response times, maximize
performance, and support global
operations
Voice

Expert level knowledge of Cisco
Voice over IP (VoIP) products and
solutions

Capable of building and configuring
complex end-to-end telephony
network, troubleshooting and
resolving VoIP-related problems
SP Operations
Expert level knowledge of SP IP
NGN technologies

Capable of troubleshooting SP
networks, managing SP processes
(incident, fault, change,
configuration, and performance),
and knowledge of NMS technology
9
Certification Process
Written Exam
400-YXZ
Practical
Exam
CCIE
pass
pass
Pearson
2 hours
Multiple choices
Flash items
No documentation
Immediately scored
Select Cisco locations
8 hours
Configurations
Troubleshooting
Cisco documentation
Scored within 48h

10
Proactive and Holistic Candidate Feedback
Exam Live
Create or
Refresh Exam
Content
Cisco Business Units
Cisco Technology groups
Cisco Technical Support teams
(TAC, AS, ..)
Cisco-Internal and Cisco-External
Subject Matter Experts
Customer Advisory Boards
Customer Focus Groups
Customer and Cisco field surveys
(Marketing)
Cisco Product Manager, Marketing
Manager, Program Manager
Input
Candidate Exam and Item
Comments
Candidate Satisfaction Surveys
Customer Service Cases
EAG (Exam Advisory Groups)
Cisco Learning Network
Blogs
Feedback
Exams
Launch
Exam
11
Performance Assessment
12
VALIDITY
RELIABILITY
FAIRNESS
CONGRUENCY
RELEVANCY
Use of the test scores
Definition of MQC
Agenda
Exam Tips & Tricks
Questions & Answers
13
CCIE R&Sv5 Curriculum Overview
Certification process unchanged

Exam curriculum and format changed

Designed and validated with industry experts (Cisco internals and externals)

Aligned with evolution of job role and relevant technologies

14
Check the official information on CLN
https://learningnetwork.cisco.com/community/certifications/ccie_routing_switching

Enhanced Certifications validity, reliability, integrity and security

Assessment of platform-independent concepts

Cisco IOS Software Release 15

100% Virtual equipment

More relevant network topologies

Improved assessment of Troubleshooting skills (new Diagnostic)

More variations of content combinations (three modules)
6 main domains in Written exam & 5 main domains in Lab exam

New weighting factors

4 levels of details

Two documents: Written exam Topics (blueprint) + Lab exam Topics
https://learningnetwork.cisco.com/community/certifications/ccie_routing_switching

https://learningnetwork.cisco.com/docs/DOC-22705

16
CCIE RSv4
CCIE RSv5 % WR % LAB
1.00 Implement Layer 2 Technologies
1.0.0 Network Principles 10 0
2.00 Implement IPv4
2.0.0 Layer 2 Technologies 15 20
3.00 Implement IPv6
3.0.0 Layer 3 Technologies 40 40
4.00 Implement MPLS Layer 3 VPNs
4.0.0 VPN Technologies 15 20
5.00 Implement IP Multicast
5.0.0 Infrastructure Security 5 5
6.00 Implement Network Security
6.0.0 Infrastructure Services 15 15
7.00 Implement Network Services
6
8.00 Implement Quality of Service
6
9.00 Troubleshoot a Network
6
10.00 Optimize the Network
6
11.00 Evaluate proposed changes to a Network (Written only)
CCIE R&Sv5 Lab Curriculum Alignment
Blueprint sections = Exam sections = Score report sections
CCIE RSv5 Lab Topics domains Weight
1.0.0 Layer 2 Technologies 20
2.0.0 Layer 3 Technologies 40
3.0.0 VPN Technologies 20
4.0.0 Infrastructure Security 5
5.0.0 Infrastructure Services 15
CCIE RSv5 Score report sections
1.0.0 Layer 2 Technologies 85%
2.0.0 Layer 3 Technologies 45%
3.0.0 VPN Technologies 15%
4.0.0 Infrastructure Security 0%
5.0.0 Infrastructure Services 20%
Candidate: John Smith
Exam date: 02/30/2015
CCIE RSv5 Lab Exam sections
1.0.0 Layer 2 Technologies
3.0.0 VPN Technologies
4.0.0 Infrastructure Security
5.0.0 Infrastructure Services
Or
Passed! Your CCIE# is 1025
Failed
CCIE R&Sv5 Curriculums Details
CCIE RSv5
1.0.0 Network Principles (Written only)
4.0.0 VPN Technologies
5.0.0 Infrastructure Security
6.0.0 Infrastructure Services
CCIE R&Sv5 Key Topic Changes
Topics Written only Written & Lab

IOS-XE, VSS, ISIS, L2VPN,
GETVPN

Packet capture analysis,
DMVPN, IPsec, IPv6 FHS
Moved
from v4 Lab to v5 Written

PfR, L2QoS, IPv6 Multicast,
802.1x

Frame-Relay, FRTS, LFI, WRR/SRR, ZBF, IPS, RSVP,
WCCP

New
CCIE R&Sv5 New Topics on Written exam
Network Principles
Network Theory
Describe basic software architecture differences between IOS and IOS XE
Identify Cisco Express Forwarding concepts
Explain general network challenges
Explain IP, TCP, UDP operations

21
Layer 2 Technologies
LAN Switching technologies
Describe Chassis Virtualization and Aggregation Technologies

Layer 2 Multicast
Explain PIM Snooping

Layer 2 WAN Circuit technologies
Describe WAN rate-based ethernet circuits
22
BGP
Describe BGP fast convergence features

ISIS
Describe basic ISIS network
Describe neighbor relationship
Describe network types, levels and router types
Describe operations
Describe optimization features
23
VPN Technologies
Tunneling
Describe basic layer 2 VPN wireline
L2TPv3, ATOM General principals

Describe basic layer 2 VPN LAN services
VPLS, OTV General principals

Encryption
Describe GETVPN

Infrastructure Services
Network Services
Describe IPv6 Network Address Translation
24
CCIE R&Sv5 New Topics on Written & Lab exams
Network Troubleshooting
Use IOS troubleshooting tools
Apply troubleshooting methodologies
Interpret packet capture
25
Applicable to all lab domains
Fundamental routing concepts
Implement and Troubleshoot Bidirectional Forwarding Detection

EIGRP
Implement EIGRP (multi-address) Named Mode
Implement, troubleshoot and optimize EIGRP convergence and scalability

OSPF
Implement, troubleshoot and optimize OSPF convergence and scalability

26
VPN Technologies
Tunneling
Implement and Troubleshoot DMVPN (single hub)

Encryption
Implement and Troubleshoot IPsec with pre-shared key

27
CCIE R&Sv5 Topics moved from v4 Lab to v5
Written
Describe IPv6 Multicast
Describe RIPv6 (RIPng)
Describe IPv6 Tunneling Techniques
Describe Device Security using IOS AAA with TACACS+ and RADIUS
Describe 802.1x
Describe Layer 2 QoS
Identify Performance Routing (PfR)

28
CCIE R&Sv5 Topics removed from v4 Exams
Flexlink, ISL, Layer 2 Protocol Tunneling
Frame-Relay (LFI, FR Traffic Shaping)
WCCP
IOS Firewall and IPS
RITE, RMON
RGMP
RSVP QoS, WRR/SRR

29
Agenda
Exam Tips & Tricks
Questions & Answers
30
CCIE R&Sv5 Written exam
New Number: 400-101
120 minutes, 90 110 independent items
MC-SA/MA; DnD; Point & Click
English only
Pearson VUE
Closed-book
Score directly available
31
CCIE R&Sv5 Lab exam
480 minutes, multiple exam modules
Configure, Troubleshoot scenarios to given specifications
English only
Cisco Lab locations
Open-book (Cisco Documentation)
Score available within 48h

32
CCIE R&Sv5 Lab Exam Format
100% virtual
New DIAG module
Flexible time in TS
New Scoring Logic

Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
No Device Virtual devices
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 Delivery System

Identical to CCIE RSv4s
Separate TS and CFG topologies
Check the WISP labs in the WoS!
Try CLL online via CLN Store
Stay tuned for the additional demo content
34
Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 Virtual Lab

CFG is now virtual, like TS
DIAG do not use any device
Virtual router: IOL (IOS on Linux) & virtual switch: L2IOL (Layer 2 IOL)
Option to reload initial configuration if needed, very fast reload
Ethernet and Serial interfaces only, Layer 1 simulation available
35
Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 New Diagnostic module

Assessing new skills
Analyzing, correlating and discerning multiple sources of documentation
Support ticket scenario
Fixed 30 minutes, 100% Web-based, no device needed
Deterministic grading, no partial grading.
Item format similar to multiple choices item
36
Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 Flexible TS time

Optional time extension of 30 min in TS
TS designed for 2h
Any extra time used, up to 30 min is reduced from CFG time credit
37
Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 Scoring Logic

Module-level minimum score
Lab-level cut-score

if {[mod: (mod_Score mod_minScore)] && (mod_Score) Lab_CutScore};
then PASS
38
Troubleshooting
(2h)
Configuration
(5h30)
Virtual devices
DIAG
(30min)
Web-based delivery
Optional
+ 30min
Optional
- 30min
minScore
minScore minScore
Cut Score
CCIE R&Sv5 Lab Skills Assessment
39
Skills tested:
Resolve networking problems
Use IOS Troubleshooting
tools
Apply Troubleshooting
methodologies
Troubleshoot Network
technologies (any topic on the
blueprint)
Implement and verify working
solution of networking issues
Skills tested:
Perceive problem areas
Analyze symptoms of networking
issues, identify and describe root
cause
Correlate information from
multiple sources
Discern appropriate solution
Apply Troubleshooting
Methodologies
Troubleshoot Network
blueprint)

Skills tested:
Abstract functional element of
complex network environment
Understand how infrastructure
components interoperate
Implement Network
blueprint)
Design appropriate solutions to
network infrastructures
challenges within constraints
and verify functionality
TS DIAG CFG
CCIE R&Sv5 Lab Modules Design
40
Ticket format:
All tickets visible at start

Score visible, no partial grading

No devices

Multiple scenarios

Independent tickets

Analyze & correlate info and
make a choice between options
Item format:
All items visible at start


Virtual devices

Single topology/scenario

Inter-dependent items

Implement, configure and verify
working scenario
Incident format:
All incidents visible at start


Virtual devices


Independent incidents

Troubleshoot, configure and
verify solution

Per-incident constraints
TS DIAG CFG
41
Ticket format:


No devices

Multiple scenarios

Independent tickets

Item format:
All items visible at start


Virtual devices



working scenario
Incident format:


Virtual devices



verify solution

TS DIAG CFG
CCIE R&Sv5 Troubleshooting modules Format
Network topology of ~30 virtual routers and switches
Scenario is fully preconfigured but contains faults
2h30 maximum (visible countdown timer + 30 min warning after 2h)
Content designed to be doable within 2h
Incidents stem are symptom-based
Verifications are result-based + constraints
No partial scoring

42
Main IGP topology diagram (high res)
Two+ enterprises with remote sites
Three+ Service Providers
Host/Server simulated by IOS
Preconfigured scenario
Multiple faults injected

Console access via
Main diagram
Device manager (menu)
43
Layer 2 diagrams
Any region/AS with switches
Mixing L2 and L3 links
44
BGP diagram
Only the BGP speakers
iBGP, eBGP, MP-BGP
Default originate
45
MPLS VPN diagram
Only the VPN sites and backbone
VRF RD, RT, Interfaces
PE-CE RP

46
Mostly independent incidents
Mini-Diagram

Incident#1 Incident#2
47
CCIE R&Sv5 Troubleshooting Incidents Format
Incident#1
Hosts that are connected to the interface E1/0 of R19
are not able to use Telnet to connect to the server R50,
which is located in VLAN_100.
Fix the problem so that the following Telnet session establishes:
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
User Access Verification
Password:
R50>
While resolving this issue, you are not allowed to create any new interface.
Refer to the Troubleshooting guidelines to determine if your solution is appropriate.
Make sure that you disconnect the telnet session after verification.
48
Incident#1
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
Password:
R50>
49
Mini Diagram
Incident#1
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
Password:
R50>
50
Symptoms
Incident#1
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
Password:
R50>
51
Validation test
Incident#1
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
Password:
R50>
52
Additional guidelines and constraints
53
Ticket format:


No devices

Multiple scenarios

Independent tickets

Item format:


Virtual devices



working scenario
Incident format:


Virtual devices



verify solution

TS DIAG CFG
Independent scenarios putting candidate into the role of a Network Support
engineer who diagnoses networking issues
Analyze, identify, locate and explain the root cause
Recommend optimal troubleshooting procedures leading to the root cause
Recommend network changes isolating the issue without causing more harm
Etc

Analyzing, correlating and discerning multiple sources of documentation
Email threads
Network topology diagrams
Console sessions log
Syslogs, Monitoring charts,
Network traffic captures

54
Format similar to written exam items (MC-MA) with huge exhibits
Deterministic grading
No living devices
MC-SA (Radio buttons) and MC-MA (Checkboxes)
Drop-down(s)
Drag and Drop
Point and Click / Hotspot
55
Designed to be doable within 30 minutes
Tickets stem are very generic
Scenarios provided by additional documentation
Verifications are deterministic
Partial scoring possible per ticket
56
CCIE R&Sv5 Format of New Diagnostic module
Multiple Choice Single Answer
57
Multiple Choice Multiple Answers
58
Dropdown(s)
59
Drag and Drop
60
Documentation
61
Enables candidate to focus on content
(not on navigation!)

Left menu always visible
Easy backn forth between multiple doc sources

Updating dynamically
(depending on cursor location)

Development still ongoing
More features coming in soon!

62
Input validation

63
64
Ticket format:


No devices

Multiple scenarios

Independent tickets

Item format:


Virtual devices



working scenario
Incident format:


Virtual devices



verify solution

TS DIAG CFG
CCIE R&Sv5 Configuration modules Format
Network topology with virtual routers and switches
Scenario is partly preconfigured and items are inter-dependent!
Item#10 may require Item#1 to be completed! And Vice versa!!
Sequence of items is not aligned to the implementation sequence!!
May include implicit troubleshooting
5h30 maximum (no visible countdown timer, refer to proctors clock)
Items stem are based on requirements and constraints
Verification rules check for functionalities, not specific configurations
Validate alternate solution configurations
No partial scoring
65
Main IGP topology diagram
One enterprise/corporation
Multiple remote sites
Multiple Service Providers
Host/Server simulated by IOS

Console access via
Per-device terminal (PuTTY)
Main diagram URL (image-map)
Device manager (listing)

66
Layer 2 diagram
Any region/AS with switches
Mixing L2 and L3 links and switches

67
BGP diagram
iBGP
eBGP
VPNv4 BGP

68
VPN diagram
MPLS VPN
VRF details
DMVPN

69
Agenda
Exam Tips & Tricks
Questions & Answers
70
CCIE R&Sv5 Written Exam Guidelines
If MC-SA: select only one option.
If MC-MA: select as many options as directed in the stem, ex. Choose two.
If DnD: select as many options as there are targets.
If there is an exhibit, use the information provided by the exhibit.

71
CCIE R&Sv5 Written Exam Sample MC-SA Item
Multiple-choice Single-Answer

Which statement is true about IS-IS?
a) IS-IS provides direct support for NBMA networks.
b) IS-IS has a virtual-link concept similar to OSPF.
c) IS-IS packets are directly encapsulated in the data-link layer.
d) IS-IS is a hybrid between distance-vector protocol and link-state protocol.
72
CCIE R&Sv5 Written Exam Sample MC-MA Item
Multiple-choice Multiple-Answer

Which two of these statements about CBWFQ are correct? (Choose two)
a) The CBWFQ scheduler provides a guaranteed minimum amount of bandwidth to each
class.
b) CBWFQ services each class queue using a strict priority scheduler.
c) The class-default queue only supports WFQ.
d) Inside a class queue, processing is always FIFO, except for the class-default queue.
e) Each CBWFQ traffic class is policed using a congestion-aware policer.

73
CCIE R&Sv5 Written Exam Sample Item exhibit
MC-SA/MA with Exhibit

Refer to the exhibit. R6 (in standard Area 1) is redistributing routes learned from
BGP into the OSPF process. Which three OSPF LSA types will R3 advertise into
the Area 0? (Choose three)

74
BGP routes
R6 R7
R5
R4
R3
R2
R1
OSPF Area 1
OSPF Area 0
CCIE R&Sv5 Written Exam Sample Item

Refer to the exhibit. R6 (in standard Area 1) is redistributing routes learned from
BGP into the OSPF process. Which three OSPF LSA types will R3 advertise into
Area 0? (Choose three)
a) Type 1 - Router LSAs
b) Type 2 - Network LSAs
c) Type 3 - Network summary LSAs
d) Type 4 - ASBR Summary LSAs
e) Type 5 - AS external LSAs
f) Type 7 - NSSA external LSAs

75
CCIE R&Sv5 Written Exam Sample DnD Item
Drag and Drop

76
Agenda
Exam Tips & Tricks
Questions & Answers
77
Agenda
Guidelines & Strategy
TS
DIAG
CFG
78
CCIE R&Sv5 Lab Exam Guidelines
Read all questions when starting any module
Confirm equipment & interface are in working order (manage devices menu)
Locate all resources (questions, diagrams, calculator, etc)
Manage your own time, watch the countdown timer
Do not change devices:
hostname
password
console configuration
pre-configured IP addressing scheme

79
Applicable to all three modules
Agenda: Lab Exam Case Studies
1. TS
Guidelines
Strategy
Incident#1
Incident#2
Incident#3
Incident#4
Incident#5
3. CFG
Guidelines
Strategy
LAN Switching
IGP Routing
BGP Routing
VPN Technologies
Infrastructure Security
80
2. DIAG
Guidelines
Strategy
Ticket#1
Ticket#2
Ticket#3

Agenda: Lab Exam TS Case Studies
1. TS
Guidelines
Strategy
Incident#1
Incident#2
Incident#3
Incident#4
Incident#5
2. DIAG
3. CFG
81
Incident format:


Virtual devices



verify solution

CCIE R&Sv5 Lab TS Exam Guidelines
Read the whole question stem before starting to troubleshoot!
(symptoms, validation test, constraints)
Do a Root Cause Analysis before doing any configuration change
Revert to initial configuration if in doubt (manage devices menu)
Do not remove any feature preconfigured!
ACL, PBR, NAT, CoPP, MQC,
Do not change routing protocol(s) boundaries, unless it is the issue!
Do not use static routes to resolve an issue, unless it is the issue!
Use the validation test to confirm resolution (necessary but not sufficient!)
Do backward verifications using the validation test of each incident
82
Specific to Troubleshooting module
Troubleshooting Approach/Strategy
Questioning to the void ( 5x Whys)
Ask Why is that until I dont know or I dont care
Confirm validity of each answer and if it provides relevant additional info
Isolate the problem description to as few devices, interfaces, features as possible!
Focus on the highlighted region of the main topology
Dont expect best practices configs/scenario!
Go for the simplest solution!
Verify resolution vs constraints!
Manage your time! Dont get stuck!
83
Understand the symptoms and their scope
Analyze the scenario without doing any changes yet
Mentally define the problem with specific and precise networking terms
Isolate the issue to a minimum number of devices that may be implicated
Mentally formulate possible causes and assign likelihood
Test each hypothesis methodically
Keep track of all config changes and revert to initial configs if needed

84
85
Define the problem
Identify symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
TS Case Studies: Diagrams
The main diagram has a clickable map on most device icons

86
TS Case Studies: Diagrams

Additional Diagrams are available under the main menu

Layer 2 Connections
IGP Topology
BGP Topology
VPN Topology

87
TS Case Studies: Layer 2 Connections
88
TS Case Studies: IGP Topology
89
TS Case Studies: BGP Topology
90
TS Case Studies: MPLS VPN Topology
91
TS Case Studies: DMVPN Topology
92
TS Case Studies: Questions (Incidents)

Incidents are available under the main menu
One incident at a time
All incidents sequentially in one popup

Incidents stem are opened in a separate popup window

93
TS Case Study: Incident#1
R19#telnet 200.100.200.200 /so e1/0
Trying 200.100.200.200 ... Open
Password:
R50>
94
Zoom on Logical Diagram
95
Layer 2 Diagram
96
97
START TS#1
TS Case Study: Incident#1 Debriefing
Symptoms
Scenario
Possible cause(s)
Hypothesis
Constraints
Possible solution(s)
Verifications

98
Define the
problem
Identify
symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze
hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
The BigIndustry headquarters have lost connectivity to servers that are located in their warehouse and
that are connected to the interface E2/0 of R28.
Fix the problem so that the connectivity is restored, as follows:
R25#telnet 172.16.28.1
Trying 172.16.28.1 ... Open
Password:
R28>

99
100
Layer 2 Diagram
101
MPLS VPN Diagram

102
103
START TS#2
Symptoms
Scenario
Possible cause(s)
Hypothesis
Constraints
Verifications

104
Define the
problem
Identify
symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze
hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
R19 has lost access to a server that is located on the Internet and that is reachable at the IP address
4.2.2.2.
Fix the problem so that the connectivity is restored, as follows:
R19#ping 4.2.2.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 4.2.2.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 68/152/280 ms
R19#

105
106
Layer 2 Diagram
107
108
START TS#3
Symptoms
Scenario
Possible cause(s)
Hypothesis
Constraints
Verifications

109
Define the
problem
Identify
symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze
hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
The network administrator of the Call Center company is having difficulty establishing the BGP peering
between R20 and R2.
Fix the problem so that the BGP peering is established, as follows:
R20#sh ip bgp sum
BGP router identifier 200.20.20.20, local AS number 65200
BGP table version is 59, main routing table version 59
58 network entries using 8584 bytes of memory
58 path entries using 3712 bytes of memory
2/2 BGP path/bestpath attribute entries using 272 bytes of memory
2 BGP AS-PATH entries using 48 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP using 12616 total bytes of memory
BGP activity 58/0 prefixes, 58/0 paths, scan interval 60 secs
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
123.45.67.17 4 12345 714 703 59 0 0 10:39:05 58
R20#
110
111
BGP Diagram
112
113
START TS#4
Symptoms
Scenario
Possible cause(s)
Hypothesis
Constraints
Verifications

114
Define the
problem
Identify
symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze
hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
Users who are connected to R23 on the Call Center Site#3 are not able to use the services provided by
the server R52, which is located in the Call Center Site#2 on VLAN 21.
Fix the problem or problems, so that the following sequence of commands
produces the same relevant output:
R53#ping 200.100.21.100
Sending 5, 100-byte ICMP Echos to 200.100.21.100, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 176/196/240 ms
R53#trace 200.100.21.100
Tracing the route to 200.100.21.100
VRF info: (vrf in name/id, vrf out name/id)
1 200.100.0.25 896 msec 20 msec 28 msec
2 200.100.0.5 20 msec 24 msec 16 msec
3 200.100.17.21 440 msec 164 msec 288 msec
4 200.100.20.254 208 msec 152 msec 120 msec
5 200.100.21.100 544 msec 288 msec *
R53#
115
TS Case Study:
Incident#5
116
VPN Diagram
117
118
START TS#5
Symptoms
Scenario
Possible cause(s)
Hypothesis
Constraints
Verifications

119
Define the
problem
Identify
symptoms
Form hypothesis
about possible
causes
Proof-test and
analyze
hypothesis
Design and
Implement final
solution
Verify resolution
within guidelines
Agenda: Lab Exam DIAG Case Studies
TS
DIAG
Guidelines
Strategy
Ticket#1
Ticket#2
Ticket#3
CFG
120
Ticket format:


No devices

Multiple scenarios

Independent tickets

CCIE R&Sv5 Lab DIAG Exam Guidelines
Read the whole ticket stem and options before diving into the additional
resources (email thread, console session, topology diagram, syslogs, )
Play the role of a network support engineer and understand the situation,
analyze the documentation, correlate information and discern between relevant
vs non-relevant data point, make a choice between the options.
Select as many options as requested.
No partial scoring on ticket level.
Submit your answers! (Click the submit button!)

121
Specific to Diagnostic module
Diagnostic Approach/Strategy
Carefully read the stem and all options then go through all resources provided.
Mentally picture the situation and understand the problem asked.
Identify any absurd option(s) and options pair(s)!
Test each plausible option(s) using the documentations!
Use your knowledge and experience but go for the simplest option(s) that is
confirmed by the documentation!
Take your time but watch the clock! (NB: Time is fixed to 30 minutes).

122
DIAG Case Study: Ticket#1
MC-MA Dropdowns

123
A new service request was escalated to you and the following information was
provided to help you understand, diagnose and help resolve the issue:
Email thread between the first-line support and the customer
Network topology
Router configurations

1. Identify which command on which device provides the most important information
about the root cause of this issue:

2. Considering all information provided, identify which solution option configured on
which device is the solution to this issue?
1. Identify which command on which device provides the most important information
about the root cause of this issue:
MC-MA Dropdowns

124
Two drop-downs
2. Considering all information provided, identify which solution option configured on which
device is the solution to this issue?

MC-MA Dropdowns

125
Two drop-downs
Network topology
MC-MA Dropdowns

126
Start DIAG#1
DIAG Case Study: Ticket#1 Debrief
Problem description

Root cause analysis

Solution

127
Syslogs
Network topology
Debugs

Considering all information provided, point and click on the location in the
topology that is causing the reported symptoms.

Point & Click (Hotspot)

128
Considering all information provided, point and click on the location in the
topology that is causing the reported symptoms.

129
Syslogs
Network topology
Debugs

130
Start DIAG#2
Problem description

Root cause analysis

Solution

131
One of your colleagues is working on a service request where the customer
complaints about traffic not being load-balanced and he needs some help to
figure out what is happening.
He provides you with the following information:
Network topology diagram
Summary of investigations
Console output

Explain to your colleague what is happening.
Drag and drop three options on the left in an ordered sequence on the right that
explains what is happening.
Drag and Drop

132
Drag and drop three options on the left in an ordered sequence on the right that
explains what is happening:
133
()
He provides you with the following information:
Network topology diagram
Summary of investigations
Console output

134
Start DIAG#3
Problem description

Root cause analysis

Solution

135
Agenda: Lab Exam CFG Case Studies
TS
DIAG
CFG
Guidelines
Strategy
Layer 2 Switching
IGP Routing
BGP Routing
VPN Technologies
136
Item format:


Virtual devices



working scenario
CCIE R&Sv5 Lab CFG Exam Guidelines
Read all items and understand the overall scenario.
The overall scenario targets full reachability between all sites, unless specified.
Points are awarded per item if the solution meets all requirements.
There are many valid solutions, grading is based on outcome.
Do not use static route and redistributions unless explicitly requested to.
Do not change IP addressing or routing protocols boundaries.
Do not add interfaces unless specified.
Plan for regression tests after completed substantial changes.

137
Specific to Configuration module
CFG Case Study: Overall Strategy
1. Read the whole scenario
2. Determine the item sequence for efficient configuration
3. Implement and configure all requirements
4. Test solutions and revert to default state
5. Verify all requirements
138
CFG Case Study: Strategy
1. Layer 2 section
2. Layer 3 section
3. VPN section
4. Security section
5. Services section
6. All Diagrams!

1. Read the whole scenario

139
Gauge item difficulty
Identify inter-dependency of items
Identify stub items
1. Configure LAN switching
2. Configure WAN switching
3. Configure IGP then BGP then VPN
4. Configure routing policies
5. Test routing policies and revert to default state
6. Configure Security
7. Configure Services
8. Test overall solution
9. Revert to default state
2. Determine the item sequence for efficient configuration

140
This is just an example
Do whatever works for you!
1. Work items as a unit!
2. Read the whole stem before jumping to configuration!
3. Figure out the stake of the item!
4. Understand all requirements Ask help to proctor as last resort
5. Design your solution on paper
6. Anticipate the expected effect of your solution
7. Evaluate inter-dependency with previous and next items
8. Apply the configuration and monitor the expected effect!
9. Move on if you are happy.
3. Implement and configure all requirements
141
Test solutions when completed a functional block. (Ex. IGP, BGP, VPN, )
Design test cases (which interface(s) to shut, show commands, etc)
Anticipate the expected effect
Run the test
Enable debugs
Validate the resulting effect
Revert to initial state!
4. Test solutions and revert to default state
142
Go back to each items, re-read the whole stem (again )
Verify if all requirements and constraints are full-filled.
Figure out the stake of each requirement, with all details of the scenario in mind
Most requirements are explicit!
Some requirements might be implicit, using functional outcome-based description!
Other requirements might be just distractors
Save all configurations
5. Verify all requirements
143
CFG Case Study: Layer 2 Connections
144
CFG Case Study: IGP Topology
145
CFG Case Study: BGP Topology
146
CFG Case Study: VPN Topology
147
CCIE R&Sv5 CFG Exam Sections
1. Layer 2 Technologies
2. Layer 3 Technologies
3. VPN Technologies
4. Infrastructure Security
5. Infrastructure Services
148
CFG Case Study: Layer 2 Technologies
Refer to Diagram 1: Layer 2 Connections.
Configure VLAN Trunking Protocol (VTP) in ACME Headquarters network as
per the following requirements:
Use VTP version 2.
The VTP domain name is CCIE (without quotes).
Secure the VTP advertisements with an MD5 hash of the string CCIE" (without
quotes).
SW1 must propagate all VLAN configuration changes to SW2, SW3, and SW4.
Verify that SW2, SW3 and SW4 accept all VLAN configuration changes done on SW1.
()

1.1 Trunk ports (part 1)
149
()
Configure the trunk ports in ACME Headquarters network as per the following
requirements:
Configure interfaces E2/0 to E2/3 of SW1 and SW2 as dot1Q trunks.
Configure interfaces E2/2 and E2/3 of SW3 and SW4 as dot1Q trunks.
All trunks must set the native VLAN to VLAN 999.
All VLANs must be allowed on all trunks.
1.1 Trunk ports (part 2)

150
4 points
Configure the ACME Headquarters network as per the following requirements:
Configure SW1 as the root switch for VLANs 501 and 502 and as the backup switch for
VLANs 503 and 504.
Configure SW2 as the root switch for VLANs 503 and 504 and as the backup switch for
VLANs 501 and 502.
Ensure that all four switches are running the IEEE 802.1w Spanning Tree.
Configure SW1 so that the port E2/1 is forwarding for VLAN 504 but blocking for VLAN
503.
()
1.2 Spanning-Tree (part 1)
151
()
Configure the ACME Main Regional Office network as per the following
requirements:
SW5 must be the root switch for the whole range of possible VLANs.
SW5 must have the best chance of being elected the root switch in case a new switch
was added to the network in the future.
SW5 must run the IEEE 802.1w Spanning Tree.
1.2 Spanning-Tree (part 2)
152
4 points
ACMEs network administrator wants to enhance the switch network reliability,
manageability and security.
Configure the ACME network as per the following requirements:
Complete the configuration of the access ports as per the mapping table documented
below the Diagram 1: Layer 2 Connections.
All access ports must immediately transition to the STP forwarding state upon link up.
Use a single command per switch to enable this feature on all access ports.
All access ports must not be able to influence the STP topology. Use a single
command per switch to enable this feature on all access ports.
If a switch is connected to any access port, the port must be disabled and a message
must appear on the console.
If a port was disabled, it must reenable itself automatically after 15 minutes.
1.3 Layer 2 Access Ports
153
4 points
Configure the ACME Remote Office network as per the following requirements:
The Internet Service Provider enforces unidirectional PPP CHAP authentication on the
serial link with R6.
The CHAP credentials expected by the provider are as follows:
Username: ACME_RemoteOffice
Password: CCIE

The provider will assign an IP address to the interface S2/0 of R6 when the link is
authenticated. Configure R6 to expect an IP address from the provider.
Configure a static default route on R6 pointing to 123.99.6.1 .
1.4 WAN Switching
154
2 points
1.1 Trunk Ports
Explicit config of VTPv2 with server/client, domain and password.
Dot1Q trunks with native VLAN and no pruning
1.2 Spanning-tree
Rapid STP with priority settings for load-balancing and backup root
Per-VLAN STP port-cost tuning
1.3 Layer 2 Access Ports
Access port config with portfast default and BPDUguard default
Errdisable recovery and interval
1.4 WAN Switching
PPP CHAP and IPCP negotiation
Layer 2 Debrief
155
Layer 2 Verifications
156
Review Verifications for Layer 2
CFG Case Study: IGP Topology
157
Refer to Diagram 2: IGP Routing.
All four sites must run EIGRP for IPv4.
The autonomous system number is 11111.
EIGRP must be enabled on all interfaces of all six routers (R1 to R6), except on the
Serial interfaces that connect to the Internet Service Provider.
EIGRP must be enabled on all interfaces of all five Layer 3 switches (SW1, SW2, SW5,
SW6 and SW7).
All six routers must use the passive-interface default command.
R1 must not query R6 in case any prefix becomes active.
2.1 EIGRP
158
2 points
Refer to Diagram 2: IGP Routing.
Configure a static default route on R1 pointing to 123.99.1.1.
SW5 must install two equal-cost external default routes into its routing table.
SW6 must receive a default route from R5, no other EIGRP prefix must be propagated
to SW6.
SW7 must receive only an internal default route from R6, no other EIGRP prefix must
be propagated to SW7.
2.2 EIGRP
159
Part 1
()
R1 and R2 must propagate a default route into the EIGRP domain as an external
route.
R3 and R4 must receive the external default route from R1 and R2.
The headquarters must have reachability to all access VLANs of all remote sites
(VLAN 601, 602, 701 and 801) via either the DMVPN cloud or via the MPLS VPN.
2.2 EIGRP
160
4 points
Part 2
Refer to Diagram 2: IGP Routing and to the following subnet allocation table:

In order to minimize routing updates across the WAN, each site must advertise
summary routes as per the table above.
Summary routes must be propagated via both the MPLS VPN and the DMVPN.
()
2.3 EIGRP
161
4 points
Part 1
()
R1 must not propagate the Global SP#1 prefixes (12.0.0.0/8) via the Tunnel interface.
Ensure that ACMEs remote sites are never used as transit sites.
R6 must have the following routes when the DMVPN is operational:

2.3 EIGRP
162
4 points
Part 2
Configure the Global Service Provider network as per the following
requirements:
Enable OSPFv2 on all five routers.
The OSPF router-id must be set to the interface Loopback0 on all routers.
All routers must advertise their interface Loopback0 into OSPF as a host route.
No interface that faces an external routing domain may be advertised into OSPF.
2.4 OSPF
163
1 points
2.1 EIGRP (2pt)
Basic EIGRP config with passive default and stub routing
2.2 EIGRP (4pt)
Redistribute static default route
Default summary route on R5
Reachability to R6s access VLAN while R6 is EIGRP Stub!?
Default-originate on PE to propagate R1s default route to R3 and R4!
2.3 EIGRP (4pt)
Explicit summarization
Implicit filtering out of all dual-connected spokes!
2.4 OSPF (2pt)
Basic OSPF config
IGP Debrief
164
IGP Verifications
165
CFG Case Study: BGP Topology
166
Refer to Diagram 3: BGP Routing.
Establish an iBGP session between R1 and R2 using their respective interface Lo0.
Establish an iBGP session between R3 and R4 using their respective interface Lo0.
Establish four eBGP sessions between R1, R2, R3 & R4 and R99 as per the Diagram
3: BGP Routing using the IP address of their respective Serial link.
All four routers must receive multiple BGP prefixes from the Internet Service Provider.
Do not redistribute BGP into EIGRP (or vice versa) in any ACME router.
Do not alter the AS path in any router.
2.5 BGP
167
2 points
Refer to Diagram 3: BGP Routing.
Configure the Global Service Provider network as per the following
requirements:
All four PE routers must run one IPv4 and one VPNv4 BGP peering with R51 only.
All BGP sessions in AS 10001 must be established using interface Loopback0 of the
BGP peers.
Ensure that IPv4 address family routing information is not advertised by default for
each BGP routing session configured with the neighbor remote-as command.
R51 must maintain exactly two separate BGP update-groups.

2.6 BGP
168
3 points
Ensure that traffic originated in ACME Headquarters and destined to the Internet is
routed preferably via R1 and via R2 only in case R1 is down.
Ensure that traffic originated in ACME Regional Main Office and destined to the
Internet is routed preferably via R4 and via R3 only in case R4s S2/0 is down.
Ensure that R3 and R4 receive R2s default route via EIGRP only in case R1 is down.
R3, R4 and R5 must primarily use the Global SP to route any corporate or Internet
traffic. The DMVPN must only be used in case links to the Global SP are down.
Ensure that both the MPLS VPN and DMVPN clouds are up and running when leaving
the lab.
Do not modify the BGP weight in any device in order to achieve any of these
requirements.
Do not configure any IP SLA in order to achieve any of these requirements.
2.7 Routing Policies
169
4 points
2.5 BGP
Simple iBGP and eBGP, no redistribution
2.6 BGP
IPv4 & VPNv4 Route-reflector
2.7 Routing Policies
BGP local-pref
AD tuning on static default
Metric tuning
BGP Debrief
170
BGP Verifications
171
CFG Case Study: VPN Technologies
Deploy DMVPN phase 3 in the ACME network as per the following
requirements:
R1 must be the hub. R3, R4, R5 and R6 must be the spokes.
Configure the following parameters for the interface Tunnel0 of all five routers:
IP MTU is 1400, TCP adjust-MSS is 1360.
Authenticate NHRP using the key 11111.
Set the NHRP holdtime to 5 minutes.
Ensure that spoke-to-spoke tunnels are dynamically established when needed.
All three spokes must establish an EIGRP peering with the hub and via the interface
Tunnel0.
3.1 Tunneling
172
4 points
Refer to Diagram 4: VPN.
Complete the configuration of MPLS VPN in the Global SPs network as per the
following requirements:
R52, R53, R54 and R55 are the PE routers. R51 is a P router.
Enable LDP on all relevant interfaces in order to assign and distribute labels between P
and PE routers.
Use EIGRP as the PE-CE protocol between the ACME network and the Global SP.
Configure the VRF named ACME using the parameters listed in the legend of
Diagram 3: VPN.
Ensure that the customer prefixes are propagated from PE to PE.

3.2 Tunneling
173
4 points
Secure the DMVPN tunnel with IPsec according to the following requirements:
Configure IKE phase-I according to the following requirements:
Use AES encryption with the pre-shared key CCIE (without quotes).
The key must appear in plain text in the configuration.
All IPsec tunnels must be authenticated using the same IKE Phase I pre-shared key.
Use 1024 bits for the key exchange using Diffie-Hellman algorithm.
Configure a single policy with priority 10.

Configure IKE phase-II according to the following requirements:
Use CCIEXFORM as the transform-set name.
Use DMVPNPROFILE as the IPsec profile name.
Use IPsec in transport mode.
Use the IPsec security protocol ESP and the algorithm AES with 128-bit.

Ensure that the DMVPN cloud is secured using the above parameters.
Use tunnel protection in your configuration.
3.3 Encryption
174
3 points
3.1 DMVPN
Phase 3 with single-cloud/single-hub but with dynamic spoke-to-spoke
3.2 MPLS VPN
Single VRF with multiple sites, shared RD/RT
3.3 Encryption
Simple IPsec with very explicit requirements
Tunneling Debrief
175
VPN Verifications
176
Review Verifications for VPN
CFG Case Study: Infrastructure Security
Ensure that only the management station located at 192.168.111.100 is able to login
into R1 and R2 using SSH with the username NOC and password NOC.
Use acme.org as domain-name.
Ensure that no authentication is enabled on the console port.
4.1 Device Security
177
1 points
Ensure that both SW3 and SW4 forward traffic that was sent from expected and
legitimate hosts and servers.
SW3 must learn only one MAC address per port and must save it in its startup
configuration.
Ensure that access-ports are shutdown in case an illegitimate device is plugged in the
network.
4.2 Network Security
178
2 points
4.1 Device Security
Simple and explicit SSH config
4.2 Network Security
Basic but implicit port-security feature
Security Debrief
179
Security Verifications
180
Review Verifications for Security
CFG Case Study: Infrastructure Services
R1 must examine all traffic sent and received via both interfaces Ethernet0/0 and
Tunnel0.
R1 must collect a fingerprint of each packet and determine if it is unique or similar to
other packets.
The attributes that R1 must examine are:
IP source address
IP destination address
Source port
Destination port
Layer 3 protocol type
Class of Service
Router interface
5.1 System Management
181
2 points
Configure ACMEs Regional office network as per the following requirements:
R1 must assign IP addresses via DHCP to hosts in VLAN 501, 502, 503 and 504
according to the table below.
R1 must provide the default gateway according to the table above.
The host-1 (R61) must always receive the IP address 192.168.111.100/24 from R1.
The server-1 (R62) must always receive the IP address 192.168.113.200/24 from R1.
Make sure that the MAC address of host-1 and server-1s Eth0/0 is part of the DHCP
client-identifier.
Both SW1 and SW2 must forward the BOOTREQUEST to 10.1.1.1.
5.2 Network Services
182
3 points
R1 and R2 must enable all private corporate traffic to connect to the Internet via their
respective interface S2/0.
Both R1 and R2 must maintain a table of the active connections routed to the Internet.
Use a single standard Access-list per device to accomplish these requirements.
Ensure that the following traceroute from R5 reveals the same path:
5.3 Network Services
183
2 points
5.1 Netflow
Basic but implicit FNF configuration on Tunnel interface
5.2 DHCP
Explicit DHCP client, relay and server config with reservation based on MAC
5.3 NAT
Basic but implicit source NAT

Services Debrief
184
Services Verifications
185
Review Verifications for Services
Agenda
Exam Tips & Tricks
Questions & Answers
186
Know what you dont know
CCIE Exam Preparation, General
Expert-level knowledge requires ACTIVE LEARNING
Researching, Reading, Analyzing, Correlating, Practicing, Repeating
188
LEARN
READ
UNDERSTAND
REMEMBER
PRACTICE
BASIC
SCENARIO
INCREASE
DIFFICULTY
PRACTICE
EXPLORE
OBSERVE
INVENT
TROUBLESHOOT
VERIFY
ANTICIPATE
VALIDATE
CCIE R&Sv5 Preparation Materials
Cisco Learning Network (CLN)
Cisco Expert-level Training Program for CCIE RS
New Ciscopress titles
Cisco.com Products and Technology documentation
Cisco.com Whitepapers, Design Zone,
Cisco Forums (supportforums.cisco.com)
Cisco Tools
External Resources

189
Cisco Learning Network Official Resources
https://learningnetwork.cisco.com
Community forums
Topics (Blueprints)
Written exam
Lab exam
Equipment List
Study Group
Cisco Expert-level Training Program for CCIE RS
Revised Cisco 360 Learning Program for CCIE RS
The only Cisco-authorized learning program
Features Cisco IOS on Linux (IOL) and offers virtual rack rental
Support Cisco IOS Software Release 15 M and T
Updated content for v5.0 exam topics
Workbook with 10 full-scale (TS & CFG) labs
11 performance assessment labs (full-scale CCIE labs)
Offers grading report, detailed answer key, interactive mentor
191
New Ciscopress titles for CCIE RSv5
CCIE RSv5.0 Configuration Practice Labs
CCIE RSv5.0 Troubleshooting Practice Labs
CCIE RSv5.0 Configuration and Troubleshooting Practice Labs Bundle
CCIE RSv5.0 Official Cert Guide, Volume 1
CCIE RSv5.0 Official Cert Guide, Volume 2
CCIE RSv5.0 Official Cert Guide Library

CCIE page on Ciscopress.com
http://www.ciscopress.com/markets/detail.asp?st=44718

192
Cisco.com Products and Technology documentation
Cisco documentation
http://www.cisco.com/go/documentation
http://www.cisco.com/cisco/web/psa/default.html

IOS 15.3M&T Configuration Guides
http://www.cisco.com/en/US/products/ps12745/products_installation_and_configuration
_guides_list.html

193
Cisco.com Whitepapers, Design Zone,
White papers on (m)any technologies
http://tools.cisco.com/search/results/en/us/get#q=white+papers

Cisco Validated Design
http://www.cisco.com/go/cvd

Enterprise Design Zone
http://www.cisco.com/en/US/netsol/ns1063/networking_solutions_program_home.html

194
Cisco Forums and Wiki
Cisco Support Community
https://supportforums.cisco.com

CLN Study Group for CCIE RS
https://learningnetwork.cisco.com/groups/ccie-routing-and-switching-study-group

Doc Wiki
http://docwiki.cisco.com

195
Cisco Tools
Cisco Feature Navigator
www.cisco.com/go/fn
Command Lookup Tool
https://tools.cisco.com/Support/CLILookup/cltSearchAction.do
Error Message Decoder
https://www.cisco.com/cgi-bin/Support/Errordecoder/index.cgi
196
Cisco Tools
Output Interpreter
https://www.cisco.com/pcgi-bin/Support/OutputInterpreter/home.pl
Bug Search Tool
https://tools.cisco.com/bugsearch
Cisco Notification Service, Software Advisor
http://www.cisco.com/cisco/support/notifications.html
http://tools.cisco.com/Support/Fusion/FusionHome.do

197
External Resources
Standard documentation (IETFs RFC, ISO, )
WWW (Wikipedia, Blogs, )
Search engines (Google, Bing, )
Academic sources (Research papers, Thesis, )
Etc
198
Preparation Advises
Chose lovable project
Remove barriers to practice
Deconstruct the Topics
Self Assessment
Quality first, then Quantity
Become familiar with Cisco
documentation
Learn one topic at a time
Prepare Lab Equipment
Practice, Practice & Practice!
Practice for speed and
troubleshooting
199
Chose lovable project

I want to become a CCIE because

the answer is what will keep you going in difficult times

personal reason
200
Why do I want to become CCIE?
Remove Barriers in Learning
Do you have Internet access?
Do you have a login for Cisco Learning Network?
Do you have study materials?
Do you have access to practice lab?
Do you have place to study?
Did you allocate time in your schedule?
201
Deconstruct the Topics
LAN Switching
L2 Multicast
Routing Protocols (IGP, EGP)
Common features
VPN Technologies
DMVPN, MPLS VPN
Encryption

202
Turn the blueprint into a checklist?
Self Assessment
Assess and rate your current skills level in each topic

Ex.
Im a star
I'm very comfortable
I'm familiar but need more hands on
I'm less familiar but can find it in C-docs
I dont have any clue

Be honest!
Know what you don't know"
203
Quality first, then Quantity
Make time!
The first few hours are the most difficult
Study on daily basis
Be consistent and maintain the pace
Gradually add quantity and speed

And Remember Newtons First Law of motion
204
An object that is at rest will stay at rest unless an external
force acts upon it
I. Newton
205
Get Familiar with Cisco Documentation
Sort, don't search
Configuration guide and command reference
IOS release notes and new features
Technology QA, White-papers,
206
Learn one Topic at a time
Start with the core topics (switching, IGP, BGP, multicast, MPLS, DMVPN)

Start to study one hour a day, even with no lab yet
Slowly but surely

Try to set up the mood and to get into the "flow
Slowly increase pace

Focus on technology/topic labs before moving to full-lab scenario!
207
Prepare Lab Equipment
Emulator vs. real lab

Home lab vs. rental lab

Combination between emulator vs. real lab
208
Practice, Practice & Practice!
Better to be stuck in one full lab scenario than looking at the answer

Try to find the answer on your own!
Further research on the topic
Use debug and show commands
Try and test possible config solutions

Focus on Quality vs Quantity!

Always ask What if?"
209
Practice for speed and Troubleshooting
Target max 5h to resolve a practice lab
Learn and use IOS shortcuts
Use Notepad to copy/paste identical
Establish your methodology and strategy with speed in mind

Ask someone to introduce problems to a known lab
Focus on the troubleshooting methodology and speed will come naturally
Isolate the issue in OSI layer, protocol/feature, device(s), interface(s),
Work from destination when applicable
Keep asking What IS and What IS NOT working? & What if?
210
Final Preparation
Anticipate the D-day!

Review the Tips & Tricks

Mentally picture yourself as a CCIE!

And Remember the Universal Law of Attraction
211
We attract whatever we choose to give our attention to
-- whether wanted or unwanted.
Whether you think you can, or you think you can't -
you're right.
Henry Ford

Agenda
Exam Tips & Tricks
Questions & Answers
214
CCIE Lab exam Tips & Tricks
Before the exam
During the exam
After the exam
215
Prepare for the exam!
Build your own exam strategy!
Cherry pick per topic, per point value, both ?
Time management and per-item timer ?
Final validation method ?
Target total score ?
Familiarize yourself with the web delivery system and tools
WISP Labs
Free Screencasts (cf. CLN)
Cisco Learning Labs
Practice browsing Cisco Documentation and learn CLI shortcuts!
216
Before the exam
Travel to the lab location if needed
Plan for the worst, hope for the best
Arrive on the day before your exam
Do a site-survey
Measure commute time from hotel
Identify entrance location

Have a good dinner & sleep enough!
Do whatever you need to have a fit body condition for the next day

217
Before the exam
Reduce stress, arrive early and prepare IDs!
Listen to proctors guidelines (empty pockets, etc)!
If needed, use ear-plugs, medicine, food
Manage your time! Stick to your strategy!
Read the whole module (dont forget the guidelines!)
Cherry pick items!
Dont get stuck at the beginning!
Build your confidence!
Dont get intimated by big topologies!
218
During the exam
Triple read questions before asking help to the proctor!
Save configs often! Avoid last minute change!
Plan for regression tests and overall validations at the end of each module!
Use the scratch paper to track progress (item table) and notes
Draw topologies if really needed (be careful with time!)
Target 80 or 90%! Dont shoot for 100% unless you have time!!
219
During the exam
If you pass, well you know what to do!
If you failed:
Release the anger! Do whatever you have to do!
Try to switch from Denial to Curious quickly
Start looking for your mistakes (especially typos!)
Repeat the scenarios in your home lab
Back to lab practice with focus on the failed topics and verification methods
Book for the next lab exam ASAP

Only ask for a re-read if you have done all the above, and 100% sure CCIE
Program team is wrong! Beware of very low turnover rate!!
220
After the exam
You never fail until you stop trying.
Albert Einstein

Agenda
Exam Tips & Tricks
Questions & Answers
222
Got a question after the session?
Join the CCIE R&S Study Group on CLN
Ask technical questions
Find study partner(s)

Open a CertSupport case at http://www.cisco.com/go/certsupport

Contact us via email:

Kurt kuclaes@cisco.com CCIE RS Support engineer
Himawan hinugroh@cisco.com Solution Architect
Bruno brunov@cisco.com CCIE RS Exam PM
223
Cisco Certifications SME* Recruitment Program

http://www.cisco.com/go/certsme

Directly influence Cisco Career Certifications (Design, Author, Review)
Give back to community
Experience with assessment techniques
Join creativity with experience, knowledge and skills
Use and sharpen technical expertise
Collaborate and network with other engineers
224
Apply
Now!
SME= Subject Matter Expert
Q&A
What questions do you have about the new CCIE R&S v5 exams?
Exam Curriculum ?
Exam Format ?
Exam Deliveries ?
Case Studies ?
Preparation Materials ?
Exam Strategy ?
Anything else ?
225
Complete Your Online Session Evaluation
Give us your feedback and you
could win fabulous prizes. Winners
announced daily.
Complete your session evaluation
through the Cisco Live mobile app
or visit one of the interactive kiosks
located throughout the convention
center.
Dont forget: Cisco Live sessions will be available
for viewing on-demand after the event at
CiscoLive.com/Online
226
Continue Your Education
Demos in the Cisco Campus
Walk-in Self-Paced Labs
Table Topics
Meet the Engineer 1:1 meetings
227

Tecccie 3000

Transféré par

Informations du document

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

Tecccie 3000

Transféré par

Droits d'auteur :

Formats disponibles

CCIE Routing and Switching techtorial

Vous aimerez peut-être aussi