TX 75035,USA
live:cciernstricks

CCIE R&S v5 Exam Review on 01 MAY 2015

CCIE Real Lab Workbook

CCIE R&S v5 Exam Review on 01 MAY 2015 No ratings yet.

Hey Guys,

cciereallabworkbook helped me passed the CCIEv5 exam on May 1st.

Here are what I was given.

TSHOOT
1) VLAN12 was not allowed on a single trunk interface from SW2 to SW1. Due to spanning-tree, that interface was forwarding traffic… So I just added vlan 12 to the trunk link
2) Wrong hostname on R17
3) Passive Interface on R21
4) Offset list on R12 & Wrong metric on R13 (If you go to R11 for instance and run the command “sh ip protocol”, you should be able to see the K values… Just configure the same values on the other side)
5) Depending on the actual configuration between R21, R22, R4 and R6, you should be able to come up with a solution to route traffic accordingly. The thing you have to remember is lower metric wins and high local pref wins. In my case, there was already a route-map tied to prefix-list defining 194.1.1.1 on R21. I lowered the LP and created another RM on R22. I did the opposite for 8.8.8.8. For 123.3.3.3 and 134.21.21.21, make sure you read carefully the route-maps configured. The RM on R4 with the lower metric should be matched with the prefix-list of 123.3.3.3 and vice versa for 134.21.21.21
6) IPv6 encapsulated in IPv4 packets is what I did with the RM and setting the next-hop as the ser int of R25 (Outbound). The network AD of the Ethernet link had the wrong mask too.
7) Wrong NHS address on R18, ACL on R19 (I allowed esp any any), Redistribution of the NBMA address in EIGRP
8) I did a “sh ip route of SW3 and the default route was not received via OSPF from R9 so I did a “default originate always” on R9. R5 was not learning the default route from the backbone routers as well. So I did the same in BGP on R7 and R8. The command “ip nat outside” was also missing on .125 on R7. Also LSP was broken between R4 and R6 but I advise you to be veryu careful with that. I did not change it and my pings and traces worked fine. The reason why I did not change is because when you do a “sh cdp nei” on either R4 or R6, you will that is connected to R12 or SW5 (I forgot but the device it is connected to is outside the OSPF domain) and it is also connected to R2 or R6 (inside the OSPF domain). So changing the metric on eth2/0 or doing a passinve inter command will affect your ospf domain. Since everything worked for me, I did not change it even tho I did not have any labels for R6 and R4.
9) The key address of R7 was pointing to 192.168… (R24 address). It needs to be WAN interface of R23 or you can just do 0.0.0.0. I used the serial interface of R23 and made sure the Natting is correct.
10) IP dns server on R23.

 

CONFIG

I finished everything by 2pm.

Layer 2
Missing VLANs on SW2, SW3 and SW4
MST

Layer3
OSPF R1 (max metric….)
no EIGRP Named Mode
EIGRP authentication
LOCALSP vrf on 45678. Be careful here, After I configured the BGP peering with the SP, R16 could not come up and I found out that the “ip forwarding vrf LOCALSP” was missing on the int facing the SP
The BGP peering between R20, R2 and R3 was backwards in the exam. R20 had almost all the configs done except the router id but R2 and R3 did not have any configs… So I have to look at the vrf interface by running “sh ip vrf” and look at the int subnet to know what address to peer with under that specific vrf.
IPv6 the same
DMVPN with Encryption (LOCALSP)
Banner
Switchport Sec
SSH
NAT
SHELL
NTP

Good Luck Everyone !!

Please rate this