Lab Pics....

[notgoing2fail 16]

on debian i ran 9 routers with the same specs (hp dl320 server). not sure about windows though, maybe 7? the problem begun when after doing redistributions i added mcast, ipv6. routers some times began to loose keepalives...

 

 

Ok, this is a laptop so it probably won't be able to handle as much. I have a couple DL320's myself but I'd rather not turn them on...too loud...LOL...actually they aren't that bad...better than my DL380....

[a61971 17]

Ummm.....WHAT???? Was he kidding? :blink:

 

Nope, I was stunned. How the he** could he be a CCNP (and several other CCxP's)???

 

Ok, we all know the answer.....

 

I felt I talked to the future world champ in lab attemps ...

 

Now excuse me, I got some labbing to do ....

[notgoing2fail 16]

Nope, I was stunned. How the he** could he be a CCNP (and several other CCxP's)???

 

Ok, we all know the answer.....

 

I felt I talked to the future world champ in lab attemps ...

 

Now excuse me, I got some labbing to do ....

 

 

That is truly sad.....

 

A CCNA could tell you the difference between those ports!!

 

Have fun on your lab...

[John Lockie 4]

A CCNA could tell you the difference between those ports!!

Like I said, you should go for CCIE ;-)

 

Seriously though, some people are stupid. They brain dump everything. This is why I encourage you to go for CCIE. Sadly, all the NA/NP certs in the world do not amount to much because that market is flooded with dumps. It's like MCSE. I would never hire an MCSE....or based on the person have MCSE. That certification is total trash. Basically, to me it stands for "Minesweeper Champion, Solitaire Expert"

[notgoing2fail 16]

Like I said, you should go for CCIE ;-)

 

Seriously though, some people are stupid. They brain dump everything. This is why I encourage you to go for CCIE. Sadly, all the NA/NP certs in the world do not amount to much because that market is flooded with dumps. It's like MCSE. I would never hire an MCSE....or based on the person have MCSE. That certification is total trash. Basically, to me it stands for "Minesweeper Champion, Solitaire Expert"

 

 

While studying for my CCNA do you know what I did? I went beyond the scope of CCNA material. I turned my 3550 with EMI into L3. Then tried to do VPN between it and my 1811. No slice. But I didn't give up. I tried to then configure VTI between the two devices. Still no slice.

 

I've tried everything, applying cryptomaps to physical interface, SVI....I tried 2 routed ports on the switch, I tried 1 routed port, one SVI on the switch, all sorts of scenarios, no slice...

 

But I learned a lot. I learned that the 3550 will indeed support ISAKMP tunnels. But will not support IPsec tunnels. Cisco just does not allow you to use it.

 

That right there taught me the difference between switchports and routed ports......(and I'm sure there's many more scenarios)

 

I started playing with BVI and didn't have a chance to finish....last week I implemented and played with HSRP/VRRP, easy setup, but my first time so excited. Haven't tried GLBP yet...

 

But I'm hungry....and to hear that this guy with multiple CCxP certs didn't know the fundamental difference between those ports? WHAT??? I really don't know what to say, he should never have been let through the front door....I just can't even comprehend it....

[notgoing2fail 16]

Oh now I know why you insist I take a look at CCIE R&S!!

 

You can just swing for the fences and TRY to get CCIE without CCNP or CCNA!!!

 

I keep forgetting that the CCIE program doesn't have any pre-requisites correct???

[talent pk 33]

Here is what i ve got.

 

2 x 2801 Routers (ISR 1 voice bundle with FXO FXS PvDM2)

3 x 2811 Routers (ISR 2 Voice Bundle with FXO, FXS pvdm2)

2 x 1841 Routers (ISR)

2 x 3640 Routers

1 x 2620XM Router

2 x 870 Router (integrated Security)

1 x 2501 Router

3 x 3560 CAT Switches (PoE) (Voice Support)

1 x 2950g CAT Switch (Non PoE) (Voice Support)

2 x cisco 7940 IP Phone

 

 

 

http://img33.imageshack.us/i/image4093.jpg/

 

http://img266.imageshack.us/i/image4092.jpg/

 

http://img121.imageshack.us/i/image4090.jpg/

 

http://img532.imageshack.us/i/image4089.jpg/

 

http://img203.imageshack.us/i/image4088.jpg/

 

http://img32.imageshack.us/i/image4087.jpg/

 

http://img153.imageshack.us/i/image4091.jpg/

Edited May 19, 2010 by talent pk

[talent pk 33]

I have 13 Routers and 4 Switches. i think it's more than enough to have CCNA CCNP CCIE Rack.

 

Sorry about the Wooden Rack. Really looking for 20U Hard Metal Rack.

Edited May 19, 2010 by talent pk

[notgoing2fail 16]

I have 13 Routers and 4 Switches. i think it's more than enough to have CCNA CCNP CCIE Rack.

 

Sorry about the Wooden Rack. Really looking for 20U Hard Metal Rack.

 

 

 

Awesome! What are the two devices on top? The little ones?

 

My rack is 20U, it's a skeletek....

[talent pk 33]

those are full blown CAT 3560 PoE 8Pc Switches.

 

These are awesome and can run EIGRP. OSPF RIP aswell as all the QoS/Auto QoS.

[notgoing2fail 16]

those are full blown CAT 3560 PoE 8Pc Switches.

 

These are awesome and can run EIGRP. OSPF RIP aswell as all the QoS/Auto QoS.

 

 

That's awesome!! I had no idea they came that small....I want one!

 

Can you do private lans on them? Or do they suffer the same fate as the 3550's! LOL....

[talent pk 33]

That's awesome!! I had no idea they came that small....I want one!

 

Can you do private lans on them? Or do they suffer the same fate as the 3550's! LOL....

 

yes these surely does private vlans.

[talent pk 33]

as a proof.

 

here are configs taken from Switch

 

3560_A(config)#vlan

3560_A(config)#vlan 200

3560_A(config-vlan)#priva

3560_A(config-vlan)#private-vlan ?

association Configure association between private VLANs

community Configure the VLAN as a community private VLAN

isolated Configure the VLAN as an isolated private VLAN

primary Configure the VLAN as a primary private VLAN

 

3560_A(config-vlan)#private-vlan primary

3560_A(config-vlan)#private-vlan primary ?

<cr>

 

3560_A(config-vlan)#private-vlan primary

3560_A(config-vlan)#do show vlan

 

VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/5, Fa0/6, Fa0/7, Fa0/8

Gi0/1

1002 fddi-default act/unsup

1003 token-ring-default act/unsup

1004 fddinet-default act/unsup

1005 trnet-default act/unsup

 

VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 0 0

1002 fddi 101002 1500 - - - - - 0 0

1003 tr 101003 1500 - - - - srb 0 0

1004 fdnet 101004 1500 - - - ieee - 0 0

1005 trnet 101005 1500 - - - ibm - 0 0

 

Remote SPAN VLANs

------------------------------------------------------

 

 

In addition to that, these special models comes with 1 GB Uplink and 1 FibreOptic SFP Port

[John Lockie 4]

Yes, they make 8 port 3560's. In CCIE lab you can use these as switch 3 and switch 4 if you want. Switches 1 and 2 generall have 13+ interfaces active (including all the trunk ports between switches, which is 6 per switch). Switch 3 needs all 8 ports, and switch 4 only has the 6 trunk ports. But for this matter you might as well buy 3550's and match the major vendor topologies cleanly (interface #'s, etc.). Makes doing the labs 100x easier....no 1,000 times easier =P

 

Anyway, I just sold two of my 8 port 3560's. I had 3, with a 24 port 3560...before I decided to mirror Narbik's lab topology. I was trying to stick to blueprint too hard....so now I have 2 x 3550 and 2 x 3560 24 port switches in my active lab.

 

 

And yes, these do everything the 24 port 3560's can do....everything.

 

If you want to buy my 3rd 8 port let me know. I will let it go for $400. I have a friend who is interested, and he will be letting me know soon. If he doesn't want it then it's up for grabs. These are $800+ new.

[John Lockie 4]

Since we are talking actual router model #'s....

 

Here's my active lab...what I actually practice with every day

 

R1: 3825

R2-R5: 3725

R6: 1841 ISR

BB1-BB2: 2621XM

BB3: 3725

FRAME RELAY SWITCH: 3620

ACCESS SERVER: 2511

SW1-SW2: 3560 24P

SW3-SW4: 3550 24P

 

I am using remote power also, 2 of these guys to power cycle any router or switch remotely: http://www.digital-loggers.com/lpc.html

 

I am going to correct the photos in my original post....seems twitpic doesn't like linking to images from forums :-P

 

If I had to recommend one thing to someone looking to build a personal use CCIE rack I would say this:

1. Don't bother with a 3825...3725's are plenty. If you throw a 3825 in the mix it will jack you slightly cause the ethernet if's are Gig not Fast!

2. Use a 3640 for both access server and frame-relay switching.....

3. Buy the vertical PDU: http://www.digital-loggers.com/vpdu.html

 

BLEH, I can't edit my original post....here's the pic + topology

Edited May 19, 2010 by John Lockie

[notgoing2fail 16]

 

 

If you want to buy my 3rd 8 port let me know. I will let it go for $400. I have a friend who is interested, and he will be letting me know soon. If he doesn't want it then it's up for grabs. These are $800+ new.

 

I was just looking these up on eBay. They are damn expensive!!! Even the little 8 port ones I can't beleive it!

 

Isn't the only difference between 3560 and 3550 that it does Private VLAN? Am I missing something else?

 

Also, are they always PoE or can you get one without PoE?

[notgoing2fail 16]

 

 

I am going to correct the photos in my original post....seems twitpic doesn't like linking to images from forums :-P

 

 

 

 

I told you!!!

[John Lockie 4]

I told you!!!

Yep =/

 

Also, regarding 3550 vs. 3560 check this out

 

http://www.ine.com/resources/ccie-3560-3550.htm

 

It's good to use 3560 for your "distribution" layer switches...and 3550 for access layer.

[notgoing2fail 16]

Yep =/

 

Also, regarding 3550 vs. 3560 check this out

 

http://www.ine.com/resources/ccie-3560-3550.htm

 

It's good to use 3560 for your "distribution" layer switches...and 3550 for access layer.

 

 

Good stuff....seems like a couple subtle differences...now...how important is it for me to have 3560 in my lab? The best switch I have is 3550. Then 2960,2950 and old 2900XL's...

 

I'd like to hit 2 birds with one stone, is there any other high end switches that I should be looking at that will also take care of any 3560 needs?

 

BTW: Your $400 price tag is fabulous. So it is on my radar...

[John Lockie 4]

Good stuff....seems like a couple subtle differences...now...how important is it for me to have 3560 in my lab? The best switch I have is 3550. Then 2960,2950 and old 2900XL's...

 

I'd like to hit 2 birds with one stone, is there any other high end switches that I should be looking at that will also take care of any 3560 needs?

 

BTW: Your $400 price tag is fabulous. So it is on my radar...

Friends and favors.

 

Regarding any other high end switches, nope. You can look at 3750's =P. Or 4000/6000, but that's just ridiculous even for CCIE.

 

The 3750 is probably Cisco's coolest switch right now!!! Stackable.

[notgoing2fail 16]

Friends and favors.

 

Regarding any other high end switches, nope. You can look at 3750's =P. Or 4000/6000, but that's just ridiculous even for CCIE.

 

The 3750 is probably Cisco's coolest switch right now!!! Stackable.

 

 

I'll take a look at the 3750 features, not that I'm going to buy it though...

 

 

This is insane, are you telling me that if I get the 3560, along with the switches that I already have, it covers every possible "function" that I would need in the event I am interested in the CCIE?

 

Those modular switches that go into those huge power hungry chassis aren't any better? Or commands aren't any different?

[John Lockie 4]

Modular switches have a different command set, more advanced. For example, "vlan dot1q tag native" is implemented differently in 6500 series than on 3560. [edit] I should say I have been "told" so. Not seen from my experience as I have never done it on a 6500 series, but I think the main difference here (assumption coming, watch out!) is that you can apply native vlan tagging per interface instead of globally on the 6500!

 

But for CCIE that doesn't even matter. All you need to know is 3560.

 

For CCIE you need 10 routers and 4 switches.

 

R1, R2, R3, R4, R5, R6, BB1, BB2, BB3, FR/AS, SW1, SW2, SW3, SW4

 

You don't *need* all that...like some guys said you can go GNS3, but you do *need* the switches, and at least 2 x 3560 (GNS3 you can do this w/ 8 port 3560's).

 

Your 2960's and below are trash. No offense, they are useless to CCNP and CCNA stuff. You didn't waste your money though, cause you can practice all layer 2 stuff, trunking, vlan, dtp, vtp, etc.

 

For QoS you need to know egress. Ingress is not a big deal, because it's mostly used for flow control, etc. (well I shouldn't say not a big deal...we need to know it). I believe the 3560 supports this, while the 3550 does not (egress). I could be wrong here... have to check that INE link. But that is just an example of why you need the 3560's.

Edited May 20, 2010 by John Lockie

[Darby Weaver 32]

6509-01-01(config)#vlan ?

WORD ISL VLAN IDs 1-4094

access-log Configure VACL logging

access-map Create vlan access-map or enter vlan access-map command mode

accounting VLAN accounting configuration

dot1q dot1q parameters

filter Apply a VLAN Map

internal internal VLAN

mapping Set a VLAN mapping on this device

 

6509-01-01(config)#vlan 1 ?

<cr>

 

6509-01-01(config)#vlan dot1q ?

tag tag parameters

 

6509-01-01(config)#vlan dot1q tag ?

native tag native vlan

 

6509-01-01(config)#vlan dot1q tag native

 

 

 

 

 

6509-01-01(config)#do sh ver

Cisco Internetwork Operating System Software

IOS s72033_rp Software (s72033_rp-ENTSERVICESK9_WAN-M), Version 12.2(18)SXF5, RELEASE SOFTWARE (fc3)

Technical Support: http://www.cisco.com/techsupport

Copyright © 1986-2006 by cisco Systems, Inc.

Compiled Sat 08-Jul-06 02:45 by kellythw

Image text-base: 0x40101040, data-base: 0x42D88000

 

ROM: System Bootstrap, Version 12.2(17r)S2, RELEASE SOFTWARE (fc1)

BOOTLDR: s72033_rp Software (s72033_rp-ENTSERVICESK9_WAN-M), Version 12.2(18)SXF5, RELEASE SOFTWARE (fc3)

 

CSX-6509-01-01 uptime is 19 hours, 56 minutes

Time since CSX-6509-01-01 switched to active is 19 hours, 9 minutes

System returned to ROM by Stateful Switchover (SP by power on)

System restarted at 00:27:23 EDT Sun Aug 13 2006

System image file is "disk0:s72033-entservicesk9_wan-mz.122-18.SXF5.bin"

 

 

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

 

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

 

If you require further assistance please contact us by sending email to

export@cisco.com.

 

cisco WS-C6509-E (R7000) processor (revision 1.1) with 458720K/65536K bytes of memory.

Processor board ID SMG0914N1WS

SR71000 CPU at 600Mhz, Implementation 0x504, Rev 1.2, 512KB L2 Cache

Last reset from power-on

SuperLAT software (copyright 1990 by Meridian Technology Corp).

X.25 software, Version 3.0.0.

Bridging software.

TN3270 Emulation software.

1 GE-WAN controller (4 GE-WAN Ports).

25 Virtual Ethernet/IEEE 802.3 interfaces

234 Gigabit Ethernet/IEEE 802.3 interfaces

1917K bytes of non-volatile configuration memory.

8192K bytes of packet buffer memory.

 

65536K bytes of Flash internal SIMM (Sector size 512K).

Configuration register is 0x2102

 

6509-01-01(config)#

[Darby Weaver 32]

3560-2(config)#vlan ?

WORD ISL VLAN IDs 1-4094

access-map Create vlan access-map or enter vlan access-map command mode

dot1q dot1q parameters

filter Apply a VLAN Map

internal internal VLAN

 

3560-2(config)#vlan do

3560-2(config)#vlan dot1q ?

tag tag parameters

 

3560-2(config)#vlan dot1q tag ?

native tag native vlan

 

3560-2(config)#vlan dot1q tag native

[Darby Weaver 32]

I still keep a pair of 4003's in my home rack and each is L3 via the WS-X4232G-L3.

 

I'm not saying you guy need this stuff. I'd much rather a 4515 or better but what can we do and it takes power... Lots of power. I gave way all of my 4006's and 5505's too.

[John Lockie 4]

so vlan dot1q tag native is applied in global config?

 

....so it's the same. can you apply "vlan dot1q tag native" to just one specific trunk on the 6509?

 

john

[Darby Weaver 32]

$400.00 is a great price for a 3560. Let me know if no one else wants it.

 

I sold off my 3560's since I felt they were depreciating faster than I was getting my money's worth.

 

My network is loaded with 3560's and 3750's so no bigger. We've got about 20 6500's with Sup-720's and all manner of modules for them.

 

Looking for Nexus within the next 12-18 months.

[Darby Weaver 32]

so vlan dot1q tag native is applied in global config?

 

....so it's the same. can you apply "vlan dot1q tag native" to just one specific trunk on the 6509?

 

john

 

 

I listed the options for both. They are precisely the same.

 

 

 

3560-2(config)#vlan 1

3560-2(config-vlan)#?

VLAN configuration commands:

are Maximum number of All Route Explorer hops for this VLAN (or zero if none specified)

backupcrf Backup CRF mode of the VLAN

bridge Bridging characteristics of the VLAN

exit Apply changes, bump revision number, and exit mode

media Media type of the VLAN

mtu VLAN Maximum Transmission Unit

name Ascii name of the VLAN

no Negate a command or set its defaults

parent ID number of the Parent VLAN of FDDI or Token Ring type VLANs

private-vlan Configure a private VLAN

remote-span Configure as Remote SPAN VLAN

ring Ring number of FDDI or Token Ring type VLANs

said IEEE 802.10 SAID

shutdown Shutdown VLAN switching

state Operational state of the VLAN

ste Maximum number of Spanning Tree Explorer hops for this VLAN (or zero if none specified)

stp Spanning tree characteristics of the VLAN

tb-vlan1 ID number of the first translational VLAN for this VLAN (or zero if none)

tb-vlan2 ID number of the second translational VLAN for this VLAN (or zero if none)

 

3560-2(config-vlan)#

 

3560-2(config)#do sh int trunk

 

Port Mode Encapsulation Status Native vlan

Gi0/1 on 802.1q trunking 1

 

Port Vlans allowed on trunk

Gi0/1 1-4094

 

Port Vlans allowed and active in management domain

Gi0/1 1-2,4,6,8,10,245

 

Port Vlans in spanning tree forwarding state and not pruned

Gi0/1 1-2,4,6,8,10,245

[Darby Weaver 32]

6509-01-01(config-vlan)#?

VLAN configuration commands:

are Maximum number of All Route Explorer hops for this VLAN (or zero if none specified)

backupcrf Backup CRF mode of the VLAN

bridge Bridging characteristics of the VLAN

exit Apply changes, bump revision number, and exit mode

media Media type of the VLAN

mtu VLAN Maximum Transmission Unit

name Ascii name of the VLAN

no Negate a command or set its defaults

parent ID number of the Parent VLAN of FDDI or Token Ring type VLANs

private-vlan Configure a private VLAN

remote-span Configure as Remote SPAN VLAN

ring Ring number of FDDI or Token Ring type VLANs

said IEEE 802.10 SAID

shutdown Shutdown VLAN switching

state Operational state of the VLAN

ste Maximum number of Spanning Tree Explorer hops for this VLAN (or zero if none specified)

stp Spanning tree characteristics of the VLAN

tb-vlan1 ID number of the first translational VLAN for this VLAN (or zero if none)

tb-vlan2 ID number of the second translational VLAN for this VLAN (or zero if none)

[John Lockie 4]

Yes, I know how it goes on the 3560, but I was told the 6500 implementation is "different". That's why I edited my post to say I didn't have first hand.

 

Believe it or not, I work with HP 8200's in my network! Sucks =P

 

I hope you get to work with Nexus. The entire drive to CCIE for me is fueled by a desire to work in the Nexus marketplace. Cisco is breaking ground there big time....cutting edge stuff.