Term
What are the critical performance-management issues that define the success of a network?
|
|
Definition
|
- User/application performance - Capacity planning - Proactive fault management
|
|
|
Term
What is the switched port analyzer (SPAN) feature used for?
|
|
Definition
|
SPAN copies network traffic from a VLAN or group of ports to a selected port. The port is usually connected to a network analyzer.
|
|
|
Term
What kind of traffic can a SPAN session monitor?
|
|
Definition
|
SPAN sessions support the monitoring of only ingress network traffic (ingress SPAN), only egress network traffic (egress SPAN), or traffic flowing in both directions. By default, local SPAN monitors all network traffic, including multilcast and BPDU frames.
|
|
|
Term
How does a SPAN destination port work when its also configured as a trunk port?
|
|
Definition
|
Trunk encapsulation configuration of the destination port determines the encapsulation of the packets forwarded to the destination port. If the destination port is not configured for trunk encapsulation, the ISL or dot1q is removed from the frame before egress transmission.
|
|
|
Term
Is it ever possible for a SPAN port to send egress traffic?
|
|
Definition
|
In IOS-based Catalyst switches, you must dedicate the destination port for SPAN use because the port does not learn MAC addresses. Its also possible for the device connected on the destination port to send traffic to the switch.
|
|
|
Term
What type of ports can be configured on a switch to be a source or destination port?
|
|
Definition
|
Both L2 and L3 ports can be configured as source or destination ports in IOS-based switches.
|
|
|
Term
For how many sessions can 1 SPAN port be a destination port?
|
|
Definition
|
A port can act as the destination port for only one SPAN session.
|
|
|
Term
What kind of SPAN ports can be configured on port channel interfaces?
|
|
Definition
|
Port channel interfaces can be configured as source ports, but cannot be a destination port.
|
|
|
Term
How do SPAN ports take into effect STP BPDUs?
|
|
Definition
|
Destination ports never participate in a spanning-tree instance. Local SPAN includes BPDUs in the monitoring traffic, so any BPDUs seen on the destination port are from the source port. As a result, SPAN destination ports should not be connected to another switch, because this may cause a network loop
|
|
|
Term
How can SPAN be configured over multiple switches?
|
|
Definition
|
Remote SPAN (RSPAN) supports source ports, source VLANs, and destination ports on different switches. Each RSPAN session carries the SPAN traffic over a user-specifed RSPAN VLAN. This VLAN is dedicated for that RSPAN session in all participating switches
|
|
|
Term
What are the benefits of using Enhanced Remote SPAN on your network?
|
|
Definition
|
ERSPAN is similar to RSPAN, but it supports source ports, source VLANs, and destination ports on different switches, even across the L3 boundaries, which provides remote monitoring of multiple switches across a switches or routed network.
|
|
|
Term
How is ERSPAN about to have source and destination ports across L2 and L3 boundaries?
|
|
Definition
|
Each ERSPAN session carries the SPAN traffic over a GRE tunnel. The source and destination switches must support GRE in hardware. Currently, the ERSPAN feature is supported only on the Catalyst 6500 family of switches.
|
|
|
Term
What does an ERSPAN source session need to be configured with for its destination?
|
|
Definition
|
To configure an ERSPAN source session on one switch, you associate a set of source ports ot VLANs with a destination IP address, ERSPAN ID number, and optionally, a VRF name.To configure an ERSPAN destination session on another switch, you associate the destination ports with the source IP address, ERSPAN ID number, and, optionally, a VRF name.
|
|
|
Term
How can a VACL be used to capture interesting traffic?
|
|
Definition
|
Using VACLs with the capture option, the network analyzer only receives a copy of traffic matching the configured ACL.
|
|
|
Term
What information is needed in order to preform a L2 traceroute over a switched network?
|
|
Definition
|
You only need to know the source and destination MAC addresses or the devices in question. But you do need to have CDP running on all switches, and all devices must support L2 traceroutes.
|
|
|
Term
Describe how Embedded Event Manager (EEM) is used to monitor events on a Catalyst switch? |
|
Definition
|
The Embedde Event Manager (EEM) feature has the capability to monitor events happening in the switch using embedded event collectors. The events tracked could be a generation of a syslog message, incrementing of a certain counter.Custom actions could be preformed based on the detection of these events.
|
|
|
Term
What different ways are you able to configure EEM on a Catalyst 6500 switch? |
|
Definition
|
- EEM using applet CLI - Cisco IOS CLI-based configuration that provides a limited set of actions and detection. - EEM using Tool Command Language (TCL) script - Provices full flexibility in defining the events and subsequent actions.
|
|
|
Term
What is the use of a Network Analysis Module (NAM) for a Cisco Catalyst 6500 switch? |
|
Definition
|
The NAM gathers multilayer information about voice, video, and data flows up through the application layer. The NAM monitors and analyzes network traffic using RMON, RMON extension for switched networks, and other Management Information Bases (MIB)
|
|
|
