CCIE Professional Development Routing TCP/IP, Volume I, Second Edition By Jeff Doyle - CCIE No 1919, Jennifer Carroll - CCIE No 1402 Publisher: Cisco Press Pub Date: October 19, 2005 ISBN: 1-58705-202-4 Pages: 936 Table of Contents | Index A detailed examination of interior routing protocols completely updated in a new edition A complete revision of the best-selling first edition widely considered a premier text on TCP/IP routing protocols A core textbook for CCIE preparation and a practical reference for network designers, administrators, and engineers Includes configuration and troubleshooting lessons that would cost thousands to learn in a classroom and numerous real-world examples and case studies Praised in its first edition for its approachable style and wealth of information, this new edition provides readers a deep understanding of IP routing protocols, teaches how to implement these protocols using Cisco routers, and brings readers up to date protocol and implementation enhancements Routing TCP/IP, Volume 1, Second Edition, includes protocol changes and Cisco features that enhance routing integrity, secure routers from attacks initiated through routing protocols, and provide greater control over the propagation of routing information for all the IP interior routing protocols Routing TCP/IP, Volume 1, Second Edition, provides a detailed analysis of each of the IP interior gateway protocols (IGPs) Its structure remains the same as the best-selling first edition, though information within each section is enhanced and modified to include the new developments in routing protocols and Cisco implementations What's New In This Edition? The first edition covers routing protocols as they existed in 1998 The new book updates all covered routing protocols and discusses new features integrated in the latest version of Cisco IOS Software IPv6, its use with interior routing protocols, and its interoperability and integration with IPv4 are also integrated into this book Approximately 200 pages of new information are added to the main text, with some old text removed Additional exercise and solutions are also included CCIE Professional Development Routing TCP/IP, Volume I, Second Edition By Jeff Doyle - CCIE No 1919, Jennifer Carroll - CCIE No 1402 Publisher: Cisco Press Pub Date: October 19, 2005 ISBN: 1-58705-202-4 Pages: 936 Table of Contents | Index Copyright About the Authors About the Technical Reviewers Acknowledgments This Book Is Safari Enabled Icons Used in This Book Command Syntax Conventions Foreword Introduction Objectives Audience Changes from First Edition Organization Book Features Part I: Routing Basics Chapter 1 TCP/IP Review TCP/IP Protocol Layers IP Packet Header IPv4 Addresses Address Resolution Protocol (ARP) Internet Control Message Protocol (ICMP) Host-to-Host Layer Looking Ahead Summary Table: Chapter 1 Command Review Recommended Reading Review Questions Configuration Exercises Troubleshooting Exercises Chapter 2 IPv6 Overview IPv6 Addresses IPv6 Packet Header Format Extension Headers ICMPv6 Neighbor Discovery Protocol Looking Ahead Review Questions Chapter 3 Static Routing Route Table Configuring Static Routes Troubleshooting Static Routes Looking Ahead Summary Table: Chapter 3 Command Review Review Questions Configuration Exercises Troubleshooting Exercises Chapter 4 Dynamic Routing Protocols Routing Protocol Basics Distance Vector Routing Protocols Link State Routing Protocols Interior and Exterior Gateway Protocols Static or Dynamic Routing? Looking Ahead Recommended Reading Review Questions Part II: Interior Routing Protocols Chapter 5 Routing Information Protocol (RIP) Operation of RIP Configuring RIP Troubleshooting RIP Looking Ahead Summary Table: Chapter 5 Command Review Recommended Reading Review Questions Configuration Exercises Troubleshooting Exercises Chapter 6 RIPv2, RIPng, and Classless Routing Operation of RIPv2 Operation of RIPng Configuring RIPv2 Configuring RIPng Troubleshooting RIPv2 and RIPng Looking Ahead Summary Table: Chapter 6 Command Review Recommended Reading Review Questions Configuration Exercises Troubleshooting Exercises Chapter 7 Enhanced Interior Gateway Routing Protocol (EIGRP) The Roots of EIGRP: An Overview of IGRP From IGRP to EIGRP Operation of EIGRP Configuring EIGRP Troubleshooting EIGRP Looking Ahead Summary Table: Chapter 7 Command Review Review Questions Configuration Exercises Troubleshooting Exercises Chapter 8 OSPFv2 Operation of OSPF Configuring OSPF Troubleshooting OSPF Looking Ahead Summary Table: Chapter 8 Command Review Recommended Reading Review Questions Configuration Exercises Troubleshooting Exercises Chapter 9 OSPFv3 Operation of OSPFv3 Configuring OSPFv3 Troubleshooting OSPFv3 Looking Ahead Summary Table: Chapter 9 Command Review Recommended Reading Review Questions Configuration Exercises Chapter 10 Integrated IS-IS Operation of Integrated IS-IS Configuring Integrated IS-IS Troubleshooting Integrated IS-IS Looking Ahead Summary Table: Chapter 10 Command Review Review Questions Configuration Exercises Troubleshooting Exercises Part III: Route Control and Interoperability Chapter 11 Route Redistribution Principles of Redistribution Configuring Redistribution Looking Ahead Summary Table: Chapter 11 Command Review Review Questions Configuration Exercises Troubleshooting Exercises Chapter 12 Default Routes and On-Demand Routing Fundamentals of Default Routes Fundamentals of On-Demand Routing Configuring Default Routes and ODR Looking Ahead Summary Table: Chapter 12 Command Review Review Questions Chapter 13 Route Filtering Configuring Route Filters Looking Ahead Summary Table: Chapter 13 Command Review Configuration Exercises Troubleshooting Exercises Chapter 14 Route Maps Basic Uses of Route Maps Configuring Route Maps Looking Ahead Summary Table: Chapter 14 Command Review Review Questions Configuration Exercises Troubleshooting Exercise Part IV: Appendixes Appendix A Tutorial: Working with Binary and Hex Working with Binary Numbers Working with Hexadecimal Numbers Appendix B Tutorial: Access Lists Access List Basics Standard IP Access Lists Extended IP Access Lists Calling the Access List Reflexive Access Lists Keyword Alternatives Named Access Lists Prefix Lists Filter Placement Considerations Access List Monitoring and Accounting Appendix C CCIE Preparation Tips Laying the Foundations Following the Certification Path Hands-On Experience Intensifying the Study The Final Six Months Exam Day Appendix D Answers to Review Questions Chapter 1 Chapter 2 Chapter 3 Chapter 4 Chapter 5 Chapter 6 Chapter 7 Chapter 8 Chapter 9 Chapter 10 Chapter 11 Chapter 12 Chapter 14 Appendix E Solutions to Configuration Exercises Chapter 1 Chapter 3 Chapter 5 Chapter 6 Chapter 7 Chapter 8 Chapter 9 Chapter 10 Chapter 11 Chapter 13 Chapter 14 Appendix F Solutions to Troubleshooting Exercises Chapter 1 Chapter 3 Chapter 5 Chapter 6 Chapter 7 Chapter 8 Chapter 10 Chapter 11 Chapter 13 Chapter 14 Index Copyright CCIE Professional Development Routing TCP/IP Volume I Second Edition Jeff Doyle, CCIE No 1919, Jennifer Carroll, CCIE No 1402 Copyright © 2006 Cisco Systems, Inc Published by: Cisco Press 800 East 96th Street Indianapolis, IN 46240 USA All rights reserved No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written permission from the publisher, except for the inclusion of brief quotations in a review Printed in the United States of America 1 2 3 4 5 6 7 8 9 0 First Printing October 2005 Library of Congress Cataloging-in-Publication Number: 2004104363 Trademark Acknowledgments All terms mentioned in this book that are known to be trademarks or service marks have been appropriately capitalized Cisco Press or Cisco Systems, Inc cannot attest to the accuracy of this information Use of a term in this book should not be regarded as affecting the validity of any trademark or service mark Warning and Disclaimer This book is designed to provide information about routing TCP/IP Every effort has been made to make this book as complete and as accurate as possible, but no warranty or fitness is implied The information is provided on an "as is" basis The authors, Cisco Press, and Cisco Systems, Inc shall have neither liability nor responsibility to any person or entity with respect to any loss or damages arising from the information contained in this book or from the use of the discs or programs that may accompany it The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems, Inc Corporate and Government Sales Cisco Press offers excellent discounts on this book when ordered in quantity for bulk purchases or special sales For more information please contact: U.S Corporate and Government Sales 1-800-382-3419 corpsales@pearsontechgroup.com For sales outside the U.S please contact: International Sales international@pearsoned.com Feedback Information At Cisco Press, our goal is to create in-depth technical books of the highest quality and value Each book is crafted with care and precision, undergoing rigorous development that involves the unique expertise of members from the professional technical community Readers' feedback is a natural continuation of this process If you have any comments regarding how we could improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us through e-mail at feedback@ciscopress.com Please make sure to include the book title and ISBN in your message We greatly appreciate your assistance Publisher John Wait Editor-in-Chief John Kane Executive Editor Brett Bartow Cisco Representative Anthony Wolfenden Cisco Press Program Manager Jeff Brady Production Manager Patrick Kanouse Development Editor Andrew Cupp Senior Project Editor San Dee Phillips Copy Editor Interactive Composition Corporation Technical Editors Frank Knox, Steven Edward Moore, Rena Yang I 192.168.2.0/24 [100/12576] via 192.168.5.1, 00:00:22, Seri I 192.168.3.0/24 [100/12476] via 192.168.5.1, 00:00:22, Seri I 192.168.4.0/24 [100/10476] via 192.168.5.1, 00:00:22, Seri C 192.168.5.0/24 is directly connected, Serial1 C 192.168.6.0/24 is directly connected, Serial0 Ruth# Convergence after the reboot is not only unpredictable but also slow Example 11-3 shows Gehrig's route table approximately three minutes after the reboot It is using Lazzeri as a next-hop router to subnet 192.168.1.0, but pings to a working address on that link fail Lazzeri's route table (Example 11-4) shows the problem: Lazzeri is using Gehrig as a next-hop router A routing loop exists Example 11-3 Soon after the reboot, Gehrig is routing packets to 192.168.1.0 via Lazzeri Gehrig#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route, o - ODR Gateway of last resort is not set I 192.168.1.0/24 [100/16100] via 192.168.3.2, 00:02:38, Seri C 192.168.2.0/24 is directly connected, Ethernet0 C 192.168.3.0/24 is directly connected, Serial0 I 192.168.4.0/24 [100/10476] via 192.168.3.2, 00:00:29, Seri I 192.168.5.0/24 [100/12476] via 192.168.3.2, 00:00:29, Seri I 192.168.6.0/24 [100/14476] via 192.168.3.2, 00:00:39, Seri Gehrig#ping 192.168.1.1 Type escape sequence to abort Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 sec Success rate is 0 percent (0/5) Gehrig# Example 11-4 Lazzeri is routing packets to 192.168.1.0 via Gehrig, creating a routing loop Notice the age of the route Lazzeri#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route Gateway of last resort is not set I 192.168.1.0/24 [100/12100] via 192.168.3.1, 00:04:21, Seri I 192.168.2.0/24 [100/8576] via 192.168.3.1, 00:00:33, Seria C 192.168.3.0/24 is directly connected, Serial0 C 192.168.4.0/24 is directly connected, Serial1 I 192.168.5.0/24 [100/10476] via 192.168.4.2, 00:00:53, Seri I 192.168.6.0/24 [100/12100] via 192.168.3.1, 00:02:32, Seri Lazzeri# Here's the sequence of events leading to the loop: While Lazzeri and Meusel are rebooting, both Gehrig and Ruth have route table entries showing network 192.168.1.0 as reachable via Combs As Lazzeri and Meusel become active, both Gehrig and Ruth send IGRP updates that include subnet 192.168.1.0 Simply by the "luck of the draw," Ruth sends its update slightly earlier than Gehrig does Meusel, receiving Ruth's update, makes Ruth the next-hop router and sends an update to Lazzeri Lazzeri, receiving Meusel's update, makes Meusel the nexthop router Lazzeri and Gehrig send updates to each other at about the same time Lazzeri makes Gehrig the next-hop router to 192.168.1.0 because its route is metrically closer than Meusel's route Gehrig makes Lazzeri the next-hop router to 192.168.1.0 because its IGRP advertisement has a lower administrative distance than Combs RIP advertisement The loop is now in effect Split horizon and the invalid timers will eventually sort things out Lazzeri is advertising 192.168.1.0 to Meusel, but Meusel continues to use the metrically closer route via Ruth And since Ruth is the next-hop router, split horizon is in effect for 192.168.1.0 at Meusel's S1 interface Meusel is also advertising 192.168.1.0 to Lazzeri, but Lazzeri sees Gehrig as metrically closer Lazzeri and Gehrig see each other as the next-hop router to 192.168.1.0, so they will not advertise the route to each other The route will age in both of their route tables until the invalid timer expires (Example 11-5) Example 11-5 When the invalid timer for the route to 192.168.1.0 expires, the route is declared unreachable and the holddown timer is started Lazzeri#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route Gateway of last resort is not set I 192.168.1.0/24 is possibly down, routing via 192.168.3.1, I 192.168.2.0/24 [100/8576] via 192.168.3.1, 00:00:57, Seria C 192.168.3.0/24 is directly connected, Serial0 C 192.168.4.0/24 is directly connected, Serial1 I 192.168.5.0/24 [100/10476] via 192.168.4.2, 00:01:25, Seri I 192.168.6.0/24 is possibly down, routing via 192.168.3.1, Lazzeri# When Lazzeri's invalid timer expires, the route to 192.168.1.0 will be put into holddown Although Meusel is advertising a route to that network, Lazzeri cannot accept it until the holddown timer expires Example 11-6 shows that Lazzeri has finally accepted the route from Meusel, and Example 11-7 shows that Gehrig is successfully reaching 192.168.1.0 through Lazzeri It took more than nine minutes for these two routers to converge, and the route they are using is still not the optimal route Example 11-6 After the holddown timer for 192.168.1.0 expires, Lazzeri accepts the route advertised by Meusel Lazzeri#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route Gateway of last resort is not set I 192.168.1.0/24 [100/14100] via 192.168.4.2, 00:00:27, Seri I 192.168.2.0/24 [100/8576] via 192.168.3.1, 00:00:02, Seria C 192.168.3.0/24 is directly connected, Serial0 C 192.168.4.0/24 is directly connected, Serial1 I 192.168.5.0/24 [100/10476] via 192.168.4.2, 00:00:28, Seri I 192.168.6.0/24 [100/12476] via 192.168.4.2, 00:00:28, Seria Lazzeri# Example 11-7 Gehrig can now reach subnet 192.168.1.0 via Lazzeri Gehrig#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route, o - ODR Gateway of last resort is not set I 192.168.1.0/24 [100/16100] via 192.168.3.2, 00:00:32, Seri C 192.168.2.0/24 is directly connected, Ethernet0 C 192.168.3.0/24 is directly connected, Serial0 I 192.168.4.0/24 [100/10476] via 192.168.3.2, 00:00:33, Seri I 192.168.5.0/24 [100/12476] via 192.168.3.2, 00:00:33, Seri I 192.168.6.0/24 [100/14476] via 192.168.3.2, 00:00:33, Seri Gehrig#ping 192.168.1.1 Type escape sequence to abort Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 sec !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 52/ Gehrig# Administrative distances can cause even worse problems than the sub-optimal routes, unpredictable behavior, and slow convergence of the previous example For example, Figure 11-4 shows essentially the same network as in Figure 11-3, except that the links between the IGRP routers are Frame Relay PVCs By default, IP split horizon is turned off on Frame Relay interfaces As a result, permanent routing loops will form between Lazzeri and Gehrig and between Meusel and Ruth Subnet 192.168.1.0 is unreachable from the IGRP domain Figure 11-4 Because IP split horizon is turned off by default on Frame Relay interfaces, permanent routing loops will form in this network Several tools and strategies exist to prevent routing loops when redistributing The administrative distances can be manipulated, and route filters or route maps can be used Chapter 13 covers route filters, and Chapter 14 covers route maps These chapters also demonstrate techniques for changing administrative distances Redistributing from Classless to Classful Protocols Careful consideration must be given to the effects of redistributing routes from a classless routing process domain into a classful domain To understand why, it is necessary to first understand how a classful routing protocol reacts to variable subnetting Recall from Chapter 5, "Routing Information Protocol (RIP)," that classful routing protocols do not advertise a mask with each route For every route a classful router receives, one of two situations will apply: The router will have one or more interfaces attached to the major network The router will have no interfaces attached to the major network In the first case, the router must use its own configured mask for that major network to correctly determine the subnet of a packet's destination address In the second case, only the major network address itself can be included in the advertisement because the router has no way of knowing which subnet mask to use Figure 11-5 shows a router with four interfaces connected to subnets of 192.168.100.0 The network is variably subnettedtwo interfaces have 27-bit masks, and two interfaces have 30-bit masks If the router is running a classful protocol such as IGRP, it cannot use the 27-bit mask to derive 30-bit subnets, and it cannot use the 30-bit mask to derive 27-bit subnets So, how does the protocol cope with the conflicting masks? Figure 11-5 If this router is running a classful routing protocol, what mask should it choose? In Example 11-8, debugging is used to observe the IGRP advertisements sent by the router in Figure 11-5 Notice that subnet 192.168.100.128/27 is advertised out interface E0, which has a 27-bit mask, but neither 192.168.100.4/30 nor 192.168.100.8/30 is advertised out that interface Similarly, 192.168.100.8/30 is advertised out interface S1, which has a 30-bit mask, but neither 192.168.100.96/27 nor 192.168.100.128/27 is advertised out that interface The same situation applies to all four interfaces Only subnets of 192.168.100.0 whose masks match the interface mask are advertised As a result, IGRP-speaking neighbors on interfaces E0 and E1 will have no knowledge of the 30-bit subnets, and IGRP-speaking neighbors on interfaces S0 and S1 will have no knowledge of the 27-bit subnets Example 11-8 A classful routing protocol will not advertise routes between interfaces whose masks do not match O'Neil#debug ip igrp transactions IGRP protocol debugging is on O'Neil# IGRP: sending update to 255.255.255.255 via Ethernet0 (192.168 subnet 192.168.100.128, metric=1100 IGRP: sending update to 255.255.255.255 via Ethernet1 (192.168 subnet 192.168.100.96, metric=1100 IGRP: sending update to 255.255.255.255 via Serial0 (192.168.10 subnet 192.168.100.4, metric=8476 IGRP: sending update to 255.255.255.255 via Serial1 (192.168.10 subnet 192.168.100.8, metric=8476 O'Neil# This behavior of only advertising routes between interfaces with matching masks also applies when redistributing from a classless routing protocol into a classful routing protocol In Figure 11-6, the subnets of the OSPF domain are variably subnetted, and Paige is redistributing OSPF-learned routes into IGRP Figure 11-6 Paige is redistributing its OSPFlearned routes into IGRP As Example 11-9 shows, Paige knows about all of the subnets in both the OSPF and the IGRP domain And because OSPF is classless, the router knows which masks are associated with each subnet connected to Gibson Paige's IGRP process is using a 24-bit mask; therefore, 172.20.113.192/26 and 172.20.114.48/28 are not compatible and are not advertised (Example 11-10) Notice that IGRP does advertise 172.20.112.0/24 and 172.20.115.0/24 The result is that the only subnets within the OSPF domain that Leonard knows of are the ones with a 24-bit mask (Example 11-11) Example 11-9 Paige knows about all six subnets of Figure 11-6, either from OSPF, IGRP, or a direct connection Paige#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inte N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external E1 - OSPF external type 1, E2 - OSPF external type 2, E i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - c U - per-user static route, o - ODR Gateway of last resort is not set 172.20.0.0/16 is variably subnetted, 6 subnets, 3 masks O 172.20.113.192/26 [110/74] via 172.20.112.1, 00:01:35, C 172.20.112.0/24 is directly connected, Ethernet1 O 172.20.115.0/24 [110/80] via 172.20.112.1, 00:01:35, Et I 172.20.110.0/24 [100/1600] via 172.20.111.1, 00:00:33, C 172.20.111.0/24 is directly connected, Ethernet0 O 172.20.114.48/28 [110/74] via 172.20.112.1, 00:01:35, E Paige# Example 11-10 Only the OSPF-learned routes with a 24-bit mask are successfully redistributed into the IGRP domain, which is also using a 24-bit mask Paige#debug ip igrp transactions Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] U/D (Up/Down) bit UDP (User Datagram Protocol) ACLs header information unequal-cost load balancing, EIGRP configuration unequal-cost load sharing unicast addresses global addresses updates, configuring unreachable networks unspecified addresses Update process (IS-IS) update timers, RIP updates EIGRP invalid, sources of minimizing impact of nonperiodic RIP uptime Urgent Pointer field, TCP User Datagram Protocol [See UDP] Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] variables, RIP_JITTER variance command verifying EIGRP stub router configuration Version field RIP RIPv2 versions of IP viewing IS-IS link-state database IS-IS neighbor table virtual links 2nd configuring IS-IS support OSPF, configuring VLSM (variable-length subnet masking) and RIPv2 routing troubleshooting Index [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] which-route command wide metrics Window Size field, TCP header windowing, TCP ... 19 2 .16 8 .14 7.56 19 2 .16 8 .14 7.6by4xt" >19 2 .16 8 .14 7.56 10 1 011 11 = 19 2 .16 8 .14 7 .10 0 010 010 011 10 011 011 tssp;= 19 2 .16 8 .14 7 .15 4 11 00000 010 1 010 0 010 010 0s8 .14 7 .17 6 (s3" an>000 = 19 2 .16 8 .14 7. 216 ... 11 11so-8859 -1" > 19 2 .16 8 .14 7.5Y1rEC 0 010 0 010 01n="top"> 11 00000 010 1 010 0 010 010 011 192 .16 8 .14 7 padding="0"> 19 2 .16 8 .14 7 padding="0"> 11 11so-8859 -1" >