Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống
1
/ 79 trang
THÔNG TIN TÀI LIỆU
Thông tin cơ bản
Định dạng
Số trang
79
Dung lượng
674,42 KB
Nội dung
640-605 640-605 Remote Access 3.0 Study Guide Remote Access 3.0 (Building Cisco Remote Access Networks) Version www.testking.com -1- 640-605 Remote Access 3.0 TABLE OF CONTENTS List of Tables Introduction Cisco Remote Connection Products 1.1 Router Selection Criteria 1.2 Selecting a WAN Connection Type 1.3 Determining the Site Requirements 1.3.1 Central office Installations 1.3.2 Branch Office Installations 1.3.3 Remote Office or Home Office Installations 1.4 Hardware Selection Assembling and Cabling the WAN Components 2.1 Choosing WAN Equipment 2.1.1 Central office Router Selection 2.1.1.1 The 3600 Router Series 2.1.1.2 The 4000 Router Series 2.1.1.3 The AS5X00 Router Series 2.1.1.4 The 7200 Router Series 2.1.2 Branch Office Router Selection 2.1.2.1 The 1600 Router Series 2.1.2.2 The 1700 Router Series 2.1.2.3 The 2500 Router Series 2.1.2.4 The 2600 Router Series 2.1.3 Small Office/Home Office (SOHO) Router Selection 2.1.3.1 The 700 Router Series 2.1.3.2 The 800 Router Series 2.1.3.3 1000 Router Series 2.2 Assembling and Cabling the Equipment 2.2.1 Available Connections 2.2.2 Verifying the Installation 2.2.2.1 Central office Router Verification 2.2.2.2 Branch Office Router Verification 2.2.2.3 SOHO Router Verification Configuring Asynchronous Connections with Modems 3.1 Modem Signaling www.testking.com -2- 640-605 Remote Access 3.0 3.1.1 Data Transfer 3.1.2 Data Flow Control 3.1.3 Modem Control 3.1.4 DTE Call Termination 3.1.5 DCE Call Termination 3.2 Modem Configuration Using Reverse Telnet 3.3 Router Line Numbering 3.4 Basic Asynchronous Configuration 3.4.1 Logical Considerations on the Router 3.4.2 Physical Considerations on the Router 3.5 Configuration of the Attached Modem 3.5.1 Modem Autoconfiguration 3.5.2 The Modem Capabilities Database 3.6 Chat Scripts to Control Modem Connections Configuring PPP and Controlling Network Access 4.1 The Point to Point Protocol (PPP) 4.1.1 PPP Components 4.1.2 PPP LCP 4.1.3 Dedicated and Interactive PPP Sessions 4.2 PPP Options 4.2.1 PPP Authentication 4.2.1.1 Password Authentication Protocol (PAP) 4.2.1.2 Challenge Handshake Authentication Protocol (CHAP) 4.2.2 PPP Callback 4.2.3 PPP Compression 4.2.4 Multilink PPP 4.3 PPP Troubleshooting Integrated Services Digital Network (ISDN) and Dial-onDemand Routing (DDR) 5.1 POTS Versus ISDN 5.2 BRI and PRI 5.3 Basic Rate Interface (BRI) 5.3.1 BRI Protocols 5.3.1.1 ISDN Layer www.testking.com -3- 640-605 Remote Access 3.0 5.3.1.2 ISDN Layer 5.3.1.3 ISDN Layer 5.3.2 ISDN Call Setup and Release 5.3.3 Implementing DDR 5.3.4 Static Route Redistribution 5.3.5 Default Routes 5.3.6 Bandwidth on Demand 5.3.7 Multilink PPP 5.3.7.1 Troubleshooting Multilink PPP 5.4 Primary Rate Interface 5.4.1 ISDN Switch Type 5.4.1.1 T1 Framing 5.4.1.2 E1 Framing 5.4.2 PRI Configuration 5.4.3 PRI Incoming Analog Calls on Digital Modems 5.5 Advanced DDR Operations 5.5.1 Using Dialer Profiles 5.5.2 Rotary Groups 5.5.3 Dial Backup 5.5.3.1 Alternative Backup 5.5.3.2 Dynamic Backup 5.5.3.3 Static Backup 5.5.4 Snapshot Routing Configuring a Cisco 700 Series Router 6.1 Key Features and Functions 6.1.1 Networking 6.1.2 Routing and WAN 6.1.3 ISDN and Telephony 6.2 Cisco 700 Series Router Profiles 6.3 Configuring IP Routing 6.3.1 Profile Configuration Commands 6.3.2 Profile Management Commands 6.4 Routing with the Cisco 700 Series Router 6.5 DHCP 6.5.1 The 700 Series Router as a DHCP Server and Relay Agent X.25 Connections 7.1 The DTE and the DCE www.testking.com -4- 640-605 Remote Access 3.0 7.2 The X.25 Layered Model 7.2.1 The X.25 Layer 7.2.2 The LAPB Layer 7.2.3 The X.25 Physical Layer 7.3 Configuring X.25 7.3.1 Setting the Interface Encapsulation 7.3.2 Configuring the X.121 Address 7.3.3 Mapping the NLHP Address to its X.121 Address 7.3.4 Additional Configuration Options 7.3.4.1 Configuring the Range of Virtual Circuits 7.3.4.2 Configuring the Packet Size 7.3.4.3 Configuring the Window Size 7.3.4.4 Configuring the Window Modulus Frame Relay Connection Controlling Traffic Flow 8.1 Frame Relay Topologies 8.2 Connecting Multiple Sites Through a Single Router Interface 8.3 Frame Relay Configuration 8.3.1 Determining the Interface 8.3.2 Configuring Frame Relay Encapsulation 8.3.3 Configuring Protocol-Specific Parameters 8.3.4 Configuring Frame Relay Characteristics 8.3.5 Verifying Frame Relay Configuration 8.4 Frame Relay Traffic Shaping 8.4.1 Frame Relay Traffic Parameters 8.4.2 FECN and BECN 8.4.3 Using Frame Relay Traffic Shaping 8.4.4 Configuring Frame Relay Traffic Shaping Network Queuing and Compression 9.1 Queuing 9.1.1 First In, First Out (FIFO) 9.1.2 Weighted Fair Queuing (WFQ) 9.1.3 Priority Queuing 9.1.4 Custom Queuing 9.2 Compression 9.2.1 Link Compression 9.2.1.1 STAC 9.2.1.2 Predictor 9.2.2 Payload Compression 9.2.3 TCP Header Compression www.testking.com -5- 640-605 Remote Access 3.0 9.3 Compression Issues 9.4 Configuring Compression 10 Scaling IP Addresses with NAT 10.1 Characteristics of NAT 10.2 Configuring NAT 10.2.1 Configuring Simple Dynamic NAT 10.2.2 Static NAT Configuration 10.2.3 Configuring NAT Overloading 10.2.4 Configuring NAT Overlapping 10.2.5 Configuring NAT TCP Load Distribution 10.2.6 Verification of NAT Translation 10.3 Port Address Translation (PAT) 11 Using AAA to Scale Access Control in an Expanding Network 11.1 Interface Types 11.2 AAA Configuration 11.2.1 Enabling AAA 11.2.2 AAA Authentication 11.2.3 AAA Authorization 11.2.4 AAA Accounting 11.3 Virtual Profiles www.testking.com -6- 640-605 Remote Access 3.0 LIST OF TABLES TABLE 2.1: TABLE 3.1: TABLE 3.2: TABLE 3.3: TABLE 5.1: TABLE 6.1: TABLE 6.2: TABLE 7.1: TABLE 7.2: TABLE 8.1: TABLE 11.1: TABLE 11.2: TABLE 11.3: TABLE 11.4: TABLE 11.5: The 770 Router LEDs Standard EIA/TIA-232 Pin Definitions and Codes Reverse Telnet Cisco Reserved Port Numbers Standard AT Commands T1/E1 Framing and Line Code Options The 700 Series Router Profile Configuration Commands The 700 Series Router Profile Management Commands ITU PAD Specifications The VC Ranges and Commands Frame Relay Traffic Parameters Methods for AAA Login Authentication Methods for Enabling AAA Authentication Methods for Authentication using AAA for ARAP Methods for Authentication using AAA for PPP Methods for Authentication using AAA for NASI www.testking.com -7- 640-605 Remote Access 3.0 Remote Access 3.0 (Building Cisco Remote Access Networks) Exam Code: 640-605 Certifications: Cisco Certified Network Professional (CCNP) Cisco Certified Design Professional (CCDP) Core Core Prerequisites: Cisco CCNA 640-607 - Routing and Switching Certification Exam for the CCNP track or Cisco CCDA 640-861 - Designing for Cisco Internetwork Solutions Exam About This Study Guide This Study Guide is based on the current pool of exam questions for the 640-605 – Remote Access 3.0 exam As such it provides all the information required to pass the Cisco 640-605 exam and is organized around the specific skills that are tested in that exam Thus, the information contained in this Study Guide is specific to the 640-605 exam and does not represent a complete reference work on the subject of Building Cisco Remote Access Networks Topics covered in this Study Guide includes: Specifying and identifying the Cisco products that best meet the WAN connection requirements; Assembling and Cabling the WAN Components; Configuring Asynchronous Connections to a Central Site with Modems; Specifying the commands and procedures necessary to configure an access server for modem connectivity, and for dial out connections; Specifying the commands used to reverse Telnet to the modem and configure the modem for basic asynchronous operations; Specifying the commands and procedures used to set up the modem autoconfiguration feature; Configuring PPP and Controlling Network Access with PAP and CHAP; Specifying the commands and syntax used to configure a PPP connection between the central site and a branch office; Specifying the commands and syntax to configure PAP or CHAP authentication to allow access to a secure site; Configuring Multilink PPP; Specifying the commands used to verify and troubleshoot PPP configuration; Using ISDN and DDR Technologies; Identifying when to use ISDN BRI and PRI services; Identifying the Q.921 and Q.931 signaling and call setup sequences; Specifying the commands used to configure ISDN BRI and PRI; Specifying the commands used to configure DDR; Optimizing the use of DDR Interfaces; Specifying the commands and procedures to configure rotary groups and dialer profiles; Specifying the commands used to verify proper dialer profile or rotary group configuration and troubleshoot an incorrect configuration; Using X.25; Specifying the commands and procedures to configure an X.25 WAN connection between the central office and branch office; Specifying proper X.121 addresses and the commands used to assign them to router interfaces; Specifying the commands and procedures used to verify proper X.25 configuration and troubleshoot incorrect X.25 configuration; Establishing a Dedicated Frame Relay Connection and Control Traffic Flow; Specifying the commands and procedures used to configure a Frame Relay WAN connection between the central office and branch office; Specifying the commands to configure subinterfaces on virtual interfaces to solve split horizon problems; Specifying the commands used to configure Frame Relay traffic shaping; Specifying the commands and procedures used to verify proper Frame Relay configuration and troubleshoot an incorrect www.testking.com -8- 640-605 Remote Access 3.0 configuration; Enabling a Backup Connection; Specifying the procedure and commands used to configure a backup connection that activates upon primary line failure; Specifying the procedure and commands used to configure a backup connection to activate when the primary line reaches a specified threshold; Specifying the procedure and commands used to configure a dialer to function as backup to the primary interface; Managing Network Performance with Queuing and Compression; Identifying queuing protocols that Cisco products support; Determining queuing methods; Specifying the commands to configure weighted-fair, priority and custom queuing; Specifying the commands and procedures used to verify and troubleshoot queuing configuration; Specifying the commands and procedures used to select and implement compression; Scaling IP Addresses with Network Address Translation; Describing how NAT and PAT operate; Specifying the commands and procedures to configure NAT and PAT to allow reuse of registered IP addresses in a private network; Verifying NAT and PAT configuration; Using AAA to Scale Access Control in an Expanding Network; Specifying, recognizing and describing the security features of CiscoSecure and the operation of a CiscoSecure server; Specifying the commands and procedures used to configure a router to access a CiscoSecure server and to use AAA; and Specifying the commands used to configure AAA on a router to control access from remote access clients Intended Audience This Study Guide is targeted specifically at people who wish to take the Cisco 640-605 – Remote Access 3.0 Exam This information in this Study Guide is specific to the exam It is not a complete reference work Although our Study Guides are aimed at new comers to the world of IT, the concepts dealt with in this Study Guide are complex and require an understanding of material provided for the Cisco CCNA 640-607 Routing and Switching Certification Exam or the Cisco CCDA 640-861 - Designing for Cisco Internetwork Solutions Exam Knowledge of CompTIA's Network+ course would also be advantageous Note: There is a fair amount of overlap between this Study Guide and the 640607 Study Guide We would, however not advise skimming over the information that seems familiar as this Study Guide expands on the information in the 640-607 Study Guide How To Use This Study Guide To benefit from this Study Guide we recommend that you: • Although there is a fair amount of overlap between this Study Guide and the 640-607 Study Guide the relevant information from those Study Guides is included in this Study Guide This is thus the only Study Guide you will require to pass the 640-605 exam • Study each chapter carefully until you fully understand the information This will require regular and disciplined work Where possible, attempt to implement the information in a lab setup • Be sure that you have studied and understand the entire Study Guide before you take the exam Note: Remember to pay special attention to these note boxes as they contain important additional information that is specific to the exam Note: The five tables in Section 11 are crucial to the exam Know them well Good luck! www.testking.com -9- 640-605 Remote Access 3.0 Cisco Remote Connection Products There are a number of Cisco products that can be selected for use in the appropriate environment, such as the central office, the branch office, and the SOHO or RO The key is to know where Cisco product families fit The points to consider include: • Local availability of remote access technology and service, such as ISDN and DSL • It is important that the bandwidth handle the client's requirements The traffic patterns and needs define the bandwidth requirement • Cost is one of the final selection criteria for an implementation You must explore all the WAN options available because costs can vary between regions In general, cost is directly related to the bandwidth requirement • Given any installation at any site, the cost of moves, adds, and changes should be factored into the design CiscoWorks is a good choice for management software, but it is not your only choice • The need for backup links and Quality of Service (QoS) are important to reduce downtime • Security through access control is a major consideration because the users are not local Cisco has categorized the locations in which a dial-up situation might be needed as the central office; the branch office; and small office home office (SOHO) and Remote Office (RO) • The Central office should provide room for growth so that remote or branch sites can be added without a wholesale change at the aggregation site or central office Considerations for a central office should include bandwidth requirement of each remote or branch and the additional bandwidth required for future growth The cost of WAN services is also a central office concern because it supplies the bulk of the bandwidth needed for the enterprise In addition, security and access control are other concerns at the central office • The Branch Office is usually smaller than the central office site The branch office considerations involve connecting to the central office while knowing the value/cost ratio of the bandwidth In addition, the availability of the central office connection should be considered Like the central office, costs need to be controlled in the branch office site, but money is not the overriding concern • SOHOs and ROs generally more cost conscious because of the number of the offices in a given situation The small SOHO or RO must have the capability to connect using the WAN service selected and available, but maintaining multiple unlike devices is not a good idea For instance, it is best to use the 1600 family at all remotes sites, including the home sites, even if some sites not need that much power The placement of unneeded power is balanced by the fact that the engineer must maintain only a few configuration plans 1.1 Router Selection Criteria The selection of a hardware product for Remote Access usage is important as the biggest router is not always the best router Once information has been gathered, router selection is easy because knowing what needs to be done and how much has to be done by the router helps you select the right router for the job Generally, the information you must consider to select the appropriate piece of network hardware includes: www.testking.com - 10 - ... www.testking.com -7- 640-605 Remote Access 3.0 Remote Access 3.0 (Building Cisco Remote Access Networks) Exam Code: 640-605 Certifications: Cisco Certified Network Professional (CCNP) Cisco Certified Design... who wish to take the Cisco 640-605 – Remote Access 3.0 Exam This information in this Study Guide is specific to the exam It is not a complete reference work Although our Study Guides are aimed at... this Study Guide and the 640607 Study Guide We would, however not advise skimming over the information that seems familiar as this Study Guide expands on the information in the 640-607 Study Guide