COMP08084 2012 Implementing Advanced Switching

General Details

Full Title
Implementing Advanced Switching
Transcript Title
Networking 401
Code
COMP08084
Attendance
N/A %
Subject Area
COMP - Computing
Department
COMP - Computing & Creative Practices
Level
08 - NFQ Level 8
Credit
05 - 05 Credits
Duration
Semester
Fee
Start Term
2012 - Full Academic Year 2012-13
End Term
9999 - The End of Time
Author(s)
Paul Flynn, Fiona Mitchell
Programme Membership
SG_KSYSN_K08 201200 Bachelor of Science (Honours) in Systems & Networking L8 SG_KCMPT_K08 201300 Bachelor of Science (Honours) in Computing SG_KSYSN_K08 201700 Bachelor of Science (Honours) in Systems & Networking L8
Description

This module provides the student with the knowledge and skills necessary to to plan, configure, secure and verify the implementation of complex enterprise switching solutions using Cisco's Campus Enterprise Architecture. 

Learning Outcomes

On completion of this module the learner will/should be able to;

1.

Evaluate a campus network in order to design a reliable, scalable network

2.

Configure, verify and troubleshoot switches using VTP, STP, Link aggregation

3.

Assess a switched network in order to determine and implement appropriate security features.

Module Assessment Strategies

Continuous assessment will take place in a laboratory environment employing simulation techniques as well as hands on testing using approved industry standard equipment

Indicative Syllabus

Analyzing the Cisco Enterprise Campus Architecture

  • Standards, Campus Designs, Legacy Campus Designs, Hierarchical Models for Campus Design
  • Impact of Multilayer Switches on Network Design - L2, L3 switches, L4, L7 switching
  • Campus Network Traffic Types - Peer-to-Peer Applications, Client/Server Applications
  • Overview of the SONA and Borderless Networks
  • Enterprise Campus Design - Access Layer, Distribution Layer, Core Layer
  • PPDIOO Lifecycle Approach to Network Design and Implementation 37

Implementing VLANs in Campus Networks

  1. End-to-End VLAN, Local VLAN
  2. Planning VLAN Implementation
  3. Configuring, verify and troubleshoot VANs - ranges
  4. Trunking in Cisco Campus Network - 802.1Q, ISL
  5. VTP -  Pruning, versions, message type, advertisements, authentication
  6. Private VLANs - Port Types
  7. Link Aggregation with EtherChannel - PAgP and LACP Protocols, load Balancing Options

Implementing Spanning Tree

  • Spanning Tree Protocol Basics - STP Operations, portfast, recommended practices and defaults
  • Rapid Spanning Tree Protocol - Port States, Port Roles, Transition to Forwarding, Topology Change Mechanism
  • Per VLAN Spanning Tree + - Bridge Identifier, Compatibility with 802.1D
  • Multiple Spanning Tree - Regions, Extended System ID for MST,
  • Enhancements - BPDU Guard, BPDU Filtering, Root Guard, Preventing Loops and Black Holes, Loop Guard, 
  • UDLD - Comparison Between Aggressive Mode UDLD and Loop Guard, Flex Links
  • Potential STP Problems - Duplex Mismatch, Unidirectional Link Failure, Frame Corruption, Resource Errors, PortFast Configuration Error
  • Troubleshooting Methodology - Develop a Plan, Isolate the Cause and Correct an STP Problem, Document Findings

 

Implementing Inter-VLAN Routing

  • Using an External Router (Router-on-a-Stick) and Switch Virtual Interfaces
  • Routing with Routed Ports - Advantage and Disadvantages
  • L2 EtherChannel Versus L3 EtherChannel
  • Configuring, verify, troubleshoot Inter-VLAN Routing - Implementation Planning, SVI Autostate, Multilayer Switch, EtherChannel, Routing Protocol,
  • DHCP - Operation, DHCP Relay, configure, verify and troubleshoot
  • Deploying CEF-Based Multilayer Switching - Concepts, Layer 3 Switch Processing, CAM and TCAM, Distributed Hardware Forwarding
  • Cisco Switching Methods - Route Caching, Topology-Based Switching, CEF Processing, Operation and Use of TCAM, CEF Modes of Operation, Address Resolution Protocol Throttling, Load sharing

Implementing High Availability and Redundancy in a Campus Network

  • Understanding High Availability - Components, Redundancy, 
  • Resiliencey for High Availability - Network-Level Resiliency, High Availability and Failover Times, 
  • Provide Alternate Paths
  • Avoid - Too much Redundancy, Single Point of Failure
  • Implementing Network Monitoring,
  • Network Management Overview - Syslog, SNMP, IP Service Level Agreement
  • Hot Standby Router Protocol (HSRP) - States, State Transition, Active Router and STP
  • Configure HSRP - Priority and Preempt, Authentication, Timers, Interface + Object Tracking, Groups, Monitoring
  • Virtual Router Redundancy Protocol - Operation, Transition Process, Configuring VRRP
  • Gateway Load Balancing Protocol - Functions, Features, Operations, Interface Tracking
  • Cisco IOS Server Load Balancing - Modes of Operation, Server Farm, Virtual Servers

Securing the Campus Infrastructure

  • Attacks - Rogue Devices, Layer 2 Attacks, MAC Layer Attack, MAC Flooding Attacks, Port Security
  • Understnading and preventing VLAN Attacks - VLAN Hopping, VLAN Access Control Lists
  • Understanding and preventing Spoofing Attacks - DHCP Spoofing + Snooping, ARP Spoofing, IP Spoofing and IP Source Guard
  • Securing Network Switches - Neighbor discovery protocols - CDP, LLDP
  • Securing Switch Access - Telnet, SSH, VTY ACLs, HTTP Secure Server, (AAA), Port-Based Authentication
  • Switch Security Considerations - Security Policies, Strong System Passwords, Restricting Management Access Access to the Console, vty Lines, Warning Banners, Disabling Unneeded or Unused Services, Disabling the Integrated HTTP Daemon, Basic System Logging, Securing SNMP
  • Monitoring Performance with SPAN, VSPAN, RSPAN, ERSPAN, VACL

Coursework & Assessment Breakdown

Coursework & Continuous Assessment
50 %
End of Semester / Year Formal Exam
50 %

Coursework Assessment

Title Type Form Percent Week Learning Outcomes Assessed
1 Written Report Evaluating Network Design Needs Continuous Assessment UNKNOWN 25 % Week 5 1
2 Continuous Assessment Implementing a switch using VTP, STP, Etherchannel and Security Features Continuous Assessment UNKNOWN 25 % Week 12 2,3
             

End of Semester / Year Assessment

Title Type Form Percent Week Learning Outcomes Assessed
1 Practical Evaluation Case study to Plan, Design and Implement a secure, scablable switched network Final Exam UNKNOWN 50 % End of Term 1,2,3
             
             

Full Time Mode Workload


Type Location Description Hours Frequency Avg Workload
Lecture Flat Classroom Theoretical Aspects of Course 1 Weekly 1.00
Laboratory Practical Computer Laboratory Problem Based Learning 2 Weekly 2.00
Total Full Time Average Weekly Learner Contact Time 3.00 Hours

Module Resources

Non ISBN Literary Resources

Implementing Cisco IP Switched Networks (SWITCH) Foundation Learning Guide: Foundation learning for SWITCH 642-813

  • By Richard Froom, Balaji Sivasubramanian, Erum Frahim
  • Published by Cisco Press
  • Published: Jun 21, 2010
  • Edition: 1st
  • ISBN-10: 1-58705-884-7
  • ISBN-13: 978-1-58705-884-4

CCNP SWITCH Portable Command Guide

  • By Scott Empson, Hans Roth
  • Published by Cisco Press
  • Published: Mar 26, 2010
  • Edition: 1st
  • ISBN-10: 1-58720-248-4
  • ISBN-13: 978-1-58720-248-3
Other Resources

IT Sligo NetLab Account

Simulation Software (GNS3)

Additional Information

None