A quick look at our topology: Let’s set up a summary route for the following loopbacks on R20. R20interface lo104 ip add 10.10.104.1 255.255.255.0interface lo105 ip add 10.10.105.1 255.255.255.0interface lo106 ip add 10.10.106.1 255.255.255.0interface lo107 ip add 10.10.107.1 255.255.255.0 router eigrp 10 network 10.10.104.0 0.0.0.255 network 10.10.105.0 0.0.0.255 network 10.10.106.0 0.0.0.255 network 10.10.107.0 0.0.0.255 SummarizationContinue reading “1.3.f iv Leak-map with summary routes (EIGRP)”
Author Archives: Gregory Leeson
1.3.c Operations (EIGRP)
1.3.c Operations Let’s just burn through a list of commands we need to memorize: Basic Config: router eigrp 100 network 10.1.1.0 0.0.0.255! Disabling auto-summarization isn’t required anymore, it’s the default. no auto-summary 1.2.i Routing protocol authentication Authentication with EIGRP is just MD5 in classic mode. Named Mode lets you do MD5 or SHA-256. Let’s setContinue reading “1.3.c Operations (EIGRP)”
1.3 EIGRP
Reference: https://www.cisco.com/c/en/us/support/docs/ip/enhanced-interior-gateway-routing-protocol-eigrp/16406-eigrp-toc.html 1.3.a Adjacencies I’m going to burn through these topics pretty quick and just touch on unique scenarios. EIGRP has been around forever and there are a million resources that cover it. So for adjacencies, I’m just going to make up a task that will challenge our knowledge of unicast vs. multicast neighbor relationships.Continue reading “1.3 EIGRP”
1.2.j Bidirectional Forwarding Detection
BFD is a critical, CRITICAL, component of SDA and SD-WAN. So it’s worth taking a deep look at it here. References:CiscoIETF The process flow is:1. The routing protocol, OSPF for instance, discovers a neighbor.2. The routing protocol tells the BFD process to start a BFD peering relationship with that same neighbor.3. If a failure occurs,Continue reading “1.2.j Bidirectional Forwarding Detection”
1.2 Routing Concepts
This whole chunk of the blueprint doesn’t really make sense because it’s mostly topics that will be covered under individual routing protocols. The only subsections I’m going to cover under 1.2 are 1.2b. VRF-Lite (covered in a separate post), Policy Based Routing (PBR, which I’ll cover below), and Bidirectional Forwarding Detection (BFD, which I’ll coverContinue reading “1.2 Routing Concepts”
1.2.b VRF-lite
This is a pretty important topic when we get to the DNAC section, so we may as well get it out of the way. For background trivia, the “lite” part means that we’re VRFs without MPLS label imposition or without MP-BGP extensions. And it’s fewer calories. References:MPLS and VPN Architectures, Volume II (Cisco Press) Note:Continue reading “1.2.b VRF-lite”
1.1.d EtherChannel
I’m going to focus on two specific use tasks with EtherChannel. Two trunk ports on a switch connecting to two ports on a router, which will be configured as sub-interfaces. Enable TrustSec on those ports. This will come into play when we get to the Border/Control Plane node on SDA and we want to connectContinue reading “1.1.d EtherChannel”
1.1.c VLAN technologies
Some of these topics are pretty basic, so there’s not much to say about them that hasn’t been said a million times. So I’m only going to call the sections out if there’s something I want to explicitly remember, or if there’s some obscure configuration that could pop up in the lab. 1.1.c i AccessContinue reading “1.1.c VLAN technologies”
2.2.b iii OMP
Overlay Management Protocol Reference: https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/routing/ios-xe-17/routing-book-xe/m-unicast-routing.html Each edge router peers with the vSmart controllers using OMP. OMP is strictly for control traffic, never for data plane traffic. And each WAN Edge router only peers with vSmart controllers, they’ll never peer with another WAN Edge. The OMP routes advertise TLOCs mapped to prefixes. The TLOCS have toContinue reading “2.2.b iii OMP”
Bonus: SDA/SD-WAN Integration
This isn’t really called out on the Enterprise Infrastructure blueprint (unless you count section 2.1.a iii Fabric domains (single-site and multi-site using SD-WAN transit), but I figured it would be something fun to try. It turned out to be a nightmare. First thing, you kick off the connection from DNAC, either under System > SettingsContinue reading “Bonus: SDA/SD-WAN Integration”
Oscorp Labs 