Cart | Client Login | About Us | FAQ | Contact Us | CCIE Resources | Refer CCIE students & Get Paid
Call 86-136-2222-6316 | Chat with a Training Advisor
Home > ccie resources > Notifications

Implementing a Network Security Policy

After a security policy has been defined, the next step is implementing it. Implementing a security policy is not a simple matter. It involves technical as well as nontechnical aspects. Although it is challenging enough to find the correct equipment that can work together and implement the security policy in its true spirit, coming up with a design that is workable for all parties concerned is equally challenging. Here are some points you need to keep in mind before you begi..

Optional EIGRP Commands over WANs

There are EIGRP design and configuration issues concerning WANs. Here you must deal with limited capacity to a greater degree than at other points in the network. Furthermore, routing updates and data transmissions compete for that limited space.  EIGRP is unique in that it restricts its use of bandwidth. By default it uses no more than half the link capacity, which is superior to the scant consideration shown by every other routing protocol. Although the default setti..

Configure the Private VLANs

To configure a private VLAN, begin by defining any secondary VLANs that are needed for isolation using the following configuration commands: Switch(config)# vlan vlan-id Switch(config-vlan)# private-vlan {isolated | community} The secondary VLAN can be an isolated VLAN (no connectivity between isolated ports) or a community VLAN (connectivity between member ports). Now define the primary VLAN that will provide the underlying private VLAN connectivity using the following c..

VTP Pruning

Recall that, by definition, a switch must forward broadcast frames out all available ports in the broadcast domain because broadcasts are destined everywhere there is a listener. Unless forwarded by more intelligent means, multicast frames follow the same pattern. In addition, frames destined for an address that the switch has not yet learned or has forgotten (theMAC address has aged out of the address table) must be forwarded out all ports in an attempt to find the destinati..

Configuring Bidirectional PIM

To use Bidirectional PIM, you must configure all of the routers in your network to support this method of building multicast forwarding trees. The RP configuration looks like this: Router-RP1#configure terminal Enter configuration commands, one per line.  End with CNTL/Z. Router-RP1(config)#ip multicast-routing Router-RP1(config)#ip pim bidir-enable Router-RP1(config)#ip pim rp-address 192.168.12.1 bidir Router-RP1(config)#ip pim rp-candidate Loopback0 group-list ..

Contact Us

86-136-2222-6316
CALL ME NOW

Hot Search Tags

Internet Routing Architecture  Measured Round-Trip Time  Books Study  Abilities of TCP/IP  EIGRP Log  Check Cisco Certification  Layer 3 Router  Testing Dumps  Redistribution  CCIE Written Forum  IGRP Behavior  Router Networking  OSX IPsec  Cisco Free Downloads  Default IP Route 

© 2011 CathaySchool, an ANDA Technology Group company, All Rights ReservedPrivacy Policy | Refund Policy | Disclaimer | Sitemap | Resources Tags