TSV5 1 - SLA) Just asked to match ip spa statistics sample.

IP sla without start time configured and R9 without ip spa responder tcp-connect configuration. Just succ ess and no errors. 2 - BGP Ticket) R12 without next hop self. 3 - Multilink) Wrong chap hostname and no nat configured. 4 - IPV6) Tunnel Source and Destination Misconfig. No ospfv3 configuration in Tu nnel 5- DNS) Ironically. The only problem in this ticket was a lack of an ACE in the ACL configured in the interface connected to R20. Permited icmp from host to hos t and all was ok. No issues with ZBF or DNS Server! 6 - FR) Changed CIR and applied service policy to map class. 7 - Multicast) Wrong MSDP Peer. Changed R24 dr-priority in the interface connect ed to R28 8 - Internet) PBR on R5. Changed ACL to Deny instead of permit. Removed the summ aries in bgp. 9 - MPLS). R6 and R7 without loopback announced in OSPF. R4 had an area range fo r R8's Loopback. Interfaces to R9 and R10 without mpls enabled. 10 - MST) Cant touch SW6. Spanning-tree MST 1 blocked in SW6. Changed MST1 port priority in SW5 interface to SW6 --------------------------------------------16/8 ts5 -Ip sla: R14 missing ip sla schedule, r9 missing ip sla respinder tcp-connect -BGP: r12 missing next-hop-self -PPP: wrong username -MPLS: vpnv4 btw r8/r9/r10, r8/6/7 missing lo0 in igp, R4 mpls mtu, area-range 1 00.0.0.0 Tracer mpls command not available -ipv6: no tunnel ip and missing ipv ospf are 0 -DNS: ZBF was ok, R20 no ip domain lookup was there,R22 wrong host config, sw4 a cl -FR QoS: wrong cir, service-policy missing under flass-map-MSDP: R28 was source, missing ip multicast-routing, RP listener. Worked. Checked again later on,didnt work anymore, configured R28 static rp address, wor ked. -Internet: SW2 vlan 11 not advertised, R2/3 removed summary-only, R5 pbr. -MST: Not touch SW6, blocked vlan 56 on et 1/3, configured SW5 port-prio.

--------------------------------------------------------------------------------------Faults i encountered on TS5 Here are the faults as far as i can remember. 1. Multilink : Only ppp chap hostname was missing. 2. IP SLA : reversed source/destination (I couldnt get 0 fails, as after 5 min 1 or 2 would fail.) But i dont think we can have 20,000 succes and 0 fails on the TS network . 3. Internet : removed summary-only on R2 and R3, shut Lo10 on R13 4. BGP : wrong cluster-id on R4 5. MPLS : no ip cef of R6, R7, R8, incorrect mtu on R4 facing to R9 and R10, mpl s tdp configured on R8(changed to ldp) 6. MST : changed vtp domain and password. Added vlan 100 and removed vlan 100. 7. FR Qos : changed cir to 100,000, added frame-relay traffic shaping on interfa ce. 8. Multicast : added autorp listener on all, multicast-routing on r28, permitted access list 9. ipv6 : On both (routing dynamic, tunnel mode to ipv6ip, tunnel-source ) 10. DNS : ip domain-lookup and ip name-server on R20 Please beware, that sometimes the tickets are not in order, so if you cant fix s omething, move on, as you will fix something later, on other tickets which will in return solve the earlier one. -------------------------------------------------------------------I passed my exam 2 days a go and i got TS5/K6 (Old) in exam. Below is my feedbac k on TS5 1) IP SLA --> IP SLA config on R14 was wrong. Need to match Successes. 2) BGP --> next-hop-self missing on R12. 3) PPP Multilink --> Authentication was missing on R25. Added username and passw ord on R26. 4) IPV6 Phone --> Tunnel config was missing on R11 & R13. OSPFv3 configured on t unnel interface. "default" keyword was missing under R19 interface. 5) DNS --> Requirement was to match only ping output. Domain-lookup was missing R20. ACL entry was missing in SW4. Added host to host ACL entry. No issue with ZBF. 6) FR QOS --> CIR was wrongly configured and defined service policy under map cl ass. 7) MSDP --> MSDP peering on R23 was wrongly configured. Multicast boundary on R1 3 & R23. IP multicast-routing was missing on few routers. Set DR priority on R24 interface facing FR network. 8) Internet --> This ticket was comparatively easy. Network 10.1.1.0/24 was not advertise in OSPF on SW1. Access-list was permitting 4.2.2.2 on R5, denied it as it was called in route-map with next-hop set to null0. Summery-only statements

on R2&R3. 9) MPLS --> Loopback address was wrongly configured under ospf in R8,R6. IP cef was missing R7,R8. Removed range command under ospf for 100.8.8.8/24 network in R4. "MPLS IP" was missing under interfaces facing R9 & R10 on R4. I got ping res ponse as soon as i made these changes so did not check config in R9&R10. 10) MST --> You cannot make any changes on SW6. Requirement to match "trace 192 .168.6.100 source vlan 5". Changed port-priority for MST instance on SW5. No pa ssive interface for VLAN 5 under ospf process. No issue withe VTP. ------------------------------------------------------Troubleshooting I was ready for any TS. I mastered all the topologies and technologies, the traf fic flow, read all TS experiences of passers/failers in the forum, done all vers ions of web iou many times. With all these studying, memorizing the faults was a side effect 1-IP SLA (solved) R14 : Source and destination ip addresses were swapped. Also re-ordered the threshold,timeout and frequency. R9 : Sla responder was not configured at all. Question said make sure successes were increasing. But in the example output it was like 13000 success 0 fail. Played with time values, I succeeded to make less fails but I think the important thing is increase of success. 2-BGP (solved) R4 same cluster id with R5. Fixed it and ping from R14 was successful. 3-PPP (solved) No NAT output to match. Question only asked telnet from R27 to work. R25 had wrong username. Fixed and telnet worked. 4-IPv6 Phone (solved) R11 and R13 had some missing tunnel parameters like source,dest. Fixed and p ing was ok. 5-DNS (solved) R20 missing domain-lookup and ip name-server commands. Fixed and dns resolut ion was ok. 6-FRAME-RELAY QOS (solved) Fr traffic-shaping missing under serial interface Service-policy missing under fr class, made cir 100000. There was no bc valu e and I didnt add it since ping and my output was exactly same like cisco s. 7-MSDP (solved) All routers were missing ip pim autorp listener. R28 missing multicast-routing. R13 and R23 had acl denying mcast traffic.

R13 missing ip pim sparse-mode in one of interfaces. 8-MST (solved) Passive interface vl56. Vtp pass different. Fixed and trace was like output. 9-INTERNET (solved) R2 had summary-only for 10.x.x.x prefix. Removed sum-only keyword. R13 duplicate ip. Shut it down. Ping and trace was ok. 10-MPLS (solved) R6, R7, R8 lo0 ip not advertised therefore no ldp neighborship. R4 interfaces facing R9 and R10 had mpls mtu. Fixed and ping was ok.

--------------------------------------------------------------------------------------All faults are discussed here on UD s 503 & 504 Threads Q1 IP SLA between R14 E0/0 and R9 loopback0 only one fault ip sla schedule 9 life forever start now , not configured at all on R14 Q2 BGP only one fault bgp cluster id as configured same on both R4 and R5 ,Changed R4 , Q3 PPP Multilink NAT was configured correctly and no need to mach NAT translation Only one fault , Authentication issue Username and passwords was missing in on R26 Q4 IPv6 Phone 2 faults Incorrect tunnel mode on both R11&R3 tunnels Ospfv3 area missed form R11 Q5 DNS 2 faults IP name-server missing on R20 Ip host entry missing on R22 Q6 Frame-Relay QoS 2 faults Set CIR to 96000 but not matched output exactly , so changed to 100000 , the it was ok Policy-map was not applied on map-class

Q7 MSDP Ip multicast-routing missing on R28 Missing ip pim sparse on SW2/R13/R24 Q8 IGP Routing R2 and R3 remove d the key-word summary-only in the prefix 10.0.0.0 255.0.0.0 R5 has a route-map set interface null 0 , removed the set Q9 MPLS 2 faults R7 and R6 loopbacks were not advertised in OSPF removed summary route 100.8.0.0 255.255.0.0 from R4 Q10 MST Only 1 fault changed the priority value to 192 on E2/2 on Sw5 ---------------------------------------------------------------------------------------------First lets discuss about the TS 1. IP SLA : Issue was with the the source and destination. But i found that t here are some failures as well along with the success counters. i increased the timeout to 3000 and works fine. But be careful while playing with these values. Please monitor the values for a while before confirming this. I think it will be ok even if we leave with the failures as the only requirement is that the succe ss should increase. 2. BGP : Only issue with the bgp router id of R4. 3. Multilink : Username was not there . Added the username and password. NAT was ok. 4. IPV6 Phone : Issue was with with the tunnel configuration. source and destin ation, tunnel mode, routing dynamic etc. No access list. 5. DNS : ip name server and domain look up was missing in R20. 6. Frame-Relay QoS : service policy was not applied in the map-class and the fr ame-relay traffic shaping was missing in the serial interface. set the cir rate to match the output. there was three classes, one for voice, one for data and on e for mission critical. 7. MSDP : Couldn't solve the ticket. In R28, multicasting and ip pim sparse mode was not enabled. In SW2 pim sparse mode was not enabled. MSDP was ok. auto rp l istener was not configured in any of the devices. Not sure its a fault or not. I n R13 & R23 there was access list blocking 224.0.1.39 and 224.0.1.40. 8. Internet : shut down the loopback interface in R13 as its having the duplicat e address . Removed the summary-only keyword from R2 for the 10.0.0.0/8 network. Question was asked to match the ping and traceroute as well. 9. MPLS : VPNv4 was only configured in R8, R9 & R10. R8 was the route-reflector and route-reflector client was not configured for R9 & R10 in R8. IP cef was mi ssing in R6 & R7. 10. MST : vtp password was wrong.

------------------------------------------------------------------------------------------------------------TS5 1. IPSLA - missing "ip sla responder tcp-connect" command in R9 2. DNS - missing "per icmp any any" and "per tcp any any" under SW4's access-lis t 3. PPP - wrong username under R25 4. FRTS - missing "frame-relay cir 1000" and "service-policy output POLICY" in R 25 5. BGP - missing "neighbour 100.12.12.12 route-reflector-client" in R5 6. MSDP - In R23, corrected to "ip msdp peer 100.5.5.5 connect-source loopback 0 remote-as 65001" 7. IPV6 - missing "ipv6 ospf x area x" in both R11 and R13 tunnel int 8. MST - added "spanning-tree mst 1 port-priority 0" in SW5 int e3/1 9. Internet - removed "set interface null 0" in R5 and re-added aggregate routes without "summary-only" 10. MPLS - couldn't solve

------------------------------------TS5 IOU in the real lab behaves slightly different from the WebIOU we have here. It was slower than what I am used to, but not extremely slow as has been reported b y some test takers. It just took some more time to propagate routes etc, than wh at I am used to. IP SLA: Ports reversed on R14. You Only had to match output of the statistics c ommand. No tcp-connect configuration on R9. The success counter increased witho ut this, but there were also some failures, so I added it. BGP: Same cluster-id on R4 and R5. The route used long time to propagate from R1 5 to R14 so I was very concerned here as I could not find anything wrong, but I skipped to next ticket, and when I got back later on, everything was fine. PPP Multilink: Wrong username on R25. I think that NAT on r26 was not static, b ut anyway it was working, so nothing to do there and it showed translations on R 26. The task did not show any NAT output to match. IPv6 Phone: Removed traffic-eng tunnel on both sides of tunnel and added source lo0. The client did not show a default route in sh ipv6 route. Added autoconfig default, bounced the interface etc, still no default route. However, the ping from R19 works. This is different from what we have in WebIOU, but it might be the way some clients behave.... DNS: Supposed to be easy, but... Added domain-lookup and name server on R20. Th en it looked like R20 started to use R21, but still got messages "Unrecognized h ost or address, or protocol not running." Checked the firewall on R21, it had pa s both directions on lots of protocol. Checked R22, seemed fine, checked statist ics, and it showed that it answered the requests. Removed FW from interfaces on R21, still the same problem, so I enabled it again. Later in the lab I returne d to this question, and in the end booted R20, and then it started to use the DN S responses instead of giving the error message. Frame-Relay QOS: R25: Added frame traffic-shaping, added service policy to map-c lass, increased cir to 100000. The output you should match had slightly higher v alues than in the workbook. There were more class-maps on R25, but nothing of im portance.

MSDP: Missing pim on interface on R13 towards R23. I also added multicast-routin g on R28, ip pim nbma-mode on all routers in the FR cloud, and ip autorp listene r on some routers, but I don't think all of it was really needed. There were mu lticast boundary lists on R13 and R23, but they did not break anything, so I did not touch them. IGP routing: Removed summary only on BGP aggregate on R2. R13 had loopback with R32 interface. ip ospf shutdown was not supported, so I made the loopback addre ss with a /16 mask and used ip ospf network point-to-point. MPLS: Missing cef on R6, R7 (and R8? don't remember). R8 had tdp. MST: Requirement: do not touch SW6. Changed vtp password on SW5. Added vlan 2 an d removed to increase VTP rev. -----------------------------------------------1. Multilink : Only ppp chap hostname was missing. 2. IP SLA : reversed source/destination (I couldnt get 0 fails, as after 5 min 1 or 2 would fail.) But i dont think we can have 20,000 succes and 0 fails on the TS network . 3. Internet : removed summary-only on R2 and R3, shut Lo10 on R13 4. BGP : wrong cluster-id on R4 5. MPLS : no ip cef of R6, R7, R8, incorrect mtu on R4 facing to R9 and R10, mpl s tdp configured on R8(changed to ldp) 6. MST : changed vtp domain and password. Added vlan 100 and removed vlan 100. 7. FR Qos : changed cir to 100,000, added frame-relay traffic shaping on interfa ce. 8. Multicast : added autorp listener on all, multicast-routing on r28, permitted access list 9. ipv6 : On both (routing dynamic, tunnel mode to ipv6ip, tunnel-source ) 10. DNS : ip domain-lookup and ip name server on R20 -------------------------------------------------ts5 -Ip sla: R14 missing ip sla schedule, r9 missing ip sla respinder tcp-connect .. . -BGP: r12 missing next-hop-self -PPP: wrong username -MPLS: vpnv4 btw r8/r9/r10, r8/6/7 missing lo0 in igp, R4 mpls mtu, area-range 1 00.0.0.0 Tracer mpls command not available -ipv6: no tunnel ip and missing ipv ospf are 0 -DNS: ZBF was ok, R20 no ip domain lookup was there,R22 wrong host config, sw4 a cl -FR QoS: wrong cir, service-policy missing under flass-map -MSDP: R28 was source, missing ip multicast-routing, RP listener. Worked. Checked again later on,didnt work anymore, configured R28 static rp address, wor ked. -Internet: SW2 vlan 11 not advertised, R2/3 removed summary-only, R5 pbr. -MST: Not touch SW6, blocked vlan 56 on et 1/3, configured SW5 port-prio. --------------------------------------------------S-5 27_Aug

IP SLA: schedule was not configured in R14, responder tcp-connect not in R9 Time out was 3000 and freq 10 , i increased into 5000 60. Internet: Removed summery-only in R2,R3 for 100.0.0.0/8 and 10.0.0.0/8 not remov ed for 133.0.0.0/8 PBR in R5 , I denied ACL vlan 11 not advertised in ospf Multilink: username not in R26. BGP: next-hop self not int R12, but R5 showing route as valid ,But its not send ing to R4, It solved after next-hop self in R12. IPV6 tunnel: Tunnel config issues, auto-config "Default" key is missing in IPv6 phone. Multicast: MSDP peer R5 and R23 with loop0 R5 loo0 was 100.5.5.5 , R23 loo0 was 193.23.23.23 , R13 Blocking multicast traffic with acl. R28 was not learning RP announce msg, I add auto-rp listener ,even though not working, Then I checked all config, finally I changed ip pim sparse-mode into ip pim sparse-dense mode ,then R28 g ot rp msg, ping worked properly. DNS: 2 ZBFW configured int R21 both INBOUND and OUTBOUND with inspect. problem was it was configured on wrong interfaces. SW 4 acl permiting eigrp and telnet but question asking for ping so I add icm p any any. MPLS: All loopback adverticed in ospf 100.0.0.0 0.0.0.255 ,but int R6,R7 config ured with wrong wc, 100.0.0.0 0.0.255,255. and so I got the route but ping was n ot working, I chaged the network command with currect wildcard mask. no neigh on R9 address-family ipv4 for R8 , I did 't change it. area 0 range on R4. QOS: cir 1000 changed into 96000 policy-map not in frts MST: Trunk blocking vlan 56 ---------------------------------------------26-Aug for TS5 1-ip sla----->wrong ip address ,timeout and freq are mention 2- multilink. wrong authentication 3-qos---->no frame=relay traffic shapping under int and no service policy under map-class .the cir put 100000 , 4-ipv6 --------wrong ip add..5 -dns-----no ip domain lockup and no ip name server , 6-bgp----->cluter id on r5 is wrong.... 7-internet,remove summery add on r3 and r3 and sht the lo that carry same source ip add on r13. 8-mpls ---->mtu on mpls interface on r4 and mpls tdp on r8. 9-layer 2-------------remove pass int vla in ospf and change the vtp. 10==msdp-->cannot solve