What is a Logical Domain Manager (LDM)
A logical Domain Manager listens to multicast messages on a network and keeps track of the MAC addresses being used.
How to identify duplicate MAC adresses and what could prevent it?
Either you will have intermittent connecivity issues on the 2 devices having the same MAC address or one works and the other one doesnt.
Also Wireshark can help.
Port security will prevent it.
What can cause duplicate IP adresses? (3)
- Static assigned IPs
- DHCP configuration issue
- A rogue DHCP server on the network
What is the default lease time of DHCP IPs?
86400 seconds (1day) but can also be more. That can cause adress exhaustion.
What are the 3 typical routing issues & how to prevent them?
Multicast Flooding: Happens when no host is associated with the multicast MAC address inside the CAM table of the switch, causing the multicast traffic to be flooded through the entire LAN or VLAN. / Block multicasting on the port or interface.
Asymmetrical routing: When packets leave through one route and return through another route, which can cause stateful fire walls to block the returning traffic / Put the the firewalls as close as possible to the systems they are protecting.
Missing routes: When theres no route to a specific destination in the routing table. Mostly caused by static routing. / Use show route on a switch or route print on windows.
How to check if STP is enabled on a switch?
show spanning-tree
What is a Hold Down Timer? And how long is it?
Hold down Timers are used by Distance Vector protocols. When they detect a bad/failed route, they are held down for usually 180s, so they cannot be passed to other routers.
What can prevent routing loops besides split horizon and route poisoning?
Distance Vector protocols use a TTL in the packet headers, so they wont go around the network infinitely.
How to show ACL on a switch?
show access-lists
What 3 situations cause firewall related connectivity issues?
- Access to protected ressources from unprotected networks isnt working.
- Access to unprotected ressources from protected networks isnt working
- ACcess to the firewall & its configurations isnt working.
How to approach firewall issues?
Layer 1: Is there a physical connection between firewall and network, is that confirmed by the Activity Light?
Layer 2: Verify communication between router and firewall through ARP and the MAC addresses.
Layer 3: Verify Firewall has valid IP, Subnet Mask & Default Gateway
Layer 3/4: Control the firewalls config and ACLs
What are causes for VLAN issues?
- Devices in the same VLAN have to be in the same subnet
- The device you cant connect to is in another VLAN
- VLANs are enabled but not properly used meaning all traffic defaults back to VLAN 1, creating one giant broadcast domain.
How to troubleshoot DNS client issues.
- Check if only one device has the issue, if yes: check if the right DNS is configured on that device and verify connectivity.
- If DNS can be reached, flush DNS cache of the device or change DNS configuration to another DNS, if that works, troubleshoot the DNS itself.
How to troubleshoot DNS server issues.
- Verify the A and the CNAME records –> nslookup
- Check TTL, if its too high, the cached records could be outdated.
- DNS Latency if DNS server is far away from its users
-
Network Fundamentals20
-
OSI Model23
-
Ports and Protocols20
-
Media and Connectors31
-
Distribution Systems14
-
Wireless Networks25
-
Ethernet Switching28
-
IP Addressing26
-
Routing15
-
Network Services16
-
Wide Area Networks10
-
Cloud and Datacenters20
-
Network Security Fundamentals10
-
Network Attacks12
-
Logical Security13
-
Network Segmentation14
-
Network Monitoring15
-
Orchestration and Automation10
-
Documentation and Processes7
-
Disaster Recovery8
-
Troubleshooting Methodology5
-
Troubleshooting Tools13
-
Troubleshooting Physical Networks22
-
Troubleshooting Wireless Issues12
-
Ports18
-
Extra Questions24
-
Extra Questions 217
-
Troubleshooting Network Services14
-
Extra Questions 317
-
Troubleshooting Performace Issues6
