ShrewdBoy Posted September 26, 2022 Share Posted September 26, 2022 Hello Everyone, I'm gonna take Lab attempt soon, anyone wanna discuss? feel free to PM. I've a doubt in 1.15. Link to comment Share on other sites More sharing options...
Amit Posted September 27, 2022 Share Posted September 27, 2022 Please tell your doubt. 1 Link to comment Share on other sites More sharing options...
ShrewdBoy Posted September 29, 2022 Author Share Posted September 29, 2022 Do we really need to use prefix list ? Link to comment Share on other sites More sharing options...
pipe Posted September 30, 2022 Share Posted September 30, 2022 @ShrewdBoycould you post the task requirements and constraints? Link to comment Share on other sites More sharing options...
jonny18 Posted October 3, 2022 Share Posted October 3, 2022 (edited) Just to share my experience , did an attemtp in Brussels last week: The Pass Enterprise Lab dumps posted in the forum i would say its now arround 70-60%. What i found new: Keep in mind this is what i remember, some of this might already be known *L2* - Spanning Tree is now MST with password showing as 32b hex (password hidden command) - VPT V3 for MST *OSPF* - HQ is now in area 1 - DC is in area 0 - DC should only see 1 10.x.x.x/16 route coming from HQ - OSPF Connection between sw101/sw201 should be used as primary and fallback to sw102/sw202 if it fails (don't remember the exact wording) **SP-BGP** - Asking for Peer-groups between R3/R4/R5 with R3 as RR, and asking to minimize the number of of connections **DNA** - Asking to configure tacacs on ise via dna on the vty lines only of some routes **MPLS** - Limit the number of mps lables - Hide the MPLS lables Edited October 3, 2022 by jonny18 7 Link to comment Share on other sites More sharing options...
Hanuman Posted October 4, 2022 Share Posted October 4, 2022 Hi , nice review and i hope you pass the exam. So are they using putty for the lab exam ? Link to comment Share on other sites More sharing options...
jonny18 Posted October 4, 2022 Share Posted October 4, 2022 (edited) No putty, everything is web based , so the whole scenario is embedded in a webpage access via firefox, telnet sessions, lab guide , network scenarios and questions. the only thing outside in the desktop of the pc is a notpad and a calculator The webpage as soon as the lab starts has a counter with the lab time that when it reaches 0 the lab closes automatically, also if you finish the design stage early you can start the configuration stage, but you dont get any extra time for the configuration stage for it, you just get to start the config stage early but that means you also finish early Edited October 4, 2022 by jonny18 3 1 Link to comment Share on other sites More sharing options...
Hanuman Posted October 5, 2022 Share Posted October 5, 2022 thanks for the feedback. Link to comment Share on other sites More sharing options...
ATAM3 Posted October 8, 2022 Share Posted October 8, 2022 Hi @jonny18 how did it go? Did you pass? Also can you expand on this: **DNA** - Asking to configure tacacs on ise via dna on the vty lines only of some routes **MPLS** - Limit the number of mps lables (is it refering to mpls label range?) - Hide the MPLS lables (what do you mean hide mpls label? one label per vrf?) Thanks! Link to comment Share on other sites More sharing options...
jonny18 Posted October 8, 2022 Share Posted October 8, 2022 (edited) no not this time, i was using outdated dumps. on DNA they ask to configure tacacs on some routers but the config is done over DNA, this is basically integrating dna with ise and enabling tacacs there is a cisco doc has a step by step on how to do this **MPLS** the wording is the same as in old dumps on 1.10 point 2 and 3 - dont think is label range related because there was no range mentioned in the question, makes no sense to configure a random label range Belive the answer is as already seen in a few dumps: mpls label mode all-vrfs protocol bgp-vpnv4 per-vrf mpls label mode all-vrfs protocol bgp-vpnv6 per-vrf no mpls ip propagate-ttl forwarded Edited October 8, 2022 by jonny18 1 Link to comment Share on other sites More sharing options...
ATAM3 Posted October 9, 2022 Share Posted October 9, 2022 Thanks for the reply @jonny18. Hopefully next time is a pass! Did you run out of time in the DOO section? About the ISE/TACACs thing, mind sharing that article/link if you have? I find some articles explaining how to integrate DNAC w/ TACACs for user auth but only for users loging into DNAc and I don't think that's what's needed. Link to comment Share on other sites More sharing options...
mmasohel Posted October 9, 2022 Share Posted October 9, 2022 seems to me you have to know ISE certain level to create/authenticate end user & devices to intergrade in DNAC. you can install ISE on EVE-NG and play...should not be that hard 🙂 Link to comment Share on other sites More sharing options...
abbyy Posted October 10, 2022 Share Posted October 10, 2022 On 10/3/2022 at 11:34 PM, jonny18 said: Just to share my experience , did an attemtp in Brussels last week: The Pass Enterprise Lab dumps posted in the forum i would say its now arround 70-60%. What i found new: Keep in mind this is what i remember, some of this might already be known *L2* - Spanning Tree is now MST with password showing as 32b hex (password hidden command) - VPT V3 for MST *OSPF* - HQ is now in area 1 - DC is in area 0 - DC should only see 1 10.x.x.x/16 route coming from HQ - OSPF Connection between sw101/sw201 should be used as primary and fallback to sw102/sw202 if it fails (don't remember the exact wording) **SP-BGP** - Asking for Peer-groups between R3/R4/R5 with R3 as RR, and asking to minimize the number of of connections **DNA** - Asking to configure tacacs on ise via dna on the vty lines only of some routes **MPLS** - Limit the number of mps lables - Hide the MPLS lables Hi Jonny, Would you share the link for "The Pass Enterprise Lab dumps"? Thank you, AB Link to comment Share on other sites More sharing options...
Popular Post CCIEval23 Posted October 11, 2022 Popular Post Share Posted October 11, 2022 as far as i recall, theres nothing to Configure in ISE, but I remember something like, "logon to ISE is available to verify shared secret" this video from labminutes seems like it covers a lot of what is asked on the task. This is the hidden content, please Sign In or Sign Up 66 14 1 1 2 Link to comment Share on other sites More sharing options...
kat Posted October 14, 2022 Share Posted October 14, 2022 On 10/4/2022 at 12:34 AM, jonny18 said: Just to share my experience , did an attemtp in Brussels last week: The Pass Enterprise Lab dumps posted in the forum i would say its now arround 70-60%. What i found new: Keep in mind this is what i remember, some of this might already be known *L2* - Spanning Tree is now MST with password showing as 32b hex (password hidden command) - VPT V3 for MST *OSPF* - HQ is now in area 1 - DC is in area 0 - DC should only see 1 10.x.x.x/16 route coming from HQ - OSPF Connection between sw101/sw201 should be used as primary and fallback to sw102/sw202 if it fails (don't remember the exact wording) **SP-BGP** - Asking for Peer-groups between R3/R4/R5 with R3 as RR, and asking to minimize the number of of connections **DNA** - Asking to configure tacacs on ise via dna on the vty lines only of some routes **MPLS** - Limit the number of mps lables - Hide the MPLS lables Which dumps did you use? Link to comment Share on other sites More sharing options...
visasman Posted January 18, 2023 Share Posted January 18, 2023 (edited) wrong format corrected Edited June 5, 2023 by visasman wrong format corrected 25 3 1 Link to comment Share on other sites More sharing options...
tadeseg Posted January 26, 2023 Share Posted January 26, 2023 Please share us the Pass Enterprise Lab dump Link to comment Share on other sites More sharing options...
visasman Posted January 27, 2023 Share Posted January 27, 2023 (edited) wrong format corrected Edited June 5, 2023 by visasman wrong format corrected 26 10 Link to comment Share on other sites More sharing options...
Amro Posted January 31, 2023 Share Posted January 31, 2023 Dear All, is the CLC LAB practice material valid ? Link to comment Share on other sites More sharing options...
mindset Posted January 31, 2023 Share Posted January 31, 2023 thx Link to comment Share on other sites More sharing options...
bin Posted February 22, 2023 Share Posted February 22, 2023 thx Link to comment Share on other sites More sharing options...
applejoe Posted February 23, 2023 Share Posted February 23, 2023 (edited) On 1/18/2023 at 1:48 AM, visasman said: Folks, I have issue with section 1.15 "Extending connectivity to IaaS". Can anyone shed light where the mistake is! With the configuration below, R11/R3's IPv6 routes are not shown as <*best, but as *valid routes. Since the BGP IPv6 learned routes are not installed in RIB, which resulted host11/12 in HQ IaaS from reaching R30. This is the hidden content, please Sign In or Sign Up ! interface loopback0 ip address 100.255.254.4 255.255.255.255 ! Hey, to come back to your question, I do not have any material but with the given output, but can it be that you need to put the Interface E0/0 on R3 into the VRF? Its the same when you configure the PE device of a MPLS L3 VPN. Thats wrong I say it under another post. And when I am thinking of that, ebgp multihop is right. Edited February 23, 2023 by applejoe 5 Link to comment Share on other sites More sharing options...
Russ Posted May 11, 2023 Share Posted May 11, 2023 May I know if you passed? Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now