+ Reply to Thread
Results 1 to 20 of 20
  1. Senior Member tomaifauchai's Avatar
    Join Date
    Jan 2011
    Location
    Montreal, QC
    Posts
    300

    Certifications
    4xCCNA, CCDA, CCNP,CCIP
    #1

    Default TSHOOT Journey & Preparation

    I'll sit the TSHOOT exam this friday and i built a list of the common problems i could face in the exam and based on the Boson ticketing system, i will share my experience and what strategy i plan to use for the exam.

    Layer 1 (down/down)
    ------------------------------------
    1. sh ip int br (Check for UP/*)
    2. sh int X/X (Check for errdisable)
    3. sh port-s or sh port s
    4. sh run int X/X
    5. Check the other side state
      1. (For frame-relay, compare PVC's VS Interface)

    Layer 2 (up/down)
    -----------------------------------------------------
    1. sh vlan br
      1. Access VLAN's in right slot
      2. Trunk interfaces transparent
    2. sh int trunk
      1. Allowed, pruned, active
    3. sh run int X/X
      1. Port Security
      2. PACL (Mac access-lists)
      3. Encapsulation & Switchport mode
      4. Frame-relay
    4. sh ether br & sh run
      1. Check for etherchannel configuration
      2. Check for negotiation and interface assignment

    Layer 3 (up/up)
    -----------------------------------------------------
    1. Combination of PING/Traceroute
    2. sh ip route
    3. Check VLAN access-map and ip access-lists
    4. Check ip routing is enabled for L3 switches

    Routing problems (EIGRP)
    ----------------------------------------------------
    1. sh ip eigrp neigh
    2. sh run int X/X
      1. Check for weird summary
      2. Check for Authentication parameters
    3. sh run | inc router
      1. Check for AS number
      2. Check for auto-summary
      3. Check for all networks
      4. Check for redistribute static
      5. Check for metric weights
      6. Check if default-metric is present if redistributing OSPF

    Routing problems (OSPFv2)
    --------------------------------------------------
    1. sh ip ospf neigh
    2. sh run int X/X
      1. Check for weird hello interval
      2. Check for Authentication parameters
    3. sh run | inc router
      1. Check for areas number
      2. Check for area type mismatch
      3. Check for all networks
      4. Check for default inf orig always
      5. Check for "subnets" keyword if redistributing EIGRP

    Routing problems (BGP)
    --------------------------------------------------
    1. Check neighbor IP and remote-as
    2. Check network statement match an existing route in the routing table

    Routing problems (OSPFv3)
    --------------------------------------------------
    1. Check ipv6 unicast-routing is enabled
    2. Check ipv6 interface declarations of both sides

    Redistribution
    --------------------------------------------------
    1. Check EIGRP default-metric statement
    2. Check OSPF subnets keyword
    3. Check route-map name
    4. Check match statement for correct ACL
    5. Check ACL statements
    6. Implicit permit statement of a route-map isn't important

    HSRP
    --------------------------------------------------
    1. Check standby group & ip
    2. Check priority VS higher IP address (default 100)
    3. Check prempt
    4. Check track decrement (default 10)

    NAT
    --------------------------------------------------
    1. Check ip nat inside/outside for correct interfaces
    2. Check ip nat pool
    3. Check nat access-list
    4. Check for overload missing

    GRE Tunnel
    --------------------------------------------------
    1. Default mode is gre ip
    2. Check tunnel source match egress ipv4 interface
    3. Check tunnel dest match ipv4 neighbor
    4. Check neighbor tunnel mode
    5. Check for ipv6 ip address applied to tunnel interface

    DHCP
    -------------------------------------------------
    1. Check SVI's or Routed ports helper-address
    2. Check excluded-address pool
    3. Check network and default-router params


    The hint i found to memorize the logging severity
    -------------------------------------------
    1. Logging messages shortcut from low-to-high severity (DIN-WECA-E)
      1. Emergencies
      2. Alerts
      3. Critical
      4. Errors
      5. Warnings
      6. Notifications
      7. Informational
      8. Debugging


    I hope i'm not missing much and maybe this could be helpful for someone else. If you have something i could add to this pattern, please post it !
    I wonder if i can abort the tickets in the exam ?
    So when stuck, i guess it is a bit helpful to verify what you suspect being the problem from another ticket configuration.

    If so, i think i will take this approach mixed to bottom-up method from client pc to L3 Switches and divide-and-conquer from L3 Switches through server.


    Cheers
    Last edited by tomaifauchai; 03-13-2011 at 07:45 AM.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member Chris_'s Avatar
    Join Date
    Feb 2011
    Location
    UK
    Posts
    325

    Certifications
    CCNP, CCNA, CCNA Security, CCNA Voice, JNCIA-JUNOS
    #2
    You can abort the tickets in the exam. Kevin Wallace was talking about it ina web cast. So, once you narrow it down to a device and think you know the problem, you can abort, then check the 'good' config on another ticket. Cisco have allowed this as they see checking baseline configs as a valid troueshooting method.
    I see google as a valid Troubleshooting method, wonder if it's allowed
    Reply With Quote Quote  

  4. Member
    Join Date
    Feb 2010
    Posts
    80

    Certifications
    CCNA, CCNA Security, CCDA, CCNP, CCDP
    #3
    I'm taking the exam tomorrow, check out this

    TSHOOT Demo Item
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Apr 2009
    Location
    Sheffield, UK
    Posts
    502

    Certifications
    CC(NA-IP-NP), JNCIA-JUNOS, JNCIS-ENT, BCNE
    #4
    You may be overthinking it a bit to be honest.

    My strategy was simple, if the question says "the user can't reach the web server", just ping from each device starting at the web server, and when the pings dont work, then its either that device or the device upstream that is causing the problem.

    If you've got the knowledge from the routing and switching exams and labbed them up enough, the TSHOOT should be a piece of cake.
    Reply With Quote Quote  

  6. Senior Member chmorin's Avatar
    Join Date
    Feb 2010
    Location
    Texas
    Posts
    1,443

    Certifications
    CCNP:Voice, CCNA:V(IIUC), CCNA, CCENT, Security +, Network +, A+,CIW
    #5
    Still, it is nice to see a collection of basic steps to further narrow down the problem. It's not like he can bring this in with him during the test, he was just writing down for a reference. I think that is a good thing to do and have.
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Apr 2009
    Location
    Sheffield, UK
    Posts
    502

    Certifications
    CC(NA-IP-NP), JNCIA-JUNOS, JNCIS-ENT, BCNE
    #6
    This is true. I just worry a lot of people look at the TSHOOT as if its going to be this massive mountain to climb, only to find they either spent weeks/months preparing for it when it can really be done very soon after doing the other two CCNP exams, or overcomplicating it to the point were simple methods to check get missed.
    Reply With Quote Quote  

  8. Senior Member chmorin's Avatar
    Join Date
    Feb 2010
    Location
    Texas
    Posts
    1,443

    Certifications
    CCNP:Voice, CCNA:V(IIUC), CCNA, CCENT, Security +, Network +, A+,CIW
    #7
    Quote Originally Posted by stuh84 View Post
    This is true. I just worry a lot of people look at the TSHOOT as if its going to be this massive mountain to climb, only to find they either spent weeks/months preparing for it when it can really be done very soon after doing the other two CCNP exams, or overcomplicating it to the point were simple methods to check get missed.
    That is a great point to get out there. If you go into these exams expecting all worse-case complex scenarios then you are likely to miss the simple issue that could of been fixed and found in minutes.
    Reply With Quote Quote  

  9. CCIE Bound kryolla's Avatar
    Join Date
    Feb 2008
    Posts
    785

    Certifications
    CCNP
    #8
    just to clarify for layer 2 you can have an up/up state and still have issues, I would also add spanning tree issues for layer 2 check
    Reply With Quote Quote  

  10. Senior Member tomaifauchai's Avatar
    Join Date
    Jan 2011
    Location
    Montreal, QC
    Posts
    300

    Certifications
    4xCCNA, CCDA, CCNP,CCIP
    #9
    thanks for the comments, i've built it mainly to do some review before the exam since it is easy to forget about details and i'm the kinda guy who love to have a structured approach before doing something because i'm easily distracted :P

    @Kryolla
    For the Layer 2 up/up, are you referring at a working connectivity but problems at upper layers or something i couldn't know about the blueprint? I'm thinking about things like duplex mismatch or native vlan mismatch
    It could be nice if you have some examples and thanks for the spanning-tree
    Reply With Quote Quote  

  11. coffee all day everyday. nicklauscombs's Avatar
    Join Date
    May 2008
    Location
    virginia
    Posts
    881

    Certifications
    CCNP, CCNA: Security, JNCIA-FWV, JNCIA-SSL, MCP, A+, Network+, Security+, CNSS 4011
    #10
    whats nice is if you study the topology before going in its pretty easy to narrow down what they possibly could ask you and where the problem lies.

    good luck!
    Reply With Quote Quote  

  12. Senior Member Ryan82's Avatar
    Join Date
    Jun 2009
    Posts
    424
    #11
    Pretty much echoing what Stuh84 said, but one small thing that I did first was on the PC client I would do an ipconfig to ensure it has received an IP address from the DHCP server and if so then start pings to the distant end and stepping it back. If not, you know you need to hone in on something between your client pc and the dhcp server.

    Remember this exam is about paying attention to the details.

    If you can't figure out a ticket in 10 minutes move on to the next one and come back when you have knocked out the easy ones.

    Good luck
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Feb 2011
    Posts
    199

    Certifications
    CCNP, CCNA Security
    #12
    Good luck today! Although I have no Cisco certifications yet, I do "TSHOOT" every day at work. I think you have a pretty good foundation and should be able to discover most issues with your approach. My only advice, while probably too late, is to remember the basics. Too often I find myself delving way too deep on tickets without checking the basics.
    Reply With Quote Quote  

  14. Senior Member tomaifauchai's Avatar
    Join Date
    Jan 2011
    Location
    Montreal, QC
    Posts
    300

    Certifications
    4xCCNA, CCDA, CCNP,CCIP
    #13
    CCNP Certified !
    642-832 -> PASS!!

    The exam was a very good experience overall but there was a bug on 1 ticket. Without disclosing what was it, i can say you can find a way to "bypass" this bug by checking if the options needed are elsewhere on the topology.

    I'd like to thank all the TE community for the great infos and great people in the forums. I'm currently from 1 exam away to start my CCIE quest and it's fun to write and read here everydays!
    Last edited by tomaifauchai; 03-19-2011 at 12:13 AM.
    Reply With Quote Quote  

  15. Senior Member
    Join Date
    Jan 2007
    Posts
    187

    Certifications
    MCSE 2000/2003, Sec+, CCNP, MCITP_SA
    #14
    Quote Originally Posted by kryolla View Post
    just to clarify for layer 2 you can have an up/up state and still have issues, I would also add spanning tree issues for layer 2 check
    Good point. For layer 1 a fast ethernet port will also show as UP/Down even when no cable is connected as long as you have the no shut command on the interface.
    Reply With Quote Quote  

  16. Cantankerous Old Fart hermeszdata's Avatar
    Join Date
    Jan 2010
    Location
    Colorado
    Posts
    225

    Certifications
    CCNA, CCNA:Voice (Ent) AdTran ATSA Internetworking
    #15
    Quote Originally Posted by tomaifauchai View Post
    CCNP Certified !
    642-832 -> PASS!!

    The exam was a very good experience overall but there was a bug on 1 ticket. Without disclosing what was it, i can say you can find a way to "bypass" this bug by checking if the options needed are elsewhere on the topology.

    I'd like to thank all the TE community for the great infos and great people in the forums. I'm currently from 1 exam to start my CCIE quest and it's fun to write and read here everydays!
    Congrats on the pass!

    I know I am a bit late chiming in on the original content, but I would like to offer this general troubleshooting tip. Having spent many years as a electronics technicial/engineer doing bench repairs and prototyping of circuits, I adopted a Divide and Conquer approach to troubleshooting. I have found this approach the fastest way to a solution. as applied to network troubleshooting the steps are as follows:
    1. Check the source host config to insure correct.
    2. Ping Destination IP.
    3. If Ping Fails , tracert from source to destination to get indication of point of failure.
    4. Ping path midpoint IP halfway between source and destination.
    5. This is where we branch:
      • If pass, ping ip address between midpoint and destination and repeat as necessary.
      • If fail, ping ip address betwen source and midpoint IP and repeat as necessary.
    Basically, the idea is to start by cutting the topology in half to try to isolate which half is the source of the problem. Then cutting the halves in half and repeating until we narrow down the device causing the problem.
    Pings/tracert are cheap from a time cost standpoint, and there is always the possibility that the problem is on the first connected device, i.e. a switch vlan/trunk config issue. However, from a real world standpoint, trouble tickets arise as a result of a failure of a formally functional network.
    Reply With Quote Quote  

  17. Cisco Moderator mikej412's Avatar
    Join Date
    May 2005
    Location
    Chicago
    Posts
    10,190

    Certifications
    CCNP CCIP CCSP CCVP CCDP CCDA CCNA CS-CIPSS CS-CIPTDS CS-CIPTOS CS-CIPCSS CS-CFWS CS-CVPNS CS-CISecS ISSP 4013 4011
    #16
    Quote Originally Posted by tomaifauchai View Post
    PASS!!
    Congratulations on the PASS!!

    Congratulations on the CCNP!!
    Reply With Quote Quote  

  18. Request timed out. *BB*'s Avatar
    Join Date
    Jan 2010
    Location
    Virginia
    Posts
    95

    Certifications
    ITIL V3 Foundation, CCNA, CCNA:Security
    #17
    Congrats!!
    Reply With Quote Quote  

  19. Senior Member tomaifauchai's Avatar
    Join Date
    Jan 2011
    Location
    Montreal, QC
    Posts
    300

    Certifications
    4xCCNA, CCDA, CCNP,CCIP
    #18
    Quote Originally Posted by hermeszdata View Post
    Congrats on the pass!
    1. This is where we branch:
      • If pass, ping ip address between midpoint and destination and repeat as necessary.
      • If fail, ping ip address betwen source and midpoint IP and repeat as necessary.
    Basically, the idea is to start by cutting the topology in half to try to isolate which half is the source of the problem.
    Quality! So this is a full Divide-and-conquer method.
    When i get into a newer device, i always ping the neighbor device facing the cloud direction so then i'm sure layer 3 is working. I go then directly to sh ip route!
    I will bring your method in my handbag!
    Reply With Quote Quote  

  20. Cisco R00t Clan Member NOC-Ninja's Avatar
    Join Date
    Feb 2011
    Location
    R00t
    Posts
    1,331

    Certifications
    CCIE-Wireless, CCIE-RS (written), CCNP-Wireless, CCNP, CCNA-Wireless, CCNA-Security, CCNA, CEH, CHFI
    #19
    Quote Originally Posted by tomaifauchai View Post
    CCNP Certified !
    642-832 -> PASS!!

    The exam was a very good experience overall but there was a bug on 1 ticket. Without disclosing what was it, i can say you can find a way to "bypass" this bug by checking if the options needed are elsewhere on the topology.

    I'd like to thank all the TE community for the great infos and great people in the forums. I'm currently from 1 exam away to start my CCIE quest and it's fun to write and read here everydays!
    How long did it took you to study
    ROUTE?
    SWITCH?
    and
    TSHOOT?
    MSISA
    Reply With Quote Quote  

  21. Senior Member tomaifauchai's Avatar
    Join Date
    Jan 2011
    Location
    Montreal, QC
    Posts
    300

    Certifications
    4xCCNA, CCDA, CCNP,CCIP
    #20
    I took 2 months to study & lab ROUTE
    1 month for switch
    2 weeks for tshoot (Skipped most of the book)

    But i am a full time student with plenty of time and i can pass around 15 to 20 hours per week studying Cisco. ( Starting MPLS now!! )
    I usually take 1 month per exam (70-85 hours) and for the whole CCNP i would say i've spent 200 hours of study without any doubts
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks