Cisco Systems OL-6240-02 manual Then, 22-15

Page 15

Chapter 22 Advanced DHCP Server Properties

Configuring Virtual Private Networks and Subnet Allocation

Step 3 Specify the appropriate VPN identifier, either by VPN ID or VRF name. It is rarely both.

If you use a VPN ID, set the vpn-idattribute value for the VPN. The value is usually in hexadecimal, in the form oui:index, per IETF RFC 2685. It consists of a three-octet VPN Organizationally Unique Identifier (OUI) that corresponds to the VPN owner or ISP, followed by a colon. It is then followed by a four-octet index number of the VPN itself:

In the local and regional cluster Web UI—Add the VPN ID value to the List/Add VPNs page.

In the CLI—Set the vpn-idattribute. For example:

nrcmd> vpn blue set vpn-id=a1:3f6c

If you use a VPN Routing and Forwarding (VRF) instance name, set the vrf-nameattribute value for the VPN. Cisco routers frequently use VRF names.

In the local and regional cluster Web UI—Add the VRF Name value to the List/Add VPNs page.

In the CLI—Set the vrf-nameattribute. For example:

nrcmd> vpn blue set vrf-name=framus

Step 4 In the Web UI or CLI—Add a description for the VPN, if you wish.

Step 5 In the Web UI—Click Add VPN.

Step 6 Create a scope for the VPN. Keep the VPN name and scope name as similar as possible for identification purposes:

In the local cluster Web UI—Click DHCP, then Scopes. This opens the List/Add DHCP Scopes page. Create a scope or edit an existing one. Under the Miscellaneous attributes, look for the vpn-idattribute. Choose the VPN from the drop-down list.

In the CLI—You can identify to which VPN the scope belongs in one of three ways:

Its VPN name, through the vpn attribute (which applies the VPN ID to the scope).

The VPN ID itself, through the vpn-idattribute.

The current session VPN name, by omitting the VPN or its ID on the command line.

You set the default VPN for the current session using session set current-vpn. You can then set the usual address range and necessary option properties for the scope. For example:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn=blue

Or:

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0 vpn-id=99

Or:

nrcmd> session set current-vpn=blue

nrcmd> scope blue-1921681 create 192.168.1.0 255.255.255.0

Then:

nrcmd> scope blue-1921681 addRange 192.168.1.101 192.168.1.200 nrcmd> scope-policy blue-1921681 setOption routers 192.168.1.1

Step 7 Reload the DHCP server after you create all the VPNs and scopes.

 

 

Cisco CNS Network Registrar User’s Guide

 

 

 

 

 

 

OL-6240-02

 

 

22-15

 

 

 

 

 

Image 15
Contents Configuring Bootp About Bootp22-1 22-2 Enabling Bootp for ScopesSetting Advanced Dhcp Server Parameters Moving or Decommissioning Bootp ClientsUsing Dynamic Bootp Bootp Relay22-4 Advanced Parameter Action Description22-5 22-6 Deferring Lease Extensions22-7 Integrating Windows System Management Servers22-8 Using Extensions to Affect Dhcp Server Behavior22-9 Unix22-10 Tuning the Dhcp Server22-11 Dhcp set activity-summary-interval22-12 Configuring Virtual Private Networks Using Dhcp22-13 Typical Virtual Private Networks22-14 Creating Virtual Private Networks22-15 Then22-16 VPN Usage22-17 Configuring Dhcp Subnet Allocation22-18 Setting Dhcp Forwarding VPN and Subnet Allocation Tuning Parameters22-19 22-20

OL-6240-02 specifications

Cisco Systems OL-6240-02 is a highly regarded certification exam that delves into the realm of enterprise networking, particularly focusing on the Cisco Certified Network Professional (CCNP) Routing and Switching track. This particular exam serves as a critical test for network professionals aiming to validate their skills and knowledge in advanced routing technologies and network design.

One of the main features of OL-6240-02 is its emphasis on in-depth understanding of IP routing principles. Candidates are expected to demonstrate proficiency in configuring, maintaining, and troubleshooting complex routing protocols like OSPF (Open Shortest Path First), EIGRP (Enhanced Interior Gateway Routing Protocol), and BGP (Border Gateway Protocol). This includes comprehending routing algorithms, path selection, and the implementation of route redistribution, which are essential for optimizing network performance.

The exam also covers the characteristics of network security and infrastructure, where candidates must exhibit knowledge of implementing security protocols and best practices to safeguard network communications. This includes configuring virtual private networks (VPNs), utilizing access control lists (ACLs), and applying encryption techniques to secure data in transit.

Another crucial technology tested in OL-6240-02 is Quality of Service (QoS). Professionals must be adept at configuring QoS mechanisms to prioritize traffic, ensuring that critical applications receive the necessary bandwidth and latency requirements. This is increasingly important as businesses rely on a multitude of applications that have varying performance needs.

Cisco's emphasis on network automation and programmability is also a focal point of this certification. Candidates are expected to be familiar with using Cisco's software-defined networking (SDN) solutions and automation tools, which are essential for modern network management. This involves understanding how to leverage APIs and modeling tools to streamline network operations and enhance efficiency.

To succeed in OL-6240-02, candidates should possess a solid foundation in network fundamentals and have hands-on experience with Cisco devices. The certification not only validates expertise but also prepares professionals for real-world challenges in designing, implementing, and troubleshooting enterprise networks. Overall, OL-6240-02 is a stepping stone for network professionals seeking higher-level certifications and career advancements in the ever-evolving field of networking.