So, back to the CCNP lab stuff. I've already discussed some of the considerations for the BCMSN and ONT exams in this blog during the past 3-4 weeks. Today, I'll begin to examine the ISCW exam, which means we'll look at the configuration topics for the exam, and in this case, focus on IOS versions and feature sets.
First, a quick review of the ISCW exam topics shows quite a variety of features. After reviewing the exam topics and doing a little research, two important items seemed to leap to the forefront:
So, I decided that support for SDM is a must for prepping for ISCW, which means a minimum version of 12.3T/12.4 (at least according to the feature navigator). Also, since IPS was the only feature that I researched that wasn't in the "IP/FW/IDS Plus IPSEC 3DES" feature set (say that 3 times fast), I figured that was a good area of compromise if you don't have the ability to upgrade existing gear. The reasoning is that maybe some of the older (cheaper) routers could support that feature set, but not some of the newer ones like Advanced Security, so I figured it was worth a little comparison shopping. (For the list of feature sets that support IOS IPS, look here.)
(OK, disclaimer time - this is all to the best of my knowledge, and it's up to you to obtain IOS images per the legalities of your maintenance contracts and relationships with Cisco, etc etc etc.)
So, I did the usual - find the configuration items listed in the exam topics, looked at the course lab guide for other clues, and made a list of features to look for in the Cisco Feature Navigator (www.cisco.com/go/fn). Here's what I came up with; granted, I left out a few smaller topics just to shorten this NP-incomplete algorithm for looking for things in the feature navigator:
After looking at these feature sets, for 12.4 and 12.4T, here's what I found:
IP/FW/IDS/ Plus IPSEC 3DES: It supports everything in the list except IPS.
Advanced IP Services and Advanced Security: They've got it all.
Also, for perspective, note that the ISCW course materials suggested 2800 series routers with Advanced IP Services.
Where does that leave us? Well, we've got some pretty robust feature sets that'll support most or all of what's needed. From here, we might want to consider other feature sets, and of course we want to look at platform support. So:
Cheers!
Odom, CCIE No, 1624, splits time between writing books for Cisco Press and teaching classes for Skyline ATS. In his 25-ish years in the networking industry, he has worked as as a pre-sale and post-sale SE for a few networking vendors, as well as a network engineer implementing network technology. Wendell has spent the majority of the last 15 years teaching, consulting, and writing about networking technologies, most of which in some way relate to Cisco products. His books include titles on QoS, CCIE R/S, as well as several titles related to CCNA certification, including the September 2007 book CCNA Official Exam Certification Library (CCNA Exam 640-802) (Read a sneak peek of chapter 7). Click for the list of current titles by Wendell.
|
|
3640 Wendell?
Hi Wendell
I left some comments about the 3640 in your blog here http://www.networkworld.com/community/node/25966#comments
Now assuming you have 32MB of Flash & 128MB of RAM, the question I have to ask is, can you put SDM on the PCMCIA flash on 1 of the slots that the 3640 has?
If so, the PCMCIA slots can hold up to 20MB each and if SDM can be made to run from that source, you have solved your flash memory problem.
If by some strange coincidence you had a way to make a 3640 recognise more than 20MB of Flash in the PCMCIA slot, then you are well on your way to solving flash memory issues without having to resort to buying a 2800 Router or compromising on IOS feature sets.
Moreover, I believe that the 12.4T IOS for the 3600 has only recently gone beyond 32MB in size, so it is possible to have a feature rich IOS that meets the ISCW requirements without losing any overall functionality.
Then again, I could be wrong, so I'd like to hear your thoughts on what is possible.
Thanks
Shaun
Hey Shaun, I have a couple
Hey Shaun,
I have a couple of thoughts. First, per
http://www.cisco.com/en/US/products/sw/secursw/ps5318/prod_installation_guide09186a00803e4727.html
You can install SDM and keep most of the code on your PC, consuming just 2M of router flash. If you go that route, then there's plenty of 12.4 mainline IOS versions, with the IP/FW/IDS/Plus IPSEC 3DES feature set, that are listed as less than 30M. I don't know of a way to get SDM to use the PCMCIA slot's memory - I did some searching, and didn't see anything. However, the above may be a reasonable compromise in a lab, particularly if you already have the 3640's.
However, I have a question back. The download page doesn't list any 12.4T train releases when I select 3640, and you mentioned the T-train in your post. Have you run 12.4T IOS on your 3640's somehow? I'm curious...
Also, FYI for anyone that cares, here's the bulletin on the 3640 max memory not supporting the latest 12.4 images.
http://www.cisco.com/en/US/products/hw/routers/ps274/products_field_notice09186a00808c2649.shtml
Sorry my bad
My apologies Wendell
I beleive you are correct, and there are no 12.4T train releases for the 3640.
Then again 12.4 mainline is more than adequate for lab purposes I believe, would you agree?
The reason for my post is I was hoping that with your superior Cisco contacts, that you would be able to find out a way to have a 3640 see more than 20MB of PCMCIA flash.
If it could get up to 32MB or even 48-64MB all problems would be solved and you could run the IOS from PCMCIA flash and stick SDM in regular flash.
I know for example, the 2800's can take a correctly formatted 256MB Compact Flash, which quickly solves any flash memory capacity limitations you are ever likely to run into within this routers lifetime and was hoping that there was a similar undocumented trick for the 3640's. :)
Ah well.
3640 TRICK
That would be nice indeed.. If this is not possible then what is your suggestion "router-wise" for this portion of the CCNP evolution Wendell? Also, here is a dumb question (I am finishing CCNA now and will begin CCNP track in about two months) but can we use 3640 and boot the advanced security ios from tftp? I have seen Dell Edge Blades that would fit into a rack for like $200... + Linux is free..
Boot from TFTP - I like it!
Hi guys,
Yep, to save a few, you can boot from TFTP - you can even just put a freeware tftp server on your existing PC, don't even have to buy a new one. That'll let you get the later IOS versions for 3640, and overcome the flash issue. A little more of a pain, but depending on how price conscious you are, it could be worth it.
Wendell