1,Frame-relay adaptive-shaping becn(Backward Explicit Congestion Notifications)
The frame-relay adaptive-shaping command configures a router to adjust virtual circuit(VC)
sending rates in response to BECN backward congestion notification messages or interface congestion.
Include this command in a map-class definition and apply the map class either to the main interface or to a subinterface.
Adaptive traffic shaping for interface congestion can be configured along with BECN. When adaptive shaping for interface congestion is used with BECN, if interface congestion exceeds the queue-depth, then the PVC send rate is reduced to minCIR. When interface congestion drups below the queue-depth, then the send rate is adjusted in response to BECN.
2,Traffic shaping
To understand the concepts of traffic shaping, it is important to have a firm grasp of the varuous traffic parameters in the Rrame Relay network. In particular, you should know that some(such as committed information reate[CIR] and excessive burst[Be]) are commonly used but misunderstood.
CIR(committed information rate)-the average rate at which you want to transmit. This is generally not the same as the CIR provided by the telco. This is the rate at which you want to send in periods of noncongestion
Bc(committed burst)-The amount of data to send in each Tc interval
Tc(committed rate measurement interval)-The Bc/CIR time interval.The time interval shouldn't
exceed 125ms
BC/CIR=TC
3,Frame-relay traffic shaping
This command enables FRTS for the interface. Every DLCI under this interface is traffic shaped with either user-defined or default traffic shaping parameters. User-defined parameters can be
specified in two ways:
Using the command "class class-name" under the frame-relay interface-dlci configuration
Using the command "frame-relay class" under the serial interface
4,Frame Relay traffic shaping is accomplished through the creation of a map class. After the map class is defined the configuration of Frame Relay Traffic shaping parameters can take place. When you define a map class for Frame Relay, you can:
Define the average and peak rates(in bits per second) allowed on virtual circuits associated with the map class
Specify that the router dynamically fluctuate the rate at which it sends packets, depending on theBECNs it receives
Specify either a custom queue list or a priority queue group to use on virtual circuits associated with the map class
5,Ip unnumbered ethernet 0/0
The ip unnumbered configuration command allows you to enable IP processing on a serial interface without assigning it an explicit IP address. The ip unnumbered interface can borrow the IP address of another interface already configured on the router, thereby conserving network and address space. In this case, it will use the IP address that is already assigned to the ethernet interface
6,RADIUS
The RADIUS server is typically run on a computer.The clients are any type of device that is responsible for passing user information to designated RADIUS servers and then acting on the response that is returned. Transactions between the client and RADIUS server are authenticated through the use of a shared secret, which is never sent over the network. Some of the
advantages of RADIUS are the following:
RADIUS has less packet overhead because it uses UDP
With source code format distribution,RADIUS is a fully open protocol format. The user can modify it to work with any security system currently available on the market
RADIUS offers enhanced accounting functionality
7,Dialer-list
The dialer-list command is used to configure dial-on-demand calls that will initiate a cnnection.The simple form of the command specifies whether a whole protocol suite, such as IP or Internetwork Packet Exchange(IPX), will be permitted or denied to trigger a call. The more eomplex form references an access list that will allow finer control of the definition of interesting traffic. The syntax for this command is:
Router(config)# dialer-list group-number protocol protocol {permit |deny} list access-list-number
8,dialer hold-queue timeout
The dialer hold-queue timeout determines how long to wait before the client can make another call to the same destination. The server must make the return call before the client hold-queue
timer expires to prevent the client from trying again and possibly preventing the return call from being connected
9,Some of the TestKing locations are still using AppleTalk. What is true about RADIUS and TACACS+ compatibility with the AppleTalk Remote Access(ARA) protocol?
a. RADIUS server is incapable of supporting AppleTalk Remote Access(ARA) protocol
d. TACACS+ server is capable of supporting AppleTalk Remote Access(ARA) protocol
RADIUS does not support the following protocols:
ARA protocol
Net BIOS Frame Protocol Control protocol
Novell Asynchronous Services Interface(NASI)
X.25 PAD connection
The TACACS+ protocol forwards many types of username password information. This information is encrypted over the network with MD5, an encryption algorithm. TACACS+ can forward the password
types for ARA, SLIP, PAP, CHAP,and standard Telnet. This allows clients to use the same username password for different protocols
10,Which IOS command would you use on your router to specify a RADIUS server to take responsibility for authenticating dial-up clients?
answer:radius-server host
阅读(2470) | 评论(0) | 转发(0) |