Default Gateway vs Default Route | Cisco CCNA 200-301

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
[Music] [Music] [Music] by [Music] right by side [Music] [Music] [Music] [Music] [Music] [Music] [Music] [Music] walking on [Music] [Music] [Music] bye-bye [Music] [Music] [Music] [Music] [Music] [Music] [Music] wait [Music] [Music] [Music] by side by side [Music] [Music] [Music] [Music] [Music] [Music] [Music] wait [Music] walking on [Music] [Music] [Music] right guys now [Music] [Music] [Music] [Music] [Music] [Music] and welcome everybody to CCNA Sunday it is fabulous to have you here I really am looking forward to each and every one of these sessions I take a shower I prepare some content I love it up a few times and I'm super excited almost every single time about sharing it with you our objectives and this CCNA Sunday are pretty specific and that is what is this whole discussion about default gateway or default route or when do they apply and how do they apply we in this short impactful session that you and I are gonna have right now regarding default ralston default gateways I'm gonna share with you what I wish somebody shared with me probably a couple decades ago when I was first learning about this because sometimes we just learn you know we hear concepts and we kind of like I couldn't get that and then we muddle through and then later it becomes useful I don't know buddy oh I really need to dig into that so I would like to clarify that with this discussion and then at the end we'll open up for Q&A and also my son is in town Paul he's 29 fantastic kid great amazing programmer we stayed up to like 1 a.m. sitting in the car we went to show last night sat in the car and just chatted for like till like I was close to what I am and so I'll share you some of the details and so those insights that I am learning from my my son after the presentation and then we'll go to Q&A we'll have a good time there - all right so without further ado let's take a look at the whiteboard so here's the beautiful whiteboard and we have a bit of a problem and I'd like to share with you what that problem is and then of course we'll solve it together as I bring out a writing utility okay so default gateways versus default routes let's talk about this topology this is a fantastic topology here we have a PC now this PC is just representative of any device on the network it could be an Android device it could be a wireless device it could be this is in this case wired but any device it's connects to network has an IP address so this network right here is the 1001 network and this host address right here on PC one is a dot 10 and it's happy and I'll tell you why it's happy it's happy because it has an IP address so if it's on the 1010 1001 Network and its host addresses 10 it's happy because it has an IP address it knows that the first three numbers 1001 are the network and the last number is the 10 because is the host because of the mask a 24-bit mask so join us for subnet Saturdays for all that detail and then it also has a default gateway which is going to be right here now one of the questions is why does a customer why's a client need a default gateway and one of the things I've said this few times in a few different places is the concept of a an obi-wan kenobe basically PC one says this let's imagine over here what is this PC what is this network here let's go take a look at router for and find out what this network is because I don't remember off the top of my head but we have tools and we can go ahead and use them so let's make a road trip over to our 4 and do a show IP route and see what he's directly connected to on gig 0 0 and to do that I will bring up this window boom right there I will authenticate again which is a fancy way of saying login and on router four will do a show IP route I'm excited to find out what he's got there so gig 0 0 was that the interface give me a second yeah gigs 0 0 in router 4 is this bad boy right here all right so that's the 1004 Network and one this is really important to the reason that this router router for believes that he's connected to network 1004 on that network is because somebody could have been me went to interface config and gigs 0 0 and gave it an IP address of 10 0 dot 4 dot something and it's right dot 4 and with a 24-bit mask and then the router said great I get it this is network 1004 and I'm directly connected to it I can route for that Network okay so that was a little segue into what that network is let's go back to our topology so back in our topology and we get my pin out if PC one wanted to reach this PC four and I got to bring out my pen tool and if if PC one wanted to connect to are peeing over here it would need to be able to reach the 10.0 dot four network and with a 24-bit mask and also whatever the host address is on top for listen magic it's probably ten well we can verify that too but if we wanted to to do that here's what would happen in the mind of this PC this PC if this is the protocol stack so we have the application layer and then we have the transport layer and then we have the network layer and then we have the data link layer and then we have been up with the Elder and then we have the physical layer and this are these are just ways of thinking about how this operates logically so if PC one does a ping we and you and I can we've been through a few sessions together so now we can talk about you know not every application every not everything it comes out of your computer's can use the full protocol stack so when PC when to the ping any then types in ping space 10.0 dot 4.10 will imagine that that's that IP address this pc ping doesn't use application their services there's nothing there it doesn't use transport layer services nothing there it does at layer 3 this is at layer 3 layer 2 layer 1 here it does use ICMP as part of the the ability to a ping so behind the scenes if we looked at ping packet it would have an ICMP a protocol that's being used and PC one would say ok I'm trying to reach 10 0 for 10 I'm on 1001 so it's like I'm on Street a says PC 1 and I'm trying to reach Street E and as a result it's no it knows it's not local because it's looking at its network address and says my destination is different and it will have to use the default gateway so the client is what's gonna do it's gonna go ahead and determine the layer 2 address of its default gateway and the best way to learn about your default gateway what like what it is is probably through DHCP so when this client booted up it did a discover had an offer made a request there's an acknowledgement got an IP address and the options including who's your default gateway so PC one knew that this default gateway was 10.0 dot 1.1 if that's what it is which i believe it is and didn't arp request if it didn't already know the delay to address and then when the packet was sent the packet is sent layer three the source would be ten dot zero dot one dot ten that's the source address the destination would be ten dot zero dot 4 dot ten if that's the IP address of pc 4 and that would be in the layer three header so if you looked at the protocol analyzer may be right there it was just say source addresses this this nice address to that but the pc knows that to move a packet or forward a packet to 1004 which is like different network it's gonna need a little help from its default gateway and that's this guy r1 so at layer two it would look like this MAC address of PC one whatever that happens to be that twelve hexadecimal character address which is 48 bits in binary and the destination for the layer to address would be the default gateway so we'll put our one gig 0/0 and you you can thank me later for not writing in all 48 bits or even the twelve hexadecimal characters so what happens in this RPC one encapsulate that encapsulation is a fancy word for saying it wraps it up with that information in those headers so it's in the IP header it puts this PC one does in layer two editor puts this and then it spits them on the wire like Morse code that I said that that dot that that that that that bit at a time and those bits are then received at the switch the switch plays a little game called how do I forward and layer 2 switches make forwarding decisions based on layer 2 addresses so the switch is a great review by the way I appreciate you being here you're fantastic the switch is going to look at the layer 2 destination MAC address and say do I know where that is and the switches gonna say yeah I know where I know a port that lives off of because I'm dynamically learning MAC addresses I'm a switch and so the switch very quickly I mean we're talking fast forwards that frame out to this port whatever that port is on the switch over to gig 0 0 router 1 sees it it sees hey this is addressed to me at layer 2 opens it up I mean it's like getting a piece of mail if you could if he's a male and it's dressed to you you open it up and so at layer 2 that layer 2 addresses has the layer 2 address of gig 0 0 + r1 it says hey this was sent to me it could be important what is it I don't know it's curious it's a curious router so it opens it up and then looks at layer 3 and says oh this is coming from 1001 10 it's going to 1004 10 Oh but I'm a router and I'm willing to route people's packets on their behalf and forward it so this router if he has a route in his routing table he will make a forwarding decision and in this topology in this topology we have two paths and I think they're worth drying out we'll go ahead and use path a which from router one's perspective would be this route you take the high road and I'll take the low road and I'll meet you in network 1004 before you that's why I don't have a singing career all right so this is path a and we'll put path B in a different color we'll use about green well not green that's to green is to like it's good we'll use how is the live stream today great I just couldn't decide on what color hues for path be all right pierce path B which would go from router 1 down here and that'd be peppy so my question to you and let me give you the details to this path here in the all the green links those are fast Gigabit Ethernet 1,000 megabits per second or gigabit and then the fast ethernet is 100 megabits per second so the green links are 10 times faster than the yellow links so I have a question for you I'd like to pause for a moment and share the screen with you and look at the chest just for a moment and have you and asked you which is the better path what which route should RAR one take because this is a routing decision at this point should r1 forward on path a or would it be better to route and forward on path B and I'll give you a moment to think about that I love it I know I'd love especially the fact that we're putting all these concepts together so we learned a lot of basics on the road here together we've had a lot of good times in the master playlist and now it's is focusing on a learning new things I still and also applying all of them holistically together all right I'm gonna move my mic over a little bit and look at the QA and they have I have sick people same cafe I've got a lot of everything cause a Wow okay just a ton of votes for path a and I'm gonna say that's a smart move path a is gigabit all the way across and path B is has a fast ethernet a bottleneck in the link and as a result path day would be faster yep and so from a we'd want to run a routing protocol this is a chance where OSPF would be preferred over a distance vector routing product like rips he rip would treat those as equal costs because it's the same number of routers to go across it wouldn't know the difference and no SPF would use Pepe so we'll just take path be out of the mix I agree that's the best path and so are one when he has his packet he would then forward it on path a and he would forward it in the direction of r2 assuming that's his route that he's going to use and to do that what he's gonna do and I'll put a line here are two is gonna back up but r1 is going to do he's gonna say okay I'm going to continue I'm gonna forward this packet over r2 so when r1 forwards it the source address is gonna be ten dot zero dot one dot ten still still coming from pc1 and the destination is still gonna be 10.04 10 because hasn't changed so that's the destination but what is going to change is our one needs to forward this to the layer to address of r2 so the source MAC address at layer two if we were to look at it on this segment here between our one or two our one is going to put when it encapsulate sit and it rewrites the layer two header the source MAC is going to be our one and I will put gig 1 zero because that's literally what it is and the destination layer to address I'll put source here source layer to destination layer two and up here we have source layer three destination layer three and the destination layer to address would be this bad boy right there our two's gig to zero so mm oh god si cently or two and I'm gonna put our 2gig 2/0 all right and then we play this really cool game where are two so and just to make sure we don't miss any pieces when our one four is that into the switch the switch says almost layer to switch and I'm gonna move trap frames based on layer two so it looks at the destination layer to address says I know where that lives and it forwards it over to the right port r2 gets it says hey this is for my layer to address it's curious opens it up sees that the packet is destined at layer 3 for 10 0 for 10 and it makes a routing decision it rewrites the layer 2 header it forwards it Darfur if that's the path it's gonna use then our 4 takes it does the same game looks it looks at layer 2 destination addressing this is me great opens it up looks at layer 3 destination IP address and then makes a forwarding decision over in that direction switch is gonna make layer 2 forwarding decisions and finally it reaches PC 4 and PC 4 says hey this is for my layer 2 address because the local router here put the correct layer 2 address for the final destination and then as pc 4 open that up and said hey this is for my IP address I'm still interested so it opens up the IP packet and in that IP packet it is ICMP and it's an ICMP echo request meaning hey how you doin says pc-12 PC or hey how you doing umm are you there can you respond and at which point PC 4 will send an ICMP echo reply is the reply portion of a ping request and then that whole process goes in Reverse or PC for puts the layer 3 address of PC 1 and then for this first top it's gonna put the layer 2 address of its default gateway and that packet gets forwarded alright so that's a little warm-up exercise for the discussion of default gateways and default routes and here's how it works you're gonna love this at let me clear off this board and let me give you a nice clean picture with the default gateway versus default route so we've digested we've ingested this we've enjoyed it that's great I'm going to clear it off and that's gonna be done with this button right here all that work as I continue to talk into the mic there we go wait there's a choice that all these devices regarding layer three are going to make and we'll pick on the PCs and the routers for a moment it is do I want to route for myself or do I want to route for myself and others and if you have a device that's routing just for itself it's gonna be using what I call the obi-wan Kenobi route it's default gateway and let's focus on a PC for a moment do you Pete does a PC have a routing table the answer is they do we don't often think about it but your PC knows it's directly connected to the this one does that is directly connected to the 1001 Network if we did a route print in Windows it would show us its routing table and it would show a directly connected route right there that we are directly connected to 10 dot 0 dot 1 so they have a routing table but pcs by default aren't built to take a packet from somebody else and route it for you know continue to route through the network now you can configure routing on a like a server although it's not preferred to do you can train like a Windows Device to go ahead and be a router for other people's packets but n stations are primarily thinking about themselves and they need for traffic so if you have a device that's not routing traffic for other devices just routing for itself like I need a forward traffic it has a routing table it knows the directly connected network that's how it knows that it's talking to other local devices it doesn't have to use the default gateway and if it's trying to forward a packet somewhere other than local what it's going to do is gonna resort to its default gateway as a gateway of last resort meaning ok this is PC ones attitude I'm trying to forward a packet to then 1004 and in my routing table which is very limited on an end device you can tweak it that's beyond the scope of this discussion but the routing people on the PC ones very limited so he says okay I don't know where to go so I'm gonna use my default gateway and it's his problem or her problem that's literally how it works these packets that are being sent PC one is just hoping that if it encapsulates at layer two and puts the routers is default gateways layer to address that here it's like hot potato here here mr. router have it hopefully you can forward it based on its layer 3 address and hopefully the router can that's our job is network engineers to make sure that our routing topologies work that we have routing protocols running or static routes and for ipv4 ipv6 to make sure that once clients handoff that IP packet over to their default gateway that that packet can be routed so anytime you see the idea of a default gateway I would like you to think that's a device that is routing for itself meaning it's looking out for itself and if it doesn't know how to forward a packet in the right direction it'll just handle hand it over or forward it to its default gateway help me obi-wan you're our only router I think default gateway that's it routers can have this opportunity too and I'll show you that in just a moment but buddy yeah so I'm going to stick with the default gateway first secondly if we have a device that's routing for itself and others it's going to be using routes and if it doesn't have a specific route for how to route it's going to use what's called a default route so here's what that means if we have a device and I'll put these in two separate colors if we have a device that is routing for itself meaning it's not forwarding for on the behalf of other people's traffic it's gonna need a default gateway if it ever wants to forward a packet off of its local network I mean clients don't have to have a default gateway but if they ever want to forward a packet somewhere other than their local street they're gonna need one and so we have a client a device that's routing for itself it's going to need a default gateway to forward to in the event it has non-local Dannette well not a local destination so self and if you have a device that's routing for other devices like a Cisco router or other network devices like that it would have a default route I'm gonna say others it's gonna have a default route which is similar to a default gateway but it's part of a bigger routing table picture so we could say that this router right here are one if it's enabled for routing which it is and it's meaning it'll be it can route for itself like if you were sitting in our one and you to ping it would it would forward this packet based on its routing table so it's routing for itself and if PC 1/4 is a frame to it because it's routing for others it's configured with IP routing that's how you enable it it would go ahead and look at its routing table for a match do I know how to forward this packet to 1004 in this case and if it does it'll forward based on that information but if it doesn't it can have a default route in this routing table this is the equivalent of a default gateway for a device is routing on its own but default route is simply a route in the routing table it says hey mr. r1 don't be so hard on yourself you get this packet 428 dot 1719 dot 40 if you don't have a route in your routing people that says how to get to that network I want you to default back to this default route which says if you're not sure how to forward this mr router I know you're helping other people out use the default route that's literally how it works it's the last-ditch effort when the router doesn't find a more specific route and at routing table it uses the default route and in Cisco it looks like this you see four zeros like that yeah I won't add that in that's just beyond the scope of what we need to talk about but zero zero zero zero indicates a default route so we're not looking if we have more specific routes that'll be used but that's the default route so hmm I thought it'd be really cool if we demonstrated all of this and it's pretty easy to do so a couple things before we go to the live demo is if you have a device like a PC and end device a device that doesn't route for other people that device still needs to know how to forward packets to devices that are not on the local network if you have a device that's willing to route for other people other device like a Cisco router or a multi-layer switch with IP routing enabled then it's going to have a routing table which you can add static routes to we can train it with dynamic routing protocols and we can configure a default route dynamically or statically and that default route is simply going to say hey mister router I know you're routing for other people if you don't know how to forward a packet because you don't have a more specific route in your routing table just go ahead and use the default route and that's the difference between a default gateway where a device is not routing for anybody else except itself and a default route where you have a device that is routing for other devices and it doesn't have a specific route before giving up it can use the default route and use that to forward the packet and later to information to the next hop okay so there is a little bit of a an opportunity here for a discussion and then we can demo it is that on a Cisco router by default it has this feature called IP routing Nabal and bada-bing bada-boom that's what that's what enables IP routing on a Cisco router and they turn it on by default because if it wasn't Cisco TAC would get thousands of calls saying they just configured my route or it won't route for anybody so you have to enable IP routing and it's on by default and Cisco IOS now and a multi-layer switch depending on the multi-layer switch you mean that your may or may not have IP routing enabled and on a multi-layer switch we can do which can do layer 3 routing and layer 2 switching at the same time we've talked about those in previous videos in our in our master playlist if IP routing is not enabled that multiplier switch will not route for anybody and if you have a switch that is IP running is not enabled you need to configure a default gateway so it can say ok I'm just running for myself I've got no routing table because I'm not a Troughton is not enabled if I need to forward packets to a remote network I need to have a default gateway so in a multi-layer switch you're saying keith that in a multi-layer switch if IP routing is not enabled that you need to have a default gateway so that device that switch itself can communicate to remote networks yes absolutely and if you have a layer to switch that doesn't support any IP switch that doesn't support IP routing for other people that layer to switch also is gonna need a default gateway and I remember when I first learned this I thought why it's a layer to switch like he's just forwarding frames what why does this guy need to have a default gateway anyway I mean it's just the layer to switch let me show you let's imagine together as I bring my mic over let's imagine that this device right here core one is a layer 2 switch only and let's also imagine for discussion purposes that it's not doing routing for others no routing for others and we can do that on this switch by simply saying no IP routing let me back that off so if we do no IP routing on this switch this multi-layer switch it's gonna be effectively a layer 2 switch only no routing capabilities for other devices so to test that out let's go ahead and let's go to live interface let's take a look at core 1 and I'll show you measurably the difference between IP routing and no IP routing which will help confirm our situation where you're willing to route from other devices and let's go to this core one switch great so if we did something like this let's do a config T and say no IP routing so this is a multi-layer switch but what I've just done is with this new IP routing command it's effectively the same as the layer 2 switch only it will not route for other people so if we do a do show and I'm doing the do because we're in configuration mode I don't want to have to exit config and do the command and then go back so you just tack on a do in front and that automatically allows you to do command the show command but it doesn't always give you the context-sensitive help so it's a trade off so if you know the command you can just do the do in front so show IP interface brief so this switch at the moment has no SV is no layer-3 logical interfaces so if we wanted to communicate with this switch via IP we can't it just doesn't have one so if we want to give it an IP address and this is a layer effectively a layer to switch at this moment let's give it an interface in VLAN one let's first of all do a show VLAN brief I want to make sure what VLANs we have great so we've got VLAN one and for those of you who knows this comes for free by default all the ports by default or and VLAN one and still you until you start carving it out so we have VLAN one that's the VLAN the layer two broadcast domain and all the ports it appears right here are associated with that VLAN by default which is great so let's create a logical layer 3 interface on this layer 2 switch now you might say Keith why why it's a good question why why are you doing that why mr. grinch why well the reason we're gonna do that is because if this is the management PC right here you get my face all the way if this is our management PC right here and we want to manage this switch and again at the moment it's gonna be just a layer to switch if we open an SSH session so we type in SSH or we use our putty client or secure CRT and we connect over to the course which we've got no problem getting there we're on the 1001 Network we use our default gateway he forwards it to the IP address that we're about to put on the switch but if this switch gets that packet says oh I'm getting in oh I'm getting it inbound management connection and sqb from our SSH session or it could be from an API from you know software-defined networking whatever the pcs the switch says hey this is packet is coming from 1001 10 I love to this is what the switch is saying I would love to respond to that I would love to reply back and establish this session with the management station but I have no idea on how to forward packets outside of my local network either way that is we ask the switch and switch say it's because I don't have a default gateway so if you have a switch a managed switch meaning your gonna remotely connect to it meaning you connect to it from any other network then the local network it's has the VLAN interface on we need to make sure that it has an IP address in that VLAN and we also need to make sure that that switch has a default gateway configured not a default route but a default gateway because it's not doing IP routing for others it's only routing for itself so they walk you through how that would look we would simply go to this switch and let's let's make a plan here I'll say the switch is gonna be we're gonna make a VLAN interface so optional syntax would be something like this interface vlan1 enter we'd say no shutdown if in fact it was going to be down by default which on this model it is and then we give an IP address and we have to give us something on the ten zero twelve streets those two i10 0.12.10 [Music] it's used something I can remember it let's use one one one with a 24-bit mask so that would basically that would make core one having a management IP address on its feet on one interface not for the purpose of routing for other people's traffic just so we can remotely connect to it and then once we have that IP address configured then that core one device can talk locally on that network but it doesn't have a default gateway and if we want it to be able to communicate back to the management PC we need to tell core one that its default gateway is going to be either r1 and r2 it it really doesn't matter because r1 and r2 both know how to route packets to the right destination but in this topology probably gig 0 1 0 so we'd exit out of interface configuration mode for this s VI which is what that is a switch virtual interface and then in global config we simply say I think it's in Texas IP default tab is default gateway but you just simply tab it out it's gonna be unique that part so IP default gateway and then you just specify the IP address of r1 and r1 is 10 dot 0 dot 12 dot and it's dot 1 press enter and now this layer 2 switch has a IP address on its switch virtual interface for VLAN 1 and if it ever needs to respond to reply or reach this destinations outside local network it's got a default gateway this is all about right here the default gateway it's just like this PC they have the default gateway that says if I don't know how to forward a packet go ahead an use your default gateway with a switch a layer 2 switch 4 layer 3 switch with no IP routing it is the same exact behavior this is the go-to guy when Corwin needs to send the packet outside of the local network so with that said let me hide that for a moment I'm gonna not erase it yet because we may need that again and let's go configure this let's start on core one and do our work including the default gateway so do show IP I'm typing but nothing's happening there we go do show IP interface brief just want to verify that we don't have any SV eyes yet if we did they would show up here whether or not they're configure but we have none so we'll create interface we ll tab this out interface vlan1 because that's the only VLAN we have and that's also the VLAN that r1 and r2 are using this puts us into interface configuration mode for interface VLAN 1 and from here we'll go ahead and bring it up with a no shutdown it'll be up in a moment and then we'll give the IP address based on our plan of 10 0.12.10 at that we agreed to well I say we agreed in my plan I that Network is the 24 bit network so it's a good idea if every rails on that network believes it's 10 dot 0 dot when I make sure that this device is gonna comply so this will do so there's 8 bits of the mask there are 16 bits of the mask there's 24 bits of the mask and the last 0 simply means that's where the dividing line is so 24 bits of network and 8 bits available for host addressing which means this host address is 1 1 1 if you're new to subnets and IP addressing check out the subnets Saturday playlists from soup to dessert you'll have a good time and you'll be a master at this stuff before and before long all right so it's got an IP address what's the next thing we're gonna do it's what is the what is the right thing to do after we make a configuration change and in my mind I'm thinking we verify because I I've I've done commands before and then I it didn't take so just take a moment and let's verify that real quick with a do show IP interface brief just to verify that that interface exists there it is and also just to verify that it has the IP address and that it's up and that looks great also um I see in that corner of my eye see the queue over here for questions and just just to say you know I at the end of the stream at the end of the presentation regarding default routes and default gateways I'll go ahead and we'll focus on QA so any questions you have now for me please hold those or be ready to reboot them in so I can see them at the end so I don't want to miss a question I appreciate all of it I don't want to miss anything all right so now we've got an IP address so let's verify what we could do with it now let me erase that so this PC on this the switch has the IP address of 10.0 12.1 1 1 with a 24-bit mask fantastic so what should be able to do it should be able to ping Arwen's gig 1/0 interface address of dot 1 and it should be able to ping our two's gig 2/0 interface of 2 but it should not be able to ping or have reach ability to anything out of this local network and that is because it has no clue with with no routing table and no default route and no default gateway it has no clue how to reach any networks outside of 10 0.12 so if we tried to ping over here to 1001 10 it would just fall on deaf ears because Korra won't give up maybe just not even try to send the frame it would just say um don't know how to get there and it wouldn't send any traffic whatsoever so we'll solve that with a default gateway coming up but let's do our pings first just to verify so back in the interface and I guess we can exit out of configuration mode very easy to go back in so do a ping to 10.0 that 12.1 the dress of our 1 on that 10 dot 12.0 10.0 212 network fantastic and then we'll do a ping to 10 0.12 - which is the IP address of our two fantastic 8 so this is a this is a lab all virtualized so it's taking a little bit extra time shouldn't only take that long anyway there there we go so we have pings to both sides but if you try to ping the PC let's verify what that address is the PC is at 1001 10 if we tried to ping that address it is going to not be so happy so 10 dot zero dot one dot 10 and if we did a debug on that it just has no ability no idea of how to get there so what wait wait 1001 1001 one second so how did you get their IP route so because we have IP routing disabled on the switch there's no routing table why is it getting there oh my gosh hold on what's it going to show IP default gate so the default gateway is not set how in the world did you get there alright so honest-to-goodness I need to look at why that's forwarding routing is not enabled limit let me I am so curious there's no here's the deal this is a layer 2 switch and the show IP route verifies that show IP route if I if this was if routing was enabled it would do a show it would be a show the routing table even if it was empty list I I'm literally curious on how the how the heck core one was able to afford a packet and let me see if I have debug capability here I do I do let's do this again let's do a show IP interface brief I'm curious 10 0 12 1 1 1 that's definitely the 10 0 12 network and if we look at our 1 show IP interface brief so he's at ten zero 12:1 that's that interface connecting how and the heck did that work those types laying on the backend set up incorrectly let's do this let's do a show art that shouldn't it worked by the way oh right there no I'm puzzled all right so let me put my hat on here ten so in the ARP cache what this means is that this device tried to ping 1001 10 and some need an ARP and somebody responded oh it's probably whose MAC address is that one see oh it's r1 so what is happening I wasn't expecting this what's happening in measurable terms here is that r1 is responding on behalf of this address oh it's proxy our purpose what it is oh my gosh all right I'm gonna disable proxy ARP on interface boy I wish I'd seen this before I do the live stream I would have removed the issue so let's talk about this for a moment here's what I think is happening then we'll test it out this is how it goes sometimes and you lab things up and you practice it like wow look at that so this the switch did an ARP request why would it do in our pre quest though 10 0 12 did I put the right so thus we look at my network so the switch is on the 10 0 to 12 network and when it's looking for oh it's doing proxy ARP Wow ok in a normal environment you wouldn't be able to reach anything outside of your local network but what's happening here is that this switch without a default gateway configured it is doing an ARP request for a non-local IP address that's what happened it didn't ARP request for 1001 dot 10 excuse me for the host address of the PC 1 and router 1 said you know what I'm a router and I see I see you're doing this ARP request and what I'm gonna do is I'm gonna go ahead and say that's me and then I'm gonna go ahead and forward it because I know where that route is in my routing table boy this is not CCNA material anymore this is not your grandfather's situation if these are just normal devices they wouldn't be playing that game let's disable it I'll show you how to do it so let's disable it okay how do I disable proxy ARP on that interface let's know because it's a Wow alright let's go to the course which and do a config T interface and VLAN 1 and no proxy No alright how do I disable proxy ARP no IP Oh proxy up right there no IP proxy ARP so I'm gonna turn off here although I think I really need to turn off on r1 there we go so I just turned off proxy art on this switch now in in testing it's not a good idea to change three things and test it so I'm gonna do here is I'm gonna shut down the VLAN 1 interface bring it up now that proxy ARP is no longer enabled and my belief is that what happened is because we had no default gateway and proxy ARP was enabled it went ahead and will verify this in a moment it didn't our request for a non-local address our one who else has proxy ARP enabled said yep I see your art being for this non-local address I need to have it my routing table I'm gonna route it wrong shouldn't be doing that I mean it is literally happening but it's not nice and clean for CCNA so let's fix it I'm also am gonna make the other change here on router 1 look at its interface real quick which is gig once last year I'll not turn it off there because that's also part of the problem config T interface gig 1 slash 0 and you you are here for the ride my friend no IP proxy ARP alright actually I move back in interface gig ones let it's a 1 slash 0 shut that's a great way to remove all the ARP cache entries by the way I also killed my OSPF neighbors but they'll be back alright and we'll go to the course which sharp see here right here because it still has it in its ARP cache it'll still use it and so I what we're gonna do is we're going to face if we just do a clear ARP what happens is not as nice as what we'd think if you do a clear the ARP cache it doesn't actually remove the entries it'll just reset them to a timer of zero like we just learned them so I want to take the interface completely down and then bring it back up verify the ARP cache and then we'll do the ping and it won't work that's my that's my thinking all right so interface vlan1 this is the switched virtual interface will do a shutdown give it a few moments to think about life consider its choices wait for the message oh it's coming there it is and no shutdown I'll put some circle cam back on and we'll give it a moment come back up fantastic we'll do a show ARP don't by the way proxy ARP will not be anywhere near your CCNA certification exam okay great great so this is saying that this interface and this switch knows about the layer to address for its own IP address because it's there and that ARP cache is clear and I've disabled proxy ARP oh I should probably just say below proxy ARP on router 2 as well because let me just do that for safety purposes it'll save us a trip so let's take a look at the topology I'm gonna go over here to zero on r2 and disable proxy up there so in the event that Core one decides to do a broadcast for a local for a layer 2 address which isn't local r2 if he hears it won't actually respond to it so I'm gonna fix that also yabba dabba Dabba Dabba and that interface is gig to zero so we'll go to our two your face gig 2/0 and no IP proxy ARP come on and there we go didn't really need to bring it down up but just in case also it may take a moment for the neighbor ships to come back up through there and knit and two-way and then X start exchange all that good stuff and then become fle adjacent there we go so we're fully adjacent with r1 fantabulous now let's do it reset this course which is acting as a layer to switch now because we disabled IP routing we have no default gateway configured and we also disabled IP proxy ARP on all interfaces so now if this device tries to go ahead and reach any network and that's not local it should fail and if it doesn't we'll resolve that but we've explained and walkthrough why it responded to a feature called proxy art and now we'll take a look at how it really should behave in a normal network and I got a question last Q last livestream is asking so what experiences or what have you learned in a production environment through some situation that happened and this is a great example because I just forgot about proxy art I mean it's in the it's in my head somewhere but I I forgot I think the situation is that if you have a switch that does not have a default gateway configured by default it'll do a ARP request for the layer 2 layer 3 address were trying to reach even if it's not local and then the proxy art feature on the neighboring routers they see that broadcast for the ARP request I think oh I have a route to that I can help you out they lie they send their layer 2 address and then when the frame is forwarded to them they make a routing decision in Florida on its way and that's what I've reminded myself of with this lab alright so let's take a look come on core 1 starting off with the show IP route because this device is not enabled for IP routing it's not showing us the routing table which it would if IP routing was enabled it's just saying that Zee Vulgate was not set and it shouldn't be able to reach 10 0.1 10 I got a I make a really big confession here i I I hope I hope this does not work because it shouldn't work I just able to proxy ARP everywhere wait for it wait for it give up you stinking alright yeah it's not gonna fly when they showed up the first time I was like oh great is my topology wrong in the background so what's happening here is we have a frustrated switch we have a frustrated switch says I'm trying to reach 1001 10 it's not local and I don't have a default gateway so I cannot reach it so to solve that what we'll do and I'll let that timeout or we could do we could do a control shift 6 to stop it but what we'll do in the background is we will now configure a default route and we'll tell core 1 that it's I shouldn't say default route because routing stabled it's really a default gateway because routing is not enabled well tell core 1 to use 10 dot 0 dot 12.1 as its default gateway if it ever needs to forward packets off of his local network so we'll do that we'll go back to our interface and we'll go into configuration mode and the syntax is IP default gateway and then we'll put in the IP address of r1 which is 10 dot 0 dot 12.1 now if we do a show IP route it's gonna say my default gateway is 10.0 dot 12.1 and i'm ready to go so if we tried the up arrow key a few times and we that ping - 10 dot 0 dot 1 to 10 now what should happen is we should be forwarding that to our default router which we did r1 because it didn't have an ARP cache entry for the PC very likely had failed on that first one and then it after it resolved that was able to afford the rest of those packets and then we'll just do it again and we can also do a trace to verify the path so trace route 10 zero dot one dot 10 that's the PC one and our first hop right there was the router router 1 and then our second a second hop was our second stop was the actual device itself that my friends was way the heck more that I intended to teach today in this livestream but we're only halfway there so if we have a device like a PC or a switch where IP routing isn't capable it's not built into the feature set or it's disabled with no IP routing we need to have or should have a default gateway configured so that if that switch needs to respond or communicate outside its local network it knows where to forward and we're not relying on proxy ARP which nobody should have seen in this live stream but it's important to know how it works and that's how it works and I'm grateful that somewhere in my history I've encountered that before because I wouldn't be otherwise bu mmm what's is it broken all right that's a lot of fun so let's turn the tables now and let's imagine that we have them switch with IP routing enabled and then instead of a default gateway which would no longer be used we are now going to have a default route that we can either add in to statically into that router or we can have it trained via a dynamic routing protocol about how to reach everything so let's do that so in our topology to be clear where we're at router core 1 we are getting able to come an IP routing in global config and that somebody says hey buddy you've got the guts meaning you've got the internal software to support routing let's go ahead and do it and enable it and then if we do a show IP route we'll see that we're gonna have a routing table entry as opposed to just showing the default gateway and there we go so here's the here's before and after picture show IP route before we're enabling routing IP routing that's the syntax of so there's multiple options that start with ro UT so we're gonna say routing otherwise we'd be adding a static route so IP routing and now look at this do show IP route I love this part of the play so what this is saying is show IP route here's all the codes for how I might learn routes says this router I might learn routes via OSPF I might learn routes via e I GRP I might learn route to be a BGP cetera I made there routes to be a directly connected networks which is what that C is right there so that C says I'm directly connected to the 10.0 dot twelve network with the 24-bit mask and that's why it shows up as a see right there and then the L is just for improvements in routing for the local database so the L is gonna spell out a 32-bit route but it's just identifying the interface so there's our route to 10 0.12 via the VLAN 1 and what that really means that the Faerie in there that VLAN 1 means interface VLAN 1 that's the interface that we're using that were directly connected with so it's not talking about the layer 2 broadcast I mean VLAN 1 is talking about the switched virtual interface logical layer 3 interface called interface VLAN 1 so that's a significant significant difference also what happened to our default route I mean our what happened to our default gateway we configured a default gateway but because IP routing is enabled that doesn't matter anymore default gateways are for devices that don't route for other people now that we're doing routing for other devices with the IP routing enabled now we have our routing table if we want to route we got a we have three ways of adding routes basically number one we can add more interfaces and those will be directly connected networks great that works we have one here with VLAN 1 another option would be we can make static routes and we've had a video or two in this segment and this master playlist about static routes and that would work and we so static route could be either a static route that says to get to this certain network grate or to get to this or or static route could say this is the default route those are both options and then the other the third option is dynamic learning through a routing protocol and all three options are great what I would like to do because we have options with static routes right here or we have options with dynamic routing I'm gonna put on a little bit of a pause and ask you your opinion on which one you'd like to do we have two choices for getting a default route on this multi-layer switch we can use the dynamic routing protocol like OSPF which I'd be happy to walk you through or we could do a static route that adds a static default route so either way you want to play it let me know I'll go ahead and give you a moment consider that and I'll look at the first few answers that are typed into the queue having a lot of fun oh my gosh what a blast what a blast mm-hmm yeah give it a few moments so we're doing is we're going to add a default route to this device which is acting as a router now because IP routing is enabled also as you're typing in those answers and as I take a look in just a moment at the cue an IP version 6 that's also what's going on by default with IP version 6 ipv6 routing for other devices is not enabled by default on most Cisco platforms and so if you want to run ipv6 we'd also need to do ipv6 unicast routing and that's what enables ipv6 routing for other devices as I when most people configure ipv6 for the first times like hey I'm configuring this I can paint other devices that are local but how come this device won't route it's because routing is disabled by default for ipv6 so ipv6 unicast routing is how you enable routing for ipv6 on a Cisco device all right dar sure saying is is yeah well there's a lot of OSPF so 90 plus percent is saying Oh SPO for the win I mean I'm totally in tolian let's do that let's talk about a plan and then we'll go ahead and implement that plan together so because you asked for it because you want oh s PF which i think is a great choice by the way we need to have some OSPF running so fortunately in this topology right here OSPF is running already that means that r1 r2 r3 and r4 they're all running OSPF they're all in area 0 there's some other areas hanging off here also but for our purposes we have OSPF area 0 great and all we need to do is bring in core 1 on VLAN 1 and tell them that we want to play the game of IP routing with OSPF and because we've had other streams on that i think the actual well let's write it out that'd be worthwhile so we'll go into core 1 will go into configuration mode and we'll type in router space OSPF space and a process ID press ENTER and then once we do that we're then gonna do a Network statement and because he's on 10.0 that 12 network we could say network 10 0.12.10 please match says the wildcard mask on the first octet the 10 the second octet the 0 the third octet the 12 and we don't care about matching on the last octet and then we create a space and we could say area 0 just like that we also could just you know put all zeros here and put to all 255 s here and that would say don't care about matching anything put everything in the area 0 he only has one IP address so anyway it would do it and then we could also specify a router ID in fact let's do a router ID and this big the router ID 1 1 1 1 1 1 1 1 1 1 1 1 else yeah that'll work and then once we do that we're out core 1 one of these devices probably r2 is the designated router because it has a higher router ID based on its router ID and so if they came at the same time r2 is probably the DR for this segment that means our 1 is probably the bedr and that means core 1 hey for bonus points what is our 1 what does core 1 gonna be if we bring them up on this network segment that has a dr and a beedi are already in place I'm gonna let you chat that in I'll check the queue in just a moment for answers and then we can verify it together once we go ahead and configure this so back to the interface we go adding OSPF not because I want you but because you asked 5 and actually I do want to it's a great way to go so we're on core 1 and let's do it a do show CDP neighbors just to verify that we really are connected to r1 and r2 that's fantastic they are there and router OSPF one router ID 1 1 1 1 1 1 1 1 1 we go 1 1 1 1 1 1 4 octet souza all we need so there it is there's the router ID for OSPF and then we'll do a network statement 10 0.12 with a wildcard mask of 0 0 0 255 which means in English hey mr. Corwin here's what I want you to do says OSPF I want you to take a look at all your interfaces and their ipv4 addresses and any interfaces that start with 10.0 out of 12 boom you're gonna have those participate in OSPF area zero and and any directly connected networks to those interfaces whatever the masks happen to be on those interfaces include those networks also into OSPF so they can be advertised and and and share ashore shared with the rest of the OSPF network so we'll press ENTER and then we'll wait and it shouldn't be long there we go because there was a dr and a PDR already present there's no elections taking place we are going to become fully adjacent with the drm BDR on this segment and we have gone all the way through in it to a hex start exchange and loading and full with each and with both the routers both the dr on the the dr and the b dr we can verify that with a show IP ospf interface brief which says that we are state as the druther and there are two neighbors on that network segment and that's the count that's the C and then this first two is how many of those neighbors are we fully adjacent with and we're fully adjacent with both of those and we are dr other so we do a show IP ospf inter neighbor and there's our neighbor ships oh look look all right so our ones the dr so the reason for that would be if r1 if they both came up at the same time if r1 had a higher OSPF priority on its interface that would cause it to go ahead and become the dr if r1 on our two came at the same time but if the priorities were the same then the router ID would be the tiebreaker and the router ID for r2 is bigger better faster stronger but the results of this would be because r1 was brought up first which is true it has to be true here if all other things are equal and then it established and said there's no else here i'm the dr and then after that our two was brought up and that's why r2 is the BDR that's the reason then our three are switch one the core one is just a dr other meaning i don't get to be the dr i don't get to be the b dr I guess I'll do something else something other like a D or other all right so now if we do this show IP route this is gonna be big ready because it is synchronized all the LLC's for area 0 with that area oh my lab closed you've got to be freaking kidding me oh that's amazing I have a two-hour window that I sit up on these labs you know what I'm gonna reset we can do it you're gonna get a little bit of a redo here so I'll never bring up this camera for a moment and I'm gonna just launch that lab again and redo that work repetition is the mother of learning somebody said that when they had to do something many times they didn't want you know repetition is not a bad thing let me go ahead and bring that up a little embarrassing but fun oh I know it happened we ran into the proxy ARP issue we resolved that and went a little longer than I expected how many people do we have Wow 141 people are alive thank you love it I I'm just having a blast so it says about 1 minute and 20 seconds for this lab to load which isn't very long compared to if you had a if you had a multiplier switch I've got one somewhere close like a multiplier so it's physical one if you power it up it takes minutes to go just through the power-on self-test and then initialize and get going so we're just a few moments away it's gonna be totally worth it hmm oh you want to hear a joke that Wendel Odom told me yeah there's a good Linda Loudoun joke he goes what's a gateway he says about 50 pounds you know vacate how much does the Gateway I thought was pretty good at the time I'm reaching here for jokes keep the day job hey last night and this is almost ready last night I went to a play my wife is in it's called men in boats it's written about general Powell or mr. Powell the Explorer in 1980 1869 down the Colorado and it was fascinating and so the cast the way it's written it's played all by women these seven or eight women that play these roles of men it was so funny my son was in town we just had a great time I just um it Kurt was laughing so hard it's a comedy but it also teaches history about about the and they had it was a fairly small theater maybe seats like a hundred people and it was it was amazing good job I'm very proud of her a lot of fun alright and I think we are we are good let me bring back this I need to line it up just so right and then we'll do all that work again except not the proxy art because we don't need that anymore cuz really routing now alright so I'm going to line this up so it looks nice and pretty on all of our screens there we go okay so long story short core one show IP route routing is enabled because it's showing us the decodes for all the possible routing sources if routing was not enabled we'd simply say here's the default gateway and we're good to go oh it's connected via and one has a different interface I think let's do a show IP interface brief yeah Scott Todd 11 I can we can we have the technology we can fix that let's go through our original our original scenario interface vlan1 that's the gosh-darn all right take a breath Keith interface vlan1 this is the switched virtual interface and will say IP address 10 0.12.10 just like that now in ipv4 when you write and configure an ipv4 address it overwrites the previous one unless you do something else tricky like a secondary address or something but so we have one IP address we'll verify that with a do show IP interface brief and that will add OSPF to this bad boy and we'll be good to go so router OSPF process ID one router ID 1 1 1 1 1 1 1 1 1 we go there we go done Network statement Network I'm gonna go for all wild cards 0 0 0 0 and what that says is hey mr. router um if you have any ipv4 interfaces that are enabled for ipv4 and up there in everything's gonna match because the wild-card bits say we don't care about matching specifically on anything all IP addresses are in and we should have two neighbor statements are two neighbor Jason sees full in just a moment and there they are so router one router to fully adjacent and now where we left off in our last scene with his show IP route and I'm gonna limit this to say please show me just oh s PF learned routes then that way the routing table will be a little bit smaller show IP route OSPF enter and here we go so what we were looking for is the 1001 network which is right here and this is Swit in english here's what this says I'm routing for other people if I get a packet that's destined for 1001 that network that we're looking at right here I am going to forward that to the next router at 10.0 12.1 which is our ones address and that I need use the egress or exit interface of interface vlan1 which is the only layer 3 interface this which has to deal with and then what it would do it a packet being sent there this switch this core one would encapsulate at layer 2 the layer 2 address of r1 forward it router one would get it D encapsulate look at the destination layer 3 address and then re encapsulate layer 2 and continue forwarding in the direction it needs to go to the final destination so who sees the problem with this I do I don't see a default gateway I don't see a default route in this case so default gateways are for devices that don't support routing for the people now we're doing routing but I'm looking at this output and I don't see a default route so how do we add a default route to OSPF there I'm going to show you right now how to do it and then you'll have that in your arsenal and you'll be good to go somebody on this network somebody needs to add a default route into OSPF will it be r2 will it be r1 will it be r3 will be our floor somebody needs to do it and the way we add a default route into OSPF is we use the command we get a router configuration mode and we say default information originate and I think the hyphen is right there we'll find out in the live interface so if we go to our one and we say default information originate what our one is gonna do this is this is pretty cool what our ones gonna do our ones gonna say wow you want me to originate like the origin story for like Freddy Marvel character you know how they have the origin story of where he came from that's what this is for a default route this is me us telling r1 and router configuration mode for us we have default information originate bring in the default route and so r1 will will do it now if r1 has a default route it will do it it will inject a default route into OSPF and advertise it so every else can use it but if r1 doesn't have a default route it won't our ones like okay I get to bring in a default route but if r1 doesn't have its own default routes like flying like why would I tell everybody I have a default route when I don't have one so we're gonna tack on this option called always so that command right there says to r1 basically this mr. Arun look I know I know you don't have a default router real one but for the benefit of everybody in the area to make them feel better I want you to originate a default route add it to your routing table add it to OSPF so all the other we'll think they have a default route if they need to forward packets and they don't have a more detailed route they're gonna use their default route which is coming your way so hopefully you can do something with that but that's how the default information originated always command works you know SPF and the good news is we can see it right now because we're gonna go ahead and do it and that's the best way to practice and learn these things is by actually experience in live let's stand and doing hands-on you can do lesson packet tracer by the way it also supports this so back at the interface we'll do a show IP route OSPF and just for grins show IP route just to verify we don't have a default route from any source there's no Gateway of last resort then there's no default route default route routes are gonna show up near the top of the list these are now sorted numerically so if you ever route for zero zero zero zero it's going at the top of the list so let's go to our one and we'll add one show IP route so the trick here on our one is our one doesn't or one doesn't have a default route and that's okay we'll just use the always option and tell them to lie so config T router OSPF one and default - information originated meaning I want you to put this in OSPF please and always do it meaning oh yeah always advertise the default route what do you have one for real or not so we'll do that and press ENTER and then let's go make a road trip over to our course which so OSPF is very fast to converge if we do a show IP ospf i'm sorry let's do a show IP route OSPF and then i'll just gonna hit another key except for space just so we don't have to look at all the output there down below this is coming in as an OS PF route this is the default route here here's the syntax and according to core one it's next top is gonna be 10.0 about 12.1 but every router every router in the area knows about this default route if we went to a router 4 into this show IP route it's got it all right scooch up a little bit this is router 4 so it knows about the default route from our force perspective it's gonna use 10 dot 0 dot 24.2 which is r2 as its next top but the key is everybody has it so if we did a ping to [Music] 10.67 dot eighty three dot one two three which does not exist what's going to what's gonna happen is this router is going to look this is multi-layer switch it's gonna look at its routing table and it's gonna say do i know how to get to that do i have a route explicitly in my routing table that matches that or at least the first part of that the answer is it doesn't it's got routes for 1001 1002 1003 but it doesn't have a route for 1060 783 so as a route as deep as as a fallback he'll say oh my gosh I don't have a more specific route that's how routers through they go for the longest specific match first every time the longest specific match in the routing table but there is no match it goes to the obi-wan kenobe route which we're calling here our default route and it's simply gonna say we're gonna use default route of 10 0 that 12.1 and that'll be the next top that'll be the next router that we're gonna forward to and then here's what this the switch says not my problem I forwarded the packet I'm done next packet please and then they play that game millions of times a minute as they're forwarding packets across the network so instead of doing a ping let's do a trace so we'll do a trace to 10 zero animals I don't know if DNS lookup is on or not we'll see so it's not so we did a trace to 10.67 to a3 that one the first hop was router 1 and then we have these messages effectively these are ICMP messages coming back saying yeah I got this packet for 10.67 283 dot 1 2 3 and I have no idea where to forward it because I don't really have a default route otherwise I would have used it and forwarded to somewhere useful if we wanted to kill those packets we could put a null route on our one that just kills everything just easy to do by the way if we did this yeah right another story another day I just want to verify that our default route is being seen and now we've injected it via OSPF all right let me make sure I looked at my note look at my notes and cover what we wanted to cover in the session then we'll go to QA after I take a short break for water I wanted to identify two situations one is a device that's just routing for its self and that boils down to it's not willing to take packets from somebody else and make layer 3 routing decisions on it devices that are behave like that by default would be a layer to only switch an end device like a PC or something else that's not really trained to forward packets on behalf of someone else less running software that allows you to do that and the other option is I find for those devices they need a default gateway so the question yesterday in the queue was do I need to have a default gateway configured on every multi-layer switch in my enterprise the answer is if all your multi-layer switches are doing routing no because they can dynamically learn their routes or they're in the routing table and they can use a default route you can either put there statically or they can use it throughout any products I learn to route and forward traffic if we disable IP routing on a multi-layer switch for version 4 of IP then we would need unless you have proxy ARP enabled then you need to enable a default gateway so that that device could forward packets correctly off of its local network so default gateway think of a device that doesn't route for other people and default route think of a device that does route for other people but it's a last-ditch effort it doesn't have a more specific route in its routing table and that's that's what I wanted to cover in this CCNA Sunday what I'd like to do is take a quick break not too long I will put on some intermission scene for just a few moments and then I'll come back in less than 30 seconds and we can wrap it up with any Q&A that you have now as we prepare for that if you have any questions that are related to what we covered today that would be ideal if you have questions that are also related to CCNA this goes 200 F 301 that level that would be great that's what we're going to focus on and anything that's like way out of scope or our specific scenario that's out of scope I may pass on those not because I don't want to answer them but because I think I want to focus all of our energy here in these streams and this content for people who are working on their CCNA so yeah so if you can do me a huge favor you get real close for this just ignore the whole part about proxy ARP just if you're a CCNA just pretend it doesn't exist doesn't matter and then when you get into CCNP level and see CIA come see me and we'll talk about why that works and how it works even in a greater detail all right thanks everybody we'll see you back for a Q&A in just a few minutes our few moments [Music] [Music] walking [Music] life is a winding road no telling where it goes driving through days and nights won't stop for traffic lights [Music] all right welcome back for the QA and for this Q&A if you have questions you had earlier they got answered by other people in the forum fantastic I hang on the discord server watching some great videos on YouTube on how to set that up how to control it it's gonna be fantastic I I would guess that by next Sunday I'll have it all dialed in I've got a few people who have volunteered to moderate if you want to volunteer to moderate the discord server I'm looking for people who are wanting to help other people and that if you're one of those and you're willing to spend a few you know a couple hours a month in discord and answering questions and moderating I would like to take a list of everybody who wants to do that and give you that opportunity so let me type in how to do that contact at the Keith Barker comm yep so I just texted out chatted in an email address this is an email box that I don't check I haven't checked that off in the past I need to do that more I'll keep my eye on it for this purpose specifically so that we have some way of communicating there are a few people in the room right now which I have very much appreciated their support as far as helping out and doing things if you do become a moderator you're gonna have direct access to me so that's I am looking for a little friendly team not like a full-time gig but just like a team of people that we kind of build a circle of of teamwork and collaboration to help a lot of people and I can't do it by myself I can't moderate it the whole thing by myself though so I'm looking for help so you'll have access to me that's one of the the one of these small offerings I can give you is that you'll have access to me so if questions or comments or concerns or whatever I'm super excited about making our content available to tens of thousands of people who are learning CCNA every single month because those are the numbers I believe and the moderator team will help make that difference so you haven't subscribed yet please do so I send me an email at that link I just supplied if you want to be a volunteer for the moderator and I'll I'll go through everybody who wants to volunteer I will take a serious look at and again we need all the help we can get super thanks Marie so if you have a question for me go ahead and do an app keith barker in front of it that way it shows up in bright beautiful orange for me so I can see it and I'll be happy to take questions I'm looking at the screen right here this is where the Q&A is I'll make sure my mic is brought in pretty close working on improving that all the time all right and the first one that I see I'm gonna highlight these as they go through Paul is asking on the 35 60 on the 36 50 switch why can't I assign an IP address to a switch port great question so if we have a switch port with like 48 porch or 24 porch or how many ports it has by default they are layer 2 switch ports meaning there's they're expecting to be associated with a VLAN so switch port mode access to tell it it's an access port versus the trunk and then switch port access VLAN 10 to scientific than 10 and there's no upper there's no reason or opportunity to put an IP address on that switch port unless we change the rules we say hey you know dear gig 1/2 a good joke by the way is that's gig 1/2 if you ever hear somebody say that to you and they're in there and they know what they're talking about it's just a joke hey that's gig interface gig 1/3 because it kind of looks like a 1/3 anyway if we're in gig 1/3 and we want that interface to be a routed interface like a Cisco router interface the command is no switch port no switch port and say well what does that do no switch port tells the switch port that hey you did a great job appreciate your service as a switch port but we want you to act as the layer 3 interface now the physical interface and as a result that physical interface where we said no switch port it's now like a router interface IP addresses are now accepted on that interface if it still doesn't work for maybe the no switch port command is not supported or you can't put an IP address you may have a switch with the wrong image so not all images for iOS on Cisco devices are created equal if you have a basic IP lice our basic license that only support switching maybe that's not gonna be an option but I'm most layer 3 switches that are current in like enterprise license and so forth you can do a no switch port IP address and you're good to go that would be my first guess on why that's not working if it doesn't currently ok next question from Darsh and I thought when you don't have a default gateway when we get output of unreachable and the router than him alright I'm not sure I completely understand your question darshan but what we saw from the lab was that if we have a multi-layer switch with IP routing disabled and we have a VLAN interface with an IP address and we don't have a default gateway its behavior by default is to ARP for a non-local address which normally devices should not be are peeing for some layer to address for an IP address that's not in their local subnet what they should be doing is saying oh this is in the local network and as a result I'm just gonna go ahead and forward it a layer 2 to my default gateway and have him or her handle it but here we'll give this I had router 100 or two with proxy ARP enabled which means they were if they hear a broadcast in our request and they have a route to where that corresponding layer 3 address would go they lie they do a proxy response of their own layer to address so the switch just said hey I got a response and I'm going so it was a there was what do you call it a conspiracy really because the multi-layer switch with out a default gateway and the two routers on each side which both had proxy ARP enabled the switch was willing to do a broadcast for a non-local address which is a problem because it made it work and the routers were able to listen to that and live with the response coming back so hopefully that answered part of your question let me take a look at the list as we continue on give me one moment okay will a DNS request use the default gateway or a default route so it a deef a DNS request which is where the client says our device says hey e I want to go to CBT Nuggets comm what's the layer 3 address for that it's a DNS request clients are gonna be configured with a DNS server so they could have learned that DNS server information from DHCP probably and here's how it works if the client says ok let's imagine you and I are clients we're sitting on the network 10 0 10 0 1 like we were in the lab and we get a DNA that we need to make a DNS request if our DNS server is local we're gonna forward it directly to our DNS server but most of the time the DNS server is not gonna be on the same subnet we are so we would route that we would forward that as a unicast request at layer 3 to the IP address of the DNS server and at layer 2 to our default gateway because not on a local segment so DNS requests from a client would go to the default gateway if the DNS server was not on the same local IP network as the client making the request great question and then when the router gets it you know a packet destined to the DNS servers address it would look at this routing table and if I had a match for the DNS server like the match could be 8 if we had 8-bit routes or 12 bit routes or 16-bit routes or 27 bit routes we look for a match from any of our routes based on the destination IP address and if there's a match we follow that routing information the router forwards it if the router doesn't have a match it would then go to use the default route as a last-ditch effort and use that to forward the packet so as far as a DNS request would it use the default gateway or default route oh I just answered a wrong a different question if if the Swit is not doing IP routing it would have a default gateway and it would use this default gateway to for that request to a non-local DNS server if the switch was doing routing it would then use its routing table to make that forwarding decision to the DNS server so the default gateway on multi-layer switch is not used at all if IP routing is enabled so thanks for give me a second chance to answer that question that was from boom data so it just depends if IP routing is enabled or not and if the DNS server is local or not alright the Joshi 89 is asking can you help me better understand layer 2 and layer 3 switching absolutely in our playlist if you start near the top of the master playlist at YouTube one of the first 2 or 3 videos is about layer 2 switching and now we're talking about layer 3 routing with IP packets those would be great resources to go to one of the elements that's a little confusing for some is that we're dealing with switching this raw layer 2 switching we're forwarding frames based on layer 2 addresses just that's that the whole game and with routing we're looking at layer 3 IP destination addresses and we're making forwarding decisions based on layer 3 IP address header information so routers like traditional routers are routing packets at layer 3 based on IP addresses and switches layer 2 switches are forwarding frames so we call the data elements at layer 2 a frame of data based on layer 2 addresses the MAC addresses in those headers so now what about multi-layer switches how does that work when was a multi-layer switch is a device like the one we had in this lab that can do layer 2 forwarding so it's memorizing layer 2 addresses making layer 2 forwarding decisions but it also has switched virtual interfaces at layer 3 so if we send something to that layer 3 address based on its layer 2 MAC address associate with that it will look at it and it can make a routing decision or a forwarding decision based at layer 3 so with multi-layer switches if somebody says layer 3 switching I totally don't I if it was now if you and I were talking like nitty gritty never calls thing a packet unless we're talking about layer 3 and never call it a frameless is cut people in the real world outside of academia and outside of studying this they are going to very loosely talk about switching like yeah we're going to switch that packet from here all the way to there even though it they may be talking about routing packets a switch moving so unless we're being correct in context terms use like that all the time or yeah the frame is gonna take that packet are the switch is gonna take that packet forward it and you know really the switch is looking at the frame information layer to and making a forwarding decision if it's a layer to switch so I forgive everybody I don't I don't call anybody on that unless I was like in a boot camp you will call this and the reason it's important is because it's really important to understand how the network really functions that's that's my big goal this whole channel for CCNA people is that I wanna see see see new people people who are learning networking and CCNA is that if you really understand how it works which is my objective here to share what I've learned over the years with anybody who will listen and wants to participate if you really know your value goes up your your value goes up because it's not just memorizing a tidbit or a factoid or something for an exam it's that these are gonna start to come together and what you'll notice as you continue to these streams and re-watch them is that your your knowledge and understanding is better and ever people learn differently some people visualize some people are more auditory some girl are kinesthetic and just by but however you learn whatever your method is the more you put it all together when you when I think of a network my brain is in a different place like when I'm at my this is a recording office I have here in Las Vegas and my house is like 15 minutes away so what I'm here in this office if something goes wrong I'm thinking okay what does work what doesn't work what prop was likely the problem and I'm it's just from repetition I'm thinking about layers in my head not because I have to answer it on a test but because I'm thinking well the pain works but the service doesn't work so I realized that wolf the ping works guess what routing is solid as a rock don't look at routing anymore as far as like how to forward because the ping works that's all the way up till year three I think it's going back and forth so there could be something at layer 4 maybe it's a filter or an access control list or some security thing or or maybe the service is down maybe we're going to a web server or some other service like FTP or HTTP or a streaming server and maybe the server itself is not responding so just being being able to you know our can we go to our default gateway can I ping my default gateway yes can I ping to the Internet yeah can I use web services outside that no and then I would just isolate the fault I mean what I don't know how I got on all that but there layer 2 and layer 3 switching it could be if somebody says layer 3 switching I wouldn't I wouldn't cause really what's happening layer 3 whether you do it in hardware or software is routing but I wouldn't stop anybody on the street and say here I can't say that I want to make sure they understand how it works all right another question I thought by the way thank you for the questions so good to have you here I thought when you don't have a default gateway ok that was a previous one Marie's asking can you create labs and packet tracer that require us the troubleshoot problems you know what oh I'm glad you brought that up mari thank you on the discord server I'm super excited about setting it up well so it's so but there's a section where we can have people download content and I think what I would like to I have like 4 thoughts in my head let me go for one of those on the discord server I'm gonna make a channel or a category for requests and then I say I have one for CCNA like requests specific to CCNA and then requests for everything else like I want to do traffic engineering with MPLS and I want to do software to find implementation other requests it's just so I have them all and then that way if I take a look at the CCNA related requests if there's a lot of them including we would love some packet tracer labs or we'd like to do troubleshooting scenarios can you build us some labs that have known challenges in them to go ahead and troubleshoot and we can time it see how long it takes I will make that form that group so we can put those ideas in because I just talked to my son Paul I don't think he's like 1 a.m. in the morning last night after the show having a great time and we are discussing how to be successful and help other people and the answer is give them what they're looking for it's like III get it and so what part of his part of my feedback that I got from him was find out the the individuals I've known about you everybody is watching this right now find out what you want and if I can deliver that that's what I should focus on in my case I'm narrowing it to CC and I for YouTube that's why I want this channel to be I wanted to be the de-facto go to source your studying see tá along your way you should check out these videos because they will be very helpful to you in your journey and so in the discord channel what I can do is make that our discord server can make that channel called requests of things you'd like to have and then find out and make it easy so you can just go to discord say yeah I want this I like that and I can find out whatever it wants and then I can focus on that as opposed to I think they need to know this alright there are some things that we need to know but as we start building this full playlist and making it very very effective and leaving on the questions now at the end based on your feedback it's gonna there'll be a great tool for finding out what you want and packet tracer is certainly one of those that if you I'll wait till the discord servers up so I can collect them and not not lose them and that's the thing you'd like troubleshooting labs and packet tracer and I could present those very quickly here's the overview here's the topology go and you could do on your own time and leave feedback in discord I I think that's a great idea so if you would Marie when discord goes up know what should be my target is next week add that as a suggestion for CC any ideas thank you that's awesome thanks Marie alright Allah Alex is asking does enabling proxy ARP have adverse effects in production network traffic I don't think so because what it did was it made traffic work that shouldn't have it's like hey the network's magic it's just forwarding we don't know how it's working it's just going which may be that's the great thing so proxy ARP is used more for than just in this scenario proxy ARP is also going to be used for when we have Nats certain NAT implementations where it's give me an important feature to have so it's on by default I didn't change these so it's D I'm by default for these devices I don't I don't recall the top my head of proxy ARP having a negative impact other than if you're doing a live stream and you're trying to demonstrate the need for a default gateway and then that frickin ping works even though it shouldn't that would be the negative impact for a live stream oh and Palmer is saying I passed CCNA today fantastic it is that for record-keeping this is the 23rd of February last possible day to test on CCNA way to go way to go oh and Van Ray's asking what would be the qualifications for a moderator if you great question thank you for that if you want to help other people and just put it a little bit I'm not asking for any kind of like a job commitment I just want somebody who would be able to check occasionally the moderators will have the in my mind we'll see how this rolls out the moderators would have the ability to identify you know if there's harmful or mean speech that's happening we're gonna clamp down on that they would be able to recognize that and put that on hold just that you see it and also possibly ban other people from the site just if they for repeated offenses I don't want anybody accidentally get booted but I do want if you're if a person is just gonna be mean and they don't want to help I got bullied as a kid well we're not talking about that today sorry I just don't like bullies of any sort so if if you want to participate and just help like you don't have to know the answers all the questions but if you have internet connectivity and you want to help the community that's and you're nice you have a nice public disposition you're nice to people and that's really the qualifications Wow talk about bullying not good when I grew up as a 16 as 82 pounds and I wasn't I was just small as five feet tall my first driver's license in count in California Camarillo California where I grew up I should have kept a copy of it but my first driver's license no 16 showed me as 82 pounds five feet tall try to get a date that way no not happening yep so anyway thanks for that Paul great thank you for that and leave see if there's anything else here I appreciate all the feedback people are giving other people that's fantastic oh and trust the process is in the house I see him I see trust process answering questions trust the process if you would be willing to be a moderator I would love that and by the way I'll give all the moderators if you don't already have it the og of ite themed t-shirt I've got a few left and I'll hook you guys up so you'll get accolades from me verbally you'll have access to me and my thanks for helping out the team okay Thank You Marie a few moments of stutter so I changed a few settings before the last livestream I have the new camera and I thought to myself should I change those things back on this one and see and I'd Paul my son said you might want to change like one thing at a time don't change two or three things so I appreciate that and I will continue to dial in ight to avoid the stutter okay so Raphael is asking cool how can I join the discord channel once it's ready I will send invites as moderators I'll send invites to those people who want to be moderators get them dialed in and then in a live stream I will give an invite link where you just click out click it and you just take you right there you can join with that invitation and become part of the channel become part of the party Michael's asking can you give us homework yes and Michael if you would let's put that in the recommendations and discord so I don't lose it and then I can just take all those recommendations and sort through them and and do it so I'd be happy to do homework yeah if you'll do the homework I'm happy to sign it and Michael saying proxy ARP also allows frame relay to work fantastic looking through looking for my name to see upfront if there's any other questions ah thank you for the kind words everybody okay Ashish I hope I'm pronouncing that correct a s H is good to have you here oh he said can you explain gratuitous art please let's talk about art for a moment so we know that art is a process we're live for PC and our network device and we need to forward a frame to another device on that same local network by default we if we don't have that in our cache we'll send an ARP request the ARP request is shouting hey I'm looking for my default gateway which is IP address 10 dot zero dot one dot one I need the layer to address on your network interface card so I can forward frames to you in the future we shout that to the room as a broadcast so the switch is gonna forward that to every other every other report in that VLAN and that could be across multiple switches with trunking it goes everywhere in that VLAN and then the person has that IP address ten dot zero dot one dot one if that's the IP address we're looking for for the layer to address would we hear it and say oh that's me and it would respond with its layer to address back now there isn't too ARBs back and forth what happens is if we do an arp request we include in that our layer 2 information so when the router gets that it says oh here's your layer 2 information I'll put that in my art cache and then it does the opera spawn so it's a request and response and then both parties have the layer 2 addresses of the other one respectively with just those two packets back and forth so a good that's a that's a normal ARP ARP request what would happen if we go to a restaurant or we go to some event and we have a really great time it's very typical in many areas of the world to tip leave a gratuity they call it a gratuity it's not required it's just kind of you know offered and a gratuitous ARP is an ARP response or an ARP message that no one asked for it was out of the blue it's an ARP response out of the blue meaning it wasn't requested by somebody so you might have a router if it does a gratuitous ARP is somebody saying well here's my layer 3 address here's my layer 2 address anybody needs that you now have it now is it a little dangerous could be because if you have a hacker right who's lying he could be doing gratuitous Arps corrupting the layer 2 ARP caches on devices and becoming a man in the middle that's why we should use security measures like dynamic ARP inspection to verify that but that's what a gratuitous ARP is it's an ARP message that's being sent free of charge like as a as a gift not being requested by anybody but out of space just out of the desire to do it there's reasons to do it if we're cleaning up barbed caches or we have changes in the network we might issue a gratuitous ARP just to verify that it has the latest information so hopefully that helps and another question its EW GRP and regarding the router ID for EIG RP now in Cisco CCNA the current one there's no EIGRP at all so I probably won't include that as a live stream but for questions like that on the discord server really you know quit no CCNA related topics and then we'll have other go ahead and offer that in the other category and that way I can not lose it and go through it and if I need to research something I can I haven't played with the edge ERP and quite a while maybe a year or two but I'm about to because I just finished OSPF and a touch on almost EA GRP for the NP level stuff to revisit it the K values and the metrics and the feasible distance and the feasible successor and relearn how all that works except this time it'll be a lot it's always faster after you learn something six or seven times you hit it again the eighth time after he's like oh yeah yeah I got it getting it so um put that in a crest on this cord and I will take a look at it just because it's beyond the CCNA level Bosch cars asking Keith could you please briefly explain TCP flags flags are simply just bits that are on or off and so in a TCP header there's lots of there's flags for what type of message is this is this ATC so when two devices want to connect to each other with TCP think of it like going to a grill and there's a here in the states if we go to a grocery store or here in Las Vegas go to a grocery store and we just walk up to somebody like another customer who's looking at the vegetables and we asked them without making eye contact we ask them hey do you know where the rutabagas are here's what I think the default response would be the default response I think would be I hope they're not talking to me no eye contact and I just going to ignore that and see if they they go away and that's kind of like how UDP operates it doesn't care about establishing a relationship before they start communicating so who did that same scenario with the shopping center in the grocery aisle and if we were TCP it'd be like us going up and getting eye contact saying hey how you doing and they look over and say fine I'm say great good nice day now that little exchange that three-way handshake confirms that we are talking to each other there's no doubt about it we know they can speak the language at least those words because we had that communication and then we could ask them do you know where the rutabagas are whether they do or not is another story but the three-way handshake that little conversation sinks us up and gets us moving so in TCP they do that there's a three-way handshake and the flags in the TCP header help to indicate there's lots of flags actually but part of the flags regarding the TCP conversation indicate is this a synchronization request yes or no and that the initial three-way handshake is a synchronization request and then the response back it has flags that say whether it's a synchronization request or if it's a acknowledgement and the response back has two flags that are set the acknowledgment and the synchronization said two-for-one so the server says or the client says TCP syn requests in the header the response coming back from the server is acknowledgment and flag bit and then also my own synchronization requests and then their third and final one is the final acknowledgment from the client so those flags help to identify to the receiving parties among other things what type of TCP segment this is so officially at layer four we call the datagrams the chunks of data with their headers segments of data and at layer 3 we refer to them as packets of data with the IP header information and then that I can get some capsulated further into frames of data with the layer 2 information added and those headers just keep making the the data bigger and bigger and bigger so hopefully that helps a little bit with some of the TCP flags in the TCP header ok all adeje or the day he I pronounced that probably wrong Ola de ji I'm glad you're here asking are you the one making taking MPLS in the CCNP encore good question I know Jeremy's doing the BGP I think I am doing I am doing MPLS I think it's in the a and s RI course as opposed to encore though but regarding MPLS I believe I am the guy doing that because I love it I love MPLS I love explaining multi MPLS switching and labels and popping and pushing all that stuff so to come friend I believe I am the person who's doing it in both the Encore and then the concentration exam following that related to enterprise for CCNP and what happens is as a team as cbc Nuggets we chat and we discuss okay who'd be the best of this and who has time for that so I believe I am doing both of those thanks for the question and if I'm not it'll be something amazing but I believe it's me all right trust appraoch a trust the process thank you very much for all the feedback and helping the channel it's amazing I'm grateful and Almighty mech is saying yep there's no eigrp it's crazy there save that there's some in CCNP level all right moving on it's taking like these questions here how fast do you think it's possible to get the CCNA this is coming from Jorge how fast you think is possible to get the CCNA and what would be a good strategy to achieve it I am a starter thank you so much for doing this it really depends on your knowledge and your willingness I was able to get a CCIE in eight months and that was studying like four hours a day four or five days a week which was totally worth it by the way and for a CCNA I you know people take tests differently I would say how long would it take for somebody to take the whole blueprint go through it make sure they're comfortable do the hands-on and probably for an average learner who's committed to a few hours hmm I would say three months if somebody was gonna schedule the time talk to their loved ones and say listen I'm blocking off this chunk of time it's important for my career I need to get the certification I enjoy the technology Keith Parker thinks I can do it which I do by the way and then schedule that time and do it and if you schedule the time religiously meaning not just on Sundays but just or Saturdays or whatever that religious day is for you but schedule it and then do it and then when you're doing it turn off social media might that's my father calling right there Bob Barker I'm gonna have to say sorry but if you're if you're studying to time turn off all our social media turn off your email have a plan on what you're gonna stay that day study it set a limit also I wouldn't I would say don't stay for more than two hours at a time because that's well mm-hmm I can't say that all the ways because I've done that before but if you said moderate study times and you enjoy it then you have a plan for where you're gonna study tomorrow I think a person in three months with a good book with some videos and from any source that works for you that's fairly entertaining and also useful I think three months would be a fair target and packet tracers for you see have hands-on access there no matter where you study so I think three months would be realistic I would try to not push it I think my big by big change for me when I got my first CCNA but when I got the CC name for the first time was I was pushing it too hard and not really enjoying it I just memorizing memorizing enjoy it enjoy it enjoy the knowledge and learn it to know it and then share it with others teach others help others and this is a great way for me this live stream is a great way to refresh all this information in my head as well and then pass it on to others for as long as YouTube is in business alright I've got a question from Deano about multiple ISPs multiple default routes load-balancing h a so those questions are great beyond CCNA though so in discord I'll have two sections one for CSUN e related one for others and then if you could put that in the other that'd be fantastic and then if we have time to look at it or get to it I will make attempts at addressing many of those great feedback from a lot of people Ashish dampening with BGP same thing as far as way beyond CCNA but again on the discord server I'll have another channel for other things and if you want to add that there I'd be happy to take a look alright dharshan Thank You Mohammed's asking hi Keith how to keep up to date as my day-to-day activities not dealing with all the technologies and dealing with mixed environments to unit for another vendors its eNOS tricky I love in my career and currently I work with a lot of different vendors and topologies and technologies mmm checkpoint palo alto HP Cisco for sure VMware I do a lot of work in the cloud I'm not an expert on cloud we have some experts of CBT that do that so I think the key is focus on what you want to focus on and then if there's a certification track that kind of provides the structure that's a great way to go follow that structure and enjoy the process enjoy the journey but keeping really up to date on everything is something that I'm not able to do myself so I'm not the best person to give you feedback on that because things do fade I remember teaching something oh this is a true story I teach a lot of content at CBT Nuggets over the years I've been there almost eight years I started in 2012 and a lot of fun being there and works a lot of great people too and sometimes that I'm teaching something like uh I need to refresh on all that I'll go back to my content from three or four years ago go ahead and watch it like oh this is a self documenting videos for me and I think the same thing is for these streams too is if they're on YouTube for a couple years or two or three years they need to revisit something like load balancing with spanning tree I could think oh yeah I've got content on that let's go take a quick peek and I that's how it works although load balancing a spanning tree is pretty straightforward but some other topic that I might need to dig into alright let's take a look and I'm scrolling down the list here alright Michael is asking hey Michael he's asking can you give your take on the differences between svi which is a switched virtual interface let's pause there for a moment so you're on a multi-layer switch or on a switch that has a logical layer 3 interface interface VLAN 20 or what are the logical layer 3 interfaces that we're going to send address to what's the different in that and no switch port on an interface so every switch from Cisco every managed switch has the ability to create a switch virtual interface give it an IP address maybe a default gateway if it's not doing routing so you can manage it remotely let me grab a layer 3 switch hold on a second all right say hello to my little friend so this is a multiplier switch so let's imagine port 24 right there so port 24 is normally on a good day just a layer 2 port so internally if we did a switched virtual interface it doesn't physically exist anywhere here just it's nowhere it's logical inside the switch so if we have VLAN 10 for example when we go to the configuration we say interface VLAN 10 and then give it an IP address there's no physical representation of that anywhere it's just logical in here but customers are in VLAN 10 they appreciate it because they can use that as a default gateway and then the switch units guts can go ahead and logically route based on that layer 3 address it has and other later 3 interfaces they may have now this port right here 20 24 port 24 it is a access port or it could be a trunk or an access port but it's a layer 2 port in either case if we went into interface config for that specific port and we said no switch port and pressed enter that port this one physical port is just like a physical router interface it's no longer a switch port doesn't know anything about VLANs or trunking or any of that stuff it is a layer 3 interface so at that point you could treat this as if this whole box is a router and that one physical interface is a physical Ethernet or in this case Gigabit Ethernet port on that router then we could take this device with an rj45 connector plug it into another switch and it would be as if we had a router port that was connected in the switch or we could connect it to another device with the right cable and we'd be good to go so on this interface we'd give it an IP address and that interface would belong to this physical IP address so think of a no switch part as a physical interface router a physical router interface on the box that's what the difference is there's not a lot of the moment I say there's not a big use case for that we could probably create some in our minds but that's that's how works so sometimes when people build a lab they'll get like two or three multi-layer switches and then they'll assign a few ports as router ports so they can think of those as physical router interfaces and they connect them together so whether you logically use trunks and create logical VLAN interfaces or you carve out some ports and you physically have layer three interfaces there's a lot of different ways to build these Tinkertoys so Michael I hopefully hopefully that answered your question thank you for that Paul is asking about my CCA experience in the lab how was it it was brutal I've got a video I'll save that for the video feed sue on my channel if you do a search for keith barker CCIE I don't know if it's a specific playlist but I spent like 20 minutes talking about the experience when I did it bracken it was a two-day exam and it was brutal it was brutal and worth it it was worth it I spent eight months preparing me and Ed genese I'm CCA six seven eight three ed is six seven eight four we both took it we both passed in the first day and it was only because of lots and lots of trying and practicing hands-on and Edie was my salvation I say that whole story most of that for the YouTube video so check that out it's a it's a fun when I have a lot of fun teaching it also as you go back in time with my videos you're gonna notice this you're gonna notice that Wow look at this this is the keith Barker from 2009 this is the keith Barker from 2019 this is the Keith Barker from 2020 this guy is upping his game yes I am I'm doing I'm doing my best step by step I'm very motivated by Chuck Keith actually I like it Chuck Keith he put so much time and attention into detail and I just have most respect for him so I've been on the YouTube like nine almost I guess over ten years now and I learned from what I see and I think I can do better as long as I'm breathing and I can learn I can do better and that's my goal I share that enthusiasm with you and your certification careers and your IT careers alright um see here Andy's asking do you think that the new CCNA will miss some knowledge about networking of the so do you think the new CCNA will miss some knowledge about net working of the old one I think the new one is really tight meaning I I'm very happy about the new blueprint haven't seen the exam it comes out tomorrow the 24th yep but the blueprint looks really good and I'm what Cisco is attempting to do is they want to have you focus on the skills that you would really use in production and that you could take this knowledge and then move it forward CCMP and then onto ie if you want but the new and I don't think they're leaving off a whole bunch it's got some wireless fundamentals there it's got really good solid routing fundamentals it doesn't have a GRP but it's not not that big of a deal because OSPF in is the major routing protocol most people are using for i gps interior gateway protocols iso i I don't think we're missing out a whole lot I'm excited about the new one it's gonna be great Adolph was saying I wasn't aware there was a live stream today I didn't get the notification if it's youtube I just happened to stumble upon the channel and see you were alive I'm glad you're here I normally will send out notifications on social media the day before and I had a really interesting great day yesterday so after the live stream yesterday had lunch with my daughter then I went out to dinner with my son into a show and I didn't actually post until this morning like an hour before about the topics so it could have been just me so I apologize about the delay on that but this will be online in about an hour after we finish Keith's you've got to finish before you go in we'll finish here shortly so eight up home glad you're here thank you for being here and and I am I appreciate your comment earlier about the music and mix it up a little bit based on your feedback in a corporate networked we put a firewall or router first which device do we assign when linked and why ideally before we have the outside world hit our networks we'd want to firewall something that's purpose-built to defend the network and application your inspection so forth if we're just going reading to our sites maybe we're hiring some a bandwidth MPLS layer 3 VPN our circuit that our service provider is providing for us and it goes from like headquarters to our branch office it's very possible we don't need a firewall between that because it's all trusted traffic anytime if it's possible between the outside world and our stuff our firewall our web servers and our public services it's always great to have a physical hardware appliance because it can handle the load and the analysis of the traffic and maybe doing IDs or IPS as well so ideally whenever you're facing the outside untrusted world you'd want to have a firewall first then the router and if there's a perimeter router that could be okay too maybe you don't care about the perimeter router too much there's not too much going on maybe if you need it for routing capabilities but most firewalls have the ability to do outing as well and so we could probably just lump them into one firewall on the outside that would be preferred okay let me find my place again I'm looking for the highlighted yellows at Keith Murray's asking why do we have routers and layer 3 switches considered that layer 3 switches it yeah great so here's the scoop about layer 3 switches and layer 3 routers same thing except 1 is done in hardware and that's it so whether cisco uses a 6 like in a multi-layer switch for faster processing layer 3 routing is layer 3 routing is layer 3 routing and if they do it in hardware and they want to call it switching or they want to call out a multi-layer switch that's great but at the end of the day it's routing and that's good though because we can learn routing and then however it wants to be implemented whether they're doing hardware with a 6 to make it faster or not it's still routing so give me a marketing guy right now and I'll just sit down with them and he can talk about ho this multi-layer switch we do fast switching at layer 3 with Asics I'm gonna say well I already own your product I'm already a fan it's routing at layer 3 its routing its routing oh end its routing whether they're doing in hardware or not so some of that's just marketing and that's good to know so we can play and we might be a we might work for Cisco or another vendor and we're a pre-sales support engineer helping customers potential customers identify what they need why they need it and if the salesperson wants to call it layer 3 switching great we'll adopt that lingo but we'll know in our heads yeah we're doing routing based on IP packets and it's happening very very fast because of dedicated hardware called Asics that's application-specific integrated circuits all right Wendy great glad to have you here oh and I dan has a question I think I missed how do we connect to two different networks at different geographical locations use some kind of a LAN service provider and today we use a lot of service so you could you could tunnel over the Internet if you want to connect two sites together with the IPSec tunnel or you can have a service provider who has connectivity to those geographic remote locations and purchase bandwidth from them in the old days we used leased lines like 30 years ago and then we migrated to frame relay and now we use service provider interfaces most the time with just they give you an Ethernet port and say plug in okay great and then it's just like a need another Ethernet network that ends up to be the service provider network at the far side so there's layer two options there there's layer three options we can pair with a service provider but if you have a geographical different locations you need somebody in the middle so if you want to overlay overlay you're connected over the Internet you can there's quality of service issues there with guaranteeing jitter and delay and so forth or you have a service prior to pay for the connectivity all right Michael I don't know if I know the answer to your question and I apologize for not having in-depth knowledge of which is the most commonly seen people who would know that would be Ben Finkel who has a social presence and also Knox Hutchinson his website or his YouTube channel is data Knox he's all things automation all things API is I'd refer you to him for that one and Rodrigo is asking after I passed my CCNA is following the automation path the way to go for definite it to make it rain we'll see how dev net goes I think I'm Network automation is definitely happening in the future do you want to be a programmer a Network automation specialist it's important to start with the fundamentals of how the network works so that when you're automating switches and routers and so forth you know what they as they do we'll see if you like my son I was talking him last night he does he's amazing programmer hundred understands databases and interfaces and api's and working with a bunch of things that I don't have expertise with but he doesn't know everything it's like he has certain programming language they uses they uses for work and he's a master of and then others these like yeah I don't know that I could learn it but I don't know it as an expert so I as far as the automation path I would say what's interesting to you take a sample of dev net and some of the training there see if it rings if you'd see that gels with you or jives with you and it's fascinating go for it and start learning start studying and then use the certification the blueprint as a guideline the structure to study and then proceed but if if a person is never gonna do Network condemnation you're in a part of the world or a part of the country where you don't want to move and you're gonna be doing you don't wanna work remotely and you're gonna be working with fairly small networks it's very likely that you'll never see those automation pieces with you know you go in to support a company they've got a few routers from different vendors they're a few years old and it's gonna be basically the nuts and bolts of networking so it depends on where you're out and where you want to go with it it does take a little bit of time to study and learn all right Adolphe is asking since layer 3 switches are capable of routing do we still need dedicated routers these days for routing yeah no so if you go to a data center it's it's not likely that we're gonna see a dedicated rack-mounted device just as a revelant now unless it's integrated services and they've got voice service intervals in there and a call manager integrated so many times we're gonna have multi-layer switches for high-speed multi-layer switches with dedicated Hardware during the layer to forwarding layer 3 routing and as we have cables that go up to the wiring closets and all the other floors and locations those will be access layer switches probably just layer 2 that provide the connectivity through patch panels across the floor to the devices we go more and more Wireless we're going to have a lot of points that can plug into those access switches as well that allow people wireless connectivity so logically on a topology we might draw routers out but most the time those are going to be implemented in a single box without a separate device for the router but for learning purposes it's nice and handy to draw a router logically instead of having five multi-layer switches and then say oh we're gonna be popping in the VLAN interfaces which we've done in a couple of our streams but we worked up to it I didn't start that with our lead we started off with basic routing hockey pucks the routers and then as we started learning about switch virtual interfaces using those as logical routing points and then routing between them in this lab we just took score one and we actually added OSPF to it and we made it part of the OSPF routing domain alright and I'm just looking for my name oh our our rios is asking keith did you see the CCNA lab battle between network chuck and Jeremy if so what I think yeah I loved it I will I was I was in the chats with I I loved it Network Chuck and Jeremy both of who are fantastic trainers and I loved working with they did a joint livestream on a network chucks Channel and it was like virtual versus physical and it was great they're both in the same sheet of music by the way well they're both on the same sheet music about learning like hey let's take the barriers to learning and getting really good and remove them if possible and Jeremy's point I'm paraphrasing is that you know having that physical access and plugging in is can help you figure out the ports and get that really good foundation which I see the point that that's how I grew up some people like the Bronze Age I joke um today it's just there's so much less friction for virtual packet tracer being a perfect example if you want just it doesn't take any extra hardware doesn't take power you don't have to deal with the noise you don't have to get the physical gear that's like vegetables or fruit after a while it becomes less and less valuable and so I'm a big fan of virtual although this gear which I've had for many years most of it it does coming useful for a few corner cases I see both her parts and it was fun it was so fun to watch them together I loved it yeah so I think I did a few super chats for him just to let him know I was there and say hi and let him know I loved him okay Mariano thanks for that and their rails for the kind words and comments think so and for thanks for being here - we still 150 people in the United States we have this thing called a filibuster where somebody just talks and they take up all the time so things are there like so other other things can't pass this is not a filibuster I'm taking these questions because I want to be here one of them you're welcome okay is MTP an important subject and the answer for that Jamie is Network Time Protocol is on the blueprint so it's important to understand how it works how to configure it but there's not a lot to it so there's not a lot of heavy lifting with Network Time Protocol other than knowing what a client is a server is and realizing that sometimes it takes 15 minutes to sync up which in a CCI lab is difficult in a CCNA environment they're not going to ask you about how long it's going to take to sync up or make you wait that long if they give you a simulation and as justice asking why are you doing a full time job in a company which company are you a full time so in my career I started off in 1985 I went to technical school very well it was a year-long course and I went for eight months like well why didn't you finish they they pulled me out and said you're ready and so they the 80s electronic data systems which is a company started by Ross Perot a long long long time ago they were looking for entry-level technicians and so I've I interviewed with them and they said we want to hire you and I said I think I've learned everything I need to learn from school let me go and do the go to go to the field so I started off with the technician for ETS in Southern California loved it and just kept on learning and I changed jobs every couple of three years as I kept on progressing and getting more skills and I was always about learning learning and learning and worked at Paramount Pictures and Blue Cross of California and other really amazing companies and so in 2012 I was approached by CBT Nuggets and I fell in love with the culture I fell in love with the people yeah we were fairly small back then maybe 80 people 70 people and now we have a lot of people including a lot of developers and and they've been there longest job I've ever had now the opportunity I have is I still keep my hands dirty in the tech so it's not just creating training and big part of that too is when I'm teaching something I build a lab whether it's virtual or otherwise I'll build a pretty intensive lab and really go through it and then because I have that practice it keeps me a little bit so I don't take a lot of consulting jobs anymore I did for a while I was at I can't tell you where in Nevada but I did a project in Nevada I used to have a top-secret clearance which I don't anymore so I don't have any access don't don't blackmail me for anything and also if you have a top-secret clearance it's need-to-know basis and it turns out I don't need to know very much David asked me to come in and work on their firewalls in a certain area I won't long story short I had a task I went in configured it I left I know nothing about what was behind that firewall I just knew that what they wanted to implement as far as policies so occasionally I took consulting jobs nowadays with the YouTube which I love I love chatting with you I love building these relationships and I've met many of you I shouldn't say many I met a handful of you if you ever come to Vegas make sure you let me know so we can say hi Gus is one of those as an example I just love meeting people and hanging out so going back to that consulting part most of my time these days is creating content for CBT Nuggets which I very much enjoy creating these live streams which I very much enjoy and at some point I also want to create videos that are not live streams although it's so effective um so for me it may not be the most polished well it's actually just getting better and better but if I created a video that's an hour long or half-hour long it may take five or six hours to edit that and get it ready it's a live stream Here I am so I prepare my content I go through the lab a time or to make sure I'm clear on what I want to communicate and what we sharing this time together and then I record it and then when I hit done it's pretty much done and I have to spend hours free editing and then I can go and prepare for my next live stream and my other CBT Nuggets content than making so my full-time gig these days is CBT Nuggets alright sd1 and mpls is that a question MPLS is multi-protocol label switching it's just a transport mechanism to move so that's where we take a packet and we actually do insert layer two and a half and a little MPLS header between the IP header and a layer two header for the ethernet and with an MPLS path a label switching path across the network we can then do all kinds of really cool games with it we can do you can tunnel almost anything you want over this layer to path ipv4 ipv6 routing for multicast you can a lot of options traffic engineering is also capable so with SD Wan Software Defined way on what if we rein down those configurations regarding the MPLS Network and what we wanted to have happen and we rein down the configurations with software from a controller the software-defined wide area network because we didn't have to go to every device to manually configure it we just rained it down from a controller so that's a high-level overview and it would also go a lot faster if we did that way - okay he's scrolling down if you need to if you need to bolt feel free it's been great having you and then Murray's asking about full duplex wireless wireless with I'm not aware of full duplex wireless so it's yeah these airwaves these frequencies so with Wi-Fi six I mean there's some serious throughput but I think unless we use two different channels one for sending home for receiving two different frequencies we still have just a constrained air wave so freezing the same small range of frequencies I don't believe we can get full duplex unless we use two distinct and separate channels one for setting and we're receiving a bit I'm not I'm not up to speed on that all right question about when do we see videos on cc and P security I probably won't do those on YouTube my youtube channel here is gonna be focused primarily I wanna make sure this is really a clear path for anybody working on their CCNA he's like hey you know if you're working on CCNA give Keith Barker's videos free on YouTube look and it'll be a good help and enforcement of concepts that you're learning with CCNA but for CCNP I probably gonna keep focused here in this and my discord server and everything on on YouTube this night plan at the CCNA level when I help those people are just starting and anybody who wants to come back to our channel like alumni and help them I would like you be moderators and help with the process as well so there please don't expect too many videos on CC and P on YouTube those little behind the you know CBT Nuggets we have a bunch of offerings here but not on YouTube let's see anything else I think we're nearing the end of this list I'm looking for my name thanks thanks for the kind words everybody what is CBT stand for has a Kenny asks many years ago like CBT Nuggets was founded like 1999 about 20 years 20 years and a few months ago and at that time computers were fairly new and upcoming and I modified that for a moment and so a new way of training was introduced called computer-based training CBT and so back 20 years ago is like state-of-the-art thing and and the owner the owner of the company who still with us is it used to he at some point he figured out how to do training and put it on a CD this new thing called a CD compact disc and then mail those this before DVDs and mail those out to subscribers and sell them on various platforming eBay was probably one of them that I would if it was out there then so anyway that's how we did it and it grew into okay now we're how do we stream this or get it live out there and and how do we continue to grow and we doing very well with a lot of happy customers and so CBT stands for a computer-based training and then the Nuggets part is our training is intended at CBT Nuggets to be concise and nice ingestible chunks like nuggets of gold that you can consume that aren't like 2 hours long like this life journey so in the live stream I'm loving the questions and I'm happy to sit but at CBT Nuggets our goal is to keep them very tight so if you come in and you're looking for CBT Nuggets a video on OSPF there's gonna be one on router ID you click on it maybe it's five to seven minutes gotta lab to support it talking about hey router IDs got to have them here's how they work you know it's gonna use the router ID configured first test doesn't exist highest IP address on a loopback that doesn't exist highest IP address on an interface and that's gonna be the router ID let's verify that lab it up configure it three ways verify the results I hope this has been informative for you and like to thank you for beginning as our tagline is very end and they're using they're intended to be short now sometimes they may need to go just a lab it may need to go the longer that's cool we give the instructors the trust of saying hey if this needs to be 12 minutes make it twelve minutes if it can be done in five minutes you know concisely and with lab support where it's appropriate fine make it you know make it shorter and so we it depends on the topic and how we want to slice it up so CBT Nuggets computer-based training Nuggets nuggets of goodness that's where the name comes from thanks for the question and all right let me alright regarding CCI Enterprise I'm gonna leave those for a discord section on the discord server once it's up so you can post those if you want that way other people can help and answer those in this live stream I'm going to focus on CCNA mostly so thanks for the questions the comments I have a couple that are you know of the black nail okay so so thanks Mariano so that black nail my sister whose name is Susan she's my older sister she's seven years older than I am she was out my wife performs at Cirque du Soleil she's in the circus she's a singer at oh she sings two nights weeks on Wednesday and Thursday at circus lay they have one lead singer and she does it she did a fret Mystere for a decade or more and as she said oh they called her in and she said she read semi-retired in 2017 and they called her back and say will you come and work at o for a couple days a week and she said yes so that has nothing to do this finger so on this finger there's little bit of a two left from our subnet Saturday yesterday my focus is not working at every time Harry um so my sister was coming to town I was she was coming in I was going to the airport to pick her up I was in a rush I had my hand on the frame of the door and I wasn't paying attention to my door that goes to my garage has a spring that pulls it shut like a hinge spring and these two fingers were in that path and the full way the door just slammed and I was on my way to pick her up at the airport I was like please I'm not sure I was talking to you but please let the stop hurting it was just like out of control pain and I just drove to the airport picked her up and then I might lose that nail that could happen but that's the story on that that happened about three or four maybe a month ago maybe a month and a half ago so that's the story on the nail it doesn't hurt anymore and after about a day and a half it was still throbbing it didn't hurt and now I can type again which is handy okay and yeah circus ladies a lot of fun thinks well I think that's all the questions that have my name on them I see a lot of people responding and helping other people so that amazing I love I love networking I do and I really appreciate all your participation we have a hundred and fifty-four people live in the room right now based on that screen and I'm grateful for all of you thanks for hanging out and I'll get this chord server up next week think about what you would like to see what you'd like to have and I will do my best regarding CCNA related stuff I'll do my best to actually create those as live streams or videos whatever works out most convenient for us what are we decided to do and post them and that way you can have your opinion which I appreciate and I can help deliver on this channel what you want to see so forever he's just joining us late or if you're not yet subscribed please take a moment to do so also if you haven't heard about it yet the master playlist is where I put all these videos in what I think is the best order so that'd be a great place to go through if you have friends that are getting into networking it's a great playlist to have them go through starts at the beginning with what's a server and a client and then it goes into layer 2 switching and the race is on video by video by video you might want a spot check and see which ones are interesting to you and which ones aren't and I've been talking for 11 12 wow I've been talking for I've been talking for almost two and a half hours so when I have a chance to meet you and we talk in person we go grab a beverage or hang out if you come to Vegas it's not like this I'm not just a one-sided talking it is a two-way dialogue and I kind of feel that with all the chats going on I feel like I'm not monopolizing the discussion and I care about what you think and I care about if you're doing well and I want you to succeed in Cisco and networking it's been incredible for my life in my career and I want that for everybody who's willing to put in a little time and effort to get that so alright let me just take one last peek fantastic all right thanks everybody we'll see you in the next livestream [Music] [Music] walking on [Music] [Music] brought by side bright eyes now [Music] [Music] [Music] [Music] [Music] [Music] [Music] [Music]
Info
Channel: Keith Barker
Views: 26,959
Rating: 4.9604611 out of 5
Keywords: 200-301, 200-301 ccna, 200-301 cisco, 200-301 vs 200-125, 200-301 videos, 200-301 exam, 200-301 ccna certification, 200-301 study, cisco, ccna, networking, cisco ccna 200-301, cisco ccna certification, cisco ccna training, default gateway ip address, default gateway explained, default gateway in networking, default gateway, router, gateway, default route, default route configuration, default route explained, default router, default route cisco, routing
Id: V5Lz5SydDjU
Channel Id: undefined
Length: 158min 9sec (9489 seconds)
Published: Sun Feb 23 2020
Related Videos
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.