Non Cisco Emergency GBIC/SFP’s
Today saw me in a spot where I had a dead Fiber SFP. You guessed it. 3750 chassis. Well I only had a few laying around and some were Linksys and one was stripped of stickers.
Needing this link back up whilst I waited for a new one I plugged in a non-Cisco SFP. Behold the error.
%PHY-4-UNSUPPORTED_TRANSCEIVER: Unsupported transceiver found in Gi1/0/1 %GBIC_SECURITY_CRYPT-4-VN_DATA_CRC_ERROR: GBIC in port 65538 has bad crc
All SFP/GBIC's contained burnt in Hardware ID, Vendor Name, Serial and CRC. The following command which is undocumented allows to bypass this error and brings up the interface!
LAB-SW-A(config)# service unsupported-transceiver LAB-SW-A(config)# no errdisable detect cause gbic-invalid
Voila! There you go. Quick fix. Just note that when you issue a Show Tech for TAC, it will reveal that you have suppressed this message and that you have overridden support of Cisco Only SFP/GBICs. That means no help!
Wanting CD drivers when installing from USB
Well I must say that I have deviated from networking blogs once again to bring you a Microsoft fix. This silly error plagued me tonight. Installing Windows 7 Ultimate x64 on one of my laptops. I have a legitimate key that I use to install my versions of Windows but at this stage after moving house I have lost media/key.
I made a USB boot disc from the ISO. Using Jellybean I suck the key out of an existing install. Easy enough. After booting into Windows 7 installer I am faced with this silly error.
“Load Driver A required CD/DVD drive device driver is missing. If you have a driver floppy disk, CD, DVD, or USB flash drive, please insert it now. Note: If the Windows installation media is in the CD/DVD drive, you can safely remove it for this step.”
Awesome. Well I am installing off a USB. It doesn't apply to me. Initially I curse then I thought "Oh well if I remove the CD drive.. *click*". Well it did it again. No worries. You want to really know what fixes it?
Swapping USB ports. Simple as that. Off it goes on its merry way. Peculiar.
Anyway, Jobs done.
Does a Tight Budget or a Time Crunch Mean It’s Okay to Compromise Security?
Ignorance? Tight budget? A lack of management comprehension?
I’ve just walked out of a meeting in which I drew upon the largest dose of self-control in my young career. The topic was expansion – new network, new designs, new servers. Factor in some delicious VMware server clusters and possibly some 4500 series switches, and this isn’t a project to gawk up. What has got me riled up this morning is the fact that all anyone wanted was the end result. They also wanted it, you guessed it, yesterday! No matter what corners were to be cut, the project was required to be done. The biggest corner cutting came at security.
I raised this point and asked, “It’s nice to want all this, and this is how we are going to achieve our end result, but what has my red flag raised is security. Nothing you have mentioned addresses this.” The curt reply was to make it work within the budget. This off-the-cuff, flippant response irked me, but I know not to fight fire with fire.
I have thought about how to solve this roadblock while teaching my colleagues/superiors about the importance of security. I want to do this in a way that highlights the need for security, as well as the steps that can be taken to minimize compromise and theft. I know currently that management are of the mindset, “A breach hasn’t happened to us.” A cotton-wool protected cocoon safely tucked away inside of virgin-guarded Internets has people foregoing firewalls and IDS/IPS systems. But generally, it’s not “if” an attack happens, it’s “when.” Gosh, I know my 1841 router at home shows port scans against it more commonly than Lady Gaga wears crazy outfits, let alone an enterprise Internet-facing device.
Now, sitting back at my Macbook, I am currently calming down. But I am adamant that the next meeting I walk into, I will be armed with reasons why we need security. Hopefully, I can find information about breaches into companies similar to the one I am assigned. Maybe then, reason will be seen just as light is seen when a light switch is flipped on. Things like:
- Why you can’t put a price on security, but what you can expect from spending X,Y, or Z amounts.
- Why you can’t pretend you will be okay.
- You wouldn’t expose your own body to harm. Why expose your network?
I’ve put this post out to the Packet Pushers community, and have some questions.
- Have there been situations where you have needed to calm yourself and recollect before trying again? I’d love to hear about it.
- Currently, I am working with the minuscule budget figures that are left over to implement a rock-star security solution. How have others dealt with similar situations?
Breaking down the blueprint.
Having passed the CCNP ROUTE exam last September I have experience the importance of finding out what is required of you. With the CCNA I felt that by reading the books with some light Packet Tracer (I just threw up in my mouth) you had enough knowledge to pass the exam.
With my ROUTE exam I realised very quickly from the depth of the information presented that studying to align to blueprint topics was important. Cisco publish the blueprint for each exam on the Cisco Learning Network. This is vital for Professional level exams in my opinion. For the CCIE you must align your studies with the blueprint. (Note that a valid CCO account is required to access.)
Today I am going to show my methodology to learning a topic. Being an exposed to a variety of technologies in my current position most things that appear on a certification I have used or read about before. Only occasionally I have come across technology that is 100 percent new to me on a certification exam.
Step 1 - Choose the Desired Certification
This depends on you, you and well, just you. Don't study for something you aren't interested in or study for something trying to predict market trends. Study and pursue something you enjoy. Why? Passion. Passion for a technology, just like your career is contagious. It spreads. It allows your brain to absorb more information when you genuinely enjoy a topic or subject. ( That's how I feel about Routing/Switching/Security and I have zero evidence other than my gut feeling)
Step 2 - Read the blueprint
This is important. I don't mean look at it and see what technology it is asking you to know about. Read the fancy words!
Note the language used!
Let's use this SWITCH exam blueprint as an example. Note the words such as Determine, Create, Configure, Verify, and Document. These give indication to the depth of knowledge required for each technology. Below is my determined level of depth. Feel free to comment if you believe otherwise.
- Determine - Assess hardware and software capabilities and requirements based on information presented.
- Create - Make based on your own experience a document, implementation or verification plan based on well-known technical and life-cycle information.
- Configure - Pretty easy one here. Actually sit at the CLI/GUI and deploy the said technology. In the case of the above picture you should be able to configure things like STP and its flavors, assign vlan's and implement trunks.
- Verify - Confirm! This is very important. What show commands prove that you have done what is required. How do you know what vlan is assigned to what port? Confirm by verifying commands with show output.
- Document - This one is a bit silly but somewhere in that Cisco Press OCG or FLG there will be an obscure page telling you the information to include when documenting the change. This really is an industry experience in my opinion.
Step 3 - Recommended reading
Cisco publish official certification guides and foundation learning guides for nearly all of their exams. This is supplemented by technology specific books. I have for all my exams thus far lashed out and bought the OCG and FLG of each exam. I believe in the fact that information from multiple sources is key to understanding topics thoroughly. When I bang my head against a wall, sometimes all I need is the same information presented in a different way. I believe the Cisco Press books are great for this.
Step 4 - Additional Information
This is important. Industry vendors, non-certification publications, Audio/Video demonstrations or RFC's. Take your choice. Absorb what you can. Get deep. Just remember that you should aim for a depth that gives you a solid understanding of the topic. You want to learn this topic and not just memorize it.
I am very lucky in the fact that I have access to a variety of vendor offerings regarding the certifications that I am currently studying. INE, IP Expert, CBT Nuggets, Cisco Press, and O'Reilly just to name a few. Add to this the blogged experiences of fellow engineers and the IETF's RFCs which are the holy grail of information you have no reason not to know the required exam information.
Step 5 - Lab.
All this reading is one thing. Knowledge is power. Time to transform this knowledge into handy CLI skills. Get down and dirty. You learn so much about deployment from actually doing. It is one thing to use software such as GNS3, IOU and Rack Rentals. It is another to physically do it. The latter is hard to do but I recommend taking note of what you do when you work on physical equipment.
Now, back to certification labbing. Create, break, fix, optimize, break again, add another technology. Watch how the network adapts or changes. If you don't know why then write down what happened and go research if that's how it was supposed to react. I think it is a great idea to create a production style network (Choose Cisco IOU ( Don't ask me where to get it) or GNS3 for this) and treat it like you would your workplace. Set a continuous ping from end to end. Change the routes in the core without loosing connectivity. Test yourself. Test your knowledge. Only then will you truly understand the power of the knowledge your brain contains!
Another way of labbing is to create a new company. As you work through your certification studies you should strive to add more and more to it. In the case of SWITCH start with some VLAN's. As you go through add ISL and 802.1q trunks. Experiment with VTP. Pretend to audit your network and lock it down with security mechanisms. Add in access layer security, tighten up your STP domain, or simply explore some IOS hardening options. Each technology could be added to a blog. Starting a blog is a great idea to get your opinion and technology you use out to a larger audience. I feel that this is a topic in its own right and a blog best saved for another day.
Step 6- Notes
I take notes. Hand written believe it or not. I feel for myself personally it increases retention. I create notes for written theory and lab work. Whilst you are studying theory there are lots of little bits of information which are vital to your studies. Timers, caveats, and default settings which you may need to remember or compare. I also take notes of when I am labbing. I draw diagrams of my network. I draw how I want STP to converge if I pull this link out. I write down what went wrong and where my mistake was when it didn't converge the way I wanted it to.
Step 7 - Wrap up
Well now I have gone through my information I generally peruse through my materials again and re-read my notes. I will continue to lab and attack each topic. I need the information to gel so I always keep reading. It's possible for me to read a chapter or a blog or a section of notes repeatedly for me to understand it.
Ant's Thoughts
“A mind needs books as a sword needs a whetstone, if it is to keep its edge.” - Tyrion Lannister
I hope that this has helped you on the path to certification or just topic breakdown. This blog applies to certification blueprints but can EASILY be adapted to topics in general and not just of the network discipline. If you structure your learning you will find that the retention of details and topics becomes easier. Just remember that you must dedicate yourself to your craft. Always read. Keep learning and keep reading. You can never stop. The day you stop learning is the day you will plateau. These exams are a test of your knowledge and network prowess. They are not a recital.
Married Life
On a crazy Melbourne day the December before last I proposed to my girlfriend at the time. She said yes and fast forward just over a year and we got married. I have now entered married life as of the 20th of January this year.
We got married at a little boutique hotel called Lindenderry and celebrated with my friends and family. ( @Networkjanitor managed to make it down from that bush state up north! ) I had the best time of my life and now have the best wingman for life.
She has supported me in so many ways and is a driving factor in getting my CCIE. She believes in me. It's great to have someone to share your dreams and aspirations with.
This is just a blog post really to show off a picture of my beautiful wife and our special day.
Mr and Mrs Burke
Who is this guy?
About Me- Network Engineer, blogger and CCIE wannabe. I am a guest blogger on PacketPushers, my own content here at blog.ciscoinferno.net and on Twitter @pandom_
Twitterfeed
- Labbed - Rootguard (with answer key) blog.ciscoinferno.net/lab-rootguard Try your hand at stabilizing your L2 topology today. 1 day ago
- RT @fetep: Four 9s is 4.32 minutes of downtime per (30 day) month. You will not reach four 9s if it takes 10 minutes to escalate an outage. 2 days ago
- Looking at Mi-Token 2FA and now looking at you @networkjanitor , @cooperlees 2 days ago