|
|
I failed the exam the other day, P+ k& A$ q& M5 D f
v4 a+ X6 c- G+ Q, n6 p EThe fail was down to the config as I was not up to speed on the A3-4 variation and had forgot the flows etc and it was just too difficult in the short time to do it all. I lost a lot of memory also but that is life. : W5 j: X7 Q" D0 I9 t
. n! O3 k. w2 Z5 [, k" [Tshoot - Old - Pass
% s# s5 v; z7 ~* L2 f$ y; X1 - Add vlan 12 between SW 1 and 2. x! A/ H+ X* ~. y
2 - ppp missing on R17. removed chap callout, no ppp route acceptance6 W. s. {; Y" ?6 g# _2 J
3 - Cost on R22 & wrong ospf PID on one of the routers0 D. p' |- E! v3 O! k9 j0 Y( ]
4 - had to add metric 1 1 1 1 1 1 and remove delay on R13. R13 also had passive facing R11
8 [0 U* x2 R7 [8 x5 - everything worked past R2 and no matter what I tried I couldn't get the Probe 2 trace to start at R5's link. Very disappointed I couldn't solve that anyone know this one?
$ V% ` x: `' A- b6 - Wrong Ipv6 config on R22 aswel as wrong next hop.
# Z+ Z! R1 }4 Y. E0 i- Y7 - SO many! eigrp summary - split horizon, wrong maps on R18 and R19, maybe more but I solved it. YOu need one of the 2 four pointers or you likely will fail TS. A& t9 @6 ]6 F7 s) S2 t: D
8 - Just couldn't get my head around this. AS-Path attribute map Was not my strongest ticket going into the exam.
K# E1 g1 {+ c! M9 A9 - Cannot remember - I think the issue was on R7 - Maybe missing map dynamic 3 z- r5 p; ]& Y
10 - MAC configured under NAS interface - removed and set correct identifier under the dhcp router. * R4 b' N# b w# z0 b/ t. d
2 a1 U5 y8 `5 L& @2 J3 D; M- d O5 \Diag - New DHCP and Hacker - Pass
7 m7 M1 m2 l* k" p2 Y; e! z* g4 X- c5 q& K
Problem device - SW1 relay switch
; ^2 E. e0 F2 B% t4 g$ B' KIP dhcp relay info trusted was empty6 H* |6 j3 C3 ~8 U8 G2 V
filtered by bootp and picked the first packet where you see the mac of the server in the header. Mine was 113" d# o: [1 E4 n4 C: J7 o2 I) v
! w% V" ^1 j9 L" K
Hacker
$ U" v+ q& L/ p$ d5 m# q+ V% @6 wI took an age doing this. Its tricky the way they word it. I went through the full unscrambled script in the packets also5 W/ X, l' l9 Q3 \3 A
" b' y( a M0 j C4 `/ h9 hWhat is happening. 8 i1 J5 K& f K6 N# K7 I+ m
tcp connection from router to 10.1.2.1
$ V5 F! N9 i6 f- Qdownload of tch script via http
9 n" [8 i s+ A; w7 B7 Usession from remote host to 10.1.1.1 over port 1337
" z! z6 ]% v, [) r9 l* y6 U0 aransomware installed via the backdoor.
% k2 k9 \, D/ a( F* Z" W
g- J$ p8 N! ]7 {tclsh copy flash via http
7 M/ i& w) d4 F5 k3 ]6 T" X6 k) @1 i; ^# g: R! M/ B
Which will bring the system down
; Y& U3 O: T8 i. [, V9 B/ I6 Tsudo poweroff0 z& h+ T( A* e- P& J8 O2 O8 m
6 T+ M- O5 E3 |5 ? O5 zA3-4 - Fail
' `* c- m5 }5 W* u2 @8 pVRF version
Q7 q/ t7 F" B$ b0 f" O
" e. C+ ]5 h& o9 |0 ]Asked for only 3 stp instances so used MST - Layer 1 was simple I passed it all. - _+ ~" f5 }5 z; c3 \0 Y
, B5 ]* W0 o& ^As I said I don't know much about these vars. Bad bad mistake I am very mad with myself. 2 y2 h. c1 n* M& N: A/ Y J
I got a lot of the basic igp stuff going, all the mpls, DMVPN but because I hadn't fixed a lot of other routing steps (BGP mainly) I got 0 in the respective sections. . S; i9 N% K; b! |! J3 n: x
/ F e v- x) w4 ?, g
7 F0 R2 d X% aOne note to take away is another candidate got B12 and said every single ticket was different to that on the forums. They got Non vrf A3 and passed config and diag and failed due to all the new faults in B12.
7 B- e* ^5 U# M9 `) k! \ R6 C8 \: u; T
only god knows what I will get next time. I put all my hopes into getting the A5 variation done and I regret this.
" N2 y0 M7 S& r1 _
+ ]) Y/ l/ m: f; V% jAnyway. It was a great experience and I will be back stronger.
, _* @- t: D1 q/ G+ [5 d3 S0 ]
: H9 \, O* f# t% KLesson learned. & p* l7 U6 J, F7 h a
|
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2017-4-22 10:48:30
置顶卡
喧嚣卡
变色卡
千斤顶
发表于 2017-4-24 08:47:18
