CCIE Pilot

conf t
alias exec r show ip route
alias exec ss show run | s ^router
alias exec sr show run | b ^router
alias exec s show ip int brief
alias exec su show ip int brief | e unassigned

alias exec r6 show ipv6 route
alias exec s6 show ipv6 int brief
alias exec rc show run
alias exec i show run interface
alias exec b show ip bgp

alias exec o show ip ospf
alias exec e shwo ip eigrp
alias exec c config term
alias exec pm show policy-map
alias exec rm show route-map

alias exec al show access-list
alias exec pl show ip prefix-list
alias exec m show ip mroute
alias exec pp show ip pim
alias exec cm show class-map

alias exec v show vlan brief
alias exec pb ping 255.255.255.255
alias exec ciop clear ip ospf proce
alias exec cien clear ip eigrp nei
alias exec cib clear ip bgp *

alias exec cir clear ip route *
alias exec t show int trunk
end
wr

The upcoming Version 4.0 of Cisco CCIE® Routing and Switching certification will test hands-on troubleshooting, Multiprotocol Label Switching (MPLS), and VPN networking.

To reflect the growth of the network as a service platform, Cisco is revising the certification requirements for CCIE Routing & Switching (CCIE R&S)–the expert level certification for network engineers. The new requirements were developed with assistance from Cisco enterprise customers and reflect the expectations of employers across industries.

The competencies required for CCIE R&S v4.0 certification were released on May 5, 2009, and are available on the Cisco Learning Network under the CCIE R&S v4.0 Written Exam topics and CCIE R&S v4.0 Lab Exam topics. Exams based on the new requirements are scheduled for release on October 18, 2009, and will immediately replace the currently available v3.0 exams. Candidates who plan to take their exams on October 18, 2009, or later should prepare using the new v4.0 exam topics.

Both the written and lab exams will be refreshed with new questions and will cover MPLS and VPN networking. The written exam will add scenario-based questions to the multiple choice questions, and the lab will now require hands-on troubleshooting of preconfigured networks, in addition to configuration. Exam duration and pricing will remain the same, with the two-hour written exam at USD$350 and the eight-hour lab at USD$1400. A beta version of the new CCIE R&S v4.0 written exam (351-001) will be available to all customers in the July–August 2009 timeframe at a discounted price of USD$50. An announcement will be made when scheduling begins.

https://cisco.hosted.jivesoftware.com/docs/DOC-4605

What Cisco proprietary STP feature configured in a switch prevents it from becoming a transit node under most circumstances? 

Answer (Highlight to answer):  Uplink-Fast

Q5. Accoring to RFC specifications, what is the exact Administratively Scope Multicast address used in common/real practice?

Answer (Highlight to answer):  239.15.0.0/16 (but for CCIE exam its is 239.0.0.0/8)

Q4. IGMP packets are designated by which IP protocol number?

Answer (Highlight to answer): 2 (two)

Q3. The member ports of a switch’s local EtherChannel are set to on. In order to successfully form an Which PIM forwarding mode uses a flood and prune method, with a 3 minute cycle?

Answer (Highlight to answer): PIM dense-mode

Q2. The member ports of a switch’s local EtherChannel are set to “on”. In order to successfully form an EtherChannel link, the remote switch’ member ports should be set to what mode?

Answer (Highlight to answer): Mode “On”

I am posting 1-2 question(s) of the for the CCIE RS core knowledge exam every day. This will be short and brief, can be answered is few words. I will call it “banner qotd”.

banner qotd – New CISCO IOS command. ( -:).

Q1. In EIGRP, it uses a multicast flow timer and a retransmission timeout to control the Reliable Transport Protocol. What is the average elapse time, measured in milliseconds (ms), between the transmission of  a packet and the receipt of the acknowledgment?

Answer (Highlight to answer):  SRTT (smooth round trip time)

Found this compilation from IE. This is extremely a must to master! Read on!

Where the $%#@ is it? Some Popular DOC-CD Locations

Hello faithful blog readers. We all know there are some real treasures in the DOC-CD that can assist dramatically in the lab exam. Here are some of our reader’s favorites. Thanks to my friend Ruhann over in South Africa for the post idea!

All navigation begins from http://www.cisco.com/web/psa/products/tsd_products_support_configure.html

I. Bridging and Switching

a. Integrated and Concurrent Routing and Bridging

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. – Cisco IOS Bridging and IBM Networking Configuration Guide, Release 12.4 – Part 1: Bridging – Configuring Transparent Bridging

II. IP IGP Routing

III. BGP

a. Best Path Selection

Cisco IOS Software – 12.2 S Family – 12.2 SB – C.G. – Cisco IOS IP Configuration Guide, Release 12.2 – Part 2: IP Routing Protocols – Configuring BGP – How BGP Selects Paths

b. Community Values

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. -  Cisco IOS IP Routing Protocols Configuration Guide, Release 12.4 – Part 1: BGP – Connecting to a Service Provider Using External BGP

c. Regular Expressions

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. – Cisco IOS Terminal Services Configuration Guide, Release 12.4 – Appendixes – Regular Expressions

IV. IP and IOS Features

a. NTP

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. – Cisco IOS Network Management Configuration Guide, Release 12.4 – Performing Basic System Management – Setting Time and Calendar Services

b. HSRP

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. – Cisco IOS IP Application Services Configuration Guide, Release 12.4 – Part 1: First Hop Redundancy Protocols

V. IP Multicast

a. Intermediate IP Multicast Helper

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. -Cisco IOS IP Multicast Configuration Guide, Release 12.4 – Configuring an Intermediate IP Multicast Helper Between Broadcast-Only Networks

VI. QoS

a. RTP Port Range

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. -Cisco IOS Quality of Service Solutions Configuration Guide, Release 12.4  – Part 2: Congestion Management – Congestion Management Overview – IP RTP Priority

VII. Security

a. ACL Favorites

Security – Firewall Appliances – Cisco ASA 5500 Series Adaptive Security Appliances – C.G. – Cisco Security Appliance Command Line Configuration Guide, Version 8.0 – Reference – Addresses, Protocols, and Ports

b. Control Plane Policing (CoPP)

Cisco IOS Software – 12.4 Family – 12.4 Mainline – C.G. -Cisco IOS Quality of Service Solutions Configuration Guide, Release 12.4  – Part 4: Policing and Shaping – Configuring Traffic Policing – Control Plane Policing

http://blog.internetworkexpert.com/2008/12/08/doc-cd/

CCIE Lab Strategy: A Structured Approach
http://classroom.internetworkexpert.com/p73138523/

Emerging Technologies: IPv6 and the CCIE Lab
http://classroom.internetworkexpert.com/p23982603/

CCIE Catalyst QoS
http://classroom.internetworkexpert.com/p95576427/

CCIE Route Redistribution Demystified
http://classroom.internetworkexpert.com/p42549585/

CCIE Routing and Switching Multicast
https://ine.webex.com/ine/lsr.php?AT=pb&SP=TC&rID=66637&act=pb&rKey=7B093AE190FBBBF4

The links above are very helpful on my CCIE Lab Preparation.

I’m sharing to you what I call “Gold Mine”.

I encoutered this on my NMC Graded labs. They asked this on the switching and bridging portion. I reliazed now, this was originally from the BGP section. Not only “?” but I think any escape charters will do, like “!”.

Rack1SW1(config)#vtp domain HELLO-WORLD??
WORD

Rack1SW1(config)#vtp domain HELLO-WORLD??!
Changing VTP domain name from CISCO-A to HELLO-WORLD??!
Rack1SW1(config)#
*Mar  1 00:04:48.411: %SW_VLAN-6-VTP_DOMAIN_NAME_CHG: VTP domain name changed to HELLO-WORLD??!.
Rack1SW1(config)#do show vtp status | i Domain
VTP Domain Name                 : HELLO-WORLD??!
Rack1SW1(config)#

My 2 cents.

Please note that “ASET” and “Assessor” are two different things.

Cisco Assessor:

• 4 hour timed labs
• Must be purchased
• “all-or-nothing” scoring similar to actual Cisco CCIE lab
• Content direct from, or approved by, Cisco CCIE team
• See the last page of this lab guide for more information

Cisco Advanced Sales Engineer Training (ASET) Labs:

• “Full” labs designed to take approximately 8 hours to complete
• “Modular” labs can take 1-4 hours to complete depending on topics
• No cost
• No time limit on sessions (depends on how you have been set up)
• Partial credit scoring
• Need to be granted access by a Cisco Partner or a Cisco SE
• Please see http://www.cisco.com/warp/public/765/download/pep/aset.html for more
information

CCIE R/S Lab Sample Open-Ended Exam Questions
By Anthony Sequeira, #15626

Here are some samples for the many, many different open-ended questions Cisco could ask for the R/S track. Please notice there is no need for panic if you are using one of our recommended study approaches. Also, we have received information that these questions will be computer-based and you will answer them before the configuration portion.

Bridging and Switching
• Explain the advantages of MSTP (802.1s).
• Explain the advantages of RSTP (802.1w).
• Explain the differences between 802.1Q and ISL.

IP IGP Routing
• Explain the advantages presented by the DUAL algorithm in EIGRP.
• Why does OSPF use a DR in an Ethernet LAN environment?
• Why does OSPF feature different network types for use in an NBMA area of your network?

BGP
• What issues can the use of a peer group solve in BGP?
IP and IOS Features
• How can a Cisco router assist a client PC to obtain a DHCP address from a DHCP server located on a remote subnet?
• What issue does HSRP help solve?

IP Multicast
• Discuss issues that exist with the PIM Dense-Mode protocol.

QoS
• Describe differences between Custom Queuing and Class-Based Weighted Fair Queuing.
• What are the advantages presented by DSCP markings when compared to the legacy IP Precedence approach?

Security
• Describe the basic operation of CBAC on a Cisco router.

hxxp://blog.internetworkexpert.com/2009/01/14/ccie-rs-lab-sample-oral-exam-questions/

I am taking advantage as a CISCO Gold Partner. I am eligible for taking free CCIE Labs under the ASET Program. Read on below. If you think your sponsoring company is a Premier, Silver or Gold Cisco partner, then you are eligible for this program. Pls contact your Cisco representative.

Details and Prerequisites

Today’s internetworking environment continues to become more complex as the frontiers of technology move forward. To remain competitive, resellers are placing ever-increasing demands on their internetworking support professionals. These demands promote the need for expanded reseller technical training to provide a solid foundation for selling and supporting Cisco networking solutions. With that, the WW Channels Organization provides the Advanced SE Training Initiative (ASET). This initiative is to help provide guidance and support to certified partners who may need help meeting these challenging demands.

Program Details
ASET is remote access based training largely specific to post-sales build, configure, test, troubleshoot and debug efforts. The training covers a broad range of topics and general knowledge. (OSPF and BGP routing, to name just a few) General LAN/WAN knowledge, including data encapsulation and layering; windowing, flow control, and relation to delay; error detection and recovery; link-state, distance-vector, and switching algorithms; and management, monitoring, and fault isolation.

Knowledge of a variety of corporate technologies-including major services provided by Desktop, WAN, and Internet groups as well as the functions, addressing structures, and routing, switching, and bridging implications of each of their protocols. Knowledge of Cisco specific technologies, including router/switch platforms, architectures, and applications; communication servers; protocol translation and applications; configuration commands and system/network impact; and LAN/WAN interfaces, capabilities and applications.

Participation
To take advantage of Advanced SE Training, a partner must have the sponsorship of their local Cisco WW Channels SE. This means that the partner SE and the local Cisco SE must prepare a technical readiness plan which includes the following:

1. The evaluation of the partner SE’s level of technical expertise. This allows the local Cisco SE to provide suggestions on classes to take, books to read, and web links to online trainings. Usually this is done before the candidate attempts the written exam. Then a second evaluation is conducted before the attempt at the lab exam.
2. Suggest attendance in a Cisco Certification Study Group hosted by the local Cisco office. By joining the local CCSG the partner SE can participate in discussions on various topics pertaining to the CCIE Written Exam or other Cisco Career Certifications. Many of the CCSG’s have guest speakers discuss areas of specialization such as TAC engineers, Lead SE and Product Managers.
3. Outline a partner SE’s ability to devote the self study time and ability to apply practical study methods.
   Practice

Lab Prerequisites
After completing the initial steps provided by the local Cisco office, the following prerequisites must be met before an ASET Practice Lab can be scheduled:

1. Successfully pass the CCIE Written Exam.
2. Schedule a CCIE Lab Exam.

Candidates should always keep their sponsoring Cisco SE Up to date on their progress.

If all prerequisites are completed:

To request access to Practice Racks online, contact your sponsoring Cisco Channels SE for scheduling.

For more information on Cisco’s WW Channels ASET Program, please send e-mail to aset-reg@cisco.com.

http://www.cisco.com/warp/public/765/download/pep/aset_qualify.html

For qualified CISCO powered network partner, there is a free CCIE RS and Security 4 hour lab by ASET Labgear.

Click here to register:  http://cpn.labgear.net/ccieprep/

Happy Labbing!

Below are my checklist for troubleshooting. The layer 1up approached.

-Administratively down interface?
-IP address correctly applied to an interface? Swapped?
-Check for unwanted secondary ip address?
-Trunk or Access port ethernet interface?
-Vlan association to an interface correct?
-Watch out for tricky IP address name and vlan number?
-Frame-relay lmi type must match -  Cisco, ANSI, Q933a?
-Switchport? or No Switchport?
-Subnet mask consistent?
-Ip routing enabled or not needed?
-Consistent VTP Domain, Password?
-Unwanted dynamic routing protocol running on a router?
-Subnet zero not configured?
-Ip classless configured?
-Ip cef enabled?
-Frame-relay map DLCI mapping correct?

Please feel free to add.

We always see a /32 host route every time we use PPP. What if you dont like and want it? What will you do?

Diagram:

R1-s0/1<<—–Serial-Connection——>s0/1-R2

Answer Configuration: use “no peer neighbor-route” interface command.

R1 and R2

interface Serial0/1
 ip address 12.12.12.x 255.255.255.0
 encapsulation ppp
 no peer neighbor-route

Routing Table: Before

     12.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C       12.12.12.0/24 is directly connected, Serial0/1
C       12.12.12.2/32 is directly connected, Serial0/1 <<<<< Get rid of this!
After:

Gateway of last resort is not set

     12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, Serial0/1

Verification:

R1#ping 12.12.12.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 12.12.12.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/38/56 ms
R1# ping 12.12.12.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 12.12.12.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 52/68/120 ms
R1#

Show to know:

R1#sh int s0/1 | i Open
  Encapsulation PPP, LCP Open
  Open: IPCP, CDPCP, crc 16, loopback not set
R1#

Diagram:

R4-s0/1<<——–Serial-back-2-back———>>s0/1-R5

Question:

Configure PPP on the Serial connection between R4 and R5 using dialer
interfaces.

Answer:

R4 and R5

interface Serial0/1
 no ip address
 encapsulation ppp
 dialer in-band
 dialer pool-member 1
 pulse-time 1

interface Dialer0
 ip address 45.45.45.x 255.255.255.0
 encapsulation ppp
 dialer pool 1
 dialer idle-timeout 0
 dialer persistent
 end

Routing Table:

C       45.45.45.x/32 is directly connected, Dialer0
C       45.45.45.0/24 is directly connected, Dialer0

R4#sh dialer

Se0/1 - dialer type = IN-BAND SYNC NO-PARITY
Dialer pool 1, priority 0
Idle timer (never), Fast idle timer (20 secs)
Wait for carrier (30 secs), Re-enable (15 secs)
Dialer state is data link layer up
Interface bound to profile Di0
Time until disconnect never
Connected to <unknown phone number> (<unknown phone number>)

Di0 - dialer type = DIALER PROFILE
Idle timer (never), Fast idle timer (20 secs)
Wait for carrier (30 secs), Re-enable (15 secs)
Dialer state is data link layer up
Number of active calls = 1
Dial String      Successes   Failures    Last DNIS   Last status

My motivation of this trivia questions is to save myself from the unknown. I’ll do my best to post very quickly those small things that can never be discounted on the real lab.

Question:

• SW1 and SW2 should see each other as CDP neighbors via SW3
across the routed link that connects them.

Diagram:

SW1———-f0/1–SW3–f0/2———SW2

Answer:

SW2:

interface FastEthernet0/1
l2protocol-tunnel cdp
no cdp enable

interface FastEthernet0/2
l2protocol-tunnel cdp
no cdp enable

By Anthony Sequeira, #15626

“Proctor, Proctor, give me the news, I got a bad case of Multicast blues!”

Are the proctors helpful or not? Many have plenty of opinions on this. At the very least, let’s consider some tips that might help us in working with them…

• Be polite! If you are confrontational, they are going to be far less likely to care about you and your silly question about the lab ☺ An example of politeness that I used was to always preface my question with a comment like “I am so sorry to bother you…” or “May I take a moment of your time?”

• Demonstrate your mastery of the subject matter in your question. Politely stress that your issue is vagueness or grammar in the task – DO NOT give any indication that it is the material you are struggling with. And while you might be a bit upset that the grammar in the lab is poor, certainly do not go to great lengths to point that out! The proctor you are speaking to may have written that task, and they might take great pride in it! Here is an example of demonstrating your mastery on a subject – “Sir, I am considering the use of Root Guard for this task as I believe it meets the requirements, yet I am concerned about the request that the interface must be Shut Down by a violation. Technically Root Guard does not do this. Root Guard blocks the port using what is termed a root-inconsistent state. Is it still a viable solution even though I am not truly shutting down the port?” You are going to get a lot further with the proctor that way then this way – “Should I use Root Guard for this task?”

• Do not be afraid to visit a proctor two or three times about the same question. I did this in the Multicast section and eventually got the guidance I needed.

• If you are getting nowhere with a particular proctor, try another one if that is possible at your testing center.

• Immediately following a lab attempt, spend some time with the proctors to pick their brains about ways you can improve, their grading system, etc. They are very willing to help typically!

• Do not attempt to bribe your proctors. They might take your money – BUT THEY DO NOT GRADE YOUR EXAM! Someone in another time zone grades your exam! ☺

Do you have other tips? Let us know in the comments! Thanks for reading my dear friends! And special thanks to Chris from my Mocklab Workshop for the sample proctor question! He asked it the correct way of course. ☺

Cross posted from http://blog.internetworkexpert.com/2008/10/15/tips-for-working-with-the-proctors/#comment-10175

Questions and Answers:

1. Advertise only odd network

210.8.40.0
210.8.41.0
210.8.42.0
210.8.43.0

even 40,42

40 0010 1000
42 0010 1010
0000 0010

odd 41,43

41 0010 1001
43 0010 1011
0000 0010

answer:
acl odd  210.8.41.0 0.0.2.x
acl even 210.8.40.0 0.0.2.x

x = 0 = route
x = 255 = host

dont care = 1
stings of 32 bits

————-

2. pick only even /24 from 202.78.0.0 / 16
make as few line as possible, permit no more no less.

202.78.00000000.0
202.78.00000010.0
202.78.x.0

0  0000 0000
2  0000 0010
4  0000 0100
6  0000 0110
8  0000 1000
10 0000 1010

1111 1110 = mask = 254

answer : 202.78.0.0 0.0.254.0

even: acl permit 202.78.0.0 0.0.254.0  .0 on last octed means a route!
odd : acl permit 202.78.1.0 0.0.254.0  .0 on last octed means a route!

————–

3. Group / Summarize: is a few lines a possible

172.16.31.0
172.16.32.0
172.16.33.0
172.16.34.0

answer:

31.0

32.0 /22
deny 35.0

acl deny   172.16.35.0 0.0.0.0
acl permit 172.16.31.0 0.0.0.0
acl permit 172.16.32.0 0.0.3.0

31 0001 1111

32 0010 0000
33 0010 0001

34 0010 0010
35 0010 0011 <<—-not present!

0000 0011 Mask = (3) , 2 bit position difference, so 2 to the 2 is 4, thats 32-35.

Tip: You can over permit but make sure you deny the over permitted route.

—————–

4.  Group / Summarize: is a few lines a possible

172.16.31.0

172.16.32.0
172.16.33.0
172.16.34.0
172.16.35.0

172.16.36.0
172.16.37.0

answers:

acl permit 172.16.31.0 0.0.0.0
acl permit 172.16.32.0 0.0.3.0
acl permit 172.16.36.0 0.0.1.0

or

acl deny   172.16.38.0 0.0.1.0
acl permit 172.16.31.0 0.0.0.0
acl permit 172.16.32.0 0.0.7.0

Tip: Depends on how you group the routing according the position, will result in same 3 line answer.

——————–

5. Summarize in as few lines a possible.

168.192.3.0  /24
168.192.14.0 /24
168.208.11.0 /24
168.208.14.0 /24
168.208.3.0  /24
168.192.11.0 /24

—

answer, group first.

168.192.3.0  /24
168.192.11.0 /24
168.208.3.0  /24
168.208.11.0 /24

168.192.14.0 /24
168.208.14.0 /24

then,

192 1100 0000
208 1101 0000
0001 0000 mask = 16

3   0000 0011
11  0000 1011
0000 1000 mask = 8

14  0000 1110

answer:
acl permit 168.192.3.0   0.16.8.0
acl permit 168.192.14.0  0.16.0.0

———
5. summarize in as few lines as possible

207.49.164.0 /24
208.49.164.0 /24
205.49.165.0 /24
207.49.165.0 /24
192.49.164.0 /24

answer, group!

192.49.164.0 /24
208.49.164.0 /24
192 1100 0000
208 1101 0000
0001 0000 mask 16

207.49.164.0 /24 <-stand alone.

207.49.165.0 /24
205.49.165.0 /24
205  1100 1101
207  1100 1111
0000 0010 mask 2

answer:

acl permit 192.49.164.0 16.0.0.0
acl permit 205.49.165.0 2.0.0.0
acl permit 207.49.164.0 0.0.0.0

or

192.49.164.0 /24
208.49.164.0 /24
192 1100 0000
208 1101 0000
0001 0000 mask 16

207.49.164.0 /24
207.49.165.0 /24

164 1010 0100
165 1010 0101
0000 0001 mask 1

205.49.165.0 /24 <-stand alone.

so, another answer is:

acl permit 192.49.164.0 16.0.0.0
acl permit 207.49.164.0 0.0.1.0
acl permit 205.49.165.0 0.0.0.0

————–
7. Create an ACLin as few line as possible

182.17.73.0

182.17.77.0
182.81.73.0
182.81.77.0
190.17.73.0
190.81.73.0
190.17.77.0
190.81.77.0

190 1011 1110
182 1011 0110
0000 1000 mask 8

17 0001 0001
81 0101 0001
0100 0000 mask 64

73 0100 1001
77 0100 1101
0000 0100 mask = 4

In every octet there is a differnce, so we can put this on a

single entry!

answer:

acl permit 182.17.73.0 8.64.4.0

checking tip: put the middle network say 190.81.73.0 and

mask, the router should put the lowest IP address (

182.17.73.0) to the running config. This will ensure you that

you have computed correctly the mask.

———–

I can’t help it, I have a feeling this should come out and be part of the exam. Therefore this should be a must for all CCIE candidate to master!

ccie-pilots-boot-campers

CCIE Instructor: Jacky Hon Ming Chan, CCIE # 15908

From left to right: Mar, Mon, Erick, Daniel, Elfred, Jacky(CCIE), Jovi, Sherwin, Reggie.

CCIE labs changing from UniversCD to Cisco Documentation

On Sept 24 2008 CCIE labs will no longer support using the UniversCD documentation for the lab exam.

All labs are migrating to Cisco Documentation only. For those scheduled to take the CCIE lab prior to Sept 24 access will still be available for UniversCD.

The Cisco Documentation pages have the same information that currently resides on UniversCD, please refer to the links on the CCIE web pages to view these pages and become familiar with the new format.

After Sept 24 2008 only the Cisco Documentation web pages will be available for CCIE labs.

Cross posted: http://www.cisco.com/web/learning/le3/ccie/announcements/index.html#universcd