Best products from r/networking

Depending on your level of knowledge:

Networking

Brocade IP Primer I haven't read it myself, but some guys around these parts that I have a lot of respect for recommend it highly for beginners.

CCENT Offical Cert Guide Good next step after above and gets you the CCENT cert which is half the ccna if you pass the test.

CCNA Official Cert Guide Next step after CCENT, gets you CCNA obviously if you pass the test.

If you need to know some basic wireless, I highly recommend the CWTS by CWNP. It is meant more as marketing/sales, but honestly its a really good entry into wifi. You can always follow it up with the CWNA after.

And an always favorite, the network warrior. This book really brings it all together for doing day-to-day networking for a ccna level. I haven't read all of it, but the majority I did read really clarified what I the CCNA brushed over.

As far as Microsoft and other tech's, I highly recommend getting your hands on CBT Nuggets (Yeah, its a bit expensive ~$1000 / year) and just start devouring as much as you can. Watch two or three shows a night? Sub one of them for a CBT nuggets vid. Just devour a few books and some vids and do your best to lab (either in vmware or with gear) and you'll be off to a really great start.

On a political level at work, I'd be fighting for some training (again cbtnuggets or the like) saying, hey tech is always moving forward and you need it to keep up and benefit the company. If you stay hungry you'll do just fine :)

> Specifically I'm referring to for an "all in one" for medium-sized business

Doesn't exist, because it can't exist.

> because I need to visualize the entire topology & why it was designed the way it was.

Just about any book will teach you this.

> And the cisco-published books are problematic because, if I understand correctly, their information security offerings somewhat inferior to what other vendors offer

Wait, read what you just said - you just discredited books that you haven't read yet because you think Cisco's security offerings might be inferior to other solutions.

Really? You need to take all of this one step at a time. You are asking for a single book to teach you everything there is to know about network architecture. That book does not exist, because it cannot exist.

It cannot exist because it would be far too much information for a single book.

Tim Szigeti's book on QoS was pushing the limits of what could be bound by the publisher with a standard hardcover spine at just over 1,000 pages.

That's 1,000 pages just to cover WAN and LAN QoS. He didn't even cover WLAN or Data Center QoS, which are completly different animals.

-----

You need to take things one step at a time. Find a good book on configuring a simple network as you describe. The Cisco SRND guides are a good architectural foundation. Wrap your mind around routed interconnections v/s switched, ECMP, BFD, Advanced Spanning-Tree and all the details of a simple, but detailed design.

Then grow the design to a larger environment. Visualize the changes to the requirements and the relationships between devices.

We are probably at 3 possibly 4 books already and we haven't even started to consider security implications and design considerations.

Cost is the last consideration.

As engineers we develop the right solution based on the traffic volumes, capacity estimates and feature requirements. We propose the correct solution first. Forget the cost. We propose what is right, first. If the business wants us to reduce the cost, we can discuss the changes to the design then. But forevermore let history record the fact that we proposed what was right, and the business chose to compromise for something less-right.


So, long story short: I think your expectations need to be adjusted.

-----

But some of these resources might help:


|
---|
The Best of Cisco Live |
|
^(Cisco Live is Cisco's annual Technology expo & training convention.) |
^(All of these presentations are available for free here: http://www.ciscolive.com/online - Many with video presentations of the lectures.) |
|
BRKARC-3001 - Cisco Integrated Services Router G2 - Architectural Overview and Use Cases (2013) |
BRKARC-3001 - Cisco Integrated Services Router - Architectural Overview and Use Cases (2016) |
BRKARC-2001 - Cisco ASR1000 Series Routers: System & Solution Architectures (2016) |
BRKCRS-3147 - Advanced Troubleshooting of the ASR1K and ISR (IOS-XE) made easy (2016) |
BRKARC-1009 - Cisco Catalyst 2960-X Series Switching Architecture (2016) |
BRKARC-3438 - Cisco Catalyst 3850 and 3650 Series Switching Architecture (2016 |
BRKCRS-3146 - Troubleshooting Cisco Catalyst 3650 / 3850 Series Switches (2016) |
BRKARC-3445 - Cisco Catalyst 4500E Switch Architecture (2016) |
BRKCRS-3142 - Troubleshooting Cisco Catalyst 4500 Series Switches (2015) |
BRKARC-3465 - Cisco Catalyst 6800 Switch Architectures (2016) |
BRKCRS-3143 - Troubleshooting Cisco Catalyst 6500 / 6800 Series Switches (2015) |
BRKARC-2222 - Cisco Nexus 9000 Architecture (2015) |
BRKDCT-3101 - Nexus 9000 (Standalone) Architecture Brief and Troubleshooting (2016) |
|
BRKCRS-1500 - Wired LAN Deployment Using the Cisco Validated Design for Campus (2016) |
BRKCRS-2031 - Enterprise Campus Design: Multilayer Architectures and Design Principles (2016) |
BRKCRS-2501 - Campus QoS Design-Simplified (2016) |
Cisco Design Zone: Cisco Validated Designs for Campus Networks |
Cisco Design Zone: Cisco Validated Designs for Branch Office Networks |
|
BRKDCT-2218 - Data Center Design for the Midsize Enterprise (2016) |
BRKSAN-2449 - Storage Area Network Extension Design and Operation (2015) |
BRKSAN-2883 - Advanced Storage Area Network Design (2016) |
|

My .02 would be to start with the CCNA Route/Switch curriculum and then branch from there. It will give you a very strong foundation to start and allow you to move into pretty much anything (Unified Communications, Video, Security, Service Provider, Data Center ect.)

Get your hands on the following books as well as these lab manuals:

http://www.amazon.com/Routing-Switching-200-120-Official-Library/dp/1587143879/ref=sr_1_1?ie=UTF8&qid=1381429380&sr=8-1&keywords=ccna+routing+and+switching

http://www.amazon.com/Routing-Switching-Essentials-Manual-Companion/dp/1587133202/ref=sr_1_1?ie=UTF8&qid=1381429405&sr=8-1&keywords=ccna+routing+and+switching+lab+manual

Next, you will need either some gear or something virtual for you to practice with. If you can't afford actual hardware, get GNS3

http://www.gns3.net/download/

GNS 3 doesn't really do switching (VTP, Spanning Tree, VLAN's) but you can do pretty much anything routing related you need to (especially at the CCNA level).

For switching, you need find Packet Tracer. Packet Tracer will allow you to do pretty much everything with the exception of Frame Relay and more in depth security.

Sorry to promote so much Cisco, but I do draw a paycheck from them every two weeks and they do a great job of making their entry level stuff accessible. If you have any questions, please feel free to message me.

In my experience in cases with bad or unreliable signal, more APs will give you better signal levels at shorter ranges, so you'll likely have both better throughput and less chance for interference due to the closer proximity. This is especially true for the 5GHz band, which is more sensitive to obstructions like walls, floors and ceilings.

Many people aren't afforded the option of hard-wiring 2+ APs together, but if you have that available to you, that's the way to go. You're correct in that it would be beneficial to keep your 'beefiest' router (in terms of processor, memory and features) as your WAN connection, and designate the 'cheaper' routers as APs. Let the workhorse handle all of the services and routing.

You may want to consider making sure the link between them isn't a bottleneck. For example, you could potentially bottleneck the throughput if the line you run is less than the wireless speed, ie a 1,300 Mbps AC1750 running over a 1Gbps line or 300Mbps 802.11n running over a 100Mbps line. It's just something to keep in mind if you're bent on achieving full-speed throughput between devices on either end.

The main downside I see to the R6300v2 is lack of upgradable external antennas, which can be a huge benefit for signal direction, strength and stability in certain cases, especially when dealing with long distances, walls or other obstructions. You'll likely be better off with something like an ASUS RT-AC66U, which is comparatively priced.

Lastly, depending on the stock firmware's capabilities of the device, you may want to flash DD-WRT to set it into AP mode if it's not already supported. This disables routing and will stop you from having more than one network segment, which keeps all of your devices on the same network so they can see each other without additional configuration. It's generally advisable to keep a small network "flat" unless you have a reason not to. And remember to disable unnecessarily redundant services, particularly DHCP.

Edit: You might want to consider something like this or these as they allow for a nice, clean install and power over ethernet, so you won't have to plug them in to a wall outlet. I'm not sure what most floats your boat, but it's an option that a lot of homeowners don't seem to know about but is quite well-received.

• Buy (and read) Radia Perlman's book
  
• Learn to program. You shoudl have at least enough of a language to automate basic tasks. Doesn't really matter what language - I'd choose python, but it really doesn't matter
  
• Learn some linux. Most of the applications that exist around networking run on linux. So you should be able to compile your own apps, add cronjobs, add things to init. You don't need to be a super linux guy - just have enough to know your way around. This'll help quite a lot in university, as well.
  
• Get a job. I got my first job in networks because I'd call centre experience previously. Experience in a job with computers is valuable. Experience in a job talking to people on a phone is valuable. Try and spend your summers doing one, the other, or both.
  
• Join the college computer society. If possible, go to a college with a good computer/networking society. Something like University Edinburgh's TARDIS. The contacts you make there are pretty invaluable, and the skills you'll pick up don't hurt either .

Everyone is telling you to get a different cert, but I say since you're asking about Network+ you should stay your course and get it. While CCNA is the gold standard that doesn't mean there's no reason to get a N+ or that it is somehow worthless. IMHO if you're going to be a general IT guy and not specialize in networks there isn't a reason to go through the hassle of a CCNA. Get your N+ to get your feet wet and build your confidence then decide whether you wish to go further with a CCNA/JNCIA. People seem to think they're magical golden tickets to Wonka's IT Factory, but the truth is they're not especially with no experience to back them.

To answer your actual question you can go with CBTNuggets and/or one of the Network+ Books to prepare. N+ isn't difficult and it will help you get a cert that is adequate to show someone who isn't a specialist is at least competent in general networking as well as build your confidence. Good luck!

Edit: If you ever watch videos or discussions by networking professionals if you look at their alphabet soup you will usually see Network+ right along with their CCNP/IE and other certs. It shows that even seasoned veterans still pick it up.

Ubiquiti access point(s) and their "Cloud Key" controller for management/captive portal springs to mind.

Optionally, depending on how point-and-click you want the management for this deployment to be, also their "USG" router, and a US-8-60W PoE switch to complete the UniFi hardware set.

Amusingly, on amazon.de (used as an example to get EU pricing), those four items together come to €499.34 (UAP-AC-Pro, US-8-60W, USG, UC-CK). How's that for ever so slightly under-budget?

It would need a small amount of work customising the captive portal if you want to do social media logins - I've never done that personally, but someone might know the details. Their forums would be a good place to start if you want to look for someone who has done that, or general advice.

The gateway is definitely optional, and any cheap PoE switch would be fine (or non-PoE, as the AP will also ship with a PoE injector). The controller software can be run on any old PC or VM with 1-2GB of RAM (although I personally like the cloud key for convenience), so you could get the cost down as low as just the AP if you've got a switch and a spare computer.

It also gives you a nice ability to expand with another AP in future if this takes off and you need extra capacity, and a nice management interface which is optionally accessible over the internet without being on-site, which might be nice if you have to help troubleshoot this remotely.

I come from a similar background, but now I live almost completely in the networking domain. If you’re interested in learning about the various technologies from the perspective of a non-operator expert, I recommend TCP/IP Illustrated: The Protocols.

If you want to learn how to route packets from the perspective of a (albeit senior) network administrator, I recommend Routing TCP/IP Volume 1 and Routing TCP/IP Volume 2.

Beyond the excellent and thorough descriptions of the various technologies (with context), they also provide direct references to the RFCs and white papers wherein the technologies were first published. Using these three texts as a starting point, you can delve as deep as your interest carries you. I believe all three books are available through Safari Books.

If you learn best through video and verbal instruction, I recommend INE. It’s pricy but worth it.

Here's a question - do you have absolutely no requirement for wired connectivity to any devices other than the APs? In another comment I suggested just getting the ERLite model - it's around $100 and will serve the purpose you need.

From there you can break out with either their PoE switch, or another vendor's switch (if you go this route - be warned - the non-pro APs are not standards-compliant with their PoE implementation and probably will not work), PoE or otherwise. Since the APs come with power injectors you don't NEED to have PoE, but it eliminates a point of failure when doing troubleshooting.

For the APs, 2 will definitely not be enough. I would suggest either...

• Buy a 3 pack for the AP Pros, you'll save some money - http://www.amazon.com/Ubiquiti-Networks-UAP-PRO-Enterprise-System/dp/B00DJERLFG/ref=sr_1_1?s=electronics&ie=UTF8&qid=1393768952&sr=1-1&keywords=ap+pro+3+pack
  
  
• Since budget appears it could be a factor, buy multiple 3 packs of the standard APs, as they're about $200 a pop. Better average signal strength + offloading users to more APs will result in better performance than just 2 or 3 Pro APs. - http://www.amazon.com/Ubiquiti-Networks-UniFi-Enterprise-System/dp/B005EORRBW/ref=pd_sim_pc_11?ie=UTF8&refRID=1TCR66J9YV6TWD4DQ6TW - these still support 802.11n up to 300 Mbps in 2.4 Ghz, which is probably what you will want if this is an older house. You will need to be cognizant of channel distribution however, and will likely need to stagger the design.
  
  For example, an ideal layout in the 2.4 GHz spectrum might be...
  
  Floor 4: AP - Channel 1 - AP - Channel 6 - AP - Channel 11
  Floor 3: AP - Channel 11 - AP Channel 1 - AP Channel 6
  Floor 2: AP - Channel 6 - AP Channel 11 - AP Channel 1
  Floor 1: AP - Channel 1 - AP Channel 6 - AP Channel 11
  
  If you cut it down to two APs per floor, obviously you can be a little more creative...
  
  Floor 4: - AP Channel 1 - AP Channel 6
  Floor 3: - AP Channel 11 - AP Channel 1
  Floor 2: - AP Channel 6 - AP Channel 11
  Floor 1: - AP Channel 1 - AP Channel 6
  
  You can leave them all to auto and it might work okay, but control over the selection would be best practice.

check out my colleges course material online, itt.century.edu, Network Fundamentals 1,2,3 and Network Integration correspond to CCNA1-4 respectively. I used that course material for all of my CCNA courses, If you want to learn about security try looking at :

ITT-2020 Network Security Fundamentals


ITT-2025 Firewalls and Network Security

Do this security stuff after going through the CCNA stuff or else you'll be lost

Also here's the latest Packet Tracer software (5.3.2) along with the tutorial, Please note there may be certain things that you cannot do with the packet tracer software in the CCNA curriculum (I believe there's some CCNA4 stuff)
(packet tracer)
http://www.mediafire.com/?477o7btmzdw7sig

I would also reccommend the book here:


http://www.mediafire.com/?2i8nijmfna8ad1r

It's the cisco command guide for the CCNA curriculum, it helps if you are configuring something and can't remember the command.
If you want to have something to go hand in hand and be a side reference, I would reccomend Todd Lammle's Book here:


http://www.amazon.com/Cisco-Certified-Network-Associate-CD-ROM/dp/0470901071/ref=sr_1_1?ie=UTF8&qid=1320860539&sr=8-1

One of my teachers recommends this book for his CCNA1 course because you will use it all through the courses.



Hope this helps! good luck!

> Keep in mind that with the unemployment rate so high, people who are well over-qualified are getting whatever jobs become available.

Where exactly do you live? Just about every major city and secondary city in the US can't find good networking people. I've tried helping my manager try to find people and everyone I've asked usually has a good job, and then they tell me that they are hiring and looking for people! I also get called every single day by recruiters.

Help desk people however are a dime a dozen.

> I've interviewed people with Master's degrees in related fields for an internship position (which is less than junior level).

What exactly is the point of that? The person would usually get circular-filed because they are overqualified. Sounds like they didn't get the position either.

> Certs have absolutely no value, IMO

They do to HR and recruiters.

> participating in open-source projects, or other community (tech) involvement.

I agree with this.

OP, you want to get a good job? I have posted this before, but I'll do it again. You have to people network.

1. Get on LinkedIn (http://www.linkedin.com) and start people networking. I'm not going to explain LinkedIn to you, there is plenty of information out there.
   
   
2. Go to your local Cisco Users Group. If there isn't one in your town, ask your local Cisco office or a Cisco VAR (value added reseller) if they can help you start a group.
   
   
3. Make your own business cards and become your own consultant. Be an "IT Consultant" for "Logic_Bomb421 Computer Services" or something more ingenious than what I can think of off hand. VistaPrint is your friend, and don't get the free ones, they make you look cheap when you want to look professional. Hand them out at the Cisco Users Group.
   
   
4. Read books on how to find a job and how to sell (yourself.) Read this book - Guerilla Marketing - http://www.amazon.com/Guerrilla-Marketing-Job-Hunters-Unconventional/dp/0470455845
   
   
5. Read this other book - Little Red Book of Sales Answers: 99.5 Real World Answers That Make Sense, Make Sales, and Make Money - http://www.amazon.com/Little-Red-Book-Sales-Answers/dp/0131735365/ref=sr_1_1?ie=UTF8&qid=1323129165&sr=8-1
   
   
6. Check your local chamber of commerce web site and start researching companies in your area. Once you find a few that you would like to work for, contact the CIO / CTO of the company and ask to do an informational interview because you want to know what it's like to work in IT for a company. If you don't know what an informational interview is, Google it.
   
   You do all this and more, chances are you won't be a help desk grunt hating life and not moving up.

I have an INE course on Implementing Cisco ASA Firewalls
if you're looking for videos.

For books, the best resource is Cisco ASA: All-in-one Next-Generation Firewall, IPS, and VPN Services.

Cisco has lots of good free documentation, as long as you know how to sort through it, such as the Cisco ASA 5500-X Series Firewalls Configuration Guides and Cisco ASA 5500-X Series Firewalls Configuration Examples and TechNotes.

If you have a Cisco support contract you can download the Adaptive Security Virtual Appliance (ASAv)
and run it on a hypervisor like VMWare ESXi.

INE also rents Security racks that have ASA 5510 and ASA 5515X in them if you want to play around with physical hardware.

Good luck!

how deep in the weeds do you want to get into OSPF? do you want to understand enough just to be able to troubleshoot and bring up a new router, or [re]design the entire network?
John Moy's book should still be the standard; he wrote the RFC.

If you want to actually design a network, I still love Russ White's Cisco Press book on Optimal Routing Design.

If you just want an overview, the Cisco OSPF design guide can give you the nomenclature. Though the examples are IOS, the principles carry over.

Along with /u/totallygeek recommendations, if you're going to deploy OSPF onto a network, I would add:

• Figure out what you're trying to gain from using OSPF that you currently don't have in your current network. Redundancy? Faster convergence? Building out a WAN?
  
• Layout the IP addressing FIRST. You're designing an IP network... worry first about the IP addressing before speeds and feeds.
  
• OSPF, IM(strong)O, should be used modularly. Hand in hand with your IP addressing, you really should take advantage of building different areas. Don't go overboard and create multiple areas just for the heck of it, but don't get lazy and put everything into area 0 either.
  
• Decide how you will split up your network. Will it be based along functional business units (i.e., financing, warehouse, engineering), location based (floors, buildings, cities, geographic regions) or in some other way.
  
• Be stringent with what you advertise inter-area, either using access-lists/routing filters as suggested, or better yet, with the more flexible route-maps.
  
  Personally, I would stay away from virtual links as your abstracting what should be physical links onto harder-to-troubleshoot virtual links. I would also keep the area IDs the same as the top level network. For instance, if I was using 172.16.0.0/16 as the supernet for a building, the OSPF area ID would also be 172.16.0.0/16, but that's just me. There is more than 1 way to build a good network and as long as you are consistent on a logical design, that's what matters.

My advice would be to not take a class for CCNA. Just go ahead and self study (I pretty much did this up to CCIE level). If you are a software developer, you will not have any issue.

Its great to have a good handle on the top vendors like Cisco, Juniper Arista. However, you can stand out by focusing more on vendor neutral stuff once you have the basics under your belt. I see the demand right now for network engineers with software / automation skills to be absolutely huge - it can take you ANYWHERE you want to go.

Some recommended learning resources -

Internetwork Expert - check out their all access pass. Its a fixed monthly fee and you will get access to all of their training videos. The quality is second to none and the owner / instructors are very helpful - even by direct email.

CCNA Study Guide - for a basic grounding, check this out and go ahead sit the exam once you have completed it and watched some training videos - even if you don't feel like you are ready, you will gain alot of knowledge / insight.

Juniper Fast Track Certification Program - you could use this to look at going after the JNCIA. The material here mainly focuses on people with a "CCNA" level knowledge and helps them to transition and apply the same skills to Juniper devices. Its very easy once you've completed the CCNA.

In terms of hands on time on equipment, if you really want you could buy a lab but I would recommend trying out something like GNS3 to get started with.

If you have any questions on resources or how to attack this, feel free to PM me.

Hope that helps some how.

I would go ubiquiti. Deployed a number of AP's and they're solid and cost effective. They also have built in security features so you can tag traffic with a VLAN or restrict access to your other local subnets, OR have it act as it's own dhcp server.

Regarding the need for a controller, I was unclear on this originally as well. TECHNICALLY, you don't need a controller. I setup a friends AP at home using my iPhone app (easy but not for you IMO)
I would suggest 1 of 2 options(option 2 if you've got the ~$72 to spare):

Option 1:
Install the UniFi Controller on a PC on the network and only run it when you need to access/make changes. You can also do this on say your personal laptop, plug in and run it to manage the AP and then take the laptop home and the AP will continue working just fine.
The downside with this route is that if you want a captive guest portal, you have to have the controller running full time onsite to host that webpage and manage that feature. No live controller onsite = no captive guest portal. Might not be a problem if you don't want your guest wifi having a login however it's good to do so. Also with no live controller, you don't get logging of wireless activity regarding users logging it and out, if you care about that.

Option 2:
Buy the Ubiquiti Unifi Cloud Key for ~$72, which will act as a controller so you can have the captive portal. It also allows you easier remote management of your wireless network if you need to make changes while offsite.

Personally, unless your willing to get a little trick with a VM running on an onsite server, a raspberry pi running the controller, I would suggest just getting the cloud key. You CAN run it on an existing PC, but the dedicated controller is nice and cheaper to power/run 24/7.

Of course there are other AP manufactures out there but this is going to be the easiest for you to configure and manage IMO.

Pardon for the ramble but if you have any other questions let me know :-). Also if anyone has anything to add to this please do.

The CCNA curriculum is a great way to get a solid networking foundation. Many will recommend the Network+, but I certainly think the CCNA is a better certification track. I recently went through Todd Lammle's CCNA Study Guide in less than two months and passed the CCNA Composite.

http://www.amazon.com/CCNA-Routing-Switching-Study-Guide/dp/1118749618/ref=sr_1_1?ie=UTF8&qid=1413474786&sr=8-1&keywords=ccna+study+guide

The great thing about this book is you can opt to go the ICND1 and ICND2 route, or just go for the composite exam. It's up to you.

GNS3 is excellent for practicing in a lab environment if you do not have your own equipment.

BS in computer science. My track / focus was network systems. I was always good at tshoot and I'm very curious. I worked for a vendor that makes 3gpp radios and did a lot of protocol and transport work (tshoot, configuration, band planning, scheduler analysis). My biggest skills that help me here are knowing Linux really well, understanding low level hardware, and traffic algorithms. This book and the next two volumes got me interested in this stuff. I'm an architect at a tier 1 ISP and my job description is best described as network systems integration. I know Sandvine from architecting solutions numerous times across several ISPs. I'm 20 years into my career and started out as an IT help desk tech, moved into systems admin, and just kept learning and searching for bigger better jobs. I got my first ISP job from a cold approach at a job fair at a college.

Absolutely! Anything to help out others!

I used lots of different sources. Below are what seemed to help me the most.

Kevin Wallace's Videos give the best explanations: https://www.kwtrain.com/

Laz Diaz's Udemy Course gives great packet tracer labs: https://www.udemy.com/cisco-ccna-200-125-the-complete-course/ (DO NOT pay full price for this course. There are discounts ALL THE TIME that are 90% or more off. I paid $10)

The best subnetting video available in my opinion: https://www.youtube.com/watch?v=rs39FWDhzDs

Practice subnetting on https://subnettingpractice.com. Using Laz's chart method above I was able to do most of the questions here in under 30 seconds with practice. Helped a ton.

The Official Cisco Press CCENT book by Odem: https://www.amazon.com/Routing-Switching-200-125-Official-Library/dp/1587205815/ref=sr_1_3?keywords=ccna+book&qid=1554763617&s=gateway&sr=8-3

I'd be interested if there is something like what you're looking for out there. I don't think there is.

One of the things I've discovered over the years is how much of these "golden nuggets of networking history" are sprinkled about in various non-certification networking textbooks. They're generally not in certification-oriented books because there isn't enough room, but they are quite often found in textbooks that cover particular networking topics.

For example, one of my favorites is contained in Developing IP Multicast Networks. Beau Williamson writes:

> There’s an interesting story as to why only 23 bits worth of MAC address space was allocated for IP multicast. Back in the early 1990s, Steve Deering was bringing some of his research work on IP multicasting to fruition, and he wanted the IEEE to assign 16 consecutive Organizational Unique Identifiers (OUIs) for use as IP multicast MAC addresses. Because one OUI contains 24 bits worth of address space, 16 consecutive OUI’s would supply a full 28 bits worth of MAC address space and would permit a one-to-one mapping of Layer 3 IP multicast addresses to MAC addresses. Unfortunately, the going price for an OUI at the time was $1000 and Steve’s manager, the late Jon Postel, was unable to justify the $16,000 necessary to purchase the full 28 bits worth of MAC addresses. Instead, Jon was willing to spend $1000 to purchase one OUI out of his budget and give half of the addresses (23 bits worth) to Steve for use in his IP multicast research.

And that's why we have a 32:1 overlap of multicast IP addresses to multicast MAC addresses today :-)

There are tons of these kinds of things sprinkled about in Radia Perlman's Interconnections book as well.

> Basically - get into automation and learn how to be more valuable to the higher-ups. What would you do?


I'll answer your question by outlining my year goal of education in the work place.

I'm doing leadership for engineering themed courses, with the goal to influence decisions and outcome.

I'm aiming to get some more specific and hands on coaching, to help talk to upper manglement.



Another take on it is this. If I was going back to the very start of my career and had 0 knowledge in my head (And it was present day). I'd target a few things:

• Focus heavily on BGP, BGP TE and internet routing architectures (link)
  
• Focus on a strongly typed programming language. Not scripting, full on Java or similar.
  
• Focus on learning 1 hardware architecture in great depth (link)
  
• Read the prince, how to win friends and influence people and top off the hat trick with the rational manager

USB-C converters are a non issue because they are cheap and everywhere. I have like 5 in my bag of different types. You can get insanely good docks now for usb-c. I have a totu one that i liked so much i bought one for my bag solely.

https://www.amazon.com/TOTU-Ethernet-Delivery-Portable-Laptops/dp/B07FX2LW35

​

Ive had this forever and its perfect and the long cable is amazing

​

https://www.amazon.com/Asunflower-Serial-Console-Rollover-Routers/dp/B00KMRVGFO/ref=sr_1_3?keywords=usb+to+serial+cisco&qid=1554828013&s=electronics&sr=1-3

​

I have used a mac for almost 10 years solely. I would never go back. Another thing that is fantastic about macs is network locations which I use a ton for each site i visit or for new setups that I do.

I agree with other comments in that you need to give us more details on the project criteria. That said I'll shoot two things at you. Perhaps you can look at TCP, impact latency, packetloss, etc has on overall throughput. Then you can do a study of WAN optimization technologies and recommend a particular approach for small, medium, large networks? An excellent book to get you started is (TCP/IP Illustrated, Volume 1: The Protocols (2nd Edition))[http://www.amazon.com/dp/0321336313/]. The benefit here is you will get a deep understanding of the issues affecting network performance and things we can do to improve.

If you're on more of the computer science/programming spectrum, you can look at creating an automation framework for network configuration and changes. Every network change has the same basic steps:

1. Backup the configurations of any affected devices.
   
2. Run a series of checks against the state of the network (ping, traceroute, show commands) and compare it to known expected values.
   
3. Execute the network change (in the case of Cisco, order matters).
   
4. Re-run a series of checks against the state of the network and compare to outputs captured in step 2.
   
5. Save all configuration.
   
   In shops that don't have network automation, it seems that the most common root cause of incidents is human error. Either the procedure is theoretically flawed or the change itself was implemented incorrectly. Network automation can help with the latter. The features and functions of your framework is up to you. The benefit here is you get familiar with programmatically interfacing with network equipment using ssh, api's or snmp.
   

• Ubiquiti Unifi Security Gateway -- router/firewall. $105
  
• Ubiquiti Unifi AC-AP-PRO -- wireless access point. $134
  
• Ubiquiti Unifi CloudKey -- remote/local management server. $84
  
  If you need wired access, you can either use a non-managed 8-port switch (under $30) or pony up for Ubiquiti's managed POE switches. My recommendation is to stick with the UniFi line of products if you do end up getting another switch. They are insanely easy to configure and setup and provide you with the best of management, features, throughput, configuration, stability, uptime, etc.
  
  This product line works together very seamlessly and gives you great control over the network, how its used, by whom, and so on.
  
  Good luck.
  

If it's just Internet access you'll be supporting, don't worry. Most of your calls will be like 'My email is working, but my internet is down'. You might never have to learn what all those acronyms mean, but you'll become an expert in explaining the concept of double clicking. Yes, enterprise customers too (unless that ISP only caters to very large enterprises. You'll be having BOFH moments when explaining complex issues to customers and advising them to engage an consultant while suspecting you are talking to their consultant.

That said TCP/IP Illustrated, Vol. 1: The Protocols is an excellent start to expand your knowledge.

I as well went to school for Network Engineering and am working Entry-Level networking now. These are the books that have helped me so far.

Network Warrior

Network+

CCNA Library

TCP/IP Illustrated

I've read a few others, but these were my favorite ones. The Network+ book helped me obtain my Network+ Cert, then the CCNA Library helped me obtain my CCENT and CCNA. Great Books!

I would only recommend that Netowork+ book though if you plan on getting into Cisco stuff because the author is a Cisco guy and tends to start rambling about Cisco technologies that you will learn for the CCNA.

I was doing the same thing not too long ago, if you are going to have not much more than 8-10 units of space taken up this should work pretty well:

http://www.amazon.com/gp/product/B000CD1R84/ref=oh_o00_s00_i00_details

I use it in my home lab and it works perfectly. It's great if you're on a budget, however if you have the money go for something like the ones already posted.

Hi! I'd just like to recommend this site www.professormesser.com it has a great series of videos for Network+. I take it you'll probably go on to do the CCNA afterwards? I'm not really aware of any online courses but going the self study route is very doable. For the CCNA I'd recommend Todd Lammle's book. And here's a series of CCNA video tutorials.

Also get your hands on Packet Tracer, as /u/Immuchtooawesome suggested, it's a great little network simulator that you can use for practicing the basics.

As for getting your foot in the door, I'm in the same position so I won't presume to offer any advice there!

Network Warrior is a great guide. Packet pushers has a wealth of knowledge (be sure to check out the other feeds they have, e.g., Healthy Paranoia) in their archives covering all sorts of networking things. TWIET is solid and much more sysadmin focused.

Great! Thanks for the info. Yes, the switch is all gigabit. And I do like the idea of separate vLans.

I was not aware of the need for the controller software to run 24/7. That is a good tip. I thought it was just for configuration. This is an office with essentially no IT person there on a day to day basis, so I am trying to keep things as simple and self running as possible.

We don't have a dedicated server, but a cloud key will do the same thing? This one?

https://www.amazon.com/Ubiquiti-UniFi-Cloud-Key-UC-CK/dp/B017T2QB22/ref=sr_1_1?ie=UTF8&qid=1468952346&sr=8-1&keywords=cloud+key

I was worried about not having remote access to configure the system, but it looks like this may allow me to access the configuration remotely as well as keep the controller software running. Will this do that? And is it the right version?

Thanks again!

I don't know really. I have the CCNA and CCNA Security, but I also work with Cisco products and deal with security on a daily basis so my study-time will be skewed. I would say I spent an average of 3-4 hours a day reviewing material for a month before I took it. I would flip-through the exam cram book on my lunch break and spend some time at home in my own lab playing around. This book is pretty good. If you've never touched IOS, maybe jump on ebay and look at a used switch and router...

As /u/trivvium suggested, videos are a great way to start and to visualize some of the more foreign topics you may not know about. Videos, like bootcamps, only cover so much -- you really need to read some books (Lammle and Odom have published some pretty decent CCNA texts) and do some lab work (GNS3 labs, routergods, ect) in unison with videos to get something out of the cert.

Remember, a cert is just a piece of paper, if you don't know your actual content, you're going to look stupid; the true value in a cert is the stuff you pick up while studying for it, and as a bonus, you get a piece of paper that says you passed an exam.

Odom's CCNA Book

Lammle's Book

Everything he said.

And:

Get a subscription to Safari Books Online if you can. It has helped me so many times when I don't know a given subject in detail.

Read: Network Warrior, great overview on lots of things. http://www.amazon.com/Network-Warrior-Gary-A-Donahue/dp/1449387861

Don't be afraid to say "I don't know, let me research that for you." You have to build a trust relationship so people know they can rely on you for good answers, not guesses or other half assed stuff.

Find trustworthy sources you can ask questions regarding concepts, deployments, and technical issues.

I'd start at the Secret Shop and build a Perseverance.

Joking aside, if you already have an understanding of the basics, then Network Warrior By Gary Donahue is a great place to start. It's a little dated in some parts, but it'll help you not only get back on track with fundamental knowledge, but also help you with all of the practical details that you need to do networking in the real world. It's sort of Cisco focused, but has plenty of general content that'll help you out on any network.

Generally I go here if I want a good overview and operational view.

TCP, UDP.

If I want to go for the long haul and depth....I start here (I used this list as it's nice and abbreviated of what does what in RFC land). Reading through those will give you a much better idea of how things were "supposed" to work. How they work with a vendor will always be up to interpretation, but the vendors are interpreting those RFCs.

There are quite a few books on Amazon that will teach it to you as well. I honestly would consider getting them too. This, this, this, this.

There's so many good books but those should give you that deep understanding.

Reading your post I'm not 100% sure if you need something that'll test network connectivity, but I have this for my personal kit and it is a great tool: https://smile.amazon.com/Fluke-Networks-MS2-100-Cable-Tester/dp/B000QJ3G42

I'd start with the cheaper $500 option and like you said if you are asked to certify the cable rent one or buy the Pocket Ethernet (sure it isn't rugged, but even a $10k tester you'll be taking good care of) and isn't going to break the bank to buy a new one if it gets broken.

I would also like to take the time to plug a few resources, if I may, that have greatly assisted me throughout my career.

1. Of course, Cisco Press. Wendell Odom especially.
   
2. Non-Cisco Press, Todd Lamlle's CCNA book is great!
   
3. CBT Nuggets!! Jeremy Cioara and Keith Barker.
   
4. Tech Exams Forums!! For answers to your questions regarding certification, study material, etc, from a variety of vendor certs. Or, to just read motivating success stories!!
   
5. Internetworking Experts (INE!) That link should direct you to their free CCNA video course. If that doesn't work for you, simply register an account with them and search for the CCNA video course.
   
6. Thomas Limoncelli's The Practice of Systems and Network Administration
   
7. Gary A Donahue's Network Warrior
   
8. Jeff Doyle's CCIE Professional Development Routing TCP/IP Vol. 1 or 2
   
9. Douglas E. Comer's Internetworking with TCP/IP
   
10. GNS3!! Free Cisco Router and ASA Emulation!! Just make sure you have access to Cisco IOS software!
    
11. Andrew S. Tanenbaum's Computer Networks.
    
12. Jeremy Stretch and PacketLife!! Also, Jeremy's network Cheat Sheets!
    
13. Firewall.cx!!
    
14. Cisco's Command Lookup Tool! Requires login, but nonetheless, a great resource for your Cisco engineers when you just NEED to know how the hell a particular command works.
    
15. Priscilla Oppenheimer's Top-Down Network Design
    
16. I've heard the folks at /r/networking are pretty legit.

Network Algorithmics

BGP Design and Implementation. I brought this on a boat, had drank two very, very large margaritas, and dropped it in the ocean. Re-ordered from Amazon before the boat returned to dock.

Internet Routing Architectures

Now here's the thing to keep in mind: it was 13 years ago when I started getting serious about networking. I'm sure if I was starting now I'd have read/bought probably a third less books, and probably a few different ones. My mantra has always been trying to really understand the foundations of protocols -- a very, very strong mental model. I'd say out of those books up there, Network Algorithmics was the most mentally invigorating. There's another Cisco Press book that goes over IOS and the GSR internals that's also a wonderful (if now a bit outdated) read.

If someone hasn't recommended it I would start with the ICND1 & ICND2 exams from Cisco for the CCENT and the CCNA respectively.

If you do decide to become Cisco certified, you may want to make sure you purchase the correct books, as the CCNA is changing later on this year.

I'd recommend Wendel Odom's books:

ICND1 on Amazon

and:

ICND2 on amazon


EDIT:

And if you have good discipline I'd start working on a bachelor's degree online.
I'm working on my IT Security degree at Western Governer's University www.wgu.edu.
They're fully accredited and have a very well thought out approach to online education.

Tuition is $3,000 per 6 month semester, and you can take as many classes as you can a semester.

My advisor has stories about people who are laid off and get their 4 year degree in just a year in order
to get back into the job market.

The bandwidth command on an interface affects routing protocol metrics (protocols like EIGRP and OSPF both use bandwidth as a part of their metric calculation) and as I recall it does affect the calcualtion (not actual bandwidth but the calculation which may then affect actual allocation in a policymap) in a QOS policies where the policy references bandwidth percentage (but not hard set expression listed in X bits per second).

​

Since I am almost always running an RP on a WAN interface (this is MPLS) that more times than not has less of an allocation than its interface speed the bandwidth statement on the interface matches the allocation from the provider edge / circuit order.

​

Then for QOS the shaping command is used to shape the traffic to the correct speed and a sub-policy is used to assign priority queue and bandwidth percentages based on class maps (which are often DSCP based). The is not the only way to skin the QOS cat though.

​

This is a newer edition of a book that i used to use as desk reference material, I DO NOT KNOW what if this is the most current. Typically books are not, and instead Cisco online documentation is best. (but I am not hunting for that right now)

​

https://www.amazon.com/End-End-QoS-Network-Design/dp/1587143690/ref=sr_1_1?ie=UTF8&qid=1536680974&sr=8-1&keywords=Cisco+press+end+to+end+qos+network+design

​

one last thing, the best thing to remember is QOS is a congestion management tool...try to avoid needing congestion management tools by buying circuits that do not get congested.

​

​

The TCP/IP Guide - It's a little dated these days and barely touches IPv6, but it's a good, quick look at a lot of the glue services that you will eventually need to understand and troubleshoot: DNS, SNMP, NTP, etc.

TCP/IP Illustrated, VOL 1 - Here's where we get into the nitty gritty. This shows you what is happening in those packets that cross the wire. Invaluable if you go onto doing Performance Engineering functions later on, but still good.

NMAP Network Scanning - NMAP is a godsend if you don't have remote login rights but you need to see what's happening on the far end of the connection.

Wireshark Network Analysis - Most useful tool in your toolbox, IF you can use it, for proving the negative to your customers. At some point you're going to be faced with an angry mob in Dockers and Polos who want to know "WHY MY THING NOT WORK?". This is the book that will let you point to their box and go "Well, as soon as the far side sends a SYN/ACK your box sends a FIN and kills the connection."

Learning the bash shell - You're a network engineer, you're going to be using Linux boxes as jump boxes for the rest of your life. Shell scripting will let you write up handy little tools to make your life easier. Boss wants to blackhole China at the edge? Write a quick script to pull all of the CN netblocks from the free FTP server APNIC owns, chop it up in sed and AWK, throw a little regex in for seasoning and you're done. And when he comes back in 30 days for an updated list? Boom, it's done even faster.

The vendor specific books are nice, but I can't tell you how many network engineers I've run across who couldn't tell me how DNS worked or how a three way handshake worked or couldn't write a simple script in Bash to bang out 300 port configs in 30 seconds. There are a shit ton of paper CCIEs out there, but those books up there will make you stand out.

VDSL converter kits can push ethernet out to over 3000 feet, and aren't crazy expensive.

http://www.amazon.com/StarTech-com-VDSL2-Ethernet-Extender-Single/dp/B002CLKFTG

Add two 1000' boxes of CAT5e, and a punch down splice like this:

http://www.showmecables.com/product/Cat6-110-Type-Inline-Splice.aspx

You'd probably want some sort of real junction box to place that in as well. Or a lot of electrical tape!

Otherwise you can get pre-terminated fiber assemblies for not too much, but good luck ever repairing that if it gets snagged. You'd have to install into conduit or on an aerial messenger, which probably wouldn't be a bad idea anyway.

If you really want in-depth knowledge, I would go with TCP/IP Illustrated. It has recently been updated and pretty much covers the gamut of all things networking.

If that looks a little too daunting, you can go with a CCENT book (Lammle and Odom tend to be the best writers, IMO). It does cover Cisco products, but the concepts in it are primarily vendor neutral. Hope that helps.

The TCP/IP Guide

The Illustrated Network

A bit dated, but pretty well respected:
TCP/IP Illustrated (There are 3 volumes)
----------------------------------
You can find most of this info freely on the web though.

I went right for the CCNA. Took me two tries - missed by four points the first time, which really sucked, but them's the breaks.

Hands-on experience is absolutely vital, because the Cisco exams require you to know both theory and application. If you can get your hands on Packet Tracer, GNS3, or any reasonably recent equipment, I would strongly advise playing with that. Since your time on the test is limited, you can't be thinking about command syntax. It pretty much has to be automatic.

I had a bit of previous experience prior to actually taking the test, but I found Todd Lammle's book quite helpful.

Interconnections: Bridges, Routers, Switches, and Internetworking Protocols (2nd Edition)

Internetworking with TCP/IP Volume 1 (5th Edition)

TCP/IP Illustrated, Volume 1: The Protocols (2nd Edition)

are the three 'vendor neutral' books that are recommended by INE as resources for all CCIE tracts.



Cisco CCIE book list contains the following:

Other Publications

Cisco Documentation

Configuring IPv6 for Cisco IOS (Edgar Parenti, Jr., Eric Knnip, Brian Browne, Syngress, ISBN# 1928994849)

Interconnections: Bridges & Routers, Second Edition (Perlman, Addison Wesley, ISBN# 0201634481)

"Internetworking Technology Overview" Available through Cisco Store under doc # DOC-785777

Internetworking with TCP/IP, Vol.1: Principles, Protocols, and Architecture (4th Edition)
(Comer, Prentice Hall, ISBN# 0130183806)

IPv6: Theory, Protocol, and Practice, 2nd Edition (Pete Loshin, Morgan Kaufmann, ISBN# 1558608109)

LAN Protocol Handbook (Miller, M&T Press, ISBN# 1558510990 )
Routing In the Internet (2nd Edition) (Huitema, Prentice Hall, ISBN# 0130226475)

TCP/IP Illustrated: Volumes 1, 2, and 3 (Stevens/Wright, Addison Wesley, ISBN# 0201633469, 020163354X, 0201634953)



edit1:
I own the first three and recommend them for vendor neutral network engineering books, with Perlman's book being the best switching book I've personally ever read.


edit2:
also I find wikipedia articles on computer related topics to be top shelf. I would recommend many of the references and papers referenced in the https://en.wikipedia.org/wiki/Network_theory
article.

Like many others, I'm also a big fan of thinkpads. Currently rocking an x250.

If you do anything with serial ports, you really want this: https://www.amazon.com/Asunflower-Serial-Console-Rollover-Routers/dp/B00KMRVGFO Works excellently, rolls up nice and compactly. You can even get rj45-db9 adapters if you need them.

I don't generally see bad cables creating 'occasional network problems' either it works or it doesn't. I've dealt with bad patch panels that caused degraded connectivity where 1Gb devices would only connect at 10/100Mb. A decent tester can check cable distances and pair connectivity - buy one and use it. The cabling may not be officially certified, but you'll be able to find issues, fix them, and verify your cabling. After that you have the equipment to continue to support cabling issues/additions.

Seems like budget is an issue, so you could use said tester to check the handmade patch cables instead of buying a bunch of new ones. The gift that keeps giving.

https://www.amazon.com/Fluke-Networks-MS2-100-Cable-Tester/dp/B000QJ3G42

I know this book is fairly often recommended by r/networking. It's one thing to know what an IP address is. It's another to understand what an IP address is. Honestly what helps me learn is practice and experience. Sure I can read and learn about access lists and Vlan's all I want, but until I first started working with them, I really didn't understand what they were for.

My suggestion, get that book, or any other that you think might help you understand the basics. Learn the OSI model. Then practice, practice, practice. Download Cisco Packet Tracer or GNS3. Watch tutorials on them. Then start setting up and playing with your test network. Finally, start working towards CCNA topics.

All my personal opinion of course.

The two best books on BGP:

BGP4: Inter-Domain Routing (slight Cisco Juniper slant)
https://www.amazon.com/gp/product/0201379511/ref=oh_aui_search_detailpage?ie=UTF8&psc=1

Internet Routing Architectures (slight Juniper Cisco slant)
https://www.amazon.com/gp/product/157870233X/ref=oh_aui_search_detailpage?ie=UTF8&psc=1

My comment would be that both books are somewhat old now. Everyone is running BGP4, some of the "someday in the future" comments have been old hat for a while, etc.

BIRD and Quagga are great and can be run in VMs for simulating BGP. I would suggest trying to build a small ISP network, with 2 "customers" that advertise routes and then figuring out how to send those to each customer properly.

The CCNA book by Todd Lammle is AMAZING.
Read it. every. day.
Also Youtube. You can find vids on literally everything and its FREE.

I will certainly look into these books, but I doubt my Computer Science teacher could help much. Thanks for the help though.

Edit: I assume this is the book you guys are talking about: http://www.amazon.com/CompTIA-Network-All---One-Guide/dp/0071789227/ref=sr_1_1?s=books&ie=UTF8&qid=1414346192&sr=1-1&keywords=comptia+network%2B

Yes, that is a good one. I would also not waste a ton of time on routing TCP/IP vol I & II but they are probably worth using as a reference as needed. I would add Moy's routing book to the list. It is as good as Halabi's and helped me out quite a bit on my first CCIE.

There is a software (free download) or hardware (cloud key)

https://www.amazon.com/Ubiquiti-Unifi-Cloud-Key-Control/dp/B017T2QB22/ref=sr_1_1?ie=UTF8&qid=1481832397&sr=8-1&keywords=cloud+key

>Would it be ok for me to run it on the domain controller

Its doable, however from a security perspective you shouldn't be installing anything third party software on a domain controller.

If you are really interested in unifi products, check out r/Ubiquiti

TCP/IP Illustrated, Vol. 1: The Protocols

Yes it is very dated but still one of the best networking books ever published. This book got me started on my way to becoming a dual CCIE.

Edit: Just saw Disruptpwnt's post and didn't realize that it has been updated. I will have to go get a new copy!

READ

Network+ Cert Guide

Cisco CCNA

Network Warrior

Packet Life


WATCH

How to use/install GNS3

CBTNuggets (Paid Training)

DO

GNS3

Packet Tracer + Labs (torrent)

Cisco CCNA Study Group

9tut.com Labs

Talk to an IT Recruiter

TekSystems

Tech Team

Robert Half


These are just a few examples, many more exist. Good luck!

Check out r/CCNA.



Maybe pick up Todd Lammle's CCNA study book. I hear it is very good and a great tool for beginners.



Maybe also check out Professor Messer and danscourses on YouTube.



EDIT: Forgot to mention to just dive in. Set up a home lab (either physical or virtual) and just get to work. Break things and then figure out how to fix them.

CCNA gets you the basics, but it includes a lot of stuff that's not really useful from your perspective (WAN stuff, cabling details, etc.)

If you want to get stuck in, you might be better off understanding the protocols. This book is a great resource for that. Everything you ever wanted to know about ARP, DNS, routing and TCP (probably way more than you ever wanted to know about TCP).

Since you are homeschooled, I'm assuming you are a good self-starter/learner. I think I may have found a "senior year course" in networking for you:

• CCNA Prep - $50:
  
  http://www.amazon.com/CCNA-Routing-Switching-Study-Guide/dp/1118749618/ref=pd_sim_b_1?ie=UTF8&refRID=1YRWH5V1041MGJBT4ZEM
  
  
• Cheap Cisco Lab $200 or less:
  
  https://www.google.com/#q=used+cisco+2600&safe=off&tbm=shop
  
  https://www.google.com/#q=used+cisco+switch&safe=off&tbm=shop
  
  
  The 2600 router is the standard router to learn on. You can find one for under $100 usually. Any used 2900 series switch will do, too, for under $100.
  
  Some may say you need to be on IOS 15 (the newest rev), but anything you will be studying will be supported by 12.4 (the last rev). At least that is what this dude says:
  
  http://www.ccentskills.com/labgear03/
  
  
  So, for around $250-$300 you've got a 2-semester long course. If you like it when you are done, then spend the extra $400 and go for the test!

As stated, get GNS3 set up with an ASA or go buy one and set it up. then, buy this book and read it.

​

(Cisco ASA: All-in-one Next-Generation Firewall, IPS, and VPN Services (3rd Edition)

https://www.amazon.com/Cisco-ASA-All-one-Next-Generation/dp/1587143070

​

Master the information in this book and you will know far more than I did when i first started managing an ASA. Especially pay attention to the chapters on ACL's and Site to Site VPN/Remote Access VPN.

If you want a cert out of it, maybe pursue the CCNA security alongside this? Not sure exactly what that cert entails as I have just went the teach myself and prove I know it career path..

​

*Edit* Don't shoot the Cisco guy! Perhaps it may be better to start with learning something like a Palo alto NGFW. I've just learned Cisco first out of necessity and the prevalence of the tech in the industry.

This rack is super cheap and very good quality. I received mine yesterday and racked 6 devices on it so far.

> Ubiquiti UAP Pro

It looks like Ubiquiti needs a separate controller?

https://www.ubnt.com/unifi/unifi-ap/

If so, then it looks like this is exactly what I need for well within the budget?

http://www.amazon.com/Ubiquiti-Networks-Enterprise-System-UAP-3/dp/B005EORRBW/ref=sr_1_2?s=pc&ie=UTF8&qid=1451930883&sr=1-2&keywords=Ubiquiti (the Frequently Bought Together bundle?)

Honestly, I'd skip that one and go with the Todd Lammle CCNA Book.

Pick up packet tracer or GNS3 and it is very easy to follow along in the book. Almost every chapter he does lab scenarios and troubleshooting tips at the end. I studied with this book, Packet Tracer, light production work and CBT Nuggets when I could.

I mean todd’s a pretty cool pothead from boulder and breaks it down fairly well.

CCNA Routing and Switching Study Guide: Exams 100-101, 200-101, and 200-120 https://www.amazon.com/dp/1118749618/ref=cm_sw_r_cp_api_i_cyIQCbGB3NFJ6

It seems like if you can put yourself into a posture for expansion in anything you deploy, do it. That goes for IP schemes, topology, etc. I doubt this network will ever expand beyond two members, but if they find some sort of need to do so I'd like to give them the ability.

There are VSS-specific command options, such as:

(config-if)# channel-group 1 mode active vss-id <VSS/vPC ID>

However, that's not required so it wouldn't seem like it would be necessary. We're proof that it works without. In fact, I followed the Cisco press deployment guide for ASA and their sample config doesn't include a VSS/VPC ID.
edit: formatting

Because the server didn't ask nicely.

Seriously though it depends. Things like firewalls and NAT need to be taken into consideration. Probably the best way for you to start is probably with Network+ type of study materials.

I have a tear in my eye and an urge to hug the OP.

I remember a while back Network General, the product I learned sniffing on, came out with a product through acquisition called Apera and they put it on their distributed sniffer. We put 8 of those things in our network and they had live packet captures with filtering and application data with a rolling 2 hour window. I was like a kid in a candy store.

"Its the network it has to be the network, we checked everything else". Then 30 minutes later I can come back and say "why is this stored proc going into your SQL server from your application farm taking 6 minutes to run for a basic web app? Why is your network time 2ms while your server and backend time is 5.99999 minutes?!?!?! Kindly troubleshoot your shit before you blame mine."

Then net scout bought network general and ruined the product. I miss the ant.

****As a side note there is a great couple of chapters in "TCP/IP illustrated volume 1" detailing 3 way handshake, half open tcp, bounce charts, flight time, etc. Ive always considered the book a bible for any network engineer, especially one who wants to use Wireshark on a regular basis. You have to get the first edition(first edition, volume 1) though, they came out with a second edition that I hear isn't as good. Its the one with the white planet on the cover and a pink floyd dark side of the moon thing going on.
http://www.amazon.com/TCP-Illustrated-Vol-Addison-Wesley-Professional/dp/0201633469/ref=sr_1_2?ie=UTF8&qid=1398127261&sr=8-2&keywords=tcp+ip+illustrated+1st+edition

I would recommend this book. It was just recently updated and is an excellent source for many of the fundamentals for networking.

http://www.amazon.com/gp/product/0321336313/ref=oh_o00_s00_i00_details

plenty of people have already brought up CDP and LLDP, which are ways that certain networking devices can advertise themselves to their neighbors, and can be really helpful...


Another helpful command is "sh mac-address table". That'll give you a list of all the mac addresses that switch has seen "recently" (I forget the actual timeout), and on what port. More than one mac address showing up on a port means exactly that. Several devices connected by a switch or hub are accessible via that port.


If you need to track down a particular cable and you don't have access to a toner or other helpful tool, then:

on a windows PC:


ipconfig /all


note the MAC (physical address)


on the switch


sh mac-address table | inc XXYY


XXYY being the last 4 digits of the physical address.

TCP is a connection (edited to remove /less) protocol an application throws its data to the buffers it doesn't care about where it goes from there thats the routers job which will use any virtual circuit sucessfully negotiated by SEQ and ACK with the destination host buffers using the routers best path at that moment. In fact more than one route is often used simultaneously between hosts during a data download the robustness of TCP is why it is so sucessful. Latency can be caused by congestion, delays, packet loss, browser and application malware/bugs, even users pausing at the mouse.

A ping or traceroute tests for the connection the advantage of packet analysis is it can provide clues about the latency on your side or at the destination host so worth the effort to inspect packets. On this link Hansang Bae demonstrates special techniques using Wireshark to extract information about latency from packet traces. https://www.youtube.com/user/hansangb/videos Also this site is an introduction to tcp http://www.firewall.cx/networking-topics/protocols/tcp.html futher reference is from wikipedia or TCP Illustrated http://www.amazon.com/TCP-Illustrated-Volume-Addison-Wesley-Professional/dp/0321336313/ref=pd_bxgy_b_text_z

I think I found it and I'll definitely check it out, Thanks!

>what reference materials/books have you used?

I am currently working my way through Todd Lammle's CCNA Study Guide after having it recommended to me here on reddit. It has really helped me nail down subnetting, and I feel the pacing is excellent for someone just learning the basics of networking.

There are some things which will of course simply require rote memorization, and all I can suggest for those is flash cards and repetition. After you've dialed in subnetting really well, you may want to go find a copy of packet tracer to work on spanning tree and routing protocols.

Also, INE I think still offers free streaming of their CCNA bootcamp. They require you to register, but they didn't ask for a credit card number at the time or anything.

Until you understand what a packet is and how it is constructed, wireshark isn't going to be of much use to you. A good resource for this is https://www.amazon.com/TCP-Illustrated-Protocols-Addison-Wesley-Professional/dp/0321336313/ref=dp_ob_title_bk To effectively get just what you need, you should also understand BPF: https://biot.com/capstats/bpf.html

The Network Warrior book may be what you're looking for. It's a bit old, yes, but still useful.

The book "End to End QOS" was really quite helpful to me when I started doing campus QOS design. I have the 2004 edition, but it looks like there is a new edition out this year.

http://www.amazon.com/End---End-QoS-Network-Design/dp/1587143690/ref=sr_1_2?ie=UTF8&qid=1371745187&sr=8-2&keywords=end+to+end+qos

Best advice I can give the OP is to read TCP/IP Illustrated. It filled in a lot of gaps of knowledge not picked up in vendor certs.

CCNA Routing and Switching 200-125 Official Cert Guide Library https://www.amazon.co.uk/dp/1587205815/ref=cm_sw_r_cp_apa_i_ZoBPDbB1W9BDQ

Excellent book, take your time and read it carefully, run through all the questions and exercises. Install GNS3 for labs, provided that can you somehow find the IOS images for it. Get cracking.

Thanks for the quick reply.

The entry point in the house is not the ideal place for a switch. Is there a high power router or extender that I could use to extend the range of the cable. I've been looking at this but I'd like something a little cheaper.

/u/LordBiff has the answer.

Discontiguous masks (that's the term for what you're asking about) are a thing. They used to actually work, just like the term mask (as opposed to length) implies. I tested this ages ago on a network with SunOS 4.1 servers and routers (running gated). It worked just like you'd expect.

John Moy discussed it in OSPF Anatomy of an Internet Routing Protocol

Subnet numbers usually were assigned to immediately follow the network prefix.
If there was a gap between the network prefix and the subnet number, the subnet
mask was termed discontiguous. An example of a discontiguous subnet mask is
using the fourth byte of a Class B network to indicate the subnet number,
resulting in a subnet mask of 255.255.0.255. The combination of VLSMs and
discontiguous subnet masks was a bad one, for two reasons. First, certain
assignments of discontiguous subnet masks could result in multiple subnets
matching the same number of bits, making the concept of best match ambiguous!
Second, common routing table lookup algorithms, such as Patricia (see
Section 2.1), could not handle discontiguous masks efficiently. With
discontiguous subnet masks already discouraged by RFC 922, the introduction of
VLSMs made them virtually unsupported. Discontiguous subnet masks are now
prohibited by the latest router-requirements RFC [12].

That last bit is a reference to RFC1812 10.2.2:

It is possible using arbitrary address masks to create situations
in which routing is ambiguous (i.e., two routes with different but
equally specific subnet masks match a particular destination
address). This is one of the strongest arguments for the use of
network prefixes, and the reason the use of discontiguous subnet
masks is not permitted.

Network warrior is a good one for real-life knowledge for people who are somewhat above CCNA level knowledge. Might be a bit advanced if you are new to networking.

https://www.amazon.com/Network-Warrior-Gary-Donahue/dp/1449387861/ref=sr_1_1?ie=UTF8&qid=1466962114&sr=8-1&keywords=network+warrior

This post is Cisco-centric.

Books:

http://www.amazon.com/Interconnections-Bridges-Switches-Internetworking-Protocols/dp/0201634481/ref=sr_1_1?ie=UTF8&qid=1318854135&sr=8-1

http://www.amazon.com/Cisco-Certified-Network-Associate-640-802/dp/0470901071/ref=sr_1_1?ie=UTF8&qid=1318854213&sr=8-1

Website of someone I know and I'm very impressed by:

http://www.stubarea.net/workbooks/cisco/ccna/

Network Warrior is an O'Reilly book that's excellent for real world stuff.

Do you at least have a pair of phone wires between the buildings? Hard-wire will be more reliable than wireless any day. I've used this with great success: https://www.amazon.com/Ethernet-Extender-Kit-TUPEX-100-Broadband/dp/B01BOD8C9W or same thing:
https://www.amazon.com/StarTech-com-VDSL2-Ethernet-Extender-Single/dp/B002CLKFTG

If you can't do fiber, I've used these and they will sustain 100 megs over pretty sketchy copper:

https://www.amazon.com/StarTech-com-110VDSLEXT-Ethernet-Extender-Single/dp/B002CLKFTG/ref=sr_1_1?keywords=StarTech.com+10%2F100+Mbps+VDSL2+Ethernet+Extender+Kit+Over+Single+Pair+Wire+-+1km+Network+Extender+-+VDSL2+LAN+Extender+-+Short+Haul+Modem+%28110VDSLEXT%29&qid=1570198340&sr=8-1

This is what you're looking for:

http://www.amazon.com/Network-Warrior-Gary-A-Donahue/dp/1449387861/ref=sr_1_1?ie=UTF8&qid=1405952527&sr=8-1&keywords=Network+Warrior

Also, if you can get access to this course, it's really good:

http://www.cbtnuggets.com/it-training-videos/course/cisco-ccna-labs-2011

He is also making another course that has a lot of practicality to it:

http://www.cbtnuggets.com/it-training-videos/course/cbtn_pro_course_network_design

Check out GNS3, it's a great practice routing tool which works with IOS (Cisco) and Junos (Juniper) very easily. You can set up and test all kinds of configurations. I'd suggest Todd Lammle's CCNA Guide for not only a good introduction to Cisco but to networking in general.

this used to be good: https://www.amazon.com/Network-Warrior-Everything-Need-Wasnt/dp/1449387861/ref=sr_1_1?ie=UTF8&qid=1484363445&sr=8-1&keywords=network+warrior

Literally this and packet tracer is all you need to get your CCNA:

http://www.amazon.com/Certified-Network-Associate-Deluxe-Edition/dp/0470901071

Once you have that you are qualified to get a basic level networking job from there and then your knowledge and opportunities are endless!

> I'm very new to BGP, and there's not a lot of information out there on this topic.

That is absolutely not true, there are tons and tons of information available regarding proper BGP configuration and design :

BGP Design and Implementation
Internet Routing Architecture
Practical BGP
Network Warrior 2

You should really try to understand BGP if you want to optimize your peering. Maybe look at getting someone with BGP experience onboard your project.

The MicroScanner^2 (like its predecessor) is an excellent tool. However, I recommend just buying the tool itself (w/carrying case), not the entire kit.

The kit you linked includes an inductive amplifier (tone probe), numbered terminators (for identifying multiple drops simultaneously), and some miscellaneous cables. These are nice to have but definitely not worth an extra $300. The only critical component is the inductive amp, and you can find a very decent one at a much more reasonable price.

Are you interested in configuration specifics or just "how BGP works"? For the former, you'll have to go through your vendor more than likely. For the latter, use the bible

If you are serious about getting into networking then you need to read the following to start with:

TCP/IP fundamentals
http://www.amazon.com/gp/product/0201633469/ref=oh_details_o05_s00_i00?ie=UTF8&psc=1

Ethernet definitive guide
http://www.amazon.com/Ethernet-Definitive-Charles-E-Spurgeon/dp/1449361846/ref=sr_1_1?s=books&ie=UTF8&qid=1397246249&sr=1-1&keywords=ethernet+the+definitive+guide

Then install GNS and create/break stuff.

Then get a CCNA under your belt, will take about 2 months of study after work to pass the exam.
http://www.amazon.com/gp/product/1118749618/ref=oh_details_o00_s00_i00?ie=UTF8&psc=1

Having the CCNA under your belt should easily get you a foot in the door.

However to understand networking you will be spending your working life studying to stay current...

I usually see Network Warrior pop up in threads like this, figured I'd bring it up since I don't see it yet. Network Warrior

Wired connection through coax (MoCA adapters) like: http://www.amazon.com/Actiontec-Ethernet-Adapter-without-Routers/dp/B008EQ4BQG ... would be my 1st choice.

If you have only one phone line (red and green wires) you could use the second line (yellow and black wires) for an Ethernet extender over single pair, such as: http://www.amazon.com/StarTech-com-VDSL2-Ethernet-Extender-Single/dp/B002CLKFTG

TCP/IP Illustrated Volume 1 Edition 1, its the bible.

http://www.amazon.com/TCP-Illustrated-Vol-Addison-Wesley-Professional/dp/0201633469

Sure there are a lot more advanced books you need, but this one is a gem. ARP, bounce charts, tcp windows/zero windows, tcp half opens, etc,.

Yeah. I know Startech makes this one:

https://www.amazon.com/StarTech-com-VDSL2-Ethernet-Extender-Single/dp/B002CLKFTG/

Quick googling also found these more rugged ones:

https://www.moxa.com/product/DSL_Extender.htm

I too was in the same boat but just a lowly CCNA R&S! Never the less I learned. Here's some reccomendations.

1. I'm a book learner kind of guy and found this book indispensable as I was learning ASA. https://www.amazon.com/Cisco-ASA-All-one-Next-Generation/dp/1587143070
   
   
2. YouTube has a ton of videos on configuring VPN tunnels so take advantage of those.
   
   
3. A fun excercise to learn from ASDM is to go to preferences and tell it to preview the code for you before sending it to the CLI. Run the VPN wizard and when you are at the last stage, you'll preview the code, copy and paste it to notepad (DO NOT PUSH SEND!) and review and edit it according to your needs. ( Always cancel out of the wizard because it's naming conventions are garbage)

http://www.amazon.com/Ubiquiti-Networks-Enterprise-System-UAP-3/dp/B005EORRBW/ref=sr_1_2?ie=UTF8&qid=1375732817&sr=8-2&keywords=unifi

Replace your access points with these. They allow for a primary + guest network. This is the cheapest way to do it if you need 3 WAP coverage. The guest network won't have access to your church LAN.

If you need to feed power to this device, I'd be wary of PoE at that distance... You're depending on the load, you're going to get some serious losses on tiny Cat5/6 wires.

You said that you can stick whatever cables you want up there, I'd look into something like this. 100m at 1km over pots lines, should be good enough unless you need more b/w.

The "right" way to do it would be fiber, but that can get real expensive real fast.

Just picked up Mike Meyers Network+ book for the new exams and he doesn't disappoint.

Get a copy of this

the bible

this is a great book IMO

http://www.amazon.com/CCNA-Routing-Switching-Study-Guide/dp/1118749618/ref=sr_1_1?ie=UTF8&qid=1419215795&sr=8-1&keywords=todd+lammle+ccna

If you are really looking for a book, go for Network Warrior: https://www.amazon.com/Network-Warrior-Gary-Donahue/dp/1449387861

The second edition covers Nexus.

Network Warrior 2nd ed. http://www.amazon.com/Network-Warrior-Gary-A-Donahue/dp/1449387861

http://www.amazon.com/Network-Warrior-Gary-Donahue/dp/1449387861/ref=sr_1_1?ie=UTF8&qid=1415899024&sr=8-1&keywords=network+warrior

Network warrior is one of the most well-rounded books you can read when you're starting off.

Here is the mobile version of your link

I think Network Warrior might but up your alley. https://www.amazon.com/Network-Warrior-Everything-Need-Wasnt/dp/1449387861

http://www.amazon.com/Network-Warrior-Gary-Donahue/dp/1449387861/

After you're done you should check this out.

https://www.amazon.com/Network-Warrior-Everything-Need-Wasnt/dp/1449387861/ref=sr_1_1?ie=UTF8&qid=1493374898&sr=8-1&keywords=network+warrior+3rd

I believe you're looking for the Bible, sir.

Internet Routing Architectures by Sam Halabi is considered by some to be the Holy Bible when it comes to BGP.

I haven't read it but this is one book I've been considering since I'm also working on a QoS project in the coming months.

http://www.amazon.co.uk/Routing-Switching-200-120-Official-Library/dp/1587143879/ref=sr_1_1?ie=UTF8&qid=1395065946&sr=8-1&keywords=ccna+library

This is what I used/love.

https://www.amazon.com/Fluke-Networks-MS2-100-Cable-Tester/dp/B000QJ3G42?ref_=fsclp_pl_dp_2

​

Anything from Fluke will work for ages

After further searching this subreddit...would this setup work:

Modem --> Router --> PoE Switch --> 3 AP's spread throughout the shop, all broadcasting the same SSID and Password for seamless/smart transitioning.

https://www.amazon.com/Asunflower-Serial-Console-Rollover-Routers/dp/B00KMRVGFO

Buy it and move on with your life man.

Pick up a copy of TCP/IP Illustrated. Required reading for any Network Engineer who takes themselves seriously -

http://www.amazon.com/TCP-Illustrated-Volume-Addison-Wesley-Professional/dp/0321336313/ref=sr_1_1?ie=UTF8&qid=1405969361&sr=8-1&keywords=tcp+illustrated+volume+1

I've seen it mentioned before though. Some quick searching found

CCNA cheat sheet packed with iOS commands

Guy studying for CCNA asking how to memorize commands

CCNA study book that covers how to configure Cisco hw, which I'm assuming requires some use the CLI

More study guides that cover iOS

Guy says test covers time-limited simulations that require knowing exact commands

check out the sidebar at /r/ccna a guy did a youtube series on passing ICND1 & 2. You'll want at least to take some practice tests which you can find from Googling and I find it's nice to have a book around for reference (I'm old school I guess) and they can be found for pretty cheap, hell you can rent this one for $25! I'd invest up front in study materials, failing a test when your employer is paying for it doesn't look good.

Unfortunately, you are correct. Only 2.4Ghz :/ link to models purchased

So, by all rights I would heavily recommend getting a professional to do this for you, they will be available to help with any issues that crop up down the line. That saaaaiiidddd... you could also do this.

Get:

• 1x Ubiquiti UniFi Security Gateway - https://www.amazon.com/Ubiquiti-Unifi-Security-Gateway-USG/dp/B00LV8YZLK
  
  
• 2x Ubiquiti UniFi UAP AC HD - https://www.amazon.com/Ubiquiti-UAP-AC-HD-Unifi-Access-Point/dp/B01N15FSAG
  
  
• 1x Ubiquiti UniFi 8 Switch 60w - https://www.amazon.com/Ubiquiti-UniFi-Switch-60W-US-8-60W/dp/B01MU3WUX1
  
  
• 1x Ubiquiti UniFi Cloud Key - https://www.amazon.com/Ubiquiti-Unifi-Cloud-Key-Control/dp/B017T2QB22
  
  This will run you shy of $900 and will take care of the network forever... until something breaks. Then whatever poor SOB has to take over for you has to figure out what's been done and how to fix it. If you can get that approved, come back for help on how to put it together. It will take some trial and error to figure out if you need additional APs depending on the space, but these are beefy units.
  
  I have never seen a piece of Ubiquiti gear die, aside from what I've killed myself. As long as people don't fuck with it, it should work fine for years.
  
  ---
  
  As far as data storage goes, a proper Synology NAS would be my recommendation, but it depends on how much storage space you need. So, how much do you need? If you need less than 12TB, you can get away with a 2 bay device like the DS218 ($250 - https://www.amazon.com/Synology-bay-DiskStation-DS218-Diskless/dp/B077PJX8TH). The amount of storage will determine the cost of the drives, 4TB would be ~$300, 12TB would be ~$900.
  
  ---
  
  Last item would be a battery backup. This is not optional. It will keep electricity hijinks from kiling your data or equipment. Never plug anything else into it and leave it alone once set up. https://www.amazon.com/APC-Compact-Protector-Back-UPS-BX1500M