Bandwidth and Throughput Capacity PDF

Summary

This document discusses bandwidth, throughput, and goodput in the context of network performance. It provides an overview of the concepts and suggests troubleshooting steps for situations where throughput is significantly lower than expected.

Full Transcript

Bandwidth and Throughput Capacity

Bandwidth

Bandwidth refers to the theoretical maximum data capacity transmitted
over a network connection in a period, typically measured in bits per
second (bps).

Throughput

Throughput is the amount of data successfully transmitted across the
network in a given period, including all data packets -
application-level and overhead (such as retransmissions, protocol
headers, and acknowledgments).

Goodput

Goodput is a subset of throughput focusing solely on successfully
delivered application-level data. It excludes retransmissions, protocol
overhead, and other non-application-level data. Thus, goodput is a more
accurate metric for the network\'s user-perceived performance.

Data Rate

Data rate refers to the raw data transmission speed, including all bits,
whether application-level or overhead, typically measured in bits per
second (bps).

Considering these terms together, imagine you are transferring a 1 GB
file from a server to a client over a network with the following
characteristics:

Bandwidth: The network link is rated at 1 Gbps (the maximum theoretical
capacity of the connection).

Data Rate: During the transfer, the server sends data at a rate of 900
Mbps, which includes all transmitted bits, such as retransmissions,
protocol overhead, and application-level data.

Throughput: The network effectively processes 800 Mbps of data, the
total amount delivered successfully across the network (including
application-level data and overhead).

Goodput: Of the data processed by the network, 750 Mbps represents the
rate of application-level data successfully received by the client,
excluding retransmissions and protocol overhead.

Troubleshooting Bandwidth and Throughput Capacity

When troubleshooting network performance issues, the bandwidth of the
network link is assumed to be sufficient for the required tasks.

Throughput indicates the network\'s current performance, and throughput
capacity represents the maximum amount of transmitted data under optimal
conditions.

If throughput is far below throughput capacity, investigate:

Congestion:

Monitor Traffic: Use tools like NetFlow, Wireshark, or SNMP to identify
high-bandwidth devices.

Prioritize Traffic: Implement QoS policies to prioritize critical
traffic and reduce congestion for essential applications.

Segment the Network: Divide large networks into smaller subnets or VLANs
to reduce congestion.

Upgrade Bandwidth: If congestion is persistent and bandwidth usage
approaches capacity, consider upgrading the link or adding additional
connections.

Hardware Constraints:

Check Device Capabilities: Verify that network devices (e.g., switches,
routers, NICs) support the required speeds (e.g., 1 Gbps vs. 100 Mbps).

Inspect Backplane Capacity: Ensure switches and routers can handle the
combined throughput of all connected devices without bottlenecks. The
backplane determines how much data the device can handle simultaneously.

Update Firmware: Ensure network devices run the latest firmware to
address known performance issues.

Upgrade Hardware: Replace outdated devices with the capacity for modern
network demands, such as switching from Cat5e to Cat6a cabling or
upgrading to faster NICs.

Retransmissions:

Monitor Error Rates: Use network monitoring tools to identify specific
links with errors.

Check Physical Connections: Inspect cables, connectors, and ports for
physical damage or loose connections.

Optimize Protocol Settings: Adjust TCP window sizes or enable flow
control mechanisms to improve reliability in high-latency environments.

Upgrade Transmission Medium: To reduce signal degradation, replace
unreliable links (e.g., old copper cables) with fiber optics.

If throughput capacity is much lower than the expected bandwidth,
assess:

Protocol Efficiency:

Overhead Analysis: Use tools like Wireshark to identify excessive
protocol overhead or inefficient packet sizes.

Optimize Protocols: Adjust TCP/IP settings, such as window size or
segmentation, to improve efficiency for large data transfers.

Device Limitations:

Check Hardware Specs: Verify that switches, routers, and NICs support
the bandwidth and are not operating at lower speeds.

Inspect Device Performance: Look for resource constraints (e.g., CPU or
memory usage) that may limit performance in high-load scenarios.

Upgrade Equipment: Replace devices that do not support advanced features
or higher speeds, such as moving from Fast Ethernet (100 Mbps) to
Gigabit Ethernet (1 Gbps).

If the bandwidth is insufficient, it sets a hard limit on both
throughput and throughput capacity. This limitation makes
troubleshooting these metrics less meaningful until you resolve the
bandwidth issue.

Measure Bandwidth Usage:

Use tools like NetFlow, Wireshark, or Speedtest to monitor bandwidth
utilization and identify whether the link is at or near its maximum
capacity.

Identify High-Bandwidth Consumers:

Determine which devices, applications, or processes are consuming
significant bandwidth. Examples include video streaming, large file
transfers, or backups during peak hours.

Implement Bandwidth Management:

Apply QoS policies to prioritize critical traffic over less essential
applications.

Schedule bandwidth-intensive tasks (e.g., backups) during off-peak
hours.

Upgrade the Connection:

Increase the bandwidth by upgrading the network link to a higher speed
(e.g., moving from 100 Mbps to 1 Gbps).

Add links or redundant paths to share the load (link aggregation).

There may be instances when upgrading the bandwidth is not achievable.
In these cases, compression technologies or offloading traffic to less
congested paths should be considered.

Troubleshooting Latency

Latency is the delay, measured in milliseconds (ms), for data to travel
one way from the source to the destination. High latency results in slow
application response times, which users often describe as \"lag.\"

Identify and measure latency using network monitoring tools like
SolarWinds, Wireshark, and NetFlow or tools like ping or
traceroute/tracert.

Common Causes and Solutions

Cause: Distance

Data packets traveling over longer distances take more time, resulting
in delays.

Solution: Use content delivery networks (CDNs) or edge servers to bring
data closer to end-users.

Cause: Congestion

Network traffic on the link can increase delays, especially during peak
usage.

Solution: Apply QoS to prioritize latency-sensitive traffic.

Cause: Device Processing:

Routers, firewalls, and switches inherently introduce delays as they
process packets.

Solution: Ensure routers, firewalls, switches, and NICs can handle the
required data rates with minimal delay.

Cause: Protocol Overhead

Complex protocols like TCP/IP require more processing time than UDP.

Solution: Use lightweight protocols to reduce processing time. One
example is using UDP instead of TCP for applications that don\'t require
guaranteed delivery (e.g., video streaming).

Troubleshooting Jitter

Jitter, measured in milliseconds, is the variation in latency between
data packets and indicates how much the packet delay deviates from the
average latency. High jitter can negatively impact real-time-sensitive
applications, such as VoIP and video conferencing, usually resulting in
choppy audio and video, stuttering, or lag.

Identify and measure jitter using network monitoring tools like iperf,
SolarWinds, or ping to calculate response time variations.

Common Causes and Solutions

Cause: Network Congestion

High traffic can cause inconsistent latency as packets vie for available
network bandwidth (particularly on overloaded links).

Solution: Reduce congestion by segmenting the network, creating VLANs,
or upgrading bandwidth.

Cause: Device Overload

Switches, routers, or other network devices with insufficient processing
power may have difficulty processing excessive packets.

Solution: Use monitoring tools to assess CPU and memory usage on
devices. Replace underpowered devices with models capable of processing
the required traffic. Implement load balancing to reduce the processing
load on individual devices.

Cause: Poor QoS Configuration

Missing or improper QoS configuration often leads to real-time traffic
competing for bandwidth, resulting in inconsistent packet delivery
times.

Solution: Ensure QoS is enabled and configured for real-time
applications.

Cause: Faulty Hardware

Malfunctioning switches, routers, and NICs can contribute to jitter in
the network.

Solution: Replace faulty components and connections. Verify devices have
the latest firmware updates installed.

Troubleshooting Congestion and Contention

Congestion happens when there\'s more network traffic than the network
and systems can handle, causing delays and slowing down performance as
devices wait their turn to send data. Contention is when multiple
devices or applications try to use the same network resources
simultaneously.

Common Causes and Solutions

Cause: High Bandwidth

Multiple devices or applications consume significant bandwidth
simultaneously, exceeding the capacity of the network link.

Solution: Use tools like NetFlow, SNMP, or Wireshark to identify
high-bandwidth users, applications, or devices contributing to
congestion. Increase bandwidth by upgrading to higher-speed connections
or adding links (e.g., link aggregation).

Cause: Oversubscription

Too many devices are connected to a single network segment, switch, or
router, causing resource contention.

Solution: Segment the network using VLANs or additional switches to
distribute traffic more evenly and reduce congestion.

Cause: Inefficient Traffic Management

Lack of Quality of Service (QoS) or traffic prioritization allows
non-critical traffic to consume resources at the expense of critical
applications.

Solution: Configure QoS policies to prioritize real-time and critical
traffic, such as VoIP, over less time-sensitive traffic, like file
transfers.

Cause: Burst Traffic Patterns

Sudden spikes in traffic can overwhelm the network temporarily.

Solution: Schedule bandwidth-intensive tasks (e.g., backups, updates,
large file transfers) during off-peak hours to prevent overwhelming the
network.

Troubleshooting Bottlenecking

Network bottlenecking occurs when a part of the network becomes
overloaded or cannot handle the amount of traffic passing through it. It
happens when the capacity of a component---such as a router, switch,
NIC, or a specific connection---limits the data flow. Bottlenecking
introduces several impacts to the network, such as slower data transfer
rates, increased latency and jitter, and reduced application
performance.

Identify bottlenecks using network monitoring tools or
traceroute/tracert to locate areas where traffic is slowing.

Common Causes and Solutions

Cause: Slow Network Devices/Limited Backplane Capacity

Devices like switches, routers, or NICs may operate at less-than-optimal
speeds due to misconfigured or outdated hardware.

Solution: Verify that switches, routers, and NICs are not outdated and
support the network design\'s required speeds. Replace slow or outdated
devices with higher-capacity devices that match the network\'s
performance needs.

Cause: Oversaturated Links

A specific link experiences excessive traffic, such as a WAN link
connecting remote sites or uplinks between switches, resulting in slow
performance.

Solution: If uplinks between switches or to the WAN are overused, add
additional links or implement link aggregation to increase capacity.

Cause: Inefficient Device Configurations

Misconfigured devices, such as mismatched duplex settings or incorrectly
applied QoS, can limit performance.

Solution: Ensure you have correctly configured device settings for speed
and duplex. Apply QoS policies to prioritize critical traffic and reduce
the impact of lower-priority data.

Troubleshooting Packet Loss

Packet loss occurs when data packets traversing a network fail to reach
their destination. Packet loss results in incomplete data transmission,
which can degrade network performance and affect applications.

Use ping or traceroute/tracert to identify packet loss and determine
which device or network segment drops packets. Tools like Wireshark
provide detailed insights into packet loss rates and patterns.

Common Causes and Solutions

Cause: Faulty Physical-Layer Connections or Hardware

Solution: Inspect cables, connectors, and ports for damage or wear.
Replace faulty components as necessary. Ensure cables are appropriate
for the connection type (e.g., Cat5e or higher for gigabit Ethernet).

Cause: Network Congestion

Excessive traffic overwhelms the network, causing routers or switches to
drop packets to manage the load.

Solution: Use QoS to prioritize critical traffic and reduce the impact
of congestion. Upgrade bandwidth or segment the network to reduce
traffic loads on congested links.

Cause: Software Issues

Outdated firmware or bugs in network devices may cause instability,
leading to packet loss.

Solution: Upgrade firmware and software to fix bugs or vulnerabilities.

Cause: Configuration Errors

Incorrect settings, such as mismatched MTU sizes or VLAN
misconfigurations, can lead to dropped packets.

Solution: Ensure MTU sizes are consistent across the network to avoid
fragmentation-related packet loss. Verify VLANs and routing
configurations are correct.

Troubleshooting Wireless Performance - Interference

Wireless networks can experience various performance problems due to
environmental, configuration, or hardware-related factors.

Interference occurs when external signals disrupt the communication
between wireless devices, degrading performance and causing packet loss.

Detection and Identification

To detect wireless interference, monitor wireless performance metrics
for symptoms like reduced throughput, high latency, jitter, or dropped
packets. Tools such as Wi-Fi analyzers (e.g., NetSpot, Ekahau) or ping
tests can help identify these issues.

A network technician can use a Wi-Fi analyzer to identify co-channel or
adjacent-channel interference. Spectrum analyzers can pinpoint non-Wi-Fi
interference sources, such as microwaves or Bluetooth devices, while
observing the physical environment can help identify barriers like walls
or metal objects causing signal degradation.

Access point diagnostics and logs provide insights into interference
levels and channel utilization. Conduct a wireless site survey using
tools like Ekahau to map signal strength, channel interference, and
interference hotspots.

Common Causes and Solutions

Cause: Co-Channel Interference

Co-channel interference occurs when multiple access points within range
of each other use the same channel. While devices on the same channel
can coordinate transmissions, excessive use increases contention and
reduces throughput.

Cause: Adjacent Channel Interference

Adjacent-channel interference happens when APs within range use
overlapping channels (e.g., channels 1 and 2 in the 2.4 GHz band).
Unlike co-channel interference, devices on adjacent channels cannot
coordinate transmissions, leading to interference, packet loss, and
retransmissions. Adjacent channel interference often leads to severe
performance degradation, especially in high-density environments.

Cause: Channel Overlap

Channel overlap occurs when multiple access points operate on the same
or overlapping frequencies, leading to interference. Depending on the
channel configuration, this can result in co-channel or adjacent-channel
interference, as previously defined.

Solutions for Co-Channel Interference, Adjacent Channel Interference,
and Channel Overlap:

Assign APs to non-overlapping channels in the same frequency band (e.g.,
channels 1, 6, and 11 in the 2.4 GHz band).

Lower the transmit power of APs in overlapping coverage areas to reduce
interference while maintaining sufficient coverage.

Transition devices to the 5 GHz or 6 GHz bands, where adjacent-channel
interference is less likely due to wider channel spacing.

Optimize AP placement by spacing APs further apart to minimize
overlapping signal ranges.

Use Wi-Fi analyzers to identify overlapping signals and verify channel
configurations.

Enable dynamic channel allocation (Automatic Channel Selection) on
modern APs to automatically adjust channels based on network conditions.

Cause: Environmental Interference

Devices like microwave ovens, cordless phones, baby monitors, Bluetooth
devices, and fluorescent lights can generate interference that disrupts
wireless signals, especially in the 2.4 GHz band. Physical barriers like
walls, furniture, and glass can further weaken or distort signals.

Solutions for Environmental Interference:

Move APs away from sources of electromagnetic interference, such as
microwaves, Bluetooth devices, cordless phones, and fluorescent lights.

In high-interference environments, use shielded equipment to reduce
susceptibility to electromagnetic noise.

Position APs to minimize physical obstructions like walls and metal
objects between them and client devices.

Operate on the 5 GHz or 6 GHz bands, which are less prone to
interference from typical household or office devices.

Replace legacy devices with those supporting newer standards (e.g.,
Wi-Fi 6) for improved resistance to interference.

Troubleshooting Wireless Performance -- Signal Degradation or Loss

Wireless signal degradation or loss refers to the weakening or
disruption of a wireless signal as it travels from a transmitter to a
receiver. Such degradation can result in lower data rates, increased
latency, retransmissions, dropped connections, or complete signal loss.

Detection and Identification

The Received Signal Strength Indicator (RSSI) is a key metric for
identifying signal degradation. It measures the power level of a
wireless signal received at a device, expressed in dBm (decibels
relative to 1 milliwatt).

Typical RSSI Values:

-30 dBm to -50 dBm: Excellent signal strength (ideal for most
applications).

-51 dBm to -70 dBm: Good to fair signal strength (adequate for general
use).

-71 dBm to -90 dBm: Weak signal strength (may result in performance
issues like dropped connections).

Below -90 dBm: Unusable signal (likely no connection).

Common Causes and Solutions

Cause: Client Distance from Access Point

Wireless signals weaken over distance due to natural attenuation. The
further the device is from the access point, the weaker the signal
becomes.

Solutions:

Install additional APs or use a mesh network to improve coverage.

Adjust the AP\'s power settings (if supported) to extend its coverage
range.

Deploy wireless range extenders to fill coverage gaps.

Upgrade to Wi-Fi 6 or Wi-Fi 6E, which offer improved range and
performance.

Cause: Physical Barriers

Walls, floors, furniture, and other solid objects obstruct signals,
especially indoors. Materials like concrete, metal, and glass are
particularly disruptive.

Solutions:

Position APs to minimize obstacles between them and client devices.

Use the 2.4 GHz band in challenging environments, which penetrates
obstacles better.

Place additional APs to bypass barriers and improve signal availability.

Cause: Interference from Other Devices

As mentioned earlier, EMI from devices such as microwaves, cordless
phones, or Bluetooth devices can distort or weaken wireless signals.

Solutions:

Move to the 5 GHz or 6 GHz band, which is less crowded and less
susceptible to interference from non-Wi-Fi devices.

Use non-overlapping channels (e.g., 1, 6, and 11 in the 2.4 GHz band).

Position APs away from EMI sources like microwaves, Bluetooth devices,
and cordless phones.

Minimize or move other EMI-generating devices away from the network
area.

Cause: Network Congestion

In densely populated areas, overlapping wireless networks and high
device density can weaken signal quality through contention and
interference.

Solutions:

Use QoS to prioritize critical traffic and limit non-essential bandwidth
usage.

Spread devices across multiple APs to distribute traffic and reduce
contention.

Move devices to less congested bands (e.g., 5 GHz or 6 GHz) to alleviate
network congestion.

Configure APs to direct dual-band devices to operate on the
less-congested 5 GHz or 6 GHz bands (called band steering).

Cause: Signal Reflection and Multipath Effects

Signals reflecting off surfaces like walls or ceilings can create
multipath interference, where the receiver gets multiple delayed copies
of the same signal.

Solutions:

Modern APs with beamforming technology focus signals directly toward
devices, reducing multipath interference.

Verify that it is enabled. Place APs to minimize reflective surfaces
like walls or ceilings.

Upgrade to Wi-Fi 6 standards, which utilize technologies like OFDMA and
MU-MIMO to mitigate the effects of multipath interference.

Cause: Antenna Issues

Misaligned, poorly placed, or low-gain antennas (which provide broad but
shorter-range signal coverage) can result in weaker signals and reduced
coverage.

Solutions:

Adjust antenna positions to maximize coverage. For directional antennas,
aim them directly toward the target coverage area.

Replace low-gain antennas with high-gain or omnidirectional antennas.

Cause: Device Capabilities

Older or less capable wireless devices may have weaker transmitters or
less sensitive receivers, limiting their ability to maintain strong
connections.

Solutions:

Replace older devices with newer models that support modern Wi-Fi
standards (e.g., Wi-Fi 6/6E).

Ensure devices are within range and positioned to maximize signal
reception.

Keep device drivers and firmware up to date to improve performance and
compatibility.

Troubleshooting Wireless Performance -- Insufficient Wireless Coverage

Insufficient wireless coverage occurs when the wireless signal does not
adequately reach all areas of a network environment, resulting in dead
zones or areas with weak signal strength. Insufficient coverage can lead
to poor connectivity, slow speeds, or the inability to connect to the
network.

Detection and Identification

Wireless Site Survey: Use tools like NetSpot, Ekahau, or HeatMapper to
map signal strength and identify dead zones.

Signal Strength (RSSI): Measure RSSI values; areas with an RSSI below
-70 dBm often indicate insufficient coverage.

User Feedback: Collect reports from users experiencing connectivity
issues in specific areas.

Common Causes and Solutions

Cause: Poor Access Point Placement

APs positioned too far from key areas or obstructed by walls, furniture,
or other barriers can fail to provide adequate signal strength.

Solutions:

Move APs closer to key areas or central locations.

Place APs in open spaces, avoiding barriers like walls, furniture, or
ceilings that block signal propagation.

Mount APs on walls or ceilings to improve signal distribution.

Cause: Inadequate Number of APs

A single AP may not be sufficient for large or complex spaces,
especially in multi-floor buildings or areas with many obstacles.

Solutions:

Deploy additional APs to cover areas with weak or no signal.

Implement a mesh Wi-Fi system to extend coverage.

Cause: Low Transmission Power

APs with low power settings may not cover the intended area.

Solutions:

Adjust the AP\'s transmission power to extend its range, however, avoid
excessive power settings that could cause interference with neighboring
APs or networks.

Upgrade to high-gain antennas if the AP supports them.

Cause: Environmental Factors

Physical obstructions (e.g., walls, glass, metal objects) and
interference from nearby devices (e.g., microwave ovens, Bluetooth
devices) can weaken signals.

Solutions:

Position APs to bypass physical obstructions like walls, furniture, or
large metal objects.

Utilize the 2.4 GHz band for better penetration through barriers or the
5 GHz/6 GHz bands for less interference in open areas.

Move APs away from devices that emit electromagnetic interference, such
as microwaves, cordless phones, and Bluetooth devices.

Cause: Outdated Technology

Older APs or devices not supporting modern standards (e.g., Wi-Fi 6 or
Wi-Fi 6E) may provide limited range and performance.

Solutions:

Replace legacy APs with modern devices that support newer Wi-Fi
standards (e.g., Wi-Fi 6 or Wi-Fi 6E) for improved range and
performance.

Ensure existing devices have the latest firmware to optimize their
functionality and compatibility.

Cause: Overcrowded Frequency Bands

Congestion in the 2.4 GHz band, often caused by overlapping networks or
devices, can reduce coverage and quality.

Solutions:

Use less congested frequency bands to avoid interference from
overlapping networks or devices.

Configure APs to direct dual-band devices to 5 or 6 GHz bands.

Assign APs to non-overlapping channels (e.g., 1, 6, 11 in the 2.4 GHz
band) to reduce interference.

Troubleshooting Wireless Performance -- Client Disassociation Issues

Client disassociation occurs when a device unexpectedly disconnects from
a wireless access point. These issues can cause dropped connections or
interruptions in service.

Common Causes and Solutions

Cause: Weak Signal Strength

Devices located far from the AP or in areas with physical obstructions
may experience poor signal quality, leading to disconnections.

Solutions:

Move client devices closer to the AP or reduce obstructions between
them.

Deploy additional APs, mesh nodes, or range extenders to fill coverage
gaps.

Increase the AP\'s transmission power to improve signal reach (ensuring
it does not cause interference with nearby APs).

Use modern Wi-Fi standards (e.g., Wi-Fi 6) that offer better range and
performance.

Cause: Interference

External sources of interference, such as overlapping channels, nearby
wireless networks, or electromagnetic devices, can disrupt the
connection between the client and the AP.

Solutions:

Configure APs to use non-overlapping channels (e.g., 1, 6, 11 in the 2.4
GHz band) to avoid co-channel and adjacent-channel interference.

Transition devices to the 5 GHz or 6 GHz bands, which are less crowded
and less prone to interference.

Move APs away from potential sources of electromagnetic interference,
such as microwave ovens, baby monitors, or cordless phones.

Place APs in areas with minimal overlap and interference from other
networks or devices.

Cause: Access Point Overload

When too many devices connect to the same AP, it may struggle to handle
the traffic, resulting in client disconnections.

Solutions:

Deploy additional APs to distribute the load among multiple devices.

Enable load balancing features on APs to limit the number of clients
connected to a single AP.

Use higher-capacity APs capable of handling more simultaneous
connections.

Configure APs to direct dual-band clients to the less-congested 5 GHz or
6 GHz bands.

Cause: Authentication Issues

Problems with the authentication process, such as mismatched credentials
or expired session keys, can cause clients to disconnect.

Solutions:

Ensure client devices are using the correct SSID and security key.

Use modern protocols like WPA3 for better reliability and security.

Adjust session expiration settings on the AP to reduce unnecessary
reauthentication.

For enterprise networks, ensure the RADIUS server is properly configured
and accessible.

Cause: Firmware or Driver Issues

Outdated or buggy firmware on the AP or client device can result in
unstable connections.

Solutions:

Ensure APs and client devices have the latest firmware to resolve known
bugs and improve stability.

Update wireless drivers on client devices for better compatibility and
performance.

Restart APs and client devices periodically to clear temporary issues.

Cause: Roaming Issues

Clients moving between APs in a network may fail to transition smoothly,
leading to temporary disconnections.

Solutions:

Adjust the AP\'s handoff threshold so clients switch APs before signal
strength degrades.

Ensure all APs in the network use the same SSID and security settings.

Cause: Network Configuration Errors

Misconfigured AP settings, such as incorrect SSID, security protocols,
or maximum client limits, can cause disassociations.

Solutions:

Verify that SSIDs, security protocols, and client limits are configured
correctly.

Use visible SSIDs (instead of hidden) to reduce connection issues for
client devices.

Ensure the DHCP server has enough IP addresses available for all
clients.

Check that VLAN configurations allow proper communication between
clients and APs.

Troubleshooting Wireless Performance -- Roaming Misconfiguration

Roaming misconfiguration occurs when wireless clients experience
connectivity issues while disassociating and reassociating across access
points.

Common Causes and Solutions

Cause: Inconsistent SSID or Security Settings

APs in the network have different SSIDs, passwords, or security
protocols, preventing seamless handoff between them.

Solutions:

Ensure all APs in the network broadcast the identical SSID to enable
seamless transitions.

Configure all APs to use the same encryption method (e.g., WPA3 or WPA2)
and passwords.

Use a wireless controller or cloud-based management to apply consistent
configurations across APs.

Cause: Improper Signal Thresholds

APs have poorly configured RSSI thresholds, causing clients to cling to
weak signals (\"sticky clients\") or switch too frequently
(\"ping-ponging\").

Solutions:

Set minimum signal strength thresholds on APs to ensure clients roam
before the signal degrades too much.

Use balanced thresholds to prevent clients from unnecessarily switching
between APs.

Analyze roaming behavior using tools like Ekahau or NetSpot to fine-tune
thresholds.

Cause: Overlapping Coverage Areas

Excessive overlap between APs creates contention, leading to
interference and inconsistent handoff behavior.

Solutions:

Adjust AP transmission power to limit excessive overlap between
neighboring APs.

Configure APs to use non-overlapping channels to avoid interference.

Conduct a wireless site survey to optimize AP placement and signal
coverage.

Cause: Insufficient Coverage

Gaps in coverage result in clients losing connectivity while roaming.

Solutions:

Deploy additional APs or mesh nodes to fill coverage gaps.

Place APs strategically to eliminate dead zones and improve signal
availability.

Use APs with better range and support for modern Wi-Fi standards (e.g.,
Wi-Fi 6/6E).

Cause: AP Vendor Incompatibility

Using APs from different vendors without proper configuration can lead
to incompatibility.

Solutions:

Standardize APs across the network to avoid compatibility issues.

Use a centralized wireless controller that supports multi-vendor
environments for unified management.

Cause: Client Device Limitations

Older or less capable devices may lack support for modern roaming
protocols or fail to handle fast transitions.

Solutions:

Replace older devices that do not support modern Wi-Fi standards.

Configure roaming aggressiveness settings on client devices to improve
their roaming behavior.

Enable features like band steering or smart roaming to guide devices to
the most appropriate AP.

Software Tools

Several command-line utilities are essential for an administrator to
diagnose and troubleshoot network issues. They provide a direct,
efficient way to gather critical information about network connectivity,
performance, and configuration.

ping

You can test device connectivity using the ping command, which sends
ICMP echo requests. ping is especially useful for verifying whether a
device is online and reachable, measuring latency between the source and
destination, identifying packet loss, and testing DNS resolution.
Available on both Windows and Unix-based operating systems, it is often
the first step in diagnosing network issues.

A basic ping connectivity test is performed by running:

ping \

where the target can be an IPv4 or IPv6 address or a hostname.

If the ping is successful and the target is reachable and returns
replies, the output shows the message \"Reply from \\" along
with statistics. For example, the following request to the target
93.184.215.14 was successful; the ping sent 32 bytes of data to the
target, and the round-trip time was 14 ms.

Example of a successful ping command to 93.184.215.14, displaying reply
messages that include the message size, RTT, and TTL.

Round-trip time (RTT) is the time it takes for a packet to travel to the
host, including processing time at the host and the time it takes to
return from the target to the host. A network technician can use this
millisecond measure of round-trip time to troubleshoot latency issues.

The time-to-live (TTL) value in a packet\'s header specifies the maximum
number of hops (routers) the packet can traverse before being discarded.
Each router in the path decreases the TTL by 1; if it reaches 0 before
the packet reaches its destination, the router holding the packet
discards it. The TTL prevents infinite loops in the network.

ping Command Options

Common options for the ping command.

Example:ping -6 --n 50 example.com

This (Windows) command forces 'ping' to use ICMPv6 and sends fifty echo
request packets to 'example.com'.

ping Response Messages

If ping (ICMP) requests are unsuccessful, the system may return one of
the following messages:

Request Timed Out: This message indicates the ping request (at the
source) did not receive a reply within the allotted time. Possible
causes include the host being offline, powered off, or unavailable.
Connectivity problems, such as a broken link or misconfigured routing,
may prevent the request from reaching the destination. Firewalls or
security settings may block ICMP traffic, preventing replies even though
the host is online.

Destination Host Unreachable: This message indicates that the packet
could not reach the target network or device, commonly caused by
misconfigured or missing routes in the source or intermediary devices.
For example, the local computer making the request has an incorrect
default gateway, might not know how to reach the destination IP address,
or a router along the path lacks a valid route to forward the packet.

Despite its benefits, ping has a few limitations:

ping has a limited scope in that it doesn\'t provide insights into
packet content or protocol-level issues.

Unlike tools like traceroute/tracert, ping doesn\'t provide information
about the path packets take.

Many administrators configure firewalls to block ICMP traffic, causing
ping to fail even if the host is online.

traceroute/tracert

The traceroute/tracert commands map the path packets take to reach a
destination, identifying any points of failure or delays along the
route. traceroute is the command used by Unix-based operating systems,
such as Linux and macOS. tracert is the equivalent command in the
Windows command line environment. These commands not only trace the path
from source to destination but also display each router (hop) along the
way and measure the time to reach each hop.

A basic traceroute/tracert is performed by running the appropriate
command and following it with a target hostname or IPv4 or IPv6 address
(e.g., "traceroute \").

traceroute

By default, traceroute sends UDP packets to probe the path to a
destination. It increments TTL values to discover each hop along the
route. When a router receives a packet with a TTL of 0, it discards it
and sends an ICMP \"Time Exceeded\" message back to the sender,
identifying itself as a hop.

The destination port for these UDP packets is typically a high, unused
port number (e.g., 33434). When the packet finally reaches its
destination, the target device sends back an ICMP \"Port Unreachable\"
message, indicating that the trace is completed. The sending device adds
up each \"Time Exceeded\" message to determine the number of hops.

Example of a traceroute to the target example.com with a maximum of 64
hops.

tracert

On a Windows system, tracing is performed using the tracert utility. It
uses ICMP "Echo request" packets by default with an incrementing TTL
value. tracert sends ICMP "Echo Request" packets with progressively
increasing TTL (Time-To-Live) values, starting at 1. Each router along
the path decrements the TTL by 1, and when the TTL reaches 0, the router
discards the packet and sends back an ICMP "Time Exceeded" message,
identifying itself as a hop. This process continues, with tracert
incrementing the TTL for each packet until the destination is reached
and responds with an ICMP "Echo Reply."

The output shows the hop number (sequential number of each hop along the
route), round-trip times (typically, three RTTs are shown for each hop),
and the IP address or name of the router or destination for each hop. An
asterisk in tracert or traceroute indicates that a hop did not respond,
which may happen due to blocked ICMP traffic, network congestion, or the
device prioritizing other tasks.

Example of a tracert to the target example.com with a maximum of 30
hops.

traceroute/tracert Command Options

Common options for the traceroute and tracert commands.

Example:traceroute --m 40 example.com

This (Linux/macOS) command forces 'traceroute' to increase the maximum
number of hops (from 30 to 40) sent to 'example.com'.

nslookup

nslookup is a command that resolves domain names to IP addresses and IP
addresses to domain names, queries DNS records, checks DNS server
response times, and tests DNS configuration.

You can troubleshoot DNS name resolution using the basic query:
"nslookup \ \"

The \ parameter represents the target you want to query, and it
can be several types of entities, depending on your needs. For example,
you can query an FQDN, IP address (for reverse lookup), single-label
hostname (e.g., localhost), wildcard domains (e.g., \*.example.com), and
subdomains (e.g., mail.example.com). If you input an invalid hostname or
IP address, nslookup will return an error.

The \ parameter specifies a DNS Server that overrides the
default DNS server. For example, you can query Google\'s public DNS
server by specifying 8.8.8.8 as the dns\_server parameter (e.g.,
"nslookup example.com 8.8.8.8"). This command queries the specified DNS
server (Google\'s 8.8.8.8) for the domain example.com, overriding the
default DNS server configured on your system.

Interactive mode in nslookup is launched by typing nslookup in the
command line without additional parameters. It allows users to perform
multiple queries within a single session, customize settings like query
types (e.g., "set type=MX"), and enable debugging. To exit interactive
mode, type exit and press ENTER.

An example of nslookup in interactive mode. This nslookup command
identifies comptia.org's MX record using Cloudflare's public DNS
resolver (1.1.1.1) - notice the answer is non-authoritative.

In contrast, non-interactive mode is used for quick, single queries
directly from the command line, such as nslookup example.com 8.8.8.8,
making it ideal for straightforward lookups.

An example of nslookup in non-interactive mode. The first nslookup
command identifies comptia.org's MX record using Cloudflare's public DNS
resolver (1.1.1.1) - notice the answer is non-authoritative. The second
nslookup command returns comptia.org's Name Server record, which is
again non-authoritative. The third nslookup command queries
comptia.org's name server for the MX record. Notice that this answer is
authoritative.

nslookup Command Options

You can use the following options in both interactive and
non-interactive modes:

Common options for the nslookup command.

Example:nslookup --type=NS example.com

This command performs a DNS query to retrieve the name server (NS)
records for the domain 'example.com'.

dig

dig (Domain Information Groper) performs DNS lookups with more detailed
output than nslookup, aiding in analyzing DNS records and
configurations. Although it is primarily a Unix-based command, users can
manually install it on Windows.

You can troubleshoot DNS name resolution using the basic query:

dig \

The \ parameter represents the target you want to query, and it
can be several types of entities, depending on your needs. For example,
you can query an FQDN, IP address, single-label hostname (e.g.,
localhost), wildcard domains (e.g., \*.example.com), subdomains (e.g.,
mail.example.com), or SRV (service) targets (e.g.,
\_sip.\_tcp.example.com). If you input an invalid hostname or IP
address, dig will return an error.

The first dig command identifies comptia.org's MX record using
Cloudflare's public DNS resolver (1.1.1.1) - notice the absence of the
authoritative answer (aa) flag in the "flags" section. The second dig
command queries comptia.org's name server for the MX record. Notice that
the authoritative answer (aa) flag is in the "flags" section, indicating
the answer came from an authoritative server.

dig Command Options

Common options for the dig command.

Examples:dig \@8.8.8.8 example.com

dig example.com A

dig +short example.com

dig -x 203.0.113.0

dig +trace example.com

dig can generate extensive information, so adding switches to the end of
the command to suppress portions of the output, such as +nocomments,
+nostats, or +noadditional, may be beneficial.

tcpdump

tcpdump is a powerful command-line tool widely used on Unix-based
(Linux/macOS) systems for capturing and analyzing network traffic. It
operates at the packet level, allowing administrators and network
professionals to examine the data sent and received over a network in
real time. tcpdump functions as a packet sniffer and capture tool,
decoding and displaying packet contents as a protocol analyzer.

You can view packets in real-time using the basic command:

tcpdump -i \

where \ is the interface to monitor. tcpdump will continue
to display captured packets until halted manually by pressing CTRL+C.

tcpdump Command Options

Common options for the tcpdump command.

tcpdump captures all network traffic by default, which can quickly
become overwhelming. To focus on specific traffic, you can apply filters
based on the type, direction, and protocol of the packets you want to
capture. Filters simplify troubleshooting or analyzing specific network
behavior without sifting through unnecessary data.

You can add filters at the end of the tcpdump command:

tcpdump \[options\] \[filter\_expressions\]

tcpdump Filter Expressions

Common filter types for the tcpdump command.

netstat

netstat is a command-line tool that displays detailed information about
network connections, listening ports, routing tables, and interface
statistics. You can use netstat to ensure only authorized services run
on a host, spot suspicious connections like malware communicating with
remote servers, or troubleshoot application issues related to incorrect
port usage.

The basic syntax of netstat is:

netstat \[options\]

On Windows and Linux, running netstat without options displays active
TCP connections by default.

netstat output in Windows PowerShell shows active TCP connections with
local and foreign addresses, including their connection states such as
TIME\_WAIT (waiting to close), SYN\_SENT (attempting connection), and
FIN\_WAIT\_1 (closing connection).

netstat Command Options

Common options for the netstat command.

You can combine options when entering netstat commands. For example, in
Linux/macOS, you can display all TCP and UDP connections (both listening
and active), including local and foreign addresses, port numbers, and
the TCP connection state by using the command:

netstat -tua

In Linux, netstat is considered deprecated and has been replaced by the
ss (socket statistics) command, which is part of the iproute2 package.
The ss command provides faster and more detailed information about
network connections and listening ports. You can add it by installing
the net-tools package.

ip, ifconfig, and ipconfig

ip, ipconfig, and ifconfig are tools to manage and view network
interface configurations, IP addressing, and routing. ip is the modern
and more versatile tool for Linux, offering advanced functionality for
managing interfaces, routing tables, and more, replacing the older
ifconfig. On Windows, ipconfig is the standard utility for querying and
modifying network adapter settings, such as releasing or renewing DHCP
leases and flushing the DNS cache. While ifconfig is considered
deprecated on Linux, it remains in use on traditional Unix-based systems
like macOS, FreeBSD, and Solaris.

ip

The basic command syntax for ip is:

ip \

ip Command Options

Common options and examples for the ip command.

ipconfig

The ipconfig command is a Windows command-line utility used to display
and manage the IP configuration of network adapters.

The basic syntax of ipconfig is:

ipconfig \[options\]

Ipconfig Command Options

Common options and examples for the ipconfig command.

arp

The Address Resolution Protocol (ARP) is used by network devices to
resolve IP addresses into MAC addresses on a local network. The ARP
table maps IP addresses to MAC addresses, enabling communication between
devices on the same local network. Without an ARP table, the device must
send an ARP request to resolve the MAC address every time it sends a
packet. Storing the mappings locally on the device reduces network
traffic and speeds up communication.

The arp command interacts with the ARP table and manages IP-to-MAC
address mappings for local network communication. It is especially
helpful in troubleshooting and securing network connections.

In Windows, if you enter arp with no options, it displays help for the
command. In Linux, the arp command with no options displays the ARP
table with all current IP-to-MAC address mappings.

The basic syntax of arp is:

arp \[options\]

arp Command Options

Common options and examples for the arp command.

In Linux, the arp command is deprecated in favor of ip neigh for
managing ARP table entries.

Protocol Analyzer

A protocol analyzer is a software tool that captures, analyzes, and
troubleshoots network traffic by inspecting data packets in real time.
With it, network administrators can decode packet structures, view
protocol details (e.g., HTTP, DNS, or TCP), and apply filters or
searches for focused analysis. Many tools provide graphs or flow
diagrams to identify traffic patterns and protocol usage.

Wireshark is an open-source protocol analyzer available on Windows,
Linux, and macOS. It features a powerful sniffer component that captures
live network traffic from an interface, allowing users to intercept
packets for detailed analysis. The Follow TCP Stream feature
reconstructs and displays the whole conversation of a TCP session.

Nmap

Nmap (Network Mapper) is an open-source scanning tool for discovering
devices, mapping networks, and assessing security. It operates primarily
through the command-line interface (CLI), but a GUI version called
Zenmap is also available. Nmap runs on Windows, Linux, macOS, and other
platforms.

The basic syntax for Nmap is:

nmap \[options\] \

Where \[options\] specifies the type of scan, output format, or
additional parameters, and \ defines the target host(s) or
network(s) to scan. For example:

nmap 192.168.1.1 (scans single IP address)

nmap 192.179.1.1-100 (scans a range of IP addresses)

nmap 192.168.1.0/24 (scans a subnet)

nmap example.com (scans a single host)

With a default scan, Nmap performs host discovery to determine whether
the target is up and reachable. It uses techniques like ICMP Echo
Requests, TCP SYN to port 443, and TCP ACK to port 80 to detect whether
a host is reachable.

Once Nmap discovers a host, it can initiate port scanning, checking the
1,000 most common TCP ports to determine which ports are open, closed,
or filtered. Each port corresponds to a specific application or protocol
(e.g., HTTP on port 80 or SMTP on port 25), making port scanning a
critical step in network diagnostics and security assessments.

Nmap can perform many scan types, and as examples, the following are a
few of the commonly used:

Ping Scan (-sn): This scan is used to determine which hosts are up and
reachable on a network without performing a port scan. It sends ICMP
Echo Requests (pings) or other probes, such as TCP SYN packets, to port
443, depending on the environment and privileges. The ping scan is ideal
for identifying live hosts without probing their ports or services,
making it faster and less intrusive than other scan types.

The output of the nmap -sn command showing a ping scan over the subnet
192.168.91.0/24. The results indicate that two hosts (192.168.91.129 and
192.168.91.130) are up.

TCP Connect Scan (-sT): This scan completes the full three-way TCP
handshake for each port, making it a reliable method to identify open
ports. It does not require root or administrative privileges but is
slower and less stealthy than other types.

Output of the nmap -sT command scanning the target 192.168.91.130 for
open TCP ports. The results reveal 23 open ports with their respective
services.

TCP SYN Scan (-sS): Often called a \"half-open\" scan, this method sends
an SYN packet and waits for an SYN-ACK response without completing the
handshake. It is faster and stealthier than a TCP Connect Scan but
requires root or administrative privileges.

UDP Scan (-sU): This scan sends UDP packets to probe for open UDP ports
and services, which are less commonly scanned compared to TCP ports. Due
to the nature of UDP, it is slower and may require additional steps to
handle responses like ICMP port unreachable messages.

Port Range Scans (-p): The -p option allows you to specify a custom
range of ports instead of using Nmap\'s default scan of the 1,000 most
common ports. The port range scan helps focus on specific ports or a
broader range of less common ones. For example, you can scan a single
port (-p 80), a range (-p 20-100), or all 65,535 ports (-p-). This
option provides flexibility to tailor scans to the needs of specific
assessments or troubleshooting tasks.

Following port scanning, Nmap performs basic service identification on
open ports to make an educated guess about the protocol (e.g., HTTP,
FTP) running on those ports. While Nmap attempts to detect the type of
application, it does not perform deep service or version detection
unless explicitly instructed. For example:

Service Version Detection (-sV): This scan attempts to determine the
service versions running on open ports. It is beneficial for identifying
software vulnerabilities and assessing the security of running services.

Aggressive Scan (-A): This combines multiple scans, including service
version detection, operating system detection, and traceroute, giving
the administrator a comprehensive target analysis. It is more intrusive
and time-consuming.

Finally, Nmap produces a detailed output in the CLI, summarizing the
open ports, services, and detected host information.

Link Layer Discovery Protocol (LLDP) and Cisco Discovery Protocol (CDP)

Link Layer Discovery Protocol (LLDP) and Cisco Discovery Protocol (CDP)
are network discovery protocols used to identify and gather information
about directly connected devices on the same physical or logical link.
These tools operate at the data link layer of the OSI model and provide
essential information for network troubleshooting and configuration.
LLDP and CDP use announcements (or advertisements) to share information
about a device with directly connected neighbors. These announcements
include the device name, port ID, IP address, and capabilities and are
sent at regular intervals to maintain updated information in neighbor
tables.

Link Layer Discovery Protocol (LLDP)

LLDP is an open, vendor-neutral protocol defined by IEEE that allows
devices (e.g., switches, routers, and endpoints) to advertise their
identity, capabilities, and configuration to adjacent devices. By
default, advertisement frames are sent to the multicast address
01:80:C2:00:00:0E every 30 seconds. LLDP is widely supported on network
devices from various vendors.

Cisco Discovery Protocol (CDP)

CDP is a Cisco-specific protocol that discovers and shares information
about devices directly connected to a network. Like LLDP, CDP provides
details about neighboring devices using multicast address
01:00:0C:CC:CC:CC with a default announcement interval of 60 seconds.

Speed Tester

A speed tester evaluates network performance and connection quality for
internet or local networks. Network administrators use these tools to
diagnose slow speeds, latency, or reliability issues. Speed testers are
available in various forms, including web-based platforms, software
tools, and mobile apps. Some tools are specifically designed for testing
internet connections, while others are better suited for evaluating
local network performance.

Hardware Tools

Toner

A technician uses a toner to trace cables and identify their endpoints
in a network. It consists of two parts: a tone generator, which sends a
signal down the cable, and a probe, which detects the signal at the
other end. Toners are valuable for locating bundled cables in horizontal
trays or crowded wiring closets and cables that the installer did not
label properly.

Cable Tester

A cable tester checks the integrity of copper twisted pair and fiber
optic cables. It identifies issues such as breaks, shorts, miswired
pins, or fiber faults and verifies compliance with required standards.
Advanced testers can measure cable length and detect performance issues,
ensuring network reliability.

Taps

A network tap (Test Access Point) monitors traffic by copying the data
between two devices. Taps are commonly used in network analysis,
troubleshooting, and security monitoring, allowing technicians to
inspect traffic without disrupting the network.

Passive Taps: A passive tap physically splits the signal on a network
connection to create a copy of the data sent to a monitoring device.
Since it requires no external power or active components, it is highly
reliable and introduces minimal interference in the network. There are
fiber and copper cabling types, and this type of tap is unaffected by
traffic load.

Active Taps: An active tap requires external power to function and works
by regenerating the copied signal before sending it to a monitoring
device. Due to its active functionality, an active tap becomes a single
point of failure requiring redundancy.

Wi-Fi Analyzer

A Wi-Fi analyzer evaluates wireless networks by detecting signal
strength, channel usage, interference, and nearby networks. These tools
help optimize Wi-Fi performance, identify coverage gaps, and
troubleshoot issues such as signal interference or overlapping channels.
A Wi-Fi analyzer can be a standalone hardware device, a computer
software application, or a mobile app for smartphones and tablets.

Visual Fault Locator

A visual fault locator is a device used to identify breaks or faults in
fiber optic cables. It emits a visible red laser light that travels
through the fiber, revealing bends, breaks, or other issues in the
cable. VFLs are particularly useful for diagnosing physical damage in
fiber installations.

Networking Device Commands

Networking devices like switches and routers provide a set of essential
commands that network administrators use to monitor device performance
and operational status, diagnose and resolve issues, and verify
configuration.

show mac-address-table

show mac-address-table displays a switch\'s MAC address table, listing
all learned MAC addresses and their associated ports or VLANs. This
command is useful for verifying which devices are connected to specific
switch ports and troubleshooting connectivity issues, such as diagnosing
port misconfigurations.

The output of show mac-address-table on a Cisco switch. Each MAC address
was learned by the switch as indicated by the type "Dynamic".

show route

show route displays a device\'s routing table, providing information
about all known routes, their next-hop addresses, and associated
interfaces. Its output is commonly used to troubleshoot routing issues
or verify that a route to a specific destination exists within the
network. The show route command works on most Juniper products, while
Cisco uses the show ip route command.

The output of the show ip route command on a Cisco router. The routing
table indicates two directly connected networks: 192.168.1.0/25 on
GigabitEthernet0/0 and 192.168.1.128/25 on GigabitEthernet0/1.

show interface

show interface provides detailed information about the status and
statistics of network interfaces, such as speed, duplex, errors, and
packet counters. It is essential for diagnosing interface-specific
problems, such as packet loss, high error rates, or mismatched duplex
settings, which can impact performance.

The output of the show interface command on a Cisco switch.

show config

show config displays the networking device\'s current configuration,
including IP settings, VLAN assignments, routing protocols, and access
control lists (ACLs). In many devices, the command show running-config
displays the active, in-memory configuration currently in use. In
contrast, show startup-config displays the configuration saved to memory
that will load upon the next reboot. This distinction is crucial for
verifying changes before making them permanent.

The output of the show running-config command on a Cisco router with a
basic configuration applied.

show arp

show arp displays the device\'s ARP table. Network administrators use
the output to troubleshoot communication issues, verify IP-to-MAC
mappings, or detect conflicts in address resolution.

The output of the show arp command on a Cisco router displays the ARP
table.. The table includes mappings of IP addresses to MAC addresses
(Hardware Addr) for various interfaces.

show vlan

show vlan lists the VLANs configured on a switch. The output includes
VLAN IDs, names, and the ports assigned to each VLAN. This command is
essential for verifying VLAN configurations, ensuring proper VLAN
membership, and troubleshooting inter-VLAN connectivity issues.

The output of the show vlan command on a Cisco switch. The table
displays VLAN configurations, including VLAN IDs, names, statuses, and
associated ports. VLAN 10 (Sales) includes ports Fa0/5 to Fa0/10, VLAN
20 (IT) includes ports Fa0/11 to Fa0/15, and VLAN 30 (HR) includes ports
Fa0/16 to Fa0/24. VLAN 1 (default) is active on GigabitEthernet0/1 and
GigabitEthernet0/2

show power

show power provides information about the device\'s power status,
including details about the power supply and Power over Ethernet (PoE)
for connected devices. It is useful for monitoring power usage,
diagnosing PoE issues, and verifying that sufficient power is available
for all connected devices, such as IP phones or wireless access points.

The output of the show power inline command on a PoE-capable Cisco
switch. The table displays details on power usage for connected devices.
The switch has a total power budget of 370.0W, with 50.0W currently used
and 320.0W remaining. Ports Fa0/1 to Fa0/5 are providing 10.0W each to
connected IP Phone 7960 devices, with a PoE class of 3 (maximum 15.4W).

Summary

In this chapter, we focused on diagnosing and resolving network
performance issues, such as latency, jitter, bandwidth bottlenecks, and
packet loss. Additionally, we provided an overview of the tools and
protocols commonly used to analyze and troubleshoot these problems.

After completing this chapter, you should be able to:

Given a scenario, troubleshoot common performance issues.

Given a scenario, use the appropriate tool or protocol to solve
networking issues.

In this chapter, we covered:

Troubleshoot Network Performance Issues

Tools and Protocols to Solve Networking Issues

Previous activity: 6.3.1 Troubleshoot Network Performance IssuesNext
activity: Lab 6.3.1: Network Troubleshooting Tools and Techniques