Home > Articles > Security > Network Security

This chapter is from the book

Additional Troubleshooting Commands

This section introduces additional commands that might be useful in troubleshooting MPLS VPNs.

show ip cef vrf vrf_name detail

The show ip cef [vrf vrf_name] [prefix] detail command can be used to view detailed information about CEF FIB entries.

Example 6-177 shows the VRF mjlnet_VPN CEF FIB entry for prefix 172.16.5.0/24.

Example 6-177 show ip cef vrf vrf_name detail Command Output

Chengdu_PE#show ip cef vrf mjlnet_VPN 172.16.5.0 detail
172.16.5.0/24, version 52, epoch 0, cached adjacency 10.20.10.2
0 packets, 0 bytes
 tag information set, all rewrites owned
  local tag: VPN route head
  fast tag rewrite with Fa1/0, 10.20.10.2, tags imposed {35 16}
 via 10.1.1.4, 0 dependencies, recursive
  next hop 10.20.10.2, FastEthernet1/0 via 10.1.1.4/32 (Default)
  valid cached adjacency
  tag rewrite with Fa1/0, 10.20.10.2, tags imposed {35 16}
Chengdu_PE#

Highlighted line 1 shows the prefix itself (172.16.5.0/24), the FIB version, the epoch, and the cached adjacency for next-hop 10.20.10.2.

The epoch indicates the number of times the CEF table has been rebuilt. The epoch number starts at 0 and increments with each rebuild to a maximum of 255, at which point it loops back to 0. The clear ip cef epoch command can be used to rebuild the CEF table. This command can be used if there are inconsistencies in the CEF table.

The next-hop (10.20.10.2) cached adjacency shows that a Layer 2 header has been built and stored in the adjacency table. Note that this next-hop is the resolved (physical Layer 3) next-hop and not necessarily the next-hop of the route shown in the routing table.

Highlighted line 2 shows the next-hop for the prefix. This next-hop is the one stored in the routing table. Because this is a VPN route, this is the BGP update source of the PE router that sent the route.

Finally, highlighted line 3 shows the outgoing interface (Fast Ethernet 1/0), the resolved next-hop, and the labels to be imposed on packets being forwarded to the prefix (destination).

In this case, there is a two-label stack, with an outer IGP label (35), and an inner VPN label (16). Note that CEF is responsible for imposing a label stack on IP packets as they enter the MPLS backbone.

show adjacency detail

You can use the show adjacency detail command to examine the contents of the CEF adjacency table.

Example 6-178 shows the CEF adjacency table for Chengdu_PE.

Example 6-178 show adjacency detail Command Output

Chengdu_PE#show adjacency detail
Protocol Interface         Address
IP    Serial4/1         point2point(20)
                  8138 packets, 630040 bytes
                  FF030021
                  CEF  expires: 00:02:18
                     refresh: 00:00:18
                  Epoch: 0
TAG   FastEthernet1/0      10.20.10.2(24)
                  6467 packets, 3867274 bytes
                  0006535AEFC0
                  00049BD60C1C8847
                  TFIB    02:27:03
                  Epoch: 0
IP    FastEthernet1/0      10.20.10.2(68)
                  0 packets, 0 bytes
                  0006535AEFC0
                  00049BD60C1C0800
                  ARP    02:26:54
                  Epoch: 0
Chengdu_PE#

Highlighted line 1 shows the adjacency table entry used for label (tag) switching packets out of interface FastEthernet1/0. The IP address of the next-hop is also shown, together with (in brackets) the number of times that this adjacency table entry is referenced by CEF FIB table entries (seen with the show ip cef command).

Highlighted line 2 shows CEF accounting statistics, including the number of packets and bytes switched.

Highlighted lines 3 and 4 show the cached Layer 2 header to be used when label switching out of interface FastEthernet1/0. Note in particular the last four hexadecimal numerals (8847). This is the Ethertype for MPLS.

Highlighted line 5 indicates that source of the adjacency table entry. In this case, CEF is interfacing to the LFIB (shown as TFIB). The time until this entry expires is also shown.

Highlighted line 6 indicates the epoch of the adjacency table (0). In highlighted line 7, the adjacency table entry used for switching IP packets out of interface FastEthernet1/0 is shown.

Note highlighted line 8 and 9. These lines show the cached Layer 2 header used when switching IP packets out of the interface. You will notice that this is the same as that shown in highlighted lines 3 and 4. The one difference is the Ethertype shown in the last four numerals (0800) in highlighted line 9. This number (0800) is the Ethertype for IP.

show mpls ldp parameters

The show mpls ldp parameters command is used to examine LDP parameters as demonstrated in Example 6-179.

Example 6-179 show mpls ldp parameters Command Output

Chengdu_PE#show mpls ldp parameters
Protocol version: 1
Downstream label generic region: min label: 16; max label: 100000
Session hold time: 180 sec; keep alive interval: 60 sec
Discovery hello: holdtime: 15 sec; interval: 5 sec
Discovery targeted hello: holdtime: 90 sec; interval: 10 sec
Downstream on Demand max hop count: 255
TDP for targeted sessions
LDP initial/maximum backoff: 15/120 sec
LDP loop detection: off
Chengdu_PE#

Highlighted line 1 shows the LDP version in use. Currently there is only one version. Highlighted line 2 shows the generic label range available for label assignment (16 to 100000). Labels 1 to 15 are reserved.

Label value 0 is "IPv4 Explicit Null," label value 1 is "Router Alert," label value 2 is "IPv6 Explicit Null," and label value 3 is "Implicit Null." Label values 4 to 15 are reserved for future use.

In highlighted line 3, the session holdtime (180 seconds) and keepalive interval (60 seconds) are shown. Note that one session is maintained between LSRs per label space. This means that one session is maintained for all the frame-mode interfaces that connect neighboring LSRs, and another session is maintained per LC-ATM interface that connect LSRs.

Highlighted line 4 shows the discovery holdtime and interval (15 and 5 seconds, respectively). These parameters are used for directly connected neighbors.

Highlighted line 5 shows the discovery parameters for neighbors that are not directly connected (90 seconds for holdtime, and 10 seconds for the hello interval).

Highlighted line 6 shows the maximum hop count for label request messages in a downstream-on-demand environment (255). If an ATM-LSR receives a label request message with this hop count, the message is dropped because it is assumed that the message is looping between adjacent LSRs. This hop count is configurable using the mpls ldp maxhops command.

Highlighted line 7 shows any configured parameters for targeted LDP sessions. Targeted sessions are those between non-directly connected neighbors.

Highlighted line 8 shows the backoff timers (initial and maximum). The backoff mechanism ensures that if two LSRs are configured with incompatible LDP parameters, they will not reattempt session establishment at a constant time interval. Instead, the time interval between session establishment attempts will gradually increase.

Finally, highlighted line 9 shows whether LDP loop detection is enabled.

show mpls atm-ldp capability

The show mpls atm-ldp capability command displays ATM (cell-mode) parameters negotiated during session initialization.

Example 6-180 shows the output of the show mpls atm-ldp capability command.

Example 6-180 show mpls atm-ldp capability Command Output

Chengdu_PE#show mpls atm-ldp capability
        VPI      VCI      Alloc  Odd/Even VC Merge
ATM3/0.1    Range     Range     Scheme Scheme  IN  OUT
 Negotiated  [1 - 1]    [33 - 1018]  UNIDIR      -  -
 Local    [1 - 1]    [33 - 1018]  UNIDIR      NO  NO
 Peer     [1 - 1]    [33 - 1023]  UNIDIR      -  -
Chengdu_PE#

Highlighted line 2 shows the VPI (1 to 1) and VCI (33 to 1018) ranges used for label switching by the local ATM-LSR. VPI/VCI ranges must overlap between adjacent ATM-LSRs, otherwise the session will not be established. The VPI range can be modified using the mpls atm vpi command.

Highlighted line 2 also shows that the allocation scheme is unidirectional for VCIs with the same VPI value. Highlighted line 2 also shows that VC-merge is not supported in either an inbound or an outbound direction on this ATM interface.

Highlighted line 3 shows the same information for the peer ATM-LSR. In this case, the peer is using the VPI range 1 to 1 and the VCI range 33 to 1023.

The VPI/VCI ranges negotiated between the local and peer ATM-LSRs during session initialization (1 to 1, and 33 to 1018) are shown in highlighted line 1.

show atm vc

The show atm vc command can be used to verify the control VC, together with any Label Virtual Circuits (LVCs) created on LC-ATM interfaces.

Example 6-181 shows the output of the show atm vc command.

Example 6-181 show atm vc Command Output

Chengdu_PE#show atm vc
      VCD /                    Peak Avg/Min Burst
Interface Name     VPI  VCI Type  Encaps  SC  Kbps  Kbps  Cells Sts
3/0.1   1       0  32 PVC  SNAP   UBR 155000        UP
3/0.1   2       1  33 TVC  MUX   UBR 155000        UP
3/0.1   3       1  34 TVC  MUX   UBR 155000        UP
3/0.1   4       1  35 TVC  MUX   UBR 155000        UP
3/0.1   5       1  36 TVC  MUX   UBR 155000        UP
3/0.1   6       1  37 TVC  MUX   UBR 155000        UP
Chengdu_PE#

The control VC is shown in highlighted line 1. It uses the default VPI/VCI of 0/32. Note additionally that it uses a SNAP encapsulation.

Highlighted line 2 shows a LVC (shown as a TVC) created on the LC-ATM interface. This LVC uses VPI/VCI 1/33.

Note the four other LVCs created on the interface, each with a unique VPI/VCI. These LVCs use MUX encapsulation because they will carry only MPLS datagrams. The control VC VPI/VCI can be modified using the mpls atm control-vc command. The LVC VPI range can be modified using the mpls atm vpi command.

show ip bgp vpnv4 vrf vrf_name labels

The show ip bgp vpnv4 vrf vrf_name labels command can be used to examine the VPN labels assigned to VRF prefixes.

Example 6-182 shows the output of the show ip bgp vpnv4 vrf vrf_name labels command.

Example 6-182 show ip bgp vpnv4 vrf vrf_name labels Command Output

HongKong_PE#show ip bgp vpnv4 vrf mjlnet_VPN labels
  Network     Next Hop   In label/Out label
Route Distinguisher: 64512:100 (mjlnet_VPN)
  172.16.1.0/24  10.1.1.1    nolabel/26
  172.16.2.0/24  10.1.1.1    nolabel/27
  172.16.3.0/24  10.1.1.1    nolabel/28
  172.16.4.0/24  10.1.1.1    nolabel/29
  172.16.4.2/32  10.1.1.1    nolabel/30
  172.16.5.0/24  172.16.8.2   26/nolabel
  172.16.6.0/24  172.16.8.2   27/nolabel
  172.16.7.0/24  172.16.8.2   28/nolabel
  172.16.8.0/24  0.0.0.0     29/aggregate(mjlnet_VPN)
  172.16.8.2/32  0.0.0.0     30/nolabel
HongKong_PE#

Highlighted lines 1 to 5 show the VPN labels assigned to remote VRF prefixes. Highlighted lines 6 to 10 show VPN labels assigned to local customer VPN routes.

debug mpls ldp transport events

The LDP peer discovery mechanism can be monitored using the debug mpls ldp transport events command.

Example 6-183 shows the output of the debug mpls ldp transport events command.

Example 6-183 debug mpls ldp transport events Command Output

Chengdu_PE#debug mpls ldp transport events
LDP transport events debugging is on
Chengdu_PE#
*Jan 22 06:12:22.407 UTC: ldp: enabling ldp on Serial4/0
*Jan 22 06:12:22.407 UTC: ldp: Set intf id: intf 0x61F4BBA4, Serial4/0, not
 lc-atm, intf_id 0
*Jan 22 06:12:22.407 UTC: ldp: i/f status change: Serial4/0; cur/des flags
 0x2/0x2mcast 1
*Jan 22 06:12:22.411 UTC: ldp: Send ldp hello; Serial4/0, src/dst
 10.20.10.1/224.0.0.2, inst_id 0
*Jan 22 06:12:26.555 UTC: ldp: Send ldp hello; Serial4/0, src/dst
 10.20.10.1/224.0.0.2, inst_id 0
*Jan 22 06:12:26.695 UTC: ldp: Rcvd ldp hello; Serial4/0, from 10.20.10.2
 (10.1.1.2:0), intf_id 0, opt 0xC
*Jan 22 06:12:26.695 UTC: ldp: ldp Hello from 10.20.10.2 (10.1.1.2:0) to
 224.0.0.2, opt 0xC
*Jan 22 06:12:26.695 UTC: ldp: New adj 0x622FFB10 for 10.1.1.2:0, Serial4/0
*Jan 22 06:12:26.695 UTC: ldp: adj_addr/xport_addr 10.20.10.2/10.1.1.2
*Jan 22 06:12:26.695 UTC: ldp: local idb = Serial4/0, holdtime = 15000, peer
 10.20.10.2 holdtime = 15000
*Jan 22 06:12:26.695 UTC: ldp: Link intvl min cnt = 2, intvl = 5000,
 idb = Serial4/0
Chengdu_PE#

In highlighted line 1, LDP is enabled on interface serial 4/0. Highlighted line 2 shows that an interface ID has been set for the interface. Note that the interface ID is 0. This indicates that this is not an LC-ATM interface.

In highlighted line 3, the interface status changes, and then in highlighted lines 4 and 5, two LDP neighbor discovery messages are sent. Notice that these messages are sent to the all routers multicast address (224.0.0.2).

In highlighted line 6, a discovery (hello) message is received from the peer LSR. When a discovery message is received on an interface, initiation of a link adjacency is allowed. In highlighted line 7, the receipt of the discovery hello message is reported, and in highlighted lines 8 and 9, the LDP adjacency with the peer is confirmed.

debug mpls ldp messages

The debug mpls ldp messages command shows LDP messages sent and received by the LSR, as demonstrated in the sample output in Example 6-184.

Example 6-184 debug mpls ldp messages Command Output

Chengdu_PE#debug mpls ldp messages sent
LDP sent PDUs, excluding periodic Keep Alives debugging is on
Chengdu_PE#
*Jan 22 06:07:06.079 UTC: ldp: Sent init msg to 10.1.1.2:0 (pp 0x0)
*Jan 22 06:07:06.083 UTC: ldp: Sent keepalive msg to 10.1.1.2:0 (pp 0x0)
*Jan 22 06:07:06.135 UTC: ldp: Sent address msg to 10.1.1.2:0 (pp 0x622AFBE0)
*Jan 22 06:07:06.139 UTC: ldp: Sent label mapping msg to 10.1.1.2:0
 (pp 0x622AFBE0)
*Jan 22 06:07:06.139 UTC: ldp: Sent label mapping msg to 10.1.1.2:0 (pp 0x622AFB
E0)
*Jan 22 06:07:06.139 UTC: ldp: Sent label mapping msg to 10.1.1.2:0 (pp 0x622AFB
E0)
Chengdu_PE#

Highlighted line 1 shows an Initialization message being sent by the local LSR neighboring LSR 10.1.1.2:0. Initialization messages are sent during session establishment and are used to negotiate common parameters such as VPI/VCI range and VC-merge capability.

In highlighted line 2, a keepalive message is sent. This keepalive is used to monitor the underlying LDP session transport connection.

An Address message is sent to LSR 10.1.1.2:0 in highlighted line 3. The Address message is used by an LSR to advertise its interface addresses to a peer.

In highlighted line 4, a Label Mapping message is sent. This is used to advertise a label binding.

debug mpls ldp advertisements

The debug mpls ldp advertisements command is used to monitor address (interface) and label bindings advertisement to peer LSRs.

CAUTION

As with all debug commands, exercise extra caution when using this command because it can produce copious output and impact device performance.

Example 6-185 shows the output of the debug mpls ldp advertisements command.

Example 6-185 debug mpls ldp advertisements Command Output

Chengdu_PE#debug mpls ldp advertisements
LDP label and address advertisements debugging is on
Chengdu_PE#
*Jan 22 06:01:53.347 UTC: tagcon: Assign peer id; 10.1.1.2:0: id 0
*Jan 22 06:01:53.347 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise
 10.1.1.1
*Jan 22 06:01:53.347 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise 10.
20.10.1
*Jan 22 06:01:53.347 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise 10.
1.1.1/32, label 3 (imp-null) (#2)
*Jan 22 06:01:53.351 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise
 10.20.10.2/32, label 16 (#4)
*Jan 22 06:01:53.351 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise
 10.20.10.0/24, label 3 (imp-null) (#6)
*Jan 22 06:01:53.351 UTC: tagcon: peer 10.1.1.2:0 (pp 0x622B0234): advertise
 10.20.20.2/32, label 17 (#8)
Chengdu_PE#

In highlighted line 1, Chengdu_PE advertises an interface address (10.1.1.1) to peer LSR 10.1.1.2:0.

In highlighted line 2, a binding for prefix 10.20.10.2/32 with label 16 is advertised to peer 10.1.1.2:0.

debug mpls ldp bindings

The debug mpls ldp bindings command can be used to examine addresses and bindings received from the peer LSR.

CAUTION

As with all debug commands, exercise extra caution when using this command because it can produce copious output and impact device performance.

Example 6-186 shows the output of the debug mpls ldp binding command.

Example 6-186 debug mpls ldp binding Command Output

Chengdu_PE#debug mpls ldp bindings
LDP Label Information Base (LIB) changes debugging is on
Chengdu_PE#
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.1.1.0/24): label 23 from 10.1.1.2:0
 removed
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.1.1.1/32): label 21 from 10.1.1.2:0
 removed
*Jan 22 06:16:33.571 UTC: tib: Not OK to announce label; nh 10.1.1.1 not bound
 to 10.1.1.2:0
*Jan 22 06:16:33.571 UTC: tagcon: Omit route_tag_change for: 10.1.1.1/32
    lsr 10.1.1.2:0: connected route
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.1.1.2/32): label imp-null from
 10.1.1.2:0 removed
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.1.1.3/32): label 20 from 10.1.1.2:0
 removed
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.20.10.0/24): label imp-null from
 10.1.1.2:0 removed
*Jan 22 06:16:33.571 UTC: tagcon: tibent(10.20.10.1/32): label 16 from
 10.1.1.2:0 removed
Chengdu_PE#

Highlighted lines 1 and 2 show label bindings for prefixes 10.1.1.0/24 and 10.1.1.1/32 being removed from the LIB (shown as TIB).

InformIT Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from InformIT and its family of brands. I can unsubscribe at any time.

Overview


Pearson Education, Inc., 221 River Street, Hoboken, New Jersey 07030, (Pearson) presents this site to provide information about products and services that can be purchased through this site.

This privacy notice provides an overview of our commitment to privacy and describes how we collect, protect, use and share personal information collected through this site. Please note that other Pearson websites and online products and services have their own separate privacy policies.

Collection and Use of Information


To conduct business and deliver products and services, Pearson collects and uses personal information in several ways in connection with this site, including:

Questions and Inquiries

For inquiries and questions, we collect the inquiry or question, together with name, contact details (email address, phone number and mailing address) and any other additional information voluntarily submitted to us through a Contact Us form or an email. We use this information to address the inquiry and respond to the question.

Online Store

For orders and purchases placed through our online store on this site, we collect order details, name, institution name and address (if applicable), email address, phone number, shipping and billing addresses, credit/debit card information, shipping options and any instructions. We use this information to complete transactions, fulfill orders, communicate with individuals placing orders or visiting the online store, and for related purposes.

Surveys

Pearson may offer opportunities to provide feedback or participate in surveys, including surveys evaluating Pearson products, services or sites. Participation is voluntary. Pearson collects information requested in the survey questions and uses the information to evaluate, support, maintain and improve products, services or sites, develop new products and services, conduct educational research and for other purposes specified in the survey.

Contests and Drawings

Occasionally, we may sponsor a contest or drawing. Participation is optional. Pearson collects name, contact information and other information specified on the entry form for the contest or drawing to conduct the contest or drawing. Pearson may collect additional personal information from the winners of a contest or drawing in order to award the prize and for tax reporting purposes, as required by law.

Newsletters

If you have elected to receive email newsletters or promotional mailings and special offers but want to unsubscribe, simply email information@informit.com.

Service Announcements

On rare occasions it is necessary to send out a strictly service related announcement. For instance, if our service is temporarily suspended for maintenance we might send users an email. Generally, users may not opt-out of these communications, though they can deactivate their account information. However, these communications are not promotional in nature.

Customer Service

We communicate with users on a regular basis to provide requested services and in regard to issues relating to their account we reply via email or phone in accordance with the users' wishes when a user submits their information through our Contact Us form.

Other Collection and Use of Information


Application and System Logs

Pearson automatically collects log data to help ensure the delivery, availability and security of this site. Log data may include technical information about how a user or visitor connected to this site, such as browser type, type of computer/device, operating system, internet service provider and IP address. We use this information for support purposes and to monitor the health of the site, identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents and appropriately scale computing resources.

Web Analytics

Pearson may use third party web trend analytical services, including Google Analytics, to collect visitor information, such as IP addresses, browser types, referring pages, pages visited and time spent on a particular site. While these analytical services collect and report information on an anonymous basis, they may use cookies to gather web trend information. The information gathered may enable Pearson (but not the third party web trend services) to link information with application and system log data. Pearson uses this information for system administration and to identify problems, improve service, detect unauthorized access and fraudulent activity, prevent and respond to security incidents, appropriately scale computing resources and otherwise support and deliver this site and its services.

Cookies and Related Technologies

This site uses cookies and similar technologies to personalize content, measure traffic patterns, control security, track use and access of information on this site, and provide interest-based messages and advertising. Users can manage and block the use of cookies through their browser. Disabling or blocking certain cookies may limit the functionality of this site.

Do Not Track

This site currently does not respond to Do Not Track signals.

Security


Pearson uses appropriate physical, administrative and technical security measures to protect personal information from unauthorized access, use and disclosure.

Children


This site is not directed to children under the age of 13.

Marketing


Pearson may send or direct marketing communications to users, provided that

  • Pearson will not use personal information collected or processed as a K-12 school service provider for the purpose of directed or targeted advertising.
  • Such marketing is consistent with applicable law and Pearson's legal obligations.
  • Pearson will not knowingly direct or send marketing communications to an individual who has expressed a preference not to receive marketing.
  • Where required by applicable law, express or implied consent to marketing exists and has not been withdrawn.

Pearson may provide personal information to a third party service provider on a restricted basis to provide marketing solely on behalf of Pearson or an affiliate or customer for whom Pearson is a service provider. Marketing preferences may be changed at any time.

Correcting/Updating Personal Information


If a user's personally identifiable information changes (such as your postal address or email address), we provide a way to correct or update that user's personal data provided to us. This can be done on the Account page. If a user no longer desires our service and desires to delete his or her account, please contact us at customer-service@informit.com and we will process the deletion of a user's account.

Choice/Opt-out


Users can always make an informed choice as to whether they should proceed with certain services offered by InformIT. If you choose to remove yourself from our mailing list(s) simply visit the following page and uncheck any communication you no longer want to receive: www.informit.com/u.aspx.

Sale of Personal Information


Pearson does not rent or sell personal information in exchange for any payment of money.

While Pearson does not sell personal information, as defined in Nevada law, Nevada residents may email a request for no sale of their personal information to NevadaDesignatedRequest@pearson.com.

Supplemental Privacy Statement for California Residents


California residents should read our Supplemental privacy statement for California residents in conjunction with this Privacy Notice. The Supplemental privacy statement for California residents explains Pearson's commitment to comply with California law and applies to personal information of California residents collected in connection with this site and the Services.

Sharing and Disclosure


Pearson may disclose personal information, as follows:

  • As required by law.
  • With the consent of the individual (or their parent, if the individual is a minor)
  • In response to a subpoena, court order or legal process, to the extent permitted or required by law
  • To protect the security and safety of individuals, data, assets and systems, consistent with applicable law
  • In connection the sale, joint venture or other transfer of some or all of its company or assets, subject to the provisions of this Privacy Notice
  • To investigate or address actual or suspected fraud or other illegal activities
  • To exercise its legal rights, including enforcement of the Terms of Use for this site or another contract
  • To affiliated Pearson companies and other companies and organizations who perform work for Pearson and are obligated to protect the privacy of personal information consistent with this Privacy Notice
  • To a school, organization, company or government agency, where Pearson collects or processes the personal information in a school setting or on behalf of such organization, company or government agency.

Links


This web site contains links to other sites. Please be aware that we are not responsible for the privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of each and every web site that collects Personal Information. This privacy statement applies solely to information collected by this web site.

Requests and Contact


Please contact us about this Privacy Notice or if you have any requests or questions relating to the privacy of your personal information.

Changes to this Privacy Notice


We may revise this Privacy Notice through an updated posting. We will identify the effective date of the revision in the posting. Often, updates are made to provide greater clarity or to comply with changes in regulatory requirements. If the updates involve material changes to the collection, protection, use or disclosure of Personal Information, Pearson will provide notice of the change through a conspicuous notice on this site or other appropriate way. Continued use of the site after the effective date of a posted revision evidences acceptance. Please contact us if you have questions or concerns about the Privacy Notice or any objection to any revisions.

Last Update: November 17, 2020