CCNA Lab - Unlock IEWB RS Vol 1 - Lab 18

switchport access vlan 8 Test basic configuration: Rack1R3#ping 156.1.8.8 Type escape sequence to abort... Type escape sequence to abort.. That is, IPv6 NAT-PT does not create IPv4 ali

Trang 1

ip authentication mode eigrp 10 md5

ip authentication key-chain eigrp 10 EIGRP

Task 2.1 Verification

Verify EIGRP authentication:

Rack1R6#show ip eigrp interfaces detail s0/0/0

IP-EIGRP interfaces for process 10

Xmit Queue Mean Pacing Time Multicast Pending Interface Peers Un/Reliable SRTT Un/Reliable Flow Timer Routes Se0/0/0 1 0/0 70 0/15 50 0 Hello interval is 60 sec

Next xmit serial <none>

Un/reliable mcasts: 0/0 Un/reliable ucasts: 1/4

Mcast exceptions: 0 CR packets: 0 ACKs suppressed: 0

Retransmissions sent: 1 Out-of-sequence rcvd: 0

Authentication mode is md5, key-chain is "EIGRP"

Check EIGRP neighbors:

Rack1R6#show ip eigrp neighbor

IP-EIGRP neighbors for process 10

H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num

1 54.1.1.254 Se0/0/0 13 00:00:39 70 420 0 51

0 156.1.67.7 Gi0/0 14 00:08:26 1 200 0 7

Check EIGRP routes:

Rack1R6#show ip route eigrp

D 200.0.0.0/24 [90/2297856] via 54.1.1.254, 00:01:48, Serial0/0/0

D 200.0.1.0/24 [90/2297856] via 54.1.1.254, 00:01:48, Serial0/0/0 156.1.0.0/24 is subnetted, 9 subnets

Trang 2

offset-list ODD_THIRD_OCTET in 111111111 Vlan18

offset-list EVEN_THIRD_OCTET in 111111111 Vlan58

Trang 3

Check hello timer at R5 (output available in recent IOS versions):

Rack1R5#show ip eigrp interfaces detail e0/1

IP-EIGRP interfaces for process 10

Xmit Queue Mean Pacing Time Multicast Pending Interface Peers Un/Reliable SRTT Un/Reliable Flow Timer Routes Et0/1 1 0/0 1254 0/10 6260 0 Hello interval is 1 sec

Next xmit serial <none>

Un/reliable mcasts: 0/7 Un/reliable ucasts: 8/9

Mcast exceptions: 3 CR packets: 3 ACKs suppressed: 2

Retransmissions sent: 4 Out-of-sequence rcvd: 1

Authentication mode is not set

Check paths to EIGRP prefixes with even third octet:

Rack1SW2#show ip route eigrp | include Vlan18

D 200.0.0.0/24 [90/23717376] via 156.1.18.1, 00:00:14, Vlan18

D 200.0.2.0/24 [90/23717376] via 156.1.18.1, 00:00:14, Vlan18

D 150.1.6.0 [90/23205376] via 156.1.18.1, 00:00:14, Vlan18

D 150.1.2.0 [90/23200256] via 156.1.18.1, 00:00:14, Vlan18

Check paths to EIGRP prefixes with odd third octect:

Rack1SW2#show ip route eigrp | include Vlan58

Trang 4

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater

Device ID Local Intrfce Holdtme Capability Platform Port ID Rack1SW2 Eth 0/1 160 R S I WS-C3550-2Fas 0/4 Rack1SW1 Eth 0/0 155 R S I WS-C3550-2Fas 0/4 Rack1R5 Ser 0/1 160 R S I 3640 Ser 0/1

Rack1R4#show ip protocols

Rack1R4#show ip route

Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2

Trang 5

i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2

ia - IS-IS inter area, * - candidate default, U - per-user static route

o - ODR, P - periodic downloaded static route

Gateway of last resort is 156.1.45.5 to network 0.0.0.0

156.1.0.0/24 is subnetted, 3 subnets

C 156.1.4.0 is directly connected, FastEthernet0/0

C 156.1.45.0 is directly connected, Serial0/1

C 156.1.44.0 is directly connected, FastEthernet0/1

CDP-EV: Unrecognized type (16) seen in TLV

CDP-PA: Packet received from Rack1SW1 on interface FastEthernet0/0 **Entry found in cache**

CDP-EV: Lookup for ip phone with idb= FastEthernet0/0 ip= 156.1.27.7 mac= 000f.8fe0.3504 platform= Cisco WS-C3550-24

CDP-IP: Writing prefix 150.1.4.0/24

CDP-PA: version 2 packet sent out on FastEthernet0/0

CDP-PA: version 2 packet sent out on FastEthernet0/1

CDP-PA: version 2 packet sent out on Serial0/1

CDP-PA: Packet received from Rack1R5 on interface Serial0/1

**Entry found in cache**

CDP-EV: Lookup for ip phone with idb= Serial0/1 ip= 156.1.45.5 mac= 0000.0000.0000 platform= Cisco 3640

CDP-IP: Reading default route 156.1.45.5 via Serial0/1

CDP-IP: Updating default route 156.1.45.5 in routing table

Rack1R5#show ip route odr

Trang 6

Rack1R1#ping 150.1.4.4

Type escape sequence to abort

Sending 5, 100-byte ICMP Echos to 150.1.4.4, timeout is 2 seconds:

neighbor 192.10.1.254 local-as 200 no-prepend

neighbor 192.10.1.254 password CISCO

BGP version 4, remote router ID 222.22.2.1

BGP state = Established, up for 00:00:14

Last read 00:00:14, last write 00:00:14, hold time is 180, keepalive interval is 60 seconds

Verify BGP routes:

Rack1R5#show ip bgp q _254$

BGP table version is 14, local router ID is 150.1.5.5

Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

r RIB-failure, S Stale

Origin codes: i - IGP, e - EGP, ? - incomplete

Network Next Hop Metric LocPrf Weight Path

redistribute connected route-map INTERNAL_TO_BGP

redistribute eigrp 10 route-map INTERNAL_TO_BGP

!

ip prefix-list INTERNAL seq 5 permit 156.1.0.0/16 le 32

Trang 7

route-map INTERNAL_TO_BGP permit 10

match ip address prefix-list INTERNAL

R6:

router bgp 100

redistribute eigrp 10 route-map INTERNAL_TO_BGP

!

route-map INTERNAL_TO_BGP permit 10

Verify BGP prefixes advertisement:

Rack1R6#show ip bgp q ^$

Trang 8

Trang 9

ip prefix-list BACKBONES seq 5 permit 192.10.1.0/24

ip prefix-list BACKBONES seq 10 permit 204.12.1.0/24

!

route-map LEAK permit 10

!

match ip address prefix-list BACKBONES

R6:

interface FastEthernet0/0

ip summary-address eigrp 10 0.0.0.0 0.0.0.0 5 leak-map LEAK

!

ip prefix-list EIGRP_LEARNED_FROM_BB1 seq 5 permit 200.0.0.0/21 le 24

ip prefix-list EIGRP_LEARNED_FROM_BB1 seq 10 permit 54.1.1.0/24

!

match ip address prefix-list EIGRP_LEARNED_FROM_BB1

Verify EIGRP routes:

Rack1R3#show ip route eigrp

D EX 204.12.1.0/24 [170/2841600] via 156.1.35.5, 00:00:18, Access2

Virtual-D 200.0.0.0/24 [90/21157120] via 156.1.23.2, 00:00:02, Serial1/3 54.0.0.0/24 is subnetted, 1 subnets

D 54.1.1.0 [90/21029120] via 156.1.23.2, 00:00:02, Serial1/3

D 200.0.1.0/24 [90/21157120] via 156.1.23.2, 00:00:02, Serial1/3 156.1.0.0/24 is subnetted, 12 subnets

D 156.1.27.0 [90/20514560] via 156.1.23.2, 00:54:26, Serial1/3

D 156.1.18.0 [90/2588160] via 156.1.13.1, 00:00:18, Access1

D 156.1.8.0 [90/2588416] via 156.1.13.1, 00:00:18,

Virtual-Access1

D EX 156.1.4.0 [170/4522496] via 156.1.35.5, 00:00:18, Access2

D 156.1.58.0 [90/2588416] via 156.1.13.1, 00:00:18, Access1

Trang 10

D EX 156.1.45.0 [170/4729856] via 156.1.35.5, 00:00:18, Access2

D EX 156.1.44.0 [170/4522496] via 156.1.35.5, 00:00:18, Access2

Virtual-D 156.1.67.0 [90/20517120] via 156.1.23.2, 00:48:26, Serial1/3

D 200.0.2.0/24 [90/21157120] via 156.1.23.2, 00:00:02, Serial1/3

D 200.0.3.0/24 [90/21157120] via 156.1.23.2, 00:00:04, Serial1/3

D EX 192.10.1.0/24 [170/2841600] via 156.1.35.5, 00:00:19, Access2

Tracing the route to 112.0.0.1

1 156.1.35.5 32 msec 28 msec 28 msec

2 204.12.1.254 36 msec 32 msec 32 msec

3 172.16.4.1 44 msec * 168 msec

Rack1R3#trace 205.90.31.1

Tracing the route to 205.90.31.1

1 156.1.35.5 32 msec 32 msec 32 msec

ipv6 nat v4v6 source 156.1.8.100 2001:CC1E:FFFF::100

ipv6 nat v6v4 source 2001:CC1E:1:3::100 156.1.8.50

ipv6 nat prefix 2001:CC1E:FFFF::/96

Trang 11

switchport access vlan 8

Test basic configuration:

Rack1R3#ping 156.1.8.8

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms

Rack1R3#ping 2001:CC1E:1:3::100

Sending 5, 100-byte ICMP Echos to 2001:CC1E:1:3::100, timeout is 2 seconds:

!!!!!

Check local IP aliases:

Trang 12

Success rate is 0 percent (0/5)

Note that 156.1.8.50 is NOT listed in IP aliases That is, IPv6 NAT-PT does not create IPv4 alias automatically There are three ways to remedy this situation:

1 Assign 156.1.8.50 as the secondary IP to FastEthernet 0/1 of R3

2 Create static ARP entry at SW2, pointing at R3

3 Create static route at SW2 for 156.1.8.50/32, pointing at R3 Following the first one, assign 156.1.8.50 as secondary IP:

R3:

interface FastEthernet0/1

ip address 156.1.8.50 255.255.255.0 secondary

Test the new configuration:

Rack1R3#debug ipv6 nat

IPv6 NAT-PT debugging is on

Rack1R6#debug ipv6 icmp

ICMP packet debugging is on

Rack1SW2#ping 156.1.8.50

Sending 5, 100-byte ICMP Echos to 156.1.8.50, timeout is 2 seconds: !!!!

Trang 13

ICMPv6: Received echo request from 2001:CC1E:FFFF::9C01:808

ICMPv6: Sending echo reply to 2001:CC1E:FFFF::9C01:808

ICMPv6: Received ICMPv6 packet from 2001:CC1E:FFFF::9C01:808, type 128 ICMPv6: Received echo request from 2001:CC1E:FFFF::9C01:808

Rack1R3#show ip pim rp mapping

PIM Group-to-RP Mappings

Trang 14

Rack1R5#show ip pim rp mapping

This system is an RP (Auto-RP)

Rack1R1#show ip pim rp map

This system is an RP (Auto-RP)

02:32:35: ICMP: echo reply rcvd, src 156.1.13.3, dst 156.1.18.8

Reply to request 0 from 156.1.13.3, 40 ms

Trang 15

Rack1SW2#ping 232.32.32.32

Temporarily enable PIM on FastEthernet interface of BB3 Check mroutes

on R5 before applying the solution:

Rack1R5#show ip mroute 224.0.1.39

IP Multicast Routing Table

Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group, C - Connected,

L - Local, P - Pruned, R - RP-bit set, F - Register flag,

T - SPT-bit set, J - Join SPT, M - MSDP created entry,

X - Proxy Join Timer Running, A - Candidate for MSDP

Advertisement,

U - URD, I - Received Source Specific Host Report,

Z - Multicast Tunnel, z - MDT-data group sender,

Y - Joined MDT-data group, y - Sending to MDT-data group

Outgoing interface flags: H - Hardware switched, A - Assert winner Timers: Uptime/Expires

Interface state: Interface, Next-Hop or VCD, State/Mode

(*, 224.0.1.39), 00:02:19/stopped, RP 0.0.0.0, flags: DC

Incoming interface: Null, RPF nbr 0.0.0.0

Outgoing interface list:

FastEthernet0/0.2, Forward/Sparse, 00:00:07/00:00:00

FastEthernet0/1, Forward/Sparse, 00:02:19/00:00:00

Virtual-Access1, Forward/Sparse, 00:02:19/00:00:00

(156.1.18.1, 224.0.1.39), 00:02:19/00:02:44, flags: T

Incoming interface: FastEthernet0/1, RPF nbr 156.1.58.8

Trang 16

Virtual-Access1, Prune/Sparse, 00:00:19/00:02:43, A

(156.1.58.5, 224.0.1.39), 00:01:56/00:02:03, flags: T

Advertisement,

(*, 224.0.1.40), 00:03:56/stopped, RP 0.0.0.0, flags: DCL

(150.1.8.8, 224.0.1.40), 00:03:14/00:02:50, flags: LT

Apply the solution and check mroutes again:

Advertisement,

(*, 224.0.1.39), 00:05:33/stopped, RP 0.0.0.0, flags: DC

Trang 17

(156.1.18.1, 224.0.1.39), 00:05:33/00:00:26, flags: T

Virtual-Access1, Forward/Sparse, 00:00:30/00:00:00, A

(156.1.58.5, 224.0.1.39), 00:05:10/00:02:49, flags: T

Virtual-Access1, Forward/Sparse, 00:00:05/00:00:00, A

Advertisement,

(*, 224.0.1.40), 00:06:04/stopped, RP 0.0.0.0, flags: DCL

(150.1.8.8, 224.0.1.40), 00:05:22/00:02:45, flags: PLT

Định dạng
Số trang	34
Dung lượng	206,17 KB