CCIE RS khawar BC rev 3

Copyrights Netmetric Solutions 2006-2010 Ip rip authentication key-chain AUTH Ip rip authentication mode MD5!. Copyrights Netmetric Solutions 2006-2010 Route-map REDCON permit 10 Matc

Trang 1

CCIE R/S Lab Bootcamp Workbook

Trang 2

Copyrights Netmetric Solutions 2006-2010

Module 1 – Frame Relay

Trang 3

IP addressing and DLCI information Chart

R1 S0/0: 192.1.234.1/24 102

103 104

R2 R3 R4 R2 S0/0: 192.1.234.2 /24 201 R1

R3 S0/0: 192.1.234.3 /24 301 R1

R4 S0/0: 192.1.234.4 /24 401 R1

Lab 1 – Hub-n-Spoke using Frame-relay map

statements

Trang 4

Task 1

Configure the frame-relay cloud in a hub and spoke topology using frame-relay map statements The frame-relay switch is configured in a full mesh; these routers should NOT reply to inverse-arp inquiries

Trang 5

Task 3

Erase the startup config and reload the routers before proceeding to the next lab

Trang 6

IP addressing and DLCI information Chart

R1 S0/0.12: 192.1.12.1/24

S0/0.13: 192.1.13.1/24 S0/0.14: 192.1.14.1/24

102

103 104

R2 R3 R4 R2 S0/0.21: 192.1.12.2/24 201 R1

R3 S0/0.31: 192.1.13.3 /24 301 R1

R4 S0/0.41: 192.1.14.4 /24 401 R1

Lab 2 –Configuring Frame-relay point-to-point

sub-interfaces

Trang 7

No shut Exit

! Int S0/0.21 point-to-point

Ip address 192.1.12.2 255.255.255.0 Frame-relay interface-dlci 201

No shut Exit

! Int S0/0.41 point-to-point

Ip address 192.1.14.4 255.255.255.0

Frame-relay interface-dlci 401

Trang 8

Configure the routers connected to the frame-relay cloud as follows:

o R1 (The HUB) must be configured with two sub-interfaces, one of the two sub-interfaces must be configured to connect R1 to R4, this sub-interface should be configured in a point-to-point manner using the following IP addressing:

R1 = 192.1.14.1 /24, and R4 = 192.1.14.4 /24

o The second sub-interface on R1 must be configured in a multipoint manner, and this sub-interface must be configured to connect R1 to routers R2 and R3 using the following IP addressing:

R1 = 192.1.123.1 /24, R2 = 192.1.123.2 /24 and R3 = 192.1.123.3 /24

o Make sure that you are pretending that R1 is not a Cisco router when

configuring the Encapsulation Framing

Lab 3 – Point-to-point and Multipoint

Trang 9

o Routers R2, R3 should not be configured with a sub-interface and these

routers should NOT rely on Inverse-arp

o R4 should be configured with a sub-interface in a point-to-point manner

o The routers connecting to the frame-relay cloud should be configured in a hub and spoke, with R1 being the hub and R2, R3 and R4 the spokes

o Ensure that the routers can ping every IP address including their own within their IP address space

No frame-relay inverse Frame-relay map ip 192.1.123.1 201 ietf b Frame-relay map ip 192.1.123.3 201 ietf Frame-relay map ip 192.1.123.2 201 ietf

No shut Exit

Frame-relay map ip 192.1.123.1 301 ietf b

Frame-relay map ip 192.1.123.2 301 ietf

Frame-relay map ip 192.1.123.3 301 ietf

No frame-relay inverse

No shut

R4

Int S0/0 Encap frame

No frame-relay inverse

No shut

! Inter S0/0.41 point-to-point

Trang 10

Ip address 192.1.14.4 255.255.255.0 Ppp authentication chap

Int S0/0.41 Frame-relay interface-dlci 401 ppp virtual-

template 1

Trang 11

Module 2 – Basic Switching

Trang 12

Task 1

Configure Switch1 as the VTP Server and the other Switch(s) as VTP Clients Use CCIE

as the Domain name Authenticate the relationship using CCIERS as the password

Lab 1 Basic 3550 Configuration

Trang 13

All Switches

Interface range F0/XX – XX

Switchport trunk encapsulation dot1q

Switchport mode trunk

Switchport nonegotiate

Task 4

Assign Ports to the appropriate VLANs based on the Network Diagram Use the physical topology diagram for your rack to accomplish this Make sure the ports are either set to Trunk or Access statically

SwitchX

interface F0/XX

Switchport mode access

Switchport access vlan XX

!

interface F0/XX

Switchport trunk encapsulation dot1q

Swithcport mode trunk

Task 5

Trang 14

Enable flow-control on SW1 interface fa0/2 and make sure that when the router

connected to this port announce congestion, the switch should reduce it's throughput for this port

Trang 15

Module 3 – RIP V2

Trang 16

Note: It builds on the topology created in the previous lab

Lab Objective:

Task 1

Configure Loopback 0 on all routers and Switch1 Use the format of X.X.X.X/8 for the

IP address of the loopback Use 15 for Switch1

No auto-summary Network 2.0.0.0 Network 192.1.2.0

No auto-summary Network 4.0.0.0 Network 192.1.34.0

No auto-summary Network 15.0.0.0 Network 192.1.2.0 Network 192.1.34.0

Lab 1 – Basic RIP V2 Configuration

Trang 17

Ip rip authentication key-chain AUTH

IP rip authentication mode MD5

Ip rip authentication mode MD5

!

Interface F 0/0.2

Lab 2 – RIP V2 Authentication

Trang 18

!

Interface VLAN 40

Ip rip authentication mode MD5

Trang 19

R1 should only receive routes from the 201.1.X.0 range that have an even number in the

3rd Octet Use the minimum number of lines possible to accomplish this task No

Lab 9 – IP RIP Triggered Lab 3 – Route Filtering using Distribute Lists

Trang 20

configuration should be done on R1 Make sure R4 and Switch1 receive all 201.1.X.0 routes

Trang 22

Trang 24

Ensure that all routers except R2 only get a summary route from Switch1 for the new Loopback interfaces that were created in Task 1 R2 should get all the specific routes Do not eable auto summary on Switch1

Switch1

int VLAN 30

ip summary-address rip 154.1.8.0 255.255.248.0

Trang 25

Module 4 – EIGRP

Trang 26

Interface IP Address Configuration

E 0/0 E 0/0 Loopback 0 Loopback 0

Loopback 0 Loopback 0 E 0/0 E 0/0

S 0/0

R3 R4

Trang 27

Ip address 192.1.12.2 255.255.255.0

No shut Interface S 0/0

Ip address 192.1.23.2 255.255.255.0 Encap frame-relay

No frame-relay inverse-arp Frame-relay map ip 192.1.23.3 203 broad

Trang 28

Trang 29

Ip authentication key-chain eigrp 12353 AUTH

Ip authentication mode eigrp 12353 MD5

! Interface E 0/0

!

Interface E 0/0

Lab 2 – EIGRP Authentication

Trang 30

Trang 31

Task 4

The Serial link between R3 and R2 sometimes is experiencing congestion and most of the time R3 declares R2 in Stuck-In-Active Change the time that R3 will wait after sending a query to R2, before declaring the routes on R2 to be in SIA state to 10 minutes

R3

Router eigrp 12353

Timers active-time 10

Trang 32

R1 should only receive routes from the 201.1.X.0 range that have an even number in the

3rd Octet Use the minimum number of lines possible to accomplish this task No

configuration should be done on R1 Make sure R3 and R4 receive all 201.1.X.0 routes

Lab 4 – Route Filtering using Distribute Lists

Trang 34

ip prefix-list VALID-PREF seq 5 permit 0.0.0.0/0 ge 8 le 24

Lab 5 – Route Filtering using Prefix-List

Trang 35

!

Router EIGRP 12353

distribute-list prefix VALID-PREF in F0/0

Trang 36

Trang 38

Route-map REDCON permit 10

Match interface Loopback0

Router EIGRP 12353

No auto-summary

Network 192.1.12.0

Eigrp stub connected

Redistribute connected route-map REDCON

Lab 7 – Route Summarization with EIGRP

Trang 39

Module 5 – OSPF

Trang 40

Interface IP Address Configuration

E 0/0

E 0/0 Loopback 0 Loopback 0

R4 R3

Loopback 0 Loopback 0

E 0/0 E 0/0

Trang 42

Trang 43

No frame-relay inverse-arp Frame-relay map ip 192.1.14.1 401 broad

No shut

Task 3

Configure the link between R1, R2 and R3 using Frame Relay This link should be a multipoint link Do not create any sub-interfaces on R2 and R3 Do not rely on Inverse ARP for Frame Relay mappings Use 192.1.123.0/24 as the network for this link

All routers should be able to ping each other and their own local frame-relay interfaces

R1

Interface S0/0.23 multipoint

Ip address 192.1.123.1 255.255.255.0

Frame-relay map ip 192.1.123.1 102

Frame-relay map ip 192.1.123.2 102 broad

Frame-relay map ip 192.1.123.3 103 broad

R2

Interface S0/0

Ip address 192.1.123.2 255.255.255.0 Encap frame-relay

No frame-relay inverse-arp Frame-relay map ip 192.1.123.1 201 broad Frame-relay map ip 192.1.123.2 201 Frame-relay map ip 192.1.123.3 201

Trang 44

Task 4

Configure OSPF in Area 0 as the routing protocol between R1, R2, R3 and R4 All loopback networks should be visible in all routing tables They should be using a /8 mask Hard-code the router ID based on the Loopback 0 addresses Do not use the OSPF network type broadcast on any of the Frame Relay links Do not use the Neighbor command for this task

Ip ospf network point-to-point

! Router OSPF 1 Router-id 2.2.2.2 Network 2.0.0.0 0.255.255.255 area 0 Network 192.1.123.0 0.0.0.255 area 0

Ip ospf network point-to-point

! Router OSPF 1 Router-id 4.4.4.4 Network 4.0.0.0 0.255.255.255 area 0

Network 192.1.14.0 0.0.0.255 area 0

Trang 45

192.1.5.0/24

Trang 46

ip address 192.1.12.2 255.255.255.0

no shut down

! interface Serial0/0

ip address 192.1.234.2 255.255.255.0 encapsulation frame-relay

frame-relay map ip 192.1.234.3 203 broadcast frame-relay map ip 192.1.234.4 204 broadcast

frame-relay map ip 192.1.234.2 402 broadcast

Trang 47

ip address 192.1.3.33 255.255.255.0

no shutdown

! interface Vlan5

ip address 192.1.5.55 255.255.255.0

no shutdown

Lab Objective:

Task 1

Run OSPF as your Routing Protocol on all Routers and the Switch Advertise the

networks in the following areas:

Area 0 – R1 Loopback 0, R1 E 0/0, R2 E 0/0, R2 Loopback 0

Area 10 – R2 S 0/0, R3 S 0/0, R3 Loopback 0, R4 S 0/0, R4 Loopback 0

Area 100 – R3 E 0/0, SW VLAN 3, SW VLAN 5, SW Loopback 0, R5 E 0/0, R5 Loopback 0

Configure a Virtual Link between the appropriate devices

interface S 0/0

Trang 48

ip ospf network point-to-mulitpoint

! interface S 0/0

Trang 49

ip ospf authentication message-digest

ip ospf message-digest-key 1 md5 ccie

R2

interface Ethernet0/0

!

interface Serial0/0

!

router ospf 1

area 10 virtual-link 3.3.3.3 authentication message-digest

area 10 virtual-link 3.3.3.3 message-digest-key 1 md5 ccie

R3

!

interface Serial0/0

!

router ospf 1

area 10 virtual-link 2.2.2.2 authentication message-digest

area 10 virtual-link 2.2.2.2 message-digest-key 1 md5 ccie

Lab 4 – OSPF Authentication

Trang 50

R4

interface Serial0/0

ip ospf message-digest-key 1 md5 ccie

Switch

interface Vlan3

! interface Vlan5

ip ospf message-digest-key 1 md5 ccie

R5

Trang 51

192.1.5.0/24

Trang 52

ip address 192.1.12.2 255.255.255.0

no shut down

Trang 53

frame-relay map ip 192.1.234.2 402 broadcast frame-relay map ip 192.1.234.3 402

ip address 192.1.3.33 255.255.255.0

no shutdown

! interface Vlan5

Area 0 – R2 S 0/0, R3 S 0/0, R3 Loopback 0, R4 S 0/0, R4 Loopback 0

Area 10 – R1 Loopback 0, R1 E 0/0, R2 E 0/0, R2 Loopback 0

Area 100 – R3 E 0/0, SW VLAN 3, SW Loopback 0

! interface S 0/0

R3

router ospf 1

R4

router ospf 1

Trang 54

! interface S 0/0

! router ospf 1 redistribute rip subnets

Trang 55

ip ospf network point-to-point

!

Ip prefix-list A10-IN deny 12.1.1.0/24

Ip prefix-list A10-IN deny 12.1.2.0/24

Ip prefix-list A10-IN permit 0.0.0.0/0 le 32

Trang 56

redistribute connected subnets route-map redcon

Task 5

Area 10 should not receive any Inter Area or External Routes The devices in Area 10 should have full connectivity to the rest of the network Do not use any filtering mechanism

Task 6

Area 100 should not receive any Inter Area or External Routes from the Backbone It should have full connectivity to all routes It Should maintain connectivity to routes learned via RIP and propagate these routes to other Areas

Trang 58

Trang 59

192.1.5.0/24

Trang 60

ip address 192.1.12.2 255.255.255.0

no shut down

Trang 61

ip address 192.1.3.33 255.255.255.0

no shutdown

! interface Vlan5

no auto-summary

Trang 62

no auto-summary

R4

Trang 63

Configure Mutual redistribution between RIP and EIGRP at the appropriate router

Configure Mutual redistribution between EIGRP and OSPF at the appropriate router

Make sure OSPF adds the cost of the links in the OSPF metric for the External Routes

! router ospf 1 redistribute eigrp 234 metric 150 metric-type 1 subnets

Task 5

The RIP routes should not be leaked to OSPF and OSPF routes should not be leaked to RIP Do not use the Distribute-list or Prefix-list command to accomplish this task You might have to re-configure the redistribution from the previous task to accomplish this

R2

Route-map STAG per 10

Định dạng
Số trang	229
Dung lượng	1,01 MB