LAB MANUAL FOR CCNA

Version 1.0

CONTENTS: 1. Cisco Router Architecture 1.1 Block i!"r!# 1.$ Architectur!l Co#%onents o& ! Router 1.' Me#or( et!ils o& ! T(%ic!l Cisco Router $. Cisco Router )$*++ series, !n- its inter&!ces $.1 .nter&!ces E+%l!ine$.$ Console /ort Con&i"ur!tion '. Cisco $010 Router '.1 O1er1ie2 '.$ Front /!nel escri%tion 3. .ntro-uction to Cisco .OS 3.1 O45ecti1e Test 1 *. Co##!n- Line .nter&!ce )CL., *.1 User Mo-e *.$ /ri1ile"e- Mo-e *.' Con&i"ur!tion Mo-e 0. B!sic E+ercises 0.1 0.$ 0.' 0.3 0.* L!4 E+ercise 1 : Enterin" user E6EC %ro#%t on ! Router !n- E+it L!4 E+ercise $ : .ntro-uction to B!sic User .nter&!ce L!4 E+ercise ' : B!sic Sho2 co##!n-s Short For# Co##!n-s O45ecti1e Test $

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9. Routin" .OS Fun-!#ent!l E+ercises 9.1 L!4 E+ercise 1 : B!nner MOT : Settin" Mess!"e o& the !( 9.$ L!4 E+ercise $ : Settin" :ost N!#e 9.' L!4 E+ercise ' : Router .nter&!ce Con&i"ur!tion 9.3 L!4 E+ercise 3 : Settin" B!n-2i-th on !n .nter&!ce 9.* L!4 E+ercise * : Settin" Console /!ss2or9.0 L!4 E+ercise 0 : Settin" Telnet /!ss2or9.9 L!4 E+ercise 9 : Settin" Au+ili!r( /!ss2or- to Router 9.; L!4 E+ercise ; : .#%le#entin" e+ec8ti#eout co##!n9.< L!4 E+ercise < : Co%( Runnin" Con&i"ur!tion to St!rtu% Con&i"ur!tion 9.10 L!4 E+ercise 10 : Router C / Con&i"ur!tion 9.11 L!4 E+ercise 11 : Sho2 C / Con&i"ur!tion 9.1$ L!4 E+ercise 1$ : Sho2 C / nei"h4ors 9.1' L!4 E+ercise 1' : Brin"in" u% ! Router .nter&!ce 9.13 L!4 E+ercise 13 : Set =ee%!li1e Ti#ers 9.1* L!4 E+ercise 1* : Set :ostn!#e !n- MOT B!nner 9.10 L!4 E+ercise 10 : Console !n- Line /!ss2or-s 9.19 L!4 E+ercise 19 : :ost T!4le 9.1; L!4 E+ercise 1; : Vie2in" AR/ Entries 9.1< L!4 E+ercise 1< : Telnet 9.$0 L!4 E+ercise $0 : TFT/ 9.$1 O45ecti1e Test ' ;. E+ercises on Routin" Fun-!#ent!ls ;.1 L!4 E+ercise 1 : .ntro-uction to ./ ;.$ L!4 E+ercise $ : Con&i"urin" St!tic routes ;.' L!4 E+ercise ' : .#%le#ent !n- Veri&( St!tic Routes ;.3 L!4 E+ercise 3 : Con&i"urin" e&!ult route ;.* L!4 E+ercise * : .#%le#ent !n- Veri&( e&!ult Routes ;.0 L!4 E+ercise 0 : Con&i"urin" Loo%4!ck .nter&!ce ;.9 L!4 E+ercise 9 : Connecti1it( Tests 2ith Tr!ceroute ;.; L!4 E+ercise ; : Con&i"urin" R./ ;.< L!4 E+ercise < : B!sic E.>R/ Routin" ;.10 O45ecti1e Test 3 <. E+ercises on R./?E.>R/ Routin" Scen!rios <.1 <.$ <.' <.3 <.* <.0 <.9 <.; L!4 E+ercise 1 : R./ Routin" Con&i"ur!tion Scen!rio L!4 E+ercise $ : Vie2in" ./ R./ .n&or#!tion L!4 E+ercise ' : Con&i"urin" R./ 1$ L!4 E+ercise 3 : R./$ Routes L!4 E+ercise * : E.>R/ Routin" Con&i"ur!tion Scen!rio L!4 E+ercise 0 : E.>R/ Trou4leshootin" L!4 Scen!rio L!4 E+ercise 9 : E.>R/ Sho2 Co##!n-s O45ecti1e Test *

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10. E+ercises on OS/F 10.1 10.$ 10.' 10.3 10.* 10.0 L!4 E+ercise 1 : OS/F Con&i"ur!tion in Sin"le Are! L!4 E+ercise $ : OS/F Trou4leshootin" L!4 Scen!rio81 L!4 E+ercise ' : OS/F Trou4leshootin" L!4 Scen!rio8$ L!4 E+ercise 3 : OS/F Trou4leshootin" L!4 Scen!rio8' L!4 E+ercise * : OS/F Routin" Con&i"ur!tion Scen!rio O45ecti1e Test 0

11. E+ercises on Access8Lists 11.1 L!4 E+ercise 1 : Cre!tin" ! St!n-!r- Access List 11.$ L!4 E+ercise $ : A%%l(in" !n Access List to !n .nter&!ce 11.' L!4 E+ercise ' : Vie2 Access List Entries 11.3 L!4 E+ercise 3 : St!n-!r- Access List Scen!rio L!4 1 11.* L!4 E+ercise * : St!n-!r- Access List Scen!rio L!4 $ 11.0 L!4 E+ercise 0 : Router Access List Con&i"ur!tion 11.9 L!4 E+ercise 9 : Con&i"urin" !n- Veri&(in" St!n-!r- Access List 11.; L!4 E+ercise ; : Con&i"urin" !n- Veri&(in" E+ten-e- Access List 11.< L!4 E+ercise < : Con&i"urin" !n- .#%le#entin" E+ten-e- Access List 11.10 L!4 E+ercise 10 : Veri&(in" E+ten-e- Access8Lists 11.11 L!4 E+ercise 11 : N!#e- Access8Lists 11.1$ O45ecti1e Test 9 1$. E+ercises on Net2ork A--ress Tr!nsl!tion 1$.1 1$.$ 1$.' 1$.3 1$.* 1$.0 1$.9 L!4 E+ercise 1 : NAT Scen!rio 1 L!4 E+ercise $ : NAT Scen!rio $ L!4 E+ercise ' : NAT Scen!rio ' L!4 E+ercise 3 : (n!#ic NAT Scen!rio81 L!4 E+ercise * : NAT Trou4leshootin" Scen!rio81 L!4 E+ercise 0 : NAT !n- /AT O45ecti1e Test ;

1'. E+ercises on :C/ 1'.1 1'.$ 1'.' 1'.3 L!4 E+ercise 1 : Con&i"urin" cisco router !s ! :C/ Ser1er L!4 E+ercise $ : :C/ client con&i"ur!tion L!4 E+ercise ' : Con&i"urin" t2o :C/ clients !n- :C/ 1eri&ic!tion co##!n-s O45ecti1e Test <

13. E+ercises on /// !n- .S N 13.1 L!4 E+ercise 1 : /// Con&i"ur!tion 13.$ L!4 E+ercise $ : Con&i"urin" .S N usin" BR. 13.' L!4 E+ercise ' : Con&i"urin" .S N usin" BR.8Routin" 1*. E+ercises on Fr!#e8Rel!(

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'

1*.1 1*.$ 1*.' 1*.3 1*.* 1*.0

L!4 E+ercise 1 : Con&i"urin" Fr!#e8Rel!( 2ithout su48inter&!ces L!4 E+ercise $ : Con&i"urin" Fr!#e8Rel!( 2ith %oint8to8%oint su48inter&!ces L!4 E+ercise ' : Fr!#e8Rel!( 2ith su48inter&!ces8Routin" L!4 E+ercise 3 : Fr!#e8Rel!( Sho2 Co##!n-s L!4 E+ercise * : Fr!#e8Rel!( Full Mesh To%olo"( O45ecti1e Test 10

10. E+ercises on ./10 10.1 L!4 E+ercise 1 : En!4lin" ./10 on ! cisco router 10.$ L!4 E+ercise $ : En!4lin" ./10 on ! cisco router inter&!ce 10.' L!4 E+ercise ' : Con&i"urin" ./10 on ! cisco router inter&!ce 2ith ./10 !--ress in EU. &or#!t 10.3 L!4 E+ercise 3 : Con&i"urin" ./10 on ! cisco router inter&!ce 2ith ./10 !--ress in "ener!l &or# 10.* L!4 E+ercise * : Con&i"urin" loo%4!ck inter&!ce 2ith ./10 !--ress 10.0 L!4 E+ercise 0 : Con&i"urin" ./10 on t2o router inter&!ces connecte- -irectl( !n%in"in" the -ist!nt inter&!ce usin" console 10.9 L!4 E+ercise 9 : Tr!ceroute l!4 10.; O45ecti1e Test 11 19. E+ercises on ./10 Routin" /rotocols 19.1 L!4 E+ercise 1 : En!4lin" R./n" on ! cisco router inter&!ce 19.$ L!4 E+ercise $ : En!4lin" R./n" on t2o routers !n- %in"in" 4et2een the# 19.' L!4 E+ercise ' : Enterin" R./n" router con&i"ur!tion #o-e !n- settin" "lo4!l %!r!#eters on ! cisco router 19.3 L!4 E+ercise 3 : Con&i"urin" E.>R/10 on ! router inter&!ce 19.* L!4 E+ercise * : Con&i"urin" E.>R/10 on t2o routers !n- %in"in" 4et2een the# 19.0 L!4 E+ercise 0 : En!4lin" OS/F &or ./10 on ! cisco router inter&!ce 19.9 L!4 E+ercise 9 : Con&i"urin" OS/F on t2o router inter&!ces 19.; L!4 E+ercise ; : >ener!l ./10 con&i"ur!tion on $010 series router 19.< O45ecti1e Test 1$ 1;. E+ercises on B>/ 1;.1 L!4 E+ercise 1: B!sic B>/ Con&i"ur!tion 1;.$ L!4 E+ercise $: Settin" B>/ !ttri4utes 1;.' L!4 E+ercise ': Settin" the B>/ nei"h4or %!ss2or1;.3 L!4 E+ercise 3: To -is!4le the %eer 1;.* L!4 E+ercise *: B!sic Con&i"ur!tion o& ! /eer >rou% 1;.0 L!4 E+ercise 0: Con&i"urin" Multi E+it iscri#in!tor Metric 1<. E+ercises on Route Re-istri4ution 1<.1 L!4 E+ercise 1: Route Re-istri4ution &or R./ 1<.$ L!4 E+ercise $: Route Re-istri4ution &or E.>R/ 1<.' L!4 E+ercise ': Route Re-istri4ution &or OS/F 1<.3 L!4 E+ercise 3: Re-istri4ution 4et2een E.>R/ !n- OS/F 1<.* L!4 E+ercise *: Re-istri4ution 4et2een R./ !n- E.>R/
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0. Cisco S2itch Architecture $0.1 Cisco $<*0 S2itch $0.$ M!n!"e#ent O%tions $0.' Cisco 1<1$81$ /ort S2itch $1. Cisco S2itch .OS $1.1 $1.$ $1.' $1.3 $1.* $1.0 $1.9 $1.; $1.< Lo""in" into the s2itch L!4 E+ercise 1 : .ntro-uction to S2itch L!4 E+ercise $ : S2itch $<*0 Console /!ss2or- Assi"n#ent L!4 E+ercise ' : S2itch $<*0 VT@ /!ss2or- Assi"n#ent L!4 E+ercise 3 : S2itch $<*0 A Settin" /ri1ile"e- %!ss2orL!4 E+ercise * : En!4le F!st Ethernet .nter&!ce on ! $<*0 S2itch L!4 E+ercise 0 : .niti!l S2itch Con&i"ur!tion L!4 E+ercise 9 : B!sic S2itch .nter&!ce Con&i"ur!tion L!4 E+ercise ; : C!t!l(st $<*0 S2itch Con&i"ur!tion

$$. E+ercises on S%!nnin" Tree /rotocol $$.1 $$.$ $$.' $$.3 $$.* $$.0 $$.9 L!4 E+ercise 1 : En!4lin" ST/ L!4 E+ercise $ : Con&i"urin" Root S2itch L!4 E+ercise ' : Con&i"urin" /ort8/riorit( L!4 E+ercise 3 : Con&i"urin" S2itch /riorit( o& ! VLAN L!4 E+ercise * : Con&i"urin" ST/ Ti#ers L!4 E+ercise 0 : Veri&(in" ST/ O45ecti1e Test 1'

$'. E+ercises on S2itch Con&i"ur!tion !n- VLAN $'.1 L!4 E+ercise 1 : B!sic S2itch ./ Con&i"ur!tion $'.$ L!4 E+ercise $ : Con&i"urin" $<*0 S2itch 1l!n $'.' L!4 E+ercise ' : Trou4leshootin" $<*0 S2itch $'.3 L!4 E+ercise 3 : $<*0 Trunkin" Con&i"ur!tion $'.* L!4 E+ercise * : Cre!tin" !n- eletin" $<*0 VLANBs $'.0 L!4 E+ercise 0 : Con&i"urin" VT/ on $<*0 S2itch $'.9 L!4 E+ercise 9 : Con&i"urin" VT/ 2ith ! VT/ Client $'.; L!4 E+ercise ; : Trou4leshootin" l!4 2ith non #!tchin" -o#!ins $'.< L!4 E+ercise < : Trou4leshootin" l!4 2ith trunk &unction!lit( $'.10 L!4 E+ercise 10 : VLANs Scen!rio $'.11 L!4 E+ercise 11 : VT/ Scen!rio $'.1$ L!4 E+ercise 1$ : VLANs !n- Trunkin" $'.1' L!4 E+ercise 1' : Routin" 4et2een VLANs

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'.13 O45ecti1e Test 13 $3. Fin!l E+!# $3.1 O45ecti1e Test Fin!l E+!# $*. A%%en-i+ $*.1 Ans2er =e(s &or O45ecti1e Test 1 $*.$ Ans2er =e(s &or O45ecti1e Test $ $*.' Ans2er =e(s &or O45ecti1e Test ' $*.3 Ans2er =e(s &or O45ecti1e Test 3 $*.* Ans2er =e(s &or O45ecti1e Test * $*.0 Ans2er =e(s &or O45ecti1e Test 0 $*.9 Ans2er =e(s &or O45ecti1e Test 9 $*.; Ans2er =e(s &or O45ecti1e Test ; $*.< Ans2er =e(s &or O45ecti1e Test < $*.10 Ans2er =e(s &or O45ecti1e Test 10 $*.11 Ans2er =e(s &or O45ecti1e Test 11 $*.1$ Ans2er =e(s &or O45ecti1e Test 1$ $*.1' Ans2er =e(s &or O45ecti1e Test 1' $*.13 Ans2er =e(s &or O45ecti1e Test 13 $*.1* Ans2er =e(s &or Fin!l E+!# $0. .cons use- in the M!nu!l

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1. C.SCO ROUTER ARC:.TECTURE

1.1 Block i!"r!#

1.$ Architectur!l Co#%onents o& ! Router 1.$.1 /rocessor The CPU used here is typically Motorola 68030 CISC. The following are the i portant characteristics of the CPU. 3! "it "us# !0 M$% cloc& '!( M$% on so e platfor s). !(6 *ytes internal +ata Cache# !(6 *ytes internal Instruction Cache# "oth direct apped. 1.$.$ S(ste# Control Lo"ic Syste Control ,ogic is used to help the ain processor with de-ice control# interrupt handling# counting and ti ing# data transfer# ini al .irst In# .irst /ut '.I./) "uffering# and co unication with networ& interfaces and +yna ic 01M '+01M). 1.$.' Buses CPU use *uses to access -arious co ponents of the syste . In addition# *uses are used to transfer instructions and data to or fro specified e ory addresses.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

C/U Bus: It is used for high speed operations with direct Processor access. S(ste# Bus: This allows co unication with 2thernet3To&en 0ing controllers# 415 port interfaces# and so on. 1.$.3 u!l UART +ual Uni-ersal 1synchronous 0ecei-er6Trans itter 'U10T) pro-ides the necessary user interface. It has one 0S!3! port# +ata Co unications 27uip ent '+C2) 'for Console port) 089(# and +ata Ter inal 27uip ent '+T2) 'for 1u:iliary port) 089(.

1.' Me#or( et!ils o& ! T(%ic!l Cisco $*++ Series Routers 1.'.1 RAM This e ory is analogous to the e ory in PCs. +01M is a fast its contents when the syste is restarted 'power cycled). e ory and loses e ory.

The +01M has Main Processor Me ory and Shared Input3/utput 'I3/)
Main

Processor Me ory is used to hold routing ta"les# fast switching cache# running configurations# and so on. It can ta&e unused shared I3/ e ory# if needed.
Shared

I3/

e ory is used for te porary storage of pac&ets in syste

"uffers.

1.'.$ Fl!sh .lash e ory is typically located on a processor "oard SIMM card. .lash is a per anent storage for the Cisco I/S software i age# "ac&up configurations# and any other files. Cisco I/S software is run fro the flash e ory# these i age files are defined as re6locata"le# "ecause the Cisco I/S software i age can "e e:ecuted fro different locations in the .lash. 1.'.' NVRAM 5;01M is a 5on6;olatile 01M used as per anent storage and this e ory is re6 writea"le. 5;01M is used to store the startup configuration. This is the configuration file that I/S reads after the router /S is loaded and running. It is a fast non -olatile e ory and does not lose contents when the router is switched off. 1.'.3 BOOT ROM This refers to erasa"le progra a"le read6only e ory '2P0/M) and is used to per anently store the startup diagnostic code '0/M Monitor)# and 0:*oot. *oot 0/M si%e is ! M*. This type of e ory consists of one or ore e ory chips on a
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

router<s processor "oard. This code runs when the router starts.

$. C.SCO ROUTER )$*++ series, AN .TS .NTERFACES

1 !(0= Cisco router is considered for the purpose of understanding typical Cisco router interfaces. Please note that this is an entry le-el router# and the interfaces ay "e 7uite co ple: for high end routers.

$.1 .nter&!ces E+%l!ineConsole %ort: This is used for connecting a console to the router. The console ter inal will ha-e direct connection to the router# and you will "e a"le to access all router interfaces and configure the sa e. 4hen you recei-e a new router# you need to use the console port to configure it. Au+ili!r( %ort: 1u:iliary port is used to access the router re otely using a purpose# you need to ha-e the au:iliary port configured "efore hand. ode . .or this

S(nchronous %orts: !(0= has two synchronous ports as shown in the figure. These ports can "e used to connect to any serial line. Ethernet AU. %ort: This port is used for connecting to the ,15.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<

$.$ Console %ort con&i"ur!tion The console and au:iliary ports on Cisco I/S> routers are asynchronous serial ports. The console port and the au:iliary port are configured as data ter inal e7uip ent '+T2). !(00# !600# and 3600 Series 0outers use 0869( connectors on "oth console and au:iliary ports. ?ou need to use appropriate adapter to connect to the e:ternal console or ode as re7uired. This ta"le shows the console port configuration for the 0869( connector@ Console /ort) TE, 0TS +T0 T:+ B5+ 0:+ +S0 CTS = ! 3 9 6 C 8 RC83* to B8$* Console e1ice Ter#in!l A-!%ter ( 6 '8A) 3 C ! !0 9 CTS +S0 0:+ B5+ T:+ +T0 0TS

'. Cisco $010 Router '.1 O1er1ie2

Unli&e Cisco !(00 routers# the !600 series routers are odular access routers with ,15 and 415 connections that can "e configured "y eans of interchangea"le odules and 415 interface cards. The a-aila"le configuration options for !6=03!6!0 router are gi-en "elow@

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10

Mo-el

Ethernet F!st )10BASE8 Ethernet T, )10?100, 66 =

Net2ork Mo-ule Slot = =

DAN .nter&!ce C!r- Slots ! !

A-1!nce.nte"r!tion Mo-ule Slots = =

Cisco !6=0 = Cisco !6!0 66

The rear panel of the router is shown in the figure "elow@

5ote that the 1d-anced Integration Module Slots '1IM Slot) is located on the syste "oard and you need to open the co-er to access this slot. 1IMs are installed "y plugging into internal connectors in the router# and they re7uire no additional e:ternal interfaces or connections. The 5etwor& Module slot can "e used with any of the suita"le cards# li&e Cisco Interface Module 86 port IS+56*0I Mode to suit specific re7uire ents. '.$ Front %!nel escri%tion :

The front panel of a Cisco !600 router consists of three ,2+s as descri"ed "elow@ LE /o2er escri%tion /n if the router is switched /5 and operational.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11

R/S )Re-un-!nt /ff 6 5o 0PS is attached. /o2er Su%%l(, /n 6 0PS is attached and operational. *lin&ing 6 0PS is attached# "ut has a failure. Acti1it( /ff 6 5o networ& acti-ity is detected 'In Cisco I/S software) *lin& '(00 errors. s /5# (00 s /..) 6 In 0/MM/5# no

*lin& '(00 s /5# (00 s /..# ! seconds "etween codes) 6 In 0/MM/5# error detected. *lin& 'less than (00 s)DIn the Cisco I/S software# the "lin& rate reflects the le-el of acti-ity.

The difference "etween the !6=0 and !6!0 is the type of 2thernet port. !6!0 has a fast 2thernet port whereas !6=0 has =0"aseT 2thernet port.

4IC Slot = 'Serial 03=) 4IC Slot 0 'Serial 030) 1u:iliary Port

2thernet 03= '/ptionally@ To&en 0ing 030) 5etwor& Module Port 0 'Serial =30)

'

5etwor& Module Port = 'Serial =3=)

3 *

Console Port < 2thernet 030 10

5etwor& Module Port ! 'Serial =3!) 5etwor& Module Port 3 'Serial =33)

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$

3. .NTRO UCT.ON TO C.SCO .OS

,i&e a personal co puter# a router is "ased on a CPU that atches the re7uired perfor ance and capa"ilities of the router. .or e:a ple# the router !(0= uses Motorola 68030 processor on a syste other"oard. The Cisco I/S software is networ& syste software that runs on Cisco routers and switches. It is used to configure# onitor# and trou"leshoot the de-ices that are connected to the syste . 4hen a router is switched /5# the "ootstrap software 'stored in *oot 0/M) e:ecutes and searches for a -alid Cisco I/S software i age. The source of the Cisco I/S software i age can "e read fro @ .lash e ory or a Tri-ial .ile Transfer Protocol 'T.TP) ser-er. The choice a ong the two is deter ined "y the configuration register setting. The factory6default setting for the configuration register is 0:!=0!# which indicates that the router should atte pt to load a Cisco I/S software i age fro .lash e ory. In all our e:ercises# it is assu ed that the router "oots fro the .lash e ory.

5ow# connect the console port of router to the wor& station '4S0) /nce you are connected to the router# you will "e pro pted with E2na"leF pro pt.

3.1 O45ecti1e Test 1 : Ans2er the &ollo2in" Euestions

1. 4here does the "oota"le I/S i age '"ootstrap code) is stored on a Cisco routerA !, 01M 4, 0/M c, .lash Me ory -, 5;01M $. 4here does the fully functional I/S i age is stored in a Cisco routerA !, 01M 4, 0/M c, .lash Me ory -, 5;01M '. 4hich of the following are internal configuration co ponents of a Cisco 0outerA GSelect all that applyH !, 01M3+01M 4, 0/M c, 5;01M -, .lash Me ory 3. 4hich co
Version 1.0

and will load the Cisco router configuration into 01MA GSelect !H
Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'

!, copy run star 4, copy star run c, wri e -, reload

*. C.SCO .OS COMMAN L.NE .NTERFACE

Cisco I/S has three co and odes# each with access to different co and sets.

*.1 User #o-e: This is the ode a user has access to after logging into the router. The user ode is identified "y the I pro pt following the host na e. The user has access to so e "asic co ands in this ode. The syste cannot "e configured or restarted fro this ode. *.$ /ri1ile"e- #o-e: This is the ode where users can -iew the syste configuration# and enter configuration ode fro this ode. 1ll the co ands that are a-aila"le in user ode are also a-aila"le in pri-ileged ode. Pri-ileged ode is identified "y the J pro pt following the host na e. To enter pri-ileged ode# one needs to type Eena"leF at the User ode pro pt. If an ena"le password or ena"le secret password has "een set# you need to enter the password or secret password to enter the pri-ileged ode. The difference "etween a password and secret password is that the secret password uses stronger encryption and not stored in as plain te:t. *.' Con&i"ur!tion #o-e: This ode allows users to configure the router. To enter into the configuration ode# the user should enter the co and Econfigure ter inalF fro pri-ileged ode. Blo"al configuration ode is identified "y the 'config)J pro pt following the host na e. 1fter entering glo"al configuration ode# you can enter any su"6 ode depending on the configuration tas&. .or e:a ple# if you want to configure an IP address on routerKs serial interface# you need to enter 'config6if)J su" ode. To e:it configuration ode# the user can enter end or press Ctrl6L. *y entering the co and A at any point shows the a-aila"le co ands at that le-el. The A can also "e used in the iddle of a co and to show possi"le co pletion options.

0. BAS.C E6ERC.SES

0.1 : L!4 E+ercise 1 : Enterin" User E6EC %ro#%t on ! RouterF !n- e+it
escri%tion: 1 "asic e:ercise# that shows how to enter into pri-ileged 2M2C pro pt fro pro pt# and e:it fro the sa e. .nstructions: user ode

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13

1. 2nter into pri-ileged ode $. Bet "ac& to the user ode R1G R1Gen!4le R1H-is!4le R1G *ac&

0.$ : L!4 E+ercise $ : .ntro-uction to B!sic User .nter&!ce

escri%tion: This e:ercise helps to get fa iliar with the user co ands. .nstructions: 1. Press enter to get the router pro pt $. In the user ode# type the co and A used to -iew all the co ands in user ode '. 2nter into pri-ileged ode 3. In the pri-ileged ode# type the co and A to -iew all the co ands in pri-ileged ode *. The co and show A displays all the show co ands li&e show access6list# show "anner# show cdp# show hosts# show flash# show protocols etc 0.The co and show running6config displays the running configuration 9. Press space "ar to -iew ore infor ation ;. The co and Ee:it or disa"leF logs out the router R1G R1GI R1Gen!4le R1H R1HI R1Hsho2 I R1Hsho2 runnin"8con&i" R1He+it Or R1H-is!4le *ac& ode# pri-ileged ode# C,I and "asic

0.' : L!4 E+ercise ' : B!sic sho2 co##!n-s

escri%tion@ 1 "asic e:ercise to get fa iliar and understand the -arious show co pri-ileged ode. .nstructions:
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

ands a-aila"le in the

1*

1. 2nter into pri-ileged ode $. Show running6config displays the acti-e configuration in e ory. The currently acti-e configuration script running on the router is referred to as the running6config in the routerKs C,I '. Show flash e ory. .lash e ory is a special &ind of e ory that contains the operating syste i age file's) on the router 3. Show history co and displays all the past co ands still present in routerKs e ory *. Show protocols co and displays the protocols running on your router 0. Show -ersion co and displays critical infor ation# such as router platfor type# operating syste re-ision# operating syste last "oot ti e and file location# a ount of e ory# nu "er of interfaces# and configuration register 9. Show cloc& co and displays the routerKs cloc& ;. Show hosts co and displays list of hosts and all their interfaces IP 1ddresses <. Show users co and displays list of users who are connected to the router 10. Show interfaces co and displays detailed infor ation a"out each interface R1G R1Gen!4le R1Hsho2 runnin"8con&i" R1Hsho2 &l!sh R1Hsho2 histor( R1Hsho2 %rotocols R1Hsho2 1ersion R1Hsho2 clock R1Hsho2 hosts R1Hsho2 inter&!ces *ac&

0.3 Short &or# co##!n-s

1. copy running6config startup6config co co and. $. show running6config co '. show startup6config co and can "e interpreted and used in short for as Ecopy run startF and. and. and. and.

and can "e interpreted and used in short for and can "e interpreted and used in short for

as Eshow runF co as Eshow startF co

3. copy running6config tftp co *. copy tftp startup6config co

and can "e interpreted and used in short for and can "e interpreted and used in short for

as Ncopy run tftpN co as Ncopy tftp startN co

Note: 4e can also use U/ ARROD and ODN ARROD &eys to get the pre-iously typed co the si ulator.

and in

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10

0.* O45ecti1e Test $ : Ans2er the &ollo2in" Euestions

1. ?ou want to find the I/S -ersion your router is running. 4hich co !, show protocol 4, show interface c, show processes -, show -ersion $. ?ou intend to connect your PC directly to a Cisco router. 4hich of the following allow you to connect to the router directlyA !, Connect PCKs C/M port to the routerKs console port using a patch ca"le. 4, Connect PCKs C/M port to the routerKs console port using a straight through ca"le c, Connect PCKs C/M port to the routerKs console port using a rollo-er ca"le -, Connect PCKs 2thernet port to the 0outerKs 2thernet port using a straight through ca"le. '. 4hich of the following can "e used to -iew the pre-ious co !H !, CT0,O.= 4, The +own 1rrow c, The Up 1rrow -, CT0, O P 3. ?ou are wor&ing in pri-ileged ode 'at J pro pt). ?ou want to get "ac& to user would you type at the pri-ileged ode pro ptA !, 7uit 4, e:it c, disa"le -, end *. 4hat is the co and used for copying the configuration fro 5;01M to a running 01MA ode. 4hich co and and you entered into a Cisco routerAGSelect and shows this infor ationA

!, copy startup running 4, copy startup6config running6config c, copy running6config startup6config -, write e ory 0. 4hich of the following Cisco router co ponents is used for storing a single startup configuration fileA !, 01M 4, 0/M c, .lash Me ory -, 5;01M

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

19

9. The output of Eshow interface s030F is gi-en "elow. The output points to so e pro"le 4hat is the li&ely pro"le A RouterAHsho2 inter&!ce s0?0

with the interface.

Serial030 is down# line protocol is down $ardware is PUICC Serial Internet address is !=3.(.3.C3=6 MTU =(00 "ytes# *4 =(99 Q"it# +,? !0000 usec# rely !((3!((# load =3!(( Rirrele-ant output o ittedR !, There is a protocol is atch "etween the co 4, There is so e ,ayer = pro"le c, The "andwidth was not set correctly -, The IP address is illegal unication partners on the interface.

;. 4hich ca"le do you use for connecting a Cisco router console port to a wor&stationA !, 1 straight6through ca"le 4, 1 cross6o-er ca"le c, Patch ca"le -, 0olled ca"le

9. ROUT.N> .OS FUN AMENTAL E6ERC.SES

9.1 : L!4 E+ercise 1 : B!nner MOT 8Settin" #ess!"e o& the -!(
escri%tion: This e:ercise helps in understanding the procedure of setting
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

essage of the day and the show

1;

"anner co and . 5ote that the "anner is set in a single co "anner otd co and. .nstructions:

and line here. ?ou can also use

ulti6line

1. 2nter into pri-ileged ode $. 2nter into glo"al Configuration Mode '. Set "anner to@ N4elco e to local hostN. Starting and ending character of the "anner should "e NLN '+o not use 7uotes) 3. Use show "anner co and to -iew the "anner that has "een set R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",H4!nner #ot- J Delco#e to loc!l host J R1)con&i",He+it R1Hsho2 4!nner *ac&

9.$ : L!4 E+ercise $ : Settin" :ost N!#e

escri%tion: This "asic e:ercise illustrates the steps re7uired to set a hostna e to a router. .nstructions: 1. 2nter into pri-ileged ode $. 2nter into glo"al Configuration Mode '. Set hostna e as cisco R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e cisco *ac&

9.' : L!4 E+ercise ' : Router .nter&!ce Con&i"ur!tion

escri%tion: In this la"# you will learn to ena"le interfaces on a router i.e# configure Serial 0 and 2thernet 0 interfaces on a router with specified IP 1ddress and Su"net Mas&. .nstructions: 1. 2nter into pri-ileged ode $. 2nter into glo"al Configuration Mode '. Set IP 1ddress of Serial 0 as =S6.!0.3!.=( and Su"net Mas& as !((.!((.!((.( 3. Set IP 1ddress of 2thernet 0 as =S(.!0.3!.=0 and Su"net Mas& as !((.!((.!((.=0 R1Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<

R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<0.$0.'$.1* $**.$**.$**.* R1)con&i"8i&,He+it R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% !--ress 1<*.$0.'$.10 $**.$**.$**.10 *ac&

9.3 : L!4 E+ercise 3 : Settin" B!n-2i-th on !n inter&!ce

escri%tion: *andwidth refers to the rate at which data is transferred o-er the co unication lin&. ?ou setup the "andwidth on a gi-en interface 'interface serial 0) to a specified -alue '69 &"ps). ?ou also set the cloc&rate to 69000. 5ote that "andwidth is represented in &"ps whereas cloc& rate is entered in "ps. S(nt!+: "andwidth 'interface)@ The co and "andwidth T&ilo"itsI will set and co higher6le-el protocols. unicate the "andwidth -alue for an interface to of the co and to set the "andwidth to

E+: "andwidth 69 will set the "andwidth to 69 &"ps. Use no for default -alue. .nstructions: 1. 2nter to serial 0 ode $. Set "andwidth of serial 0 as 69 &"ps '. Set cloc&rate as 69000 "ps R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,H4!n-2i-th 03 R1)con&i"8i&,Hclock r!te 03000

*ac&

9.* : L!4 E+ercise * : Settin" Console /!ss2orescri%tion: Set the line console password for line 0. Use password routercon .nstructions: 1. 2nter into glo"al configuration ode $. 2nter into line console 0 ode '. Set console password as routercon R1Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0

R1Hcon&i"ure ter#in!l R1)con&i",Hline console 0 R1)con&i"8line,H%!ss2or- routercon *ac&

9.0 : L!4 E+ercise 0 : Settin" Telnet /!ss2orescri%tion: Set the -ty password for lines 0 to 9. .nstructions: 1. 2nter into glo"al configuration ode $. Configure a password UciscoK that will ena"le re ote users to telnet into -ty ports 069 R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hline 1t( 0 3 R1)con&i"8line,H%!ss2or- cisco *ac&

9.9 : L!4 E+ercise 9 : Settin" Au+ili!r( /!ss2or- to Router

escri%tion: In this e:ercise# setting 1u:iliary password to a router is "eing showcased. ,i&e the console# 1u:iliary Port is a physical port on e-ery router and it is used for ad inistrati-e console dial up access to the router. .nstructions: 1. 2nter into glo"al configuration ode $. Type line au: A to configure the au:iliary password '. 2nter login co and and set au:iliary password as ad in R1Gen!4le R1Hcon&i" t R1)con&i",Hline !u+ I R1)con&i",Hline !u+ 0 R1)con&i"8line,Hlo"in R1)con&i"8line,H%!ss2or- !-#in *ac&

9.; : L!4 E+ercise ; : .#%le#entin" e+ec8ti#eout co##!nescri%tion: e:ec6ti eout co and is used to configure the nu "er of "efore the session is auto atically ended. inutes without ter inal acti-ity

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1

Use the co and in Pri-ileged co and ode to set the ti eout for this session only. Use the co ,ine configuration co and ode to set the ti eout for this and future sessions. S(nt!+: e:ec6ti eout .nstructions: 1. 2nter into glo"al configuration ode $. 2nter into line console 0 ode '. Set the ti e using e:ec6ti eout co and 3. 2:it to pri-ileged ode R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hline console 0 R1)con&i"8line,He+ec8ti#eout 1* 0 R1)con&i"8line,Henin GsecH

and in

*ac&

9.< : L!4 E+ercise < : Co%( Runnin" Con&i"ur!tion to St!rtu% Con&i"ur!tion

escri%tion: ?ou will practice -iewing running configuration# copying running configuration to startup configuration etc. in this e:ercise. !. Sho2 runnin"8con&i" is the co e ory. and which displays the current running acti-e configuration in

4. Sho2 st!rtu%8con&i" displays the configuration stored in 5;01M c. Co%( runnin"8con&i" st!rtu%8con&i" or co%( run st!rt co to 5;01M. and copies the current acti-e configuration

-. Er!se st!rtu%8con&i" will ena"le you to co pletely delete all configurations on the router so that you can start fro scratch. Type this co and to delete the configuration file in 5;01M. .nstructions: 1. 2nter into pri-ileged ode $. Show the acti-e configuration in e ory '. ;iew the configuration stored in 5;01M 3. Copy the acti-e configuration to 5;01M *. ;iew the configuration stored in 5;01M 0. Issue the co and to delete the configuration file in 5;01M 9. Then -iew the configuration stored in 5;01M R1Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$

R1Hsho2 runnin"8con&i" R1Hsho2 st!rtu%8con&i" R1Hco%( runnin"8con&i" st!rtu%8con&i" R1Hsho2 st!rtu%8con&i" R1Her!se st!rtu%8con&i" R1Hsho2 st!rtu%8con&i" *ac&

9.10 : L!4 E+ercise 10 : Router C / Con&i"ur!tion

escri%tion: This e:ercise helps in understanding Cisco +isco-ery Protocol co ands . Set the cdp ti er# holdti e and -iew configuration details. Show cdp interface co and displays the status of all interfaces that are running cdp. .nstructions: 1. Type the co and to see the status of all interfaces that are running C+P $. 2na"le the serial 0 interface '. 2na"le 2thernet 0 interface 3. Set C+P ti er to to 30 seconds *. Set C+P holdti e to S0 Seconds 0. Type the co and to see the status of all interfaces that are running C+P 9. +isa"le C+P in Blo"al Configuration Mode R1Gen!4le R1Hsho2 c-% inter&!ce R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hc-% ti#er '0 R1)con&i",Hc-% hol-ti#e <0 R1)con&i",He+it R1Hsho2 c-% inter&!ce R1Hcon&i"ure ter#in!l R1)con&i",Hno c-% run *ac&

9.11 : L!4 E+ercise 11 : Sho2 C / Con&i"ur!tion

escri%tion: The co and show cdp pro-ides cdp infor ation.

5ote that cdp is ena"led "y default on a router. If you want to disa"le cdp on a particular interface# use no cdp ena"le co and. To re ena"le cdp on an interface# use cdp run co and. If the cdp is disa"led in
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'

glo"al configuration ode. .nstructions:

ode# you can not ena"le it for any specific interface using interface configuration

1. 2nter interface configuration ode for serial 0# and disa"le C+P on interface serial 0 $. Issue a co and to -erify that Serial 0 is no longer sending C+P updates '. Type the co and to see Blo"al C+P infor ation R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hno c-% en!4le R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 c-% *ac&

9.1$ : L!4 E+ercise 1$ : Sho2 C / Nei"h4ors

escri%tion: 4e try so e i portant cdp show co ands. Show cdp neigh"ors co infor ation a"out cdp neigh"ors and it pro-ides the output in the following for at@ RouterHsho2 c-% nei"h4ors Capa"ility Codes@ 0 6 0outer# T 6 Trans *ridge# * 6 Source 0oute *ridge S 6 Switch# $ 6 $ost# I 6 IBMP# r 6 0epeater +e-ice I+ C!06 ,ocal Interface 2th 0 $oldti e =(C Capa"ility Platfor 0 C!06;M0 Port I+ .as 03030 and displays

.nstructions: 1. 2nter into pri-ileged ode $. 2nter into glo"al Configuration Mode of 0= '. Set IP 1ddress of Serial 0 as =S!.=0.=.= and Su"net Mas& as !((.!((.!((.0 3. 2:it the interface ode *. 2nter into glo"al Configuration Mode of 0! 0. Set IP 1ddress of Serial 0 as =S!.=0.=.! and Su"net Mas& as !((.!((.!((.0 9. Type the co and to -iew infor ation a"out directly connected neigh"ors R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce s 0 R1)con&i"8i&,Hi% !--ress 1<$.10.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,HenVersion 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3

R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce s 0 R$)con&i"8i&,Hi% !--ress 1<$.10.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,HenR$Hsho2 c-% nei"h4ors *ac&

9.1' : L!4 E+ercise 1' : Brin"in"8u% ! router .nter&!ce

escri%tion: *y default# an interface will "e in shut6down state. 4e need to issue no shutdown co and to "ring6up the interface. 5otice that the show interfaces co and shows that the line protocol is up indicating that the interface is now acti-e 'sending and recei-ing pac&ets). .nstructions: 1. ;iew the infor ation a"out interface serial 0 $. *ring serial 0 to no shutdown state '. 5ow -iew the state of the interface serial 0 R1Gen!4le R1Hsho2 inter&!ces seri!l 0 R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 inter&!ces seri!l 0 *ac&

9.13 : L!4 E+ercise 13 : Set =ee%!li1e Ti#ers

escri%tion: Qeepali-e essages chec& the health of a lin&. The &eepali-e ti er is the nu "er of seconds a router waits "etween sending &eepali-e essages to a peer. If no response fro the peer is recei-ed# the local router retrans its the &eepali-e essage up to fi-e ti es. If no response is recei-ed fro the peer# the local router "rings down the lin& and withdraws the route fro the routing ta"le. S(nt!+: &eepali-e Tti er6-alueI no &eepali-e Ti#er8V!lue: The nu "er of seconds this router waits "efore sending the ne:t &eepali-e ;alid -alues are integers fro 0 to 3!C6C. .nstructions: 1. 2nter into Interface serial 0 config
Version 1.0

essage to a peer.

ode

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*

$. Set &eepali-e Para eter of interface serial 0 to =( seconds '. Type the show co and to see that &eepali-e para eter of interface serial 0 is set with =( R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hkee%!li1e 1* R1Hsho2 inter&!ces seri!l 0 *ac&

9.1* : L!4 E+ercise 1* : Set :ostn!#e !n- MOT B!nner

escri%tion: $ere you change the hostna e and set otd 'Message /f The +ay) "anner. To specify or odify the host na e for the networ& ser-er# use the hostna e glo"al configuration co and. s(nt!+: hostna e Tna eI Use "anner otd to define and ena"le a essage6of6the6day 'M/T+) "anner co and in glo"al configuration ode. To delete the M/T+ "anner# use the no for of this co and. s(nt!+: "anner no "anner otd otd d essage d

where d is the deli iting character of your choice. E+: a pound sign 'J). 1 deli iting character can not "e used in the "anner essage. essage Message te:t. .nstructions: 1. 2nter pri-ileged 2M2C ode using the password is cisco $. 2nter glo"al configuration ode '. Change the host na e to NCairoN 3. Set the "anner to Nwelco eN# note that 7uotes not to "e included in the "anner *. 2:it the glo"al configuration ode R1Gen!4le R1H/!ss2or-:cisco R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e C!iro C!iro)con&i",H4!nner #ot- H2elco#eH C!iro)con&i",He+it *ac&

9.10 : L!4 E+ercise 10 : Console !n- Line /!ss2or-s

Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0

escri%tion: 4e configure console password and -ty password in this e:ercise.Use ena"le password ccna# ena"le secret password e:a # console and -ty password of e:a again. .nstructions: 1. 2nter glo"al configuration ode $. Set the ena"le password to NccnaN '. Set the ena"le secret to Ne:a N 3. Set the console password to Ne:a N for line console 0 *. Set the telnet access password to Ne:a N for line -ty 069 0. 2:it the line configuration ode R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hen!4le %!ss2or- ccn! R1)con&i",Hen!4le secret e+!# R1)con&i",Hline console 0 R1)con&i"8line,Hlo"in R1)con&i"8line,H%!ss2or- e+!# R1)con&i"8line,He+it R1)con&i",Hline 1t( 0 3 R1)con&i"8line,Hlo"in R1)con&i"8line,H%!ss2or- e+!# R1)con&i"8line,He+it *ac&

9.19 : L!4 E+ercise 19 : :ost T!4le

escri%tion: 1n e:ercise to get fa iliar to the host ta"le. $ost ta"les can "e used to set na es for co only used IP addresses# which helps with trou"leshooting. .nstructions: 1. Connect to router= and set hostna e to cairo $. 2nter into glo"al configuration ode of router= '. Set IP address of Serial 0 as =S6.!0.3!.=( and su"net as& as !((.!((.!((.0 and ena"le its interface 3. Configure to router! and set hostna e to sairo *. 2nter into glo"al configuration ode of router! 0. Set IP address of Serial 0 as =S6.!0.3!.=0 and su"net as& as !((.!((.!((.0 and ena"le its interface 9. 2:it interface ode ;. Set a host ta"le entry for cairo using the IP address =S(.!0.3!.=( which a-oids you to type cairoUs Serial 0 IP address e-ery ti e you ping it fro sairo <. 5ow ping cairoKs Serial 0 IP address fro sairo Vust "y typing ping cairo 10. 5ow enter Eshow hostsF co and to -erify that the entry is stored in the routerKs host ta"le R1Gen!4le R1Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$9

R1)con&i",Hhostn!#e c!iro C!iro)con&i",Hinter&!ce seri!l 0 C!iro)con&i"8i&,Hi% !--ress 1<0.$0.'$.1* $**.$**.$**.0 C!iro)con&i"8i&,Hno shut-o2n R$G R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e s!iro S!iro)con&i",Hinter&!ce seri!l 0 S!iro)con&i"8i&,Hi% !--ress 1<0.$0.'$.10 $**.$**.$**.0 S!iro)con&i"8i&,Hno shut-o2n S!iro)con&i"8i&,He+it S!iro)con&i",Hi% host c!iro 1<0.$0.'$.1* S!iro)con&i",He+it S!iroH%in" c!iro S!iroHsho2 hosts *ac&

9.1; : L!4 E+ercise 1; : Vie2in" AR/ Entries

escri%tion: This la" is to -iew the entries in the 10P ta"le. .irstly the 10P ta"le is chec&ed "efore configuring the routers and then the 10P ta"le is -erified again after routers are configured.

.nstructions: 1. Connect to 0outer =# and enter the co

Version 1.0

and show arp to -iew the 10P ta"le

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$;

$. 2nter into glo"al configuration ode of 0outer = '. Set IP address of 2thernet 0 as =S!.=68.=00.= and su"net as& as !((.!((.!((.0 3. ;iew the 10P ta"le again *. Connect to 0outer ! and enter into glo"al configuration ode 0. Set IP address of 2thernet 0 as =S!.=68.=00.! and su"net as& as !((.!((.!((.0 9. 1 connection should now e:ist "etween the 0outer = and 0outer ! 2thernet interfaces. To ensure that the connection is functional# ping the IP address of 0outer =Ks 2thernet 0 IP address fro 0outer ! ;. ;iew the 10P ta"le on 0outer! <. Clear the 10P ta"le 10. ;iew the 10P ta"le once again after clearing R1G R1Gen!4le R1Hsho2 !r% R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 !r% R$G R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",He+it R$H%in" 1<$.10;.100.1 R$Hsho2 !r% R$Hcle!r !r% R$Hsho2 !r% *ac&

9.1< : L!4 E+ercise 1< : Telnet

escri%tion: This la" is to learn esta"lishing a telnet session "etween two routers.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$<

.nstructions: 1. Configure 0= and then set the hostna e to 0outer=. Use the co and line -ty 0 9 to access telnet lines $. Configure the router to re7uire the use of login and password '. Configure cisco as the password that will "e used to esta"lish a telnet session 3. 5ow# assign the IP address of =S!.=68.=00.! !((.!((.!((.0 to 0outer=Ks 2thernet 0 interface# and ena"le the interface *. Connect to 0! and set its host na e to 0outer! # then access its 2thernet 0 interface and assign its IP address to =S!.=68.=00.= !((.!((.!((.0 and ena"le it 0. .ro 0outer!# telnet into 0outer=Ks 2thernet 0 interface 9. 1 password will "e pro pted# enter the password as cisco# now the host na e changes fro 0outer! to 0outer= which indicates a telnet session has "een esta"lished ;. Type the show sessions co and on 0outer! to -iew all the acti-e telnet sessions <. Type the co and resu e and type the nu "er of session to resu e# now the host na e changes to 0outer= 10. 5ow go "ac& to 0outer! and disconnect the session using disconnect co and R1G R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e Router1 Router1)con&i",Hline 1t( 0 3 Router1)con&i"8line,H Router1)con&i"8line,Hlo"in Router1)con&i"8line,H%!ss2or- cisco Router1)con&i"8line,He+it Router1)con&i",Hinter&!ce ethernet 0 Router1)con&i"8i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 Router1)con&i"8i&,Hno shut R$G R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e Router$
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'0

Router$)con&i",Hinter&!ce ethernet 0 Router$)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 Router$)con&i"8i&,Hno shut-o2n Router$)con&i"8i&,HenRouter$Htelnet 1<$.10;.100.$ /!ss2or-: Router1G Router1G/ress CTRLKS:.FTF0 then %ress 6 Router$Hsho2 sessions Router$Hresu#e 1 Router1G/ress CTRLKS:.FTF0 then %ress 6 Router$H Router$H-isconnect 1 *ac&

9.$0 : L!4 E+ercise $0 : TFT/

escri%tion : In this la" e:ercise# we will "e configuring 4S= as a T.TP Ser-er. Then we shall "ac& up router 0=<s configuration and restore it to the T.TP Ser-er. .nstructions : 1. Configure 4S= to ha-e an IP 1ddress of =S!.=68.!00.! !((.!((.!((.0 and a default6gateway of =S!.=68.!00.=. 'The 4S= is auto atically ena"led to "e a T.TP Ser-er) $. Ping 4S= fro 0= '. /n 0=# copy your running configuration to the T.TP Ser-er. 2nter the IP 1ddress of the T.TP Ser-er '=S!.=68.!00.!) when pro pted and also enter the filena e when pro pted 3. 5ow restore the configuration you sa-ed on the T.TP Ser-er to 5;01Mon 0=. +eter ine whether 0=Ks 5;01M is currently e pty "y issuing show startup6config co and *. 0estore the configuration fro T.TP Ser-er to 5;01M on 0= "y issuing appropriate copy co and '2nter 4S=Ks IP 1ddress and pre-iously sa-ed file na e when pro pted) 0. Issue show startup6config co and to -iew the restored configuration file in 5;01M DS1:i% !--ress 1<$.10;.$00.$ $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.$00.1 R1Gen!4le R1Hcon ter R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$00.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut R1)con&i"8i&,HenR1H R1H%in" 1<$.10;.$00.$ R1Hco%( runnin"8con&i" t&t% R1Hsho2 st!rtu%8con&i" R1Hco%( t&t% st!rtu%8con&i" R1Hsho2 st!rtu%8con&i"
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'1

*ac&

9.$1 O45ecti1e Test ' : Ans2er the &ollo2in" Euestions

1. 4hat is the co and used to add a "anner to a Cisco router configurationA

!, add "anner 4, "anner otd J c, otd "anner J -, add "anner J $. ?ou want to see the IP address assigned to interface s0. 4hich co assigned to serial interface s0A !, show controllers s0 4, sh running6config c, disp controllers s0 -, disp running6config '. 4hich co and do you use to change the ena"le secret passwordA and will display the IP address

!, ena"le 4, ena"le password T passwordI c, ena"le secret -, ena"le secret password 3. ?ou want to set the "andwidth at serial port s0 to 69000"ps. $ow do you set the "andwidth for interface s0 on router with a hostna e 0outer1A !, 0outer1Jconfig t 0outer'config)Jint s0 0outer'config6if)J"andwidth 69 4, 0outer1Iconfig t 0outer'config)Iint s0 0outer'config6if)I"andwidth 69 c, 0outer1Jconfig t 0outer'config)Jint s0 0outer'config6if)J"andwidth 69000 -, 0outer1Jconfig t 0outer'config)Jint s0 0outer'config6if)Jset "andwidth 69000 *. 1 networ& ad inistrator wants to disa"le C+P on a router interface 'S030) connected to the pu"lic networ&. 4hich of the following co ands can "e used to disa"le C+P on the gi-en interface3portA !, 0outer'config)Jno cdp run 4, 0outer'config)Jinterface s030 0outer'config6if)Jno cdp run c, 0outer'config)Jinterface s030 0outer'config6if)Jno cdp ena"le -, 0outer'config)Jno cdp ena"le 0. 4hich of the following state ents are true a"out Ede"ugF co andA 'Choose ! "est answers)

!, +e"ug co and output ta&es priority o-er other networ& traffic 4, The co and Eundo de"ugF is used to undo any pre-ious de"ug co ands c, The Ede"ug allF co and generates ore output than any other de"ug co and.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'$

-, It is always reco de"ug co and. 9. Match the following@

ended to use Ede"ug allF co

ands instead of selecti-ely issuing

!. Configure an interface ip address 4. 2na"le an interface c. ,a"el an interface

1. 0outerJena"le interface $. 0outer'config6if)Jip address =S!.=68.=.! !((.!((.!((.0 '. 0outer'config)Jip address =S!.=68.=.! !((.!((.!((.0 3. 0outer'config6if)Jno shutdown *. 0outer'config)J"anner otdJInterface toT=J 0. 0outer'config6if)Jdescription Interface to T=

!, a 6I!W "6I=W c6I6 4, a 6I3W "6I9W c6I6 c, a 6I!W "6I9W c6I6 -, a 6I!W "6I9W c6I( ;. 4hich of the following co !, cdp ena"le 4, cdp run c, cdp e:ecute -, cdp e:ecute <. 1s per the figure "elow# the two de-ices are the only cisco de-ices on the networ&. The serial networ& "etween the two de-ices has a as& of !((.!((.!((.!(!. *y referring the output shown# what three state ents are true of these de-icesA ands can "e used to ena"le C+P glo"ally on a routerA

Ne2(orkHsh c-% entr( L +e-ice I+ @ ,ondon 2ntry 1ddress 'es)@ IP 1ddress@ !0.!.!.= Platfor @ cisco !6=0# Capa"ilities@ 0outer Interface@ Serial030# Port I+ 'outgoing port)@ Serial03=
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

''

$oldti e @ =!( sec Toutput o ittedI !, The 5ewyor& serial address is !0.!.!.! 4, The 5ewyor& serial address is !0.!.!.=. c, The ,ondon router is a Cisco !6=0. -, The 5ewyor& router is a Cisco !6=0. e, The C+P infor ation was recei-ed on port Serial030 of the 5ewyor& router. &, The C+P infor ation was sent "y port Serial030 of the ,ondon router. 10. The networ& ad in recei-es the "elow error "e the cause of this errorA R1Hco%( t&t% &l!sh 1ddress or na e of re ote hostGHA=0.=0.=0.= Source filena eGHAc!(006Vs6l.=!!6=0" +estination filena e X c!(006Vs6l.=!!6=0"R 1ccessing tftp@33 =0.=0.=0.=33c!(006Vs6l.=!!6=0"R Y2rror opening tftp@33 =0.=0.=0.=3 'Ti ed out) !, The new I/S i age is too large for the router flash e ory. 4, The T.TP ser-er is unreacha"le fro the router. c, The I/S i age on the T.TP ser-er is corrupt. -, The specified file or folder does not e:ist on T.TP ser-er. e, The dis& space is insufficient on the T.TP ser-er for the I/S i age essage when upgrading the I/S i age# what could

;. E6ERC.SES ON ROUT.N> FUN AMENTALS ;.1 : L!4 E+ercise 1 : .ntro-uction to ./

escri%tion: This la" e:ercise is to learn assigning IP address to routers and pinging "etween the connecti-ity .nstructions: 1. Connect to router 0=# configure its ter inal and set its hostna e to 0outer= $. 2nter interface configuration ode for 2thernet 0 interface and serial 0 interface and set its IP addresses to =0.=.=0.!3!9# =C!.=6.!0.=3!9 and ena"le the interfaces '. Connect to router 0!# configure its ter inal and set its hostna e to 0outer! 3. 2nter interface configuration ode for 2thernet 0 interface and set its IP address to =0.=.=0.=3!9 and ena"le the interface *. Connect to router 03# configure its ter inal and set its hostna e to 0outer3 0. 2nter interface configuration ode for serial 0 interface and set its ip address to =C!.=6.!0.!3!9 and
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

to test

'3

ena"le the interface 9. Ping 0outer!Ks 2thernet interface and 0outer3Ks serial 0 interface fro 0outer= ;. Use the co and show ip interface "rief to -erify that the lines and protocols are up for all 0outer=Ks interfaces <. +isplay 0outer=Ks running configuration to -erify that the IP addresses appear 10. +isplay detailed IP infor ation a"out each interface on 0outer=

R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e Router1 Router1)con&i",H Router1)con&i",Hinter&!ce ethernet 0 Router1)con&i"8i&,H Router1)con&i"8i&,Hi% !--ress 10.1.10.$ $**.$**.$**.0 Router1)con&i"8i&,Hno shut-o2n Router1)con&i"8i&,He+it Router1)con&i",Hinter&!ce seri!l 0 Router1)con&i"8i&,Hi% !--ress 19$.10.$0.1 $**.$**.$**.0 Router1)con&i"8i&,Hno shut R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e Router$ Router$)con&i",H Router$)con&i",Hinter&!ce Ethernet 0 Router$)con&i"8i&,Hi% !--ress 10.1.10.1 $**.$**.$**.0 Router$)con&i"8i&,Hno shut-o2n R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hhostn!#e Router' Router')con&i",Hinter&!ce seri!l 0

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'*

Router')con&i"8i&,Hi% !--ress 19$.10.$0.$ $**.$**.$**.0 Router')con&i"8i&,Hno shut-o2n Router1H%in" 10.1.10.1 Router1H%in" 19$.10.$0.$ Router1Hsho2 i% inter&!ce 4rie& Router1Hsho2 runnin"8con&i" Router1Hsho2 i% inter&!ce *ac&

;.$ : L!4 E+ercise $ : Con&i"urin" St!tic Routes

escri%tion: Configure static route =C!.=6.=.0 S(nt!+: ip route prefi: as& !((.!((.!((.0 with ne:t hop address of =C!.=6.!.=.

as& ZaddressXinterface[ GdistanceH as& for the destination.

%re&i+ #!sk: It is the ip route prefi: and

!--ressMinter&!ce: Use either the ne:t hop router ip or the local router out"ound interface used to reach the destination. -ist!nce: It is the ad inistrati-e distance and an optional para eter. .nstructions: 1. 2nter into Blo"al Configuration Mode $. +isa"le IP 0outing '. 0e6ena"le IP 0outing 3. Configure a static route with destination su" networ& nu "er as =C!.=6.=.0# su"net as& as !((.!((.!((.0#and IP address of the ne:t6hop router in the destination path to =C!.=6.!.= R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hno i% routin" R1)con&i",Hi% routin" R1)con&i",Hi% route 19$.10.1.0 $**.$**.$**.0 19$.10.$.1 Note: Eno ip routingF co routing infor ation. and used in the a"o-e e:ercise is used to re o-e any pre-iously configured *ac&

;.' : L!4 E+ercise ' : .#%le#ent !n- Ver&i( St!tic Routes

escri%tion : This la" de onstrates configuring and i ple enting static routes in a networ&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'0

.nstructions 1. Configure 0= 2thernet interface with IP 1ddress =S!.=68.!0=.=3!9 and serial interface with IP 1ddress =S!.=68.=.=3!9 and ena"le the interfaces $. Configure 0! 2thernet interface with IP 1ddress =S!.=68.!00.=3!9 and serial interface with IP 1ddress =S!.=68.=.!3!9 and ena"le the interfaces '. Configure wor&stations 4S= and 4S! with the IP addresses and default6gateways as shown in the figure 3. Ping fro 0= to 0!# 0= to 4S= and 0! to 4S! and see that they are successful *. Ping fro 4S= to 4S! and see that it fails 0. 5ow set up a static route on 0= and 0! using ip route co and and "y specifying the appropriate destination address and ne:t hop address 9. 5ow ping fro 4S= to 4S! and see that it is success and also -erify that any de-ice can ping any other de-ice R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$01.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hint e 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.$00.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hint s 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n DS1:i% !--ress 1<$.10;.$01.$ $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.$01.1

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'9

DS$:i% !--ress 1<$.10;.$00.$ $**.$**.$**.0 DS$:i% -e&!ult8"!te2!( 1<$.10;.$00.1 R1H%in" R$ R1H%in" DS1 R$H%in" DS$ DS1:%in" 1<$.10;.$00.$ R1)con&i",Hi% route 1<$.10;.$00.0 $**.$**.$**.0 1<$.10;.1.$ R$)con&i",Hi% route 1<$.10;.$01.0 $**.$**.$**.0 1<$.10;.1.1 DS1:%in" 1<$.10;.$00.$ No2 !ll -e1ices c!n %in" !n( other -e1ice *ac& Note: Static routes are those which are anually configured on router and which specifies a path the router should use to reach a destination# typically for s aller networ&s. Co##!n- &or con&i"urin" st!tic route is R1)con&i",Hi% route -estin!tionNnet2orkNH Osu4netN#!skP ./N!--ressNo&Nne+tNho%Nnei"h4or

;.3 : L!4 E+ercise 3 : Con&i"urin" e&!ult Route

escri%tion: ip default6gateway co and is used when ip routing is disa"led on a Cisco router. The ip default6networ& and ip route 0.0.0.0 0.0.0.0 co ands are used to set the gateway of last resort on Cisco routers that ha-e ip routing ena"led. Co##!n- s(nt!+: 1. ip default6gateway Tip addressI 2:@ ip default6gateway =S!.=68.=9.! $. ip default6networ& Tip addressI 2:@ ip default6networ& =S!.=68.=.0 '. ip route 0.0.0.0 0.0.0.0 Tip6addressI 2:@ ip route 0.0.0.0 0.0.0.0 =S!.=68.(.= $ere =S!.=68.(.= is the gateway of last resort to networ& 0.0.0.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

';

.nstructions: 1. 2nter into Blo"al Configuration Mode $. Set the default 5etwor& nu "er as =S!.=68.=C.0 R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi% -e&!ult8net2ork 1<$.10;.19.0 *ac&

;.* : L!4 E+ercise * : .#%le#ent !n- Veri&( e&!ult Routes

escri%tion : This la" de onstrates configuring and i ple enting default routes in a networ&

.nstructions 1. Configure 0= 2thernet interface with IP 1ddress =S!.=68.!0=.=3!9 and serial interface with IP 1ddress =S!.=68.=.=3!9 and ena"le the interfaces $. Configure 0! 2thernet interface with IP 1ddress =S!.=68.!00.=3!9 and serial interface with IP 1ddress =S!.=68.=.!3!9 and ena"le the interfaces '. Configure wor&stations 4S= and 4S! with the IP addresses and default6gateways as shown in the figure 3. Ping fro 0= to 0!# 0= to 4S= and 0! to 4S! and see that they are successful *. Ping fro 4S= to 4S! and see that it fails 0. 5ow set up default routes on 0= and 0! using ip route co and "y specifying appropriate ne:t hop address 9. Ping fro 4S= to 4S! and see that it is successful and also -erify that e-ery de-ice can ping any other de-ice R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$01.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

'<

R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hint e 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.$00.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hint s 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n DS1:i% !--ress 1<$.10;.$01.$ $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.$01.1 DS$:i% !--ress 1<$.10;.$00.$ $**.$**.$**.0 DS$:i% -e&!ult8"!te2!( 1<$.10;.$00.1 R1H%in" R$ R1H%in" 1<$.10;.$01.$ R$H%in" 1<$.10;.$00.$ DS1:%in" 1<$.10;.$00.$ R1)con&i",Hi% route 0.0.0.0 0.0.0.0 1<$.10;.1.$ R$)con&i",Hi% route 0.0.0.0 0.0.0.0 1<$.10;.1.1 DS1:%in" 1<$.10;.$00.$ No2 !ll -e1ices c!n %in" !n( other -e1ice *ac& Note: +efault route specifies a path the router should use if it doesKnt &now how to reach the destination. S(nt!+ to con&i"ure ! -e&!ult route is R1)con&i",Hi% route 0.0.0.0 0.0.0.0 ./N!--ressNo&Nne+tNho%Nnei"h4or Net2ork 0.0.0.0 re%resents !ll net2orks !n- ! #!sk o& !ll 0Qs re%resent !ll hosts in the s%eci&ienet2ork

;.0 : L!4 E+ercise 0 : Con&i"urin" Loo%4!ck .nter&!ce

escri%tion: The purpose of this e:ercise is to configure a loop "ac& interface and test it for connecti-ity. The loop"ac& interface is a logical interface internal to a router. It is not connected to any other de-ice. 1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

30

loop"ac& interface is UP as long as the router is up and running. It is useful in anaging a router as there will always "e at least one interface a-aila"le on the router# irrespecti-e of other physical interfaces. The co and used for assigning loop"ac& interface is@

Router)con&i",Hinter&!ce loo%4!ck Rnu#4erG The nu "er can "e "etween 0 and !=9C98369C 1 loop"ac& interface is auto atically put in Nno shutdownN state when created. $owe-er# you need to assign an ip address to use a loop"ac& interface.

.nstructions: 1. Configure s0 on 0= with ip address and su"net as& as shown in the diagra $. Configure s0 and loop"ac& = on router 0! as shown in the diagra '. Ping loop"ac& = and -erify connecti-ity R1Gen!4le R1Hcon& ter# R1)con&i",H int ser 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)Con&i"8i&,HenR1H R$Gen!4le R$Hcon& ter# R$)con&i",Hint ser 0 R$)con&i"8i&,Hi% !--ress 1<$.1*;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce loo%4!ck 1 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.10 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

31

R$)con&i"8i&,HenR$H R1Gen!4le R1H%in" 1<$.10;.1.10

*ac&

;.9 : L!4 E+ercise 9 : Connecti1it( Tests 2ith Tr!ceroute

escri%tion: Use the traceroute co one de-ice to another .nstructions: 1. Configure routers to the specification gi-en "elow $. 2na"le 0IP routing across all three routers '. .ro 0outer=# ping the directly connected routers and their interfaces which are 0outer! ethernet0 and 0outer3 serial 0 3. ?ou should "e a"le to ping non6directly connected routers as 0IP routing is ena"led *. 5e:t # the traceroute co and is entered which helps in deter ining the path of a pac&et to its destination and to ap the IP addresses that a pac&et tra-els through to get fro

Con&i"ure Routers 1F $F ' to the s%eci&ic!tions "i1en e1ice :ostn!#e Ethernet 0 Seri!l 0 0outer= 0outer= =S!.=68.=0.! 3!9 =S!.=68.!0.= 3!9 0outer! 0outer! =S!.=68.=0.= 3!9 0outer3 0outer3 =S!.=68.!0.!3!9

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

3$

Router1Hcon& ter# Router1)con&i",Hrouter ri% Router1)con&i"8router,Hnet2ork 1<$.10;.10.0 Router1)con&i"8router,Hnet2ork 1<$.10;.$0.0 Router1)con&i"8router,He+it Router1)con&i",He+it Router1H Router$Hcon& ter# Router$)con&i",Hrouter ri% Router$)con&i"8router,Hnet2ork 1<$.10;.10.0 Router$)con&i"8router,He+it Router$)con&i",He+it Router$H Router'Hcon& ter# Router')con&i",Hrouter ri% Router')con&i"8router,Hnet2ork 1<$.10;.$0.0 Router')con&i"8router,He+it Router')con&i",He+it Router'H Router1H%in" 1<$.10;.10.1 Router1H%in" 1<$.10;.$0.$ Router$H%in" 1<$.10;.$0.$ Router$Htr!ceroute 1<$.10;.$0.$ *ac&

;.; : L!4 E+ercise ; : Con&i"urin" R./

escri%tion: This e:ercise helps in understanding 0IP Configuration. The router rip co and selects 0IP as the routing protocol. The networ& co and assigns a aVor networ& nu "er that the router is directly connected to. The 0IP routing process associates interface addresses with the ad-ertised networ& nu "er and "egins 0IP pac&et processing on the specified interfaces. .nstructions: 1. 2nter into Blo"al Configuration Mode $. 2na"le 0IP routing on the router '. 1ssociate networ& =.0.0.0 in the 0IP routing process R1Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

3'

R1Hcon&i"ure ter#in!l R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 1.0.0.0 *ac&

;.< : L!4 E+ercise < : B!sic E.>R/ Routin"

escri%tion: Configure "asic 2IB0P routing as per the instructions pro-ided "elow.

.nstructions: 1. Configure the IP 1ddress of all the interfaces "ased on the a"o-e figure# and "ring all the interfaces to up state $. 2nter glo"al configuration ode# and ena"le 2IB0P routing on 0= 'currently 1utono ous nu "er 0 is supported). 1ssociate networ&s =S!.=68.=.0# =S!.=68.!.0# and =S!.=68.3.0 in the routing process '. 2nter glo"al configuration ode# and ena"le 2IB0P routing on 0! 'currently 1utono ous nu "er 0 is supported). 1ssociate networ&s =S!.=68.=.0# =S!.=68.!.0# and =S!.=68.3.0 in the routing process. 3. Chec& the connecti-ity using ping co and fro 4S== to S= of 0! R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hrouter ei"r% 0 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.$.0 R1)con&i"8router,Hnet2ork 1<$.10;.'.0 R$Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

33

R$Hcon&i"ure ter#in!l R$)con&i",Hrouter ei"r% 0 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 R$)con&i"8router,Hnet2ork 1<$.10;.'.0 DS11:%in" 1<$.10;.$.$ *ac&

;.10 O45ecti1e Test 3 : Ans2er the &ollo2in" Euestions

1. 4hich of the following are routing protocolsA GSelect all that applyH !, 0IP 4, TCP c, IB0P -, IP $. ?ou ha-e installed TCP3IP protocol stac& on your co puter. 5ow you want to chec& whether the TCP3IP stac& is installed properly "y pinging the local loop"ac& address. 4hich of the following is used for local loop"ac&A !, =.0.0.0 4, =!C.0.0.= c, !((.!((.!((.!(( -, !90.0.0.0 '. Consider the co and@ ip route =6(.99.39.0 !((.!((.!((.0 =6(.99.(6.(. 4hich of the following is trueA

!, =6(.99.(6.( is the default gateway address 4, =6(.99.(6.( is the destination IP address c, =6(.99.39.0 is the default gateway address -, The co and sets a dyna ic route. 3. Match the following@ A. sh hosts B. sh interface s0 C. ping 1. Sends and ICMP echo essage $. 2na"les you to loo& at the encapsulation type '. +isplays the host na e's) and related IP address'es)

!, 166I3# *66I=# C66I! 4, 166I=# *66I3# C66I! c, 166I!# *66I=# C66I3 -, 166I3# *66I!# C66I=
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

3*

*. 4hat is the co

and synta: for creating a static route in a Cisco routerA

!, ip route 4, route ip T default\gatewayI c, ip route T default\gatewayI -, ip route T default\gatewayI 0. 1 "ranch office is connected to the ISP as shown in the figure. 4hich router is configured with a static routeA !, 0= 4, 0! c, 03 -, ISP 0outer ost li&ely to "e

9. ?ou need to configure a static route on 0outer1 to networ& =S!.!09.=.69. 4hat is the co need to gi-eA

and that you

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

30

!, 0outer1'config)Jip route =S!.!09.=.69 !((.!((.!((.!90 =S!.!09.=.! 4, 0outer*'config)Jip route =S!.!09.=.69 !((.!((.!((.!90 =S!.!09.=.! c, 0outer1'config)Jip route =S!.!09.=.! !((.!((.!((.!(! =S!.!09.=.69 -, 0outer*'config)Jip route =S!.!09.=.! !((.!((.!((.!(! =S!.!09.=.69 ;. 1 "ranch office is connected to the Internet using a networ& de-ice as shown in the figure. 4hich networ& de-ice fulfills the re7uire entA !, Switch with two 2thernet interface 4, 0outer with one 2thernet and one Serial interfaces c, Mode with two serial interfaces -, 0outer with two 2thernet interfaces

<. 4hich two state ents are true a"out the co

and ip route =C!.=6.9.0 !((.!((.!((.0 =S!.=68.=6.=A

a) It esta"lishes a static route to the =C!.=6.9.0 networ&. ") It esta"lishes a static route to the =S!.=68.=6.0 networ&. c) It configures the router to send any traffic for any un&nown destination to the =C!.=6.9.0 networ&. d) It configures the router to send any traffic for an un&nown destination out the interface with the address =S!.=68.=6.=. e) It uses the default ad inistrati-e distance.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

39

<. E6ERC.SES ON R./?E.>R/ Routin" Scen!rios <.1 : L!4 E+ercise 1 : R./ Routin" Con&i"ur!tion Scen!rio
escri%tion: The purpose of this e:ercise is to configure 0IP on all the de-ices and test for ping and trace co ands. The router rip co The networ& co and selects 0IP as the routing protocol. and assigns a aVor networ& nu "er that the router is directly

connected to. The 0IP routing process associates interface addresses with the ad-ertised networ& nu "er and "egins 0IP pac&et processing on the specified interfaces.

.nstructions: 1. 1ssign the IP address of all the de-ices as gi-en "elow $. *ring all the interfaces to up '. Configure 0IP on all the de-ices 3. .ro 0= issue a ping and trace co and to 0! and 03

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

3;

e1ice .nter&!ce ./ A--ress 0= S0 S= 0! S0 S= 03 S0 S= =S!.=68.=.= =S!.=68.3.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.! =S!.=68.!.!

M!sk !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

On R1: R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 1 R1)con&i"8i&,Hi% !--ress 1<$.10;.'.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.'.0 On R$: R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,H no shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1<$.10;.$.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri%
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

3<

R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 On R': R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1<$.10;.'.$ $**.$**.$**.0 R')con&i"8i&,H no shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce seri!l 1 R')con&i"8i&,Hi% !--ress 1<$.10;.$.$ $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,Hnet2ork 1<$.10;.$.0 On R1: R1H%in" 1<$.10;.$.$ R1H%in" 1<$.10;.$.1 R1Htr!ce 1<$.10;.$.$ R1Htr!ce 1<$.10;.$.1 *ac&

<.$ : L!4 E+ercise $ : Vie2in" ./ R./ .n&or#!tion

escri%tion: The purpose of this e:ercise is to -iew i portant infor ation on IP 0IP. Show ip route co and displays the current state of the routing ta"le and this co used in 2M2C ode. and is to "e

Show ip protocols co and displays the para eters and current state of the acti-e routing protocol processes and this co and is to "e used in 2M2C ode. .nstructions: 1. 2nter glo"al configuration ode# and ena"le 0IP routing on the router $. 1ssociate networ& =C!.=6.0.0 with 0IP routing process '. Issue the co and that displays all entries in the 0outing Ta"le 3. Type the co and that displays infor ation a"out the IP routing protocols R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce s 0 R1)con&i"8i&,Hi% !--ress 19$.10.1.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*0

R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 19$.10.1.0 R1)con&i"8router,He+it R1)con&i",He+it R1Hsho2 i% route R1Hsho2 i% %rotocols *ac&

<.' : L!4 E+ercise ' : Con&i"urin" R./ V$

escri%tion: This e:ercise ena"les you to configure si ple 0IP ;! routing.

.nstructions: 1. Configure router 0= interfaces 20# S0# and S= for IP address# and su"net as& as shown in the networ& diagra . 2nsure that the interfaces are up "y issuing Nno shutdownN co and. Configure 0IP -ersion! routing on the router for networ&s =0.0.0.0 and =S!.=68.=.0 $. Configure router 0! interfaces 20# S0# and S= for IP address# and su"net as& as shown in the networ& diagra . 2nsure that the interfaces are up "y issuing Nno shutdownN co and. Configure 0IP -ersion! routing on the router for networ&s =0.0.0.0 and =S!.=68.=.0 '. Configure router 03 interfaces S0# and S= for IP address# and su"net as& as shown in the networ& diagra . 2nsure that the interfaces are up "y issuing Nno shutdownN co and. Configure 0IP -ersion! routing on the router for networ&s =0.0.0.0 and =S!.=68.=.0

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*1

R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% !--ress 10.1.1.1 $**.$**.0.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.1<$ R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 1 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1$< $**.$**.$**.1<$ R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 10.0.0.0 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,H1ersion $ R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 10.$.1.1 $**.$**.0.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.1<$ R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.0* $**.$**.$**.1<$ R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 10.0.0.0 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,H1ersion $ R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1<$.10;.1.1'0 $**.$**.$**.1<$ R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce seri!l 1 R')con&i"8i&,Hi% !--ress 1<$.10;.1.00 $**.$**.$**.1<$ R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 10.0.0.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*$

R')con&i"8router,Hnet2ork 1<$.10;.1.0 R')con&i"8router,H1ersion $ *ac&

<.3 : L!4 E+ercise 3 : R./$ Routes

escri%tion : This la" e:ercise de onstrates 0IP -ersion! configuration and e-aluates connecti-ity "etween the de-ices. The router rip -ersion ! co and selects 0IP ;! as the 0outing Protocol. The networ& co and assigns a aVor networ& nu "er that the router is directly connected to.

.nstructions : 1. Configure 0= with 2thernet 0 and serial 0 interfaces and assign IP 1ddress =S!.=68.=0=.= !((.!((.!((.0 and =S!.=68.=.= !((.!((.!((.0 respecti-ely and "ring all the interfaces to up $. Configure 0IP -! routing protocol on 0= with proper networ& state ents '. Configure 0! with 2thernet 0 and serial 0 interfaces and assign IP 1ddress =S!.=68.=00.= !((.!((.!((.0 and =S!.=68.=.! !((.!((.!((.0 respecti-ely and "ring all the interfaces to up 3. Configure 0IP -! routing protocol on 0! with proper networ& state ents *. Configure 4S= with IP 1ddress =S!.=68.=0=.! !((.!((.!((.0 and default6gateway of =S!.=68.=0=.= and 4S! with IP 1ddress =S!.=68.=00.! !((.!((.!((.0 and a default6 gateway of =S!.=68.=00.= 0. Ping "etween any de-ices to test connecti-ity R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.101.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,H1ersion $
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*'

R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.101.0 R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,H1ersion $ R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,Hnet2ork 1<$.10;.100.0 DS1:i% !--ress 1<$.10;.101.$ $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.101.1 DS$:i% !--ress 1<$.10;.100.$ $**.$**.$**.0 DS$:i% -e&!ult8"!te2!( 1<$.10;.100.1 Check : All -e1ices c!n %in" !n( other -e1ice *ac&

<.* : L!4 E+ercise * : E.>R/ Routin" Con&i"ur!tion Scen!rio

escri%tion: The purpose of this e:ercise is to configure 2IB0P on all the de-ices and test for ping and trace co ands. The router eigrp 0 co The networ& co and gi-en in the la" "elow selects 2IB0P as the routing protocol. aVor networ& nu "er that the router is directly connected to.

and assigns a

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*3

.nstructions: 1. 1ssign the IP address of all the de-ices as gi-en "elow e1ice .nter&!ce ./ A--ress 0= S0 S= 0! S0 S= 03 S0 S= =S!.=68.=.= =S!.=68.3.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.! =S!.=68.!.! M!sk !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

$. *ring all the interfaces to up '. Configure 2IB0P on all the +e-ices# Use 1utono ous Syste nu "er 0 3. .ro 0= issue ping and trace co and to 0!6S= and 036S= interfaces and chec& the connecti-ity
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

**

On R1: R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 1 R1)con&i"8i&,Hi% !--ress 1<$.10;.'.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ei"r% 0 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.'.0 On R$: R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,H no shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1<$.10;.$.1 $**.$**.$**.0 R$)con&i"8i&,H no shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ei"r% 0 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 On R': R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1<$.10;.'.$ $**.$**.$**.0 R')con&i"8i&,H no shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce seri!l 1 R')con&i"8i&,Hi% !--ress 1<$.10;.$.$ $**.$**.$**.0 R')con&i"8i&,H no shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter ei"r% 0 R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,Hnet2ork 1<$.10;.$.0 On R1:

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*0

R1H%in" 1<$.10;.$.$ R1H%in" 1<$.10;.$.1 R1Htr!ce 1<$.10;.$.$ R1Htr!ce 1<$.10;.$.1 *ac&

<.0 : L!4 E+ercise 0 : E.>R/ Trou4leshootin" L!4 Scen!rio

escri%tion: The purpose of this la" is to trou"leshoot 2IB0P routing protocol and chec& for connecti-ity.

.nstructions: =.1ssign IP address of all the de-ices as gi-en "elow.

e1ice .nter&!ce S0 S= 0! S0 S= 03 S0 S= ./ A--ress =S!.=68.=.= =S!.=68.3.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.! =S!.=68.!.! M!sk !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

0=

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*9

!.*ring all the interfaces to up 3.Configure 2IB0P on all the de-ices use 1utono ous Syste nu "er ==!

9. Ping 03 fro 0= and 0! you will see ping failure. Issue show running6config co and on 03 to chec& the output. .ro the output we can o"ser-e that 03 router was wrongly configured with an autono ous nu "er '1S) of =!. 4hen the 1S nu "ers a ong routers are is atched# no adVacency is for ed. '?ou should chec& the 1S nu "ers on other routers for sure). 1ll routers in the sa e networ& ust use the sa e 1S nu "er.

On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H router ei"r% 11$ R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.'.0 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$Gen!4le R$Hcon& ter# R$)con&i",Hrouter ei"r% 11$ R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R'Gen!4le R'Hcon& ter# R')con&i",Hrouter ei"r% 1$ R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,Hnet2ork 1<$.10;.$.0 R')con&i"8router,He+it R')con&i",He+it R'H%in" R$ Trying R2 % Destination unreachable; gateway or host down R'H%in" R1 Trying R1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*;

% Destination unreachable; gateway or host down R'Hsho2 runnin"8con&i" To sol1e this %ro4le#F 2e si#%l( re8con&i"ure router R' 2ith &ollo2in" co##!n-s. R'Gen!4le R'Hcon& ter# R')con&i",Hno router ei"r% 1$ R')con&i",Hrouter ei"r% 11$ R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,Hnet2ork 1<$.10;.$.0 R')con&i"8router,Hno !uto8su##!r( R')con&i"8router,He+it R')con&i",He+it R'H%in" R1 R'H%in" R$ R'Hsho2 runnin"8con&i" No2 the 2hole net2ork 2ill 2ork 2ell. @ou shoul- check !"!in 2ith %in" co##!n- &ro# router R' to other routers. *ac&

<.9 : L!4 E+ercise 9 : E.>R/ Sho2 Co##!n-s

escri%tion : This la" e:ercise de onstrates configuring 2nhanced IB0P 0outing Protocol and also de onstrates the -arious 2IB0P show co ands.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

*<

.nstructions : 1. 1ssign the IP 1ddresses of all the de-ices as per the ta"le "elow e1ice .nter&!ce ./ A--ress 0= 20 S0 0! 03 20 S0 S= 09 S0 =S!.=68.=.= M!sk !((.!((.!((.0

=S!.=68.=00.= !((.!((.!((.0 =S!.=68.=.! !((.!((.!((.0

=S!.=68.=00.! !((.!((.!((.0 =S!.=68.!00.= !((.!((.!((.0 =S!.=68.!00.! !((.!((.!((.0

$. *ring all the interfaces to up '. Configure 2IB0P on all the de-ices# use 1utono ous Syste 5u "er 0 3. /n 09# issue show ip protocols co and which displays the dyna ic routing protocols running on 09 *. /n 0=# issue show ip eigrp neigh"ors co and which displays its eigrp neigh"ors 0. /n 0=#issue show ip eigrp traffic co and which displays the statistics for 2IB0P pac&ets sent and recei-ed# and show ip eigrp topology co and which displays 2IB0P topology data"ase 9. .ro 09# ping 0= and 0! to chec& connecti-ity and see that the ping is successful R1)con&i",Hrouter ei"r% 0 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.100.0 R$)con&i",Hrouter ei"r% 0 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R')con&i",Hrouter ei"r% 0 R')con&i"8router,Hnet2ork 1<$.10;.100.0 R')con&i"8router,Hnet2ork 1<$.10;.$00.0 R3)con&i",Hrouter ei"r% 0 R3)con&i"8router,Hnet2ork 1<$.10;.$00.0 R3)con&i"8router,He+it R3)con&i",He+it R3Hsho2 i% %rotocols R3Hsho2 i% route
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

00

R1Gen!4le R1Hsho2 i% ei"r% nei"h4ors R1Hsho2 i% ei"r% to%olo"( R3Gen!4le R3H%in" 1<$.10;.100.1 R3H%in" 1<$.10;.1.$ *ac&

<.; : O45ecti1e Test 3 : Ans2er the &ollo2in" Euestions

1. ?ou ha-e configured rip on your IP networ&. 5ow you want to re o-e rip entries. 4hat is the co and used for thisA !, stop ip rip 4, stop router rip c, no router rip -, no rip $. 4hich two authentication sche es does PPP supportA GSelect !H !, P1P 4, 0adius c, C$1P -, ;erisign '. ?ou are configuring PPP on your router. 4hich authentication sche e uses 36way handsha&eA !, P1P 4, C$1P c, T1C1CS -, 01+IUS 3. 0IP uses \\\\\\\\\\\\ algorith !, ,in& state 4, +istance -ector c, IS6IS -, 1S *. 4hat is the a:i u hop count supported "y 0IPA

!, ( 4, =( c, !(( -, (=!

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

01

0. 0IP is a classful routing and does not allow prefi: routing. )True?F!lse, 9. ?ou ha-e configure IP 0IP on your networ&. ?ou want to see the routing ta"le. 4hat is the co and you can use for this purposeA !, show IP protocol 4, show IP route c, show IP interface -, de"ug IP 0IP ;. ?ou want to -erify the encapsulation type "eing used at +ata ,in& layer for interface s0. 4hich co and can you useA !, sh ip protocol 4, sh int s0 c, sh ip interface -, sh processes <. 4hich of the following are &ey characteristics of PPPA 'Choose three) !, can "e used o-er analog circuits 4, aps ,ayer ! to ,ayer 3 address c, encapsulates se-eral routed protocols -, supports IP only e, pro-ides error correction

10. E+ercises on OS/F 10.1 : L!4 E+ercise 1 : OS/F Con&i"ur!tion in Sin"le Are!
escri%tion: In /SP. single area# you configure /SP. networ& with an area I+. The configuration e:a ple uses four routers wor&ing in area !00.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0$

./ A--ress Assi"n#ent T!4le 0=6s0 0!6w03s0 0!6w03s= 0!6w=3s0 036s0 096s0 =S!.=68.=.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.= =S!.=68.!.! =S!.=68.3.! !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

.nstructions: 1. *ased on the gi-en networ& configuration# use appropriate co networ&s =S!.=68.=.0# =S!.=68.!.0# =S!.=68.3.0 within area !00 $. Ping 03 and 09 fro 0= and -erify connecti-ity '. Ping 0= and 03 fro 09 and -erify connecti-ity ands to configure /SP. in

Note : ?ou need to assign the IP addresses and a&e the interfaces up '"y issuing no shutdown co ands at appropriate interfaces) for all the de-ices "efore proceeding with the following co ands On R1: R1)con&i",Hrouter os%& 1 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$)con&i",Hrouter os%& 1 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R')con&i",Hrouter os%& 1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0'

R')con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R')con&i"8router,He+it R')con&i",He+it R'H On R3: R3)con&i",Hrouter os%& 1 R3)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R3)con&i"8router,He+it R3)con&i")He+it R3H On R1: R1H%in" R' R1H%in" R3 On R3: R3H%in" R1 R3H%in" R' *ac&

10.$ : L!4 E+ercise $ : OS/F Trou4leshootin" L!4 Scen!rio81

escri%tion: In /SP. single area# you configure /SP. networ& with an area I+. The configuration e:a ple uses four routers wor&ing in area !00.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

03

./ A--ress Assi"n#ent T!4le 0=6s0 0!6w03s0 0!6w03s= 0!6w=3s0 036s0 096s0 =S!.=68.=.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.= =S!.=68.!.! =S!.=68.3.! !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

.nstructions: 1. 1ssign IP 1ddresses on all the de-ices as per the a"o-e ta"le and "ring all the interfaces to up state $. /n 0= ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0 '. /n 0! ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.!.0 and =S!.=68.3.0 3. /n 03 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.!.0 *. /n 09 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.3.0 0. Ping 0= fro 09# you will see ping failure 9. Ping 0! fro 09# you will see ping success 'This i plies connecti-ity failure fro 0! to 0=) ;. Issue co and on 0! to see /SP. data"ase <. ?ou will see that there is no lin& state entry for networ& =S!.=68.=.0# so ena"le /SP. routing on 0! for this networ& 10. Ping 0= fro 09# you will see ping success Note : ?ou need to assign the IP addresses and a&e the interfaces up '"y issuing no shutdown co ands at appropriate interfaces) for all the de-ices "efore proceeding with the following co ands On R1: R1)con&i",Hrouter os%& 1 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$)con&i",Hrouter os%& 1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0*

R$)con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R')con&i",Hrouter os%& 1 R')con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R')con&i"8router,He+it R')con&i",He+it R'H On R3: R3)con&i",Hrouter os%& 1 R3)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R3)con&i"8router,He+it R3)con&i",He+it R3H R3H%in" R1 R3H%in" R$ On R$: R$HSho2 i% os%& -!t!4!se R$Hcon&i"ure ter#in!l R$)con&i",Hrouter os%& 1 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R$)con&i"8router,He+it R$)con&i",He+it R$H On R3: R3H%in" R1 *ac&

10.' : L!4 E+ercise ' : OS/F Trou4leshootin" L!4 Scen!rio8$

escri%tion: In /SP. single area# you configure /SP. networ& with an area I+. The configuration e:a ple uses four routers wor&ing in area !00.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

00

./ A--ress Assi"n#ent T!4le 0=6s0 0!6w03s0 0!6w03s= 0!6w=3s0 036s0 096s0 =S!.=68.=.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.= =S!.=68.!.! =S!.=68.3.! !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

.nstructions: 1. 1ssign IP address of all the de-ices as per the a"o-e ta"le and "ring all the interfaces to up state 'e:cept 036s0) $. /n 0= ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0 '. /n 0! ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0#
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

09

=S!.=68.!.0 and =S!.=68.3.0 3. /n 03 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.!.0 *. /n 09 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.3.0 0. Ping 03 fro 0=# you will see ping failure 9. Ping 0! fro 0=# you will see ping success 'This i plies connecti-ity failure fro 0= to 03) ;. Issue co and on 03 to see /SP. interfaces status <. ?ou will see that serial 0 is down so "ring it to up state 10. Ping 03 fro 0=# you will see ping success Note: ?ou need to assign the IP addresses and a&e the interfaces up '"y issuing no shutdown co ands at appropriate interfaces) for all the de-ices "efore proceeding with the following co ands On R1: R1)con&i",Hrouter os%& 1 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$)con&i",Hrouter os%& 1 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R')con&i",Hrouter os%& 1 R')con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! $00 R')con&i"8router,He+it R')con&i",He+it R'H On R3: R3)con&i",Hrouter os%& 1 R3)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! $00 R3)con&i"8router,He+it R3)con&i",He+it R3H On R1:

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0;

R1H%in" R' R1H%in" R$ On R': R'Hsho2 i% os%& inter&!ce R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",He+it R'Hsho2 i% os%& inter&!ce On R1: R1H%in" R' *ac&

10.3 : L!4 E+ercise 3 : OS/F Trou4leshootin" L!4 Scen!rio8'

escri%tion: The purpose of this la" is to trou"leshoot /SP. routing protocol with an area I+ !00 and chec& for connecti-ity.

./ A--ress Assi"n#ent T!4le

Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0<

0=6s0 0!6w03s0 0!6w03s= 0!6w=3s0 036s0 096s0

=S!.=68.=.= =S!.=68.=.! =S!.=68.=.( =S!.=68.=.S =S!.=68.=.6 =S!.=68.=.=0

!((.!((.!((.!(! !((.!((.!((.!(! !((.!((.!((.!(! !((.!((.!((.!(! !((.!((.!((.!(! !((.!((.!((.!(!

.nstructions: =. 1ssign IP address of all the de-ices as per the a"o-e ta"le and "ring all the interfaces to up !. /n 0= ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0 3. /n 0! ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0#=S!.=68.=.9#=S!.=68.=.8 9. /n 03 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.0 (. /n 09 ena"le /SP. routing with process = and area as !00 for the networ& =S!.=68.=.8 6. Ping 03 fro C.Ping 0! fro 0!# you will see ping failure 0= and 09# you will see ping success and on 03 to chec& the output.

8. Issue show running6config co On R1:

R1Gen!4le R1Hcon& ter# R1)con&i",H router os%& 1 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.' !re! $00 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$Gen!4le R$Hcon& ter# R$)con&i",Hrouter os%& 1 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.' !re! $00
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

90

R$)con&i"8router,Hnet2ork 1<$.10;.1.3 0.0.0.' !re! $00 R$)con&i"8router,Hnet2ork 1<$.10;.1.; 0.0.0.' !re! $00 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R'Gen!4le R'Hcon& ter# R')con&i",Hrouter os%& 1 R')con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.' !re! $00 R')con&i"8router,He+it R')con&i",He+it R'H%in" R$ Trying R2 % Destination unreachable; gateway or host down R'H%in" R1 Trying R1 % Destination unreachable; gateway or host down On R3: R3Gen!4le R3Hcon& ter# R3)con&i",Hrouter os%& 1 R3)con&i"8router,H net2ork 1<$.10;.1.; 0.0.0.' !re! $00 R3)con&i"8router,He+it R3)con&i",He+it 5otice that networ& and wild card as& on 03 are =S!.=68.=.0 0.0.0.3# which is e7ui-alent to =S!.=68.=.0 !((.!((.!((.!(! in ter s of su"net as&. Therefore this su" networ& Us range is fro =S!.=68.=.06=S!.=68.=.3 "ut IP address of s0 interface of 03 router is =S!.=68.=.6# which do not "elong to this range. This is the reason why /SP. did not recogni%e s0 interface of 03 router as a part of area !00. So we need to find a su" networ& that s0 interface "elongs to. IP address of S0 interface@ =S!.=68.=.6330 Su"net as&@ 330 ] ==== ====.==== ====.==== ====.==== ==00 Incre ent@ 9 5etwor& address 'which IP address of s0 interface "elongs to)@ =S!.=68.=.9 '"ecause 9 ^ = ] 9 T (). So we ust use this networ& instead of =S!.=68.=.0 Correct configuration on 03 router is R'Gen!4le R'Hcon& ter# R')con&i",Hrouter os%& 1 R')con&i"8router,Hno net2ork 1<$.10;.1.0 0.0.0.' !re! $00 R')con&i"8router,Hnet2ork 1<$.10;.1.3 0.0.0.' !re! $00 R')con&i"8router,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

91

R')con&i",He+it R'Hsho2 runnin"8con&i" R'Hsho2 i% %rotocols R'H%in" R1 R'H%in" R$ 5ow ping 03 fro 0!# you will see ping success. *ac&

10.* : L!4 E+ercise * : OS/F Routin" Con&i"ur!tion Scen!rio

escri%tion: The purpose of this e:ercise is to configure /SP. on all the de-ices and test for ping and trace co ands. The router ospf = co and gi-en in the la" "elow selects /SP. as the routing protocol.

.nstructions: 1. 1ssign the IP address of all the de-ices as gi-en "elow e1ice .nter&!ce ./ A--ress M!sk

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9$

0=

S0 S=

=S!.=68.=.= =S!.=68.3.= =S!.=68.=.! =S!.=68.!.= =S!.=68.3.! =S!.=68.!.!

!((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

0!

S0 S=

03

S0 S=

$. *ring all the interfaces to up '. Configure /SP. on all the +e-ices# Use Process I+ = and 1utono ous Syste nu "er 0 3. .ro 0= issue ping and trace co ands to 0!6S= and 036S= interfaces and chec& the connecti-ity On R1: R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 1 R1)con&i"8i&,Hi% !--ress 1<$.10;.'.1 $**.$**.$**.0 R1)con&i"8i&,H no shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter os%& 1 R1)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! 0 R1)con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! 0 On R$: R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,H no shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1<$.10;.$.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter os%& 1 R$)con&i"8router,Hnet2ork 1<$.10;.1.0 0.0.0.$** !re! 0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9'

R$)con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! 0 On R': R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1<$.10;.'.$ $**.$**.$**.0 R')con&i"8i&,H no shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce seri!l 1 R')con&i"8i&,Hi% !--ress 1<$.10;.$.$ $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter os%& 1 R')con&i"8router,Hnet2ork 1<$.10;.'.0 0.0.0.$** !re! 0 R')con&i"8router,Hnet2ork 1<$.10;.$.0 0.0.0.$** !re! 0

On R1: R1H%in" 1<$.10;.$.$ R1H%in" 1<$.10;.$.1 R1Htr!ce 1<$.10;.$.$ R1Htr!ce 1<$.10;.$.1 *ac&

10.0 O45ecti1e Test 0 : Ans2er the &ollo2in" Euestions

1. 4hich of the following protocols does not support auto atic su !, 0IP -= 4, 0IP -! c, 2IB0P -, /SP. $. 4hich para eters are used to calculate the cost of /SP. path in Cisco routersA !, *andwidth# 5u "er of $ops 4, *andwidth only c, Tic&s -, *andwidth# MTU# 0elia"ility# +elay# and ,oad '. 4hich of the following state ents are true a"out /SP. process identifierA 'Choose ! "est answers) ari%ation of routesA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

93

!, It is glo"ally significant 4, It is locally significant c, It is re7uired to identify a uni7ue instance of /SP. data"ase -, It is re7uired to identify /SP. area uni7uely 3. 4hat is the default inter-al for sending hello pac&ets on use /SP.A !, =0 4, !0 c, 30 -, 60 *. 4hich of the following is true of /SP. areaA !, 1n /SP. area is a collection of stu""y and non6stu""y areas. 4, 1n /SP. area is a collection of networ&s and routers that has the sa e area identification c, 1n /SP. area is a collection of networ&s and routes that has the sa e router Id -, 1n /SP. area is a collection of routers that ha-e utually e:clusi-e area identifications 0. Up to how any e7ual6cost route entries are aintained in the /SP. routing ta"leA ulti6access networ&s configured to

!, ! 4, 9 c, 6 -, =0 9. 1n /SP. point6to6 ultipoint networ& is configured as shown in the i age "elow. $ost 1 is a"le to ping $ost * as well as $ost C. $owe-er# hosts * and C are not a"le to ping each other. 4hat is the li&ely pro"le A !, The IP su"net as& on S030 of 0T1 is incorrect 4, Split hori%on is pre-enting route propagation fro 0T* to 0TC c, +efault gateway of $ost * is wrongly configured -, $ost C IP address3su"net as& is incorrect

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9*

;. 4hat co and is used to display the contents of the topological data"ase that pro-ides the 0outer I+ and Process I+A !, show ip ospf 4, show ip route c, show ip protocol -, show ip ospf data"ase <. 4hich of the following state ents "est descri"e the process identifier that is used to run /SP. on a routerA !, It is an optional para eter re7uired only if ultiple /SP. processes are running on the router 4, It is locally significant c, It is needed to identify a uni7ue instance of an /SP. data"ase -, 1ll routers in the sa e /SP. area ust ha-e the sa e process
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

90

I+ if they are to e:change routing infor ation 10. 4hich three features are of /SP. routing protocolA 'Choose three) !, Con-erge 7uic&ly 4, /SP. is a classful routing protocol c, Identify the "est route "y use of cost -, *efore e:changing routing infor ation# /SP. routers find out neigh"ors 11. /SP. routing uses the concept of areas. 4hat are the characteristics of /SP. areasA 'Choose two) a) 2ach /SP. area re7uires a loop"ac& interface to "e configured ") 1reas ay "e assigned any nu "er fro 0 to 6((3( c) Multiple areas are not re7uired for hierarchical /SP. networ&s d) Multiple /SP. areas ust connect to area 0 e) Single area /SP. networ&s ust "e configured in area =

11. E+ercises on Access8Lists 11.1 : L!4 E+ercise 1 : Cre!tin" ! St!n-!r- Access List
escri%tion: Create an access6list and configure the sa e according to a gi-en set of rules. .nstructions: 1. 2nter into Blo"al Configuration Mode $. Create an IP access6list to per it traffic fro address =S!.=68.=0.(# and deny all other traffic. Use = as IP access6list nu "er. '. Create an access6list ! that "loc&s only the single IP address =S6.=9(.!(.( 3. Type the co and used for per itting pac&ets fro any IP 1ddress. Use 1ccess6list nu "er as ! R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",H!ccess8list 1 %er#it 1<$.10;.10.* R1)con&i",H!ccess8list $ -en( 1<0.13*.$*.* R1)con&i",H!ccess8list $ %er#it !n(

*ac&

11.$ : L!4 E+ercise $ : A%%l(in" !n Access List to !n .nter&!ce

escri%tion: 1pply access6list = to interface 2thernet 0 on 0=. 1pply the access6list on "oth
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

99

inco ing and outgoing interfaces. .nstructions: 1. 2nter into Interface Configuration Mode. Use the interface 2thernet 0 $. Use no shut down co and on 2thernet 0 interface '. 1ssu ing that an access6list = is created# apply it to the interface 2thernet 0 as an in"ound access6list 3. 1pply an access6list = to interface 2thernet 0 as an out"ound access6list R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,Hi% !ccess8"rou% 1 in R1)con&i"8i&,Hi% !ccess8"rou% 1 out *ac&

11.' : L!4 E+ercise ' : Vie2 Access List Entries

escri%tion: Configure standard access6list J= to per it ip =S!.=68.=0.( and -iew access6list entries "y using appropriate show co and. .nstructions: 1. 2nter into Blo"al Configuration Mode $. Create an 1ccess6list that per its traffic fro address =S!.=68.=0.(. Use access6list nu "er =. 2:it fro the glo"al configuration ode '. Use the show co and to see the 1ccess6list R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",H!ccess8list 1 %er#it 1<$.10;.10.* R1)con&i",He+it R1Hsho2 !ccess8list *ac&

11.3 : L!4 E+ercise 3 : St!n-!r- Access List Scen!rio L!4 1

escri%tion: Configure standard access6list according to a gi-en set of conditions.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9;

.nstructions: 1. $osts on 0outer 03 should not "e a"le to access hosts on 0! e0 $. /nly 4S== on 0= can access hosts on 0! '. 1ll other co unication is allowed. Use standard access lists with 1C, J= 3. 1pply the access6listJ= on Serial interfaces s0 and s= R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",H!ccess8list 10 -en( 10.'.1.0 0.0.0.$** R$)con&i",H!ccess8list 10 %er#it host 10.1.1.$ R$)con&i",H!ccess8list 10 -en( 10.1.1.0 0.0.0.$** R$)con&i",H!ccess8list 10 %er#it !n( R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !ccess8"rou% 1 in R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !ccess8"rou% 1 in R$)con&i"8i&,He+it *ac&

11.* : L!4 E+ercise * : St!n-!r- Access List Scen!rio L!4 $

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

9<

escri%tion: Configure a standard access6list according to a gi-en set of conditions.

.nstructions: 1. $osts on 0= should not "e a"le to co unicate with hosts on 03 e0 $. $ost 43! on 03 can co unicate only with other hosts on 03 e0 '. $osts on 0= should "e a"le to co unicate with hosts on 0! e0 R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",H!ccess8list '0 -en( 10.1.1.0 0.0.0.$** R')con&i",H!ccess8list '0 -en( host 10.'.1.' R')con&i",H!ccess8list '0 -en( !n( R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",H!ccess8list $0 %er#it 10.1.1.0 0.0.0.$** R$)con&i",H!ccess8list $0 -en( !n( *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;0

11.0 : L!4 E+ercise 0 : Router Access List Con&i"ur!tion

escri%tion: Configure according to a gi-en set of instructions.

.nstructions: 1. 2nter into glo"al configuration ode $. +efine 1ccess ,ist with the following conditions@ a. IP =S!.=!.=0.3 should "e a"le to access hosts connected to 03 ". 1ll hosts on the su"net as *ret should not "e a"le to access hosts connected to 03 c. Per it all other co unications '. 2nter interface configuration ode for serial 0 3. 1pply the access list to interface 0 *. 2:it interface configuration ode 0. 2:it glo"al configuration ode R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",H!ccess8list *0 %er#it 1<$.1$.10.' R')con&i",H!ccess8list *0 -en( 1<$.1$.10.0 0.0.0.$** R')con&i",H!ccess8list *0 %er#it !n( R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !ccess8"rou% *0 in R')con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;1

R')con&i",He+it *ac&

11.9 : L!4 E+ercise 9 : Con&i"urin" !n- Veri&(in" St!n-!r- Access List

escri%tion : This la" e:ercise de onstrates the concept of Standard 1ccess ,ist "y configuring and -erifying the sa e.

./ A--ress Asssi"n#ent T!4le e1ice 0= .nter&!ce S0 20 ./ A--ress =S!.=68.!.= =S!.=68.=.= M!sk !((.!((.!((.0 !((.!((.!((.0

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;$

0! 03

20 S0 S=

=S!.=68.=.! =S!.=68.!.! =S!.=68.3.= =S!.=68.3.!

!((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

09

S0

.nstructions : 1. Connect to 0= and set the IP 1ddress on 2thernet 0 interface to =S!.=68.=.=3!9 and the Serial 0 interface to =S!.=68.!.=3!9 and ena"le the interfaces. 2na"le 0outing Protocol 0IP on 0= and add the networ& to 2thernet 0 and Serial 0 interfaces $. Connect to 0! and set the IP 1ddress on 2thernet 0 interface to =S!.=68.=.!3!9# ena"le the interface and ena"le 0IP on 0!# add the networ& to 2thernet 0 interface '. Connect to 03 and set the IP 1ddress on Serial 0 interface to =S!.=68.!.!3!9 and Serial = interface to =S!.=68.3.=3!9 and ena"le the interfaces. 2na"le 0IP protocol on 03 and add the networ& to Serial 0 and Serial = interfaces 3. Connect to 09 and set the IP 1ddress on Serial 0 interface to =S!.=68.3.!3!9# ena"le the interface and ena"le 0IP on 03# add the networ& to Serial 0 interface *. Ping 0! fro "oth 03 and 09 and see that it is successful 0. Configure a Standard 1ccess6,ist on 0= that per its traffic fro su"net =S!.=68.!.0 "ut "loc&s traffic fro all other de-ices. 9. 5e:t# apply this access6list to 0=Ks Serial 0 interface for in"ound traffic ;. ;erify the access list that is applied on 0= "y issuing ping state ents i.e# ping 0! fro 03 and 09 and chec& that ping fro 03 in su"net =S!.=68.!.0 is successful whereas ping fro 09 in su"net =S!.=68.3.0 is not successful <. 5ow connect to 0= and issue show access6list co and which displays the access6lists that are applied on 0= 10. 5ow # try out different cases of applying standard access list and test the sa e as gi-en "elow. *ut "efore that re o-e the pre-iously configured 1ccess ,ists on 0= "y issuing Nno ip access group = inN co and on 0= serial 0 interface and Nno access6list =N co and on 0= in glo"al configuration ode. R1Gen!4le R1Hcon ter R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut R1)con&i"8i&,He+it R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 1<$.10;.1.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;'

R1)con&i"8router,Hnet2ork 1<$.10;.$.0 R1)con&i"8router,HenR$Gen!4le R$Hcon ter R$)con&i",Hint e 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,HenR'Gen!4le R'Hcon ter R')con&i",Hint s 0 R')con&i"8i&,Hi% !--ress 1<$.10;.$.$ $**.$**.$**.0 R')con&i"8i&,Hno shut R')con&i"8i&,He+it R')con&i",Hint s 1 R')con&i"8i&,Hi% !--ress 1<$.10;.'.1 $**.$**.$**.0 R')con&i"8i&,Hno shut R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 1<$.10;.$.0 R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,HenR3Gen!4le R3Hcon ter R3)con&i",Hint s 0 R3)con&i"8i&,Hi% !--ress 1<$.10;.'.$ $**.$**.$**.0 R3)con&i"8i&,Hno shut R3)con&i"8i&,He+it R3)con&i",Hrouter ri% R3)con&i"8router,Hnet2ork 1<$.10;.'.0 R3)con&i"8router,HenR'H%in" 1<$.10;.1.$ R3H%in" 1<$.10;.1.$ R1Gen!4le R1Hcon ter R1)con&i",H!ccess8list 1 %er#it 1<$.10;.$.0 0.0.0.$** R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !ccess8"rou% 1 in Veri&ic!tion

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;3

R'H%in" 1<$.10;.1.$ R3H%in" 1<$.10;.1.$ R1Gen!4le R1Hsho2 !ccess8list C!se 1 R1)con&i",H!ccess8list 1 %er#it 1<$.10;.'.0 0.0.0.$** R1)con&i",H!ccess8list 1 -en( !n( Then %in" &ro# R' to R$ 2oul- 4e unsuccess&ul !n- %in" &ro# R3 to R$ 2oul- 4e ! success C!se $ R1)con&i",H!ccess8list 1 -en( 1<$.10;.'.0 0.0.0.$** R1)con&i",H!ccess8list 1 %er#it !n( Then %in" &ro# R3 to R$ 2oul- 4e unsuccess&ul !n- %in" &ro# R' to R$ shoul- 4e success&ul *ac&

11.; : L!4 E+ercise ; : Con&i"urin" !n- Veri&(in" E+ten-e- Access List

escri%tion : This la" e:ercise de onstrates the concept of 2:tended 1ccess ,ist "y configuring and -erifying the sa e.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;*

./ A--ress Asssi"n#ent T!4le e1ice 0= .nter&!ce S0 20 0! 03 20 S0 S= 09 S0 ./ A--ress =S!.=68.!.= =S!.=68.=.= =S!.=68.=.! =S!.=68.!.! =S!.=68.3.= =S!.=68.3.! M!sk !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

.nstructions : 1. Connect to 0= and set the IP 1ddress on 2thernet 0 interface to =S!.=68.=.=3!9 and the
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;0

Serial 0 interface to =S!.=68.!.=3!9 and ena"le the interfaces. 2na"le 0outing Protocol 0IP on 0= and add the networ& to 2thernet 0 and Serial 0 interfaces $. Connect to 0! and set the IP 1ddress on 2thernet 0 interface to =S!.=68.=.!3!9# ena"le the interface and ena"le 0IP on 0!# add the networ& to 2thernet 0 interface '. Connect to 03 and set the IP 1ddress on Serial 0 interface to =S!.=68.!.!3!9 and Serial = interface to =S!.=68.3.=3!9 and ena"le the interfaces. 2na"le 0IP protocol on 03 and add the networ& to Serial 0 and Serial = interfaces 3. Connect to 09 and set the IP 1ddress on Serial 0 interface to =S!.=68.3.!3!9# ena"le the interface and ena"le 0IP on 03# add the networ& to Serial 0 interface *. Ping 0! fro "oth 03 and 09 and see that it is successful 0. Configure 2:tended 1ccess6,ist =0= on 0= that allows telnet traffic fro 03 '=S!.=68.!.!) and allow ic p traffic fro 09 '=S!.=68.3.!) and "loc& all other traffic 9. 1pply this access6list to 0=Ks Serial 0 interface on in"ound traffic and chec& the sa e using show ip interface co and ;. ;erify the 2:tended 1ccess ,ist applied on 0= "y pinging and telneting 0! fro 03 and 09'03 '=S!.=68.!.!)) should not "e a"le to ping 0! "ut should "e a"le to telnet to 0! and 09 '=S!.=68.3.!) should "e a"le to ping 0! "ut not telnet to it)) R1Gen!4le R1Hcon ter R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut R1)con&i"8i&,He+it R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 1<$.10;.1.0 R1)con&i"8router,Hnet2ork 1<$.10;.$.0 R1)con&i"8router,HenR$Gen!4le R$Hcon ter R$)con&i",Hint e 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 1<$.10;.1.0 R$)con&i"8router,HenR'Gen!4le R'Hcon ter R')con&i",Hint s 0 R')con&i"8i&,Hi% !--ress 1<$.10;.$.$ $**.$**.$**.0 R')con&i"8i&,Hno shut R')con&i"8i&,He+it R')con&i",Hint s 1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;9

R')con&i"8i&,Hi% !--ress 1<$.10;.'.1 $**.$**.$**.0 R')con&i"8i&,Hno shut R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 1<$.10;.$.0 R')con&i"8router,Hnet2ork 1<$.10;.'.0 R')con&i"8router,HenR3Gen!4le R3Hcon ter R3)con&i",Hint s 0 R3)con&i"8i&,Hi% !--ress 1<$.10;.'.$ $**.$**.$**.0 R3)con&i"8i&,Hno shut R3)con&i"8i&,He+it R3)con&i",Hrouter ri% R3)con&i"8router,Hnet2ork 1<$.10;.'.0 R3)con&i"8router,HenR'H%in" 1<$.10;.1.$ R3H%in" 1<$.10;.1.$ R1)con&i",H!ccess8list 101 %er#it tc% host 1<$.10;.$.$ !n( eS telnet R1)con&i",H!ccess8list 101 %er#it ic#% host 1<$.10;.'.$ !n( R1)con&i",Hint s 0 R1)con&i"8i&,Hi% !ccess8"rou% 101 in R1)con&i"8i&,HenR1Hsho2 i% inter&!ce Veri&ic!tion R'H%in" 1<$.10;.1.$ R'Htelnet 1<$.10;.1.$ R3H%in" 1<$.10;.1.$ R3Htelnet 1<$.10;.1.$ *ac&

11.< : L!4 E+ercise < : Con&i"urin" !n- .#%le#entin" E+ten-e- Access List
escri%tion : This la" e:ercise de onstrates configuring and i ple enting 2:tended 1ccess6 ,ists.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;;

.nstructions : ./ A--ress Assi"n#ent T!4le e1ice .nter&!ce ./ A--ress 0= 20 S0 0! 03 20 S0 =S!.=68.!00.= =S!.=68.!00.=C =S!.=68.!00.! =S!.=68.!00.=8 Su4net M!sk !((.!((.!((.!90 !((.!((.!((.!90 !((.!((.!((.!90 !((.!((.!((.!90

1. Connect to 0= and set the IP 1ddress of 2thernet and Serial interfaces as gi-en in the ta"le and ena"le the interfaces $. To facilitate co unication "etween 0! and 03# ena"le 0IP 0outing Protocol on 0= and add the networ& for 2thernet 0 and serial 0 interfaces '. Connect to 0! and set the IP 1ddress of 2thernet interface as gi-en in the ta"le and ena"le the interface 3. /n 0!# ena"le 0IP and add the networ& for 2thernet 0 *. .ro 0!# ping 0=Ks 2thernet 0 interface to ensure that the connection e:ists 0. Connect to 03 and set the IP 1ddress of Serial interface as gi-en in the ta"le and ena"le the interface and ping 0=Ks Serial 0 interface 9. 1lso -erify that you can ping 0!Ks 2thernet interface fro 03 ;. 2nter into glo"al configuration ode of 0= <. 5ow create 2:tended 1ccess ,ist that acco plishes two things.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

;<

i. 1llow only telnet traffic fro the su"net off of 0=Ks Serial 0 interface to co e into 0=. ii. 5e:t# allow any traffic fro 0=Ks 2thernet 0 su"net to tra-el anywhere 10. Create access list =0= to allow only telnet traffic fro the =S!.=68.!00.=6 su"net. Use the &eyword log to display output to the router e-ery ti e this line on the access list is in-o&ed. 11. Create access list =0! to per it all traffic fro =S!.=68.!00.0 su"net and use the &eyword log. 1$. To apply these access lists on the interfaces# enter into interface configuration ode for Serial 0 interface of 0= and apply access list =0= in"ound and =0= out"ound and access list =0! in"ound for 2thernet 0 interface R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$00.1 $**.$**.$**.$30 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$00.19 $**.$**.$**.$30 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 1<$.10;.$00.0 R1)con&i"8router,Hnet2ork 1<$.10;.$00.10 R1)con&i"8router,He+it R1)con&i",He+it R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.$00.$ $**.$**.$**.$30 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 1<$.10;.$00.0 R$)con&i"8router,He+it R$)con&i",He+it R$H%in" 1<$.10;.$00.1 R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1<$.10;.$00.1; $**.$**.$**.$30 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter ri%
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<0

R')con&i"8router,Hnet2ork 1<$.10;.$00.10 R')con&i"8router,He+it R')con&i",He+it R'H%in" 1<$.10;.$00.19 R'H%in" 1<$.10;.$00.$ R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",H!ccess8list 101 %er#it tc% 1<$.10;.$00.10 0.0.0.1* !n( eS telnet R1)con&i",H!ccess8list 10$ %er#it i% 1<$.10;.$00.0 0.0.0.1* !n( R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !ccess8"rou% 101 in R1)con&i"8i&,Hi% !ccess8"rou% 101 out R1)con&i"8i&,He+it R1)con&i",Hinter&!ce Ethernet 0 R1)con&i"8i&,Hi% !ccess8"rou% 10$ in R1)con&i"8i&,He+it

*ac&

11.10 : L!4 E+ercise 10 : Veri&(in" E+ten-e- Access8Lists

escri%tion : This la" e:ercise -erifies 2:tended 1ccess lists that are set up in the pre-ious la" to ensure that they ha-e "een set up and configured correctly.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<1

.nstructions : 1. Connect to 03 and try to ping 0=Ks Serial 0 interface# the result is ping should "e unsuccessful if the access lists are configured correctly $. 5e:t# -erify that telnet traffic fro that su"net is allowed to reach 0=# connect to 0= and ena"le telnet access# and set password to cisco '. Connect to 03 again and try to telnet into 0=Ks Serial 0 interface 3. The hostna e in the router pro pt should change to 0= if telnet access is per itted# now press CT0,OS$I.TO6 &ey co "ination followed "y M &ey to return to 03.Then type disconnect = to close the connection to 0= *. Connect to 0! and try to ping 03Ks Serial 0 interface and see that the ping is not successful E+%l!n!tion : The pac&et starts at 0!# tra-els through 0=# and reaches 03. /nce it arri-es at 03# it is repac&aged and sent "ac& to 0=. 4hen 03 repac&ages the pac&et# the pac&etKs source IP address "eco es the destination IP address# and the destination IP address "eco es the source IP address. 4hen the pac&et encounters the access list on 0=Ks serial 0 interface# it is "loc&ed "ecause the pac&etKs source IP address is 03Ks serial 0 address. 0. Try to ping 0=Ks 2thernet 0 interface fro 0! 9. 5ow try to telnet into 0=Ks 2thernet 0 interface fro 0!. The hostna e in the router pro pt should change to 0= if telnet access is per itted. Press CT0,OS$I.TO6 followed "y M to return to 0!# then type disconnect ! co and to close the connection to 0= ;. Issue show access6lists co and which displays the access lists that ha-e "een created on a router and also specifies how any pac&ets ha-e "een per itted or denied R'Gen!4le R'H%in" 1<$.10;.$00.19 R1)con&i",H R1)con&i",Hline 1t( 0 3 R1)con&i"8line,Hlo"in R1)con&i"8line,H%!ss2or- cisco R1)con&i"8line,He+it R'Htelnet 1<$.10;.$00.19 R1G /ress CTRLKS:.FTK0F then %ress 6 R'H-isconnect 1 R$Gen!4le R$H%in" 1<$.10;.$00.1; R$H%in" 1<$.10;.$00.1 R$Htelnet 1<$.10;.$00.1 R1G /ress CTRLKS:.FTK0F then %ress 6

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<$

R$H-isconnect $ R1Hsho2 !ccess8list *ac&

11.11 L!4 E+ercise 11 : N!#e- Access8Lists

escri%tion : This la" e:ercise de onstrates creating 5a ed 1ccess ,ists

./ A--ress Assi"n#ent T!4le e1ice .nter&!ce ./ A--ress?M!sk 0= 0! S0 20 S0 =S!.=68.=00.=3!9 =S!.=68.=00.=C3!9 =S!.=68.=00.!3!9

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<'

e1ice 4S=

./ A--ress?M!sk =S!.=68.=00.=83!9

e&!ult8>!te2!( =S!.=68.=00.=C

.nstructions : 1. Configure the routers 0=# 0! and wor&station 4S= as per the ta"le gi-en a"o-e. $. Configure 0IP on the routers with proper networ& state ents '. Issue show ip route co and to a&e sure that the routes ha-e "een recei-ed on each router 3. ;erify ping to 0= fro 4S= *. Create an access list that pre-ents ping traffic originating fro 4S= and destined for 0= fro reaching 0= 0. 2:tended access list is created and the state ent deny ic p host =S!.=68.=00.=8 =S!.=68.=00.= 0.0.0.0 log denies any ICMP traffic with a source IP 1ddress of =S!.=68.=00.=8 that is destined for =S!.=68.=00.=# the wild card as& of 0.0.0.0# i.e the IP 1ddress ust atch e:actly 9. 5e:t# apply the access list to in"ound traffic on the Serial 0 interface of 0= ;. Try pinging 0= fro 4S= and 0= fro 0! <. Connect to 0= again# two separate log essages ust "e seen here. The first one is denying the ping fro 4S= and second which is allowing the ping fro 0! R1)con&i",Hrouter ri% R1)con&i"8router,H1ersion $ R1)con&i"8router,Hnet2ork 1<$.10;.100.0 R$)con&i",Hrouter ri% R$)con&i"8router,H1ersion $ R$)con&i"8router,Hnet2ork 1<$.10;.100.0 R1Hsho2 i% route R$Hsho2 i% route DS1:%in" 1<$.10;.100.1 R1)con&i",Hi% !ccess8list e+ten-e- -en(%in" R1)con&i"8e+t8!cl,H-en( ic#% host 1<$.10;.100.1; 1<$.10;.100.1 0.0.0.0 R1)con&i"8e+t8!cl,H%er#it i% !n( !n( R1)con&i"8e+t8!cl,He+it R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !ccess8"rou% -en(%in" in DS1:%in" 1<$.10;.100.1 R$H%in" 1<$.10;.100.1 *ac&
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<3

11.1$ O45ecti1e Test 9 : Ans2er the &ollo2in" Euestions

1. Please refer to the i age "elow. The access6list has "een configured on S030 of 0T1 in the out"ound direction. 4hich pac&ets will "e per itted "y the access6listA 'Choose ! "est answers) !, Source ip address@ =S!.=68.!.33# destination port@ 80 4, Source ip address@ =S!.=68.!.96# destination port@ 80 c, Source ip address@ =S!.=68.!.9S# destination port@ 80 -, Source ip address@ =S!.=68.!.30# destination port@ 993

$. ?ou are configuring an e:tended IP access6list. ?ou want to per it ip traffic fro =8(.6(.39.=0. 4hat is the correct synta:A !, access6list =0! per 4, access6list =0! per c, access6list =0! per -, access6list =0! per it ip =8(.6(.39.=0 0.0.!((.!(( any it ip host =8(.6(.39.=0 any it ip any =8(.6(.39.=0 it ip =8(.6(.39.=0 0.0.!((.!((

the host

'. Standard access6list uses which of the following to per it or deny pac&etsA !, Source address
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<*

4, +estination address c, Protocol -, Port 3. 4hich two occasions can a networ& ad inistrator configure access lists on a routerA 'Choose ! "est answers) !, To filter traffic flowing through the router 4, To filter IP "roadcasts c, To control ;T? access to the router -, To pre-ent access to a serial port "y any -iruses *. 4hich of the following co answers) !, sh ip protocol 4, sh ip interface c, sh ip access6list -, sh access6list =96 0. 4hat are the ways to onitor IP access listsA 'Choose 3 "est answers) ands can "e used to -iew the access list =96A 'Choose ! "est

!, sh ip interface 4, sh running c, sh access6lists -, sh protocol 9. 4hich of the following is a -alid e:tended IP access listA !, access6list =0! per 4, access6list =0! per c, access6list =0! per -, access6list =0! per it ip host =69.9!.!0.0 any e7 80 it ip host =69.9!.!0.0 any e7 www it tcp host =69.9!.!0.0 any e7 80 it ic p host =69.9!.!0.0 any e7 www

;. 0efer the four access6list co ands gi-en "elow. 4hich single access list state ent will co "ine all four of these state ents into a single state ent that will ha-e e:actly the sa e effectA access6list !0 per access6list !0 per access6list !0 per access6list !0 per it =C!.=0.3!.0 0.0.0.!(( it =C!.=0.33.0 0.0.0.!(( it =C!.=0.39.0 0.0.0.!(( it =C!.=0.3(.0 0.0.0.!(( it =C!.=0.3!.0 0.0.0.!(( it =C!.=0.3!.0 0.0.=.!(( it =C!.=0.3!.0 0.0.3.!(( it =C!.=0.3!.0 0.0.3=.!(( it =C!.=0.3!.0.0 0.0.!((.!((

!, access6list =0 per 4, access6list =0 per c, access6list =0 per -, access6list =0 per e, access6list =0 per

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<0

<. 4hat are two reasons that a networ& ad in would use access listsA 'Choose two) !, to control -ty access into a router 4, to control "roadcast traffic through a router c, to filter traffic as it passes through a router -, to control console access into a router 10. The following configuration line was added to router 0= !ccess8list 1<< %er#it i% 1<$.10;.1.0 0.0.0.$** !n( 4hat is the effect of this access list configurationA !, per it all pac&ets atching the first three octets of the source address to all destinations 4, per it all pac&et atching the last octet of the destination address and accept all source addresses c, per it all pac&et atching the host "its in the source address to all destinations -, per it all pac&et fro the third su"net of the networ& address to all destinations

1$. E6ERC.SES ON NETDOR= A

RESS TRANSLAT.ON

51T stands for 5etwor& 1ddress Translation is used to perfor address translation "etween two networ&s# which are identified as the inside networ& and the outside networ& in 51T ter inology.i.e# there are pri arily two ways a 51T can "e defined in a networ&. /ne is 51T inside# where we define the inside local# and inside glo"al ip addressesW and the other is 51T outside# where we define the outside local# and outside glo"al IP addresses. Note: Please refer the "elow 5etwor& +iagra section. Net2ork i!"r!#: >i1en Belo2 and IP 1ddress 1ssign ent Ta"le for all the e:ercises in this

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<9

./ A--ress Assi"n#ent T!4le e1ice .nter&!ce 0= S0 20 0! S0 20 PC= PC! PC3 PC9 S4= S4! ./ A--ress !00.!00.!00.= =S!.=68.=.=3 !00.!00.!00.! =0.=.=.9 =S!.=68.=.=0 =S!.=68.=.== =0.=.=.= =0.=.=.! =S!.=68.=.=! =0.=.=.3 M!sk !((.!((.!((.0 !((.!((.0.0 !((.!((.!((.0 !((.0.0.0 !((.!((.0.0 !((.!((.0.0 !((.0.0.0 !((.0.0.0 !((.!((.0.0 !((.0.0.0

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<;

1$.1 : L!4 E+ercise 1 : NAT Scen!rio 1

escri%tion: The purpose of this e:ercise is to configure 51T on the source router '51T inside source) and test for connecti-ity "y pinging a re ote router. NAT M!%%in" T!4le &or .nsi-e Source .nsi-e Loc!l =S!.=68.=.=0 =S!.=68.=.== .nsi-e >lo4!l !00.!00.!00.3 !00.!00.!00.9

.nstructions@ 1. 1ssign IP addresses on all the de-ices as per the a"o-e ta"le $. 2na"le routing on all routers 'you can use 0IP32IB0P3/SP. routing) '. Create IP 51T Mapping '$int@ use inside source static co and) on 0= 3. +efine IP 51T Inside and IP 51T /utside interfaces on 0= *. Test for Connecti-ity fro PC= to 0! "y issuing ping co and Note: ?ou need to do the following "efore proceeding with the following co ands ands at

1. 1ssign the IP addresses and a&e the interfaces up '"y issuing no shutdown co appropriate interfaces) for all the de-ices $. 2na"le routing on the networ&. ?ou can use rip3eigrp3ospf for this purpose R1Gen!4le R1Hcon& ter# R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.10 $00.$00.$00.' R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.11 $00.$00.$00.3 R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% n!t outsi-e R1)con&i"8i&,He+it R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% n!t insi-e R1)con&i"8i&,He+it R1)con&i",He+it R1H /C1:%in" R$

*ac&
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

<<

1$.$ : L!4 E+ercise $ : NAT Scen!rio $

escri%tion: The purpose of this la" is to configure 51T on the destination router '51T outside source) and test for connecti-ity "y pinging a re ote router. NAT M!%%in" T!4le &or Outsi-e Source Outsi-e Loc!l Outsi-e >lo4!l =0.=.=.= =0.=.=.! !00.!00.!00.3 !00.!00.!00.9

.nstructions: 1. 1ssign IP addresses on all the de-ices as per the ta"le gi-en a"o-e $. Create IP 51T Mapping '$int@ use outside source static co and) on 0! '. +efine IP 51T Inside and IP 51T /utside interfaces on 0! 3. Test for Connecti-ity fro PC= to 0! "y issuing ping co and Note: ?ou need to assign the IP addresses and a&e the interfaces up '"y issuing no shutdown co ands at appropriate interfaces) for all the de-ices "efore proceeding with the following co ands. R$Gen!4le R$Hcon& ter# R$)con&i",Hi% n!t outsi-e source st!tic 10.1.1.1 $00.$00.$00.' R$)con&i",Hi% n!t outsi-e source st!tic 10.1.1.$ $00.$00.$00.3 R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% n!t outsi-e R$)con&i"8i&,He+it R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% n!t insi-e R$)con&i"8i&,He+it R$)con&i",He+it R$H /C1:%in" R$ /C1:%in" $00.$00.$00.' /C1:%in" $00.$00.$00.3 *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

100

1$.' : L!4 E+ercise ' : NAT Scen!rio '

escri%tion: The purpose of this ,a" is to configure 51T on the +estination router '51T outside source) and the source router '51T inside source) test for connecti-ity "y pinging a re ote router. NAT M!%%in" T!4le &or .nsi-e Source .nsi-e Loc!l =S!.=68.=.=0 =S!.=68.=.== .nsi-e >lo4!l !00.!00.!00.3 !00.!00.!00.9

NAT M!%%in" T!4le &or Outsi-e Source Outsi-e Loc!l Outsi-e >lo4!l =0.=.=.= =0.=.=.! !00.!00.!00.( !00.!00.!00.6

.nstructions: 1. 1ssign IP addresses on all the de-ices as per the ta"le gi-en a"o-e $. Create IP 51T Mapping '$int@ use inside source static co and) on 0= '. +efine IP 51T Inside and IP 51T /utside interfaces on 0= 3. Create IP 51T Mapping '$int@ use outside source static co and) on 0! *. +efine IP 51T Inside and IP 51T /utside interfaces on 0! 0. Test for Connecti-ity fro PC= to 0! "y issuing ping co and Note: ?ou need to assign the IP addresses and a&e the interfaces up '"y issuing no shutdown co ands at appropriate interfaces) for all the de-ices "efore proceeding with the following co ands

On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.10 $00.$00.$00.' R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.11 $00.$00.$00.3
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

101

R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% n!t outsi-e R1)con&i"8i&,He+it R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% n!t insi-e R1)con&i"8i&,He+it R1)con&i",He+it R1H On R$ R$Gen!4le R$Hcon& ter# R$)con&i",Hi% n!t outsi-e source st!tic 10.1.1.1 $00.$00.$00.* R$)con&i",Hi% n!t outsi-e source st!tic 10.1.1.$ $00.$00.$00.0 R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% n!t outsi-e R$)con&i"8i&,He+it R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% n!t insi-e R$)con&i"8i&,He+it R$)con&i",He+it R$H /C1:%in" R$ /C1:%in" $00.$00.$00.* /C1:%in" $00.$00.$00.0 *ac&

1$.3 : L!4 E+ercise 3 : Con&i"urin" (n!#ic NAT Scen!rio .

escri%tion: The purpose of this la" is to configure 51T on the source router '51T inside source) and test for connecti-ity "y pinging a re ote router. Access8List T!4le Access8ListH Source ./ = = Dil- C!r- M!sk /er#it? en( Per it Per it

=S!.=68.=.=0 0.0.0.0 =S!.=68.=.== 0.0.0.0

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10$

/ool T!4le /ool t!4le n!#e St!rt ./ !--ress En- ./ !--ress 5atpool !00.!00.!00.3 !00.!00.!00.9 Su4net #!sk !((.!((.!((.0

.nstructions: 1. 1ssign IP addresses on all the de-ices as per the IP assign ents ta"le gi-en a"o-e $. Create 1ccess list on 0= as gi-en in ta"le a"o-e '. Create IP 51T Pool on 0= as per the details gi-en in ta"le 3. 1pply 1ccess list to the 51T Pool ta"le *. +efine IP 51T Inside and IP 51T /utside interfaces on 0= 0. Test for connecti-ity fro PC= to 0! R1Gen!4le R1Hcon& ter# R1)con&i",H!ccess8list 1 %er#it 1<$.10;.1.10 0.0.0.0 R1)con&i",H!ccess8list 1 %er#it 1<$.10;.1.11 0.0.0.0 R1)con&i",Hi% n!t %ool n!t%ool $00.$00.$00.' $00.$00.$00.3 net#!sk $**.$**.$**.0 R1)con&i",Hi% n!t insi-e source list 1 %ool n!t%ool R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% n!t outsi-e R1)con&i"8i&,He+it R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% n!t insi-e R1)con&i"8i&,He+it R1)con&i",He+it R1H /C1:%in" R$ *ac&

1$.* : L!4 E+ercise * : Trou4leshootin" St!tic NAT Scen!rio .

escri%tion: The purpose of this la" is to trou"leshoot 51T on the source router '51T inside source) and test for connecti-ity "y pinging a re ote router.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10'

NAT M!%%in" T!4le &or .nsi-e Source .nsi-e Loc!l =S!.=68.=.=0 =S!.=68.=.== .nsi-e >lo4!l !00.!00.!00.3 !00.!00.!00.9

.nstructions: 1. Test for Connecti-ity fro PC= to 0! 'ping will not "e successful) $. Issue show ip nat translations co and and see if nat apping is done for PC= '. Create ip nat apping 'inside) on 0= for PC= 3. Issue show ip nat translations co and *. Test for Connecti-ity fro PC= to 0! and see that ping is successful R1H /C1:%in" R$ 1n unsuccessful ping is due to using appropriate co and. R1Hsho2 i% n!t tr!nsl!tions Chec& whether the IP 51T co addresses. ands are configured for "oth inside local# and inside glo"al ip is6configuration of 51T on 0=. ;erify 51T translations "y

R1Hcon& ter# R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.10 $00.$00.$00.' R1)con&i",He+it R1Hsho2 i% n!t tr!nsl!tions /C1:%in" R$ 1 successful ping indicates successful 51T translation# and routing fro source to destination. *ac&

1$.0 : L!4 E+ercise 0 : NAT !n- /AT

escri%tion : This la" e:ercise de onstrates configuring all three types of 51T na ely Static 51T# +yna ic 51T and /-erloading 'Port 1ddress Translation)

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

103

./ A--ress Assi"n#ent T!4le e1ice .nter&!ce ./ A--ress 0= 20 S0 0! 03 20 S0 S= 09 S0 =S!.=68.=.= =S!.=68.=00.= =S!.=68.=.! =S!.=68.=00.! =S!.=68.!00.= =S!.=68.!00.! M!sk !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0 !((.!((.!((.0

1. /n 0=# configure 51T to statically translate 0!Ks =S!.=68.=.! 2thernet address to !00.!00.!00.! $. Telnet fro 0! to 03 to test the static 51T translation '. Issue show users co and on 03 which should show that the de-ice with
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10*

!00.!00.!00.! 'Translated IP 1ddress) is the logged in de-ice. 3. Issue show ip nat translations co and on 0= to display the 51T Translation ta"le. The response of this co and should show that the inside local IP 1ddress '=S!.=68.=.!) is translated to to inside glo"al IP 1ddress '!00.!00.!00.!) *. /n 0=# re o-e the pre-iously configured static 51T co ands and configure 51T to translate 0!Ks 2thernet address to a dyna ically assigned address. .or this# utili%e a pool of pu"lic addresses in the range of !00.!00.!00.(0 to !00.!00.!00.=00 0. Telnet fro 0! to 03 to test the dyna ic 51T translation 9. Issue show users co and on 03 which should show that the de-ice with !00.!00.!00.(0 'Translated 1ddress) is the logged in de-ice ;. Issue show ip nat translations co and on 0= to display the 51T Translation ta"le <. /n 0=# re o-e the pre-ious 51T co ands and configure 51T /-erloading 'Port 1ddress Translation) on 0= to translate 0!Ks 2thernet address '=S!.=68.=.!) to Serial 0 interface address '=S!.=68.=00.=) 10. Telnet fro 0! to 03 to test the P1T function 11. Issue show users co and on 03 which should show that the de-ice with =S!.=68.=00.= 'Translated 1ddress) is the logged in de-ice 1$. Issue show ip nat translations co and on 0= to display the 51T translation ta"le R1)con&i",Hi% n!t insi-e source st!tic 1<$.10;.1.$ $00.$00.$00.$ R1)con&i",Hinter&!ce ethernet 0 R1)con&i"8i&,Hi% n!t insi-e R1)con&i"8i&,He+it R1)con&i"8i&,Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% n!t outsi-e R1)con&i"8i&,Hno shut-o2n R$Htelnet 1<$.10;.100.$ R'Hsho2 users R1Hsho2 i% n!t tr!nsl!tions R1)con&i",Hno i% n!t insi-e source st!tic 1<$.10;.1.$ $00.$00.$00.$ R1)con&i",Hi% n!t %ool %ool1 $00.$00.$00.*0 $00.$00.$00.100 net#!sk $**.$**.$**.0 R1)con&i",Hi% n!t insi-e source list $ %ool %ool1 R1)con&i",H!ccess8list $ %er#it 1<$.10;.1.$ 0.0.0.0 R$Htelnet 1<$.10;.100.$ R'Hsho2 users R1Hsho2 i% n!t tr!nsl!tions R1)con&i",Hno i% n!t %ool %ool1 $00.$00.$00.*0 $00.$00.$00.100 net#!sk $**.$**.$**.0 R1)con&i",Hno i% n!t insi-e source list $ %ool %ool1 R1)con&i",Hi% n!t insi-e source list $ inter&!ce seri!l 0 o1erlo!R$Htelnet 1<$.10;.100.$ R'Hsho2 users
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

100

R1Hsho2 i% n!t tr!nsl!tions *ac&

1$.9 O45ecti1e Test ; : Ans2er the &ollo2in" Euestions

1. Match the following 51T types@ !. Static 51T 4. +yna ic 51T c. /-erloading -. /-erlapping 1. The IP addresses used on the internal networ& are utili%ed on another networ& $. /ne6to6one apping '. 1 pool of pu"lic IP addresses are shared "y a pri-ate IPs 3. Maps ultiple unregistered IP addresses to a single registered IP address

!, a6I=W "6I3W c6I9# d6I! 4, a6I3W "6I!W c6I9# d6I= c, a6I!W "6I3W c6I=# d6I9 -, a6I!W "6I3W c6I9# d6I= $. In 51T# what does Einside glo"alF address eanA

!, 1 pri-ate IP address assigned to a host on the inside networ&. 4, 1 pu"lic IP address that represents one or ore inside local IP addresses to the outside world. c, The IP address of an outside host as it appears to the inside networ&. 5ot necessarily a legiti ate address# it is allocated fro an address space routa"le on the inside. -, The IP address assigned to a host on the outside networ&. The address is allocated fro a glo"ally routa"le address or networ& space.

1'. E+ercises on :C/ 1'.1 L!4 E+ercise 1 : Con&i"urin" cisco router !s ! :C/ Ser1er
escri%tion : This la" e:ercise de onstrates the re7uired co configuration on a cisco router. ands for +$CP Ser-er

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

109

.nstructions : 1. Issue ser-ice dhcp co and on router 0= that ena"les and disa"les the +$CP ser-er feature on router. *y default# this is ena"led. $. Create an addressing pool for dhcp. '. Issue networ& co and that specifies the range of IP addresses to "e assigned to clients. 3. 1ssign the do ain6na e to the client. *. In order to resol-e $ost na es to IP addresses# client co puters re7uire the IP addresses of +5S '+o ain 5a e Ser-ice) ser-ers. Use dns6ser-er co and that allows assigning upto 8 +5S ser-er addresses to the client# "ut howe-er in si ulator only = address is allowed. 0. Specify the default6router address using default6router co and that allows assigning upto 8 default6gateway addresses to the client for this range of addresses. 9. Specify the duration of the lease# which if o itted results to default = day. R1)con&i",Hser1ice -hc% R1)con&i",Hi% -hc% %ool ne2%ool R1)con&i"8-hc%,Hnet2ork 1<$.10;.$.0 $**.$**.$**.0 R1)con&i"8-hc%,H-o#!in8n!#e +(T.co# R1)con&i"8-hc%,H-ns8ser1er 1<$.10;.$.$ R1)con&i"8-hc%,H-e&!ult8router 1<$.10;.$.1 R1)con&i"8-hc%,Hle!se $ R1)con&i"8-hc%,He+it R1)con&i",H *ac&

1'.$ L!4 E+ercise $ : :C/ client con&i"ur!tion

escri%tion : This la" e:ercise de onstrates +$CP client configuration i.e# Configuring an interface on the router to use +$CP to ac7uire its IP address.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10;

.nstructions : 1. *efore proceeding with the +$CP client configuration# a&e sure that +$CP ser-er is configured as shown in the pre-ious la" e:ercise. $. 2nter into interface configuration ode on router 0! with appropriate co ands. '. Use the co and Nip address dhcpN that configures the specified interface to ac7uire its IP 1ddress fro the +$CP ser-er# -erify the sa e using Nshow ip interface "riefN on the router. R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce e 0 R$)con&i"8i&,Hi% !--ress -hc% R$)con&i"8i&,He+it R$)con&i",He+it R$Hsho2 i% inter&!ce 4rie& *ac&

1'.' L!4 E+ercise ' : Con&i"urin" t2o :C/ clients !n- :C/ 1eri&ic!tion co##!n-s
escri%tion : This la" e:ercise de onstrates +$CP ser-er configuration and +$CP client configuration on two routers and also shows the -erification co ands "oth on the ser-er and the client.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10<

.nstructions 1. Issue ser-ice dhcp co and on router 0= that ena"les +$CP ser-er feature on router $. Create an addressing pool for dhcp called pool=. '. Isssue networ& co and that specifies the range of IP addresses to "e assigned to clients. Use =S!.=68.9.0 !((.!((.!((.0 in this la". 3. 1ssign the do ain6na e Nsa ple.co N to the client. *. 1ssign the IP 1ddress of the +5S6ser-er and +efault6router# say =S!.=68.9.! and =S!.=68.9.( respecti-ely 9. Set the duration of the lease to 9 days. ;. /n router 0! and 03# enter into interface confiuration ode and issue the co and Nip address dhcpN that configures the interfaces to ac7uire IP 1ddresses fro the +$CP ser-er. <. Use Nshow interfacesN or Nshow ip interface "riefN co and on 0! and 03 to -erify the addresses ac7uired fro the ser-er. 10. Use Nshow ip dhcp "indingN co and on router 0= i.e# ser-er# to -iew the addresses assigned to clients. 11. Use Nclear ip dhcp "inding Tclient\addressIN on the ser-er 0= to clear the specific address assigned to client or Nclear ip dhcp "inding ^N to re o-e all the addresses assigned to clients. 1$. Use Nno ip address dhcpN co and on clients 0!303 in interface configuration ode to unconfigure an address assigned on it "y the +$CP ser-er. R1)con&i",Hser1ice -hc% R1)con&i",Hi% -hc% %ool %ool1 R1)con&i"8-hc%,Hnet2ork 1<$.10;.3.0 $**.$**.$**.0 R1)con&i"8-hc%,H-o#!in8n!#e s!#%le.co# R1)con&i"8-hc%,H-ns8ser1er 1<$.10;.3.$ R1)con&i"8-hc%,H-e&!ult8router 1<$.10;.3.* R1)con&i"8-hc%,Hle!se 3 R1)con&i"8-hc%,He+it R1)con&i",H R$Gen!4le R$Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

110

R$)con&i",Hinter&!ce e 1 R$)con&i"8i&,Hi% !--ress -hc% R$)con&i"8i&,He+it R$)con&i",He+it R$Hsho2 i% inter&!ce 4rie& R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce e 0 R')con&i"8i&,Hi% !--ress -hc% R')con&i"8i&,He+it R')con&i",He+it R'Hsho2 inter&!ces R1Hsho2 i% -hc% 4in-in" *ac& Note: +$CP pro-ides dyna ic addressing infor ation to hosts on a networ&. It allows de-ices to dyna ically ac7uire their addressing infor ation. The ain purpose of the +$CP ser-er is to pro-ide IP configuration para eters to hosts such as the default gateway# do ain na e# +o ain 5a e Syste _ +5S. +$CP uses U+P protocol. Port 6C for re7uests and 68 for replies. 5ote that as per cisco =!.! release# only ethernet interfaces are supported for +$CP.

1'.3 O45ecti1e Test < : Ans2er the &ollo2in" Euestions

*ased on the figure gi-en "elow# answer the 7uestions# assu e default configuration on the routers.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

111

1. 4hat is the purpose of the +$CP ser-erA !, It pro-ides networ& storage 4, Translates U0,s to IP addresses c, Translates IP addresses to M1C addresses -, Pro-ide IP configuration infor ation to hosts $. 1ssu e that the hosts in the networ&s ha-e "een operational for se-eral hours# and suddenly the +$CP ser-er goes down. 4hat will happen to the hosts that ha-e already o"tained configuration details fro the +$CP ser-erA !, The hosts '+$CP client co puters) will continue to co unicate nor ally for the duration of lease. 4, The hosts '+$CP client co puters) will stop co unicating with all other hosts. c, The hosts '+$CP client co puters) will store +$CP configuration indefinitely# and use it till the +$CP ser-er is "ac&. -, The hosts '+$CP clients) will only "e a"le to co unicate using IP addresses. '. 4hen a +$CP client is powered on# it uses +$CP +ISC/;20 essage to initiate +$CP process. The +$CP +ISC/;20 essage fro +$CP Client = uses which of the followingA !, ,ayer 3 unicast 4, ,ayer 3 ulticast
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11$

c, ,ayer 3 "roadcast -, ,ayer ! Point6to6Point Protocol 3. 4hat is the default "eha-ior of 03 when +$CP Client 3 re7uests ser-ice fro ser-erA !, *roadcast the re7uest to 0= and 0! 4, +rop the re7uest c, .orward the re7uest to 0! -, Send unicast essage to 0= *.4ith regard to the +$CP +isco-er two.) essage# which of the following are trueA 'Choose +$CP

!, The +$CP +isco-er essage uses ..6..6..6..6.. as the ,ayer ! destination address. 4, The +$CP +isco-er essage uses a special ,ayer 3 ulticast address as the destination address. c, The +$CP +isco-er essage uses U+P as the transport layer protocol. -, The +$CP +isco-er essage uses TCP as the transport layer protocol. e, The +$CP +isco-er essage does not use a ,ayer ! destination address.

13. E+ercises on .S N 13.1 : L!4 E+ercise 1 : /// Con&i"ur!tion

escri%tion: This e:ercise helps to understand how Point to Point Protocol encapsulation wor&s . Configure PPP across a point6to6point networ& as shown in the networ& diagra "elow.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11'

.nstructions: 1. Configure for PPP on router 0= Serial 0 $. Configure NstacN co pression on 0= '. Configure for PPP on router 0! serial 0 3. Configure NstacN co pression on 0! *. ;erify PPP co pression "y using appropriate show co Issue the co and on router! R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 R1)con&i"8i&,Henc!%sul!tion %%% R1)con&i"8i&,Hco#%ress st!c R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 R$)con&i"8i&,Henc!%sul!tion %%% R$)con&i"8i&,Hco#%ress st!c R$)con&i"8i&,He+it R$)con&i",He+it R$Hsho2 co#%ress

and

*ac&

13.$ : L!4 E+ercise $ : Con&i"urin" .S N usin" BR.

escri%tion: The purpose of this la" e:ercise is to configure IS+5 *0I 0 interfaces on 0outers 5?0= and ,10=. The interface IP 1ddresses# Su"net Mas&# and Switch6type are gi-en in the networ& diagra .

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

113

.nstructions: N@01: 1. 2nter glo"al configuration ode and assign hostna e 5?0=. Specify isdn switch6type *asic6 (ess $. 2nter "ri 0 interface configuration ode# and assign IP address as specified '. 2na"le PPP encapsulation# and e:it "ri 0 interface configuration ode 3. Configure dialer string to call phone nu "er (((9999. Specify dialer idle ti eout as =0 inutes *. 2nter 20 interface configuration ode and assign IP address as specified 0. 2:it interface configuration ode# and specify protocol IP to "e the only interesting traffic on isdn access line 9. 1pply the dialer list to interface isdn "ri 0 LA01: The procedure to configure ,10= is si ilar to that of 5?0=# e:cept for the hostna e# and IP address assign ent. 1. 2nter glo"al configuration ode and assign hostna e ,10=. Specify isdn switch6type *asic6 (ess $. 2nter "ri 0 interface configuration ode# and assign IP address as specified '. 2na"le PPP encapsulation# and e:it "ri 0 interface configuration ode 3. Configure dialer string to call phone nu "er !!!9999. Specify dialer idle ti eout as =0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11*

inutes *. 2nter 20 interface configuration ode and assign IP address as specified 0. 2:it interface configuration ode# and specify protocol IP to "e the only interesting traffic on isdn access line 9. 1pply the dialer list to interface isdn "ri 0 On N@01: R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e N@01 N@01)con&i",His-n s2itch8t(%e 4!sic8*ess N@01)con&i",Hinter&!ce 4ri 0 N@01)con&i"8i&,Hi% !--ress 1<$.10;.1.1 $**.$**.$**.0 N@01)con&i"8i&,Hno shut-o2n N@01)con&i"8i&,Henc!%sul!tion %%% N@01)con&i"8i&,He+it N@01)con&i",H-i!ler8list 1 %rotocol i% %er#it N@01)con&i",Hinter&!ce 4ri 0 N@01)con&i"8i&,H-i!l strin" ****3333 N@01)con&i"8i&,H-i!ler i-le8ti#eout 000 N@01)con&i"8i&,H-i!ler8"rou% 1 N@01)con&i"8i&,He+it N@01)con&i",Hinter&!ce e 0 N@01)con&i"8i&,Hi% !--ress 10.1.0.1 $**.$**.0.0 N@01)con&i"8i&,HenN@01 On LA01: R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e LA01 LA01)con&i",His-n s2itch8t(%e 4!sic8*ess LA01)con&i",Hinter&!ce 4ri 0 LA01)con&i"8i&,Hi% !--ress 1<$.10;.1.$ $**.$**.$**.0 LA01)con&i"8i&,Hno shut-o2n LA01)con&i"8i&,Henc!%sul!tion %%% LA01)con&i"8i&,He+it LA01)con&i",H-i!ler8list 1 %rotocol i% %er#it LA01)con&i",Hinter&!ce 4ri 0 LA01)con&i"8i&,H-i!l strin" $$$$3333 LA01)con&i"8i&,H-i!ler i-le8ti#eout 000 LA01)con&i"8i&,H-i!ler8"rou% 1 LA01)con&i"8i&,He+it LA01)con&i",Hinter&!ce e 0 LA01)con&i"8i&,Hi% !--ress 10.$.0.1 $**.$**.0.0 LA01)con&i"8i&,HenLA01H
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

110

*ac&

13.' : L!4 E+ercise ' : Con&i"urin" .S N usin" BR.8Routin"

escri%tion: The purpose of this la" e:ercise is to configure IS+5 *0I 0 interfaces on 0( and 0=# and test for connecti-ity.

.nstructions: 1. 1ssign IP address on all the de-ices as per the a"o-e diagra '/n 0= and 0( su"6interface J= is used) $. Set the 2ncapsulation para eters appropriately on 0= and 0 '. Ping fro PC= to PC! and -ice -ersa

R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",His-n s2itch8t(%e 4!sic8*es R1)con&i",H-i!ler8list $* %rotocol i% %er#it R1)con&i",Hinter&!ce seri!l R1)con&i"8i&,Hi% !--ress 19*.10.1.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

119

R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce 4ri 0 R1)con&i"8i&,Hi% !--ress $00.10.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,Henc!%sul!tion %%% R1)con&i"8i&,H-i!ler #!% i% $00.10.1.$ ****** R1)con&i"8i&,H-i!ler8"rou% $* R1)con&i"8i&,H-i!l strin" ****** R1)con&i"8i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 19*.10.1.0 R1)con&i"8router,Hnet2ork $00.10.1.0 R1)con&i"8router,He+it R1)con&i",He+it R1H R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 19*.10.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1;0.10.1.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 1<9.10.1.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 19*.10.1.0 R$)con&i"8router,Hnet2ork 1;0.10.1.0 R$)con&i"8router,Hnet2ork 1<9.10.1.0 R$)con&i"8router,He+it R$)con&i",He+it R$H R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1;0.10.1.$ $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce ethernet 0 R')con&i"8i&,Hi% !--ress 1<*.10.1.1 $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11;

R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 1;0.10.1.0 R')con&i"8router,Hnet2ork 1<*.10.1.0 R')con&i"8router,He+it R')con&i",He+it R'H R*Gen!4le R*Hcon&i"ure ter#in!l R*)con&i",His-n s2itch8t(%e 4!sic8*ess R*)con&i",H-i!ler8list $* %rotocol i% %er#it R*)con&i",Hinter&!ce 4ri 0 R*)con&i"8i&,Hi% !--ress $00.10.1.$ $**.$**.$**.0 R*)con&i"8i&,Hno shut-o2n R*)con&i"8i&,Henc!%sul!tion %%% R*)con&i"8i&,H-i!ler #!% i% $00.10.1.1 '''''' R*)con&i"8i&,H-i!ler8"rou% $* R*)con&i"8i&,H-i!l strin" '''''' R*)con&i"8i&,He+it R*)con&i",Hrouter ri% R*)con&i"8router,Hnet2ork $10.10.1.0 R*)con&i"8router,He+it R*)con&i",He+it R*H SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce 1l!n 1 SD1)con&i"8i&,Hi% !--ress 1<*.10.1.<< $**.$**.$**.0 SD1)con&i"8i&,Hno shut-o2n SD1)con&i"8i&,He+it SD1)con&i",He+it SD1H SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce 1l!n 1 SD$)con&i"8i&,Hi% !--ress 1<*.10.1.100 $**.$**.$**.0 SD$)con&i"8i&,Hno shut-o2n SD$)con&i"8i&,He+it SD$)con&i",He+it SD$H SD'Gen!4le SD'Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

11<

SD')con&i",Hinter&!ce 1l!n 1 SD')con&i"8i&,Hi% !--ress 1<9.10.1.<< $**.$**.$**.0 SD')con&i"8i&,Hno shut-o2n SD')con&i"8i&,He+it SD')con&i",He+it SD'H SD3Gen!4le SD3Hcon&i"ure ter#in!l SD3)con&i",Hinter&!ce 1l!n 1 SD3)con&i"8i&,Hi% !--ress 1<9.10.1.100 $**.$**.$**.0 SD3)con&i"8i&,Hno shut-o2n SD3)con&i"8i&,He+it SD3)con&i",He+it SD3H /C1:i% !--ress 1<*.10.1.$ $**.$**.$**.0 /C$:i% !--ress 1<9.10.1.$ $**.$**.$**.0 /C1:%in" /C$ /C1:%in" R* /C$:%in" /C1 /C$:%in" R* *ac&

NOTE: .S N Conce%ts !n- .S N L!4s h!1e 4een e+clu-e- !s %er Current Cisco CCNA O45ecti1es 4ut these l!4s c!n 4e re&erre- i& intereste-.

1*. E+ercises on Fr!#e8Rel!( 1*.1 : L!4 E+ercise 1 : Con&i"urin" Fr!#e8Rel!( 2ithout su48inter&!ces
escri%tion: Configure fra e6relay without using su"6interfaces. This configuration e:a ple uses full esh topology.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$0

5ote that on a fra e6relay networ& without su"6interfaces# the ,MI6type is auto atically detected. Si ilarly# P;C +,CIs are learned through CMS status essages. There is no need to specify the sa e e:plicitly. /n the otherhand# in a .0 networ& with point6to6point su"6interface configurations# you need to specify the interface6dlci nu "er. .nstructions: ./ A--ress Assi"n#ent T!4le: e1ice8.nter&!ce ./ A--ress?M!sk ;enus6S0 8upiter6S0 Saturn6S0 =S!.=60.=.=3!9 =S!.=60.=.!3!9 =S!.=60.=.33!9

1. Specify fra e6relay on S0 of ;enus $. Specify fra e6relay on S0 of Saturn '. Specify fra e6relay on S0 of 8upiter

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$1

R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hhostn!#e Venus Venus)con&i",Hinter&!ce seri!l 0 Venus)con&i"8i&,H enc!%sul!tion &r!#e8rel!( Venus)con&i"8i&,Hi% !--ress 1<$.100.1.1 $**.$**.$**.0 Venus)con&i"8i&,HUT VenusH R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e Cu%iter Cu%iter)con&i",Hinter&!ce seri!l 0 Cu%iter)con&i"8i&,Henc!%sul!tion &r!#e8rel!( Cu%iter)con&i"8i&,Hi% !--ress 1<$.100.1.$ $**.$**.$**.0 Cu%iter)con&i"8i&,HUT R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hhostn!#e S!turn S!turn)con&i",Hinter&!ce seri!l 0 S!turn)con&i"8i&,Henc!%sul!tion &r!#e8rel!( S!turn)con&i"8i&,Hi% !--ress 1<$.100.1.' $**.$**.$**.0 S!turn)con&i"8i&,HUT S!turnH

*ac&

1*.$ : L!4 E+ercise $ : Con&i"urin" Fr!#e8Rel!( 2ith %oint8to8%oint su48 inter&!ces

escri%tion: Configure fra e6relay using point6to6point su"6interfaces. This e:a ple uses 9 routers connected together in the for of a star using su"6interfaces.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$$

5ote that on a fra e6relay networ& without su"6interfaces# the ,MI6type is auto atically detected. Si ilarly# P;C +,CIs are learned through CMS status essages. There is no need to specify the sa e e:plicitly. /n the otherhand# in a .0 networ& with point6to6point su"6interface configurations# you need to specify the interface6dlci nu "er. .nstructions: ./ A--ress Assi"n#ent T!4le: e1ice8.nter&!ce8Su4 .nter&!ce ./ A--ress?M!sk 5?6S0.= 5?6S0.! 5?6S0.3 5+6S0.= ,ondon6S0.= =S!.=60.=.=3!9 =S!.=60.!.=3!9 =S!.=60.3.=3!9 =S!.=60.=.!3!9 =S!.=60.!.!3!9

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$'

,16S0.=

=S!.=6S.3.!3!9

Router N@: 1. Specify hostna e $. 2nter su"6interface configuration ode for s0.= '. Specify ip address 3. Specify interface6dlci nu "er 6! *. 2:it 0. Specify hostna e 9. 2nter su"6interface configuration ode for s0.!. ;. Specify ip address <. Specify interface6dlci nu "er 63 10. 2:it 11. Specify hostna e 1$. 2nter su"6interface configuration ode for s0.3 1'. Specify ip address 13. Specify interface6dlci nu "er 69 1*. 2:it Router N : 1. Specify hostna e $. Specify fra e6relay encapsulation '. 2nter su"6interface configuration ode for s0.= 3. Specify ip address *. Specify interface6dlci nu "er 6! 0. 2:it Router Lon-on: 1. Specify hostna e $. Specify fra e6relay encapsulation '. 2nter su"6interface configuration ode for s0.= 3. Specify ip address *. Specify interface6dlci nu "er 63 0. 2:it Router LA: 1. Specify hostna e $. Specify fra e6relay encapsulation '. 2nter su"6interface configuration ode for s0.= 3. Specify ip address *. Specify interface6dlci nu "er 69 0. 2:it

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$3

R1Gen!4le R1Hcon& ter# R1)con&i",Hhostn!#e N@ N@)con&i",Hinter&!ce seri!l 0 N@)con&i"8i&,Henc!%sul!tion &r!#e8rel!( N@)con&i"8i&,He+it N@)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint N@)con&i"8su4i&,Hi% !--ress 1<$.100.1.1 $**.$**.$**.0 N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 0$ N@)con&i"8su4i&,He+it N@)con&i",Hinter&!ce seri!l 0.$ %oint8to8%oint N@)con&i"8su4i&,Hi% !--ress 1<$.100.$.1 $**.$**.$**.0 N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 0' N@)con&i"8su4i&,He+it N@)con&i",Hinter&!ce seri!l 0.' %oint8to8%oint N@)con&i"8su4i&,Hi% !--ress 1<$.100.'.1 $**.$**.$**.0 N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 03 N@)con&i"8su4i&,HUT N@Hco%( runnin"8con&i" st!rtu%8con&i" R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hhostn!#e N N )con&i",Hinter&!ce seri!l 0 N )con&i"8i&,Henc!%sul!tion &r!#e8rel!( N )con&i"8i&,He+it N )con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint N )con&i"8su4i&,Hi% !--ress 1<$.100.1.$ $**.$**.$**.0 N )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 0$ N )con&i"8su4i&,HUT N Hco%( runnin"8con&i" st!rtu%8con&i" R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hhostn!#e Lon-on Lon-on)con&i",Hinter&!ce seri!l 0 Lon-on)con&i"8i&,Henc!%sul!tion &r!#e8rel!( Lon-on)con&i"8i&,He+it Lon-on)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint Lon-on)con&i"8su4i&,Hi% !--ress 1<$.100.$.$ $**.$**.$**.0 Lon-on)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 0' Lon-on)con&i"8su4i&,HUT Lon-onHco%( runnin"8con&i" st!rtu%8con&i" R3Gen!4le R3Hcon&i"ure ter#in!l R3)con&i",Hhostn!#e LA LA)con&i",Hinter&!ce seri!l 0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$*

LA)con&i"8i&,Henc!%sul!tion &r!#e8rel!( LA)con&i"8i&,He+it LA)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint LA)con&i"8su4i&,Hi% !--ress 1<$.100.'.$ $**.$**.$**.0 LA)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 03 LA)con&i"8su4i&,HUT LAHco%( runnin"8con&i" st!rtu%8con&i" *ac&

1*.' : L!4 E+ercise ' : Fr!#e8Rel!( 2ith su48inter&!ces A Routin"

escri%tion: Configure fra e6relay using su"6interfaces. Test for connecti-ity.

.nstructions: 1. 1ssign IP 1ddresses on all the de-ices as per the a"o-e diagra interface J= is used) $. Set the encapsulation para eters appropriately on 0= and 09 '. Ping fro PC= to PC! and -ice -ersa '/n 0= and 09 su"6

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$0

R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi% !--ress 19*.10.1.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce seri!l 1.1 %oint8to8%oint R1)con&i"8su4i&,Hi% !--ress $1*.10.1.1 $**.$**.$**.0 R1)con&i"8su4i&,Hno shut-o2n R1)con&i"8su4i&,Henc!%sul!tion &r!#e8rel!( R1)con&i"8su4i&,He+it R1)con&i",Hrouter ri% R1)con&i"8router,Hnet2ork 19*.10.1.0 R1)con&i"8router,Hnet2ork $1*.10.1.0 R1)con&i"8router,He+it R1)con&i",He+it R1H R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi% !--ress 19*.10.1.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce seri!l 1 R$)con&i"8i&,Hi% !--ress 1;0.10.1.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hinter&!ce ethernet 0 R$)con&i"8i&,Hi% !--ress 1<9.10.1.1 $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter ri% R$)con&i"8router,Hnet2ork 19*.10.1.0 R$)con&i"8router,Hnet2ork 1;0.10.1.0 R$)con&i"8router,Hnet2ork 1<9.10.1.0 R$)con&i"8router,He+it R$)con&i",He+it R$H R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hinter&!ce seri!l 0 R')con&i"8i&,Hi% !--ress 1;0.10.1.$ $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hinter&!ce ethernet 0 R')con&i"8i&,Hi% !--ress 1<*.10.1.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$9

R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter ri% R')con&i"8router,Hnet2ork 1;0.10.1.0 R')con&i"8router,Hnet2ork 1<*.10.1.0 R')con&i"8router,He+it R')con&i",He+it R'H R3Gen!4le R3Hcon&i"ure ter#in!l R3)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint R3)con&i"8su4i&,Hi% !--ress $1*.10.1.$ $**.$**.$**.0 R3)con&i"8su4i&,Hno shut-o2n R3)con&i"8su4i&,Henc!%sul!tion &r!#e8rel!( R3)con&i"8su4i&,He+it R3)con&i",Hrouter ri% R3)con&i"8router,Hnet2ork $1*.10.1.0 R3)con&i"8router,He+it R3)con&i",He+it R3H SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce 1l!n 1 SD1)con&i"8i&,Hi% !--ress 1<*.10.1.<< $**.$**.$**.0 SD1)con&i"8i&,Hno shut-o2n SD1)con&i"8i&,He+it SD1)con&i",He+it SD1H SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce 1l!n 1 SD$)con&i"8i&,Hi% !--ress 1<*.10.1.100 $**.$**.$**.0 SD$)con&i"8i&,Hno shut-o2n SD$)con&i"8i&,He+it SD$)con&i",He+it SD$H SD'Gen!4le SD'Hcon&i"ure ter#in!l SD')con&i",Hinter&!ce 1l!n 1 SD')con&i"8i&,Hi% !--ress 1<9.10.1.<< $**.$**.$**.0 SD')con&i"8i&,Hno shut-o2n SD')con&i"8i&,He+it SD')con&i",He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$;

SD'H SD3Gen!4le SD3Hcon&i"ure ter#in!l SD3)con&i",Hinter&!ce 1l!n 1 SD3)con&i"8i&,Hi% !--ress 1<9.10.1.100 $**.$**.$**.0 SD3)con&i"8i&,Hno shut-o2n SD3)con&i"8i&,He+it SD3)con&i",He+it SD3H /C1:i% !--ress 1<*.10.1.$ $**.$**.$**.0 /C$:i% !--ress 1<9.10.1.$ $**.$**.$**.0 /C1:%in" /C$ /C1:%in" R3 /C$:%in" /C1 /C$:%in" R3

*ac&

1*.3 : L!4 E+ercise 3 : Fr!#e8Rel!( 2ith Sho2 Co##!n-s

escri%tion : This is a "asic la" e:ercise on fra e6relay which showcases on fra e6relay connection and show co ands associated to fra e6relay .nstructions : 1. Configure .ra e60elay on 0= Serial 0 interface to an IP 1ddress of =S!.=68.=00.= !((.!((.!((.0 and ena"le the interface. Use fra e6relay ap state ents for static apping and use 15SI as its ,MI type $. Configure .ra e60elay on 0! Serial 0 interface to an IP 1ddress of =S!.=68.=00.! !((.!((.!((.0 and ena"le the interface. Use fra e6relay ap state ents for static apping and use 15SI as its ,MI type '. Use show interfaces serial 0 co and on 0= and 0! in order to chec& that the routers are successfully connected to their fra e6relay networ&. See that in the output# the encapsulation type is .ra e60elay 3. Issue show fra e6relay ap co and on 0= and 0! which displays the appings of local +,CIs to re ote IP 1ddresses *. Issue show fra e6relay l i co and on 0= which displays the ,ocal Manage ent Interface statistics 0. Issue show fra e6relay p-c Tdlci6nu I co and on 0= and 0! which displays the per anent -irtual circuit 'P;C) appings for the router. 9. Ping fro 0! to 0= and chec& connecti-ity
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1$<

R1Gen! R1Hcon ter R1)con&i",Hint s 0 R1)con&i"8i&,Henc!%sul!tion &r!#e8rel!( R1)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 R1)con&i"8i&,H&r!#e8rel!( #!% i% 1<$.10;.100.$ 10* 4ro!-c!st R1)con&i"8i&,H&r!#e8rel!( l#i8t(%e !nsi R1)con&i"8i&,Hno shut R1)con&i"8i&,He+it R$Gen! R$Hcon ter R$)con&i",Hint s 0 R$)con&i"8i&,Henc!%sul!tion &r!#e8rel!( R$)con&i"8i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 R$)con&i"8i&,H&r!#e8rel!( #!% i% 1<$.10;.100.1 *01 4ro!-c!st R$)con&i"8i&,H&r!#e8rel!( l#i8t(%e !nsi R$)con&i"8i&,Hno shut R1)con&i"8i&,He+it R1Hsho2 inter&!ces seri!l 0 R$Hsho2 inter&!ces seri!l 0 R1Hsho2 &r!#e8rel!( #!% R$Hsho2 &r!#e8rel!( #!% R1Hsho2 &r!#e8rel!( l#i R1Hsho2 &r!#e8rel!( %1c 10* R$Hsho2 &r!#e8rel!( %1c *01 R$H%in" 1<$.10;.100.1 *ac& Note : Con-itions to 4e s!tis&ie- &or ! Fr!#e Rel!( net2ork to 2ork: =. 0especti-e interfaces 'say# s0 on 0= and s0 on 0!) to "e configured with appropriate IP address and su"net ast 'they ha-e to "e on sa e su"net) !. The interfaces should "e up 3. .ra e relay should "e ena"led "y issuing co and Eencapsulation fra e6relayF on "oth the sides. The default encap of ECiscoF is ena"led. 9. dlci is to "e assigned on local lin& using the co Tdlci6noIF on "oth the participating interfaces.
Version 1.0

and Efra e6relay interface6dlci

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'0

(. 5ote that the dlci has only local significance and need not "e sa e on "oth sides.

1*.* : L!4 E+ercise * : Fr!#e8Rel!( Full Mesh To%olo"(

escri%tion : This e:ercise de onstrates configuring .ull Mesh Topology using .ra e60elay su"6interfaces.

.nstructions : 1. 1ssign hostna es of ,+# 5+# 5? and ,1 to 0=# 0!# 03 and 09 respecti-ely $. /n ,+# enter interface configuration ode for Serial 0 interface and set the encapsulation type to .ra e60elay and ena"le the interface '. 5ow create a su"6interface for the connection "etween ,+ and 5+ and assign the +,CI nu "er to the su"6interface and configure it with appropriate IP 1ddress and ena"le the su"6interface 3. Create a su"6interface for the connection fro ,+ to 5? and assign the +,CI nu "er and configure it with IP 1ddress and ena"le the su"6interface *. Create a su"6interface for the connection fro ,+ to ,1 and assign the +,CI nu "er and configure it with IP 1ddress and ena"le the su"6interface 0. 1ccess the Serial 0 interface of 5+ and set the encapsulation to .ra e60elay and ena"le the interface 9. Create the first su"6interface for the connection fro 5+ to ,+ and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface ;. Create the su"6interface for the connection fro 5+ to 5? and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface <. Create the su"6interface for the connection fro 5+ to ,1 and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'1

10. 1ccess the Serial 0 interface of 5? and set the encapsulation to .ra e60elay and ena"le the interface 11. Create the first su"6interface for the connection fro 5? to ,+ and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 1$. Create the su"6interface for the connection fro 5? to 5+ and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 1'. Create the su"6interface for the connection fro 5? to ,1 and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 13. 1ccess the Serial 0 interface on ,1 and set the encapsulation to .ra e60elay and ena"le the interface 1*. Create the first su"6interface for the connection fro ,1 to ,+ and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 10. Create the su"6interface for the connection fro ,1 to 5+ and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 19. Create the su"6interface for the connection fro ,1 to 5? and assign the +,CI nu "er# configure it with IP 1ddress and ena"le the su"6interface 1;. 5ow# all interfaces should "e up. Connect to ,+ and try to ping each of the three offices '5+# 5? and ,1) 1<. Connect to 5+ and ping the other three offices L )con&i",Hinter&!ce seri!l 0 L )con&i"8i&,Henc!%sul!tion &r!#e8rel!( L )con&i"8i&,Hno shut-o2n L )con&i"8i&,He+it L )con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint L )con&i"8su4i&,H L )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci $0$ L )con&i"8su4i&,Hi% !--ress 1<$.10;.101.1 $**.$**.$**.0 L )con&i"8su4i&,Hno shut-o2n L )con&i"8su4i&,He+it L )con&i",Hinter&!ce seri!l 0.$ %oint8to8%oint L )con&i"8su4i&,H L )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci '0' L )con&i"8su4i&,Hi% !--ress 1<$.10;.10$.1 $**.$**.$**.0 L )con&i"8su4i&,Hno shut-o2n L )con&i"8su4i&,He+it L )con&i",Hinter&!ce seri!l 0.' %oint8to8%oint L )con&i"8su4i&,H L L L L L )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci $03 )con&i"8su4i&,Hi% !--ress 1<$.10;.10'.1 $**.$**.$**.0 )con&i"8su4i&,Hno shut-o2n )con&i"8su4i&,He+it )con&i",He+it

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'$

N N N N

)con&i",Hinter&!ce seri!l 0 )con&i"8i&,Henc!%sul!tion &r!#e8rel!( )con&i"8i&,Hno shut-o2n )con&i"8i&,He+it

N )con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint N )con&i"8su4i&,H N )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci *01 N )con&i"8su4i&,Hi% !--ress 1<$.10;.101.$ $**.$**.$**.0 N )con&i"8su4i&,Hno shut-o2n N )con&i"8su4i&,He+it N )con&i",Hinter&!ce seri!l 0.$ %oint8to8%oint N )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci $0' N )con&i"8su4i&,Hi% !--ress 1<$.10;.103.1 $**.$**.$**.0 N )con&i"8su4i&,Hno shut-o2n N )con&i"8su4i&,He+it N )con&i",Hinter&!ce seri!l 0.' %oint8to8%oint N N N N N )con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci '03 )con&i"8su4i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 )con&i"8su4i&,Hno shut-o2n )con&i"8su4i&,He+it )con&i",He+it

N@)con&i",Hinter&!ce seri!l 0 N@)con&i"8i&,Henc!%sul!tion &r!#e8rel!( N@)con&i"8i&,Hno shut-o2n N@)con&i"8i&,He+it N@)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci '01 N@)con&i"8su4i&,Hi% !--ress 1<$.10;.10$.$ $**.$**.$**.0 N@)con&i"8su4i&,Hno shut-o2n N@)con&i"8su4i&,He+it N@)con&i",Hinter&!ce seri!l 0.$ %oint8to8%oint N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 30$ N@)con&i"8su4i&,Hi% !--ress 1<$.10;.103.$ $**.$**.$**.0 N@)con&i"8su4i&,Hno shut-o2n N@)con&i"8su4i&,He+it N@)con&i",Hinter&!ce seri!l 0.' %oint8to8%oint N@)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 303
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1''

N@)con&i"8su4i&,Hi% !--ress 1<$.10;.10*.1 $**.$**.$**.0 N@)con&i"8su4i&,Hno shut-o2n LA)con&i",Hinter&!ce seri!l 0 LA)con&i"8i&,Henc!%sul!tion &r!#e8rel!( LA)con&i"8i&,Hno shut-o2n LA)con&i"8i&,He+it LA)con&i",Hinter&!ce seri!l 0.1 %oint8to8%oint LA)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci 301 LA)con&i"8su4i&,Hi% !--ress 1<$.10;.10'.$ $**.$**.$**.0 LA)con&i"8su4i&,Hno shut-o2n LA)con&i"8su4i&,He+it LA)con&i",Hinter&!ce seri!l 0.$ %oint8to8%oint LA)con&i"8i&,H&r!#e8rel!( inter&!ce8-lci *0' LA)con&i"8su4i&,Hi% !--ress 1<$.10;.10*.$ $**.$**.$**.0 LA)con&i"8su4i&,Hno shut-o2n LA)con&i"8su4i&,He+it LA)con&i",Hinter&!ce seri!l 0.' %oint8to8%oint LA)con&i"8su4i&,H&r!#e8rel!( inter&!ce8-lci *0$ LA)con&i"8su4i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 LA)con&i"8su4i&,Hno shut-o2n LA)con&i"8su4i&,He+it L H%in" 1<$.10;.101.$ L H%in" 1<$.10;.10$.$ L H%in" 1<$.10;.10'.$ N H%in" 1<$.10;.101.1 N H%in" 1<$.10;.103.$ N H%in" 1<$.10;.100.$

*ac&

1*.0 O45ecti1e Test 10 : Ans2er the &ollo2in" Euestions

1. 4hich of the following state ents is true a"out .ra e 0elayA !, .ra e 0elay is a ,ayer 3 standard 4, .ra e 0elay +,CIs ha-e glo"al significance c, Cisco I/S supports only two ,MI types# na ely <cisco<# and <7S33a<
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'3

-, .ra e 0elay encapsulation type <ietf< needs to "e selected when connecting to a non6cisco router. $. ?ou are configuring .ra e 0elay on a serial su" interface in point6to6point en-iron ent. 4hich co and assigns a dlci of =00 to the su" interface s0.=A 1ssu e that you are at appropriate su"6interface configuration le-el and already issued the co and@ Ninterface serial0.= point6to6pointN !, interface serial 0.= dlci =00 4, fra e6relay interface6dlci =00 c, interface6dlci =00 -, fra e6relay dlci =00 '. *o" is configuring fra e6relay on a router as shown in the e:hi"it. 4hat is the co and he should issue at 0outer= to statically ap the destination networ& '0outer!). 1ssu e that "oth are Cisco routers. GPlease refer to the i age "elowH !, 0outer='config6if)J fra 4, 0outer='config6if)J fra c, 0outer='config6if)J fra -, 0outer='config6if)J fra e6relay ap ip =S!.=68.!9.( !00 e6relay ap ip =S!.=68.!9.( =00 e6relay ap ip =S!.=68.36.S =00 e6relay ap ip =S!.=68.36.S !00

3. 0o"ert is configuring a .ra e 0elay networ&. Please refer to the configuration gi-en "elow for details. Fr!#e8rel!( su4 inter&!ce con&i"ur!tion Router)con&i",Hint s 0 Router)con&i"8i&,Hi% !--ress 1<$.10;.10.1 $**.$**.$**.0 Router)con&i"8i&,Hint s 0.1 %oint8to8%oint Router)con&i"8i&,H&r!#e8rel!( inter&!ce8-lci 110 Router)con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'*

Router)con&i",H 4hich of the following co ands should not "e gi-enA

!, The fra e6relay ap co and 4, "andwidth 69 co and c, interface serial co and -, ip address =S!.=68.=0.= !((.!((.!((.0 co

and and displays

*. ?ou are diagnosing a recently configured .ra e60elay connection. 4hich co the ,MI status "etween the router and the .ra e60elay switchA !, show fra e6relay interface 4, show fra e6relay l i c, show interface -, show fra e6relay p-c 0. .ra e 0elay supports which of the followingA !, P;Cs only 4, S;Cs only c, *oth P;Cs and S;Cs -, 5one

9. *ret is diagnosing a .ra e60elay connecti-ity pro"le . $e wants to see the contents of the routing ta"le# and the .ra e60elay apping infor ation. 4hich co ands can "e used for this purposeA 'Choose ! "est answers) !, show ip route 4, show fra e6relay detail c, show fra e6relay ap -, show ap fra e6relay ;. 4hich of the following is true a"out .ra e 0elay +,CIsA 'Choose ! "est answers) !, +,CIs ha-e glo"al significance# in the sense that the end de-ices at two different ends of a connection ust use the sa e +,CI to refer to the sa e connection 4, +,CIs ha-e only local significance. c, +,CIs should "e uni7ue on a router interface. -, The end de-ices of a .ra e 0elay connection ust use the different +,CI nu "ers to refer to the sa e .ra e 0elay connection. <. The co and fra e6relay ap ip !!0.!!!.!6.8 !0! "roadcast was entered on the router. 4hich of the following state ents is true concerning this co andA 'Choose ! "est answers) !, Use the fra e6relay ap co and in interface configuration ode 4, The IP address !!0.!!!.!6.8 is the local router port used to forward
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'0

data. c, !0! is the re ote +,CI that will recei-e the infor ation. -, The "roadcast option allows "roadcast pac&ets# such as 0IP updates# to "e forwarded across the P;C e, This co and is re7uired for all .ra e 0elay configurations. 10. 1 default .ra e 0elay 415 is classified as what type of physical networ&A !, point6to6point 4, "roadcast ulti6access c, non"roadcast ultipoint -, non"roadcast ulti6access e, "roadcast point6to6 ultipoint 11. 4hat is the eaning of the ter relay ap co and shownA R1Hsho2 &r!#e8rel!( #!% Seri!l 0?0)u%,:i% 1<$.10;.$.$ -lci $00 )0+03F 0+1;30,F -(n!#ic 4ro!-c!stFF st!tus -e&ine-F !cti1e !, The Serial030 interface is learned dyna ically 4, The +,CI !00 was dyna ically allocated "y the router c, The Serial030 interface ac7uired the IP address of 1<$.10;.$.$ fro a +$CP ser-er -, The apping "etween +,CI !00 and the end station IP address 1<$.10;.$.$ was learned through In-erse 10P e, The +,CI !00 will "e dyna ically changed as re7uired to adapt to changes in the .ra e 0elay cloud. dyna ic as displayed in the output of the show fra e6

10. E+ercises on ./10 10.1 : L!4 E+ercise 1 : En!4lin" ./10 on ! cisco router
escri%tion : This la" de onstrates the steps re7uired to ena"le ip-6 on a cisco router. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. R1Gen!4le R1Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'9

R1)con&i",Hi%10 unic!st8routin" R1)con&i",He+it R1He+it R1G Note@ The first step of ena"ling IP-6 on a Cisco router is the acti-ation of IP-6 traffic forwarding to forward unicast IP-6 pac&ets "etween networ& interfaces. *y default# IP-6 traffic forwarding is disa"led on Cisco routers. The i%10 unic!st8routin" co interfaces on the router. and is used to ena"le the forwarding of IP-6 pac&ets "etween *ac&

10.$ : L!4 E+ercise $ : En!4lin" ./10 on cisco router inter&!ce

escri%tion : This la" de onstrates the steps re7uired to ena"le ip-6 on a cisco router interface. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into interface configuration ode and then use the co and Nip-6 ena"leN to ena"le ip-6 processing on the interface and the co and also auto atically configures an IP-6 lin&6local address on the interface. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 en!4le R1)con&i"8i&,He+it R1)con&i",He+it

Note: To configure a router so that it uses only lin& local addresses# you only ha-e to gi-e ip-6 ena"le co and. Issuing an ip-6 address co and auto atically configure lin& local addresses. *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1';

10.' : L!4 E+ercise ' : Con&i"urin" ./10 on ! cisco router inter&!ce 2ith ./10 !--ress in EU.8&or#!t
escri%tion : This la" de onstrates the steps re7uired to configure ip-6 address on a cisco router interface in 2UI669 for at. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 1ssign a IP-6 address to the interface in 2UI6for at and e:it. *. Issue the appropriate show co and to -erify the configuration. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 !--ress '001:!c*0:0:1::?03 eui803 R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 i%10 inter&!ce s0 Note: In 2UI669 for at# the re aining 69 "its are auto atically generated using M1C address "ut M1C addresses are 6 "ytes '98 "its) in length# so for a host to auto atically decide on a -alue to use in the 86"yte '696"it) interface I+ field IP-6 fills in ! ore "ytes. To do so# IP-6 separates the M1C address into two 36"yte hal-es# and inserts he: ...2 in "etween the hal-es# to for the interface I+ field# as well as setting = special "it to "inary =. This for at# called the 2UI669 for at and this is ter ed as stateless autoconfiguration which is the echanis that allows nodes on a networ& to configure their IP-6 addresses the sel-es without any inter ediary de-ice# such as a +$CP ser-er. *ac&

10.3 : L!4 E+ercise 3 : Con&i"urin" ./10 on ! cisco router inter&!ce 2ith ./10 !--ress in "ener!l &or#
escri%tion : This la" de onstrates the steps re7uired to configure ip-6 address in general for at on a cisco router interface. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1'<

datagra s glo"ally on the router. 3. 1ssign a IP-6 address in general for to the interface and e:it. *. Issue the appropriate show co and to -erify the configuration. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 !--ress '001:!c*0:0:1:*'!-::$?03 R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 i%10 inter&!ce s0 *ac&

10.* : L!4 E+ercise * : Con&i"urin" loo%4!ck inter&!ce 2ith ./10 !--ress

escri%tion: This la" de onstrates configuring loop"ac& address on an interface. .nstructions 1. 2nter into glo"al configuration ode of router 0=. $. 2nter into loop"ac& ode on 0= and assign an IP-6 address to it. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hinter&!ce loo%4!ck 0 R1)con&i"8i&,Hi%10 !--r $001:c-4!:<!4c:*09;::$?03 R1)con&i"8i&,He+it R1)con&i",He+it R1H Note: IP;6 loop"ac& is @@=3=!8 Vust li&e loop"ac& in IP-9 which is =!C.0.0.=. The IP-6 loop"ac& address cannot "e assigned to a physical interface. 4e can configure site6local or aggregata"le glo"al unicast addresses on the loop"ac& interface using the i%10 !--ress co and. In the a"o-e la"# loop"ac& 0 is selected. *ac&

10.0 : L!4 E+ercise 0 : Con&i"urin" ./10 on t2o router inter&!ces connecte-irectl( !n- %in"in" the -ist!nt inter&!ce usin" console
escri%tion : This la" de onstrates IP-6 address configuration on 0= and 0! and using
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

130

ping co

and# testing the connecti-ity.

.nstructions 1. 2nter into glo"al configuration ode on 0= and assign IP-6 address to it. $. 2nter into glo"al configuration ode on 0! and assign IP-6 address to it. '. Test for connecti-ity "etween the two routers using ping co and and -erify if it is successful. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 !--ress '&&e:400:&&&&:1::1?03 R1)con&i"8i&,He+it R1)con&i",He+it R1H R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hi%10 unic!st8routin" R$)con&i",Hinter&!ce seri!l 0 R$)con&i"8i&,Hi%10 !--ress '&&e:400:&&&&:1::$?03 R$)con&i"8i&,He+it R$)con&i",He+it R$H R$H%in" i%10 '&&e:400:&&&&:1::1?03 *ac&

10.9 : L!4 E+ercise 9 : Tr!ceroute l!4

escri%tion : This la" de onstrates the traceroute functionality with respect to Ip-6.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

131

.nstructions: 1. 2nter into glo"al configuration ode on 0= and assign IP-6 address to its serial 0 and ethernet 0 interfaces. $. 2nter into glo"al configuration ode on 0! and assign IP-6 address to its ethernet 0 interface '. 2nter into glo"al configuration ode on 03 and assign IP-6 address to its serial 0 interface. 3. Test for traceroute co and on router 0! to trace its path to reach router 03. R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 !--ress $001:!4:'0c:$::1?03 R1)con&i"8i&,He+it R1)con&i",Hinter&!ce e 0 R1)con&i"8i&,Hi%10 !--ress '&&e:400:&&&&:1::1?03 R1)con&i"8i&,He+it R1)con&i",He+it R1H R$Gen!4le R$Hcon&i"ure ter#in!l R$)con&i",Hi%10 unic!st8routin" R$)con&i",Hinter&!ce e 0 R$)con&i"8i&,Hi%10 !--ress '&&e:400:&&&&:1::$?03 R$)con&i"8i&,He+it R$)con&i",He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13$

R$H R'Gen!4le R'Hcon&i"ure ter#in!l R')con&i",Hi%10 unic!st8routin" R')con&i",Hinter&!ce s 0 R')con&i"8i&,Hi%10 !--ress $001:!4:'0c:$::$?03 R')con&i"8i&,He+it R')con&i",He+it R'H R$Htr!ceroute i%10 $001:!4:'0c:$::$?03

*ac&

10.; O45ecti1e Test 11 : Ans2er the &ollo2in" Euestions:

1. $ow any "ytes 'octets) does an IP-6 address consist ofA !, 8 4, =6 c, 9 -, 3! $. In he:adeci al colon notation# a =!86"it address is di-ided into \\\\\\\ sections# each \\\\\ he:adeci al digits in length. !, 8@ 3 4, 8@ ! c, 8@ 9 -, 5one of the a"o-e '. The correct for at of an IP-6 glo"al address is which of the followingA !, 3!6"it glo"al routing prefi:W 3!6"it su"net I+W 696"it interface I+ 4, 696"it glo"al routing prefi:W no su"net I+W 696"it interface I+ c, 986"it glo"al routing prefi:W =66"it su"net I+W 696"it interface I+. -, 696"it glo"al routing prefi:W 3!6"it su"net I+W 696"it interface I+. 3. 4hich of the following are -alid IP-6 addressesA 'Choose three.) !, !00=@0"c8@0000@0000@0000@0000@==!8@6a" 4, !00=@0"c8@@==!8@6a" c, !00=@@=3cd@=C8=@@=9!8@(Ca" -, !00=@SS@a"@=@SS@!@=@S e, !00=@=8(8@(Ca"@=39(@!!!3@=C!8@39"c

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13'

*. The shortest -alid a""re-iation for 300=@0000@0000@0=00@0000@0000@0000@039( is which of the following gi-en addressesA !, 300=@@=00@@39( 4, 300=@@=@@39( c, 300=@@=00@0@0@0@39(@9(6C -, 300=@0@0@=00@@39( 0. 4hich of the following addresses represent the =!86"it loop"ac& address in IP-6A 'Choose two) !, 00@00@00@00@@=!C 4,@@= c, =!C.0.0.= -, 0@0@0@0@0@0@0@= 9. 4hich of the following addresses represents the IP-6 unspecified addressA 'Choose two) !, @@ 4, ..00@@38 c, 0@0@0@0@0@0@0@0 -, .280@@3=0 e, .2C0@@3=0 ;. 4hich of the following are in-alid IP-6 co !, Unicast 4, Multicast c, *roadcast -, 1nycast e, Cryptocast <. The feature of IP-6 which allows a client to recei-e an IP address without the use of +$CP ser-er is which of the followingA !, Stateful +$CP 4, IPsec c, Stateless autoconfiguration -, P/S 10. IP-6 descri"es rules for the following types of addressing. 4hich is co "etween a single sender and the nearest of se-eral recei-ers in a groupA !, 1nycast 4, Unicast c, Multicast -, *roadcast 11. 4hat is the prefi: for an IP-6 lin&6local addressA
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

unication typesA 'Choose two.)

unication

133

!, .200 4, !(6 c, .280 -, !00! 1$. 4hich two of the following are correct a"out characteristics of IP-6 unicast addressingA !, ,in&6local addresses start with ..00@@3=0. 4, Blo"al addresses start with !000@@33. c, There is only one loop"ac& address and it is @@=. -, ,in&6local addresses start with .200@3=!.

19. E+ercises on ./10 Routin" /rotocols 19.1 : L!4 E+ercise 1 : En!4lin" R./n" on ! cisco router inter&!ce
escri%tion: This la" e:ercise de onstrates ena"ling 0IPng for IP-6 'ne:t6generation 0IP protocol) on a router interface. .nstructions: 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into interface configuration ode and then use the co and Nip-6 rip Tna eI ena"le co and to ena"le the specified 0IP routing process on an interface. *. Issue Nshow ip-6 ripN co and that displays infor ation a"out the configured 0IP routing processes. R1Gen!4le R1Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 ri% %n!#e1 en!4le R1)con&i"8i&,He+it R1)con&i",He+it R1Hsho2 i%10 ri% R1Hsho2 i%10 %rotocols Note: ip-6 rip Tna eI ena"le co an interface. and ena"les the specified IP-6 0IP routing process on

The process na e is only significant within the router# and allows you to run ore than one 0IP process if you want to. *ecause it is only locally significant# e-ery router can ha-e
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13*

a different 0IP process na e without conflict# although we generally don<t reco this# as it can "eco e confusing to anage.

end *ac&

19.$ : L!4 E+ercise $ : En!4lin" R./n" on t2o routers !n- %in"in" 4et2een the#
escri%tion: This la" e:ercise de onstrates testing the connecti-ity using ping "etween two routers configured with 0IP routing processes.

.nstructions: 1. 2nter into pri-ileged ode on router ,ondon ',+). $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into interface configuration ode and then assign IP-6 address on the interface. and then use the co and Nip-6 rip Tna eI ena"le co and to ena"le the specified 0IP routing process on an interface. *. Use the co and Nno shutdownN to start the protocol and issue copy run start config co and 0. 2nter into pri-ileged ode on router 5ewyor& '5?). 9. 2nter into glo"al configuration ode. ;. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. <. 2nter into interface configuration ode and then assign IP-6 address on the interface. and then use the co and Nip-6 rip Tna eI ena"le co and to ena"le the specified 0IP routing process on an interface. 10. Use the co and Nno shutdownN to start the protocol and issue copy run start config co and 11. Ping ,+ fro 5? and test for connecti-ity. L Gen!4le L Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. L )con&i",Hi%10 unic!st8routin" L )con&i",Hinter&!ce seri!l 0 L )con&i"8i&,Hi%10 !--ress $001:'!4c:-00:3!4:$::1?03 L )con&i"8i&,Hi%10 ri% %rocess1 en!4le L )con&i"8i&,Hno shut-o2n
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

130

L L L L

)con&i"8i&,He+it )con&i",He+it Hco%( runnin"8con&i" st!rtu%8con&i" H

N@Gen!4le N@Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. N@)con&i",Hi%10 unic!st8routin" N@)con&i",Hinter&!ce seri!l 0 N@)con&i"8i&,Hi%10 !--ress $001:'!4c:-00:3!4:$::$?03 N@)con&i"8i&,Hi%10 ri% %rocess1 en!4le N@)con&i"8i&,Hno shut-o2n N@)con&i"8i&,He+it N@)con&i",He+it N@Hco%( runnin"8con&i" st!rtu%8con&i" N@H%in" i%10 $001:'!4c:-00:3!4:$::1?03 *ac&

19.' : L!4 E+ercise ' : Enterin" R./n" router con&i"ur!tion #o-e !nsettin" "lo4!l %!r!#eters on ! cisco router
escri%tion: This la" e:ercise de onstrates the co ands re7uired to enter into 0IP router configuration ode and then set or change glo"al para eters li&e a:i u 6path# redistri"ute etc. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into router configuration ode using the co and Nip-6 router rip TwordI and then set the a:i u path and ti er -alues and then issue show ip-6 rip co and to -erify the para eters set. R1Gen!4le R1Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hi%10 router ri% %rocess1 R1)con&i"8router,H#!+i#u#8%!ths * R1)con&i"8router,Hti#ers * 1* 10 '0 R1)con&i"8router,HUT R1Hsho2 i%10 ri%

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

139

Note: ip-6 router rip TwordI co and configures an IP-6 0IP routing process and enters router configuration ode for the IP-6 0IP routing process. Use the word argu ent to identify a specific IP-6 0IP routing process. The co and N a:i u 6paths Tnu "erI defines the a:i u nu "er of e7ual6cost routes that IP-6 0IP can support. The nu "er6paths argu ent is an integer fro = to 69. The default for 0IP is four paths. The co and ti ers ( =( =0 30# the update ti er is reduced to ( sec# ti eouts occur after =( sec# holddown lasts =0 sec and gar"age collection is acti-ated after 30 sec. U%-!tes ti er is the periodic update ti er. E+%ire ti er is the ti e in which updates e:pire. :ol--o2n ti er is the ti e for which a router will not accept any new updates for the router. >!r4!"e collect ti er s the ti e during which the route will "e continued to ad-ertise "ut if no updates are recei-ed# the route will "e re o-ed fro the data"ase. *ac&

19.3 : L!4 E+ercise 3 : Con&i"urin" E.>R/10 on ! router inter&!ce

escri%tion: This la" e:ercise de onstrates steps re7uired to configure 2IB0P-6 on a router interface. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into interface configuration ode and ena"le IP-6 processing on the interface. *. Use the co and Nip-6 eigrp Tas6nu "erIN to ena"le 2IB0P for IP-6 on a specified interface and then issue no shutdown co and to start the protocol. 0. Use the co and Nip-6 router eigrp Tas6nu "erI to enter into router configuration ode and create an 2IB0P IP-6 routing process. 9. The co and Nrouter6id Tip6addressIN ena"les the use of a uni7ue fi:ed router I+. 1lso use no shutdown co and. R1Gen!4le R1Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. R1)con&i",Hi%10 unic!st8routin" R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 en!4le R1)con&i"8i&,Hi%10 ei"r% 10 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hi%10 router ei"r% 10 R1)con&i"8router,Hrouter8i- 10.1.1.1 R1)con&i"8router,Hno shut-o2n
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13;

R1)con&i"8router,He+it R1)con&i",He+it R1H Note: The co and ip-6 eigrp Tas6nu "erI ena"les 2IB0P for IP-6 on a specified interface. 1nd the co and ip-6 router eigrp Tas6nu "erI enters router configuration ode and creates an 2IB0P IP-6 routing process. The co and eigrp router6id Tip6addressI ena"les the use of a fi:ed router I+. Use this co and only if an IP-9 address is not defined on the router eligi"le for router I+. The N1SN stands for 1utono ous Syste nu "er. This nu "er should "e the sa e on all routers. *ac&

19.* : L!4 E+ercise * : Con&i"urin" E.>R/10 on t2o routers !n- %in"in" 4et2een the#
escri%tion: This la" e:ercise de onstrates steps re7uired to configure 2IB0P-6 on two routers and testing the connecti-ity "etween the using ping co and.

.nstructions 1. 2nter into pri-ileged ode on router *oston '*5). $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 2nter into interface configuration ode and assign an IP-6 address on the interface. *. Use the co and Nip-6 eigrp Tas6nu "erIN to ena"le 2IB0P for IP-6 on a specified interface and then issue no shutdown co and to start the protocol. 0. Use the co and Nip-6 router eigrp Tas6nu "erI to enter into router configuration ode and create an 2IB0P IP-6 routing process. 9. The co and Nrouter6id Tip6addressIN ena"les the use of a uni7ue fi:ed router I+. 1lso use no shutdown co and. ;. 0epeat the sa e steps on Chicago 'CB) and ping *5 to test the connecti-ity. BNGen!4le BNHcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. BN)con&i",Hi%10 unic!st8routin" BN)con&i",Hinter&!ce ethernet 0 BN)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:1::$?03 BN)con&i"8i&,Hi%10 ei"r% 10
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

13<

BN)con&i"8i&,Hno shut-o2n BN)con&i"8i&,He+it BN)con&i",Hi%10 router ei"r% 10 BN)con&i"8router,Hrouter8i- 10.1.1.1 BN)con&i"8router,Hno shut-o2n BN)con&i"8router,He+it BN)con&i",He+it BNH C>Gen!4le C>Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. C>)con&i",Hi%10 unic!st8routin" C>)con&i",Hinter&!ce Ethernet 0 C>)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:1::'?03 C>)con&i"8i&,Hi%10 ei"r% 10 C>)con&i"8i&,Hno shut-o2n C>)con&i"8i&,He+it C>)con&i",Hi%10 router ei"r% 10 C>)con&i"8router,Hrouter8i- 10.$.$.1 C>)con&i"8router,Hno shut-o2n C>)con&i"8router,He+it C>)con&i",He+it C>H%in" i%10 $001:3!4c:-00:1::$?03 *ac&

19.0 : L!4 E+ercise 0 : En!4lin" OS/F &or ./10 on ! cisco router inter&!ce
escri%tion: This la" e:ercise de onstrates ena"ling /SP.-3 on a router interface. .nstructions 1. 2nter into pri-ileged ode on router 0=. $. 2nter into glo"al configuration ode. '. 2nter into interface configuration ode and ena"le /SP. for IP-6 on the interface using the co and Nip-6 ospf Tprocess6idI area Tarea6idI 3. Use the co and Nshow ip-6 ospfN that displays general infor ation a"out /SP. routing processes. R1Gen!4le R1Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. R1)con&i",Hinter&!ce seri!l 0 R1)con&i"8i&,Hi%10 en!4le R1)con&i"8i&,Hi%10 os%& 110 !re! 0 R1)con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*0

R1)con&i",He+it R1Hsho2 i%10 os%& R1Hsho2 i%10 %rotocols Note: The co interface. and Nip-6 ospf Tprocess6idI area Tarea6idIN ena"les /SP. for IP-6 on an

Con&i"ur!tion o& OS/F1' c!n !lso 4e !cco#%lishe- throu"h &ollo2in" co##!n-s R1)con&i",Hi%10 router os%& 10 R1)con&i"8router,Hrouter8i- 1.1.1.1 /ther configurations li&e redistri"ution# su ari%ation can "e acco plished fro router config ode. 5ote that this configuration is not re7uired if /SP.-3 is configured fro the interface "ecause in that case this router configuration process is added auto atically. *ac&

19.9 : L!4 E+ercise 9 : Con&i"urin" OS/F on t2o router inter&!ces

escri%tion: This la" e:ercise de onstrates configuring /SP. on two router interfaces.

.nstructions 1. 2nter into pri-ileged ode on router *oston '*5). $. 2nter into glo"al configuration ode. '. 2nter into interface configuration ode and assign a IP-6 address and then ena"le /SP. for IP-6 on the interface using the co and Nip-6 ospf Tprocess6idI area Tarea6idI 3. 2nter into pri-ileged ode on router Chicago 'CB). *. 2nter into glo"al configuration ode. 0. 2nter into interface configuration ode and assign a IP-6 address and then ena"le /SP. for IP-6 on the interface using the co and Nip-6 ospf Tprocess6idI area Tarea6idI BNGen!4le BNHcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. BN)con&i",Hinter&!ce Ethernet 0 BN)con&i"8i&,Hi%10 !--ress $001:-4;:1:1::1?03 BN)con&i"8i&,Hi%10 os%& 100 !re! 1 BN)con&i"8i&,He+it BN)con&i",He+it BNH

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*1

C>Gen!4le C>Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. C>)con&i",Hinter&!ce Ethernet 0 C>)con&i"8i&,Hi%10 !--ress $001:-4;:1:1::$?03 C>)con&i"8i&,Hi%10 os%& 110 !re! 1 C>)con&i"8i&,He+it C>)con&i",He+it C>H *ac&

19.; : L!4 E+ercise ; : >ener!l ./10 con&i"ur!tion on $010 series cisco router
escri%tion: This la" e:ercise de onstrates general IP-6 configuration on the interfaces of !6=0 cisco router and -erifying the configuration using show ip-6 route co and.

.nstructions 1. 2nter into pri-ileged ode on router 0= $. 2nter into glo"al configuration ode. '. 2nter the co and Nip-6 unicast6routingN that ena"les the forwarding of IP-6 unicast datagra s glo"ally on the router. 3. 1ssign IP-6 addresses on the serial interfaces s030# s03=# s=30 and s=3= on the !6=0 cisco router. *. Issue the co and Nshow ip-6 routeN to -erify the configurations R1Gen!4le R1Hcon&i"ure ter#in!l Enter con&i"ur!tion co##!n-sF one %er line. En- 2ith CNTL?J. R1)con&i",Hi%10 unic!st8routin"
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*$

R1)con&i",Hint s 0?0 R1)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:11::?03 eui803 R1)con&i"8i&,He+it R1)con&i",Hint s 0?1 R1)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:1$::?03 eui803 R1)con&i"8i&,He+it R1)con&i",Hint s 1?0 R1)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:1'::?03 eui803 R1)con&i"8i&,He+it R1)con&i",Hint s 1?1 R1)con&i"8i&,Hi%10 !--ress $001:3!4c:-00:13::?03 eui803 R1)con&i"8i&,HUT R1Hco%( run st!rt R1Hsho2 i%10 route *ac&

19.< O45ecti1e Test 1$ : Ans2er the &ollo2in" Suestions

1. /SP.-3 uses which two of the following !, ..0!@@1 4, ..0!@@S c, ..0!@@( -, ..0!@@6 $. 0IPng uses which !, ..0!@@1 4, ..0!@@S c, ..0!@@( -, ..0!@@6 '. 2IB0P-6 uses which of the !, ..0!@@1 4, ..0!@@S c, ..0!@@( -, ..0!@@6 3. 0IPng process can "e started on the router using which of the following co !, 0='config)Jrouter 0IPng 4, 0='config)Jip-6 router rip 0IPng c, 0='config)Jip-6 router rip -, 0='config)Jrip-6 andA ulticast addressA ulticast addressA ulticast addressesA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*'

*. 2IB0P-6 is ena"led using which of the following three co !, 0='config6if)Jip-6 ospf =0 area 0.0.0.0 4, 0='config)Jip-6 router eigrp =0 c, 0='config6rtr)Jno shutdown -, 0='config6if)Jip-6 eigrp =0 e, 0='config6if)Jip-6 router rip = 0. /SP.-3 can "e ena"led using which of the following co !, 0='config6if)Jospf ip-6 =0 area 0 4, 0='config6if)Jip-6 router rip = c, 0='config)Jip-6 router eigrp =0 -, 0='config6if)Jip-6 ospf =0 area 0.0.0.0 9. 4hat is the /SP.-3 address for hello pac&etsA !, ..0!@@( 4, ..03@@S c, ..0!@@6 -, ..0(@@!

andsA

andA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*3

1;. E+ercises on B>/

1;.1 : L!4 E+ercise 1: B!sic B>/ Con&i"ur!tion

Note: This ,a" has three sections .: B!sic B>/ Con&i"ur!tion escri%tion: +escri"es the co ad-ertising networ&s. .nstructions: =. 1ssign the IP addresses to all the de-ices as per the diagra . !. *ring all the interfaces to up. 3. Issue networ& co and on all the de-ices to identify the networ&s to "e ad-ertised "y the *BP process. 9. Issue neigh"or co and on 0outer 0= to identify each neigh"or and its 1S. On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H int s 0 R1)con&i"8i&,Hi% !--ress 10.10.10.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hint s 1 R1)con&i"8i&,Hi% !--ress $0.$0.$0.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

ands for for ing *BP neigh"or relationships and

1**

R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnet2ork 10.10.10.0 R1)con&i"8router,Hnet2ork $0.$0.$0.0 R1)con&i"8router,He+it R1)con&i",He+it R1H On R$: R$Gen!4le R$Hcon& ter# R$)con&i",H int s 0 R$)con&i"8i&,Hi% !--ress 10.10.10.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter 4"% 100 R$)con&i"8router,Hnet2ork 10.10.10.0 R$)con&i"8router,He+it R$)con&i",He+it R$H On R': R'Gen!4le R'Hcon& ter# R')con&i",H int s 0 R')con&i"8i&,Hi% !--ress $0.$0.$0.$ $**.$**.$**.0 R')con&i"8i&,Hno shut-o2n R')con&i"8i&,He+it R')con&i",Hrouter 4"% $00 R')con&i"8router,Hnet2ork $0.$0.$0.0 R')con&i"8router,He+it R')con&i",He+it R'H On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,H nei"h4or 10.10.10.$ re#ote8!s 100 R1)con&i"8router,Hnei"h4or $0.$0.$0.$ re#ote8!s $00 R1)con&i"8router,He+it R1)con&i",He+it ..: M!n!"in" !n- Veri&(in" the B>/ Con&i"ur!tion escri%tion: This section e:plains the co on *BP co ands used to -iew the status of *BP neigh"or relationships and the routes learned through these relationships.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*0

.nstructions: =.2nter into pri-ileged ode !.Issue show ip "gp co and to display the "gp routing ta"le 3.Issue show ip "gp su ary co and to display the status of all "gp sessions. 9.Issue show ip "gp neigh"or co and to displays TCP and *BP connection to neigh"ors. On R1: R1Gen!4le R1Hsho2 i% 4"% R1Hsho2 i% 4"% su##!r( R1Hsho2 i% 4"% nei"h4ors ...: Resettin" nei"h4ors escri%tion: +escri"es the .nstructions: =.2nter into router configuration ode !. Issue clear ip "gp co and to reset session "etween the neigh"ors . On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hcle!r 4"% 10.10.10.$ R1)con&i"8router,Hcle!r i% 4"% L *ac& ethods for resetting *BP neigh"or relationships.

1;.$ : L!4 E+ercise $: Settin" B>/ !ttri4utes

escri%tion: This la" e:ercise e:plains to set the weight and local preference attri"ute of the *BP. .nstructions: =.Configure the de-ices 0= and 0! and "ring interfaces up. !./n 0= set *BP weight attri"ute of the neigh"or '0!) as !00 3.1lso set the default local preference of neigh"or 0! to =00 9.;erify the configuration of attri"utes "y gi-ing show ip "gp co On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H int s 0 R1)con&i"8i&,Hi% !--ress 10.10.10.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

and.

1*9

R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnet2ork 10.10.10.0 R1)con&i"8router,Hnet2ork $0.$0.$0.0 R1)con&i"8router,He+it R1)con&i",He+it On R$: R$Gen!4le R$Hcon& ter# R$)con&i",H int s 0 R$)con&i"8i&,Hi% !--ress 10.10.10.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter 4"% 100 R$)con&i"8router,Hnet2ork 10.10.10.0 R$)con&i"8router,He+it R$)con&i",He+it R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnei"h4or 10.10.10.$ 2ei"ht $00 R1)con&i"8router,H4"% -e&!ult loc!l8%re&erence 100 R1)con&i"8router,He+it R1)con&i",He+it R1Hsho2 i% 4"% *ac&

1;.' : L!4 E+ercise ': Settin" the B>/ nei"h4or %!ss2orescri%tion: The purpose of this la" is to set neigh"or password. .nstructions: =. Configure the de-ices 0= and 0! and "ring the interfaces up. !. /n 0= set *BP neigh"or or peer '0!) password as E"gppassF On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H int s 0 R1)con&i"8i&,Hi% !--ress 10.10.10.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnet2ork 10.10.10.0 R1)con&i"8router,Hnet2ork $0.$0.$0.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*;

R1)con&i"8router,He+it R1)con&i",He+it On R$: R$Gen!4le R$Hcon& ter# R$)con&i",H int s 0 R$)con&i"8i&,Hi% !--ress 10.10.10.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter 4"% 100 R$)con&i"8router,Hnet2ork 10.10.10.0 R$)con&i"8router,He+it R$)con&i",He+it R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnei"h4or 10.10.10.$ %!ss2or- 4"%%!ss R1)con&i"8router,He+it R1)con&i",He+it *ac&

1;.3 : L!4 E+ercise 3: To -is!4le the %eer

escri%tion: This la" e:ercise de onstrates the co and used to disa"le the peer. 1d inistrati-ely shutting down a peer is done during aintenance to pre-ent EflappingF. .nstructions: =. Configure the de-ices 0= and 0! and "ring the interfaces up. !./n 0= issue neigh"or co and to disa"le the neigh"or 0!. On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H int s 0 R1)con&i"8i&,Hi% !--ress 10.10.10.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnet2ork 10.10.10.0 R1)con&i"8router,Hnet2ork $0.$0.$0.0 R1)con&i"8router,He+it R1)con&i",He+it On R$:
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1*<

R$Gen!4le R$Hcon& ter# R$)con&i",H int s 0 R$)con&i"8i&,Hi% !--ress 10.10.10.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter 4"% 100 R$)con&i"8router,Hnet2ork 10.10.10.0 R$)con&i"8router,He+it R$)con&i",He+it On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnei"h4or 10.10.10.$ shut-o2n R1)con&i"8router,He+it R1)con&i",He+it R1H *ac&

1;.* : L!4 E+ercise *: B!sic con&i"ur!tion o& ! %eer "rou%

escri%tion: The purpose of this la" is to configuring the neigh"or using peer group. .nstructions: =. 2nter into glo"al configuration ode !. Type router "gp co and to o-e to router configuration ode. 3. Bi-e neigh"or peer6group6na e co and to create the peer group 1nd associate the peers with an 1S. On R1: R1Gen!4le R1Hcon& ter# R1)con&i",H int s 0 R1)con&i"8i&,Hi% !--ress 10.10.10.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnet2ork 10.10.10.0 R1)con&i"8router,Hnet2ork $0.$0.$0.0 R1)con&i"8router,He+it R1)con&i",He+it On R$: R$Gen!4le R$Hcon& ter#
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

100

R$)con&i",H int s 0 R$)con&i"8i&,Hi% !--ress 10.10.10.$ $**.$**.$**.0 R$)con&i"8i&,Hno shut-o2n R$)con&i"8i&,He+it R$)con&i",Hrouter 4"% 100 R$)con&i"8router,Hnet2ork 10.10.10.0 R$)con&i"8router,He+it R$)con&i",He+it On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,Hnei"h4or M(AS %eer8"rou% R1)con&i"8router,Hnei"h4or 10.10.10.$ %eer8"rou% M(AS R1)con&i"8router,Hnei"h4or M(AS re#ote8!s 100 *ac&

1;.0 : L!4 E+ercise 0: Con&i"urin" Multi E+it iscri#in!tor Metric

escri%tion: *BP uses the Multi 2:it +iscri inator 'M2+) a"out preferred paths. .nstructions: =. 2nter router configuration ode of 0= !. Set the default etric to !00 R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter 4"% '00 R1)con&i"8router,H-e&!ult8#etric $00 R1)con&i"8router,He+it *ac& etric as a hint to e:ternal neigh"ors

1<. E+ercises On Route Re-istri4ution

1<.1 : L!4 E+ercise 1: Route Re-istri4ution &or R./
escri%tion: This la" e:ercise de onstrates the co Static routes into 0IP. .nstructions: =. 2nter into router configuration ode !. Issue co and to redistri"ute all 2IB0P routes into 0IP
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

and for redistri"uting 2IB0P# /SP.# and

101

3. Issue co 9. Issue co

and to redistri"ute all /SP. routes into 0IP and to redistri"ute all Static routes into 0IP

On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter ri% R1)con&i"8router,Hre-istri4ute ei"r% 100 #etric 1 R1)con&i"8router,Hre-istri4ute os%& 1 #etric 1 R1)con&i"8router,Hre-istri4ute st!tic #etric 1 R1)con&i"8router,He+it R1)con&i",H NOTE: Metric co and can also "e gi-en in following way 'Using the -e&!ult8#etric co and sa-es wor& "ecause it eli inates the need for defining the etric separately for each redistri"ution.) R1)con&i",Hrouter ri% R1)con&i"8router,Hre-istri4ute ei"r% 100 R1)con&i"8router,Hre-istri4ute os%& 1 R1)con&i"8router,Hre-istri4ute st!tic R1)con&i"8router,H-e&!ult8#etric 1 *ac&

1<.$ : L!4 E+ercise $ : Route Re-istri4ution &or E.>R/

escri%tion: This la" e:ercise de onstrates the co routes into 2IB0P. NOTE: 2IB0P need fi-e load# and MTU .nstructions: =. 2nter into router configuration ode !. Issue co and to redistri"ute all 0IP routes into 2IB0P 3. Issue co and to redistri"ute all /SP. routes into 2IB0P 9. Issue co and to redistri"ute all static routes into 2IB0P. On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter ei"r% 0 R1)con&i"8router,Hre-istri4ute ri% #etric $000 $00 $** 1 1*00 R1)con&i"8router,Hre-istri4ute os%& 1 #etric $000 $00 $** 1 1*00 R1)con&i"8router,Hre-istri4ute st!tic #etric $000 $00 $** 1 1*00
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

and for redistri"uting 0IP# /SP.# and Static

etrics when redistri"uting other protocols@ "andwidth# delay# relia"ility#

10$

R1)con&i"8router,He+it R1)con&i",H NOTE: Metric co and can also "e gi-en in following way 'Using the -e&!ult8#etric co and sa-es wor& "ecause it eli inates the need for defining the etric separately for each redistri"ution.) R1)con&i",Hrouter ei"r% 0 R1)con&i"8router,Hre-istri4ute ri% R1)con&i"8router,Hre-istri4ute os%& R1)con&i"8router,Hre-istri4ute st!tic R1)con&i"8router,H-e&!ult8#etric 10000 100 $** 1 1*00 *ac&

1<.' : L!4 E+ercise ' : Route Re-istri4ution &or OS/F

escri%tion: This la" e:ercise de onstrates the co Static routes into /SP.. .nstructions: =. 2nter into router configuration ode !. Issue co and to redistri"ute all 0IP routes into /SP. 3. Issue co and to redistri"ute all 2IB0P routes into /SP. 9. Issue co and to redistri"ute all static routes into /SP.. On R1: R1Gen!4le R1Hcon& ter# R1)con&i",Hrouter os%& 1 R1)con&i"8router,Hre-istri4ute ri% #etric $00 su4nets R1)con&i"8router,Hre-istri4ute ei"r% 1 #etric 100 su4nets R1)con&i"8router,Hre-istri4ute st!tic #etric $00 su4nets R1)con&i"8router,He+it R1)con&i",H Note: If a etric is not specified# /SP. puts a default -alue of !0 when redistri"uting routes fro all protocols e:cept *BP routes# which get a etric of =. and for redistri"uting 0IP# 2IB0P# and

*ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10'

1<.3 : L!4 E+ercise 3 : Re-istri4ution 4et2een E.>R/ !n- OS/F

escri%tion: In this e:a ple 0outer * has two .ast 2thernet interfaces. .ast2thernet 030 is in networ& =0.=.=.03!9 and .ast2thernet 03= is in networ& !0.=.=.03!9. 0outer * is running 2IB0P with 0outer 1# and /SP. with 0outer C. 0outer * is utually redistri"uting "etween the 2IB0P and /SP. processes. .nstructions: =.1ssign IP addresses to all three de-ices and "ring the interface up state !. Issue the 0edistri"ute co and on 0outer * to redistri"ute 2IB0P routes into /SP. and /SP. routes into 2IB0P. 3. ;erify the routing ta"le "y issuing show ip route co and. On RouterA: RouterAGen!4le RouterA Hcon& ter# RouterA)con&i",Hint &!stethernet 0?0 RouterA)con&i"8i&,Hi% !-- 10.1.1.' $**.$**.$**.0 RouterA)con&i"8i&,Hno shut-o2n RouterA)con&i"8i&,He+it RouterA)con&i",Hrouter ei"r% 9 RouterA)con&i"8router,Hnet2ork 10.1.1.0 RouterA)con&i"8router,He+it On RouterB: RouterBGen!4le RouterBHcon& ter# RouterB)con&i",Hint &!stethernet 0?0 RouterB)con&i"8i&,H i% !-- 10.1.1.3 $**.$**.$**.0 RouterB)con&i"8i&,Hno shut-o2n RouterB)con&i"8i&,He+it RouterB)con&i",Hint &!stethernet 0?1 RouterB)con&i"8i&,H i% !-- $0.1.1.3 $**.$**.$**.0 RouterB)con&i"8i&,H no shut-o2n RouterB)con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

103

RouterB)con&i",Hrouter ei"r% 9 RouterB)con&i"8router,Hnet2ork 10.1.1.0 RouterB)con&i"8router,He+it RouterB)con&i",Hrouter os%& 1 RouterB)con&i"8router,Hnet2ork $0.1.1.0 0.0.0.$** !re! 0 RouterB)con&i"8router,He+it On RouterC: RouterCGen!4le RouterCHcon& ter# RouterC)con&i",Hint &!stethernet 0?0 RouterC)con&i"8i&,H i% !-- $0.1.1.0 $**.$**.$**.0 RouterC)con&i"8i&,Hno shut-o2n RouterC)con&i"8i&,He+it RouterC)con&i",Hrouter os%& 1 RouterC)con&i"8router,Hnet2ork $0.1.1.0 0.0.0.$** !re! 0 RouterC)con&i"8router,He+it On RouterB: RouterBGen!4le RouterBHcon& ter# RouterB)con&i",Hrouter ei"r% 9 RouterB)con&i"8router,Hre-istri4ute os%& 1 #etric 10000 100 $** 1 1*00 RouterB)con&i"8router,He+it RouterB)con&i",Hrouter os%& 1 RouterB)con&i"8router,Hre-istri4ute ei"r% 9 #etric 100 su4nets RouterB)con&i"8router,He+it RouterB)con&i",He+it RouterBHsho2 i% route On RouterA: RouterAHsho2 i% route On RouterC: RouterCHsho2 i% route Note: 0outer 1 has learned a"out networ& !0.=.=.03!9 -ia 2IB0P# which will "e shown as an e:ternal route# "ecause it was redistri"uted fro /SP. into 2IB0P. 0outer C has learned a"out networ& =0.=.=.03!9 -ia /SP. as an e:ternal route# "ecause it was redistri"uted fro 2IB0P into /SP.. 1lthough 0outer * is not redistri"uting connected networ&s# it does ad-ertise the networ& =0.=.=.03!9# which is part of the 2IB0P process redistri"uted into /SP.. Si ilarly# 0outer * ad-ertises networ& !0.=.=.03!9# which is part of the /SP. process redistri"uted into 2IB0P. *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10*

1<.* : L!4 E+ercise * : Re-istri4ution 4et2een R./ !n- E.>R/ escri%tion: This la" o"Vecti-e is to redistri"ute "etween 0IP and 2IB0P.
.nstructions: =.1ssign IP addresses to all three de-ices and "ring the interface up state !. Issue the 0edistri"ute co and on 0outer * to redistri"ute 0IP routes into 2IB0P and 2IB0P routes into 0IP 3. ;erify the routing ta"le "y issuing show ip route co and.

On RouterA: RouterAGen!4le RouterA Hcon& ter# RouterA)con&i",Hint &!stethernet 0?0 RouterA)con&i"8i&,Hi% !-- 10.1.1.' $**.$**.$**.0 RouterA)con&i"8i&,Hno shut-o2n RouterA)con&i"8i&,He+it RouterA)con&i",Hrouter ri% RouterA)con&i"8router,Hnet2ork 10.1.1.0 RouterA)con&i"8router,He+it On RouterB: RouterBGen!4le RouterBHcon& ter# RouterB)con&i",Hint &!stethernet 0?0 RouterB)con&i"8i&,H i% !-- 10.1.1.3 $**.$**.$**.0 RouterB)con&i"8i&,Hno shut-o2n RouterB)con&i"8i&,He+it RouterB)con&i",Hint &!stethernet 0?1 RouterB)con&i"8i&,H i% !-- $0.1.1.3 $**.$**.$**.0 RouterB)con&i"8i&,H no shut-o2n RouterB)con&i"8i&,He+it RouterB)con&i",Hrouter ri% RouterB)con&i"8router,Hnet2ork 10.1.1.0 RouterB)con&i"8router,He+it RouterB)con&i",Hrouter ei"r% 9 RouterB)con&i"8router,Hnet2ork $0.1.1.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

100

RouterB)con&i"8router,He+it On RouterC: RouterCGen!4le RouterCHcon& ter# RouterC)con&i",Hint &!stethernet 0?0 RouterC)con&i"8i&,H i% !-- $0.1.1.0 $**.$**.$**.0 RouterC)con&i"8i&,Hno shut-o2n RouterC)con&i"8i&,He+it RouterC)con&i",Hrouter ei"r% 9 RouterC)con&i"8router,Hnet2ork $0.1.1.0 RouterC)con&i"8router,He+it On RouterB: RouterBGen!4le RouterBHcon& ter# RouterB)con&i",Hrouter ri% RouterB)con&i"8router,Hre-istri4ute ei"r% 9 #etric 1 RouterB)con&i"8router,He+it RouterB)con&i",Hrouter ei"r% 9 RouterB)con&i"8router,Hre-istri4ute ri% #etric 10000 100 $** 1 1*00 RouterB)con&i"8router,He+it RouterB)con&i",He+it RouterBHsho2 i% route On RouterA: RouterAHsho2 i% route On RouterC: RouterCHsho2 i% route *ac&

$0. C.SCO SD.TC: ARC:.TECTURE

$0.1 Cisco $<*0 s2itch )C.SCO CATAL@ST $<*0 $3 /ORT SD.TC: DS8C$<*08$3 10?100, Front /!nel: The switch front panel consists of !9 0869( port connectors that support =03=00 M"ps speed and ,2+ indicators as shown in the figures "elow. Please note that the !S(0 series switches co e in different fla-ors and -ary greatly in the nu "er and type of ports a-aila"le.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

109

E+%l!n!tion: The switch front panel contains Ports# ,2+s and the Mode "utton.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10;

/orts: 1. 10?100 /orts These use 0869( Connectors and twisted6pair ca"ling and they can "e connected to =0*1S26T6 co pati"le de-ices# such as wor&stations and hu"s# or =00*1S26TM6co pati"le de-ices# such as high6speed wor&stations# ser-ers# hu"s# routers# and other switches. The =03=00 ports can "e e:plicitly set to operate in any co "ination of half duple:# full duple:# =0 M"ps# or =00 M"ps. $. 100BASE8F6 /orts The =00*1S26.M Ports use (03=!(6 or 6!.(3=!(6 icron ports only operate at =00 M"ps in full6duple: ode. ulti ode fi"er6optic ca"ling. These

?ou can connect a =00*1S26.M port to an SC or ST port on a target de-ice "y using one of the MT608 fi"er6optic patch ca"les '. 10?100?1000 /orts The =03=003=000 ports on Catalyst !S(0T6!9 switches use 0869( connectors and twisted6pair ca"ling. The ports can connect to=0*1S26T6co pati"le de-ices# such as wor&stations and hu"s or =00*1S26TM6co pati"le de-ices# such as high6speed wor&stations# ser-ers# hu"s# routers# and other switches or =000*1S26T6co pati"le de-ices# such as high6speed wor&stations# ser-ers# hu"s# routers# and other switches. LE s: ?ou can use the ,2+s to onitor switch acti-ity and perfor ance. Changing the port changes the infor ation pro-ided "y each port status ,2+. $0.$ M!n!"e#ent O%tions Catalyst !S(0 switches offer these Cluster M!n!"e#ent Suite )CMS, CMS is ade up of three we"6"ased applications that you use to anage switches. ?ou can use Cluster *uilder# which includes Cluster ;iew# and Cluster Manager to create# configure# and onitor switch clusters. ?ou can also use +e-ice Manager to anage indi-idual and standalone switches. .OS co##!n-8line inter&!ce )CL., ?ou can anage switches "y using co and6line entries. To access the C,I# connect a PC or ter inal directly to the console port on the switch rear panel. If the switch is attached to your networ&# you can use a Telnet connection to anage the switch fro a re ote location. CiscoVie2 !%%lic!tion anage ent options@ ode

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

10<

?ou can use the Cisco;iew de-ice6 anage ent application to set configuration para eters and to -iew switch status and perfor ance infor ation. This application# which you purchase separately# can "e a standalone application or part of an Si ple 5etwor& Manage ent Protocol 'S5MP) networ&6 anage ent platfor . ?ou can anage switches "y using an S5MP6co pati"le anage ent station running platfor s such as $P /pen;iew and Sun5et Manager. The switch supports a co prehensi-e set of MI* e:tensions and MI* II# the I222 80!.=+ "ridge MI*# and four 0M/5 groups. .or ore infor ation# refer to the docu entation that ca e with your S5MP application.

$0.' Cisco 1<1$ A 1$ %ort s2itch: The Cisco Catalyst =S00 series of switches offer an econo ical option for 2thernet networ&s. There are two Catalyst =S00 switches# the =S=!# with =! =0*aseT switched ports and two .ast 2thernet switched ports# and the =S!9 with !9 =0*aseT switched ports and two .ast 2thernet switched ports. The Cisco Catalyst =S00 switch is useful for s all wor&groups needing switched =06M"ps ports. Cisco has created a Co and6,ine Interface 'C,I) for the =S00 series of switches.

The figure a"o-e shows a !96port =S00 switch with ! .ast 2thernet ports. 10B!seT %orts The =0*aseT networ& ports use standard 0869( connectors. These ports can connect to =0*aseT6co pati"le de-ices# such as indi-idual wor&stations and hu"s# with Category 3# 9# or ( ca"ling. Using this type of ca"ling# the distance "etween the switch and the attached de-ice can "e up to =00 eters. S2itche- 1008M4%s /orts The switches can ha-e any of the following high6speed ports 'depends on o Two switched =00*aseTM ports o /ne switched =00*aseTM port and one switched =00*ase.M port o Two switched =006M"ps fi"er6optic ports
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

odel)@

190

Re!r8/!nel escri%tion The rear panel of a Catalyst =S00 switch consists of the following@ =. 1C power connector !. Console port 3. 0edundant power syste 9. 1 switched 1UI port '0PS) connector and

$1. C.SCO SD.TC: .OS

$1.1 Lo""in" .n To The S2itch 4hen Catalyst switches are configured fro the C,I that runs on the console or a re ote ter inal# the Cisco I/S Software pro-ides a C,I called the 2M2C. The 2M2C interprets the co ands that are entered and carries out the corresponding operations. .or security purposes# the 2M2C has the following two le-els of access to co ands@

1. User #o-e: Typical tas&s include those that chec& the status of the switch# such as so e "asic show co ands. $. /ri1ile"e- #o-e: Typical tas&s include those that change the configuration of the switch. This ode is also &nown as ena"le ode. If you ha-e the password that gets you to this pri-ileged ena"le ode# you "asically will ha-e access to all possi"le de-ice configuration co ands. To change fro user 2M2C ode to pri-ileged 2M2C ode# enter the ena"le co and. The switch then pro pts for the ena"le password if one is configured. 2nter the correct ena"le password. *y default# the ena"le password is not configured.

Note: Please refer to the a"o-e networ& diagra

for all the e:ercises in this section.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

191

$1.$ : L!4 E+ercise 1 : .ntro-uction to s2itch

escri%tion: 1 "asic e:ercise to get fa iliar with the different co ands related to switch . Choose !S(0 switch fro the 534 diagra # and use the following co ands. The switch initial startup status can "e -erified using the "elow status co Sho2 1ersion: +isplays the configuration of the syste loaded I/S software -ersion infor ation Sho2 runnin"8con&i": +isplays the current acti-e running configuration of the switch. This co and re7uires pri-ileged 2M2C ode access. ands@

hardware and the currently

Sho2 inter&!ces: +isplays statistics and status infor ation of all the interfaces on the switch. .nstructions: 1. Connect to switch and you should see the user ode pro pt $. Show -ersion co and displays the I/S -ersion of the switch '. Show interfaces co and displays the interfaces of the switch 3. Show running6config displays the running configuration

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

19$

$<*0Gen!4le $<*0Hsho2 1ersion $<*0Hsho2 inter&!ces $<*0Hsho2 runnin"8con&i" *ac&

$1.' : L!4 E+ercise $ : S2itch $<*0 Console /!ss2or- Assi"n#ent

escri%tion: Select !S(0 switch using the 534 +iagra password NconsolepassN to line console 0. Use the line console 0 co "utton in the router si ulator. 1ssign ands# to

and# followed "y the password and login su"co

re7uire login and esta"lish a login password on the console ter inal or on a ;T? port. *y default# login is not ena"led on the console or on ;T? ports. .nstructions: 1. 2nter glo"al configuration ode $. 2nter line su"6configuration ode '. Set the console password to NconsolepassN 3. 2:it line configuration ode $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hline console 0 $<*0)con&i"8line,H%!ss2or- console%!ss $<*0)con&i"8line,He+it *ac&

$1.3 : L!4 E+ercise ' : S2itch $<*0 VT@ %!ss2or- !ssi"n#ent

escri%tion: To assign -ty password for a switch for -ty lines 0 to =(# choose !S(0 switch fro the 534 diagra # and use the following co ands. Use the line -ty co and# followed "y the password and login su"co ands# to

re7uire login and esta"lish a login password on the ;T? port. *y default# login is not ena"led on the console or on ;T? ports. Note: The password N-irtualpassN is assu ed. ?ou can use any other password. .nstructions: 1. 2nter glo"al configuration ode $. 2nter line su"6configuration ode for -irtual ter inals 0 to =( '. 1ssign -irtual ter inal password N-irtualpassN to lines 06=(
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

19'

3. 2na"le the switch to use the password for telnet access *. 2:it line su"6configuration ode 0. 2:it to pri-ileged ode

$<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hline 1t( 0 1* $<*0)con&i"8line,H%!ss2or- 1irtu!l%!ss $<*0)con&i"8line,Hlo"in $<*0)con&i"8line,He+it $<*0)con&i",H *ac&

$1.* : L!4 E+ercise 3 : S2itch $<*0: Settin" /ri1ile"e- /!ss2orescri%tion: In this e:ercise# you assign ena"le password# and secret password on a !S(0 switch. Select the switch "y going to the networ& diagra # and selecting appropriate de-ice fro the drop down "o:. .nstructions: 1. 2nter glo"al configuration ode $. Set password for ena"le password and ena"le secret '. 2:it fro the glo"al configuration ode $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hen!4le %!ss2or- e%!ss $<*0)con&i",Hen!4le secret s%!ss $<*0)con&i",Hen*ac&

$1.0 : L!4 E+ercise * : En!4le F!st Ethernet .nter&!ce on ! $<*0 s2itch

escri%tion: $ere you enter interface configuration ode on a !S(0 switch and a&e the interface protocol up. Choose !S(0 switch "y going to the networ& diagra # and selecting appropriate de-ice. .nstructions: 1. 2nter glo"al configuration
Version 1.0

ode

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

193

$. 2nter interface su"6configuration '. Shutdown the interface 3. 2:it to pri-ileged ode

ode for 2thernet slotJ0 and portJ=

$<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hinter&!ce &!stethernet 0?1 $<*0)con&i"8i&,Hno shut-o2n $<*0)con&i"8i&,Hen*ac&

$1.9 : L!4 E+ercise 0 : .niti!l S2itch con&i"ur!tion

escri%tion: This e:ercise helps in e:a ining the default configurations of a switch and changes to the configuration accordingly as re7uired and -iew the changes. .nstructions: 1. 2nter into pri-ileged ode of a switch $. 2nter glo"al configuration ode '. 1ssign a na e to the switch "y setting its hostna e 3. ;iew the -ersion of I/S running on the switch *. ;iew the running6configuration on the switch 0. ;iew the interfaces on the switch initially 9. ;iew the interfaces on the switch and their IPKs "y issuing show ip interface co and ;. 2nter into glo"al configuration ode and assign an ip address to the switchKs interface and a&e the interface up <. 2:it to pri-ileged ode 10. ;iew the IP 1ddress configured "y issuing show ip interface "rief and show interfaces co and $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hhostn!#e SD1 SD1)con&i",He+it SD1Hsho2 1ersion SD1Hsho2 runnin"8con&i" SD1Hsho2 inter&!ces SD1Hsho2 i% inter&!ce 4rie& SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce 1l!n 1 SD1)con&i"8i&,Hi% !--ress 1<;.10.$.1 $**.$**.$**.0 SD1)con&i"8i&,Hno shut-o2n SD1)con&i"8i&,He+it SD1)con&i",He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

a&e

19*

SD1Hsho2 i% inter&!ce 4rie& SD1Hsho2 inter&!ces *ac&

$1.; : L!4 E+ercise 9 : B!sic S2itch .nter&!ce Con&i"ur!tion

escri%tion: ?ou configure a few switch ports for duple:. Choose !S(0 switch fro the n3w diagra and e:it. The following co ands are used for configuring the switch ports. .nstructions: 1. Set the inter6switch co unication to full6duple: on Switch S=# port fa 03!6 $. Set the port speed to =00 "ps# and inter6switch co unication to full6duple: on Switch S! ports fa 03=# fa 03!# and fa 033 '. 2:it to pri-ileged ode 3. Sa-e the configuration to 5;01M $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hinter&!ce &! 0?1 $<*0)con&i"8i&,H-u%le+ &ull $<*0)con&i"8i&,He+it $<*0)con&i",Hinter&!ce &! 0?' $<*0)con&i"8i&,H-u%le+ &ull $<*0)con&i"8i&,Hs%ee- 100 $<*0)con&i"8i&,Hen$<*0Hco%( runnin"8con&i" st!rtu%8con&i" *ac&

$1.< : L!4 E+ercise ; : C!t!l(st $<*0 S2itch Con&i"ur!tion

escri%tion : This la" e:ercise helps to understand the catalyst !S(0 switch configuration and the -arious co ands pertaining to switches.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

190

.nstructions : 1. 2nter into pri-ileged ode of S4= and enter A which displays the co ands a-aila"le in pri-ileged ode and type disa"le to go "ac& to user ode $. 2nter into glo"al configuration ode of S4= and change its hostna e to switch= and issue show running6config co and to -iew the acti-e configuration '. 2nter copy run start co and to sa-e the acti-e configuration into 5;01M and see the sa-ed configuration in 5;01M with show startup6config co and 3. 2rase the sa-ed configuration and reload *. 2nter into pri-ileged ode and then into glo"al configuration ode and reassign the host na e# and ena"le password of cisco 0. 1ssign IP 1ddress of =S!.=68.=00.SS !((.!((.!((.0 and a default6gateway of =S!.=68.=00.= '0=Ks 2thernet 1ddress) to S4= 9. Connect to S4! and configure it with hostna e switch! and ena"le a password of cisco# assign it an IP 1ddress of =S!.=68.=00.=003!9 and a default6gateway of =S!.=68.=00.= '0=Ks 2thernet 1ddress) ;. Issue show ac6address6ta"le co and to display which de-ices are attached to which switch ports <. /n S4!# per anently assign a de-ice with M1C 1ddress !!!!.!!!!.!!!! to port fa 039. Issue show ac6address6ta"le co and to -erify that the de-ice is in the ta"le as a per anent entry 10. /n S4!# configure port security for port fa 03C. The switch will learn the M1C address of the de-ice connected to port fa 03C and will allow only that de-ice to connect to the port in future SD1Gen!4le SD1HI SD1H-is!4le SD1G SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hhostn!#e s2itch1 s2itch1)con&i",He+it s2itch1H s2itch1Hsho2 runnin"8con&i" s2itch1Hco%( runnin"8con&i" st!rtu%8con&i" s2itch1Hsho2 st!rtu%8con&i" s2itch1Her!se st!rtu%8con&i" s2itch1Hrelo!SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hhostn!#e s2itch1 s2itch1)con&i",Hen!4le %!ss2or- cisco s2itch1)con&i",Hinter&!ce 1l!n 1 s2itch1)con&i"8i&,Hi% !--ress 1<$.10;.100.<< $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

199

s2itch1)con&i"8i&,Hno shut-o2n s2itch1)con&i"8i&,He+it s2itch1)con&i",Hi% -e&!ult8"!te2!( 1<$.10;.100.1 s2itch1Hsho2 inter&!ces SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hhostn!#e s2itch$ s2itch$)con&i",Hen!4le secret cisco s2itch$)con&i",Hinter&!ce 1l!n 1 s2itch$)con&i"8i&,Hi% !--ress 1<$.10;.100.100 $**.$**.$**.0 s2itch$)con&i"8i&,Hno shut-o2n s2itch$)con&i"8i&,He+it s2itch$)con&i",Hi% -e&!ult8"!te2!( 1<$.10;.100.1 s2itch$Hsho2 1ersion s2itch$Hsho2 #!c8!--ress8t!4le s2itch$)con&i",H#!c8!--ress8t!4le st!tic $$$$.$$$$.$$$$ 1l!n 1 int &! 0?3 s2itch$)con&i",He+it s2itch$Hsho2 #!c8!--ress8t!4le s2itch$)con&i",Hint &! 0?9 s2itch$)con&i"8i&,Hs2itch%ort %ort8securit( s2itch$)con&i"8i&,Hs2itch%ort #o-e !ccess s2itch$)con&i"8i&,Hs2itch%ort %ort8securit( #!+i#u# 1 *ac& NOTE To reset the switch to factory default# issue the erase startup6config or write erase co and. This co and does not clear the "oot -aria"les# such as config6register and "oot syste settings. 1fter successfully going through a series of interacti-e co ands# the switch configuration is reset to the factory defaults# with the e:clusion of the ;,15 infor ation. To delete ;,15 infor ation on the fi:ed configuration switches# issue the delete [email protected] co and.

$$. E+ercises on S%!nnin" Tree /rotocol

Note: Please refer to the "elow networ& for the e:ercises gi-en in this section. 1lso note that the spanning tree co ands are ade a-aila"le only on !S(0 switch in the si ulator.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

19;

$$.1 : L!4 E+ercise 1 : En!4lin" ST/

escri%tion : This la" e:ercise de onstrates the necessary co spanning tree protocol on a switch. .nstructions: 1. 2nter into configuration ode on S4= $. Issue co and Nspanning6tree -lan T-lan6nu I to ena"le spanning6tree on a specified ;,15 '. Issue no for of the co and Nspanning6tree -lan T-lan6nu I to disa"le spanning6tree on the ;,15 specified. SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hs%!nnin"8tree 1l!n 1 SD1)con&i",Hno s%!nnin"8tree 1l!n 1 SD1)con&i",He+it SD1H Note@ Spanning Tree Protocol 'STP) is ena"led "y default on odern switches. It is possi"le to disa"le or ena"le the Spanning Tree Protocol 'STP) when re7uired. *ac& ands to ena"le and disa"le

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

19<

$$.$ : L!4 E+ercise $ : Con&i"urin" Root S2itch

escri%tion : This la" e:ercise de onstrates the necessary co switch. .nstructions: 1. 2nter into configuration ode on S4= $. Issue the co and Nspanning6tree -lan T-lan6nu I rootN that odifies the switch priority fro the default 3!C68 to a lower -alue to allow the switch to "eco e the root switch for ;,15 = '. ;erify the configuration using Eshow spanning6treeF co and. SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hs%!nnin"8tree 1l!n 1 root SD1)con&i",He+it SD1Hsho2 s%!nnin"8tree *ac& ands to configure the root

$$.' : L!4 E+ercise ' : Con&i"urin" /ort8/riorit(

escri%tion : This la" e:ercise de onstrates configuring port6priority for an interface on a switch. .nstructions: 1. 2nter into interface configuration ode on S4= $. Issue the co and Nspanning6tree port6priority Tpriority6-alueI to configure port6priority on the specified interface '. Use the co and Nshow spanning6tree -lan T-lan6idIN to -erify the configuration SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?1 SD1)con&i"8i&,Hs%!nnin"8tree %ort8%riorit( 03 SD1)con&i"8i&,He+it SD1)con&i",He+it SD1Hsho2 s%!nnin"8tree 1l!n 1 Note: Port6Priority can "e "etween 0 and !((# default is =!8# the lower the nu "er# higher is the priority. *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;0

$$.3 : L!4 E+ercise 3 : Con&i"urin" the s2itch %riorit( o& ! VLAN

escri%tion: This e:ercise de onstrates the co ;,15. .nstructions: 1. 2nter into configuration ode on S4= $. Issue the co and Nspanning6tree -lan T-lan6idI priority Tpriority6-alueI to configure the switch priority of a ;,15 and -erify the sa e using Eshow spanning6treeF co and. SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hs%!nnin"8tree 1l!n 1 %riorit( 1$$;; SD1)con&i",He+it SD1Hsho2 s%!nnin"8tree Note: The switch priority can "e configured thus a&ing it ore li&ely to "e chosen as the root switch. Priority range is 0 to 6=990 in incre ents of 90S6# default is 3!C68. *ac& and re7uired to configure switch priority of a

$$.* : L!4 E+ercise * : Con&i"urin" ST/ Ti#ers

escri%tion@ This la" e:ercise de onstrates configuring spanning6tree protocol ti ers. .nstructions@ 1. 2nter into configuration ode on S4= $. Use the co and Nspanning6tree -lan T-lan6idI hello6ti e3forward6ti e3 a:6age T-alueI to configure the -arious STP ti ers on the switch '. ;erify the configurations set using the co and Eshow spanning6tree -lan T-lan6idIF SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hs%!nnin"8tree 1l!n 1 hello8ti#e 3 SD1)con&i",Hs%!nnin"8tree 1l!n 1 &or2!r-8ti#e $0 SD1)con&i",Hs%!nnin"8tree 1l!n 1 #!+8!"e $* SD1)con&i",He+it SD1Hsho2 s%!nnin"8tree 1l!n 1 Note@ i. $ello6Ti e @ +eter ines how often the switch "roadcasts hello essages to other switches. ii. .orward6Ti e @ +eter ines how long each of the listening and learning states last "efore the interface "egins forwarding. iii. Ma:61ge @ +eter ines the a ount of ti e the switch stores protocol infor ation recei-ed on an interface.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;1

*ac&

$$.0 : L!4 E+ercise 0 : Veri&(in" ST/

escri%tion@ This la" e:ercise de onstrates the -arious show co protocol. ands to -erify spanning6tree

.nstructions@ 1. Show spanning6tree co and displays the spanning6tree statistics# including infor ation a"out the root "ridge and port status. $. Show spanning6tree su ary co and displays a su ary of port states. '. Show spanning6tree -lan T-lan6idI displays STP infor ation for the specified ;,15. SD1Gen!4le SD1Hsho2 s%!nnin"8tree SD1Hsho2 s%!nnin"8tree su##!r( SD1Hsho2 s%!nnin"8tree 1l!n 1

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;$

*ac&

$$.9 O45ecti1e Test 1' : Ans2er the &ollo2in" Euestions

1. 4hich of the following switches "eco es the 0oot *ridge# gi-en the details in the "elow ta"le S2itch N!#e S4= S4! S43 S49 Bri-"e /riorit( 3!C68 3!C68 3!C68 3!C68 MAC A--ress 00d06=0396!6a0 00d06=0396!Ca0 00d06=0396!6a= 00d06=0396!8a0 /ort Costs 1ll are =S 1ll are 9 1ll are =S 1ll are =S

!, S49 4, S4! c, S43 -, S4= $. 4hat is the a:i u nu "er of 0oot ports that a "ridge can ha-e A

!, Unli ited 4, ! c, = -, 5ot necessary '. 4hich is the designated port on seg ent S4=66IS4!. 0efer to the e:hi"it "elow

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;'

!, Port = on S4= 4, Port ! on S4= c, Port = on S4! -, Port ! on S4! 3. 4hich is the designated port on the seg ent S4!66IS43. 0efer to the e:hi"it "elowA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;3

!, Port = on S4! 4, Port ! on S4! c, Port = on S43 -, Port ! on S43 *. 4hat happens to a port that is neither a 0oot port nor a +esignated portA !, It is disa"led 4, It can "e used to send3recei-e fra es c, It is put into "loc&ing state -, It will "e put into listening ode

$'. E6ERC.SES ON SD.TC: CONF.>URAT.ON AN VLAN $'.1 : L!4 E+ercise 1 : B!sic S2itch ./ Con&i"ur!tion
escri%tion: Configure hostna e as !S(0# and set the switch ip address to =C!.=6.=.=0# su"net as& !((.!((.!((.0. 1lso# set the default6gateway to =C!.=6.=.!

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;*

.nstructions: 1. 2nter user 2:ec ode $. 2nter pri-ileged 2:ec ode '. 1ssign the hostna e E!S(0F 3. 1ssign an ip address =C!.=6.=.=0 !((.!((.!((.0 *. 1ssign default gateway route =C!.=6.=.! 0. 2:it switch configuration ode SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hhostn!#e $<*0 $<*0)con&i",Hinter&!ce 1l!n 1 $<*0)con&i"8i&,Hi% !--ress 19$.10.1.10 $**.$**.$**.0 $<*0)con&i"8i&,He+it $<*0)con&i",Hi% -e&!ult8"!te2!( 19$.10.1.$ $<*0)con&i",Hen*ac&

$'.$ : L!4 E+ercise $ : Con&i"urin" $<*0 S2itch 1l!n

escri%tion: Configure -lan= on !S(0 switch# and set the ip address to =S!.=6.!.3 as& !((.!((.!((.0. Set ip default6gateway to =C!.=6.!.!. copy running configuration to startup configuration. .nstructions: 1. 2nter pri-ileged e:ec ode $. 2nter glo"al configuration ode '. 1ssign IP address =C!.=6.!.3 as& !((.!((.!((.0 on ;,15= 3. Set the default gateway to =C!.=6.!.! *. Sa-e the configuration to 5;01M $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hinter&!ce 1l!n 1 $<*0)con&i"8i&,Hi% !--ress 19$.10.$.' $**.$**.$**.0 $<*0)con&i"8i&,He+it $<*0)con&i",Hi% -e&!ult8"!te2!( 19$.10.$.$ $<*0)con&i",Hen$<*0Hco%( runnin"8con&i" st!rtu%8con&i" *ac&

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;0

$'.' : L!4 E+ercise ' : Trou4leshootin" $<*0 S2itch

escri%tion: Configure switch ip address# default gateway '=C!.=6.!.!)# and use ping co to -erify the ip address. Ping default6gateway '=S!.=6.!.!) fro the wor& station. and

.nstructions: 1. Issue appropriate co and to -iew switch ip address# default gateway# and anage ent ;,15 $. 2nter pri-ileged e:ec ode '. 2nter ter inal configuration ode 3. Correct the configuration and "ring up the interface using appropriate co ands *. Use NpingN co and fro 4S!! and -erify that the connection to the switch is /Q $<*0G $<*0Gen!4le $<*0Hcon&i"ure ter#in!l $<*0)con&i",Hinter&!ce 1l!n 1 $<*0)con&i"8i&,Hi% !--ress 19$.10.$.' $**.$**.$**.0 $<*0)con&i"8i&,He+it $<*0)con&i",Hi% -e&!ult8"!te2!( 19$.10.$.$ $<*0)con&i",Hno shut-o2n $<*0)con&i",Hen-

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;9

DS$$:%in" 19$.10.$.' *ac& NOTE: This l!4 not su%%orte- in this 1ersion

$'.3 : L!4 E+ercise 3 : $<*0 Trunkin" Con&i"ur!tion

escri%tion : This e:ercise concentrates on esta"lishing a trun&6line "etween the switches. The co and used to configure trun&ing is switchport ode trun&.

.nstructions : 1. Connect to S4= and configure fast ethernet interface fa 03== on the switch $. Configure trun&ing on the switch "y issuing co and switchport ode trun& '. Connect to S4! and configure fast ethernet interface fa 03== on the switch 3. Configure trun& line on the switch "y issuing switchport ode trun& co and *. Configure 4S= with IP 1ddress =S!.=68.=00.=3!9 and 4S! with IP 1ddress =S!.=68.=00.!3!9 SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?11 SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,He+it SD1)con&i",He+it SD1H SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce &! 0?11 SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,He+it SD$)con&i",He+it SD$H DS1:i% !--ress 1<$.10;.100.1 $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;;

DS$:i% !--ress 1<$.10;.100.$ $**.$**.$**.0 *ac&

$'.* : L!4 E+ercise * : Cre!tin" !n- eletin" $<*0 VLANBs

escri%tion : This la" e:ercise helps in learning the concept of creating ;,15<s on a !S(0 Switch# and deleting the .

.nstructions : 1. 2nter into pri-ileged ode of S4= and add -lanKs !0 and (0 "y entering into -lan data"ase ode $. 2nter into glo"al configuration ode of S4= and add ports !#3 and 9 to -lan !0 and chec& the sa e using show -lan co and '. Configure 4S= with IP 1ddress =S!.=68.=00.= !((.!((.!((.0 and 4S! with IP 1ddress =S!.=68.=00.! !((.!((.!((.0 3. 2nter into -lan data"ase ode of S4= and issue no -lan co and to re o-e a specific -lan *. Issue show -lan co and to -erify the changes and -iew the -lan infor ation that has "een set. SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n $0 SD1)1l!n,H1l!n *0 SD1)1l!n,He+it SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?$ SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 SD1)con&i"8i&,He+it SD1)con&i",Hinter&!ce &! 0?' SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 SD1)con&i"8i&,He+it SD1)con&i",Hinter&!ce &! 0?3 SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 SD1)con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1;<

SD1)con&i",He+it SD1Hsho2 1l!n DS1:i% !--ress 1<$.10;.100.1 $**.$**.$**.0 DS$:i% !--ress 1<$.10;.100.$ $**.$**.$**.0 SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,Hno 1l!n $0 SD1)1l!n,He+it SD1Hsho2 1l!n *ac&

$'.0 : L!4 E+ercise 0 : Con&i"urin" VT/ on $<*0 S2itch

escri%tion : This la" e:ercise de onstrates configuring ;TP on a !S(0 Switch.

.nstructions : 1. Configure S4= with fast ethernet 03== interface and ena"le trun& line "y issuing switchport ode trun& co and $. 2nter into -lan data"ase ode of S4= and configure -tp ser-er on S4= and set -tp do ain to certe:a s '. Configure S4! with fast ethernet 03== interface and ena"le trun& line "y issuing switchport ode trun& co and 3. 2nter into -lan data"ase ode of S4! and configure -tp ser-er on S4! and set -tp do ain to certe:a s# and then create ;,15 30 and ;,15 =00 on S4! *. Confir that the ;,15Ks set on S4! are seen on S4= SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?11 SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,He+it SD1)con&i",He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<0

SD1H1l!n -!t!4!se SD1)1l!n,H1t% ser1er SD1)1l!n,H1t% -o#!in certe+!#s SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce &! 0?11 SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,He+it SD$)con&i",He+it SD$H1l!n -!t!4!se SD$)1l!n,H1t% ser1er SD$)1l!n,H1t% -o#!in certe+!#s SD$)1l!n,H1l!n '0 SD$)1l!n,H1l!n 100 SD1Gen!4le SD1Hsho2 1l!n

*ac& S:ORT NOTE ON VT/ ;lan Trun&ing Protocol ';TP) is used to propagate ;,15 configuration 'creating# deleting and changing) "etween ultiple switches in the sa e ;TP do ain. Cisco switches operate in one of three a-aila"le ;TP odes@

Ser1er 6 1llows to read3write to the ;,15 data"ase# will propagate to switches in the sa e ;TP do ain. Client 6 0ead /nly 6 ?ou canKt a&e changes to the ;,15 data"ase# will propagate changes recie-ed to neigh"ouring switches in thesa e ;TP do ain. Tr!ns%!rent 6 2ssentially EignoresF ;TP updates "ut still relays ;TP infor ation recei-ed regardless of ;TP do ain. .or ;,15 data"ase to "e e:changed "etween two switches@ =. The ;TP do ain na e should "e sa e# !. ;TP password ust "e the sa e# 3. Trun& lin&s should "e configured "etween the switches 'switchport ode trun&)# and 9. 1tleast one switch should "e configured as ser-er and the other switches as ser-er or client to learn -lan data"ase. Ser-er ode is the default on Cisco Catalyst switches. (. 1ll switches throughout the ;TP do ain ust operate the sa e ;TP -ersion. 6. 1 Cisco Catalyst switch can "elong to only one do ain at any gi-en ti e. C. ;TP essages not intended for a local do ain 'configured on a Cisco switch) are ignored.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<1

$'.9 : L!4 E+ercise 9 : Con&i"urin" VT/ 2ith ! VT/ Client

escri%tion : This la" e:ercise de onstrates configuring ;TP with a ;TP client.

.nstructions : 1. Configure S4= with fast ethernet 03== interface and ena"le trun& line "y issuing switchport ode trun& co and $. 2nter into -lan data"ase ode of S4= and configure S4= as ;TP Ser-er and set -tp do ain to certe:a s# create ;,15 =0 and ;,15 90 on S4= and -iew the ;TP infor ation "y issuing show -tp status co and '. Configure S4! with fast ethernet 03== interface and ena"le trun& line "y issuing switchport ode trun& co and 3. 2nter into -lan data"ase ode of S4! and configure S4! as ;TP Client and set -tp do ain to certe:a s# and a&e sure that ;,15s cannot "e created on S4! as S4! is in the client ode# and -iew the ;TP infor ation "y issuing show -tp status co and *. Confir that the ;,15s created on S4= are seen on S4! "y issuing show -lan co and SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?11 SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,He+it SD1)con&i",He+it SD1H1l!n -!t!4!se SD1)1l!n,H1t% ser1er SD1)1l!n,H1t% -o#!in certe+!#s SD1)1l!n,H1l!n 10 SD1)1l!n,H1l!n 30 SD1)1l!n,He+it SD1Hsho2 1t% st!tus SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce &! 0?11 SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,He+it
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<$

SD$)con&i",He+it SD$H1l!n -!t!4!se SD$)1l!n,H1t% client SD$)1l!n,H1t% -o#!in certe+!#s SD$)1l!n,He+it SD$Hsho2 1t% st!tus SD$Hsho2 1l!n *ac&

$'.; : L!4 E+ercise ; : Trou4leshootin" l!4 2ith non8#!tchin" -o#!ins

escri%tion : This la" e:ercise de onstrates -tp do ain concept in ;,15s. i.e with non6 atching do ains set up on the two switches and see that -lan info is not propagated "etween the switches# correct the configuration and -erify the sa e.

.nstructions 1. 2nter into data"ase ode on S4=# set the ode to ser-er and do ain to cisco and create ;,15s =0# !0 and (0 $. Issue show -lan co and on S4= and chec& the ;,15 infor ation '. Configure S4! as client and set its do ain to ciscosys 3. Configure port fa 03== on S4= and S4! as trun& ports *. Issue show -lan on S4! and in the response ;,15 infor ation on S4= will not "e displayed e-en after trun& is configured "etween the two switches "ecause the switches are configured with different do ains# so ;,15 infor ation is not propagated fro S4= to S4! 0. Correct the configuration on S4! "y setting its do ain na e sa e as on S4= i.e# cisco 9. Issue show -lan co and on S4! and see that the ;,15s created on S4= are seen ;. 1lso -iew ;TP infor ation "y issuing show -tp status co and on S4! SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n 10 SD1)1l!n,H1l!n $0 SD1)1l!n,H1l!n *0 SD1)1l!n,H1t% ser1er SD1)1l!n,H1t% -o#!in cisco
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<'

SD1)1l!n,He+it SD1Hsho2 1l!n SD$Gen!4le SD$H1l!n -!t!4!se SD$)1l!n,H1t% client SD$)1l!n,H1t% -o#!in ciscos(s SD$)1l!n,He+it SD$H SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &! 0?11 SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,He+it SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce &! 0?11 SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,He+it SD$Hsho2 1l!n SD$Gen!4le SD$H1l!n -!t!4!se SD$)1l!n,H1t% client SD$)1l!n,H1t% -o#!in cisco SD$)1l!n,He+it SD$Hsho2 1l!n SD$Hsho2 1t% st!tus *ac&

$'.< : L!4 E+ercise < : Trou4leshootin" l!4 2ith trunk &unction!lit(

escri%tion : This la" e:ercise de onstrates trun& concept in ;,15s. i.e with trun& set up on only one of the the two switches and see that ping fails fro 0= to 4S=# correct the configuration "y setting up trun& on "oth the switches and -erifying the sa e.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<3

.nstructions 1. Configure 4or& station 4S= with IP 1ddress =S!.=68.=00.!3!9 and a default6gateway of =S!.=68.=00.= $. Configure 0outer 0= 2thernet interface with IP 1ddress =S!.=68.=00.=3!9 '. Chec& ping fro 4S= to 0= and see that it is successful 3. Configure S4= with -tp do ain cisco# password ccna and create ;,15s (0# 60 and C0 on it *. Issue show -lan and show -tp status co ands and -erify the configurations 0. Configure S4! with -tp do ain cisco# password ccna and create ;,15 (0 on it and -erify the sa e using show -lan and show -tp status co ands 9. /n S4=# configure port fa 03= to ;,15 (0 and chec& the sa e using show -lan co and ;. /n S4! also# configure port fa 03= to ;,15 (0 and chec& the sa e using show -lan co and <. 5ow ping fro 4S= to 0= and see that it fails as there is no trun& line ena"led to carry traffic on any ;,15 10. Configure trun& on fa 03=! port of S4= and now ping for 4S= to 0= and see that it fails "ecause trun& is to "e configured on "oth the switches to carry traffic 11. 5ow configure trun& on S4! also on fa 03=! port and issue appropriate show co ands to chec& the sa e 1$. Ping fro 4S= to 0= and see that ping is now successful DS1:i% !--ress 1<$.10;.100.$ $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.100.1 R1Gen!4le R1Hcon ter R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,HenR1H DS1:%in" 1<$.10;.100.1 SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n *0 SD1)1l!n,H1l!n 00 SD1)1l!n,H1l!n 90 SD1)1l!n,H1t% -o#!in cisco SD1)1l!n,H1t% %!ss2or- ccn! SD1)1l!n,He+it SD1Hsho2 1l!n SD1Hsho2 1t% st!tus SD$Gen!4le
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<*

SD$H1l!n -!t!4!se SD$)1l!n,H1l!n *0 SD$)1l!n,H1t% -o#!in cisco SD$)1l!n,H1t% %!ss2or- ccn! SD$)1l!n,He+it SD$Hsho2 1l!n SD$Hsho2 1t% st!tus SD1Hcon ter SD1)con&i",Hint &! 0?1 SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n *0 SD1)con&i"8i&,HenSD1Hsho2 1l!n SD$Hcon ter SD$)con&i",Hint &! 0?1 SD$)con&i"8i&,Hs2itch%ort #o-e !ccess SD$)con&i"8i&,Hs2itch%ort !ccess 1l!n *0 SD$)con&i"8i&,HenSD$Hsho2 1l!n DS1:%in" 1<$.10;.100.1 SD1Hcon ter SD1)con&i",Hint &! 0?1$ SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,HenSD$Hsho2 1l!n DS1:%in" 1<$.10;.100.1 SD$Hcon ter SD$)con&i",Hint &! 0?1$ SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,HenSD$Hsho2 inter&!ce &! 0?1$ s2itch%ort SD$Hsho2 1l!n DS1:%in" 1<$.10;.100.1 *ac&

$'.10 : L!4 E+ercise 10 : VLANs Scen!rio

escri%tion : This la" e:ercise helps to get fa iliar with the "enefits of a ;,15 and also in understanding the process to configure a router and a switch to support ;,15s.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<0

.nstructions : 1. Connect to 0= and configure the IP address of =S!.=68.!00.= !((.!((.!((.0 on the fastethernet interface and set the interface up "y issuing no shutdown co and $. Connect to wor&station 4S= and set its IP address to =S!.=68.!00.3 !((.!((.!((.0 and default6gateway to =S!.=68.!00.=# and then connect to 4S! and set its IP address to =S!.=68.!00.9 !((.!((.!((.0 and default6gateway to =S!.=68.!00.= '. Ping 0= and 4S= fro 4S! and see that the ping is successful 3. Connect to Switch S4= and set up the ;,15s. Start "y creating ;,15 !0 to set up a separate ;,15 for the 40S 'wor&stations) *. 5ow assign ports to the new ;,15 # assign port = for 4S= to ;,15 !0 0. Connect to 4S! again and try to ping 0= and 4S= ' Ping is success fro 4S! to 0= "ut not fro 4S! to 4S=# this is "ecause on the switch# ;,15 !0 is set to co-er only port =) 9. Connect to S4= again and now configure port ! wherein 4S! is connected# to "e included in ;,15 !0 ;. 0epeat the pings fro 4S! to 0= and 4S=.This ti e ping to 4S= would "e successful "ut not to 0= 'This is "ecause when the ping pac&ets ca e in# they were tagged with ;,15 !0. Conse7uently# the pac&ets could only tra-el out port = to 4S=) <. Connect to S4= again and issue appropriate show co ands to -iew the ;,15 port assign ents 10. 5ow on S4=# assign fastethernet 03=! to ;,15 !0 . This would allow to ping all of the de-ices 11. Issue pings fro 0= to 4S= and 4S! and fro 4S= and 4S! to 0= and chec& the connecti-ity R1Gen!4le R1Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<9

R1)con&i",Hinter&!ce e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.$00.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n DS1:i% !--ress 1<$.10;.$00.' $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.$00.1 DS$:i% !--ress 1<$.10;.$00.3 $**.$**.$**.0 DS$:i% -e&!ult8"!te2!( 1<$.10;.$00.1 DS$:%in" 1<$.10;.$00.1 DS$:%in" 1<$.10;.$00.' SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n $0 n!#e 2rs SD1)1l!n,He+it SD1H SD1Hcon ter SD1)con&i",Hint &! 0?1 SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 DS$:%in" 1<$.10;.$00.1 DS$:%in" 1<$.10;.$00.' SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hint &! 0?$ SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 SD1)con&i"8i&,HenDS$:%in" 1<$.10;.$00.1 DS$:%in" 1<$.10;.$00.' SD1Gen!4le SD1Hsho2 1l!n SD1Hsho2 1l!n8#e#4ershi% SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &!stethernet 0?1$ SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $0 R1Gen!4le R1H%in" 1<$.10;.$00.' R1H%in" 1<$.10;.$00.3

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<;

DS1:%in" 1<$.10;.$00.1 DS$:%in" 1<$.10;.$00.1 *ac&

Note: In the a"o-e la"# a switch will not forward fra es "etween two access ports unless they "elong to the sa e ;,15. *y default# all switch ports will "e in ;,15=. $owe-er# "y configuring one of the switch ports as ;,15!0# the switch can only forward pac&ets to other switch ports that "elong to ;,15!0. Switchport ode Ndyna ic autoN is the default ode for all the switches. The interface "eco es a trun& port if the neigh"ouring port is configured as trun& or +esira"le ode.

$'.11 : L!4 E+ercise 11 : VT/ )VLAN Trunkin" /rotocol, Scen!rio

escri%tion : This la" e:ercise helps to understand the configuration process of ;,15 Trun&ing Protocol ';TP) to esta"lish a ser-er and client connection # assigning ;,15s to ultiple ports# creating a trun& line "etween switches to carry ;,15s.

.nstructions : 1. 1ssign IP address =S!.=68.=00.= !((.!((.!((.0 to S4= on its interface and IP address of =S!.=68.=00.! !((.!((.!((.0 to S4! on its -lan interface $. 1dd -lan 30 and 90 to S4= and assign ports ! through ( to -lan 30 and assign ports 6 through =0 to -lan 90 '. To -erify the configuration# issue show -lan co and on S4= 3. Configure S4= as a ;TP Ser-er and S4! as a ;TP Client and change the ;TP do ain to certe:a s and assign a ;TP password of ccna *. To create the trun& lin& that will transport the ;,15 configurations fro S4= to S4!# ena"le trun&ing on the port that lin&s "etween the two switches 0. 1fter this configuration# you should "e a"le to -iew the ;,15s fro S4= on S4!. Use show -lan co and to -erify the ;,15 configurations# and show -tp status co and to display ;TP specific infor ation SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce 1l!n 1 SD1)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 SD1)con&i"8i&,Hno shut-o2n SD1)con&i"8i&,HenVersion 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

1<<

SD1H SD$Gen!4le SD$Hcon&i"ure ter#in!l SD$)con&i",Hinter&!ce 1l!n 1 SD$)con&i"8i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 SD$)con&i"8i&,Hno shut-o2n SD$)con&i"8i&,HenSD$H SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n '0 SD1)1l!n,H1l!n 30 SD1)1l!n,He+it SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce r!n"e &!st 0?$ 8 * SD1)con&i"8i&8r!n"e,Hs2itch%ort !ccess 1l!n '0 SD1)con&i"8i&8r!n"e,He+it SD1)con&i",Hinter&!ce r!n"e &!st 0?0 A 10 SD1)con&i"8i&8r!n"e,Hs2itch%ort !ccess 1l!n 30 SD1)con&i"8i&8r!n"e,He+it SD1)con&i",He+it SD1H SD1Hsho2 1l!n SD1H1l!n -!t!4!se SD1)1l!n,H1t% ser1er SD1)1l!n,H1t% -o#!in certe+!#s SD1)1l!n,H1t% %!ss2or- ccn! SD1)1l!n,He+it SD1H SD$Gen!4le SD$H1l!n -!t!4!se SD$)1l!n,H1t% client SD$)1l!n,H1t% -o#!in certe+!#s SD$)1l!n,H1t% %!ss2or- ccn! SD$)1l!n,He+it SD$H SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &!st 0?1$ SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,HenSD$Gen!4le SD$Hcon&i"ure ter#in!l
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$00

SD$)con&i",Hinter&!ce &!st 0?1$ SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,HenSD$Hsho2 1l!n SD$Hsho2 1t% st!tus *ac&

$'.1$ : L!4 E+ercise 1$ : VLANs !n- Trunkin"

escri%tion : This la" de onstrates setting up ;,15Ks on two switches na ely S4= and S4! and test the "y pinging "etween 0outer 0= and 4or&station 4S= as shown in the figure "elow.

.nstructions : 1. Configure wor&station 4S= with an IP 1ddress of =S!.=68.=00.!3!9 and a default6 gateway of =S!.=68.=00.= $. Configure 0= with an IP 1ddress of =S!.=68.=00.=3!9 on 2thernet 0 interface and ena"le the interface '. ;erify ping "etween 0= and 4S=. *ecause 0=# 4S= and switch6to6switch lin& are all in ;,15 =# the ping should "e successful 3. Issue show -lan co and on S4= and S4! and note that "y default all switch ports are in ;,15 = *. 2nter into data"ase ode on S4= and S4! and set up a -tp do ain "y na e certe:a s and -erify the sa e "y issuing show -tp status co and 0. Create ;,15 30 and na e it switch-lan on S4= and S4!# -erify the sa e "y issuing show -lan co and 9. 5e:t assign fa 03= port to the new ;,15 created on S4= and S4!. 0= and 4S= are attached to these ports. Issue show -lan co and on S4= and S4! to -erify if the ports ha-e "een o-ed to ;,15 30 ;. Ping fro 4S= to 0= and see that it fails "ecause now "oth 0= and 4S= are in ;,15 30 and there is no trun& line ena"led to carry the traffic for any ;,15 <. Configure trun& line "etween S4= and S4! and issue show interface fa 03=! switchport co and to -erify that trun&ing is ena"led on the port 10. 5ow ping fro 4S= to 0= and chec& that ping is successful "ecause "oth de-ices are in the sa e -lan and the inter6switch lin& is a trun& line DS1:i% !--ress 1<$.10;.100.$ $**.$**.$**.0
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$01

DS1:i% -e&!ult8"!te2!( 1<$.10;.100.1 R1Gen!4le R1Hcon ter R1)con&i",Hint e 0 R1)con&i"8i&,Hi% !--ress 1<$.10;.100.1 $**.$**.$**.0 R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,HenR1H DS1:%in" 1<$.10;.100.1 SD1Hsho2 1l!n SD$Hsho2 1l!n SD1H1l!n -!t!4!se SD1)1l!n,H1t% -o#!in certe+!#s SD1)1l!n,He+it SD1Hsho2 1t% st!tus SD$H1l!n -!t!4!se SD$)1l!n,H1t% -o#!in certe+!#s SD$)1l!n,He+it SD$Hsho2 1t% st!tus SD1H1l!n -!t!4!se SD1)1l!n,H1l!n '0 n!#e s2itch1l!n SD1)1l!n,He+it SD1Hsho2 1l!n SD$H1l!n -!t!4!se SD$)1l!n,H1l!n '0 n!#e s2itch1l!n SD$)1l!n,He+it SD$Hsho2 1l!n SD1Hcon ter SD1)con&i",Hint &! 0?1 SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n '0 SD1)con&i"8i&,HenSD1Hsho2 1l!n SD$Hcon ter SD$)con&i",Hint &! 0?1 SD$)con&i"8i&,Hs2itch%ort #o-e !ccess SD$)con&i"8i&,Hs2itch%ort !ccess 1l!n '0 SD$)con&i"8i&,HenSD$Hsho2 1l!n

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0$

DS1:%in" 1<$.10;.100.1 SD1Hcon ter SD1)con&i",Hint &! 0?1$ SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,HenSD1Hsho2 inter&!ce &! 0?1$ s2itch%ort SD$Hcon ter SD$)con&i",Hint &! 0?1$ SD$)con&i"8i&,Hs2itch%ort #o-e trunk SD$)con&i"8i&,HenSD$Hsho2 inter&!ce &! 0?1$ s2itch%ort DS1:%in" 1<$.10;.100.1 *ac&

$'.1' : L!4 E+ercise 1' : Routin" 4et2een VLANs)Router on ! Stick,

escri%tion : This e:ercise de onstrates the concept of 0outer on a stic&.

.nstructions 1. Configure 0= with su"6interface fastethernet 030.=0 with IP 1ddress =S!.=68.=00.!

Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0'

!((.!((.!((.0 and set the encapsulation to dot=7 ! and su"6interface fastethernet 030.!0 with IP 1ddress =S!.=68.!00.! !((.!((.!((.0 and set its encapsulation to dot=7 3 $. Chec& the routing ta"le on 0= "y issuing show ip route co and '. Connect to switch S4= and create ;,15s ! and 3 3. 1dd the S4= port fa 03= to ;,15 ! using Eswitchport access -lan Tnu IF co and *. 1dd the S4= port fa 03! to ;,15 3 using Eswitchport access -lan Tnu IF co and 0. Configure the wor&station 4S= with IP 1ddress =S!.=68.=00.= !((.!((.!((.0 and a default6gateway of =S!.=68.=00.! 9. Configure the wor&station 4S! with IP 1ddress =S!.=68.!00.= !((.!((.!((.0 and a default6gateway of =S!.=68.!00.! ;. Ping 0= fro 4S= and 4S! and Ping 4S! fro 4S= and see that it fails <. Configure the trun& lin& "etween 0= and S4= "y issuing switchport ode trun& co and on S4=. 1lso specify Eswitchport trun& encapsulation dot=7F on S4= in interface configuration ode 10. Chec& the trun& infor ation using show interfaces trun& co and 11. Ping 0= fro 4S= and 4S! and Ping 4S! fro 4S= and see that it is successful as there is a trun& line now created on S4= R1Gen!4le R1Hcon&i"ure ter#in!l R1)con&i",H R1)con&i",Hinter&!ce &!stethernet 0?0 R1)con&i"8i&,Hno i% !--ress R1)con&i"8i&,Hno shut-o2n R1)con&i"8i&,He+it R1)con&i",Hinter&!ce &!stethernet 0?0.10 R1)con&i"8su4i&,Henc!%sul!tion -ot1S $ R1)con&i"8su4i&,Hi% !--ress 1<$.10;.100.$ $**.$**.$**.0 R1)con&i"8su4i&,He+it R1)con&i",Hinter&!ce &!stethernet 0?0.$0 R1)con&i"8su4i&,Henc!%sul!tion -ot1S ' R1)con&i"8su4i&,Hi% !--ress 1<$.10;.$00.$ $**.$**.$**.0 R1)con&i"8su4i&,He+it R1)con&i",He+it R1Hsho2 i% route SD1Gen!4le SD1H1l!n -!t!4!se SD1)1l!n,H1l!n $ SD1)1l!n,H1l!n ' SD)1l!n,He+it SD1Hcon&i"ure ter#in!l SD1)con&i",Hint &! 0?1 SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n $ SD1)con&i"8i&,He+it SD1)con&i",Hint &! 0?$
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$03

SD1)con&i"8i&,Hs2itch%ort #o-e !ccess SD1)con&i"8i&,Hs2itch%ort !ccess 1l!n ' SD1)con&i"8i&,He+it DS1:i% !--ress 1<$.10;.100.1 $**.$**.$**.0 DS1:i% -e&!ult8"!te2!( 1<$.10;.100.$ DS$:i% !--ress 1<$.10;.$00.1 $**.$**.$**.0 DS$:i% -e&!ult8"!te2!( 1<$.10;.$00.$ DS1:%in" 1<$.10;.100.$ DS$:%in" 1<$.10;.$00.$ DS1:%in" 1<$.10;.$00.1 SD1Gen!4le SD1Hcon&i"ure ter#in!l SD1)con&i",Hinter&!ce &!st 0?1$ SD1)con&i"8i&,Hs2itch%ort trunk enc!%sul!tion -ot1S SD1)con&i"8i&,Hs2itch%ort #o-e trunk SD1)con&i"8i&,He+it SD1H SD1Hsho2 inter&!ces trunk DS1:%in" 1<$.10;.100.$ DS$:%in" 1<$.10;.$00.$ DS1:%in" 1<$.10;.$00.1 *ac& Note: The default trun& encapsulation type for !S(0 switch is dot=7 and it doesnKt support isl trun&ing encapsulation whereas =S00 series switches support isl trun&ing encapsulation type and doesnKt support dot=7 trun&ing encapsulation. So it is not possi"le to esta"lish a trun& connection "etween a =S00 switch and a !S(0 switch.

$'.13 O45ecti1e Test 13 : Ans2er the &ollo2in" Euestions

1. 4hich of the following is true of a SwitchA !, Switches forward pac&ets "ased on IP address. 4, Switches forward pac&ets "ased on M1C address. c, Switches forward pac&ets "ased on IPM address. -, Switches forward pac&ets "ased on ,ayer 3 protocol.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0*

$. Please refer to the figure "elow. $ost1 needs to access Swich1 anage ent interface ';,15=). $ost1 is a"le to ping fa030# "ut una"le to access the Switch anage ent interface. 4hich of the following needs to "e done for ena"ling access to Switch1 anage ent interfaceA !, Configure default gateway on Switch1 4, Configure ;,15! on the Switch c, Use roll6o-er ca"le instead of 2thernet ca"le fro -, Change Switch1 ;,15= ip address

router to switch

'. Match the syste !. Breen 4. 1 "er c. /ff

,2+ status light on a Cisco !S(0 series switch to its description.

1. Malfunctioning $. Syste is not powered up. '. Syste is operating nor ally. !, a6I3W "6I=W c6I! 4, a6I=W "6I3W c6I! c, a6I3W "6I!W c6I= -, a6I!W "6I=W c6I3

3. 4hich is true regarding ;,15sA !, ;,15 technology uses ;,15 switches 'layer !) which is a su"stitute for routing technology which uses routers. 4, 1 ;,15 has sa e collision do ain c, 1 ;,15 has sa e "roadcast do ain -, ;,15s are less secure with respect to si ple switch or $u" networ&s. *. 4hich co and will set the default gateway to =S!.=68.=.= on a Cisco switchA

!, ip default6route =S!.=68.=.= 4, ip route =S!.=68.=.= c, ip default6gateway =S!.=68.=.= -, ip default6networ& =S!.=68.=.=

Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$00

0. The networ& shown "elow is e:periencing connecti-ity pro"le s. 4hich of the gi-en "elow options will correct the pro"le sA

!, Configure the gateway on $ost 1 as =S!.=68.!.= 4, Configure the gateway on $ost * as =S!.=68.!.= c, Configure the IP address of $ost 1 as =S!.=68.!.=0. -, Configure the IP address of $ost * as =S!.=68.!.=!S e, Configure the as&s on "oth hosts to "e !((.!((.!((.=!8 9. 0efer to the figure "elow# hosts on the sa e ;,15 can co unicate with each other "ut are una"le to co unicate with hosts on different ;,15s. 4hat is needed to allow co unication "etween ;,15sA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$09

!, a switch with a trun& lin& that is configured "etween the switches 4, a router with an IP address on the physical interface that is connected to the switch c, a switch with an access lin& that is configured "etween the switches -, a router with su"6interfaces configured on the physical interface that is connected to the switch

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0;

$3. F.NAL E6AM $3.1 O45ecti1e Test Fin!l E+!# Ans2er the &ollo2in" Euestions
1. 4hich utility you use for ter inal e ulationA !, Telnet 4, .TP c, $TTP -, $TM, $. ?ou are configuring a router# with a hostna e of N0outerN. ?ou want to change the hostna e to N0outer1N. 4hat is'are) the co and's) used for doing thisA !, 0outerJhostna e 0outer1 4, 0outerJconfig t 0outer'config)Jhostna e 0outer1 c, 0outerJhostna e 0outer 0outer1 -, 0outerJconfig t 0outer'config)Jhostna e 0outer 0outer1 '. ?ou are connecting the 1u:iliary port on a Cisco access ser-er '+T2) to a 4hich of the following is correct co "ination of ca"lesA GSee the I ageH !, 0olled 0869( and 0olled +*6!( adapter. 4, 0olled 0869( and straight +*6!( adapter. c, Straight 0869( and straight +*6!( adapter. -, Straight +*6!( ca"le and straight +*6!( adapter. ode '+C2).

3. ?ou want to connect your router through a !, Console port 4, 1u:iliary port c, -ty -, ;.3( interface *. 4hich co

ode . 4hich port do you useA

and do you use to change your ena"le passwordA

!, Config t# set password password 4, Config t# ena"le password password c, Config t# ena"le secret password -, Config t# set secret password
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0<

0. ?ou are configuring a router with a host na e N0outer1N. Choose the correct se7uence of co ands to set the au:iliary port password# assu ing that you are in glo"al configuration ode. !, 0outer1'config6line)Jpassword 4, 0outer1'config)Jline au: 0 0outer1'config6line)Jlogin c, 0outer1'config)Jline au: 0 0outer1'config6line)Jlogin 0outer1'config6 line)Jpassword -, 0outer1'config)Jline au: = 0outer1'config6line)Jlogin 0outer1'config6 line)Jpassword 9. ?our internetwor& consists entirely of Cisco de-ices. ?ou ha-e gi-en a co and Nshow cdp neigh"orsN. In the response# you get NSN under the head NCapa"ilityN. 4hat does the letter NSN eanA !, It eans NSource 0oute *ridgeN 4, It eans N$ostN c, It eans NSwitchN -, It eans NStaticN ;. C+P 'Cisco +isco-ery Protocol) runs at which layer of the /SI !, Transport 4, Physical c, 5etwor& -, +ata lin& <. 1s the pac&et tra-els fro of the following pointsA $ost1 to $ost*# the destination M1C address is changed at which odelA

!, 1t Switch1# 0outer1# and Switch* 4, 1t Switch1# and Switch* c, 1t 0outer1 -, +estination M1C address of a pac&et doesnKt change. 10. Please refer to the figure "elow. $ost1 was not a"le to ping $ost*. 1 trace route co issued a $ost1 has the following output displayed@ 66666666666666666666666666666666666666666666666666666666666666666666666666 C@Itracert =S!.!00.!.C Tracing route to =S!.!00.!.C o-er a a:i u of 30 hops = +estination host unreacha"le Trace co plete 6666666666666666666666666666666666666666666666666666666666666666666666666666666 !, The router 0T1 S030 is not configured properly 4, The su"net as& "etween routers 0T* and 0TC is incorrect c, The gateway address on $ost 1 is not configured properly -, The $ost * is not configured properly. and

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$10

11. $ow

any nu "er of telnet sessions does a Cisco router support "y defaultA !, = 4, ! c, ( -, =0

1$. ?ou ha-e used ping co response NUN. 4hat does it

and to see whether the re ote router is wor&ing. ?ou ha-e got a eanA

!, Successful receipt of echo reply 4, Pac&et e:perienced Congestion c, +estination Unreacha"le -, Pac&et ti e to li-e e:ceeded 1'. ?ou are Telnetting to a re ote host on the Internet. 4hich protocol is "eing usedA !, IPM3SPM 4, TCP3IP c, 5et*2UI -, $TTP 13. 4hich of the following are true while creating a static routeA GSelect all that applyH !, The su"net as& is re7uired 4, The etric is optional c, The default gateway is re7uired -, The destination networ& address is re7uired 1*. 1 routing ta"le entry that is used to direct pac&ets addressed to networ&s not e:plicitly listed in the routing ta"le is &nown as Edefault routeF )True?F!lse, 10. 4hat are the co "est answers) ands that can "e used to set default route on a Cisco routerA 'Choose !

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$11

!, ip route 0.0.0.0 0.0.0.0 =S!.=68.=.= 4, ip route 0.0.0.0 =S!.=68.=.= c, default route 0.0.0.0 0.0.0.0 =S!.=68.=.= -, ip route 0.0.0.0 0.0.0.0 s0 19. ?ou want to set a gateway of last resort on your Cisco router. 4hat is the co !, ip route T ne:t\hop\addressI 4, ip route 0.0.0.0 0.0.0.0 c, ip route 0.0.0.0 -, ip route 0.0.0.0 1;. ?ou ha-e configured your router to use static and default routes. 4hat is the co should useA !, ip default 4, ip dyna ic c, static ip -, ip classless 1<. ?ou find that one of the serial interfaces on your router is not forwarding traffic. ?ou ha-e gi-en Nshow ip interfacesN co and. In the response# you o"ser-ed the following entries against that interface@ 66666666666666666666666666666666666666 Serial0 is up# line protocol is down. 66666666666666666666666666666666666666 4hat is the li&ely pro"le A !, There is a pro"le at physical layer. 4, There is a pro"le e:changing the routing infor ation. c, The lin& was ad inistrati-ely down -, There is a pro"le with the route "oth at physical and protocol layers. $0. ?ou are on your co pany<s intranet running on TCP3IP. ?ou are a"le to access the co puters on the local su"net. *ut you are not a"le to access any co puter on re ote su"net. 4hich interface you need to suspect first to deter ine the pro"le A !, ?ou need to ping the local host first# the pro"le ay "e with the local host. 4, ?ou need to ping the default gateway first# the pro"le ay "e with the default gateway. c, ?ou need to ping the re ote co puters IP address first# the pro"le is ost li&ely with the re ote co puter. -, ?ou need to ping any co puter on the local su"net# as the pro"le ay "e with one of the co puters on the local su"net. $1. 4hat is true a"out IP routingA !, The fra e changes at each hop 4, The source IP address changes at each hop c, The destination IP address changes at each hop -, The hardware interface addresses re ain constant and you and synta:A

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1$

$$. 1 "ranch office is connected to the ISP as shown in the figure. 4hich router is appropriate for configuring default routeA !, 0= 4, 0! c, 03 -, ISP 0outer

ost

$'. The routers 1 and * are configured as shown in the figure. $ost 1 and $ost * are configured properly. 1 ping fro host 1 is a"le to get a successful response fro S0 of 0outer*# "ut failed to get any response fro $ost *. 4hat is the li&ely pro"le A !, The serial interfaces on 0outers 1 and * are not configured properly. 4, The su"net as& on networ& =S!.!09.=.69 3!8 is not correct. c, 0outer 1 is "ad -, 0outer 1 doesnKt ha-e route to networ& =S!.!09.=.693!8

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1'

$3. The ping co and issued fro host 1 to S0 of 0outer1 has failed. 4hen the co show ip interface "rief is run# the output is as gi-en "elow. 'See the I age) RouterA)con&i",Hsho2 i% inter&!ce 4rie&

and

Interface IP address /QA Method Status Protocol .ast2thernet030 =S!.=68.=0.= ?2S 5;01M UP UP Serial 0 =S!.=68.!0.= ?2S 5;01M 1d inistrati-ely down +own .ast2thernet03= Unassigned ?2S 5;01M 1d inistrati-ely down +own Serial = Unassigned ?2S 5;01M 1d inistrati-ely down +own 4hat needs to "e doneA !, Configure Serial = on 0outer1 4, 2na"le serial 0 on 0outer1 c, Change ethod to 0/M -, 2na"le routing

$*. 1 networ& ad inistrator needs to configure default gateway on $ost1. 4hich of the following IP addresses represent the default gateway for $ost1A

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$13

!, =S!.=68.!.=0 4, =S!.=68.!.= c, =S!.=68.=.= -, 0.0.0.0 $0. 4hat is true a"out IP 0IP "ased networ&sAGSelect !H !, They send only changes to the routing ta"les during updates. 4, They send co plete routing ta"le during updates. c, The default update ti e is 30 seconds. -, The defaultupdate ti e is S0 seconds. $9. ?ou intend to configure 0IP -= on your networ&. 4hich of the following is proper co se7uence to configure 0IP -= on your routerA !, router rip networ& !C.=(.=.0 networ& =S!.=(.6.0 4, router rip networ& =6.(.0.0 networ& =9!.6.6.0 c, router rip networ& =9!.=(.0.0 !((.!((.0.0 networ& =S!.=9.69.0 !((.!((.!((.0 -, router rip networ& =(6.=9.0.0 networ& =S6.=!.=!.0 $;. 0IP is a distance -ector routing protocol that depends on which of the following for routing distance easure ent@ !, *andwidth 4, +elay c, 5u "er of $ops -, 0elia"ility $<. 1 networ& ad inistrator is testing two routers o-er a si ulated 415 lin& in the la". The serial lin& is not wor&ing# though the two routers are configured with IP addresses. The output of show controllers and show interface co ands is as shown in the figure. 1ssu ing that there is no pro"le with the hardware# what needs to "e done for ena"ling the co unication o-er the serial lin&. !, Use no shutdown co and on 0outer1 4, Configure 0outer1 cloc& rate c, Configure 0outer* Serial 030 with cloc& rate -, The IP su"net of the 415 lin& is incorrect '0. ,15! on 0! has "eco e inaccessi"le. 4hich of the following is true in 0IP -ersion! routing en-iron entA 'See the I age) !, 0! infor s 0=# 03# and 09 a"out the failure in the routing update. 4, 0! infor s 0= and 09 a"out the failure# and su"se7uently "oth 0= and 09 update 03 a"out the sa e. c, /nly 0= is infor ed a"out the failure# which in turn infor s other routers in the 0IP networ& a"out the failure of ,15! -, 5o updates occur till the ne:t regular update. and

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1*

'1. 4hat are the routing

etrics used "y 2IB0PA

!, $op count 4, TT, and ,oad c, Tic&s and *andwidth -, *andwidth# MTU# 0elia"ility# +elay# and ,oad. e, *andwidth# MTU# and 0elia"ility '$. 4hich of the following protocols use 1SA 'Choose ! "est answers) !, 0IP 4, /SP. c, 2IB0P -, 0IP -! ''. 4hich of the following state ents are true a"out 2IB0P route su "est answers) ari%ationA 'Choose 3

!, 2IB0P pro-ides su ari%ation of routes at classful "oundaries "y default. 4, .or su ari%ing routes at an ar"itrary "oundary# one need to disa"le auto su ari%ation# using Eno auto6su aryF co and. c, Manual su ari%ation in 2IB0P networ& ta&es place on any interface in the networ&. -, .or specifying a su ary route anually# you ust specify the etrics. '3. 4hich of the following is used "y 2IB0P to 7uery other 2IB0P neigh"or routersA !, Unicasts
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$10

4, *roadcasts c, Multicasts -, S+,C '*. 1 fra e relay networ& as shown in the i age "elow is ha-ing connecti-ity pro"le s. Show fra e6relay ap co ands on respecti-e routers are also shown. 4hat is the li&ely pro"le with the gi-en fra e relay networ&A G0efer to the i age gi-en "elowH !, The IP address of 0outerC is incorrect 4, The fra e6relay state ent for 0outer1 for P;C (0= is wrong c, The fra e relay6 ap for 0outerC is not correctly configured -, The fra e relay6 ap for 0outer* is not correctly configured

'0. 4hich of the following is a -alid state ent a"out .ra e60elay su"6interface configurationA

ultipoint

!, Multipoint is configured when you want the su"6interface to act as a point6 to6point leased line. 4, .ra e60elay ultipoint configuration on a su"6interface re7uires an IP
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$19

address at the physical interface. c, .ra e60elay ultipoint is the default configuration assigned when you configure fra e6relay. -, 1ll participating interfaces would "e in the sa e su"net. '9. 4hich of the following is a reco ended solution to the split hori%on pro"le 0elay networ& that is running ultiple P;Cs o-er a single interfaceA !, +isa"le split hori%on on .ra e 0elay networ&s 4, Configure the router with su"6interfaces c, +isa"le split hori%on and use su"6interfaces -, Use only one P;C per interface ';. 4hat is the default ad inistrati-e distance of /SP.A !, = 4, =00 c, ==0 -, =!0 e, !(( '<. 4hich of the following are the "enefits of /SP. routing o-er 0IPA 'Choose all that apply) !, 5o hop count li itation 4, .aster con-ergence c, *est path selection -, Supports ;,SM e, Uses hop count as etric for deter ining the "est path 30. The show ip interface "rief on an /SP. router is gi-en. /SP. router id was not specifically configured "efore. 4hat would "e the 0outer I+ for this routerA RouterAHsho2 i% inter&!ce 4rie& .nter&!ce 2thernet030 Serial 030 ,oop"ac&0 ,oop"ac&= ./ A--ress =S!.=68.=.39 !00.!00.!.39 =S!.=68.3.= =S!.=68.9.= !, =S!.=68.=.39 4, =S!.=68.3.= c, =S!.=68.9.= -, !00.!00.!.39 31. 4hat is the cause of the pro"le functioning properlyA in the fra e6relay networ& shown "elow which is not O=I ?2S ?2S ?2S ?2S MethoSt!tus 5;01M up 5;01M 1d inistrati-ely down 5;01M up 5;01M up /rotocol up down up up in a .ra e

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1;

!, The 5? router has the wrong ,MI type configured 4, In-erse 10P is pro-iding the wrong P;C infor ation to the 5? router c, The S3 interface of the +, router has "een configured with the fra e6 relay encapsulation ietf co and -, The fra e6relay ap state ent in the S1 router for the P;C to +, is not correct e, The IP address on the serial interface of the S1 router is configured incorrectly 3$. 1s per the figure "elow# the networ& ad in is in ad in "uilding while the Bateway0outer is in Corportate "uilding. Bateway0outer is hosting a newly installed 415 lin& on interface S030. The new lin& is not functioning and the ad in needs to deter ine if the correct ca"le has "een attached to the S030 interface. $ow can the ad in accurately -erify the correct ca"le type on S030 in the ost efficient annerA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$1<

!, Telnet to Bateway0outer and e:ecute the co and show interfaces S030 4, Telnet to Bateway0ouer and e:ecute the co and show processes S030 c, Telnet to Bateway0outer and e:ecute the co and show running6 configuration -, Telnet to Bateway0outer and e:ecute the co and show controller S030 e, 2sta"lish a console session on Bateway0outer and e:ecute the co and show interfaces S030 3'. Bi-en "elow is the response when an atte pt is ade to open a telnet connection to router 0! fro router 0=. 4hich of the following co and se7uences will correct this pro"le A R1Htelnet R$ Tr(in" R$ )1<$.10;.1.1,VVO%en /!ss2or- reSuire-F 4ut none set OConnection to R$ close- 4( &orei"n hostP R1H !, R$)con&i",Hline console 0 R$)con&i"8line,Hpassword cisco 4, R1)con&i",Hline console 0 R1)con&i"8line,Hlogin R1)con&i"8line,Hpassword cisco c, R$)con&i",Hline -ty 0 9 R$)con&i"8line,Hlogin R$)con&i"8line,Hpassword cisco -, R1)con&i",Hline -ty 0 9 R1)con&i"8line,Hlogin R1)con&i"8line,Hpassword cisco e, R$)con&i",Hena"le password cisco
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$0

33. 0efer the figure gi-en "elow. It has "een decided that PC= should "e denied access to Ser-er. 4hich of the following co ands are re7uired to pre-ent only PC= fro accessing Ser-er= while allowing all other traffic to flow nor allyA 'Choose two)

!, Router)con&i",Hinterface fa030 Router)con&i"8i&,Hip access6group =0= out 4, Router)con&i",Hinterface fa030 Router)con&i"8i&,Hip access6group =0= in c, Router)con&i",Haccess6list =0= deny ip host =C!.=6.=C=.=60 host =C!.=6.=C!.=C3 Router)con&i",Haccess6list =0= per it ip any any -, Router)con&i",Haccess6list =0= deny ip =C!.=6.=C=.=60 0.0.0.!(( =C!.=6.=C!.=C3 0.0.0.0 Router)con&i",Haccess6list =0= per it ip any any 3*. .ro the figure gi-en "elow there are two PCKs connected to a switch. 4hen switch S4= is powered /5# $ost 1 sends the first fra e to $ost *. 4hat is the first thing that the switch should doA

!, Switch= will add =S!.=68.!0.( to the switching ta"le. 4, Switch= will add =S!.=68.!0.S to the switching ta"le. c, Switch= will add 00C1.8*3!.+(0= to the switching ta"le. d) Switch= will add 00C1.8*3!.+(=! to switching ta"le "efore it adds $ost 1 M1C address e, 5one of the a"o-e 30. 1s per the figure gi-en "elow# $ost = is trying to co
Version 1.0

unicate with $ost !. The 20

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$1

interface of 0outer C is down. 4hich of the following are trueA

!, 0outer C will use ICMP to infor $ost = that $ost ! cannot "e reached. 4, 0outer C will use ICMP to infor 0outer * that $ost ! cannot "e reached. c, 0outer C will use ICMP to infor $ost =# 0outer 1# and 0outer * that $ost ! cannot "e reached. -, 0outer C will send a +estination Unreacha"le essage type. e, 0outer C will send a Source Puench essage type 39. 0efer to the figure "elow. .or security reasons# infor ation a"out 0outer 1 such as the platfor and capa"ilities# and interfaces should not "e accessi"le fro the Internet. This infor ation should howe-er "e accessi"le to de-ices on the internal networ&s of 0outer 1. 4hich co and or series of co ands will acco plish these o"Vecti-esA

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$$

!, 1'config)Jcdp run 4, 1'config)Jno cdp ena"le c, 1'config)Jinterface s030 1'config6if)Jno cdp run -, 1'config)Jinterface s030 1'config6if)Jno cdp ena"le 3;. 1 networ& ad in wants to add a line to an access list that will "loc& only telnet access "y the hosts on su"net =S!.=68.=.=!83!C to the ser-er at =S!.=68.=.6. 4hat co and should "e issued to acco plish this tas&A !, access6list =0= deny tcp =S!.=68.=.=!8 0.0.0.3= =S!.=68.=.6 0.0.0.0 e7 !3 access6list =0= per it ip any any 4, access6list =0= deny tcp =S!.=68.=.=!8 0.0.0.!(! =S!.=68.=.6 0.0.0.0 e7 !3 access6list =0= per it ip any any c, access6list = deny tcp =S!.=68.=.=!8 0.0.0.!(( =S!.=68.=.6 0.0.0.0 e7 != access6list = per it ip any any -, access6list = deny tcp =S!.=68.=.=!8 0.0.0.3= host =S!.=68.=.6 e7 !3 access6list = per it ip any any 3<. 1s a networ& ad inistrator# you ha-e "een instructed to pre-ent all traffic originating on the ,15 =S!.=68.=0.0 fro entering the 0! router. 4hich the following co and would i ple ent the access list on the interface s0 of router 0!A
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$'

!, access6list =SS out 4, access6list =SS in c, ip access6group =SS in -, ip access6group =SS out *0. The following access list was applied out"ound on the 20 interface connected to the =S!.=6S.=.83!S ,15@ !ccess8list 1<< -en( tc% 1<$.10<.1.; 0.0.0.9 eS $0 !n( !ccess8list 1<< -en( tc% 1<$.10<.1.; 0.0.0.9 eS $1 !n( $ow will the a"o-e access lists affect trafficA !, .TP traffic fro =S!.=6S.=.8 will "e denied 4, 5o traffic# e:cept for .TP traffic will "e allowed to e:it 20 c, .TP traffic fro =S!.=6S.=.8 to any host will "e denied -, 1ll traffic e:iting 20 will "e denied e, 1ll .TP traffic to networ& =S!.=6S.=.83!S will "e denied

$*. A%%en-i+ $*.1 : Ans2er ke(s &or O45ecti1e Test 1

1. 4 E+%l!n!tion : Typically# a Cisco router has the following types of co ponents@ e ory

1. RAM )or RAM,: This type of e ory is used for wor&ing storage. This is where part of I/S i age# routing ta"les# pac&ets# and others are stored during nor al wor&ing of a router. 01M is erased when the router is powered off. $. ROM )Re!- Onl( Me#or(,: 0/M stores "ootstrap code for "ooting Cisco I/S. It points to the functional I/S i age so that the router can co plete its start6up configuration successfully. It is so ewhat analogous to the *I/S in PC. 0/M also contains a s all portion of I/S.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$3

'. Fl!sh #e#or(: .lash e ory contains the fully functional I/S i ages. It is the default location for getting I/S i age at "oot ti e. ?ou can loosely co pare the I/S i age with operating syste 'say +/S). 3. NVRAM: 5;01M stands for 5on ;olatile 01M. 5;01M stores the initial or startup configuration file. $. c E+%l!n!tion : Typically# a Cisco router has the following types of co ponents@ e ory

1. RAM )or RAM,: This type of e ory is used for wor&ing storage. This is where part of I/S i age# routing ta"les# pac&ets# and others are stored during nor al wor&ing of a router. 01M is erased when the router is powered off. $. ROM )Re!- Onl( Me#or(,: 0/M stores "ootstrap code for "ooting Cisco I/S. It points to the functional I/S i age so that the router can co plete its start6up configuration successfully. It is so ewhat analogous the *I/S in PC. 0/M also contains a s all portion of I/S. '. Fl!sh #e#or(: .lash e ory contains the fully functional I/S i ages. It is the default location for getting I/S i age at "oot ti e. ?ou can loosely co pare the I/S i age with operating syste 'say +/S). 3. NVRAM: 5;01M stands for 5on ;olatile 01M. 5;01M stores the initial or startup configuration file. '. ! 4 c - )!ll o& the#, E+%l!n!tion : ROM )Re!- Onl( Me#or(,: Me ory containing icro6code for "asic functions to start and aintain the router. 0/M is not typically used after the I/S is loaded. 0M*//T is located here. RAM? RAM : Stores the running configuration# routing ta"les# and pac&et "uffers. So e routers# such as the !(00 series# run I/S fro .lash# not 01M. NVRAM )Non8Vol!tile R!#,: Me ory that does not lose infor ation when power is lost. Stores the syste Ks configuration file and the configuration register. 5;01M uses a "attery to aintain the data when power is turned off. Fl!sh Me#or(: Stores the co pressed I/S 'I/S stands for Cisco Internetwor& /perating Syste ) i age. .lash e ory is either 22P0/M or PCMCI1 card. .lash e ory ena"les you to copy ultiple -ersions of I/S software. This allows you to load a new le-er of the operating syste in e-ery router in your networ& and then# to upgrade the whole networ& to that -ersion at a con-enient ti e.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$*

3. 4 !n- E+%l!n!tion : *oth Ncopy star runN and NreloadN will load Cisco router configuration into 01M.

$*.$ : Ans2er =e(s &or O45ecti1e Test $

1. E+%l!n!tion : Show -ersion co and displays the current -ersion of the Cisco I/S. In addition# this co and displays the following i portant infor ation@ 6 $ow long the router has "een up 'length of ti e since "oot6up). 6 $ow the syste was started 'power on etc.) 6 .ro where the syste was loaded fro ' "ooted -ia flash # or tftp etc.) 6 The contents of configuration register. $. c E+%l!n!tion : There are different types of ca"les@ 1. Str!i"ht throu"h c!4le: This is also &nown as patch ca"le. 1 straight through ca"le is used to connect a co puter to a hu" or a switch. $. Crosso1er c!4le: 1 crosso-er ca"le is used to connect one co puter 1 to the other co puter * without using a switch or hu". '. Rollo1er c!4le: 1 rollo-er 'also &nown as console ca"le) is used to connect to routers for configuration purpose. 1lso# you canKt connect the 2thernet port on PC to another 2thernet port on a router using a straight through ca"le. ?ou need crosso-er ca"le for this purpose. 1lso# the PC need to ha-e a networ& card# and appropriate networ&ing protocol stac& properly installed and configured. '. c !n- E+%l!n!tion : The following are so e i portant co ands that can "e used to edit and re-iew co and history "uffer. It will "e useful to practice these co ands. RctrlG A : Mo-e to the "eginning of the co RctrlG E : Mo-e to the end of the co and line

and line

RctrlG F : Mo-e forward one character# sa e as using N0ight 1rrowN.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$0

RctrlG B : Mo-e "ac&ward one character# sa e as using N,eft 1rrowN. RctrlG / : 0epeat Pre-ious co and# sa e as using NUp 1rrowN. and# sa e as using N+own

RctrlG N : 0epeat 5e:t ' ore recent) co 1rrowN.

RescG B : Mo-es to "eginning of pre-ious word. RescG F : Mo-es to "eginning of ne:t word. RctrlGR : Creates new co at the last one. 3. c E+%l!n!tion : 0outer odes of operation@ and pro pt# followed "y all the characters typed

1. User E6EC #o-e:8 This is the ,/42ST le-el of access. This allows e:a ination of router status# see routing ta"les# and do so e diagnostics. $owe-er# you cannot change the router configuration# -iew the configuration files# or control the router in any way. The pro pt in this ode is N0outerIN. $. /ri1ile"e- )en!4le, E6EC #o-e:8 This ode allows you to ha-e all the pri-ileges of 2M2C 'user) ode plus co ands that ena"le you to -iew configuration files# change the router configuration# perfor trou"leshooting that could potentially disrupt traffic. The default pro pt for this ode is N0outerJN. 4hen you are wor&ing in the pri-ileged ode 'at J pro pt)# you can get "ac& to user ode "y typing Ndisa"leN at the NJN pro pt. *. 4 E+%l!n!tion : Qey word@ C/P? TsourceI TdestinationI This co and copies configuration infor ation to specified location. ands@

The following are so e fre7uently used C/P? co

CO/@ RUNN.N>8CONF.>URAT.ON STARTU/8CONF.>URAT.ON 'alternati-ely# you can use an older -ersion of the co and# 40IT2 M2M/0?)@ This co and sa-es the current configuration to 5;01M. 1lternati-ely# we can issue the co and using short for @ 01M to 5;01M

CO/@ RUNN.N> STARTU/ 6 Copies configuration fro CO/@ STARTU/ RUNN.N> 6 This co
Version 1.0

and

erges configuration fro

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$9

5;01M to 01M. CO/@ FLAS: TFT/ 6 Copies current I/S fro T.TP ser-er. router flash e ory to

CO/@ TFT/ FLAS: 6 Copies i age file fro T.TP ser-er to flash. This is used to upgrade the I/S i age file to a newer -ersion# or if your I/S i age "eco es corrupt. 0. E+%l!n!tion : Typically# a Cisco router has the following types of co ponents@ e ory

1. RAM )or RAM,: This type of e ory is used for wor&ing storage. This is where part of I/S i age# routing ta"les# pac&ets# and others are stored during nor al wor&ing of a router. 01M is erased when the router is powered off. $. ROM )Re!- Onl( Me#or(,: 0/M stores "ootstrap code for "ooting Cisco I/S. It points to the functional I/S i age so that the router can co plete its start6up configuration successfully. It is so ewhat analogous the *I/S in PC. 0/M also contains a s all portion of I/S. '. Fl!sh #e#or(: .lash e ory contains the fully functional I/S i ages. It is the default location for getting I/S i age at "oot ti e. ?ou can loosely co pare the I/S i age with operating syste 'say +/S). 3. NVRAM: 5;01M stands for 5on ;olatile 01M. 5;01M stores the initial or startup configuration file. 9. 4 E+%l!n!tion : The first line ESerial030 is down# line protocol is downF says that the Serial 030 is down. It usually eans a hardware failure on the router interface. Therefore# it is reco ended to chec& ,ayer = 'Physical layer) para eters. If the Physical layer is o&ay# and if there is any pro"le with protocol atching# you usually get the error ESerial030 is up# line protocol is downF. ;. E+%l!n!tion : =. 1 straight6through ca"le is what you nor ally use to connect a PC to a hu" or switch !. 1 crosso-er ca"le is a special type of 2thernet ca"le used to connect a PC to a PC or a switch to a switch 3. 1 rolled ca"le isnKt actually an 2thernet ca"le# "ut loo&s li&e one. It is used
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$;

to connect a PC to a switchKs console port# for anage ent. This ca"le is nor ally used when configuring a Cisco switch or a router for the first ti e.

$*.' : Ans2er ke(s &or O45ecti1e Test '

1. 4 E+%l!n!tion : The "anner is displayed whene-er anyone logs in to your Cisco router. The synta: is N"anner otd J N . M/T+ stands for NMessage /f The +ayN.J sy "ol signifies the start of the "anner essage to the router. ?ou will "e pro pted for the essage to "e displayed. ?ou need to enter NJN sy "ol at the end of the essage# signifying that the sg has ended. $. 4 E+%l!n!tion : S$/4 co and is e:tensi-ely used for seeing the status and configuration infor ation of the router. So e of the fre7uently used co ands are@

S:OD RUNN.N>8CONF.>URAT.ON 6This co and displays the router<s acti-e configuration file# passwords# syste na e# and interface settings# interfaces IP addresses etc. S:OD .NTERFACE 6 Shows status and configuration infor ation of the local interfaces. The first line says so ething li&e ETo&en0ing= is up# line protocol is upF. The first part ETo&en0ing= is upF descri"es the physical layer co ponents such as electrical ca"ling and signaling are /Q. The second part Eline protocol is upF eans that the router is detecting &eep6ali-e essages. The router ay "e put into ad inistrati-ely down status# at which point the line would read# ETo&en0ing= is ad inistrati-ely down# line protocol is down.F S:OD .NTERFACE SER.AL 0 6 Shows the serial 0 configuration. S:OD .NTERFACES 6 +isplays statistics for all interfaces configured on the switch. S:OD /ROCESS 6 +isplays a routerKs CPU utili%ation. S:OD CONF.> 6 +isplays infor ation on the startup configuration. S:OD VERS.ON 6 +isplays infor ation a"out the syste hardware '01M30/M)# software -ersion# na es of configuration files# and "oot6i ages. This co and will also show the current configuration register -alue.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$$<

'. c E+%l!n!tion : 251*,2 3 +IS1*,2 6 2na"les or +isa"les pri-ileged e:ec ode. There are fi-e different types of passwords@ 1. ENABLE /ASSDOR 6 1 glo"al co and that restricts access to pri-ileged e:ec ode. This is a non6encrypted password. $. ENABLE SECRET 6 1ssigns a one6way encryptographic secret password# a-aila"le in -ersions =0.3 and up. This secret password is used instead of the ena"le password when it e:ists. '. V.RTUAL TERM.NAL /ASSDOR )1t( %!ss2or-,: The -irtual ter inal password is used for Telnet sessions into the router. The password can "e changed at any ti e. It can "e set up when you configure the router fro the console. There can "e fi-e distinct passwords corresponding to each -ty '-ty0 to -ty9) or there can "e a single password for all -tys. 3. AU6.L.AR@ /ASSDOR is used to set password to the au:iliary port. This port is used to access a router through a ode . *.CONSOLE /ASSDOR : Console password is used to set the console port password. 3. ! E+%l!n!tion : *andwidth is entered in Q*PS. Therefore# RouterA)con&i"8i&,H4!n-2i-th 03 is correct synta:. *. c E+%l!n!tion : The Eno cdp ena"leF instruction has to "e gi-en at the interface configuration ode# where C+P needs to "e disa"led. 'in this case S030). 0. ! !n- c E+%l!n!tion : +e"ugging output ta&es priority o-er other networ& traffic. 1lso# the Ede"ug allF co and generates ore output than any other de"ug co and# and it can se-erely affect the router<s perfor ance. Practically in all cases# it is "est to use ore specific de"ug co ands. 9. c E+%l!n!tion : The a. The co
Version 1.0

atching co

ands are gi-en "elow@

and Eip address =S!.=68.=.! !((.!((.!((.0F is to "e gi-en in the

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'0

interface configuration

ode.

". The co and Eno shutdownF ena"les an interface. *y default# Cisco router interfaces are in shutdown state. Therefore# one needs to issue Eno shutdownF co and to "ring up the interface. c. The co ;. 4 E+%l!n!tion : The co and Ecdp runF in glo"al configuration ode ena"les C+P glo"ally on the router. The co and Ecdp ena"leF is used to ena"le C+P on a particular interface3port. The co <. !F c !n- e E+%l!n!tion : .ro the output# we learn that the IP address of the neigh"or router is !0.!.!.= and the 7uestion stated that the su"net as& of the networ& "etween two router is !((.!((.!((.!(!. Therefore there are only ! a-aila"le hosts in this networ& '!! 6 ! ] !). So we can deduce the ip address 'of the serial interface) of 5ewyor& router is =0.!.!.! The platfor of the neigh"or router is Cisco !6=0# as shown in the output. and used to disa"le C+P is Eno cdp ena"leF. and EdescriptionF is used to la"el an interface.

Please notice that NInterfaceN refers to the local port on the local router# in this case it is the port of 5ewyor& router# and NPort I+ 'outgoing port)N refers to the port on the neigh"or router. 10. 4 E+%l!n!tion : The ost li&ely pro"le is that the T.TP ser-er is not reacha"le.

$*.3 : Ans2er ke(s &or O45ecti1e Test 3

1. ! !n- c E+%l!n!tion : 0outing protocols Vo" is to aintain routing ta"les and route pac&ets appropriately. 2:a ples of routing protocols are 0IP# IB0P# 2IB0P# /SP.. 0outers can support ultiple independent routing protocols and can update and aintain routing ta"les for each protocol independently. 0outed protocols are used to transport user traffic fro source node to destination node. 2:a ples of routed protocols are IP# IPM# 1ppleTal&. $. 4
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'1

E+%l!n!tion : =!C.0.0.= is the local loop"ac& address defined "y the Internet Protocol and used for "y a host to ping itself to -erify the IP connecti-ity. '. ! E+%l!n!tion : There are three ways a router learns how to forward a pac&et@ 1. St!tic Routes 6 Configured "y the ad inistrator anually. The ad inistrator ust also update the ta"le anually e-ery ti e a change to the networ& ta&es place. Static routes are co only used when routing fro a networ& to a stu" 'a networ& with a single route) networ&. The co and is ip route networ& as& address3interface GdistanceH

E+: ip route =6(.99.39.0 !((.!((.!((.0 =6(.99.(6.( $ere# =6(.99.39.0 is the destination networ& or su"net !((.!((.!((.0 is the su"net as&

=6(.99.(6.( is the default gateway. $. e&!ult Routes 6 The default route 'gateway of last resort) is used when a route is not &nown or is infeasi"le. The co and is ip route 0.0.0.0 0.0.0.0 =6(.99.(6.(

The default gateway is set to =6(.99.(6.( '. (n!#ic Routes 6 1s soon as dyna ic routing is ena"led# the routing ta"les are auto atically updated. +yna ic routing uses "roadcasts and ulticasts to co unicate with other routers. 2ach route entry includes a su"net nu "er# the interface out to that su"net# and the IP address of the ne:t router that should recei-e the pac&et. The co ands to ena"le rip are@ router rip networ& T aVor networ& nu "erI. 3. E+%l!n!tion : sh hosts 666I displays the host na es and related IP addresses. sh int s0 666I 1 ong other things# you can see the encapsulation type 'layer !) used. Ping 6666I sends an ICMP echo *. c
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

essage.

$'$

E+%l!n!tion : Correct co

and synta: is T

ip route Tdestination\networ&\addressI Tsu"net\ as&I default\gatewayI 0. -

E+%l!n!tion : ISP router is nor ally configured with static route. 9. ! E+%l!n!tion : The co and to configure a static route to networ& =S!.!09.=.693!8 fro 0outer1 is ip route =S!.!09.=.69 !((.!((.!((.!90 =S!.!09.=.! ;. 4 E+%l!n!tion : Internet connecti-ity is nor ally achie-ed using a 415 connection. Therefore# you need a serial port for connecting to the Internet. /n the other hand# a switch nor ally re7uires an 2thernet port for connecti-ity. <. ! !n- e E+%l!n!tion : To add a static route on a Cisco router# use the `ip route` co and. The synta: to utili%e is@ i% route R-estin!tionG Rnet#!skG Rne+t ho%G The e:a ple shows the creation of a static route for a single host @ CiscoHcon&i"ure ter#in!l Cisco)con&i",Hi% route 1<'.$*$.1<.* $**.$**.$**.$** 1<'.$*$.1<.1

$*.* : Ans2er ke(s &or O45ecti1e Test *

1. c E+%l!n!tion : The co fro the router. $. ! !n- c E+%l!n!tion : PPP supports Password 1uthentication Protocol 'P1P) and# Challenge $andsha&e 1uthentication Protocol 'C$1P). '. 4
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

and Nno router ripN is used for re o-ing all rip entries

$''

E+%l!n!tion : P1P uses !6way handsha&ing. Passwords are sent in clear te:t across the lin&. Therefore# P1P is to "e used only when it not possi"le to use C$1P. C$1P uses 36way handsha&ing. C$1P uses Challenge3 0esponse ethod which pro-ides protection against the password capture while authenticating the user. /ne should use C$1P whene-er it is possi"le. 3. 4 E+%l!n!tion : 0IP and IB0P are e:a ples of routing protocols that use distance -ector. In 0IP# the a:i u hop count allowed is =( hops. 1 hop count of =6 is considered as unreacha"le. 1n 0IP router deter ines the path to the destination "ased on the a ount of hops it ta&es to reach the destination. If it had two different ways to reach the destination# it will si ply send the pac&et -ia the shortest path ' ini u hop count)# regardless of the connection speed. This is co only &nown as pinhole congestion. *. 4 E+%l!n!tion : Ma:i u hop count supported "y 0IP is =(. 1 hop count of =6 or greater is considered unreacha"le. 0. True E+%l!n!tion : 0IP 'and IB0P) always su ari%es routing infor ation "y aVor networ& nu "ers. This is called classfull routing. 9. 4 E+%l!n!tion : Sho2 ./ %rotocol: This co and will show infor ation on 0IP ti ers including routing update ti er '30sec default)# hold6down ti er 'default =80sec). It also displays the nu "er of seconds due for ne:t update 'this is fraction of update ti er). This co and also gi-es the networ& nu "er for which IP 0IP is ena"led# Bateway# and the default etric. Sho2 ./ route: This co and will display the IP routing ta"le entries. In addition# it displays the Bateway of last resort 'if one is assigned). It also displays the codes used for -arious types of routes. So e of the i portant codes are@ C@ +irectly connected S@ Statically connected I@ IB0P 0@ 0IP

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'3

Sho2 ./ inter&!ce: This co and shows you interface6wise infor ation such as IP address assigned to each interface# whether the interface is up# MTU etc. e4u" ./ R./: +e"ug IP 0IP will turn the 0IP de"ugging /5. This will display a continuous list of routing updates as they are sent and recei-ed. This leads to lot of o-erhead# which is the reason that you use Nunde"ug ip ripN to turn6off de"ugging as soon as you finish with de"ugging. ;. 4 E+%l!n!tion : Nsh int Tinterface\noIN is a -ery useful co the following infor ation@ =. $ardware address !. Status of interface and the line protocol 6 carrier detect "rings up the serial port'which eans that physical layer connections are wor&ing) and &eep ali-e "ring up the line protocol 'which eans that +ata lin& layer protocol is wor&ing). 3. MTU# *4# +,?# rely# and load etrics. and. It displays

9. 2ncapsulation type 'layer !# +ata lin& layer) 6 $+,C is the default. <. !F c !n- e E+%l!n!tion : PPP 'Point6to6Point Protocol) allows authentication such as Password 1uthentication Protocol 'P1P) and Challenge $andsha&e 1uthentication Protocol 'C$1P) and ulti6lin& connections 'allow se-eral separate physical paths to appear to "e one logical path at layer 3) and can "e run o-er asynchronous and synchronous lin&s.

$*.0 : Ans2er ke(s &or O45ecti1e Test 0

1. E+%l!n!tion : The following protocols support auto atic route su at aVor networ& "oundaries. =. 0IP -= !. 0IP -! 3. IB0P32IB0P 5ote that /SP. does not support auto6su ari%ation of routes. ari%ation

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'*

$. 4 E+%l!n!tion : The path cost in /SP. networ& is calculated using "andwidth only. The for ula used is G=0 a8 di-ided "y *andwidthH. .or e:a ple# the cost of a (6&"ps serial lin& is =C8(. The default cost of a =0 "ps 2thernet is =0. '. 4 !n- c E+%l!n!tion : /SP. process identifier is locally significant. Two neigh"oring router interfaces can ha-e sa e or different process ids. It is re7uired to identify a uni7ue instance of /SP. data"ase. 3. ! E+%l!n!tion : The NhelloN pac&ets are sent periodically out of each interface using IP ulticast addresses. The hello inter-al specifies the fre7uency in seconds that a router sends hello<s. This is =0 seconds on ulti access networ&s. *. 4 E+%l!n!tion : 1n /SP. area is a collection of networ&s and routers that has the sa e area identification. /SP. process identifier is locally significant. Two neigh"oring router interfaces can ha-e sa e or different process ids. It is re7uired to identify a uni7ue instance of /SP. data"ase. 0. c E+%l!n!tion : /SP. &eeps up to si: e7ual6cost route entries in the routing ta"le for load "alancing. .urther# /SP. uses +iV&stra algorith to calculate lowest cost route. The algorith adds up the total costs "etween the local router and each destination networ&. The lowest cost route is always preferred when there are ultiple paths to a gi-en destination. 9. 4 E+%l!n!tion : In .ra e 0elay 5*M1 networ&s# if no su"6interfaces are defined# then the routers will not "e a"le to co unicate routing infor ation due to split hori%on rule. Split hori%on is a ethod of pre-enting a routing loop in a networ&. The "asic principle is si ple@ Infor ation a"out the routing for a particular pac&et is ne-er sent "ac& in the direction fro which it was recei-ed. To o-erco e the split hori%on# su"6interfaces can "e configured on 5*M1
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'0

networ&s. 1 su" interface is a logical way of defining an interface. The sa e physical interface can "e split into ultiple logical interfaces# with each su" interface "eing defined as point6to6point. ;. E+%l!n!tion : The co and Nshow ip ospf data"aseN displays the contents of the topological data"ase aintained "y the router. This co and also displays router id and the ospf process id. <. 4 !n- c E+%l!n!tion : The process I+ is the I+ of the /SP. process to which the router interface "elongs. The process I+ is local to the router# and two /SP. neigh"oring routers can ha-e different /SP. process I+s. 'This is not true of 2nhanced Interior Bateway 0outing Protocol G2IB0PH# in which the routers need to "e in the sa e autono ous syste ). Cisco I/S> Software can run ultiple /SP. processes on the sa e router# and the process I+ erely distinguishes one process fro the another. The process I+ should "e a positi-e integer. 10. !F c !n- E+%l!n!tion : The following are the features of /SP. @ 1. .ast Con-ergence $. ,oad *alancing '. ,ow "andwidth utili%ation 3. /pti al path utili%ation *. 1uthenticated routing updates 0. 2:ternal 0outes 11. c !n- E+%l!n!tion : Unli&e 0IP# /SP. can operate within a hierarchy. The largest entity within the hierarchy is the autono ous syste '1S)# which is a collection of networ&s under a co on ad inistration that share a co on routing strategy. /SP. is an intra61S 'interior gateway) routing protocol# although it is capa"le of recei-ing routes fro and sending routes to other 1Ss. 1n 1S can "e di-ided into a nu "er of areas# which are groups of contiguous networ&s and attached hosts. 0outers with ultiple interfaces
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'9

can participate in ultiple areas. These routers# which are called 1rea *order 0outers# aintain separate topological data"ases for each area. 1n /SP. "ac&"one is responsi"le for distri"uting routing infor ation "etween areas.

$*.9 : Ans2er ke(s &or O45ecti1e Test 9

1. c !n- E+%l!n!tion : The su"net as& for the IP su"net =S!.=68.!.3! can "e calculated "y su"tracting the wildcard as& 0.0.0.=( fro !((.!((.!((.!((. '!((.!((.!((.!(( 6 0.0.0.=( ] !((.!((.!((.!90). /nce you &now the su"net as&# and the su"net id# you can find the hosts that are denied "y the access list. Therefore# host address range that is denied "y the access6list =0= is =S!.=68.!.33 6 =S!.=68.!.96. 5ote that the IP address =S!.=68.!.9C is "roadcast address for the su"net. The IP addresses =S!.=68.9S and =S!.=68.!.30 are outside the su"net '=S!.=68.!.3!3!8) denied "y the access6list =0=# and hence "e allowed "y 0T1 through its outgoing port S030. $. 4 E+%l!n!tion : Dil- c!r- #!skin": 4ild card as&ing is used to per it or deny a group of addresses. .or e:a ple# if we ha-e a source address =8(.(9.=3.! and want all the hosts on the last octet to "e considered# we use a wild card as&# =8(.(9.=3.!((. S%eci!l c!ses: $ost =8(.(9.=3.! is sa e as =8(.(9.=3.! with a wild card considers only specified IP. as& of 0.0.0.0#

1ny is e7ui-alent to saying 0.0.0.0 with a wild card as& of !((.!((.!((.!((. This eans none of the "its really atter. 1ll IP addresses need to "e considered for eeting the criteria. '. ! E+%l!n!tion : IP access lists are a se7uential list of per it and deny conditions that apply to IP addresses or upper6layer protocols. 1ccess Control ,ists are used in routers to identify and control traffic.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$';

There are two types of IP access lists@ A. St!n-!r- ./ Access Lists: These ha-e the for at# access6list Gnu "erH Gper it or denyH Gsource\addressH Qeep in ind that@

=. Place standard access lists as near the destination as possi"le and e:tended access lists as close to the source as possi"le. !. 1ccess lists ha-e an i plicit deny at the end of the auto atically. *ecause of this# an access list should ha-e at least one per it state ent in itW otherwise the access list will "loc& all re aining traffic. 3. 1ccess lists applied to interfaces default to out"ound if no direction is specified. B. E+ten-e- ./ Access Lists: IP 2:tended 1ccess lists ha-e the for at# access6list Znu "er[ Zper it or deny[ Zprotocol[ Zsource[ Zdestination[ Zport[ 4ith e:tended IP access lists# we can act on any of the following@ 6 Source address 6 +estination address 6 IP protocol 'TCP# ICMP# U+P# etc.) 6 Port infor ation '444# +5S# .TP# etc.) The per itted nu "ers for so e i portant access6lists are@ =6SS =006=SS 80068SS S006SSS @ IP standard access list @ IP e:tended access list @ IPM standard access list @ IPM e:tended access list

=0006=0SS @ IPM S1P access list ==006==SS @ 2:tended 986"it M1C address access list
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$'<

3. ! !n- c E+%l!n!tion : 1ccess lists are pri arily used for two purposes@ =. Controlling traffic through a router# and !. Controlling ;T? access to a routerKs ;T? ports *. c !n- E+%l!n!tion : The following co sh ip access6list sh access6list =96 The co =96. 0. !F 4 !n- c E+%l!n!tion : The following co access lists@ sh ip interface sh running sh access6lists 9. c E+%l!n!tion : 444 is a layer C protocol. IP doesn<t ha-e port associations# where as TCP has. ;. c E+%l!n!tion : The co and access6list =0 per it =C!.=0.3!.0 0.0.3.!(( is ost appropriate. 5ote that the wild card as& contains 3.!(( which eans that last =0 "its are ignored while applying the access list. 8 "its "elong to the last octet whereas ! "its "elong to third octet. The su"nets co-ered "y this wild card as& are 3!O0 '00)# 3!O= '0=)# 3!O! '=0 )# and 3!O3 '==). <. ! !n- c E+%l!n!tion : 1ccess lists are pri arily used for controlling -ty access and traffic through the networ&. 10. !
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

ands can "e used to -iew access lists@

and sh ip access6list displays all ip access lists including access6list

ands ena"le us to -iew# and

onitor IP

$30

E+%l!n!tion : The as& address 0.0.0.!(( specifies that the first three octets should atch the gi-en IP address 'in this case =S!.=68.=) to per it the ip traffic. !(( in the last octet indicates that the router can ignore the last octet of the IP address "eing filtered.

$*.; : Ans2er ke(s &or O45ecti1e Test ;

1. E+%l!n!tion : Bi-en "elow are the four i portant for s of 51T '5etwor& 1ddress Translation) St!tic NAT: It is a one6to6one and a registered IP address. apping "etween an unregistered IP address

(n!#ic NAT: Usually# +yna ic 51T is i ple ented# where a pool of pu"lic IP addresses is shared "y an entire pri-ate IP su"net. 4hen a pri-ate host initiates a connection# a pu"lic IP address is selected. The apping of the co puterKs non6routa"le IP address atched to the selected IP address is stored in the 51T Ta"le. 1s long as the outgoing connection is aintained# the pri-ate host can "e reached "y inco ing pac&ets sent to the specified pu"lic address. 4hen the "inding e:pires# the address is returned to the pool for reuse. O1erlo!-in": 1 -ariation of +yna ic 51T# also &nown as 5etwor& 1ddress Port Translation '51PT) aps ultiple unregistered IP addresses to a single registered IP address "y ultiple:ing strea s differentiated "y the TCP3U+P port nu "er. O1erl!%%in": 4hen /-erlapping is e ployed# the IP addresses used on the internal networ& are registered IP addresses utili%ed on another networ&. To a-oid conflict# a 51T Ta"le is "uilt to translate these redundant internal addresses to a uni7ue IP address. ;ice -ersa# when sending pac&ets into the pri-ate networ&# the registered addresses ust "e translated to an address uni7ue in the networ&. $. 4 E+%l!n!tion : I portant 5etwor& 1ddress Translation '51T) ter s of inside local# inside glo"al# outside local# and outside glo"al are e:plained "elow@ !. .nsi-e loc!l: 1 pri-ate IP address assigned to a host on the inside networ&. 4. .nsi-e "lo4!l: 1 pu"lic IP address that represents one or IP addresses to the outside world. ore inside local

c. Outsi-e loc!l: The IP address of an outside host as it appears to the inside

Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$31

networ&. 5ot necessarily a legiti ate address# it is allocated fro space routa"le on the inside.

an address

-. Outsi-e "lo4!l: The IP address assigned to a host on the outside networ&. The address is allocated fro a glo"ally routa"le address or networ& space.

$*.< : Ans2er =e(s &or O45ecti1e Test <

1. E+%l!n!tion: The pri ary purpose of the +$CP ser-er is to pro-ide IP configuration para eters such as the IP address# default gateway# do ain na e# and +5S infor ation to +$CP clients 'hosts). $. ! E+%l!n!tion: +$CP stands for +yna ic $ost Configuration Protocol. +$CP Ser-er assigns an IP address and other configuration info to a client for a li ited period of ti e '&nown as lease)# this address is then sa-ed in a data"ase. 4hen the +$CP Ser-er goes down# that client can still use the allocated IP address for the period of lease duration. '. c E+%l!n!tion: 4hen the +$CP client "oots up for the first ti e# it sends a +$CP+ISC/;20 essage on its local physical su"net to disco-er a-aila"le +$CP ser-ers. This is a ,ayer ! and ,ayer 3 "roadcast essage. In turn# the +$CP ser-er responds with +$CP/..20# a ,ayer ! unicast essage. 5e:t# the +$CP client sends +$CP02PU2ST "roadcast essage. The +$CP ser-er responds with +$CP1CQ unicast essage# pro-iding all the re7uired host configuration infor ation. 3. 4 E+%l!n!tion: 4hen Client 3 re7uests +$CP ser-ice 'IP address# su"net as&# etc.) fro +$CP ser-er# it sends a +$CP+ISC/;20 "roadcast essage. *ut 03 router# "y default# will not forward "roadcast pac&et and will drop it. The router only forwards U+P "roadcast essage fro a client if IP $elper address configured on the router. *y using the ip helper6address co and# a router can "e configured to accept a "roadcast re7uest for a U+P ser-ice and then forward it as a unicast to a specific IP address. *. ! !n- c E+%l!n!tion: +$CP uses U+P as its transport protocol. +$CP essages fro a client to a ser-er are sent to the +$CP ser-er port 'U+P
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3$

port 6C)# and +$CP essages fro a ser-er to a client are sent to the +$CP client port 'U+P port 68). The client "roadcasts a +$CP+ISC/;20 essage on its local physical su"net. The +$CP+ISC/;20 essage ay include options that suggest -alues for the networ& address and lease duration. *//TP relay agents ay pass the essage on to +$CP ser-ers not on the sa e physical su"net. 2ach ser-er ay respond with a +$CP/..20 essage that includes an a-aila"le networ& address and other configuration para eters in +$CP options. The ser-er unicasts the +$CP/..20 essage to the client 'using the +$CP3*//TP relay agent if configured).

$*.10 : Ans2er ke(s &or O45ecti1e Test 10

1. E+%l!n!tion : The following are true a"out .ra e 0elay@ =. .ra e 0elay is purely# a ,ayer ! standard. !. .ra e 0elay +,CIs ha-e local significance. 3. Cisco supports three types of ,MIs ',in& Manage ent Interface)@ cisco# ansi# and 7S33a 9. Cisco supports two types of .ra e 0elay encapsulation@ cisco# and ietf.4hen you are connecting a Cisco router with a non6Cisco router# use ietf as the encapsulation ethod. $. 4 E+%l!n!tion : 4hen the su"6interfaces on a serial interface are to "e configured for .ra e 0elay# each su" interface needs to "e assigned indi-idual +,CI. The following co and assigns a dlci of =00 to any su"6interface @

R)con&i"8i&,H &r!#e8rel!( inter&!ce8-lci 100 5ote that prior to issuing the a"o-e co andW issue the following co get into proper su" interface configuration ode@ R)con&i",H inter&!ce seri!l 0.1 %oint8to8%oint '. E+%l!n!tion : The correct co and synta: is@ and to

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3'

0outer='config6if)J fra e6relay G"roadcastH Gietf X ciscoH

ap TprotocolI Tprotocol6addressI TdlciI

$ere# the protocol6address specifies the destination networ& protocol address. In this e:a ple# the configuration co higher layer protocol is@ and that statically aps the +,CI with

Router1)con&i"8i&,H &r!#e8rel!( #!% i% 1<$.10;.'0.< $00 3. E+%l!n!tion : .ra e60elay support point6point and ultipoint connection types. In point6to6point connection type# a single su" interface esta"lishes a P;C connection to another physical interface or su"6interface. In ultipoint connection type# a single su"6interface is used to esta"lish ultiple P;C connections to se-eral physical interfaces or su"6interfaces. In ultipoint .ra e60elay networ&# split hori%on rule is applica"le to "roadcast traffic. 1nother i portant thing to note when configuring .ra e60elay using su"6 interfaces@ The physical interface on which su"6interfaces are configured would not "e assigned any IP address. 2-en if one is assigned# it should "e re o-ed prior to configuring .ra e60elay. 5ote that if an IP address is assigned to a physical interface# the su"6interfaces defined within the physical interface will not recei-e any fra es. *. 4 E+%l!n!tion : The co and show fra e6relay l i displays the ,MI status# where as the co and show fra e6relay p-c displays the fra e6relay p-c status. Show interface displays the physical interface status. 0. c E+%l!n!tion : .ra e 0elay supports two types of -irtual circuits ';Cs)@ 1. /er#!nent Virtu!l Circuits )/VCs, 6 These are per anently esta"lished connection that are used for fre7uent and consistent data transfers "etween +T2s across a .ra e 0elay cloud. $. S2itche- Virtu!l Circuits )SVCs, 6 These are te porary connections used in situations re7uiring only occassional data transfers "etween +T2s across .ra e 0elay cloud. The ter s NCall SetupN# N+ata TransferN# NIdleN# and NCall Ter inationN are associated with S;Cs. .ra e 0elay S;Cs are not widely supported "y anufacturers. 9. ! !n- c
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$33

E+%l!n!tion : The co and show ip route displays the contents of the ip routing ta"le. The co and show fra e6relay ap displays the fra e6relay apping infor ation. The co ands show fra e6relay detail and show ap fra e6relay are incorrect. ;. 4 !n- c E+%l!n!tion : Bi-en "elow are salient features of .ra e 0elay +,CIs@ =. +,CIs '+ata ,in& Connection Identifier) ha-e only local significance# It eans# the end de-ices o-er .0 networ& can ha-e different +,CI nu "ers. !. +,CI nu "er is pro-ided "y the .0 ser-ice pro-ider. +,CI nu "er is apped to ,ayer 3 protocol address using <fra e6relay ap< state ent. 3. +,CI nu "ers <. ! !n- E+%l!n!tion : The co and fra e6relay ap ip !!0.!!!.!6.8 !0! "roadcast aps the distant IP !!0.!!!.!6.8 to the local +,CI !0!. 4hen the N"roadcastN &eyword is used# it ena"les .ra e 0elay networ& to forward "roadcast pac&ets# such as /SP. "roadcasts# to o-e across the .0 networ&. 10. E+%l!n!tion : *asically# .ra e 0elay# M.!(# and 1synchronous Transfer Mode '1TM)# etc. are 5on6*roadcast Multi61ccess '5*M1) networ&s. 5*M1 networ&s allow for ulti6access# "ut do not "roadcast support "roadcasting. 11. E+%l!n!tion : The ter dyna ic indicates that the +,CI nu "er and the re ote router IP address 1<$.10;.$.$ are learned using In-erse 10P. In-erse 10P is a techni7ue "y which dyna ic appings are constructed in a networ&# allowing a de-ice such as a router to locate the logical networ& address and associate it with a per anent -irtual circuit 'P;C). ust "e uni7ue on a router.

$*.11 : Ans2er ke(s &or O45ecti1e Test 11

1. 4 E+%l!n!tion : IP-6 addresses are =!8 "its in length that correspond to =6
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3*

"ytes or octets. $. c E+%l!n!tion : The =!8 "it IP-6 address correspond to 8 sections separated "y colons with 9 he:adeci al digits in each section. '. c E+%l!n!tion : IP-6 address for at is eight groups of he:adeci als separated "y colons. 1nd the for at is 986"it glo"al prefi:# =66"it su"net and 696"it interface identifier. 3. !F 4 !n- E+%l!n!tion : c and e are incorrect. *ecause @@ can "e used only once in a IP-6 address and a IP-6 address consists of =!8 "its# na ely eight groups of =6 "its. *. E+%l!n!tion : IP-6 addresses can "e represented in co pressed for at "y two steps i. Continous groups of %ero<s can "e represented as @@ "ut only once allowed ii. ,eading %eros in any group 0. 4 !n- E+%l!n!tion : The loop"ac& address in IP-6 is represented as @@=3=!8 or as 0@0@0@0@0@0@0@= and is used to refer to the local host. In IP-9 the loop"ac& address is =!C.0.0.= 9. ! !n- c E+%l!n!tion : The unspecified address in IP-6 is nothing "ut an IP-6 address with all %eroes in it. It is represented as @@ or 0@0@0@0@0@0@0@0. The unspecified address should ne-er "e assigned to any interface ;. c !n- e E+%l!n!tion : IP-6 supports the co unication types na ely Unicast# Multicast# 1nycast. *roadcast which is supported in IP-9 is not supported in IP-6# instead ulticasts are used. <. c ay "e re o-ed for "re-ity.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$30

E+%l!n!tion : Stateless autoconfiguration is an i portant feature offered "y IP-6 protocol. It auto ates the IP address configuration of indi-idual networ& de-ices without re7uiring any inter ediate IP support in the for of +yna ic $ost Configuration Protocol '+$CP) ser-er to do the sa e. 10. ! E+%l!n!tion : In IP-6# anycast is co unication "etween a single sender and the nearest of se-eral recei-ers in a group. The ter e:ists in contradiction to ulticast# co unication "etween a single sender and ultiple recei-ers# and unicast co unication "etween a single sender and a single recei-er in a networ&. 11. c E+%l!n!tion : The prefi: for IP-6 lin&6local address is .280@@3=0. This address prefi: signifies that the address is -alid only in the local physical lin&. 1$. 4 !n- c E+%l!n!tion : *elow is the list of co ,oop"ac& address 6 @@= ,in&6local address 8 .280@@3=0 Site6local address 6 .2C0@@3=0 Blo"al address 6 !000@@33 Multicast address 6 ..00@@38 on &inds of IP-6 addresses@

$*.1$ : Ans2er ke(s &or O45ecti1e Test 1$

1. c !n- E+%l!n!tion: /SP.-3 uses ulticast traffic to send its updates and ac&nowledge ents with the address ..0!@@( for /SP. routers and ..0!@@6 for /SP. designated routers. These addresses are the replace ents for !!9.0.0.( and !!9.0.0.6 respecti-ely. $. 4 E+%l!n!tion: 0IPng uses ulticast to send its updates and it uses transport address ..0!@@S for the purpose.
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$39

'. ! E+%l!n!tion: In 2IB0P-6 # hello pac&ets and updates are sent using ulticast trans ission and it uses ..0!@@1 for the purpose. 3. 4 E+%l!n!tion: To ena"le 0IPng for IP-6# configure it right on the interface where you want 0IP to run with the ip-6 router rip Tprocess6 na eI co and. *. 4F c !n- E+%l!n!tion: Unli&e 0IPng and /SP.-3# 2IB0P-6 is configured fro "oth glo"al configuration ode and interface configuration ode and also no shutdown co and is to "e issued to ena"le the co and. 0. E+%l!n!tion: To ena"le /SP.-3# the co Tprocess6idI area Tarea6idI 9. ! E+%l!n!tion: /SP.-3 uses ulticast traffic to send its updates and ac&nowledge ents with the address ..0!@@( for /SP. routers. and to "e used is ospf

$*.1' : Ans2er ke(s &or O45ecti1e Test 1'

1. 4 E+%l!n!tion : Catalyst S4! will "eco e the pri ary 0oot "ecause of its lower *ridge Priority -alue. '*ridge Priority has a greater weight on the election than a lower M1C address.) $. c E+%l!n!tion : 2-ery "ridge on the networ& would ha-e one port on it to reach the root "ridge called root port. '. ! E+%l!n!tion : In the gi-en e:a ple# on seg ent S4=6S4! and S4=6S43# the port with the lowest path costs are the one connected to root "ridge 'path cost N0N) while the port connected to S4! on seg ent S4=6S4! has a path cost of =S. Sa e case with S43 also on seg ent S4=6S43. Therefore ports =
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3;

and ! on S4= are the designated ports. 3. 4 E+%l!n!tion : In the gi-en e:a ple# on seg ent S4!6S43# the path cost on the seg ent is sa e on "oth sides i.e# =S# therefore lowest Switch I+ port will "e considered as designated port# which is port ! on S4! in this case. 1nd the other port on the seg ent i.e# port ! on S43 is neither a root port nor a designated port and therefore it is called as a 5on +esignated Port. *. c E+%l!n!tion : 1 port that is neither a root port or designated port will always "e in "loc&ing state.

$*.13 : Ans2er ke(s &or O45ecti1e Test 13

1. 4 E+%l!n!tion : Switches wor& at layer ! of IS/ odel# which is +ata ,in& ,ayer. 1 switch loo&s at the destination M1C address "efore forwarding the fra e. $. ! E+%l!n!tion : .or accessing a switch o-er IP networ&# you need to do so e ini u configuration tas&s using Console port on the switch. In the gi-en 7uestion# the default gateway needs to "e configured on the switch for accessing the anage ent interface ';,15=) fro $ost1. '. ! E+%l!n!tion : The syste ,2+ shows whether the syste is recei-ing power and functioning properly. LE O&&: Syste is not powered up. LE color is >reen: Syste is operating nor ally. LE color is A#4er: Syste is recei-ing power "ut is not functioning properly. The a "er color on a Cisco!S(0 series switch indicates that the syste is alfunctioning. 3. c E+%l!n!tion : 1 ;,15 is a group of de-ices on one or ore logically seg ented ,15s. 1ll de-ices wor&ing on a ;,15 will ha-e sa e "roadcast do ain. ,i&e routers# switches ',ayer !) ha-e the a"ility to pro-ide do ain "roadcast seg entation called a ;,15. Using ;,15 technology# you can
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$3<

group switch ports and their connected users into logically defined co unities of interest. 1 ;,15 operating on a Catalyst switch li its trans ission of unicast# ulticast# and "roadcast traffic to only the other ports "elonging to that ;,15# there"y controlling "roadcasts. The "enefits of ;,15S include@ =. 2asy 1d inistration resulting in reduced ad inistration costs# !. Increased Security due to "roadcast control# if you are using si ple hu"# you can o"ser-e traffic corresponding to any node "y si ply inserting a 5etwor& analy%er. 3. Brouping "ased on functional re7uire ents irrespecti-e of physical location of nodes# 9. Si plify o-es# adds# changes. ore efficiently.

(. +istri"ution of traffic there"y using the networ& "andwidth *. c

E+%l!n!tion : The co and Eip default6gateway =S!.=68.=.=F in glo"al configuration ode can "e used to set the default gateway on a Cisco switch3router. 0. 4 !n- E+%l!n!tion : *asically# each ;,15 should "e on its own su"net3networ&. 1 router is re7uired to route fra es fro one ;,15 to another. In the gi-en networ& diagra # the hosts on ;,15=0 and ;,15!0 are configured with the sa e default gateway. .or $ost1# the IP and default gateway address are correct# whereas for $ost* "oth are incorrect. ?ou need to configure IP address and gateway on $ost* properly for the ;,15s to wor& as e:pected. 9. E+%l!n!tion:To switch traffic "etween ;,15s# you need a layer63 de-ice. This de-ice is typically a router# though a layer63 switch ay also wor& as router. If the ;,15s are not configured with a router in "etween to switch traffic# it is not possi"le to co unicate "etween different ;,15s.

$*.1* : Ans2er ke(s &or Fin!l E+!#

1. ! E+%l!n!tion : Telnet is used for ter inal e ulation that runs progra s
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*0

re otely. .TP is used to transfer files. $. 4 E+%l!n!tion : ?ou need to enter glo"al configuration na e of the router. The three different Mode =. User 2M2C ode ... !. Pri-ileged 2M2C ode ... 3. Blo"al Configuration ode ... odes are@ Pro pt 0outerI 0outerJ 0outer'Config)J ode to change the

Blo"al configuration ode allows you to perfor tas&s that affect the entire router# such as na ing the router# configuration of "anner essages# ena"ling routed protocols# and generally anything that affects the operation of the entire router. 4hen you first switch on a router# you enter Setup ode. Setup ode is different fro configuration ode in that setup ode appears when there is no configuration file present. Upon entering setup ode# you can supply so e "asic configuration para eters to Cisco router. '. c E+%l!n!tion : In nor al course# a +T2 de-ice is e:pected to co unicate with a +C2 de-ice. In such e-ent# the connections "etween the +C2 and +T2 de-ices is straight. $owe-er# if the co unication need to happen "etween two +T2s or two +C2s# the signals need to "e rolled. This is achie-ed "y rolling the pins in the ca"le or in the +*6!( adapter. Typically# a +T2 to +T2 co unication can "e achie-ed "y@

=. *y connecting +T2 to a rolled 0869( ca"le to a straight +*6!( adapter to +T2# /0 !. *y connecting a straight 0869( ca"le to a rolled +*6!( adapter to +T2. Si ilarly# a +T2 to +C2 co unication can "e achie-ed "y@

=. Connecting a +T2 to a straight 0869( ca"le to a straight +*6!( adapter to +C2# /0 !. Connecting a rolled 0869( ca"le to a rolled +*6!( adapter to +C2.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*1

5ote that rolling the signals twice is sa e as using straight through ca"les or adapters without any rolling at all. 3. 4 E+%l!n!tion : The Cisco router can "e configured fro any locations. a

1. Console %ort: +uring the initial installation# you configure the router fro console ter inal connected to the NConsole portN of the router. $. Virtu!l Ter#in!ls )1t(,: 1 -irtual ter inal '-ty) is typically accessed through Telnet. 1 router can "e accessed through -ty after the initial installation in the networ&. There are fi-e -irtual ter inals# na ely# -ty0#-ty=#-ty!#-ty3#-ty9. '. Au+ili!r( /ort: ?ou can configure a router through au:iliary port. Typically# a ode is used to configure the ode through au: port. 3. TFT/ Ser1er: Configuration infor ation can "e downloaded fro ser-er o-er the networ&. a T.TP

*. NMS )Net2ork M!n!"e#ent St!tion,: ?ou can also anage router configuration through 5MS such as Cisco4or&s or $P /pen;iew. *. 4 E+%l!n!tion : To change the ena"le password# you use Nena"le password passwordN. To change the ena"le secret# you use Nena"le secret passwordN. 0. c E+%l!n!tion : The au:iliary password is used to set the password for the au:iliary port. 1ssu ing that you are at J pro pt# the se7uence of co RouterAHcon&i" t RouterA)con&i",Hline !u+ 0 RouterA)con&i"8line,Hlo"in RouterA)con&i"8line,H%!ss2or- R%!ss2or-G 5ow you are set with a password TpasswordI. Type NTctrlIL N to ta&e you to the J pro pt or Ne:itN to go "ac& to glo"al configuration N0outer1'config)JN pro pt. Si ilar procedure is applica"le for setting -ty and console passwords as well. ands are@

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*$

9. c E+%l!n!tion : The co and Nshow C+P neigh"orsN displays all the neigh"oring de-ices connected and their capa"ility. Se-eral capa"ility codes are@ 0 6 0outer T 6 Trans *ridge * 6 Source 0oute *ridge S _ Switch This co $ _ $ost I _ IBMP r _ repeater

and displays the following@

=. 5eigh"or +e-ice I+ @ The na e of the neigh"or de-iceW !. ,ocal Interface @ The interface to which this neigh"or is heard 3. Capa"ility@ Capa"ility of this neigh"oring de-ice 6 0 for router# S for switch# $ for $ost etc. 9. Platfor @ 4hich type of de-ice the neigh"or is. '!(00 router or anything else) (. Port I+@ The interface of the re ote neigh"or you recei-e C+P infor ation 6. $oldti e@ +ecre ental hold ti e in seconds ;. E+%l!n!tion : C+P# short for Cisco +isco-ery Protocol runs o-er ,ayer ! 'the data lin& layer) on all Cisco routers# "ridges# access ser-ers# and switches. C+P allows networ& anage ent applications to disco-er Cisco de-ices that are neigh"ors of already &nown de-ices. C+P runs on all ,15 and 415 edia that support Su"5etwor& 1ccess Protocol 'S51P). <. c E+%l!n!tion : Switches forward pac&ets "ased on the physical address 'such as M1C address) whereas# routers forward pac&ets "ased on logical address 'such as IP address). 1 fra eKs M1C address doesnKt change when "eing forwarded through a switch. 10. c E+%l!n!tion : This is a tric&y 7uestion. ?ou need to arri-e at the answer "y the process of eli inating incorrect answers. If you loo& at the tracert co and issued on $ost 1# the first destination itself is not reacha"le. Therefore# it is -ery li&ely that the default gateway on $ost 1 is not configured properly.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*'

11. c E+%l!n!tion : *y default# Cisco routers support ( si ultaneous telnet sessions. This nu "er can "e configured using I/S co ands. 1$. c E+%l!n!tion : The synta: for ping co and is @ Nping Tdestination\addressIN and@

The following are possi"le responses to NpingN co

Ping 0esponse U C b . A c

2:planation +estination Unreacha"le Congestion e:perienced Successful receipt of echo reply Ti e out Pac&et type un&nown Pac&et ti e to li-e e:ceeded

Ping sends 2CMP echo. Ping can "e used with al ost any type of 5etwor& layer protocols including IPM# IP# ;I52S# 1ppleTal& etc. 1'. 4 E+%l!n!tion : TCP3IP is the protocol used when you are Telnetting to a re ote host. $TTP is used for accessing the 4orld 4ide 4e" ser-ices. 13. ! 4 c - )!ll o& the#, E+%l!n!tion : 1 static route is one that is hard coded into the routing ta"les. $ere# the destination networ&3host# and the ne:t hop infor ation are entered "y hand. 1 static route on a Cisco router is ost co only defined "y using the co and@ Router)con&i",H i% route A.B.C. )-estin!tion net2ork?host, A.B.C. )su4net #!sk, A.B.C. )ne+t ho%, ?ou can also use the port identifier such as e0# s= etc. to define the ne:t hop address. /ptionally# the Ndistance etricN can "e added at the end of the co change the default weight. 1*. True E+%l!n!tion : +efault route is used when there is no other &nown route to a
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

and to

$*3

gi-en IP pac&etKs destination. +efault route is also &nown as gateway of last resort. 10. ! !n- E+%l!n!tion : The correct synta: for setting default route is Router)con&i",Hi% route 0.0.0.0 0.0.0.0 1<$.1*9.1.1 ?ou can also set default route "y specifying the interface as "elow@ Router)con&i",Hi% route 0.0.0.0 0.0.0.0 s0 19. 4 E+%l!n!tion : The correct synta: is ip route 0.0.0.0 1;. E+%l!n!tion : To ena"le the Cisco I/S to forward pac&ets destined for o"scure su"nets of directly connected networ&s onto the "est route# you use Nip classlessN co and. 1<. 4 E+%l!n!tion : The interface is wor&ing properly at physical layer. There is pro"le at the protocol le-el. 1lso# if the ad inistrator has disa"led the interface# a essage saying Nthe interface is ad inistrati-ely down will "e displayedN. $0. 4 E+%l!n!tion : $ere# you are a"le to access the co puters on the local su"net. $owe-er# you are not a"le to access the co puters on re ote su"nets. Since you are not a"le to access any of the co puters on the re ote su"net# you need to ping the default gateway first. The default gateway ight ha-e "een configured i properly on your co puter. $1. ! E+%l!n!tion : IP Pac&ets are transported fro source networ& to the destination networ& "y what is &nown as routing. $op6"y6hop routing odel is used "y the Internet for deli-ery of pac&ets. 1t each hop# the destination IP address is e:a ined# the "est ne:t hop is deter ined "y the routing protocol 'such as 0IP# /SP. or *BP) and the pac&et is forwarded "y one ore hop through this route. The sa e process ta&es place at the ne:t hop. +uring this process# the logical addresses re ain sa e. In an IP networ&# the logical
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

0.0.0.0 Tne:t\hop\addressI.

$**

addresses are IP addresses. The hardware interface addresses# such as M1C address changes with each hop. $$. ! E+%l!n!tion : 0=# 0!# 03 for 0IP routing networ&. The router 0= interfaces with the ISP router# and hence ost appropriate to "e configured with a default route. $'. E+%l!n!tion : There is no route to the networ& =S!.!09.=.69 3!8 fro 0outer 1. ?ou can configure a static route or a dyna ic route. 1n e:a ple of configuring static route is gi-en "elow@ 0outer1'config)Jip route =S!.!09.=.69 !((.!((.!((.!90 =S!.!09.=.! $3. 4 E+%l!n!tion : In Cisco routers# the interfaces are Ead inistrati-ely downF "y default. ?ou need to ena"le an interface to use it. $*. 4 E+%l!n!tion : The default gateway for $ost1 is =S!.=(C.!.=# which is in the sa e su"net as that of $ost1. The switch IP address '=S!.=68.!.=0) refers to anage ent interface# and it has nothing to do with routing IP pac&ets. The other choice =S!.=68.=.= is in a different su"net# and canKt "e used a default gateway for $ost1. $0. 4 !n- c E+%l!n!tion : IP 0IP "ased networ&s send the co plete routing ta"le during update. The default update inter-al is 30 seconds. $9. E+%l!n!tion : The co is@ and synta: for configuring 0IP -ersion= on a router

0outer rip 5etwor& Tnetwor& nu "erI 5ote that the networ& nu "ers are specified as either class 1# or Class * or Class CW and contain no su"netting infor ation. E+!#%le: 0outer rip
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*0

5etwor& =(6.=9.0.0 5etwor& =S6.=!.=!.0 The other choices are wrong# as they contain su"netting infor ation or su"net as&. $;. c E+%l!n!tion : +istance -ector protocol depends only on $op count to deter ine the nearest ne:t hop for forwarding a pac&et. /ne o"-ious disad-antage is that# if you ha-e a destination connected through two hops -ia T= lines# and if the sa e destination is also connected through a single hop through a 69Q*PS line# 0IP assu es that the lin& through 69Q*PS is the "est pathb $<. c E+%l!n!tion : The 415 lin& is configured to use +T23+C2. Though# in actual practice# a CSU3+SU ta&es care of cloc&ing# in la" en-iron ent# you so eti es test the e7uip ent without CSU3+SU. In such an e-ent# you need to configure one of the routers as +C2# and the other as +T2. The ca"le deter ines the +T23+C2 co "ination. The router with +C2 ca"le needs to "e configured with cloc& rate for proper functioning of the 415 lin&. Since the co and Eshow controllersF output shows router1 as the +T2# the other router ust "e configured as +C2. '0. 4 E+%l!n!tion : 0IP sends its co plete routing ta"le out to all acti-e interfaces at regular inter-als 'e-ery 30 seconds "y default) and when the networ& topology changes. 0IP routers aintain only the "est route 'the route with the lowest etric -alue) to a destination. 1fter updating its routing ta"le# the router i ediately "egins trans itting routing updates to infor neigh"ors of the change. These updates are sent independently of the regularly scheduled updates that 0IP routers send. In 0IP# update pac&ets are sent to the i ediate neigh"ors. In this case# 0= and 09 are the i ediate neigh"ors of 0!. In turn# 0= and 09 update 03 a"out the sa e. '1. E+%l!n!tion : 2IB0P uses *andwidth# MTU# 0elia"ility# +elay# and ,oad for co puting routing etrics. B!n-2i-th: This represents the a:i u throughput of a lin&.

MTU )M!+i#u# Tr!ns#ission Unit,: This is the a:i u essage length that is accepta"le to all lin&s on the path. The larger MTU eans faster
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*9

trans ission of pac&ets. Reli!4ilit(: This is a easure ent of relia"ility of a networ& lin&. It is assigned "y the ad inistrator or can "e calculated "y using protocol statistics. el!(: This is affected "y the "and width and 7ueuing delay. Lo!-: ,oad is "ased on '$. 4 !n- c E+%l!n!tion : IB0P# and /SP. use 1utono ous Syste '1S) nu "ers. 1n IB0P 1S is a co ple: networ& that has di-erse "andwidth and delay characteristics. ''. !F 4 !n- c E+%l!n!tion : The following are 2IB0P@ =. *y default# 2IB0P su 'classful "oundaries) ain features of route su ari%ation in any things# CPU usage# pac&ets processed per sec.

ari%es routes at the

aVor networ& "oundaries

!. To ena"le su ari%ation at any le-el other than aVor networ& "oundary# you need to disa"le auto su ari%ation using the co and@ N5o auto6 su aryN 3. The following co "oundary@ NIp su and ena"les su ari%ation at an ar"itrary networ&

ary6address Tas6nu "erI Taddress6 as&IN as& of the

9. 5ote that you need to specify the IP address and routing su ary route. 5o need to specify the etrics. '3. c E+%l!n!tion : 2IB0P uses '*. c

ulticasts to send 7ueries to neigh"or routers.

E+%l!n!tion : The show fra e6relay ap pri-ileged 2M2C ode co and shows the contents of the ne:t hop protocol address to +,CI apping ta"le on the router. .or 0outerC# the fra e6relay dlci 30= aps to itself '=C!.=6.=.()# and therefore needs to "e corrected to atch the re7uired ne:t hop IP address. '0. Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$*;

E+%l!n!tion : The following are true a"out Multipoint# and point6to6point .ra e60elay configuration at su"6interfaces@ =. In ultipoint# all interfaces use sa e su"net# whereas# in point6to6point each pair re7uires its own su"net. !. 5o IP address is defined at the physical interface# if su"6interfaces are used for fra e6relay configuration. 3. Point6to6point su"6interfaces act as point6to6point leased lines. 9. ?ou ust specify either ultipoint or point6to6point when configuring the fra e6relay interface. There is no default configuration assu ed. (. Point6to6point configuration is good for star and partial where as ultipoint is suita"le for full esh topologies. '9. 4 E+%l!n!tion : .ra e 0elay offers 5*M1 '5on *roadcast Multi 1ccess) connecti-ity to -arious destinations. There ight "e se-eral P;Cs residing on one serial interface. 1 result of this would "e# no "roadcasts are forwarded a ong these P;Cs due to i ple entation of split hori%on rule Split hori%on rule pre-ents a route fro "eing ad-ertised onto the sa e interface 'through which the router was learned). /ne way to allow "roadcasts to propagate a ong these P;Cs is to disa"le split hori%on. *ut# this ay again result in routing loops. The reco ended solution to this pro"le is su"6interfaces. Su"6interfaces are logical su"di-isions of a physical interface. 0outing updates recei-ed on one su" interface can "e sent to another su" interface. This ena"les the .0 networ& ad inistrator to i ple ent the split hori%on# and at the sa e ti e use ultiple P;Cs on one physical interface. ';. c E+%l!n!tion : The default ad inistrati-e distances are as "elow@ +irectly connected @ 0 Static 0oute @ = 2IB0P Su ary @ ( 2IB0P @ S0 IB0P @ =00 /SP. @ ==0 0IP @ =!0 Unreacha"le @ !(( It is i portant to re e "er the default ad inistrati-e distances for protocols gi-en a"o-e "ecause so e 7uestions on routing decisions ay re7uire this
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

esh topologies#

$*<

&nowledge. '<. ! F 4F cF E+%l!n!tion : /SP. is a lin& state technology that uses +iV&stra algorith to co pute routing infor ation. It has the following ad-antages o-er +istance ;ector protocols such as 0IP@ 1. F!ster con1er"ence: /SP. networ& con-erges faster "ecause routing changes are flooded i ediately and co puter in parallel. $. Su%%ort &or VLSM: /SP. supports ;,SM. $owe-er# please note that 0IP -ersion! also supports ;,SM. '. Net2ork Re!ch!4ilit(: 0IP networ&s are li ited to =( hops. Therefore# networ&s with ore than =( hops can not "e reached "y 0IP "y nor al eans. /n the other hand# /SP. has practically no reacha"ility li itation. 3. Metric: 0IP uses only hop count for a&ing routing decisions. This ay lead to se-ere pro"le s in so e cases# for e:a ple# that a route is nearer "ut is -ery slow co pared to another route with plenty of "andwidth a-aila"le. /SP. uses NcostN etric to choose "est path. Cisco uses N"andwidthN as etric to choose "est route. *. E&&icienc(: 0IP uses routing updates e-ery 30 seconds. /SP. ulticasts lin&6state updates and sends the updates only when there is a change in the networ&. 30. c E+%l!n!tion : /SP. deter ines the router I+ using the following criteria@ =. Use the address configured "y the ospf router6id co and

!. Use the highest nu "ered IP address of a loop"ac& interface 3. Use the highest IP address of any physical interface 9. If no interface e:ists# set the router6I+ to 0.0.0.0 If no /SP. router I+ is e:plicitly configured# /SP. co putes the router6I+ "ased on the ite s !# 3# and 9 and restarts /SP. 'if the process is ena"led and router6I+ has changed) 31. E+%l!n!tion : 1t S1 router# we find a deleted status in the ap state ent to +, router. $owe-er# the ap state ent to 5? indicates an acti-e status. Therefore we can deduce the ap state ent for the P;C fro S1 to +, is
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$00

incorrect. Incorrect +,CI assign ents that are configured nor ally shown up as NdeletedN in the fra e relay aps. 3$. E+%l!n!tion : The show controller co and displays the infor ation a"out the physical interface itself and the type of serial ca"le plugged into a serial port. CSU3+SUs# or Channel Ser-ice Units and +ata Ser-ice Units# are often used in the real world to de ar& the +T2 'router) e7uip ent and the +C2 'carrier) e7uip ent. . In this case# it should "e a +T2 ca"le that plugs into the Bateway 0outer serial interface. 3'. c E+%l!n!tion :The proper co ands re7uired to connect to a router using telnet is -ia -ty. Console access is intended for direct connection. Therefore# the appropriate co ands are@ R$)con&i",Hline -ty 0 9 R$)con&i"8line,Hlogin R$)con&i"8line,Hpassword cisco 33. 4 !n- c E+%l!n!tion : Two i portant steps in i ple enting an access list are@ =. Create an access list using access6list co and

!. 1pply the access list on an interface using ip access6group co and. 3*. c E+%l!n!tion : The switch learns the M1C address as it recei-es the fra e on its interface .a03= and i ediately adds it to the switching ta"le. It then sends out the fra e on all other interfaces 'other than the interface on which the fra e was recei-ed). Since the switch is Vust powered on# the switch needs to "uild the switching ta"le. /nce all the entries are a-aila"le# it loo&s up the ta"le and forwards the fra e only to the intended host. 30. ! !n- E+%l!n!tion : ICMPs are used "y routers# inter ediary de-ices# or hosts to co unicate updates or error infor ation to other routers# inter ediary de-ices# or hosts. 4hen a pac&et is undeli-era"le# a +estination Unreacha"le# ICMP is generated. Source Puench essages are sent when the destination is una"le to process traffic as fast as the source is sending it. The Source Puench ICMP tells the source to cut
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$01

"ac& the rate at which it is sending data. 39. E+%l!n!tion: Router)con&i",Hc-% run 2na"les C+P glo"ally. Router)con&i",Hno c-% run +isa"les C+P glo"ally. Router)con&i"8i&,Hc- % en!4le 2na"les C+P on the port. Router)con&i"8i&,Hno c-% en!4le +isa"les C+P on the port. This e:a ple "elow shows how to ena"le C+P on .ast 2thernet port 03=@ Router)con&i",Hinter&!ce &!stethernet 0?1 Router)con&i"8i&,Hc-% en!4le 3;. ! E+%l!n!tion : 5ote that the 1C,s use wild card as& rather than su"net as&. 1 wild card as& of# say 0000==== denotes that the last 3 "its are EdonKt careF "its. In the gi-en 7uestion# all hosts on su"net =S!.=68.=.=!83!8 needs to "e "loc&ed for telnet. $ence# the wild card as& "eco es 0.0.0.=( '=( stands for "inary ====). 3<. c E+%l!n!tion : The co and used to apply an access list on a router interface is access6group. .or applying the access6list on inco ing traffic of an interface# you use access6group Taccess6listI in for of co and# and to apply the access6list on traffic lea-ing an interface# you use the access6group Taccess6listI out for of co and. *0. E+%l!n!tion : There is always an i plicit Ndeny allN co and at the end of e-ery access list# so if an access list doesn<t ha-e any Nper itN co and# it will "loc& all the traffic. If we use the co and Naccess6list
Version 1.0 Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0$

=SS per it ip any anyN at the end of this access list then the answer should "e C 6 .TP traffic fro the networ& =S!.=6S.=.83!S to any host will "e denied.

$0. .CONS USE .N T:E MANUAL

1. Router8L!(er ' e1ice

$. Dork"rou% S2itch8L!(er $ e1ice

'. /C?Dorkst!tion

3. Seri!l8.con to re%resent ! L!(er 1 or $ c!4le

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$0'

*. Circuit8S2itche- Seri!l

0. Ethernet8.con to re%resent L!(er 1 or $ Ethernet c!4le

9. Net2ork Clou-

iscl!i#er
Cert2:a s.co is neither affiliated with Cisco> Syste s# Inc.# Microsoft> Corporation# Inc.# Co pTI1> # Chec& Point Software Corp.# Prosoft> or any other co pany. 1ll trade ar&s are trade ar&s of their respecti-e owners and duly ac&nowledged.

Version 1.0

Co%(ri"ht 7 $00$ 8 $01$ CertE+!#s.co#

$03