Below several acronym in ciscoforum
CCNA = Cisco Certified Network Associates
ICND = Interconnecting Cisco Network Devices
CCENT = Cisco Certified Entry Level Network Technician
CCDA = Cisco Certified Design Associates
DESGN = Designing for Cisco Internetwork Solutions
CCNP = Cisco Certified Network Professional
BCMSN = Building Cisco Multilayer Switched Networks
BSCI = Building Scalable Cisco Internetwork
ISCW = Implementing Secure Converged Wide Area Networks
ONT = Implementing Converged Cisco Networks
CCDP = Cisco Certified Design Professional
ARCH = Architectures
QoS = Quality of Services
CCSP = Cisco Certified Security Professional
SND = Securing Cisco Network Devices
IPS = Implementing Cisco Intrusion Prevention
SNRS = Securing Networks with Cisco Routers & Switches
SNPA = Securing Network with PIX & ASA
CSVPN = Cisco Secure Virtual Private Networks
CCVP = Cisco Certified Voice Professional
CVOICE = Cisco Voice Over IP
Alternative Media for Cisco & Juniper Certifications
Wednesday, September 19, 2007
Saturday, September 15, 2007
[WHICT] Lab 8-2 Using Security Tools to Secure Devices in the Campus
"What's Happen In Class Today"
Topic: Lab 8-2 Using Security Tools to Secure Devices in the Campus
Log Date: Sept 14, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
Using Catalyst 2950 couldn't implemented bpdu guard. See Step 3: It should done with the spanning-tree portfast bpduguard default command
Step 1 – Step 2:
Done
Step 3:
ASW1(config-if)#spanning-tree portfast ?
disable Disable portfast for this interface
trunk Enable portfast on the interface even in trunk mode
[WHICT] Case Study 8-1 Applying Security Practices to Secure Devices in the Campus
"What's Happen In Class Today"
Topic: Case Study 8-1 Applying Security Practices to Secure Devices in the Campus
Log Date: Sept 14, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
No discussion
[WHICT] Lab 7-1 Configuring IP Telephony Support
"What's Happen In Class Today"
Topic: Lab 7-1 Configuring IP Telephony Support
Log Date: Sept 13, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1:
Step 1:
ASW1>enable
password:
ASW1#
Step 2:
ASW1(config)#interface fa0/4
ASW1(config-if)#switchport voice vlan 211
Task 2:
Step 1:
ASW1(config-if)#mls qos trust cos
Step 2:
ASW1(config-if)#mls qos trust device cisco-phone
Step 3:
ASW1(config-if)#switchport priority extend cos 0
Step4 :
ASW1#show running-config
--------------- text omitted--------------------
spanning-tree portfast
!
interface FastEthernet0/4
switchport access vlan 11
switchport voice vlan 11
mls qos trust device cisco-phone
mls qos trust cos
spanning-tree portfast
!
--------------- text omitted--------------------
Task 3:
Step1:
DSW1>enable
DSW1#
Step2:
DSW1(config)interface fa0/1
DSW1(config-if)#switchport voice vlan 211
DSW1(config)interface fa0/2
DSW1(config-if)#switchport voice vlan 211
DSW1(config)interface fa0/3
DSW1(config-if)#switchport voice vlan 212
DSW1(config)interface fa0/4
DSW1(config-if)#switchport voice vlan 212
Task 4:
Step 1 – 4:
Read the lab guide instructions
[WHICT] Lab 6-1 Configuring Switches for WLANs
"What's Happen In Class Today"
Topic: Lab 6-1 Configuring Switches for WLANs
Log Date: Sept 13, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
The Cisco Aironet 1100 is available, but the WLANs controllers is not available. So, lab 6-1 cannot running. All students only access the Access Point with their browser.
[WHICT] Lab 5-1 Enabling and Optimizing HSRP
"What's Happen In Class Today"
Topic: Lab 5-1 Enabling and Optimizing HSRP
Log Date: Sept 12, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
This configuration describe that VLAN1 also configured with the virtual router (HSRP)
The original lab: vritual router (HSRP) only for VLAN11 and VLAN12
Task 1: Configure HSRP on the Router
Step 1:
Identify the table
Step 2: & Step 3:
DSW1>enable
DSW1#conf t
DSW1(config)#
for VLAN11 primary router is DSW1
for VLAN12 primary router is DSW2
Step 4: Step 5: Step6:
interface Vlan11
ip address 10.1.11.1 255.255.255.0
standby 1 ip 10.1.11.254
standby 1 priority 150
end
interface Vlan12
ip address 10.1.12.1 255.255.255.0
standby 2 ip 10.1.12.254
standby 2 timers msec 200 msec 700
end
Step 7:
DSW1#sh standby brief
P indicates configured to preempt.
|
Interface Grp Prio P State Active Standby Virtual IP
Vl1 1 80 Standby 10.1.1.2 local 10.1.1.250
Vl11 2 150 P Active local 10.1.11.2 10.1.11.254
Vl12 3 100 Standby 10.1.12.2 local 10.1.12.254
DSW1#
Step 8: Answer this questions:
Which active router? Which Standby router? What is the priority of them? Is the router with the highest priority active? Why or Why not?
Task 2: Test HSRP on Router by Simulating a Failure
Step 1 – Step 8: Only testing and running the scenarios
Task 3: Test HSRP Tuning Enhancements Using Preempt
Step 1:
DSW1(config)#interface vlan 11
DSW1(config-if)#standby 1 preempt
DSW1(config)#interface vlan 12
DSW1(config-if)#standby 2 preempt
Step 2 - Step 7: Only testing and running the scenarios
Step 8: Answer the questions
Task 4: Troubleshoot HSRP on the Routers
Extra Task: Display Configurations
DSW1#sh standby vlan 1
Vlan1 - Group 1
State is Standby
7 state changes, last state change 01:20:10
Virtual IP address is 10.1.1.250
Active virtual MAC address is 0000.0c07.ac01
Local virtual MAC address is 0000.0c07.ac01 (v1 default)
Hello time 3 sec, hold time 10 sec
Next hello sent in 1.155 secs
Preemption disabled
Active router is 10.1.1.2, priority 100 (expires in 9.220 sec)
Standby router is local
Priority 80 (configured 80)
IP redundancy name is "hsrp-Vl1-1" (default)
DSW1#sh standby vlan 11
Vlan11 - Group 2
State is Active
5 state changes, last state change 01:18:12
Virtual IP address is 10.1.11.254
Active virtual MAC address is 0000.0c07.ac02
Local virtual MAC address is 0000.0c07.ac02 (v1 default)
Hello time 3 sec, hold time 10 sec
Next hello sent in 1.885 secs
Preemption enabled
Active router is local
Standby router is 10.1.11.2, priority 100 (expires in 7.173 sec)
Priority 150 (configured 150)
IP redundancy name is "hsrp-Vl11-2" (default)
DSW1#sh standby vlan 12
Vlan12 - Group 3
State is Standby
13 state changes, last state change 01:22:52
Virtual IP address is 10.1.12.254
Active virtual MAC address is 0000.0c07.ac03
Local virtual MAC address is 0000.0c07.ac03 (v1 default)
Hello time 3 sec (cfgd 200 msec), hold time 10 sec (cfgd 700 msec)
Next hello sent in 1.054 secs
Preemption disabled
Active router is 10.1.12.2, priority 150 (expires in 7.576 sec)
Standby router is local
Priority 100 (default 100)
IP redundancy name is "hsrp-Vl12-3" (default)
note:
preempt --> using only for forcing the “chosen active router” by the priority number
[WHICT] Lab 4-2 Routing Between VLANs
"What's Happen In Class Today"
Topic: Lab 4-2 Routing Between VLANs
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure Switch for Routing
Step 1: Read the instructions...
Step 2: Enter global config
ASW1#
ASW1#conf t
ASW1(config)#
Step 3: change mode mst to PVRST
ASW1(config)#spanning-tree mode rapid-pvst
Step 4: Configure DSWx
ASW1#10.1.1.1
Login:
Password:
DSW1#
Step 5: Change the IP Address of the PC from /16 to /24
Step 6: Configure the default-gateway
Read the instructions
Step 7: Change IP Address and Subnet mask of the ASWx
ASW1(config)#interface vlan 1
ASW1(config-if)#ip address 10.1.1.3 255.255.255.0
Step 8: Change default-gateway of your ASWx
ASW1(config)#ip default-gateway 10.1.1.1
Step 9: Configure interface fastethernet with “switchport access vlan” for PC
ASW1(config)#interface fastEthernet 0/3
ASW1(config-if)#swi
ASW1(config-if)#switchport access vlan 11
ASW1(config-if)#interface fa
ASW1(config-if)#interface fastEthernet 0/4
ASW1(config-if)#switchport access vlan 11
ASW1(config-if)#end
ASW1#
Step 10: Verify
ASW1#show running-config
....
Step 11: Verify PC network configurations
Step 12: Establish DSWx configurations
DSW1#
Step 13: Deleting VLAN 251 and VLAN 252
DSW1(config)#no vlan 251
DSW1(config)#no vlan 252
ASW1(config)#end
Step 14: Shutdown the link between DSW1 and DSW2
DSW1(config)#
DSW1(config)#interface fastEthernet 0/13
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#inter
DSW1(config)#interface fa
DSW1(config)#interface fastEthernet 0/14
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#interface fastEthernet 0/15
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#interface fastEthernet 0/16
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#
Step 15: Enable IP routing
DSW1(config)#ip routing
Step 16: Enter no ip classless command
DSW1(config)#no ip classless
Step 17: Enable EIGRP routing protocol
Step 18: Enter network 10.0.0.0
DSW1(config)#router eigrp 1
DSW1(config-router)#network 10.0.0.0
Step 19: Proceed Task 2
Task 2: Configure VLAN Interface for IP Addresses with Layer 3 Routing
Step 1: Configure IP Address
Step 2: Enter global config
Step 3: Enter global config
DSW1#
DSW1#conf t
DSW1(config)#interface vlan 1
DSW1(config-if)#ip address 10.1.1.1 255.255.255.0
DSW1(config)#interface vlan 11
DSW1(config-if)#ip address 10.1.11.1 255.255.255.0
DSW1(config)#interface vlan 12
DSW1(config-if)#ip address 10.1.12.1 255.255.255.0
DSW1(config)#interface vlan 13
DSW1(config-if)#ip address 10.1.13.1 255.255.255.0
DSW1(config)#interface vlan 14
DSW1(config-if)#ip address 10.1.14.1 255.255.255.0
DSW1(config-if)#end
DSW1#
Step 4: Configure VLAN1 and VLANsX1 to X4 as passive interface
DSW1(config)#router eigrp 1
DSW1(config-router)#passive-interface
Step 5: Configure interface as a routed ports and assign an IP Address for each interface to BBSx
DSW1(config)#interface fa0/9
DSW1(config-if)#no switchport
DSW1(config-if)#ip address 10.1.111.1 255.255.255.0
DSW1(config-if)#no shutdown
DSW1(config-if)#interface fa0/10
DSW1(config-if)#ip address 10.1.111.1 255.255.255.0
DSW1(config-if)#no switchport
DSW1(config-if)#no shutdown
Step 6: Verify
DSW1#show ip int brief
----text omitted---
FastEthernet0/8 unassigned YES unset down down
FastEthernet0/9 10.1.111.1 YES manual up up
FastEthernet0/10 10.1.113.1 YES manual up up
FastEthernet0/11 unassigned YES unset down down
----text omitted---
Step 7: Verify
DSW1#show running-config
----text omitted---
interface FastEthernet0/8
!
interface FastEthernet0/9
description DSW1 0/9 BBS1
no switchport
ip address 10.1.111.1 255.255.255.0
speed 100
duplex full
spanning-tree portfast
!
interface FastEthernet0/10
description DSW1 0/10 BBS2
no switchport
ip address 10.1.113.1 255.255.255.0
speed 100
duplex full
spanning-tree portfast
!
interface FastEthernet0/11
----text omitted---
Task 3: Verify Your VLAN Configurations
Step 1: show ip route
Step 2: copy running-config startup-config
Step 3: Connect to the other groups
Step 4: Telnet them, verify the IP Address and EIGRP routing table information
Task 4: Verify Inter-VLAN Layer 3 Routing
Step 1: show ip route (table routing already complete?)
Step 2: Answer the questions (about Administrative Distance (AD) and implementing non-default AD)
Step 3: Connect PC then ping all destination address in the routing table
Step 4: Check with the other group, if they can successfully ping all their systems
Step 5: Verify end-to-end connectivity using ping (from PC-to-PC)
Friday, September 14, 2007
[WHICT] Quiz 4-1 Describing Routing Between VLANs
"What's Happen In Class Today"
Topic: Quiz 4-1 Describing Routing Between VLANs
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
Just answer the questions, read the Lab Guide!
[WHICT] Lab 3-5 Troubleshooting STP
"What's Happen In Class Today"
Topic: Lab 3-5 Troubleshooting STP
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
Let you troubleshoot the STP using show command
Task 1:
Step 1:
Step 2:
Task 2:
Step 1:
Step 2:
Step 3:
Step4 :
Task 3:
Step1:
Step2:
Task 4:
Step 1 – 4:
[WHICT] Lab 3-4 Configuring EtherChannel
"What's Happen In Class Today"
Topic: Lab 3-4 Configuring EtherChannel
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure EtherChannel on the Distribution Switch
Read the instructions...
Step 1: Connect to DSWx
User Access Verification
Password:
DSW1>ena
Password:
DSW1#
Step 2: Configure EtherChannels
DSW1#conf t
DSW1(config)#interface range fastEthernet 0/1-2
DSW1(config-if-range)#channel-group 1 mode desirable
DSW1(config)#interface range fastEthernet 0/3-4
DSW1(config-if-range)#channel-group 1 mode desirable
Step 3: Connect to ASWx
User Access Verification
Password:
ASW1>ena
Password:
ASW1#
Step 4: Configure EtherChannels
ASW1#conf t
ASW1(config)#interface range fastEthernet 0/9-10
ASW1(config-if-range)#channel-group 1 mode desirable
ASW1(config)#interface range fastEthernet 0/11-12
ASW1(config-if-range)#channel-group 1 mode desirable
Step 5: Verificate previous configuration
DSW1#show interfaces etherchannel ?
module Limit display to interfaces on module
| Output modifiers
DSW1#show interfaces etherchannel
----
FastEthernet0/1:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/1 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/1 ASW1 000c.8577.2040 Fa0/9 4s SC 10001
Age of the port in the current state: 00d:00h:17m:35s
FastEthernet0/2:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/2 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/2 ASW1 000c.8577.2040 Fa0/10 16s SC 10001
Age of the port in the current state: 00d:00h:17m:52s
---- text ommited ------
DSW1#show etherchannel port-channel
Channel-group listing:
----------------------
Group: 1
----------
Port-channels in the group:
---------------------------
Port-channel: Po1
------------
Age of the Port-channel = 00d:00h:22m:12s
Logical slot/port = 2/1 Number of ports = 2
GC = 0x00010001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/1 Desirable-Sl 0
0 00 Fa0/2 Desirable-Sl 0
Time since last port bundled: 00d:00h:22m:08s Fa0/2
Group: 2
----------
Port-channels in the group:
---------------------------
Port-channel: Po2
------------
Age of the Port-channel = 00d:00h:22m:28s
Logical slot/port = 2/2 Number of ports = 2
GC = 0x00020001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/3 Desirable-Sl 0
0 00 Fa0/4 Desirable-Sl 0
Time since last port bundled: 00d:00h:08m:44s Fa0/3
Time since last port Un-bundled: 00d:00h:08m:47s Fa0/3
---- text ommited ------
DSW1#show etherchannel summary
Flags: D - down P - in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use f - failed to allocate aggregator
u - unsuitable for bundling
w - waiting to be aggregated
d - default port
Number of channel-groups in use: 3
Number of aggregators: 3
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
1 Po1(SU) PAgP Fa0/1(P) Fa0/2(P)
2 Po2(SU) PAgP Fa0/3(P) Fa0/4(P)
3 Po3(SU) PAgP Fa0/13(P) Fa0/14(P) Fa0/15(P)
Fa0/16(P)
DSW1#
Step 6: Verify previous configuration
DSW1#show spanning-tree
MST0
Spanning tree enabled protocol mstp
Root ID Priority 8192
Address 0004.9bfe.acfb
Cost 200000
Port 12 (FastEthernet0/10)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32768 (priority 32768 sys-id-ext 0)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Fa0/9 Desg FWD 200000 128.11 Edge P2p
Fa0/10 Root FWD 200000 128.12 P2p Bound(STP)
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST1
Spanning tree enabled protocol mstp
Root ID Priority 24577
Address 0012.7f22.9c00
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 24577 (priority 24576 sys-id-ext 1)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST2
Spanning tree enabled protocol mstp
Root ID Priority 24578
Address 0015.2b3a.0280
Cost 50000
Port 88 (Port-channel3)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 28674 (priority 28672 sys-id-ext 2)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Root FWD 50000 128.88 P2p
DSW1#
Step 7: Verify with show running-config command
Topic: Lab 3-4 Configuring EtherChannel
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure EtherChannel on the Distribution Switch
Read the instructions...
Step 1: Connect to DSWx
User Access Verification
Password:
DSW1>ena
Password:
DSW1#
Step 2: Configure EtherChannels
DSW1#conf t
DSW1(config)#interface range fastEthernet 0/1-2
DSW1(config-if-range)#channel-group 1 mode desirable
DSW1(config)#interface range fastEthernet 0/3-4
DSW1(config-if-range)#channel-group 1 mode desirable
Step 3: Connect to ASWx
User Access Verification
Password:
ASW1>ena
Password:
ASW1#
Step 4: Configure EtherChannels
ASW1#conf t
ASW1(config)#interface range fastEthernet 0/9-10
ASW1(config-if-range)#channel-group 1 mode desirable
ASW1(config)#interface range fastEthernet 0/11-12
ASW1(config-if-range)#channel-group 1 mode desirable
Step 5: Verificate previous configuration
DSW1#show interfaces etherchannel ?
module Limit display to interfaces on module
| Output modifiers
DSW1#show interfaces etherchannel
----
FastEthernet0/1:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/1 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/1 ASW1 000c.8577.2040 Fa0/9 4s SC 10001
Age of the port in the current state: 00d:00h:17m:35s
FastEthernet0/2:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/2 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/2 ASW1 000c.8577.2040 Fa0/10 16s SC 10001
Age of the port in the current state: 00d:00h:17m:52s
---- text ommited ------
DSW1#show etherchannel port-channel
Channel-group listing:
----------------------
Group: 1
----------
Port-channels in the group:
---------------------------
Port-channel: Po1
------------
Age of the Port-channel = 00d:00h:22m:12s
Logical slot/port = 2/1 Number of ports = 2
GC = 0x00010001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/1 Desirable-Sl 0
0 00 Fa0/2 Desirable-Sl 0
Time since last port bundled: 00d:00h:22m:08s Fa0/2
Group: 2
----------
Port-channels in the group:
---------------------------
Port-channel: Po2
------------
Age of the Port-channel = 00d:00h:22m:28s
Logical slot/port = 2/2 Number of ports = 2
GC = 0x00020001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/3 Desirable-Sl 0
0 00 Fa0/4 Desirable-Sl 0
Time since last port bundled: 00d:00h:08m:44s Fa0/3
Time since last port Un-bundled: 00d:00h:08m:47s Fa0/3
---- text ommited ------
DSW1#show etherchannel summary
Flags: D - down P - in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use f - failed to allocate aggregator
u - unsuitable for bundling
w - waiting to be aggregated
d - default port
Number of channel-groups in use: 3
Number of aggregators: 3
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
1 Po1(SU) PAgP Fa0/1(P) Fa0/2(P)
2 Po2(SU) PAgP Fa0/3(P) Fa0/4(P)
3 Po3(SU) PAgP Fa0/13(P) Fa0/14(P) Fa0/15(P)
Fa0/16(P)
DSW1#
Step 6: Verify previous configuration
DSW1#show spanning-tree
MST0
Spanning tree enabled protocol mstp
Root ID Priority 8192
Address 0004.9bfe.acfb
Cost 200000
Port 12 (FastEthernet0/10)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32768 (priority 32768 sys-id-ext 0)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Fa0/9 Desg FWD 200000 128.11 Edge P2p
Fa0/10 Root FWD 200000 128.12 P2p Bound(STP)
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST1
Spanning tree enabled protocol mstp
Root ID Priority 24577
Address 0012.7f22.9c00
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 24577 (priority 24576 sys-id-ext 1)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST2
Spanning tree enabled protocol mstp
Root ID Priority 24578
Address 0015.2b3a.0280
Cost 50000
Port 88 (Port-channel3)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 28674 (priority 28672 sys-id-ext 2)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Root FWD 50000 128.88 P2p
DSW1#
Step 7: Verify with show running-config command
[WHICT] Lab 3-3 Implementing MSTP
"What's Happen In Class Today"
Topic: Lab 3-3 Implementing MSTP
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
May be the MST Region is the best solution for implementing redundant topology.
If we want the configurations more reliable just adding the more cables to each switch, means adding redundancy
Task 1: Configure MST on the Access & Distribution Switches and Verify the Configuration
Read the instructions...
Step 1: Connect to ASWx
User Access Verification
Password:
ASW1>ena
Password:
ASW1#
Step 2: Enter the MST configuration mode
ASW1(config)#spanning-tree mst configuration
Step 3: Map the VLAN to MST instances
ASW1(config-mst)#instance 1 vlan 1, 11, 14
ASW1(config-mst)#instance 2 vlan 12-13
Step 4: Assign a region name to MST
ASW1(config-mst)#name building1
Step 5: Assign a revision name to MST
ASW1(config-mst)#revision 1
Step 6: Configure switch using MST mode
ASW1(config)#spanning-tree mode mst
Step 7: Exit from configuration mode
ASW1(config-mst)#end
ASW1#
Step 8: Connect to DSWx
User Access Verification
Password:
DSW1>ena
Password:
DSW1#
Step 9:
DSW1#conf t
DSW1(config)#spanning-tree mst configuration
Step 10: Map the VLAN to MST instances
DSW1(config-mst)#instance 1 vlan 1, 11, 14
DSW1(config-mst)#instance 2 vlan 12-13
Step 11: Assign a region name to MST
DSW1(config-mst)#name building1
Step 12: Assign a revision name to MST
DSW1(config-mst)#revision 1
Step 13:
DSW1(config-mst)#spanning-tree mst 1 root primary
DSW1(config-mst)#spanning-tree mst 2 root secondary
Step 14:
DSW1(config-mst)#do sh spanning-tree
Step 15:
DSW1(config-mst)#spanning-tree mst pre-standard
Step 16:
DSW1(config-mst)#spanning-tree mode mst
Step 17: Verify with show spanning-tree mst configurations command
Step 18: Enter command show spanning-tree, check if the switch running MST mode
Step 19 – Step 22: Read Lab Guide and follow the instructions
[WHICT] Configuring Primary and Backup Root Bridges
"What's Happen In Class Today"
Topic: Lab 3-1 Configuring Primary and
Log Date:
Venue: Room 3-2, E-2, Inixindo,
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Comment:
Task 1: Investigate Access Switch Convergence After Link Failure with 802.1D STP
Read the table and the instructions
Step 1: Read the table in your Lab Guide. Determine the primary root Building Distribution switches for the VLANs
Step 2: Implementing portfast in Access Switch interfaces
ASW1#conf t
ASW1(config)#interface fastethernet 0/1
ASW1(config-if)#spanning-tree portfast
ASW1(config-if)#interface fastethernet 0/2
ASW1(config-if)#spanning-tree portfast
Step 3:
DSW1(config)#spanning-tree vlan 11 root primary
DSW1(config)#spanning-tree vlan 14 root primary
Step 4:
DSW1(config)#spanning-tree vlan 1 root primary
Step 5: Verify DSWx with the show spanning-tree vlan vlan-id command
DSW1#show spanning-tree vlan 1
....
DSW1#show spanning-tree vlan 11
....
DSW1#show spanning-tree vlan 14
....
Step 6: Verify ASWx with the show spanning-tree vlan vlan-id command
ASW1#show spanning-tree vlan 1
....
ASW1#show spanning-tree vlan 11
....
ASW1#show spanning-tree vlan 14
....
Step 7: Verify DSWx with the show running-config command
Task 2: Configure Spanning Tree Backup Root Switch for VLANs on Distribution Switches
Step 1: Read the table in your Lab Guide. Determine the secondary root Building Distribution switches for the VLANs
Step 2:
DSW2(config)#spanning-tree vlan 12 root secondary
DSW2(config)#spanning-tree vlan 13 root secondary
Step 3:
DSW2(config)#spanning-tree vlan 1 root secondary
Step4 : Verify the secondary root switch
Step 5: Verify DSWx with the show spanning-tree vlan vlan-id command
DSW2#show spanning-tree vlan 1
....
DSW2#show spanning-tree vlan 12
....
DSW2#show spanning-tree vlan 13
....
Step 6: Verify ASWx with the show spanning-tree vlan vlan-id command
ASW1#show spanning-tree vlan 1
....
ASW1#show spanning-tree vlan 12
....
ASW1#show spanning-tree vlan 13
....
Step 7: Verify DSWx with the show running-config command
Task 3: Verify Spanning Tree for VLANs on the Distribution Switches
Step1 – Step 8:
Let you verify all
Wednesday, September 12, 2007
[WHICT] Lab 4 Implementing MSTP
"What's Happen In Class Today"
Topic: Lab 4 Implementing MSTP
Log Date:
Venue: Room 3-2, E-2, Inixindo,
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure Switch for Routing
Step 1: Read the instructions...
Step 2: Enter global config
ASW1#
ASW1#conf t
ASW1(config)#
Step 3: change mode mst to PVRST
ASW1(config)#spanning-tree mode rapid-pvst
Step 4: Configure DSWx
ASW1#10.1.1.1
Login:
Password:
DSW1#
Step 5: Change the IP Address of the PC from /16 to /24
Step 6: Configure the default-gateway
Read the instructions
Step 7: Change IP Address and Subnet mask of the ASWx
ASW1(config)#interface vlan 1
ASW1(config-if)#ip address 10.1.1.3 255.255.255.0
Step 8: Change default-gateway of your ASWx
ASW1(config)#ip default-gateway 10.1.1.1
Step 9: Configure interface fastethernet with “switchport access vlan” for PC
ASW1(config)#interface fastEthernet 0/3
ASW1(config-if)#swi
ASW1(config-if)#switchport access vlan 11
ASW1(config-if)#interface fa
ASW1(config-if)#interface fastEthernet 0/4
ASW1(config-if)#switchport access vlan 11
ASW1(config-if)#end
ASW1#
Step 10: Verify
ASW1#show running-config
....
Step 11: Verify PC network configurations
Step 12: Establish DSWx configurations
DSW1#
Step 13: Deleting VLAN 251 and VLAN 252
DSW1(config)#no vlan 251
DSW1(config)#no vlan 252
ASW1(config)#end
Step 14: Shutdown the link between DSW1 and DSW2
DSW1(config)#
DSW1(config)#interface fastEthernet 0/13
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#inter
DSW1(config)#interface fa
DSW1(config)#interface fastEthernet 0/14
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#interface fastEthernet 0/15
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#interface fastEthernet 0/16
DSW1(config-if)#shut
DSW1(config-if)#exit
DSW1(config)#
Step 15: Enable IP routing
DSW1(config)#ip routing
Step 16: Enter no ip classless command
DSW1(config)#no ip classless
Step 17: Enable EIGRP routing protocol
Step 18: Enter network 10.0.0.0
DSW1(config)#router eigrp 1
DSW1(config-router)#network 10.0.0.0
Step 19: Proceed Task 2
Task 2: Configure VLAN Interface for IP Addresses with Layer 3 Routing
Step 1: Configure IP Address
Step 2: Enter global config
Step 3: Enter global config
DSW1#
DSW1#conf t
DSW1(config)#interface vlan 1
DSW1(config-if)#ip address 10.1.1.1 255.255.255.0
DSW1(config)#interface vlan 11
DSW1(config-if)#ip address 10.1.11.1 255.255.255.0
DSW1(config)#interface vlan 12
DSW1(config-if)#ip address 10.1.12.1 255.255.255.0
DSW1(config)#interface vlan 13
DSW1(config-if)#ip address 10.1.13.1 255.255.255.0
DSW1(config)#interface vlan 14
DSW1(config-if)#ip address 10.1.14.1 255.255.255.0
DSW1(config-if)#end
DSW1#
Step 4: Configure VLAN1 and VLANsX1 to X4 as passive interface
DSW1(config)#router eigrp 1
DSW1(config-router)#passive-interface
Step 5: Configure interface as a routed ports and assign an IP Address for each interface to BBSx
DSW1(config)#interface fa0/9
DSW1(config-if)#no switchport
DSW1(config-if)#ip address 10.1.111.1 255.255.255.0
DSW1(config-if)#no shutdown
DSW1(config-if)#interface fa0/10
DSW1(config-if)#ip address 10.1.111.1 255.255.255.0
DSW1(config-if)#no switchport
DSW1(config-if)#no shutdown
Step 6: Verify
DSW1#show ip int brief
----text omitted---
FastEthernet0/8 unassigned YES unset down down
FastEthernet0/9 10.1.111.1 YES manual up up
FastEthernet0/10 10.1.113.1 YES manual up up
FastEthernet0/11 unassigned YES unset down down
----text omitted---
Step 7: Verify
DSW1#show running-config
----text omitted---
interface FastEthernet0/8
!
interface FastEthernet0/9
description DSW1 0/9 BBS1
no switchport
ip address 10.1.111.1 255.255.255.0
speed 100
duplex full
spanning-tree portfast
!
interface FastEthernet0/10
description DSW1 0/10 BBS2
no switchport
ip address 10.1.113.1 255.255.255.0
speed 100
duplex full
spanning-tree portfast
!
interface FastEthernet0/11
----text omitted---
Tuesday, September 11, 2007
[WHICT] Lab 3-4 Configuring EtherChannel
"What's Happen In Class Today"
Topic: Lab 3-4 Configuring EtherChannel
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Base on: Cisco BCMSNv3.0 Lab Guide
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure EtherChannel on the Distribution Switch
Read the instructions...
Step 1: Connect to DSWx
User Access Verification
Password:
DSW1>ena
Password:
DSW1#
Step 2: Configure EtherChannels
DSW1#conf t
DSW1(config)#interface range fastEthernet 0/1-2
DSW1(config-if-range)#channel-group 1 mode desirable
DSW1(config)#interface range fastEthernet 0/3-4
DSW1(config-if-range)#channel-group 1 mode desirable
Step 3: Connect to ASWx
User Access Verification
Password:
ASW1>ena
Password:
ASW1#
Step 4: Configure EtherChannels
ASW1#conf t
ASW1(config)#interface range fastEthernet 0/9-10
ASW1(config-if-range)#channel-group 1 mode desirable
ASW1(config)#interface range fastEthernet 0/11-12
ASW1(config-if-range)#channel-group 1 mode desirable
Step 5: Verificate previous configuration
DSW1#show interfaces etherchannel ?
module Limit display to interfaces on module
| Output modifiers
DSW1#show interfaces etherchannel
----
FastEthernet0/1:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/1 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/1 ASW1 000c.8577.2040 Fa0/9 4s SC 10001
Age of the port in the current state: 00d:00h:17m:35s
FastEthernet0/2:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/2 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/2 ASW1 000c.8577.2040 Fa0/10 16s SC 10001
Age of the port in the current state: 00d:00h:17m:52s
---- text ommited ------
DSW1#show etherchannel port-channel
Channel-group listing:
----------------------
Group: 1
----------
Port-channels in the group:
---------------------------
Port-channel: Po1
------------
Age of the Port-channel = 00d:00h:22m:12s
Logical slot/port = 2/1 Number of ports = 2
GC = 0x00010001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/1 Desirable-Sl 0
0 00 Fa0/2 Desirable-Sl 0
Time since last port bundled: 00d:00h:22m:08s Fa0/2
Group: 2
----------
Port-channels in the group:
---------------------------
Port-channel: Po2
------------
Age of the Port-channel = 00d:00h:22m:28s
Logical slot/port = 2/2 Number of ports = 2
GC = 0x00020001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/3 Desirable-Sl 0
0 00 Fa0/4 Desirable-Sl 0
Time since last port bundled: 00d:00h:08m:44s Fa0/3
Time since last port Un-bundled: 00d:00h:08m:47s Fa0/3
---- text ommited ------
DSW1#show etherchannel summary
Flags: D - down P - in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use f - failed to allocate aggregator
u - unsuitable for bundling
w - waiting to be aggregated
d - default port
Number of channel-groups in use: 3
Number of aggregators: 3
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
1 Po1(SU) PAgP Fa0/1(P) Fa0/2(P)
2 Po2(SU) PAgP Fa0/3(P) Fa0/4(P)
3 Po3(SU) PAgP Fa0/13(P) Fa0/14(P) Fa0/15(P)
Fa0/16(P)
DSW1#
Step 6: Verificate previous configuration
DSW1#show spanning-tree
MST0
Spanning tree enabled protocol mstp
Root ID Priority 8192
Address 0004.9bfe.acfb
Cost 200000
Port 12 (FastEthernet0/10)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32768 (priority 32768 sys-id-ext 0)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Fa0/9 Desg FWD 200000 128.11 Edge P2p
Fa0/10 Root FWD 200000 128.12 P2p Bound(STP)
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST1
Spanning tree enabled protocol mstp
Root ID Priority 24577
Address 0012.7f22.9c00
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 24577 (priority 24576 sys-id-ext 1)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST2
Spanning tree enabled protocol mstp
Root ID Priority 24578
Address 0015.2b3a.0280
Cost 50000
Port 88 (Port-channel3)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 28674 (priority 28672 sys-id-ext 2)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Root FWD 50000 128.88 P2p
DSW1#
Topic: Lab 3-4 Configuring EtherChannel
Log Date: Sept 11, 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta
Base on: Cisco BCMSNv3.0 Lab Guide
Presented by Andi Maulana
Reported by Arnastya I S
Legend:
[ASWx = Access Switch X; ASWy = Access Switch Y; DSWx = Distribution Switch X; DSWy = Distribution Switch Y]
Task 1: Configure EtherChannel on the Distribution Switch
Read the instructions...
Step 1: Connect to DSWx
User Access Verification
Password:
DSW1>ena
Password:
DSW1#
Step 2: Configure EtherChannels
DSW1#conf t
DSW1(config)#interface range fastEthernet 0/1-2
DSW1(config-if-range)#channel-group 1 mode desirable
DSW1(config)#interface range fastEthernet 0/3-4
DSW1(config-if-range)#channel-group 1 mode desirable
Step 3: Connect to ASWx
User Access Verification
Password:
ASW1>ena
Password:
ASW1#
Step 4: Configure EtherChannels
ASW1#conf t
ASW1(config)#interface range fastEthernet 0/9-10
ASW1(config-if-range)#channel-group 1 mode desirable
ASW1(config)#interface range fastEthernet 0/11-12
ASW1(config-if-range)#channel-group 1 mode desirable
Step 5: Verificate previous configuration
DSW1#show interfaces etherchannel ?
module Limit display to interfaces on module
| Output modifiers
DSW1#show interfaces etherchannel
----
FastEthernet0/1:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/1 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/1 ASW1 000c.8577.2040 Fa0/9 4s SC 10001
Age of the port in the current state: 00d:00h:17m:35s
FastEthernet0/2:
Port state = Up Mstr In-Bndl
Channel group = 1 Mode = Desirable-Sl Gcchange = 0
Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1
Port index = 0 Load = 0x00 Protocol = PAgP
Flags: S - Device is sending Slow hello. C - Device is in Consistent state.
A - Device is in Auto mode. P - Device learns on physical port.
d - PAgP is down.
Timers: H - Hello timer is running. Q - Quit timer is running.
S - Switching timer is running. I - Interface timer is running.
Local information:
Hello Partner PAgP Learning Group
Port Flags State Timers Interval Count Priority Method Ifindex
Fa0/2 SC U6/S7 H 30s 1 128 Any 5001
Partner's information:
Partner Partner Partner Partner Group
Port Name Device ID Port Age Flags Cap.
Fa0/2 ASW1 000c.8577.2040 Fa0/10 16s SC 10001
Age of the port in the current state: 00d:00h:17m:52s
---- text ommited ------
DSW1#show etherchannel port-channel
Channel-group listing:
----------------------
Group: 1
----------
Port-channels in the group:
---------------------------
Port-channel: Po1
------------
Age of the Port-channel = 00d:00h:22m:12s
Logical slot/port = 2/1 Number of ports = 2
GC = 0x00010001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/1 Desirable-Sl 0
0 00 Fa0/2 Desirable-Sl 0
Time since last port bundled: 00d:00h:22m:08s Fa0/2
Group: 2
----------
Port-channels in the group:
---------------------------
Port-channel: Po2
------------
Age of the Port-channel = 00d:00h:22m:28s
Logical slot/port = 2/2 Number of ports = 2
GC = 0x00020001 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = PAgP
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Fa0/3 Desirable-Sl 0
0 00 Fa0/4 Desirable-Sl 0
Time since last port bundled: 00d:00h:08m:44s Fa0/3
Time since last port Un-bundled: 00d:00h:08m:47s Fa0/3
---- text ommited ------
DSW1#show etherchannel summary
Flags: D - down P - in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use f - failed to allocate aggregator
u - unsuitable for bundling
w - waiting to be aggregated
d - default port
Number of channel-groups in use: 3
Number of aggregators: 3
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
1 Po1(SU) PAgP Fa0/1(P) Fa0/2(P)
2 Po2(SU) PAgP Fa0/3(P) Fa0/4(P)
3 Po3(SU) PAgP Fa0/13(P) Fa0/14(P) Fa0/15(P)
Fa0/16(P)
DSW1#
Step 6: Verificate previous configuration
DSW1#show spanning-tree
MST0
Spanning tree enabled protocol mstp
Root ID Priority 8192
Address 0004.9bfe.acfb
Cost 200000
Port 12 (FastEthernet0/10)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32768 (priority 32768 sys-id-ext 0)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Fa0/9 Desg FWD 200000 128.11 Edge P2p
Fa0/10 Root FWD 200000 128.12 P2p Bound(STP)
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST1
Spanning tree enabled protocol mstp
Root ID Priority 24577
Address 0012.7f22.9c00
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 24577 (priority 24576 sys-id-ext 1)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Desg FWD 50000 128.88 P2p
MST2
Spanning tree enabled protocol mstp
Root ID Priority 24578
Address 0015.2b3a.0280
Cost 50000
Port 88 (Port-channel3)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 28674 (priority 28672 sys-id-ext 2)
Address 0012.7f22.9c00
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Interface Role Sts Cost Prio.Nbr Type
---------------- ---- --- --------- -------- --------------------------------
Po1 Desg FWD 100000 128.72 P2p Pre-STD-Cf
Po2 Desg FWD 100000 128.80 P2p Pre-STD-Cf
Po3 Root FWD 50000 128.88 P2p
DSW1#
Monday, September 10, 2007
[WHICT] Cisco Framework & Network Architecture
"What's Happen In Class Today"
Topic: Cisco Framework & Network Architecture
Log Date: Sept 10. 2007
Venue: Room 3-2, E-2, Inixindo, Jakarta.
Base on: BCMSNv3.0 Handout Vol.1
Presented by Andi Maulana
Reported by Arnastya I S
Introduction
Di masa yang akan datang, jaringan sudah tidak lagi sekedar "terhubung" saja, namun setiap perangkat yang dipakai harus mampu "berpikir sendiri". "Berpikir sendiri" disini bukanlah menggunakan konsep intelegensi buatan (AI), namun terbatas pada konfigurasi sederhanan pada perangkat kerasnya. Misalnya bila terjadi jalur putus, seharusnya router sebagai salah satu perangkat router dapat mencari tahu jalur alternatifnya. Atau misalnya bila sebuah port pada switch mendadak tidak dapat berfungsi, switch secara otomatis masih dapat mengarahkan datagram yang sedang berlalu di jalur tersebut segera dialihkan ke port yang lainnya, dan sebagainya. Kemampuan perangkat tersebut dapat dirancang pada sebuah konsep jaringan Intelligent Information Network (IIN). Sehingga permasalahan-permasalahan yang terjadi tersebut dapat diselesaikan dengan menerapkan solusi jaraingan yang berbasis IIN, yang memang sekaligus menjadi tujuan dibuatnya IIN oleh Cisco.
Namun demikian sebuah jaringan yang mampu beradaptasi dengan perubahan-perubahan di masa datang tersebut haruslah direncanakan dengan matang. Cisco menawarkan solusi perencanaan tersebut dalam sebuah konsep framework Cisco Service-Oriented Network Architecture (SONA). Dengan kata lain, bila perencanaan matang sudah dibuat, maka IIN dapat tercapai.
Framework SONA memberikan gambaran yang sederhana dalam penerapannya. Hal ini dapat dikatakan sederhana karena SONA berbasis konsep OSI layer. Secara rinci, arsitektur SONA dibuat terpisah. Dapat dibentuk dan dipisahkan berdasarkan lokasi, berdasarkan departemen atau berdasarkan struktur organisasinya. Saat ini rasanya sudah bukan jamannya lagi bekerja dengan hadir di kantor secara fisik. Beberapa organisasi dengan kemajuan teknologi informasi dan komunikasi yang memadai telah menerapkan cara bekerja yang efisien dan efektif, yaitu bekerja menggunakan teknologi Remote Access Service (RAS), contohnya bekerja dari jarak jauh, tidak perlu hadir secara fisik di kantor, namun cukup menggunakan layanan komunikasi bergerak (mobile communication). Hal ini sangat cocok diterapkan di sebuah kota besar, dimana jarak antara pusat bisnis dan pemukiman sangat berjauhan, contohnya kota Jakarta. Contoh yang lainnya adalah komunikasi antara kantor pusat dengan kantor cabang yang harus melakukan sinkronisasi hasil pekerjaan di sebuah Data Center di lokasi yang terpisah. Karena jarak yang jauh antara ketiga lokasi kantor tersebut, maka harus dibuatkan framwork yang memadai agar kebutuhankomunikasi antar ketiga lokasi tersebut tetap terjaga, berkesinambungan, dan aman. Sedangkan untuk layanan komunikasinya dapat dipilih dari beberapa layanan WAN yang ada dan pilihannya disesuaikan dengan kebutuhan organisasi. Contoh akses ke jaringan public (Internet) dan layanan komunikasi seperti ISDN, ADSL, Frame-Relay, Wi-Fi, dan WiMAX dapat dipertimbangkan.
Tuesday, September 4, 2007
BBR2 configurations
!
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR2
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.2 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.11.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.11.1 211 broadcast
frame-relay map ip 172.31.11.2 212 broadcast
no frame-relay inverse-arp
!
interface Serial0/0/0.2 multipoint
ip address 172.31.22.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.22.1 221 broadcast
frame-relay map ip 172.31.22.2 222 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.33.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.33.1 231 broadcast
frame-relay map ip 172.31.33.2 232 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.44.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.44.1 241 broadcast
frame-relay map ip 172.31.44.2 242 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.55.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.55.1 251 broadcast
frame-relay map ip 172.31.55.2 252 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.66.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.66.1 261 broadcast
frame-relay map ip 172.31.66.2 262 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.77.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.77.1 271 broadcast
frame-relay map ip 172.31.77.2 272 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.88.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.88.1 281 broadcast
frame-relay map ip 172.31.88.2 282 broadcast
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.0.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 200.200.200.200
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
!
!
router bgp 64999
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.11.0 mask 255.255.255.0
network 172.31.22.0 mask 255.255.255.0
network 172.31.33.0 mask 255.255.255.0
network 172.31.44.0 mask 255.255.255.0
network 172.31.55.0 mask 255.255.255.0
network 172.31.66.0 mask 255.255.255.0
network 172.31.77.0 mask 255.255.255.0
network 172.31.88.0 mask 255.255.255.0
neighbor 10.254.0.1 remote-as 64998
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.11.1 remote-as 65001
neighbor 172.31.11.2 remote-as 65001
neighbor 172.31.22.1 remote-as 65002
neighbor 172.31.22.2 remote-as 65002
neighbor 172.31.33.1 remote-as 65003
neighbor 172.31.33.2 remote-as 65003
neighbor 172.31.44.1 remote-as 65004
neighbor 172.31.44.2 remote-as 65004
neighbor 172.31.55.1 remote-as 65005
neighbor 172.31.55.2 remote-as 65005
neighbor 172.31.66.1 remote-as 65006
neighbor 172.31.66.2 remote-as 65006
neighbor 172.31.77.1 remote-as 65007
neighbor 172.31.77.2 remote-as 65007
neighbor 172.31.88.1 remote-as 65008
neighbor 172.31.88.2 remote-as 65008
no auto-summary
!
ip classless
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.4 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.4 0.0.255.0
permit udp any 172.31.0.4 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.11.0 0.0.0.255 172.31.11.0 0.0.0.255
permit icmp 172.31.22.0 0.0.0.255 172.31.22.0 0.0.0.255
permit icmp 172.31.33.0 0.0.0.255 172.31.33.0 0.0.0.255
permit icmp 172.31.44.0 0.0.0.255 172.31.44.0 0.0.0.255
permit icmp 172.31.55.0 0.0.0.255 172.31.55.0 0.0.0.255
permit icmp 172.31.66.0 0.0.0.255 172.31.66.0 0.0.0.255
permit icmp 172.31.77.0 0.0.0.255 172.31.77.0 0.0.0.255
permit icmp 172.31.88.0 0.0.0.255 172.31.88.0 0.0.0.255
permit tcp 172.31.11.0 0.0.0.255 172.31.11.0 0.0.0.255 eq telnet
permit tcp 172.31.22.0 0.0.0.255 172.31.22.0 0.0.0.255 eq telnet
permit tcp 172.31.33.0 0.0.0.255 172.31.33.0 0.0.0.255 eq telnet
permit tcp 172.31.44.0 0.0.0.255 172.31.44.0 0.0.0.255 eq telnet
permit tcp 172.31.55.0 0.0.0.255 172.31.55.0 0.0.0.255 eq telnet
permit tcp 172.31.66.0 0.0.0.255 172.31.66.0 0.0.0.255 eq telnet
permit tcp 172.31.77.0 0.0.0.255 172.31.77.0 0.0.0.255 eq telnet
permit tcp 172.31.88.0 0.0.0.255 172.31.88.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
copy run start
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR2
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.2 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.11.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.11.1 211 broadcast
frame-relay map ip 172.31.11.2 212 broadcast
no frame-relay inverse-arp
!
interface Serial0/0/0.2 multipoint
ip address 172.31.22.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.22.1 221 broadcast
frame-relay map ip 172.31.22.2 222 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.33.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.33.1 231 broadcast
frame-relay map ip 172.31.33.2 232 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.44.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.44.1 241 broadcast
frame-relay map ip 172.31.44.2 242 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.55.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.55.1 251 broadcast
frame-relay map ip 172.31.55.2 252 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.66.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.66.1 261 broadcast
frame-relay map ip 172.31.66.2 262 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.77.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.77.1 271 broadcast
frame-relay map ip 172.31.77.2 272 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.88.4 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip ospf network point-to-multipoint
cdp enable
frame-relay map ip 172.31.88.1 281 broadcast
frame-relay map ip 172.31.88.2 282 broadcast
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.0.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 200.200.200.200
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
!
!
router bgp 64999
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.11.0 mask 255.255.255.0
network 172.31.22.0 mask 255.255.255.0
network 172.31.33.0 mask 255.255.255.0
network 172.31.44.0 mask 255.255.255.0
network 172.31.55.0 mask 255.255.255.0
network 172.31.66.0 mask 255.255.255.0
network 172.31.77.0 mask 255.255.255.0
network 172.31.88.0 mask 255.255.255.0
neighbor 10.254.0.1 remote-as 64998
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.11.1 remote-as 65001
neighbor 172.31.11.2 remote-as 65001
neighbor 172.31.22.1 remote-as 65002
neighbor 172.31.22.2 remote-as 65002
neighbor 172.31.33.1 remote-as 65003
neighbor 172.31.33.2 remote-as 65003
neighbor 172.31.44.1 remote-as 65004
neighbor 172.31.44.2 remote-as 65004
neighbor 172.31.55.1 remote-as 65005
neighbor 172.31.55.2 remote-as 65005
neighbor 172.31.66.1 remote-as 65006
neighbor 172.31.66.2 remote-as 65006
neighbor 172.31.77.1 remote-as 65007
neighbor 172.31.77.2 remote-as 65007
neighbor 172.31.88.1 remote-as 65008
neighbor 172.31.88.2 remote-as 65008
no auto-summary
!
ip classless
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.4 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.4 0.0.255.0
permit udp any 172.31.0.4 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.11.0 0.0.0.255 172.31.11.0 0.0.0.255
permit icmp 172.31.22.0 0.0.0.255 172.31.22.0 0.0.0.255
permit icmp 172.31.33.0 0.0.0.255 172.31.33.0 0.0.0.255
permit icmp 172.31.44.0 0.0.0.255 172.31.44.0 0.0.0.255
permit icmp 172.31.55.0 0.0.0.255 172.31.55.0 0.0.0.255
permit icmp 172.31.66.0 0.0.0.255 172.31.66.0 0.0.0.255
permit icmp 172.31.77.0 0.0.0.255 172.31.77.0 0.0.0.255
permit icmp 172.31.88.0 0.0.0.255 172.31.88.0 0.0.0.255
permit tcp 172.31.11.0 0.0.0.255 172.31.11.0 0.0.0.255 eq telnet
permit tcp 172.31.22.0 0.0.0.255 172.31.22.0 0.0.0.255 eq telnet
permit tcp 172.31.33.0 0.0.0.255 172.31.33.0 0.0.0.255 eq telnet
permit tcp 172.31.44.0 0.0.0.255 172.31.44.0 0.0.0.255 eq telnet
permit tcp 172.31.55.0 0.0.0.255 172.31.55.0 0.0.0.255 eq telnet
permit tcp 172.31.66.0 0.0.0.255 172.31.66.0 0.0.0.255 eq telnet
permit tcp 172.31.77.0 0.0.0.255 172.31.77.0 0.0.0.255 eq telnet
permit tcp 172.31.88.0 0.0.0.255 172.31.88.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
copy run start
FRSW configurations
!
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname fr_sw
!
enable secret bsciinstructor
!
ip subnet-zero
ip cef
!
!
!
!
no ip domain lookup
frame-relay switching
!
!
!
!
!
!
!
!
!
interface Loopback0
ip address 10.97.97.97 255.255.255.0
!
interface Serial0/0
description P1R1
no ip address
encapsulation frame-relay
no fair-queue
clockrate 115200
frame-relay intf-type dce
frame-relay route 111 interface Serial1/4 111
frame-relay route 211 interface Serial1/5 211
frame-relay route 122 interface Serial0/1 221
no shutdown
!
interface Serial0/1
description P1R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 112 interface Serial1/4 112
frame-relay route 212 interface Serial1/5 212
frame-relay route 221 interface Serial0/0 122
no shutdown
!
interface Serial0/2
description P2R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 121 interface Serial1/4 121
frame-relay route 221 interface Serial1/5 221
frame-relay route 122 interface Serial0/3 221
no shutdown
!
interface Serial0/3
description P2R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 122 interface Serial1/4 122
frame-relay route 222 interface Serial1/5 222
frame-relay route 221 interface Serial0/2 122
no shutdown
!
interface Serial0/4
description P3R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 131 interface Serial1/4 131
frame-relay route 231 interface Serial1/5 231
frame-relay route 122 interface Serial0/5 221
no shutdown
!
interface Serial0/5
description P3R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 132 interface Serial1/4 132
frame-relay route 232 interface Serial1/5 232
frame-relay route 221 interface Serial0/4 122
no shutdown
!
interface Serial0/6
description P4R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 141 interface Serial1/4 141
frame-relay route 241 interface Serial1/5 241
frame-relay route 122 interface Serial0/7 221
no shutdown
!
interface Serial0/7
description P4R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 142 interface Serial1/4 142
frame-relay route 242 interface Serial1/5 242
frame-relay route 221 interface Serial0/6 122
no shutdown
!
interface Serial1/0
description P5R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 151 interface Serial1/4 151
frame-relay route 251 interface Serial1/5 251
frame-relay route 122 interface Serial1/1 221
no shutdown
!
interface Serial1/1
description P5R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 152 interface Serial1/4 152
frame-relay route 252 interface Serial1/5 252
frame-relay route 221 interface Serial1/0 122
no shutdown
!
interface Serial1/2
description P6R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 161 interface Serial1/4 161
frame-relay route 261 interface Serial1/5 261
frame-relay route 122 interface Serial1/3 221
no shutdown
!
interface Serial1/3
description P6R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 162 interface Serial1/4 162
frame-relay route 262 interface Serial1/5 262
frame-relay route 221 interface Serial1/2 122
no shutdown
!
!
! NOTE: If you want 8 pods you will have to have 4 more
! serial ports and configure them similar to the ports
! for the other pods. You will also have to add the
! DLCIs to these other pods to the two interfaces that
! go to BBR1 and BBR2.
!
!
interface Serial1/4
description BBR1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 111 interface Serial0/0 111
frame-relay route 112 interface Serial0/1 112
frame-relay route 121 interface Serial0/2 121
frame-relay route 122 interface Serial0/3 122
frame-relay route 131 interface Serial0/4 131
frame-relay route 132 interface Serial0/5 132
frame-relay route 141 interface Serial0/6 141
frame-relay route 142 interface Serial0/7 142
frame-relay route 151 interface Serial1/0 151
frame-relay route 152 interface Serial1/1 152
frame-relay route 161 interface Serial1/2 161
frame-relay route 162 interface Serial1/3 162
no shutdown
!
interface Serial1/5
description BBR2
no ip address
encapsulation frame-relay
clockrate 128000
frame-relay intf-type dce
frame-relay route 211 interface Serial0/0 211
frame-relay route 212 interface Serial0/1 212
frame-relay route 221 interface Serial0/2 221
frame-relay route 222 interface Serial0/3 222
frame-relay route 231 interface Serial0/4 231
frame-relay route 232 interface Serial0/5 232
frame-relay route 241 interface Serial0/6 241
frame-relay route 242 interface Serial0/7 242
frame-relay route 251 interface Serial1/0 251
frame-relay route 252 interface Serial1/1 252
frame-relay route 261 interface Serial1/2 261
frame-relay route 262 interface Serial1/3 262
no shutdown
!
interface Serial1/6
no ip address
shutdown
!
interface Serial1/7
no ip address
shutdown
!
interface Ethernet3/0
description Backbone LAN
ip address 10.254.0.3 255.255.255.0
no shutdown
!
interface Ethernet3/1
no ip address
shutdown
half-duplex
!
router eigrp 1
network 10.0.0.0
auto-summary
no eigrp log-neighbor-changes
!
router bgp 64997
no synchronization
bgp log-neighbor-changes
network 10.97.97.0 mask 255.255.255.0
neighbor 10.254.0.1 remote-as 64998
neighbor 10.254.0.2 remote-as 64999
no auto-summary
!
ip classless
!
ip http server
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
privilege level 15
no login
!
!
end
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname fr_sw
!
enable secret bsciinstructor
!
ip subnet-zero
ip cef
!
!
!
!
no ip domain lookup
frame-relay switching
!
!
!
!
!
!
!
!
!
interface Loopback0
ip address 10.97.97.97 255.255.255.0
!
interface Serial0/0
description P1R1
no ip address
encapsulation frame-relay
no fair-queue
clockrate 115200
frame-relay intf-type dce
frame-relay route 111 interface Serial1/4 111
frame-relay route 211 interface Serial1/5 211
frame-relay route 122 interface Serial0/1 221
no shutdown
!
interface Serial0/1
description P1R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 112 interface Serial1/4 112
frame-relay route 212 interface Serial1/5 212
frame-relay route 221 interface Serial0/0 122
no shutdown
!
interface Serial0/2
description P2R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 121 interface Serial1/4 121
frame-relay route 221 interface Serial1/5 221
frame-relay route 122 interface Serial0/3 221
no shutdown
!
interface Serial0/3
description P2R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 122 interface Serial1/4 122
frame-relay route 222 interface Serial1/5 222
frame-relay route 221 interface Serial0/2 122
no shutdown
!
interface Serial0/4
description P3R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 131 interface Serial1/4 131
frame-relay route 231 interface Serial1/5 231
frame-relay route 122 interface Serial0/5 221
no shutdown
!
interface Serial0/5
description P3R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 132 interface Serial1/4 132
frame-relay route 232 interface Serial1/5 232
frame-relay route 221 interface Serial0/4 122
no shutdown
!
interface Serial0/6
description P4R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 141 interface Serial1/4 141
frame-relay route 241 interface Serial1/5 241
frame-relay route 122 interface Serial0/7 221
no shutdown
!
interface Serial0/7
description P4R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 142 interface Serial1/4 142
frame-relay route 242 interface Serial1/5 242
frame-relay route 221 interface Serial0/6 122
no shutdown
!
interface Serial1/0
description P5R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 151 interface Serial1/4 151
frame-relay route 251 interface Serial1/5 251
frame-relay route 122 interface Serial1/1 221
no shutdown
!
interface Serial1/1
description P5R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 152 interface Serial1/4 152
frame-relay route 252 interface Serial1/5 252
frame-relay route 221 interface Serial1/0 122
no shutdown
!
interface Serial1/2
description P6R1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 161 interface Serial1/4 161
frame-relay route 261 interface Serial1/5 261
frame-relay route 122 interface Serial1/3 221
no shutdown
!
interface Serial1/3
description P6R2
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 162 interface Serial1/4 162
frame-relay route 262 interface Serial1/5 262
frame-relay route 221 interface Serial1/2 122
no shutdown
!
!
! NOTE: If you want 8 pods you will have to have 4 more
! serial ports and configure them similar to the ports
! for the other pods. You will also have to add the
! DLCIs to these other pods to the two interfaces that
! go to BBR1 and BBR2.
!
!
interface Serial1/4
description BBR1
no ip address
encapsulation frame-relay
clockrate 115200
frame-relay intf-type dce
frame-relay route 111 interface Serial0/0 111
frame-relay route 112 interface Serial0/1 112
frame-relay route 121 interface Serial0/2 121
frame-relay route 122 interface Serial0/3 122
frame-relay route 131 interface Serial0/4 131
frame-relay route 132 interface Serial0/5 132
frame-relay route 141 interface Serial0/6 141
frame-relay route 142 interface Serial0/7 142
frame-relay route 151 interface Serial1/0 151
frame-relay route 152 interface Serial1/1 152
frame-relay route 161 interface Serial1/2 161
frame-relay route 162 interface Serial1/3 162
no shutdown
!
interface Serial1/5
description BBR2
no ip address
encapsulation frame-relay
clockrate 128000
frame-relay intf-type dce
frame-relay route 211 interface Serial0/0 211
frame-relay route 212 interface Serial0/1 212
frame-relay route 221 interface Serial0/2 221
frame-relay route 222 interface Serial0/3 222
frame-relay route 231 interface Serial0/4 231
frame-relay route 232 interface Serial0/5 232
frame-relay route 241 interface Serial0/6 241
frame-relay route 242 interface Serial0/7 242
frame-relay route 251 interface Serial1/0 251
frame-relay route 252 interface Serial1/1 252
frame-relay route 261 interface Serial1/2 261
frame-relay route 262 interface Serial1/3 262
no shutdown
!
interface Serial1/6
no ip address
shutdown
!
interface Serial1/7
no ip address
shutdown
!
interface Ethernet3/0
description Backbone LAN
ip address 10.254.0.3 255.255.255.0
no shutdown
!
interface Ethernet3/1
no ip address
shutdown
half-duplex
!
router eigrp 1
network 10.0.0.0
auto-summary
no eigrp log-neighbor-changes
!
router bgp 64997
no synchronization
bgp log-neighbor-changes
network 10.97.97.0 mask 255.255.255.0
neighbor 10.254.0.1 remote-as 64998
neighbor 10.254.0.2 remote-as 64999
no auto-summary
!
ip classless
!
ip http server
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
privilege level 15
no login
!
!
end
BBR1 configurations
!
version 12.4
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR1
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.1 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
cdp enable
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.1.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.1.1 111 broadcast
frame-relay map ip 172.31.1.2 112 broadcast
!
interface Serial0/0/0.2 multipoint
ip address 172.31.2.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.2.1 121 broadcast
frame-relay map ip 172.31.2.2 122 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.3.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.3.1 131 broadcast
frame-relay map ip 172.31.3.2 132 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.4.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.4.1 141 broadcast
frame-relay map ip 172.31.4.2 142 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.5.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.5.1 151 broadcast
frame-relay map ip 172.31.5.2 152 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.6.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.6.1 161 broadcast
frame-relay map ip 172.31.6.2 162 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.7.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.7.1 171 broadcast
frame-relay map ip 172.31.7.2 172 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.8.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.8.1 181 broadcast
frame-relay map ip 172.31.8.2 182 broadcast
!
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.254.0.0 0.0.0.255
network 172.31.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 100.100.100.100
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
neighbor 172.31.8.1
neighbor 172.31.8.2
neighbor 172.31.7.2
neighbor 172.31.7.1
neighbor 172.31.6.2
neighbor 172.31.6.1
neighbor 172.31.5.2
neighbor 172.31.5.1
neighbor 172.31.4.2
neighbor 172.31.4.1
neighbor 172.31.3.2
neighbor 172.31.3.1
neighbor 172.31.2.1
neighbor 172.31.2.2
neighbor 172.31.1.1
neighbor 172.31.1.2
!
!
router rip
version 2
passive-interface FastEthernet0/0
network 10.0.0.0
network 172.31.0.0
distribute-list 1 in
no auto-summary
!
router bgp 64998
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.1.0 mask 255.255.255.0
network 172.31.2.0 mask 255.255.255.0
network 172.31.3.0 mask 255.255.255.0
network 172.31.4.0 mask 255.255.255.0
network 172.31.5.0 mask 255.255.255.0
network 172.31.6.0 mask 255.255.255.0
network 172.31.7.0 mask 255.255.255.0
network 172.31.8.0 mask 255.255.255.0
neighbor 10.254.0.2 remote-as 64999
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.1.1 remote-as 65001
neighbor 172.31.1.2 remote-as 65001
neighbor 172.31.2.1 remote-as 65002
neighbor 172.31.2.2 remote-as 65002
neighbor 172.31.3.1 remote-as 65003
neighbor 172.31.3.2 remote-as 65003
neighbor 172.31.4.1 remote-as 65004
neighbor 172.31.4.2 remote-as 65004
neighbor 172.31.5.1 remote-as 65005
neighbor 172.31.5.2 remote-as 65005
neighbor 172.31.6.1 remote-as 65006
neighbor 172.31.6.2 remote-as 65006
neighbor 172.31.7.1 remote-as 65007
neighbor 172.31.7.2 remote-as 65007
neighbor 172.31.8.1 remote-as 65008
neighbor 172.31.8.2 remote-as 65008
no auto-summary
!
ip classless
ip route 192.168.1.0 255.255.255.0 172.31.1.1
ip route 192.168.2.0 255.255.255.0 172.31.2.1
ip route 192.168.3.0 255.255.255.0 172.31.3.1
ip route 192.168.4.0 255.255.255.0 172.31.4.1
ip route 192.168.5.0 255.255.255.0 172.31.5.1
ip route 192.168.6.0 255.255.255.0 172.31.6.1
ip route 192.168.7.0 255.255.255.0 172.31.7.1
ip route 192.168.8.0 255.255.255.0 172.31.8.1
ip route 192.168.11.0 255.255.255.0 172.31.1.2
ip route 192.168.22.0 255.255.255.0 172.31.2.2
ip route 192.168.33.0 255.255.255.0 172.31.3.2
ip route 192.168.44.0 255.255.255.0 172.31.4.2
ip route 192.168.55.0 255.255.255.0 172.31.5.2
ip route 192.168.66.0 255.255.255.0 172.31.6.2
ip route 192.168.77.0 255.255.255.0 172.31.7.2
ip route 192.168.88.0 255.255.255.0 172.31.8.2
!
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.3 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.3 0.0.255.0
permit udp any 172.31.0.3 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255
permit icmp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255
permit icmp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255
permit icmp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255
permit icmp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255
permit icmp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255
permit icmp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255
permit icmp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255
permit tcp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255 eq telnet
permit tcp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255 eq telnet
permit tcp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255 eq telnet
permit tcp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255 eq telnet
permit tcp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255 eq telnet
permit tcp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255 eq telnet
permit tcp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255 eq telnet
permit tcp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
version 12.4
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR1
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.1 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
cdp enable
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.1.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.1.1 111 broadcast
frame-relay map ip 172.31.1.2 112 broadcast
!
interface Serial0/0/0.2 multipoint
ip address 172.31.2.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.2.1 121 broadcast
frame-relay map ip 172.31.2.2 122 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.3.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.3.1 131 broadcast
frame-relay map ip 172.31.3.2 132 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.4.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.4.1 141 broadcast
frame-relay map ip 172.31.4.2 142 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.5.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.5.1 151 broadcast
frame-relay map ip 172.31.5.2 152 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.6.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.6.1 161 broadcast
frame-relay map ip 172.31.6.2 162 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.7.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.7.1 171 broadcast
frame-relay map ip 172.31.7.2 172 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.8.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.8.1 181 broadcast
frame-relay map ip 172.31.8.2 182 broadcast
!
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.254.0.0 0.0.0.255
network 172.31.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 100.100.100.100
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
neighbor 172.31.8.1
neighbor 172.31.8.2
neighbor 172.31.7.2
neighbor 172.31.7.1
neighbor 172.31.6.2
neighbor 172.31.6.1
neighbor 172.31.5.2
neighbor 172.31.5.1
neighbor 172.31.4.2
neighbor 172.31.4.1
neighbor 172.31.3.2
neighbor 172.31.3.1
neighbor 172.31.2.1
neighbor 172.31.2.2
neighbor 172.31.1.1
neighbor 172.31.1.2
!
!
router rip
version 2
passive-interface FastEthernet0/0
network 10.0.0.0
network 172.31.0.0
distribute-list 1 in
no auto-summary
!
router bgp 64998
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.1.0 mask 255.255.255.0
network 172.31.2.0 mask 255.255.255.0
network 172.31.3.0 mask 255.255.255.0
network 172.31.4.0 mask 255.255.255.0
network 172.31.5.0 mask 255.255.255.0
network 172.31.6.0 mask 255.255.255.0
network 172.31.7.0 mask 255.255.255.0
network 172.31.8.0 mask 255.255.255.0
neighbor 10.254.0.2 remote-as 64999
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.1.1 remote-as 65001
neighbor 172.31.1.2 remote-as 65001
neighbor 172.31.2.1 remote-as 65002
neighbor 172.31.2.2 remote-as 65002
neighbor 172.31.3.1 remote-as 65003
neighbor 172.31.3.2 remote-as 65003
neighbor 172.31.4.1 remote-as 65004
neighbor 172.31.4.2 remote-as 65004
neighbor 172.31.5.1 remote-as 65005
neighbor 172.31.5.2 remote-as 65005
neighbor 172.31.6.1 remote-as 65006
neighbor 172.31.6.2 remote-as 65006
neighbor 172.31.7.1 remote-as 65007
neighbor 172.31.7.2 remote-as 65007
neighbor 172.31.8.1 remote-as 65008
neighbor 172.31.8.2 remote-as 65008
no auto-summary
!
ip classless
ip route 192.168.1.0 255.255.255.0 172.31.1.1
ip route 192.168.2.0 255.255.255.0 172.31.2.1
ip route 192.168.3.0 255.255.255.0 172.31.3.1
ip route 192.168.4.0 255.255.255.0 172.31.4.1
ip route 192.168.5.0 255.255.255.0 172.31.5.1
ip route 192.168.6.0 255.255.255.0 172.31.6.1
ip route 192.168.7.0 255.255.255.0 172.31.7.1
ip route 192.168.8.0 255.255.255.0 172.31.8.1
ip route 192.168.11.0 255.255.255.0 172.31.1.2
ip route 192.168.22.0 255.255.255.0 172.31.2.2
ip route 192.168.33.0 255.255.255.0 172.31.3.2
ip route 192.168.44.0 255.255.255.0 172.31.4.2
ip route 192.168.55.0 255.255.255.0 172.31.5.2
ip route 192.168.66.0 255.255.255.0 172.31.6.2
ip route 192.168.77.0 255.255.255.0 172.31.7.2
ip route 192.168.88.0 255.255.255.0 172.31.8.2
!
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.3 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.3 0.0.255.0
permit udp any 172.31.0.3 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255
permit icmp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255
permit icmp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255
permit icmp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255
permit icmp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255
permit icmp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255
permit icmp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255
permit icmp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255
permit tcp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255 eq telnet
permit tcp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255 eq telnet
permit tcp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255 eq telnet
permit tcp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255 eq telnet
permit tcp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255 eq telnet
permit tcp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255 eq telnet
permit tcp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255 eq telnet
permit tcp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
BBR1 configurations
!
version 12.4
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR1
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.1 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
cdp enable
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.1.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.1.1 111 broadcast
frame-relay map ip 172.31.1.2 112 broadcast
!
interface Serial0/0/0.2 multipoint
ip address 172.31.2.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.2.1 121 broadcast
frame-relay map ip 172.31.2.2 122 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.3.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.3.1 131 broadcast
frame-relay map ip 172.31.3.2 132 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.4.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.4.1 141 broadcast
frame-relay map ip 172.31.4.2 142 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.5.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.5.1 151 broadcast
frame-relay map ip 172.31.5.2 152 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.6.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.6.1 161 broadcast
frame-relay map ip 172.31.6.2 162 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.7.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.7.1 171 broadcast
frame-relay map ip 172.31.7.2 172 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.8.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.8.1 181 broadcast
frame-relay map ip 172.31.8.2 182 broadcast
!
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.254.0.0 0.0.0.255
network 172.31.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 100.100.100.100
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
neighbor 172.31.8.1
neighbor 172.31.8.2
neighbor 172.31.7.2
neighbor 172.31.7.1
neighbor 172.31.6.2
neighbor 172.31.6.1
neighbor 172.31.5.2
neighbor 172.31.5.1
neighbor 172.31.4.2
neighbor 172.31.4.1
neighbor 172.31.3.2
neighbor 172.31.3.1
neighbor 172.31.2.1
neighbor 172.31.2.2
neighbor 172.31.1.1
neighbor 172.31.1.2
!
!
router rip
version 2
passive-interface FastEthernet0/0
network 10.0.0.0
network 172.31.0.0
distribute-list 1 in
no auto-summary
!
router bgp 64998
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.1.0 mask 255.255.255.0
network 172.31.2.0 mask 255.255.255.0
network 172.31.3.0 mask 255.255.255.0
network 172.31.4.0 mask 255.255.255.0
network 172.31.5.0 mask 255.255.255.0
network 172.31.6.0 mask 255.255.255.0
network 172.31.7.0 mask 255.255.255.0
network 172.31.8.0 mask 255.255.255.0
neighbor 10.254.0.2 remote-as 64999
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.1.1 remote-as 65001
neighbor 172.31.1.2 remote-as 65001
neighbor 172.31.2.1 remote-as 65002
neighbor 172.31.2.2 remote-as 65002
neighbor 172.31.3.1 remote-as 65003
neighbor 172.31.3.2 remote-as 65003
neighbor 172.31.4.1 remote-as 65004
neighbor 172.31.4.2 remote-as 65004
neighbor 172.31.5.1 remote-as 65005
neighbor 172.31.5.2 remote-as 65005
neighbor 172.31.6.1 remote-as 65006
neighbor 172.31.6.2 remote-as 65006
neighbor 172.31.7.1 remote-as 65007
neighbor 172.31.7.2 remote-as 65007
neighbor 172.31.8.1 remote-as 65008
neighbor 172.31.8.2 remote-as 65008
no auto-summary
!
ip classless
ip route 192.168.1.0 255.255.255.0 172.31.1.1
ip route 192.168.2.0 255.255.255.0 172.31.2.1
ip route 192.168.3.0 255.255.255.0 172.31.3.1
ip route 192.168.4.0 255.255.255.0 172.31.4.1
ip route 192.168.5.0 255.255.255.0 172.31.5.1
ip route 192.168.6.0 255.255.255.0 172.31.6.1
ip route 192.168.7.0 255.255.255.0 172.31.7.1
ip route 192.168.8.0 255.255.255.0 172.31.8.1
ip route 192.168.11.0 255.255.255.0 172.31.1.2
ip route 192.168.22.0 255.255.255.0 172.31.2.2
ip route 192.168.33.0 255.255.255.0 172.31.3.2
ip route 192.168.44.0 255.255.255.0 172.31.4.2
ip route 192.168.55.0 255.255.255.0 172.31.5.2
ip route 192.168.66.0 255.255.255.0 172.31.6.2
ip route 192.168.77.0 255.255.255.0 172.31.7.2
ip route 192.168.88.0 255.255.255.0 172.31.8.2
!
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.3 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.3 0.0.255.0
permit udp any 172.31.0.3 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255
permit icmp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255
permit icmp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255
permit icmp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255
permit icmp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255
permit icmp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255
permit icmp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255
permit icmp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255
permit tcp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255 eq telnet
permit tcp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255 eq telnet
permit tcp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255 eq telnet
permit tcp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255 eq telnet
permit tcp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255 eq telnet
permit tcp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255 eq telnet
permit tcp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255 eq telnet
permit tcp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
version 12.4
service timestamps debug datetime
service timestamps log datetime
no service password-encryption
!
hostname BBR1
!
enable secret bsciinstructor
!
!
resource policy
!
ip subnet-zero
!
!
ip cef
!
no ip domain lookup
ip multicast-routing
!
!
voice-card 0
no dspfarm
!
interface FastEthernet0/0
description Backbone LAN
ip address 10.254.0.1 255.255.255.0
ip pim sparse-dense-mode
duplex half
speed auto
no shutdown
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
bandwidth 128
no ip address
ip pim sparse-dense-mode
encapsulation frame-relay
no fair-queue
cdp enable
no frame-relay inverse-arp
frame-relay lmi-type cisco
no shutdown
!
interface Serial0/0/0.1 multipoint
ip address 172.31.1.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.1.1 111 broadcast
frame-relay map ip 172.31.1.2 112 broadcast
!
interface Serial0/0/0.2 multipoint
ip address 172.31.2.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.2.1 121 broadcast
frame-relay map ip 172.31.2.2 122 broadcast
!
interface Serial0/0/0.3 multipoint
ip address 172.31.3.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.3.1 131 broadcast
frame-relay map ip 172.31.3.2 132 broadcast
!
interface Serial0/0/0.4 multipoint
ip address 172.31.4.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.4.1 141 broadcast
frame-relay map ip 172.31.4.2 142 broadcast
!
interface Serial0/0/0.5 multipoint
ip address 172.31.5.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.5.1 151 broadcast
frame-relay map ip 172.31.5.2 152 broadcast
!
interface Serial0/0/0.6 multipoint
ip address 172.31.6.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.6.1 161 broadcast
frame-relay map ip 172.31.6.2 162 broadcast
!
interface Serial0/0/0.7 multipoint
ip address 172.31.7.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.7.1 171 broadcast
frame-relay map ip 172.31.7.2 172 broadcast
!
interface Serial0/0/0.8 multipoint
ip address 172.31.8.3 255.255.255.0
ip access-group FILTER_PODS in
ip pim sparse-dense-mode
ip rip send version 1 2
ip rip receive version 1 2
ip ospf network non-broadcast
ip ospf priority 50
cdp enable
frame-relay map ip 172.31.8.1 181 broadcast
frame-relay map ip 172.31.8.2 182 broadcast
!
!
interface Serial0/0/1
no ip address
shutdown
clock rate 125000
!
router eigrp 1
network 10.254.0.0 0.0.0.255
network 172.31.0.0
distribute-list 1 in
no auto-summary
no eigrp log-neighbor-changes
!
router ospf 1
router-id 100.100.100.100
log-adjacency-changes
redistribute connected metric 50 subnets
network 172.31.0.0 0.0.255.255 area 0
neighbor 172.31.8.1
neighbor 172.31.8.2
neighbor 172.31.7.2
neighbor 172.31.7.1
neighbor 172.31.6.2
neighbor 172.31.6.1
neighbor 172.31.5.2
neighbor 172.31.5.1
neighbor 172.31.4.2
neighbor 172.31.4.1
neighbor 172.31.3.2
neighbor 172.31.3.1
neighbor 172.31.2.1
neighbor 172.31.2.2
neighbor 172.31.1.1
neighbor 172.31.1.2
!
!
router rip
version 2
passive-interface FastEthernet0/0
network 10.0.0.0
network 172.31.0.0
distribute-list 1 in
no auto-summary
!
router bgp 64998
no synchronization
bgp log-neighbor-changes
network 10.254.0.0 mask 255.255.255.0
network 172.31.1.0 mask 255.255.255.0
network 172.31.2.0 mask 255.255.255.0
network 172.31.3.0 mask 255.255.255.0
network 172.31.4.0 mask 255.255.255.0
network 172.31.5.0 mask 255.255.255.0
network 172.31.6.0 mask 255.255.255.0
network 172.31.7.0 mask 255.255.255.0
network 172.31.8.0 mask 255.255.255.0
neighbor 10.254.0.2 remote-as 64999
neighbor 10.254.0.3 remote-as 64997
neighbor 172.31.1.1 remote-as 65001
neighbor 172.31.1.2 remote-as 65001
neighbor 172.31.2.1 remote-as 65002
neighbor 172.31.2.2 remote-as 65002
neighbor 172.31.3.1 remote-as 65003
neighbor 172.31.3.2 remote-as 65003
neighbor 172.31.4.1 remote-as 65004
neighbor 172.31.4.2 remote-as 65004
neighbor 172.31.5.1 remote-as 65005
neighbor 172.31.5.2 remote-as 65005
neighbor 172.31.6.1 remote-as 65006
neighbor 172.31.6.2 remote-as 65006
neighbor 172.31.7.1 remote-as 65007
neighbor 172.31.7.2 remote-as 65007
neighbor 172.31.8.1 remote-as 65008
neighbor 172.31.8.2 remote-as 65008
no auto-summary
!
ip classless
ip route 192.168.1.0 255.255.255.0 172.31.1.1
ip route 192.168.2.0 255.255.255.0 172.31.2.1
ip route 192.168.3.0 255.255.255.0 172.31.3.1
ip route 192.168.4.0 255.255.255.0 172.31.4.1
ip route 192.168.5.0 255.255.255.0 172.31.5.1
ip route 192.168.6.0 255.255.255.0 172.31.6.1
ip route 192.168.7.0 255.255.255.0 172.31.7.1
ip route 192.168.8.0 255.255.255.0 172.31.8.1
ip route 192.168.11.0 255.255.255.0 172.31.1.2
ip route 192.168.22.0 255.255.255.0 172.31.2.2
ip route 192.168.33.0 255.255.255.0 172.31.3.2
ip route 192.168.44.0 255.255.255.0 172.31.4.2
ip route 192.168.55.0 255.255.255.0 172.31.5.2
ip route 192.168.66.0 255.255.255.0 172.31.6.2
ip route 192.168.77.0 255.255.255.0 172.31.7.2
ip route 192.168.88.0 255.255.255.0 172.31.8.2
!
!
ip http server
no ip http secure-server
!
ip access-list extended FILTER_PODS
permit icmp any 10.254.0.0 0.0.0.255
permit tcp any 172.31.0.3 0.0.255.0 eq telnet
permit udp any host 10.254.0.254 eq tftp
permit icmp any 172.31.0.3 0.0.255.0
permit udp any 172.31.0.3 0.0.255.0
permit tcp any any eq bgp
permit tcp any eq bgp any
permit ospf any any
permit udp any any eq rip
permit pim any any
permit igmp any any
permit icmp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255
permit icmp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255
permit icmp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255
permit icmp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255
permit icmp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255
permit icmp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255
permit icmp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255
permit icmp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255
permit tcp 172.31.1.0 0.0.0.255 172.31.1.0 0.0.0.255 eq telnet
permit tcp 172.31.2.0 0.0.0.255 172.31.2.0 0.0.0.255 eq telnet
permit tcp 172.31.3.0 0.0.0.255 172.31.3.0 0.0.0.255 eq telnet
permit tcp 172.31.4.0 0.0.0.255 172.31.4.0 0.0.0.255 eq telnet
permit tcp 172.31.5.0 0.0.0.255 172.31.5.0 0.0.0.255 eq telnet
permit tcp 172.31.6.0 0.0.0.255 172.31.6.0 0.0.0.255 eq telnet
permit tcp 172.31.7.0 0.0.0.255 172.31.7.0 0.0.0.255 eq telnet
permit tcp 172.31.8.0 0.0.0.255 172.31.8.0 0.0.0.255 eq telnet
permit eigrp any any
permit udp any 10.254.0.0 0.0.0.255
permit tcp 10.254.0.0 0.0.0.255 10.254.0.0 0.0.0.3 eq telnet
permit icmp any 192.168.0.0 0.0.255.255
!
!
access-list 1 deny 0.0.0.0
access-list 1 permit any
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 60 0
privilege level 15
logging synchronous
line aux 0
line vty 0 4
no login
privilege level 15
!
!
end
Subscribe to:
Posts (Atom)
Posts
