Solved: Re: Final Skills

Skyamoebe551 · ‎12-05-2022

Hello I am working on a final skills for my college class. I am a little lost when it comes to the instructions. If I could get any little help I would greatly appreciate the help. I have attached the Packet Tracer too. I could really use the help.

Spanning Tree mode: Rapid Spanning Tree
Trunks:
1. All links between DLS2 & ALS1-2 and DLS3 & ALS1-2
2. DLS2 & ALS1 – Ports Fa0/3-4
3. DLS2 & ALS2 – Ports Fa0/7-8
4. DLS3 & ALS1 - Ports Fa0/7-8
5. DLS3 & ALS2 – Ports Fa0/1-2

Etherchannels:
1. Create L2 Etherchannels between DLS2 & ALS1-2 and DLS3 & ALS1-2
2. Set mode to On
3. DLS2 –> ALS1 = Portchannel 4
4. DLS3 –> ALS1 = Portchannel 6
5. DLS2 –> ALS2 = Portchannel 6
6. DLS3 –> ALS2 = Portchannel 4

1. Create L3 Etherchannels between DLS1-3
2. Set mode to On
3. DLS1-2 = Portchannel 2 -> DLS1 = 211.228.2.1/24 DLS2 – 211.228.2.2/24
4. DLS1-3 = Portchannel 3 -> DLS1 = 211.228.3.1/24 DLS3 – 211.228.3.3/24
5. DLS2-3 = Portchannel 1 -> DLS2 = 211.228.1.2/24 DLS3 – 211.228.1.3/24

VLANs:
VLAN# VLAN Name Assign to Ports
228 (native) NetMan 9 – 10 on ALS1-2!
10 UpMan 11 – 12 on ALS1 & ALS2!
15 R&D 13 – 16 on ALS1 & ALS2!
20 MidMan 17 – 20 on ALS1 & ALS2!
30 LowMan 21 – 24 on ALS1 & ALS2!

STP:
1. DLS2 is the Root Bridge for VLANs 10, 15, and 228.
2. DLS2 is the Secondary Bridge for VLANs 20 and 30.
3. DLS3 is the Root Bridge for VLANs 20 and 30.
4. DLS3 is the Secondary Bridge for VLANs 10, 15, and 228

VTP:
1. DLS2-3 = Server
2. ALS1-2 = Client
3. VTP password = ciscoccna2022
4. VTP Domain = lcmcis228.com
5. VTP Version = 2

IP Addressing Scheme: Feel free to use a scheme that you are comfortable with. You should

utilize VLSM /30 between the layer 3 devices.
Be sure to implement topics covered in CIS 140 & CIS 226 where appropriate. Implement
the routing protocol of your choice, RIP, EIGRP, or OSPF.

DHCP:
1. Configure DHCP on DLS2
2. Configure DHCP for VLANs 10, 15, 20, 30 and 228
3. Exclude the first 25 IP Addresses from each Network
4. Exclude the last 10 IP Addresses from each Network
5. Configure the pool name to be: <VLAN#>Net
6. Configure the default router address = 211.228.x.254/24, where x = VLAN#

InterVLAN Routing:
1. Network Addresses = 211.228.x.0/24, where x = VLAN# or L3 Portchannel#
2. Network Address on EdgeRtr to DLS1 = 211.228.4.2/24
3. Network Address on DLS1 to EdgeRtr = 211.228.4.1/24
4. SVI/Default Gateway Address is always 211.228.x.1/24 on DLS2
5. SVI/Default Gateway Address is always 211.228.x.3/24 on DLS3
6. Configure the router id to be 255.255.255.255 on EdgeRtr.
7. Configure the router id of DLS1-3 to be x.x.x.x, where x is 1, 2, or 3.
8. Configure the networks connecting DLS1-3 and EdgeRtr to be in OSPF Area 0.
9. Configure each VLAN to be in OSPF Area 0.
10. Configure a default route using EdgeRtr’s Gi0/0 interface as the exit interface.
11. Propagate the default route throughout OSPF.
12. Configure DLS2 to be the DR for VLANs 10, 15, and 228.
13. Configure DLS3 to be the DR for VLANs 20 and 30.

Network Management:
1. DLS2 NetMan VLAN IP Address = 211.228.228.1/24
2. DLS3 NetMan VLAN IP Address = 211.228.228.2/24
3. ALS1 NetMan VLAN IP Address = 211.228.228.3/24
4. ALS2 NetMan VLAN IP Address = 211.228.228.4/24

HSRP:
1. Configure DLS2 as the Active HSRP Router for VLANs 10, 15, and 228.
2. Configure DLS2 as the Standby HSRP Router for VLANs 20 and30.
3. Configure DLS3 as the Active HSRP Router for VLANs 20 and30.
4. Configure DLS3 as the Backup HSRP Router for VLANs 10, 15, and 228.

5. Configure 211.228.x.254/24 as the Virtual HSRP IP Address, where x = VLAN#

6. Configure Preemption.

Security:
1. Shutdown and place into VLAN 51 named Area51 all unused ports
2. Configure an ip host command for each Device on every Device
3. Configure SSH on every Switch
a. Username = Manager, Privilege Level = 15, Password = ciscoccna2022
b. Modulus = 2048
c. Version = 2
d. Domain name = ccna3.lmc.edu
4. Enable Secret = ciscoccna2022
5. Console password = ciscoccna2022con
6. Turn off DNS
7. Turn off CDP when completed
8. Secure layer 2 switched ports, and shutdown unused ports.
9. Use ACLs to restrict SSH to all devices to only a single host

Georg Pauwen · ‎12-12-2022

Hello,

I have completed the lab. Attached the revised file. I suggest to go over each line in the instructions, try to understand what part of the configuration corresponds to each line, and why it is configured the way it is.

View solution in original post

Kasun Bandara · ‎12-05-2022

what you want? ask specific question here to help with.

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

Skyamoebe551 · ‎12-06-2022

All the instructions that I am to follow is everything after the spanning tree title. The packet tracer is also included but I am looking for configuring tips for how to set up each section.

How do I set up the Etherchannels:
1. Create L2 Etherchannels between DLS2 & ALS1-2 and DLS3 & ALS1-2
2. Set mode to On
3. DLS2 –> ALS1 = Portchannel 4
4. DLS3 –> ALS1 = Portchannel 6
5. DLS2 –> ALS2 = Portchannel 6
6. DLS3 –> ALS2 = Portchannel 4

1. Create L3 Etherchannels between DLS1-3
2. Set mode to On
3. DLS1-2 = Portchannel 2 -> DLS1 = 211.228.2.1/24 DLS2 – 211.228.2.2/24
4. DLS1-3 = Portchannel 3 -> DLS1 = 211.228.3.1/24 DLS3 – 211.228.3.3/24
5. DLS2-3 = Portchannel 1 -> DLS2 = 211.228.1.2/24 DLS3 – 211.228.1.3/24

Georg Pauwen · ‎12-07-2022

Hello,

--> DLS2 –> ALS1 = Portchannel 4

ALS1

interface Port-channel4
switchport mode trunk
!
interface FastEthernet0/1
switchport mode trunk
channel-group 4 mode on
!
interface FastEthernet0/2
switchport mode trunk
channel-group 4 mode on

DLS2

interface Port-channel4
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface FastEthernet0/1
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 4 mode on
!
interface FastEthernet0/2
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 4 mode on

Skyamoebe551 · ‎12-07-2022

Would I follow this same configuration for the rest of these?

DLS3 –> ALS1 = Portchannel 6
DLS2 –> ALS2 = Portchannel 6
DLS3 –> ALS2 = Portchannel 4

Georg Pauwen · ‎12-07-2022

And here is the layer 3 port channel config:

DLS1

interface Port-channel2
no switchport
ip address 211.228.2.1 255.255.255.0
!
interface FastEthernet0/1
no switchport
no ip address
channel-group 2 mode on
duplex auto
speed auto
!
interface FastEthernet0/2
no switchport
no ip address
channel-group 2 mode on
duplex auto
speed auto

DLS2

interface Port-channel2
no switchport
ip address 211.228.2.2 255.255.255.0
!
interface FastEthernet0/3
no switchport
no ip address
channel-group 2 mode on
duplex auto
speed auto
!
interface FastEthernet0/4
no switchport
no ip address
channel-group 2 mode on
duplex auto
speed auto

Revised file attached...

Skyamoebe551 · ‎12-07-2022

Would I follow this configuration for the others too?

DLS1-3 = Portchannel 3 -> DLS1 = 211.228.3.1/24 DLS3 – 211.228.3.3/24
DLS2-3 = Portchannel 1 -> DLS2 = 211.228.1.2/24 DLS3 – 211.228.1.3/24

Georg Pauwen · ‎12-08-2022

Hello,

indeed, the configuration would be the same (with different port channel numbers and IP addresses obviously).

Skyamoebe551 · ‎12-08-2022

Thank you! For assigning VLANs names would this be the configuration lines? I have attached the instructions for what I need.

Configuration: interface vlan 228

name NetMan

switchport access vlan 228

VLANs instructions
VLAN# VLAN Name Assign to Ports
228 (native) NetMan 9 – 10 on ALS1-2!
10 UpMan 11 – 12 on ALS1 & ALS2!
15 R&D 13 – 16 on ALS1 & ALS2!
20 MidMan 17 – 20 on ALS1 & ALS2!
30 LowMan 21 – 24 on ALS1 & ALS2!

Georg Pauwen · ‎12-09-2022

Hello,

I think what they are looking for is this:

Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#vlan 10
Switch(config-vlan)#name UpMan
Switch(config-vlan)#end

Skyamoebe551 · ‎12-08-2022

I think I have the Vlans all set. I am not sure how to configure the STP section. I could use a little help with that.

1. DLS2 is the Root Bridge for VLANs 10, 15, and 228.
2. DLS2 is the Secondary Bridge for VLANs 20 and 30.
3. DLS3 is the Root Bridge for VLANs 20 and 30.
4. DLS3 is the Secondary Bridge for VLANs 10, 15, and 228

Georg Pauwen · ‎12-09-2022

Hello,

this is how to configure the root:

DLS2(config)#spanning-tree vlan 10,15,228 root primary
DLS2(config)#spanning-tree vlan 20,30 root secondary

Skyamoebe551 · ‎12-09-2022

For the VTP- I am trying my best!!

VTP:
1. DLS2-3 = Server
2. ALS1-2 = Client
3. VTP password = ciscoccna2022
4. VTP Domain = lcmcis228.com
5. VTP Version = 2

is this the configuration: vtp mode server or client

vtp password

vtp domain

vtp version 2?

Skyamoebe551 · ‎12-09-2022

I am now stuck on the IP Addressing Scheme and how to implement RIP, EIGRP or OSPF. How would I get that started and where would I need it applied too?

IP Addressing Scheme: Feel free to use a scheme that you are comfortable with. You should

utilize VLSM /30 between the layer 3 devices.
Be sure to implement topics covered in CIS 140 & CIS 226 where appropriate. Implement
the routing protocol of your choice, RIP, EIGRP, or OSPF.

Skyamoebe551 · ‎12-09-2022

I am now stuck on the IP Addressing Scheme and how to implement RIP, EIGRP or OSPF. How would I get that started and where would I need it applied too?

IP Addressing Scheme: Feel free to use a scheme that you are comfortable with. You should

utilize VLSM /30 between the layer 3 devices.
Be sure to implement topics covered in CIS 140 & CIS 226 where appropriate. Implement
the routing protocol of your choice, RIP, EIGRP, or OSPF.