Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
385
Views
0
Helpful
0
Replies

Need help with configuration.

Hiroshi
Level 1
Level 1

‎03-08-2018 08:37 AM - edited ‎03-08-2019 02:11 PM

I been working on this all night cant seem to make it work. I cant find where i made a mistake. it would be nice is someone where to help me.

 

Topology:

aaa.PNG


Tables:
IP.PNGvlan.PNG

Condition:

S1

  • Configure, name and assign VLANs. Ports should be manually configured as access ports.
  • Configure trunking.

 

R2

  • Configure hostname and ip address interfaces
  • Implement routing: (OSPFv2 AND OSPFv3)
    1. Use OSPF process ID 2 and router ID 2.2.2.2
    2. Disable interfaces that should not send OSPF messages.
    3. Configure a default route to the Internet.
    4. Propagate the default route
    5. Configure authentication (password: CISCO)
  • Implement NAT:
    1. Configure a static NAT for the server using the public ip address 219.1.1.5
    2. Configure a standard, one statement ACL number 2. All IP addresses belonging to the R1 and R2 network
    3. Configure dynamic NAT with PAT using a pool name of your choice and these two public addresses: 219.1.1.1/30 and 219.1.1.2/29

 

R1

  • Configure inter-VLAN routing.
  • Configure DHCP services for VLAN 2 and 3. Use LAN3 and LAN2 as the case-sensitive name for the pool.
  • Implement routing: (OSPFv2 AND OSPFv3)
    1. Use OSPF process ID 2 and router ID 1.1.1.1
    2. Disable interfaces that should not send OSPF messages.
    3. Configure authentication (password: CISCO)

 

ISP

  • Configure hostname and IP address interfacesG-
  • Configure a static route to reach the public addresses assigned to R1 and R2 network.



  • Verification:

All devices should now be able to ping all other devices. If not, troubleshoot your configurations to isolate and solve problems. A few tests include:

  • Verify DHCP assigned on PC1, PC4
  • Verify remote access to S1 by using SSH from PC2.
  • Verify VLANs are assigned to appropriate ports and port security is in force.
  • Verify OSPF neighbors and a complete routing table.
  • Verify NAT translations and statics.

 

S1
++++++
en
config t
vlan 2
name servers
vlan 3
name SALES
vlan 4
name Native
vlan 5
name Management

int fa0/1
sw mode access
sw access vlan 3
int fa0/2
sw mode trunk
sw trunk allowed vlan all
int fa0/3
sw mode access
sw access vlan 3
int fa0/4
sw mode access
sw access vlan 2
int vlan 2
int vlan 3
int vlan 4
int vlan 5
ip add 192.168.5.2 255.255.255.0

R2
++++++
en
config t
hostname R2

int G0/0
ip add 192.168.6.1 255.255.255.0
ipv6 add 2009::1/64
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 CISCO
ipv6 ospf 1 area 0 
ip nat inside
no shut

int S0/0/0
ip add 210.1.1.1 255.255.255.252
ipv6 add 2002::3/64
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 CISCO
ipv6 ospf 1 area 0 
ip nat inside
no shut

int S0/0/1
ip add 210.1.1.5 255.255.255.252
ipv6 add 2004::1/64
ip nat outside
no shut

exit

router ospf 1
network 210.1.1.0 0.0.0.3 area 0
network 192.168.6.0 0.0.0.255 area 0
router-id 2.2.2.2
passive-interface g0/0
passive-interface S0/0/1
default-information originate
exit

ipv6 unicast-routing 
ipv6 router ospf 1
router-id 2.2.2.2
default-information originate
passive-interface g0/0
passive-interface S0/0/1
exit

ip route 0.0.0.0 0.0.0.0 s0/0/1
ipv6 route ::/0 s0/0/1

ip nat inside source static 210.1.1.0 219.1.1.1
ip nat inside source static 192.168.6.0 219.1.1.2
access-list 2 permit 210.1.1.0 0.0.0.3
access-list 2 permit 192.168.6.0 0.0.0.255
ip nat pool NATP 219.1.1.1 219.1.1.5 netmask 255.255.255.248
ip nat inside source list 2 pool NATP 



R1
++++++++
en
config t

int G0/0.2
encapsulation dot1Q 2
ip add 192.168.2.1 255.255.255.0
ipv6 add 2005::1/64

int G0/0.3
encapsulation dot1Q 3
ip add 192.168.3.1 255.255.255.0
ipv6 add 2006::1/64

int G0/0.4
encapsulation dot1Q 4
ip add 192.168.4.1 255.255.255.0
ipv6 add 2007::1/64

int G0/0.5
encapsulation dot1Q 5
ip add 192.168.5.1 255.255.255.0
ipv6 add 2008::1/64

int G0/0
no shut

int S0/0/0
ip add 210.1.1.2 255.255.255.252
ipv6 add 2002::2/64
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 CISCO
no shut

ip dhcp pool LAN2
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
exit
ip dhcp pool LAN3
network 192.168.3.0 255.255.255.0
default-router 192.168.3.1
exit

router ospf 1
network 210.1.1.2 0.0.0.3 area 0
network 192.168.2.1 0.0.0.255 area 0
network 192.168.3.1 0.0.0.255 area 0
network 192.168.4.1 0.0.0.255 area 0
network 192.168.5.1 0.0.0.255 area 0
router-id 1.1.1.1
passive-interface default
no passive-interface S0/0/1
exit

ipv6 unicast-routing 
ipv6 router ospf 1
router-id 1.1.1.1
passive-interface default
no passive-interface S0/0/1
exit



ISP
+++++++
en
config t

int G0/0 
ip add 210.1.1.1 255.255.255.224
ipv6 add 2004::1/64
no shut

int s0/0/1
ip add 210.1.1.6 255.255.255.252
ipv6 add 2003::3/64
no shut
exit

default route 0.0.0.0 0.0.0.0 s0/0/1

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents