Beruflich Dokumente
Kultur Dokumente
Copyright
Published By
CTTC
45-M, Block-6 P.E.C.H.S Karachi-75400 Pakistan.
All rights reserved. No part of this manual may be reproduced or transmitted in any form
or by any means, electronic or mechanical, including photocopying, recording and
information storage or retrieval system without written permission from the publisher,
except for the inclusion of quotation in a review.
Authors
Reviewed By
Copyright@ CTTC
3
Table of Contents
Topics page#
Basic Network Using CISCO Switch 6
Accessing Console of the Switch/Router 7
Modes of CLI 8
How to Set Hostname and Configure Console Password 9
How to Set Privilege level password 10
How to Set User Authentication in Switch 10
Password Recovery 12
How to Set Telnet password 13
How to Enable the Device to Establish Telnet/SSH Session 13
Configuring SSH 13
SWITHCING
VLAN Configuration 15
Port security 17
Rapid Spanning Tree Protocol (RSTP) 20
Ether channel Configuration 23
Inter VLAN Routing (IVR)
ROUTING
Static Routing 27
Enhanced Interior Gateway Routing Protocol (EIGRP) 30
Open Shortest Path First (OSPF) 33
First Hop Redundancy Protocols
Hot Standby Router Protocol (HSRP) 36
Virtual Router Redundancy Protocol(VRRP) 40
Gateway Load balancing Protocol (GLBP) 43
IPV6
How to Configure IPv6 on CISCO Router 47
Configuring IPv6 Auto configures 49
Configure RIP ng on Router 51
Configuring OSPF V3 55
Configuring EIGRP 59
Copyright@ CTTC
4
WAN Encapsulation 62
Frame Relay 64
Configuring DHCP 68
TROUBLESHOOTING OF EIGRP 81
SYSLOG 83
Copyright@ CTTC
5
Copyright@ CTTC
6
Topology
Copyright@ CTTC
7
RJ-45 to DB-9 adapter is used on the PC (COM port) to the device console
Port through a roll-over cable.
Hyper Terminal is used to access the Command Line Interface (CLI) of the
Device.
(Start --Menu—Programs—Accessories—Communications--Hyper
Terminal)
Switch Console
Modes of CLI:
User-exec mode Switch>
Privilege mode Switch#
Global Configuration mode Switch(config)#
Note: To return to the previous mode use “Exit” command in the current mode.
Copyright@ CTTC
8
Copyright@ CTTC
9
Copyright@ CTTC
10
CISCO(config)#exit
CISCO#exit
Copyright@ CTTC
11
Password Recovery
Configuration on Router
Router>enable
Router#config t
Router(config)#line console 0
Router(config-line)Password cisco
Router(config-line)#Login
Router(config-line)#Exit
For password recovery power cycle the router and press ctrl+break.
Copyright@ CTTC
12
Configuring SSH:
CISCO(config)#username taha password abc123
CISCO(config)#ip domain-name cttc.net
CISCO(config)#crypto key generate rsa
The name for the keys will be: CISCO.cttc.net
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.
How many bits in the modulus [512]: 512
% Generating 512 bit RSA keys ...[OK]
CISCO(config)#line vty 0 15
CISCO(config-line)#login local
CISCO(config-line)#transport input ssh
Copyright@ CTTC
13
Note: VLAN 1 must be configured as show in TELNET section. Putty software iscommonly
used to establish SSH session.
Verify Command’s:
CISCO(config)#show line vty 0 15
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise Overruns Int
1 VTY - -13 0 0/0 -
2 VTY - - - - - 0 0 0/0 -
3 VTY - - - - - 0 0 0/0 -
4 VTY - - - - - 0 0 0/0 -
5 VTY - - - - - 0 0 0/0 -
6 VTY - - - - - 0 0 0/0 -
7 VTY - - - - - 0 0 0/0 -
8 VTY - - - - - 0 0 0/0 -
9 VTY - - - - - 0 0 0/0 -
10 VTY - - - - - 0 0 0/0 -
11 VTY - - - - - 0 0 0/0 -
12 VTY - - - - - 0 0 0/0 -
13 VTY - - - - - 0 0 0/0 -
14 VTY - - - - - 0 0 0/0 -
15 VTY - - - - - 0 0 0/0 -
16 VTY - - - - - 0 0 0/0 –
!!! ―*‖ show that one VTY Session is active:
Copyright@ CTTC
14
Verify VLANs
CISCO#show vlan brief
VLAN Name Status Ports
------- ---------------------------- --------- -------------------------------
1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4
Fa0/5, Fa0/6, Fa0/7, Fa0/8
Fa0/9, Fa0/10, Fa0/11, Fa0/12
Fa0/13, Fa0/14, Fa0/15, Fa0/16
Fa0/17, Fa0/18, Fa0/19, Fa0/20
Fa0/21, Fa0/22, Fa0/23, Fa0/24
Gi0/1, Gi0/2
10 HR active
20 Sales active
1002 fddi-default act/unsup
1003 token-ring-default act/unsup
1004 fddinet-default act/unsup
1005 trnet-default act/unsup
Note: All ports of the switch are member of VLAN 1 by default.
Copyright@ CTTC
15
Copyright@ CTTC
16
LAB:PORT SECURITY
OBJECTIVE: TO IMPLEMENT BASIC PORT SECURITY FEATURES
ON INTERFACE
CISCO(config)#interface fa0/1
CISCO(config-if)#switchport mode access
CISCO(config-if)#switchport port-security
CISCO(config-if)#switchport port-security mac-address sticky
CISCO(config-if)#switchport port-security maximum 1
CISCO(config-if)#switchport port-security violation shutdown
CISCO(config-if)#exit
CISCO(config)#interface fa0/2
CISCO(config-if)#switchport mode access
CISCO(config-if)#switchport port-security
CISCO(config-if)#switchport port-security mac-address sticky
CISCO(config-if)#switchport port-security maximum 1
CISCO(config-if)#switchport port-security violation shutdown
Copyright@ CTTC
17
Copyright@ CTTC
18
Fa0/2 1 1 1 Shutdown
-------------------------------------------------------------------------------------------------------------
Copyright@ CTTC
19
Note:
If the switch is ―Root Bridge‖, it will display the message ―This bridge is the root‖.
Root ID Address and Bridge ID Address will be same in case of Root Bridge.
Default priority is 32768. VLAN ID (System Extension ID) is added to the default
priority. VLAN 1 is the default VLAN so the priority for VLAN 1 is 32769
(32768+1).
Copyright@ CTTC
20
Enabling RSTP:
Switch-1(config)#spanning-tree mode rapid-pvst
Note: The above command will be issued on all the switches of the network.
Verify RSTP:
Switch-1#show spanning-tree
VLAN0001
Spanning tree enabled protocol rstp
Root ID Priority 32769
Address 0002.16EE.8B7E
This bridge is the root
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32769 (priority 32768 sys-id-ext 1)
Address 0002.16EE.8B7E
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 20
Copyright@ CTTC
21
Copyright@ CTTC
22
Etherchannel Configuration:
Configuring Switch-1:
Switch-1(config)#interface range fa0/1 - 2
Switch-1(config-if-range)#channel-group 1 mode on
Switch-1(config-if-range)#exit
Switch-1(config)#interface port-channel 1
Switch-1(config-if)#switchport mode trunk
Configuring Switch-2:
Switch-2(config)#interface range fa0/1 - 2
Switch-2(config-if-range)#channel-group 1 mode on
Switch-2(config-if-range)#exit
Switch-2(config)#interface port-channel 1
Switch-2(config-if)#switchport mode trunk
Verify Etherchannel:
Switch-1#show etherchannel summary
…<Output omitted>…
Number of channel-groups in use: 1
Number of aggregators: 1
Group Port-channel Protocol Ports
--------+-----------------+------------+-------------------------
1 Po1(SU) - Fa0/1(P) Fa0/2(P)
Copyright@ CTTC
23
Configuring Switch:
Switch(config)#vlan 10
Switch(config-vlan)#name HR
Switch(config-vlan)#vlan 20
Switch(config-vlan)#name Sales
Switch(config-vlan)#exit
Switch(config)#interface fa0/1
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan 10
Switch(config-if)#exit
Switch(config)#interface fa0/2
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan 20
Switch(config-if)#exit
Switch(config)#interface fa0/3
Switch(config-if)#switchport mode trunk
Copyright@ CTTC
24
Configuring Router:
Router(config)#interface fa0/0
Router(config-if)#no shutdown
Router(config-if)#exit
Configuring IP on PC:
Copyright@ CTTC
25
Copyright@ CTTC
26
Configuring R1:
R1(config)#interface fa0/0
R1(config-if)#ip address 10.0.0.100 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#interface s0/1/0
R1(config-if)#ip address 192.168.1.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#no shutdown
R2(config-if)#exit
Note: Interface Serial0/1/0 of Router R1 is a DCE end, so clock rate must be given to this.
Configuring R2:
R2(config)#interface fa0/0
R2(config-if)#ip address 20.0.0.100 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#interface s0/1/0
R2(config-if)#ip address 192.168.1.2 255.255.255.252
R2(config-if)#no shutdown
R2(config-if)#exit
Copyright@ CTTC
27
Note: When configuring the static route on router R1 we used the local interface of the
router R1 i.e s0/1/0, whereas, when configuring router R2 we use the next hop address
as Forwarding router's address.
Copyright@ CTTC
28
Copyright@ CTTC
29
Configuring R1:
R1(config)#interface fa0/0
R1(config-if)#ip address 10.0.0.100 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#interface s0/1/0
R1(config-if)#ip address 192.168.1.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#no shutdown
R2(config-if)#exit
Note: Interface Serial0/1/0 of Router R1 is a DCE end, so clock rate must be given to
this.
Configuring R2:
R2(config)#interface fa0/0
R2(config-if)#ip address 20.0.0.100 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#interface s0/1/0
R2(config-if)#ip address 192.168.1.2 255.255.255.252
R2(config-if)#no shutdown
R2(config-if)#exit
Copyright@ CTTC
30
Note: All directly connected networks will be issued in the router eigrp mode.
Autonomous System number must be same on all the routers in the network.
Copyright@ CTTC
31
Note: To verify the currently enabled routing protocols, use the following command:
R1#show ip protocols
To view all the routes that has been calculated by EIGRP, use the following
command:
Copyright@ CTTC
32
Configuring R1:
R1(config)#interface fa0/0
R1(config-if)#ip address 10.0.0.100 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#interface s0/1/0
R1(config-if)#ip address 192.168.1.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#no shutdown
R2(config-if)#exit
Note: Interface Serial0/1/0 of Router R1 is a DCE end, so clock rate must be given to
this.
Configuring R2:
R2(config)#interface fa0/0
R2(config-if)#ip address 20.0.0.100 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#interface s0/1/0
R2(config-if)#ip address 192.168.2.2 255.255.255.252
R2(config-if)#no shutdown
R2(config-if)#exit
Copyright@ CTTC
33
Copyright@ CTTC
34
Copyright@ CTTC
35
Configuring WAN-RT:
WAN-RT(config)#interface Loopback0
WAN-RT(config-if)#ip address 200.0.0.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/0
WAN-RT(config-if)#ip address 172.16.2.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/1
WAN-RT(config-if)#ip address 172.16.1.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#router rip
WAN-RT(config-router)#version 2
WAN-RT(config-router)#network 172.16.0.0
WAN-RT(config-router)#network 200.0.0.0
WAN-RT(config-router)#no auto-summary
WAN-RT(config-router)#exit
Copyright@ CTTC
36
Configuring Master-RT:
Master-RT(config)#interface FastEthernet0/0
Master-RT(config-if)#ip address 10.0.0.10 255.255.255.0
Master-RT(config-if)#standby 1 ip 10.0.0.100
Master-RT(config-if)#standby 1 priority 110
Master-RT(config-if)#standby 1 preempt
Master-RT(config-if)#standby 1 track FastEthernet0/1
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config-if)
Master-RT(config )#interface FastEthernet0/1
Master-RT(config-if)#ip address 172.16.1.2 255.255.255.0
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config)#router rip
Master-RT(config-router)#version 2
Master-RT(config-router)#network 10.0.0.0
Master-RT(config-router)#network 172.16.0.0
Master-RT(config-router)#no auto-summary
Configuring Backup-RT:
Backup-RT(config)#interface FastEthernet0/0
Backup-RT(config-if)#ip address 10.0.0.9 255.255.255.0
Backup-RT(config-if)#standby 1 ip 10.0.0.100
Backup-RT(config-if)#standby 1 priority 95
Backup-RT(config-if)#standby 1 preempt
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#interface FastEthernet0/1
Backup-RT(config-if)#ip address 172.16.2.2 255.255.255.0
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#router rip
Backup-RT(config-router)#version 2
Backup-RT(config-router)#network 10.0.0.0
Backup-RT(config-router)#network 172.16.0.0
Backup-RT(config-router)#no auto-summary
Copyright@ CTTC
37
Verify Master-RT:
Master-RT#show standby
Note: When the network is perfectly up, Master-RT must be in Active State. If
FastEthernet port of Master-RT gone down then Backup-RT will become active. Now
check Backup-RT when the Fa0/1 of Master-RT is down
Copyright@ CTTC
38
Copyright@ CTTC
39
Configuring WAN-RT:
WAN-RT(config)#interface Loopback0
WAN-RT(config-if)#ip address 200.0.0.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/0
WAN-RT(config-if)#ip address 172.16.2.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/1
WAN-RT(config-if)#ip address 172.16.1.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#router rip
WAN-RT(config-router)#version 2
WAN-RT(config-router)#network 172.16.0.0
WAN-RT(config-router)#network 200.0.0.0
WAN-RT(config-router)#no auto-summary
WAN-RT(config-router)#exit
Copyright@ CTTC
40
Configuring Master-RT:
Master-RT(config)#interface FastEthernet0/0
Master-RT(config-if)#ip address 10.0.0.10 255.255.255.0
Master-RT(config-if)#vrrp 1 ip 10.0.0.100
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config-if)
Master-RT(config )#interface FastEthernet0/1
Master-RT(config-if)#ip address 172.16.1.2 255.255.255.0
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config)#router rip
Master-RT(config-router)#version 2
Master-RT(config-router)#network 10.0.0.0
Master-RT(config-router)#network 172.16.0.0
Master-RT(config-router)#no auto-summary
Configuring Backup-RT:
Backup-RT(config)#interface FastEthernet0/0
Backup-RT(config-if)#ip address 10.0.0.9 255.255.255.0
Backup-RT(config-if)#vrrp 1 ip 10.0.0.100
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#interface FastEthernet0/1
Backup-RT(config-if)#ip address 172.16.2.2 255.255.255.0
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#router rip
Backup-RT(config-router)#version 2
Backup-RT(config-router)#network 10.0.0.0
Backup-RT(config-router)#network 172.16.0.0
Backup-RT(config-router)#no auto-summary
Copyright@ CTTC
41
Verify Master-RT:
Master-RT# show VRRP
Note: When the network is perfectly up, Master-RT must be in Active State. If
FastEthernet port of Master-RT gone down then Backup-RT will become active. Now
check Backup-RT when the Fa0/1 of Master-RT is down
Copyright@ CTTC
42
Configuring WAN-RT:
WAN-RT(config)#interface Loopback0
WAN-RT(config-if)#ip address 200.0.0.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/0
WAN-RT(config-if)#ip address 172.16.2.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#interface FastEthernet0/1
WAN-RT(config-if)#ip address 172.16.1.1 255.255.255.0
WAN-RT(config-if)#no shutdown
WAN-RT(config-if)#exit
WAN-RT(config)#router rip
WAN-RT(config-router)#version 2
WAN-RT(config-router)#network 172.16.0.0
WAN-RT(config-router)#network 200.0.0.0
WAN-RT(config-router)#no auto-summary
WAN-RT(config-router)#exit
Copyright@ CTTC
43
Configuring Master-RT:
Master-RT(config)#interface FastEthernet0/0
Master-RT(config-if)#ip address 10.0.0.10 255.255.255.0
Master-RT(config-if)#glbp 1 ip 10.0.0.100
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config-if)
Master-RT(config )#interface FastEthernet0/1
Master-RT(config-if)#ip address 172.16.1.2 255.255.255.0
Master-RT(config-if)#no shutdown
Master-RT(config-if)#exit
Master-RT(config)#router rip
Master-RT(config-router)#version 2
Master-RT(config-router)#network 10.0.0.0
Master-RT(config-router)#network 172.16.0.0
Master-RT(config-router)#no auto-summary
Configuring Backup-RT:
Backup-RT(config)#interface FastEthernet0/0
Backup-RT(config-if)#ip address 10.0.0.9 255.255.255.0
Backup-RT(config-if)#glbp 1 ip 10.0.0.100
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#interface FastEthernet0/1
Backup-RT(config-if)#ip address 172.16.2.2 255.255.255.0
Backup-RT(config-if)#no shutdown
Backup-RT(config-if)#exit
Backup-RT(config)#router rip
Backup-RT(config-router)#version 2
Backup-RT(config-router)#network 10.0.0.0
Backup-RT(config-router)#network 172.16.0.0
Backup-RT(config-router)#no auto-summary
Copyright@ CTTC
44
Verify Master-RT:
Master-RT# show GLBP
Copyright@ CTTC
45
Copyright@ CTTC
46
Copyright@ CTTC
47
Copyright@ CTTC
48
Configuring R1#:
R1(config)#ipv6 unicast-routing
R1(config)#int fa0/0
R1(config-if)#ipv6 address 2001:abad:5001:1::1/64
R1(config-if)#ipv6 nd prefix 2001:abad:5001:1::/64
R1(config-if)#no shutdown
Configuring R2#:
R2(config)#ipv6 unicast-routing
R2(config)#int fa0/0
R2(config-if)#ipv6 address autoconfig
R2(config-if)#no shutdown
R2(config-if)#exit
Configuring R3#:
R3(config)#ipv6 unicast-routing
R3(config)#int fa0/0
R3(config-if)#ipv6 address autoconfig
R3(config-if)#no shutdown
R3(config-if)#end
Copyright@ CTTC
49
Copyright@ CTTC
50
Configure on R1:
R1(config)#ipv6 unicast-routing
R1(config)#int s1/0
R1(config-if)#ipv6 address 2001:abad:5001:1::1/64
R1(config-if)#ipv6 rip cttc enable
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int Loopback 10
R1(config-if)#ipv6 address 1:1:1:1::1/64
R1(config-if)#ipv6 rip cttc enable
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int Loopback 20
R1(config-if)#ipv6 address 1:1:1:2::1/64
R1(config-if)#ipv6 rip cttc enable
R1(config-if)#no shutdown
R1(config-if)#exit
Copyright@ CTTC
51
Configure on R2:
R2(config)#ipv6 unicast-routing
R2(config)#int s1/0
R2(config-if)#ipv6 address 2001:abad:5001:1::2/64
R2(config-if)#ipv6 rip cttc enable
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int Loopback 0
R2(config-if)#ipv6 address 2:2:2:2::1/64
R2(config-if)#ipv6 rip cttc enable
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int Loopback 1
R2(config-if)#ipv6 address 2:2:2:1::1/64
R2(config-if)#ipv6 rip cttc enable
R2(config-if)#no shutdown
R2(config-if)#exit
Note: In the syntax cttc specified the Process, you can run multiple processes on a
Route
Copyright@ CTTC
52
Copyright@ CTTC
53
Verify the reachability between the routers R1 and R2, use the ping
command:
Copyright@ CTTC
54
Configure R1:
R1(confg)#ipv6 unicast-routing
R1(config)#int s1/0
R1(config-if)#ipv6 address 2001:abad:5001:1::1/64
R1(config-if)#no shutdown
R1(config-if)#ipv6 ospf 1 area 0
R1(config-if)#exit
R1(config)#int Loopback 10
R1(config-if)#ipv6 address 1:1:1:1::1/64
R1(config-if)#ipv6 ospf 1 area 0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int Loopback 20
R1(config-if)#ipv6 address 1:1:1:2::1/64
R1(config-if)#ipv6 ospf 1 area 0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#ipv6 router ospf 1
R1(config-rtr)#router-id 1.1.1.1
R1(config-if)#exit
Copyright@ CTTC
55
Configuring R2:
R2(confg)#ipv6 unicast-routing
R2(config)#int s1/0
R2(config-if)#ipv6 address 2001:abad:5001:1::2/64
R2(config-if)#no shutdown
R2(config-if)#ipv6 ospf 1 area 0
R2(config-if)#exit
R2(config)#int Loopback 0
R2(config-if)#ipv6 address 2:2:2:2::1/64
R2(config-if)#ipv6 ospf 1 area 0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int Loopback 1
R2(config-if)#ipv6 address 2:2:2:1::1/64
R2(config-if)#ipv6 ospf 1 area 0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#ipv6 router ospf 1
R2(config-rtr)#router-id 2.2.2.2
R2(config-rtr)#exit
Note: Loopback interfaces have their own OSPF network type in which case OSPF
advertises a host route to the loopback interface and not the configure subnet mask. To
change OSPF to advertise the subnet assigned to the loopback interface you’ll need to
change the network type to point-to-point as shown below:
For R1:
R1(config)#interface loopback 10
R1(config-if)#ipv6 ospf 1 area 0
R1(config-if)#ipv6 ospf network point-to-point
R1(config-if)#exit
R1(config)#interface loopback 20
R1(config-if)#ipv6 ospf 1 area 0
R1(config-if)#ipv6 ospf network point-to-point
R1(config-if)#exit
Copyright@ CTTC
56
For R2:
R2(config)#interface loopback 0
R2(config-if)#ipv6 ospf 1 area 0
R2(config-if)#ipv6 ospf network point-to-point
R2(config-if)#exit
R2(config)#interface loopback 1
R2(config-if)#ipv6 ospf 1 area 0
R2(config-if)#ipv6 ospf network point-to-point
R2(config-if)#exit
Copyright@ CTTC
57
Copyright@ CTTC
58
Configure R1:
R1(config)#ipv6 unicast-routing
R1(config)#int s1/0
R1(config-if)#ipv6 address 2001:abad:5001:1::1/64
R1(config-if)#no shutdown
R1(config-if)#ipv6 eigrp 100
R1(config-if)#exit
R1(config)#ipv6 router eigrp 100
R1(config-rtr)#eigrp router-id 1.1.1.1
R1(config-rtr)#exit
R1(config)#int Loopback 10
R1(config-if)#ipv6 address 1:1:1:1::1/64
R1(config-if)#no shutdown
R1(config-if)#ipv6 eigrp 100
R1(config-rtr)#exit
R1(config)#int loopback 20
R1(config-if)#ipv6 address 1:1:1:2::1/64
R1(config-if)#no shutdown
R1(config-if)#ipv6 eigrp 100
R1(config-if)#exit
Copyright@ CTTC
59
Configure R2:
R2(config)#ipv6 unicast-routing
R2(config)#int s1/0
R2(config-if)#ipv6 address 2001:abad:5001:1::2/64
R2(config-if)#no shutdown
R2(config-if)#ipv6 eigrp 100
R2(config-if)#exit
R2(config)#ipv6 router eigrp 100
R2(config-rtr)#eigrp router-id 2.2.2.2
R2(config-rtr)#exit
R2(config)#int Loopback 0
R2(config-if)#ipv6 address 2:2:2:2::1/64
R2(config-if)#no shutdown
R2(config-if)#ipv6 eigrp 100
R2(config-rtr)#exit
R2(config)#int Loopback 1
R2(config-if)#ipv6 address 2:2:2:1::1/64
R2(config-if)#no shutdown
R2(config-if)#ipv6 eigrp 100
R2(config-if)#exit
Copyright@ CTTC
60
Copyright@ CTTC
61
Configuring R1:
R1(config)#int s0/3/0
R1(config-if)#ip address 192.168.1.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#encapsulation ppp
R1(config-if)#ppp authentication chap pap
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#username R2 password cisco
Configuring R2:
R2(config)#int s0/3/0
R2(config-if)#ip address 192.168.1.2 255.255.255.252
R2(config-if)#encapsulation ppp
R2(config-if)#ppp authentication chap pap
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#username R1 password cisco
Copyright@ CTTC
62
Copyright@ CTTC
63
LAB:Frame Relay
OBJECTIVE: To Show How Router Connects With Each Other Over Cloud
Using Frame Relay
Configuring R1:
R1(config)#int s0/3/0
R1(config-if)#no shutdown
R1(config-if)#encapsulation frame-relay
R1(config-if)#exit
R1(config)#interface s0/3/0.122 point-to-point
R1(config-subif)#ip address 10.1.2.1 255.255.255.0
R1(config-subif)#frame-relay interface-dlci 122
R1(config-subif)#exit
R1(config)#interface s0/3/0.123 point-to-point
R1(config-subif)#ip address 10.1.3.1 255.255.255.0
R1(config-subif)#frame-relay interface-dlci 123
R1(config-subif)#exit
R1(config)#router rip
R1(config-router)#version 2
R1(config-router)#no auto-summary
R1(config-router)#network 10.1.2.0
R1(config-router)#network 10.1.3.0
R1(config-router)#exit
Copyright@ CTTC
64
Configuring R2:
R2(config)#int s0/3/0
R2(config-if)#ip address 10.1.2.2 255.255.255.0
R2(config-if)#encapsulation frame-relay
R2(config-if)#frame-relay interface-dlci 221
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#router rip
R2(config-router)#version 2
R2(config-router)#no auto-summary
R2(config-router)#network 10.1.2.0
Configuring R3:
R3(config)#int s0/3/0
R3(config-if)#ip address 10.1.3.2 255.255.255.0
R3(config-if)#encapsulation frame-relay
R3(config-if)#frame-relay interface-dlci 321
R3(config-if)#no shutdown
R3(config-if)#exit
R3(config)#router rip
R3(config-router)#version 2
R3(config-router)#no auto-summary
R3(config-router)#network 10.1.3.0
R3(config-router)#exit
Copyright@ CTTC
65
Note: Click on WAN cloud then click on Config tab. You will see all the interfaces on the
left hand side. Now click on Serial0 button and add the DLCI value and Name as shown
above and press ―Add‖ button. Serial0 is linked to two DLCI value, therefore both the
DLCI values must be added. Now repeat the same procedure for Serial1 and Serial2.
Copyright@ CTTC
66
Note: Now click on ―Frame Relay‖ button and map the DLCI accordingly as shown
above and press the ―Add‖ button.
You can now verify the connectivity by sending ping packets as follows.
On Router R1:
R1#ping 10.1.2.2
R1#ping 10.1.3.2
On Router R2:
R2#ping 10.1.3.2
On Router R3:
R3#ping 10.1.2.2
Copyright@ CTTC
67
Copyright@ CTTC
68
Copyright@ CTTC
69
Configuring PC:
Copyright@ CTTC
70
Copyright@ CTTC
71
Configuration on R1
Router>enable
Router#configure t
Router(config)#interface f0/0
Router(config-if)#ip address 10.0.0.100 255.255.255.0
Router(config-if)#no shutdown
Router(config)#interface f0/1
Router(config-if)#ip add
Router(config-if)#ip address 172.16.1.1 255.255.255.0
Router(config-if)#no sh
Router(config-if)#no shutdown
Router(config-if)#ex
Copyright@ CTTC
72
Copyright@ CTTC
73
Copyright@ CTTC
74
Configuration on R0
Router>enable
Router#configure t
Router(config)#interface f0/0
Router(config-if)#ip address 172.16.1.1 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface f0/1
Router(config-if)#ip address 10.0.0.100 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#ex
Router(config)#access-list 100 permit tcp host 10.0.0.1 host 200.1.1.1 eq 80
Router(config)#access-list 100 deny tcp host 10.0.0.2 host 200.1.1.1 eq www
Router(config)#access-list 100 permit ip 10.0.0.0 0.0.0.255 any
Router(config)#access-list 100 permit ip any any
Router(config)#interface f0/0
Router(config-if)#ip access-group 100 out
Router(config-if)#ex
Router(config)#ip route 0.0.0.0 0.0.0.0 f0/0
Configuration on R1
Router>enable
Router#configure t
Router(config)#interface f0/0
Router(config-if)#ip address 172.16.1.2 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface f0/1
Router(config-if)#ip address 200.1.1.100 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#ex
Router(config)#ip route 0.0.0.0 0.0.0.0 f0/0
Copyright@ CTTC
75
Configuration R0
Router#configure terminal
Router(config)#ip nat inside source static 10.0.0.1 172.16.1.3
Router(config)#interface f0/0
Router(config-if)#ip nat outside
Router(config-if)#ex
Router(config)#interface f0/1
Router(config-if)#ip nat inside
Router(config-if)#ex
Copyright@ CTTC
76
Copyright@ CTTC
77
Ping from Pc1 & from Pc2 but not from Pc3
Router# show ip nat translations
Pro Inside global Inside local Outside local Outside global
tcp 172.16.1.3:1025 10.0.0.1:1025 200.1.1.1:80 200.1.1.1:80
tcp 172.16.1.4:1025 10.0.0.2:1025 200.1.1.1:80 200.1.1.1:80
Copyright@ CTTC
78
LAB: PAT
Objective: To Show Translation from One Public Ip Address to Many Private
Ip Address by Implementing Pat
Configuration on R1
Router(config)#ip nat pool abc 172.16.1.3 172.16.1.3 netmask 255.255.255.0
Router(config)#ip nat inside source list 10 pool abc overload
Router(config)#access-list 10 permit 10.0.0.0 0.0.0.255
Router(config)#interface f0/1
Router(config-if)#ip nat inside
Router(config-if)#ex
Router(config)#interface f0/0
Router(config-if)#ip nat outside
Router(config-if)#ex
Router(config)#ip route 0.0.0.0 0.0.0.0 f0/0
Copyright@ CTTC
79
Copyright@ CTTC
80
Configuration on R1
Router>enable
Router#configure terminal
Router(config)# interface s0/3/0
Router(config-if)#ip address 10.0.0.1 255.255.255.0
Router(config-if)#clock rate 64000
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface loopback 0
Router(config-if)#ip address 1.1.1.1 255.255.255.0
Router(config-if)#exit
Router(config)#router eigrp 9
Router(config-router)#no auto-summary
Router(config-router)#network 10.0.0.0
Router(config-router)#network 1.1.1.0
Router(config-router)#exit
Configuration on R2
Router>enable
Router#configure terminal
Router(config)#interface s0/3/0
Router(config-if)#ip address 10.0.0.2 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface loopback 0
Router(config-if)#ip address 2.2.2.2 255.255.255.0
Router(config-if)#exit
Router(config)#router eigrp 100
Router(config-router)#network 10.0.0.0
Router(config-router)#network 2.2.2.0
Router(config-router)#no auto-summary
Router(config-router)#exit
Copyright@ CTTC
81
Copyright@ CTTC
82
LAB:SYSLOG
OBJECTIVE: To Implement Syslog and to Show The Output it Generates On
the Syslog Server
Configuration on Router
Router>enable
Router#conf t
Router(config)#int fa0/0
Router(config-if)#ip address 10.0.0.1 255.0.0.0
Router(config-if)#no shut
Router(config-if)#exit
Router(config)#int fa0/1
Router(config-if)#ip address 20.0.0.1 255.0.0.0
Router(config-if)#no shut
Router(config)#service timestamps log datetime msec
Router(config)#logging host 20.0.0.2
Router(config)#logging trap debugging
Router(config)#end
*Mar 01, 00:04:47.044: *Mar 01, 00:04:47.044: %SYS-5-CONFIG_I: Configured from console by
console
Enter configuration commands, one per line. End with CNTL/Z.
Copyright@ CTTC
83
Copyright@ CTTC
84
Copyright@ CTTC