CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

Actividad 7.4.3: Resolucin de problemas de DHCP y NAT

Diagrama de Topologa

Tabla de direccionamiento
Dispositivo Interfaz S0/0/0 R1 Fa0/0 Fa0/1 S0/0/0 R2 ISP S0/0/1 Fa0/0 S0/0/1 Direccin IP 172.16.0.1 172.16.10.1 172.16.11.1 172.16.0.2 209.165.201.1 172.16.20.1 209.165.201.2 Mscara de subred 255.255.255.252 255.255.255.0 255.255.255.0 255.255.255.252 255.255.255.252 255.255.255.0 255.255.255.252

Objetivos de aprendizaje
Al completar esta prctica de laboratorio podr:

Detectar y corregir errores de red Documentar la red corregida

Escenario
Un ingeniero de redes inexperto configur los routers de su empresa. Diversos errores en la configuracin produjeron problemas de conectividad. Su jefe le pidi que resuelva y corrija los errores de configuracin y que documente su trabajo. Detecte y corrija los errores utilizando sus conocimientos del DHCP, la NAT y los mtodos estndar de evaluacin. Asegrese de que todos los clientes tengan conectividad total.

CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

Tarea 1: Detectar y corregir errores de red

Utilice los comandos de resolucin de problemas para detectar los errores y luego corregirlos. Una vez que se hayan corregido todos los errores, debe poder hacer ping desde PC1 y PC2 hasta el ISP. El ISP debe poder hacer ping al servidor Web interno en su direccin IP pblica.

Tarea 2: Documentar la red corregida

En cada router, ejecute el comando show run y capture las configuraciones.

Configuraciones de los routers al inicio

R1#sh run Building configuration... Current configuration : 1083 bytes ! version 12.3 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname R1 ! ! ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ! ip dhcp excluded-address 172.16.10.1 172.16.10.3 ip dhcp excluded-address 172.16.11.1 172.16.11.3 ! ip dhcp pool R1_LAN10 network 172.16.10.0 255.255.255.0 dns-server 172.16.20.254 ip dhcp pool R1_LAN11 network 172.16.11.0 255.255.255.0 dns-server 172.16.20.254 ! ! ! ! ! ! ! no ip domain-lookup ! ! ! ! ! !

CISCO NETWORKING ACADEMY CISCO 3 interface FastEthernet0/0 ip address 172.16.10.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 ip address 172.16.11.1 255.255.255.0 duplex auto speed auto ! interface Serial0/0/0 ip address 172.16.0.1 255.255.255.252 clock rate 125000 shutdown ! interface Serial0/0/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router rip version 2 network 172.16.0.0 no auto-summary ! ip classless ! ! ! banner motd ^CAUTHORIZED ACCESS ONLY^C ! ! ! ! line con 0 password cisco login line vty 0 4 password cisco login ! ! ! end R1# R2#sh run Building configuration...

MIGUEL GONZLEZ POMPOSO

CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

Current configuration : 1134 bytes ! version 12.3 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname R2 ! ! ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ! ! ! ! ! ! ! ! ! no ip domain-lookup ! ! ! ! ! ! interface FastEthernet0/0 ip address 172.16.20.1 255.255.255.0 ip nat inside duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/0/0 ip address 172.16.0.2 255.255.255.252 ! interface Serial0/0/1 ip address 209.165.201.1 255.255.255.252 ip nat outside clock rate 125000 ! interface Vlan1

CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

no ip address shutdown ! router rip version 2 network 172.16.0.0 no auto-summary ! ip nat pool NAT_POOL 209.165.201.9 209.165.201.14 netmask 255.255.255.248 ip nat inside source list NAT_ACL pool NATPOOL overload ip nat inside source static 172.16.20.254 209.165.201.30 ip classless ip route 0.0.0.0 0.0.0.0 209.165.201.2 ! ! ip access-list standard NAT_ACL permit 172.16.10.0 0.0.0.255 ! banner motd ^CAUTHORIZED ACCESS ONLY^C ! ! ! ! line con 0 password cisco login line vty 0 4 password cisco login ! ! ! end R2# ISP#sh run Building configuration... Current configuration : 759 bytes ! version 12.3 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname ISP ! ! ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 !

CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

! ! ! ! ! ! ! ! ! no ip domain-lookup ! ! ! ! ! ! interface FastEthernet0/0 no ip address duplex auto speed auto shutdown ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/0/0 no ip address shutdown ! interface Serial0/0/1 ip address 209.165.201.2 255.255.255.252 ! interface Vlan1 no ip address shutdown ! ip classless ip route 209.165.200.0 255.255.255.224 Serial0/0/1 ! ! ! banner motd ^CAUTHORIZED ACCESS ONLY^C ! ! ! ! line con 0 password cisco

CISCO NETWORKING ACADEMY CISCO 3 login line vty 0 4 password cisco login ! ! ! end

MIGUEL GONZLEZ POMPOSO

ISP#

Configuraciones de los routers despus de la resolucin de problemas

R1#sh run Building configuration... Current configuration : 1129 bytes ! version 12.3 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname R1 ! ! ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ! ip dhcp excluded-address 172.16.10.1 172.16.10.3 ip dhcp excluded-address 172.16.11.1 172.16.11.3 ! ip dhcp pool R1_LAN10 network 172.16.10.0 255.255.255.0 default-router 172.16.10.1 dns-server 172.16.20.254 ip dhcp pool R1_LAN11 network 172.16.11.0 255.255.255.0 default-router 172.16.11.1 dns-server 172.16.20.254 ! ! ! ! ! ! ! no ip domain-lookup !

CISCO NETWORKING ACADEMY CISCO 3 ! ! ! ! ! interface FastEthernet0/0 ip address 172.16.10.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 ip address 172.16.11.1 255.255.255.0 duplex auto speed auto ! interface Serial0/0/0 ip address 172.16.0.1 255.255.255.252 clock rate 125000 ! interface Serial0/0/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router rip version 2 network 172.16.0.0 no auto-summary ! ip classless ! ! ! banner motd ^CAUTHORIZED ACCESS ONLY^C ! ! ! ! line con 0 password cisco login line vty 0 4 password cisco login ! ! ! end

MIGUEL GONZLEZ POMPOSO

CISCO NETWORKING ACADEMY CISCO 3 R1# R2#sh run Building configuration...

MIGUEL GONZLEZ POMPOSO

Current configuration : 1249 bytes ! version 12.3 no service timestamps log datetime msec no service timestamps debug datetime msec no service password-encryption ! hostname R2 ! ! ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ! ! ! ! ! ! ! ! ! no ip domain-lookup ! ! ! ! ! ! interface FastEthernet0/0 ip address 172.16.20.1 255.255.255.0 ip nat inside duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/0/0 ip address 172.16.0.2 255.255.255.252 ip nat inside ! interface Serial0/0/1 ip address 209.165.201.1 255.255.255.252

CISCO NETWORKING ACADEMY CISCO 3

MIGUEL GONZLEZ POMPOSO

ip nat outside clock rate 125000 ! interface Vlan1 no ip address shutdown ! router rip version 2 network 172.16.0.0 default-information originate no auto-summary ! ip nat pool NAT_POOL 209.165.201.9 209.165.201.14 netmask 255.255.255.248 ip nat inside source list NAT_ACL pool NAT_POOL overload ip nat inside source static 172.16.20.254 209.165.201.30 ip classless ip route 0.0.0.0 0.0.0.0 209.165.201.2 ip route 0.0.0.0 0.0.0.0 Serial0/0/1 ! ! ip access-list standard NAT_ACL permit 172.16.10.0 0.0.0.255 permit 172.16.11.0 0.0.0.255 ! banner motd ^CAUTHORIZED ACCESS ONLY^C ! ! ! ! line con 0 password cisco login line vty 0 4 password cisco login ! ! ! end R2#