Gomath K8 Lab6 21feb2014

K8---Lab 6
SW1
en
conf t
defa in ra fa1/0/1 - 24
in ra fa1/0/19 - 24
sw t e d
sw m t
sw none
sw t n v 1
sh
no sh
ex
vl d t n
end
SW2-SW4
en
conf t
defa in ra fa0/1 - 24
in ra fa0/19 - 24
sw t e d
sw m t
sw none
sw t n v 1
sh
no sh
ex
vl d t n
end
SW1
en
conf t
ip routing
ip cef dis
ip multicast-r dis
vt m t
no vl 2-1000
vt do CCIE
vt pa cisco
vt ve 2
vt m s
vl 16
na VLAN_16_R1-SW1
VL 18
NA VLAN_18_R1-SW3
VL 28
NA VLAN_28_R2-SW3
VL 36
NA VLAN_36_R2-SW3
VL 45
NA VLAN_45_R4-R5
VL 68
NA VLAN_68_SW1-SW3
VL 69
NA VLAN_69_SW1-SW4
VL 89
NA VLAN_89_SW3-SW4
VL 100
NA VLAN_100_BB1
VL 200
NA VLAN_200_BB2
VL 300
NA VLAN_300_BB3
VL 500
NA VLAN_500_Clients
vl 999
NA Unused_Ports
in fa1/0/1
sw m a
sw ac v 18
no sh
in fa1/0/2
sw m a
sw ac vl 28
no sh
in fa1/0/3
sw m a
sw ac v 36
no sh
in fa1/0/4
sw m a
sw ac v 100
no sh
in fa1/0/5
sw m a
sw ac vl 200
no sh
in fa1/0/10
sw m a
sw ac vl 100
sp bpduf en
no sh
in ra fa1/0/6 - 9 , fa1/0/11 - 18 , fa1/0/25 - 48 , gi1/0/1 - 4

sw m a
sw ac v 999
sh
in vl 68
ip add 10.154.68.6 255.255.255.0
ip pim sparse-m
no sh
in vl 16
ip add 10.154.16.6 255.255.255.0
ip pim sparse-m
no sh
in vl 36
ip add 10.154.36.6 255.255.255.0
ip pim sparse-m
no sh
in vl 69
ip add 10.154.69.6 255.255.255.0
no sh
in lo0
ip add 154.6.6.6 255.255.255.255
ip pim sparse-m
no sh
end
SW2
en
conf t
ip routing
ip cef dis
ip vrf Site-1
rd 3:3
ip vrf Site-2
rd 2:2
vt m t
no vl 2-1000
vt do CCIE
vt pa cisco
vt ve 2
vt m c
in fa0/1
sw m a
sw ac v 16
no sh
in fa0/2
no sw
ip vr f Site-2
ip add 172.16.27.7 255.255.255.0
no sh
in fa0/3
no sw
ip vr f Site-1
ip add 172.16.37.7 255.255.255.0
no sh
in fa0/4
sw m a
sw ac v 45
no sh
in fa0/5
sw m a
sw ac v 45
no sh
in fa0/10
sw m a
sw ac v 200
sp bpduf en
no sh
in ra fa0/6 - 10 , fa0/11 - 18 , gi0/1 - 2

sw m a
sw ac v 999
sh
in lo0
ip add 154.7.7.7 255.255.255.255
no sh
in lo71
ip vr f Site-1
ip add 71.71.71.71 255.255.255.255
no sh
in lo72
ip vr f Site-2
ip add 72.72.72.72 255.255.255.255
no sh
end
SW3
en
conf t
ip routing
ip cef dis
ip multicast-r dis
vt m t
no vl 2-1000
vt do CCIE
vt pa cisco
vt ve 2
vt m c
in fa0/10
sw m a
sw ac vl 300
sp bpduf en
no sh
in ra fa0/1 - 9 , fa0/11 - 18 , gi0/1 - 2

sw m a
sw ac v 999
sh
ex
in vl 68
ip add 10.154.68.8 255.255.255.0
ip pim sparse-m
no sh
in vl 18
ip add 10.54.18.8 255.255.255.0
ip pim sparse-m
no sh
in vl 28
ip add 10.54.28.8 255.255.255.0
ip pim sparse-m
no sh
in vl 89
ip add 10.154.89.8 255.255.255.0
no sh
in vl 500
ip add 10.154.188.8 255.255.255.0
ip pim sparse-m
no sh
in lo0
ip add 154.8.8.8 255.255.255.255
ip pim sparse-m
no sh
end
SW4
en
conf t
ip routing
ip cef dis
vt m t
no vl 2-1000
vt do CCIE
vt pa cisco
vt ve 2
vt m c
in ra fa0/1 - 18 , gi0/1 - 2
sw m a
sw ac v 999
sh
ex
in vl 69
ip add 10.154.69.9 255.255.255.0
no sh
in vl 89
ip add 10.154.89.9 255.255.255.0
no sh
in vl 300
ip add 150.3.54.1 255.255.255.0
no sh
in lo0
ip add 154.9.9.9 255.255.255.255
no sh
end
R1
en
conf t
ip cef
ip multicast-r
mpl lab pr ld
mpl ld ro lo0 f
defa in fa0/0
defa in fa0/1
in fa0/0
ip add 10.54.18.1 255.255.255.0
ip pim sparse-m
no sh
in fa0/1
ip add 10.154.16.1 255.255.255.0
ip pim sparse-m
no sh
defa in se0/0/0
defa in se0/0/1
in se0/0/0
enca frame
ip add 10.54.14.1 255.255.255.0
fram map ip 10.54.14.4 200 b
fram map ip 10.54.14.1 200
ip pim sparse-m
mpl ip
no sh
in se0/0/1
enca fram
no sh
in se0/0/1.100 po
ip add 10.154.15.1 255.255.255.0
frame inte 100
ip pim sparse-m
mpl ip
no sh
in se0/0/1.54 po
ip add 10.54.15.1 255.255.255.0
frame inte 154
ip pim sparse-m
mpl ip
no sh
in lo0
ip add 154.1.1.1 255.255.255.255
ip pim sparse-m
no sh
end
R2
en
conf t
ip cef
ip multicast-r
mpl lab pr ld
mpl ld ro lo0 f
mpl ld ex
ip vrf Site-2
rd 2:2
ro i 2:2
ro e 2:2
ro i 3:3
defa in fa0/0
defa in fa0/1
in fa0/0
ip add 10.54.28.2 255.255.255.0
ip pim sparse-m
no sh
in fa0/1
ip vr f Site-2
ip add 172.16.27.2 255.255.255.0
no sh
defa in se0/0/0
defa in se0/0/1
in se0/0/0
enca frame
ip add 10.54.24.2 255.255.255.0
fram map ip 10.54.24.4 154 b
fram map ip 10.54.24.2 154
ip pim sparse-m
mpl ip
no sh
in lo0
ip add 154.2.2.2 255.255.255.255
ip pim sparse-m
no sh
end
R3
en
conf t
ip cef
ip multicast-r
mpl lab pr ld
mpl ld ro lo0 f
mpl ld ex
ip vrf Site-1
rd 3:3
ro i 2:2
ro e 3:3
ro i 3:3
defa in fa0/0
defa in fa0/1
in fa0/0
ip add 10.154.36.3 255.255.255.0
ip pim sparse-m
no sh
in fa0/1
ip vr f Site-1
ip add 172.16.37.3 255.255.255.0
no sh
defa in se0/0/0
in se0/0/0
ip add 10.154.35.3 255.255.255.0
ip pim sparse-m
mpl ip
no sh
in lo0
ip add 154.3.3.3 255.255.255.255
ip pim sparse-m
no sh
end
R4
en
conf t
frame swit
ip cef
ip multicast-r
mpl lab pr ld
mpl ld ro lo0 f
defa in fa0/0
defa in fa0/1
in fa0/0
ip add 150.1.54.1 255.255.255.0
no sh
in fa0/1
ip add 10.54.45.4 255.255.255.0
ip pim sparse-m
mpl ip
no sh
defa in se0/0/0
defa in se0/0/1
in se0/0/0
enca frame
fram intf dce
ip add 10.54.14.4 255.255.255.0
fram map ip 10.54.14.4 200
fram map ip 10.54.14.1 200 b
ip pim sparse-m
mpl ip
no sh
in se0/0/1
enca frame
fram intf dce
ip add 10.54.24.4 255.255.255.0
fram map ip 10.54.24.4 154
fram map ip 10.54.24.2 154 b
ip pim sparse-m
mpl ip
no sh
in lo0
ip add 154.4.4.4 255.255.255.255
ip pim sparse-m
no sh
end
R5
en
conf t
frame swit
ip cef
ip multicast-r
mpl lab pr ld
mpl ld ro lo0 f
defa in fa0/0
defa in fa0/1
in fa0/0
ip add 150.2.54.1 255.255.255.0
no sh
in fa0/1
ip add 10.54.45.5 255.255.255.0
ip pim sparse-m
mpl ip
no sh
defa in se0/0/0
defa in se0/0/1
in se0/0/0
enca fram
fram intf dce
no sh
in se0/0/0.100 po
ip add 10.154.15.5 255.255.255.0
frame inte 100
ip pim sparse-m
mpl ip
no sh
in se0/0/0.54 po
ip add 10.54.15.5 255.255.255.0
frame inte 154
ip pim sparse-m
mpl ip
no sh
in se0/0/1
ip add 10.154.35.5 255.255.255.0
ip pim sparse-m
mpl ip
no sh
in lo0
ip add 154.5.5.5 255.255.255.255
ip pim sparse-m
no sh
end
1.3
SW1
en
conf t
sp mo ra
sp vl 1-4094 pri 0
in ra fa1/0/1 - 2
sw port
sw port mac st
sw port max 1
sw port vi sh
no sh
end
SW2
en
conf t
sp mo ra
sp vl 1-4094 pri 4096
end
SW3 and SW4
en
conf t
sp mo ra
end
1.3 (Variation)
Sw1
en
conf t
sp mo mst
sp ms con
na cisco
r 1
i 3 vl 1-4094
i 1 vl 1,45,69,89,999
i 2 vl 16,18,28,36,68,100,200,300,500
sp ms 0-1 root pri

sp ms 2 root sec
end
SW2
en
conf t
sp mo mst
sp ms con
na cisco
r 1
i 3 vl 1-4094
i 1 vl 1,45,69,89,999
i 2 vl 16,18,28,36,68,100,200,300,500
sp ms 0-1 root sec

sp ms 2 root pri
end
SW3 and SW4
en
conf t
sp mo mst
sp ms con
na cisco
r 1
i 3 vl 1-4094
i 1 vl 1,45,69,89,999
i 2 vl 16,18,28,36,68,100,200,300,500
end
1.4
SW1
en
conf t
port loa dst-ip
in ra fa1/0/19 - 20
channel-g 13 mo ac
no sh
in ra fa1/0/21 - 22
channel-g 14 mo ac
no sh
in ra fa1/0/23 - 24
chanel-g 12 mo ac
no sh
end
SW2
en
conf t
port loa dst-ip
in ra fa0/19 - 20
channel-g 24 mo ac
no sh
in ra fa10/21 - 22
channel-g 23 mo ac
no sh
in ra fa0/23 - 24
chanel-g 21 mo ac
no sh
end
SW3
en
conf t
port loa dst-ip
in ra fa0/19 - 20
channel-g 31 mo ac
no sh
in ra fa10/21 - 22
channel-g 32 mo ac
no sh
in ra fa0/23 - 24
chanel-g 34 mo ac
no sh
end
SW4
en
conf t
port loa dst-ip
in ra fa0/19 - 20
channel-g 42 mo ac
no sh
in ra fa10/21 - 22
channel-g 41 mo ac
no sh
in ra fa0/23 - 24
chanel-g 43 mo ac
no sh
end
1.4 (Variation)
SW1
en
conf t
port loa src-dst-mac
in ra fa1/0/19 - 20
channel-g 13 mo des
no sh
in ra fa1/0/21 - 22
channel-g 14 mo des
no sh
in ra fa1/0/23 - 24
channel-g 12 mo des
no sh
end
SW2
en
conf t
in ra fa0/19 - 20
channel-g 24 mo des
no sh
in ra fa0/21 - 22
channel-g 23 mo des
no sh
in ra fa0/23 - 24
channel-g 21 mo des
no sh
end
SW3
en
conf t
in ra fa0/19 - 20
channel-g 31 mo des
no sh
in ra fa0/21 - 22
channel-g 32 mo des
no sh
in ra fa0/23 - 24
channel-g 34 mo des
no sh
end
SW4
en
conf t
in ra fa0/19 - 20
channel-g 42 mo des
no sh
in ra fa0/21 - 22
channel-g 41 mo des
no sh
in ra fa0/23 - 24
channel-g 43 mo des
no sh
end
1.5
SW3
en
conf t
ip acces ex GREEN
p t a eq smtp a
p t a a eq smtp
p t a eq www a
p t a a eq www
p u a eq domain a
p u a a eq domain
p icmp a a
vl acc AL 10
a f
mat ip add GREEN
vl fil AL vl 500
end
1.6
SW4
en
conf t
in ra fa0/1 - 5
sw mo a
sw ac v 500
sw bl un
sw bl mu
sw prot
sp portf
no sh
end
1.6 (Variations)
SW1
in fa1/0/18
sw m a
sw ac v 500
sw ports
sw port mac abcd.abcd.abcd
sw port vi shut
sw port aging stat
sw port aging time 10
sw port aging type inactive
err rec ca psecure-violation
err rec int 600
vl 2000
privat iso
vl 500
privat pri
priva ass 2000
sp mst co
i 2 vl 2000
in fa1/0/18
no sw ac vl 500
sw mo pri pro
sw pri map 500 2000
no sh
in fa1/0/16
no sw ac vl 999
sw mo pri host
sw pri host 500 2000
no sh
in fa1/0/17
no sw ac vl 999
sw mo pri host
sw pri host 500 2000
no sh
end
verification
sh port-sec address
SW2-SW4
en
conf t
vl 2000
priv iso
sp mst co
i 2 vl 2000
end
2.1
SW1
en
conf t
router os 100
router- 154.6.6.6
net 10.154.68.6 0.0.0.0 a 0

net 10.154.16.6 0.0.0.0 a 1
no net 10.154.36.1 0.0.0.0 a 1
net 10.154.36.6 0.0.0.0 a 1
net 154.6.6.6 0.0.0.0 a 0
are 1 nssa defa
are 0 fil pre SW3 out
ex
ip prefix-l SW3 seq 5 deny 10.154.188.0/24
ip prefix-l SW3 seq 10 per 0.0.0.0/0 le 32
in vl 68
ip os pri 255
in vl 16
ip os pri 255
in vl 36
ip os pri 255
end
SW3
en
conf t
router os 100
router- 154.8.8.8
net 10.154.68.8 0.0.0.0 a 0

net 10.154.188.8 0.0.0.0 a 500
net 154.8.8.8 0.0.0.0 a 0
are 0 fil pre SW3 out
ex
ip prefix-l SW3 seq 5 deny 10.154.188.0/24
ip prefix-l SW3 seq 10 per 0.0.0.0/0 le 32
end
R1
en
conf t
router os 100
router- 154.1.1.1
net 10.154.16.1 0.0.0.0 a 1
net 10.154.15.1 0.0.0.0 a 1
net 154.1.1.1 0.0.0.0 a 1
area 1 nssa
in fa0/1
ip os pri 0
end
R3
en
conf t
router os 100
router- 154.3.3.3
net 10.154.36.3 0.0.0.0 a 1
net 10.154.35.3 0.0.0.0 a 1
net 154.3.3.3 0.0.0.0 a 1
area 1 nssa
in fa0/0
ip os pri 0
end
R5
en
conf t
router os 100
router- 154.5.5.5
net 10.154.35.5 0.0.0.0 a 1
net 10.154.15.5 0.0.0.0 a 1
net 154.5.5.5 0.0.0.0 a 1
area 1 nssa
end
2.2
SW4
en
conf t
router ei 100
no au
net 150.3.54.1 0.0.0.0
end
SW3
en
conf t
router ei 54
no au
net 10.54.18.8 0.0.0.0
net 10.54.28.8 0.0.0.0
end
R1
en
conf t
router ei 54
no au
net 10.54.18.1 0.0.0.0
net 10.54.14.1 0.0.0.0
net 10.54.15.1 0.0.0.0
end
R2
en
conf t
router ei 54
no au
net 10.54.24.2 0.0.0.0
net 10.54.28.2 0.0.0.0
net 154.2.2.2 0.0.0.0
end
R4
en
conf t
router ei 54
no au
net 10.54.24.4 0.0.0.0
net 10.54.14.4 0.0.0.0
net 10.54.45.4 0.0.0.0
net 154.4.4.4 0.0.0.0
in fa0/1
delay 10000
end
R5
en
conf t
router ei 54
no au
net 10.54.15.5 0.0.0.0
net 10.54.45.5 0.0.0.0
in fa0/1
delay 10000
end
2.3
SW4
en
conf t
router r
ve 2
no au
pass de
no pass vl 69
no pass vl 89
no pass lo0
net 10.154.69.0
net 10.154.89.0
net 154.9.9.0
end
SW1
en
conf t
router r
ve 2
no au
pass de
no pass vl 69
net 10.154.69.0
end
SW3
en
conf t
router r
ve 2
no au
pass de
no pass vl 89
net 10.154.89.0
end
2.4
SW1
en
conf t
router r
red os 100 met 10
end
SW4
en
conf t
router r
red ei 100 met 3
router ei 100
red r met 10000 100 255 1 1500
end
2.5
R5
en
conf t
router ei 54
red os 100 met 10000 10 255 1 1500
router os 100
red ei 54 su
in se0/0/0.100
ip os co 2000
end
R1
en
conf t
router ei 54
dista ei 90 100
end
2.6
R1
en
conf t
router b 54
b rou 154.1.1.1
no bgp defa ip
add ipv4
nei IB peer
nei IB remote 54
nei IB up lo0
nei IB send-c
nei IB route-r
nei IB trans co ac
nei IB pass cisco
nei 154.2.2.2 pe IB
nei 154.3.3.3 pe IB
nei 154.4.4.4 pe IB
nei 154.5.5.5 pe IB
nei 154.6.6.6 pe IB
nei 154.8.8.8 pe IB
nei 154.2.2.2 ac
nei 154.3.3.3 ac
nei 154.4.4.4 ac
nei 154.5.5.5 ac
nei 154.6.6.6 ac
nei 154.8.8.8 ac
end
R2
en
conf t
router b 54
b rou 154.2.2.2
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
nei 154.1.1.1 send-c
nei 154.1.1.1 tran co pa
nei 154.1.1.1 pas cisco
end
R3
en
conf t
router b 54
b rou 154.3.3.3
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
end
R4
en
conf t
router b 54
b rou 154.4.4.4
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
nei 154.1.1.1 next-hop-s
end
R5
en
conf t
router b 54
b rou 154.5.5.5
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
end
SW1
en
conf t
router b 54
b rou 154.6.6.6
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
end
SW3
en
conf t
router b 54
b rou 154.8.8.8
no bgp defa ip
add ipv4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 ac
end
2.6 (Variation)
R1
en
conf t
router b 54
b rou 154.1.1.1
nei IB peer
nei IB remote 54
nei IB up lo0
nei IB send-c
nei IB route-r
nei IB transp co ac
nei IB pass cisco
nei 154.2.2.2 pe IB
nei 154.3.3.3 pe IB
nei 154.4.4.4 pe IB
nei 154.5.5.5 pe IB
nei 154.6.6.6 pe IB
nei 154.8.8.8 pe IB
end
R2
en
conf t
router b 54
b rou 154.2.2.2
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
nei 154.1.1.1 transp co pa
end
R3
en
conf t
router b 54
b rou 154.3.3.3
nei 154.1.1.1 remote 54
nei 154.1.1.1 up lo0
end
R4
en
conf t
router b 54
b rou 154.4.4.4
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
end
R5
en
conf t
router b 54
b rou 154.5.5.5
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
end
SW1
en
conf t
router b 54
b rou 154.6.6.6
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
end
SW3
en
conf t
router b 54
b rou 154.8.8.8
nei 154.1.1.1 remote 54

nei 154.1.1.1 up lo0
end
2.7
R4
en
conf t
router b 54
nei 150.1.54.254 remote 254
nei 150.1.54.254 route-m LO in
ex
route-m LO pe 10
set local 200
end
R5
en
conf t
router b 54
nei 150.2.54.254 remote 254
nei 150.2.54.254 route-m AS in
ex
route-m AS pe 10
set as pre 253
end
SW4
en
conf t
router b 144
b rou 154.9.9.9
nei 10.154.69.6 remote 54

nei 10.154.89.8 remote 54
max 2
end
SW1
en
conf t
router b 54
nei 10.154.69.9 remote 144
end
SW3
en
conf t
router b 54
nei 10.154.89.9 remote 144
end
2.8
SW2
en
conf t
router b 777
b rou 154.7.7.7
add ipv4 vrf Site-1
nei 172.16.37.3 remote 54
nei 172.16.37.3 ac
net 71.71.71.71 mask 255.255.255.255
add ipv4 vrf Site-2

nei 172.16.27.2 remote 54
nei 172.16.27.2 ac
net 72.72.72.72 mask 255.255.255.255
end
R2
en
conf t
router b 54
nei 154.5.5.5 remote 54
nei 154.5.5.5 up lo0
add vpnv4
nei 154.5.5.5 ac
nei 154.5.5.5 send-co both
add ipv4 vrf Site-2

nei 172.16.27.7 remote 777
nei 172.16.27.7 ac
nei 172.16.27.7 as-ove
end
R3
en
conf t
router b 54
nei 154.5.5.5 remote 54
nei 154.5.5.5 up lo0
add vpnv4
nei 154.5.5.5 ac
add ipv4 vrf Site-1

nei 172.16.37.7 remote 777
nei 172.16.37.7 ac
nei 172.16.37.7 as-ove
end
R5
en
conf t
router b 54
nei 154.2.2.2 remote 54
nei 154.2.2.2 up lo0
nei 154.3.3.3 remote 54

nei 154.3.3.3 up lo0
add vpnv4
nei 154.2.2.2 ac
nei 154.2.2.2 route-r
nei 154.3.3.3 ac
nei 154.3.3.3 route-r
end
R1
en
conf t
router ei 54
offset 1 (high value) fa0/0
access 1 per 154.2.2.2
end
2.9
SW1 and SW3
en
conf t
sdm pref dual defa
end
wr
reload
SW1
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.6.6.6
in vl 68
ipv6 add 2001:54:68::6/64
ipv6 os 2001 a 0
no sh
in lo0
ipv6 add 2001:54:6::6/128
ipv6 os 2001 a 0
no sh
end
SW3
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.8.8.8
redi ei 2001 in
ipv6 router ei 2001

router- 154.8.8.8
redi os 2001 met 1 1 1 1 1 in
no sh
in vl 68
ipv6 add 2001:54:68::8/64
ipv6 os 2001 a 0
no sh
in vl 18
ipv6 add 2001:54:18::8/64
ipv6 ei 2001
no sh
in vl 28
ipv6 add 2001:54:28::8/64
ipv6 ei 2001
no sh
in lo0
ipv6 add 2001:54:8::8/128
ipv6 os 2001 a 0
no sh
end
R1
en
conf t
ipv6 uni
ipv6 cef
ipv6 router ei 2001

router- 154.1.1.1
no sh
in fa0/0
ipv6 add 2001:54:18::1/64
ipv6 ei 2001
no sh
in se0/0/0
ipv6 add 2001:54:14::1/64
fram map ipv6 2001:54:14::1 200
fram map ipv6 2001:54:14::4 200 b
ipv6 ei 2001
no sh
in se0/0/1.54
ipv6 add 2001:54:15::1/64
ipv6 ei 2001
no sh
in lo0
ipv6 add 2001:54:1::1/128
ipv6 ei 2001
no sh
in tu 13
ipv6 add 2001:54:54:13::1/64
tu so lo0
tu de 154.3.3.3
tu mo gre ip
ipv6 ei 2001
end
R2
en
conf t
ipv6 uni
ipv6 cef
ipv6 router ei 2001

router- 154.2.2.2
no sh
in fa0/0
ipv6 add 2001:54:28::2/64
ipv6 ei 2001
no sh
in se0/0/0
ipv6 add 2001:54:24::2/64
fram map ipv6 2001:54:24::2 154
fram map ipv6 2001:54:24::4 154 b
ipv6 ei 2001
no sh
in lo0
ipv6 add 2001:54:2::2/128
ipv6 ei 2001
no sh
end
R3
en
conf t
ipv6 uni
ipv6 cef
ipv6 router ei 2001

router- 154.3.3.3
no sh
in tu 13
ipv6 add 2001:54:54:13::3/64
tu so lo0
tu de 154.1.1.1
tu mo gre ip
ipv6 ei 2001
end
R4
en
conf t
ipv6 uni
ipv6 cef
ipv6 router ei 2001

router- 154.4.4.4
no sh
in fa0/1
ipv6 add 2001:54:45::4/64
ipv6 ei 2001
no sh
in se0/0/0
ipv6 add 2001:54:14::4/64
fram map ipv6 2001:54:14::1 200 b
fram map ipv6 2001:54:14::4 200
ipv6 ei 2001
no sh
in se0/0/1
ipv6 add 2001:54:24::4/64
fram map ipv6 2001:54:24::2 154 b
fram map ipv6 2001:54:24::4 154
ipv6 ei 2001
no sh
in lo0
ipv6 add 2001:54:4::4/128
ipv6 ei 2001
no sh
end
R5
en
conf t
ipv6 uni
ipv6 cef
ipv6 router ei 2001

router- 154.5.5.5
no sh
in fa0/1
ipv6 add 2001:54:45::5/64
ipv6 ei 2001
no sh
in se0/0/1.54
ipv6 add 2001:54:15::5/64
ipv6 ei 2001
no sh
in lo0
ipv6 add 2001:54:5::5/128
ipv6 ei 2001
no sh
end
2.9 (Variation)
SW1 and SW3
en
conf t
sdm pref dual defa
end
wr
reload
SW1
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.6.6.6
area 1 nssa defa
in vl 68
ipv6 add 2001:54:68::6/64
ipv6 os 2001 a 0
no sh
in vl 16
ipv6 add 2001:54:16::6/64
ipv6 os 2001 a 1
no sh
in vl 36
ipv6 add 2001:54:36::6/64
ipv6 os 2001 a 1
no sh
in lo0
ipv6 add 2001:54:6::6/128
ipv6 os 2001 a 0
no sh
end
SW3
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.8.8.8
in vl 68
ipv6 add 2001:54:68::8/64
ipv6 os 2001 a 0
no sh
in lo0
ipv6 add 2001:54:8::8/64
ipv6 os 2001 a 0
no sh
end
R1
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.1.1.1
are 1 nssa
in fa0/1
ipv6 add 2001:54:16::1/64
ipv6 os 2001 a 1
no sh
in se0/0/1.100
ipv6 add 2001:54:15::1/64
ipv6 os 2001 a 1
no sh
in lo0
ipv6 add 2001:54:1::1/128
ipv6 os 2001 a 1
no sh
end
R3
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.3.3.3
are 1 nssa
in fa0/0
ipv6 add 2001:54:36::3/64
ipv6 os 2001 a 1
no sh
in se0/0/0
ipv6 add 2001:54:35::3/64
ipv6 os 2001 a 1
no sh
in lo0
ipv6 add 2001:54:3::3/128
ipv6 os 2001 a 1
no sh
end
R5
en
conf t
ipv6 uni
ipv6 cef
ipv6 router os 2001

router- 154.5.5.5
are 1 nssa
red static
in se0/0/1
ipv6 add 2001:54:35::5/64
ipv6 os 2001 a 1
no sh
in se0/0/0.100
ipv6 add 2001:54:15::5/64
ipv6 os 2001 a 1
no sh
in lo0
ipv6 add 2001:54:5::5/128
ipv6 os 2001 a 1
no sh
in tun45
tu so fa0/1
ipv6 add (genrel prefix of Fa0/1)
tu mod ipv6ip 6to4
ex
ipv6 route 2002::/16 tun 45

end
R4
en
conf t
ipv6 uni
ipv6 cef
in tun45
tu so fa0/1
ipv6 add (genrel prefix of Fa0/1)
tu mod ipv6ip 6to4
ex
ipv6 route 2002::/16 tun 45

ipv6 route 2001:54:8::8/64 (R5 of fa0/1 genral prefix IP address)
end
3.1
R2
en
conf t
in lo1
ip add 200.100.100.100 255.255.255.255
ip pim sparse-m
no sh
router ei 54
net 200.100.100.100 0.0.0.0
ip pim rp-can lo1

ip pim bsr-c lo1
ip msdp peer 154.3.3.3 con lo0

ip msdp ori lo0
end
R3
en
conf t
in lo1
ip add 200.100.100.100 255.255.255.255
ip pim sparse-m
no sh
router os 100
net 200.100.100.100 0.0.0.0 a 1
ip pim rp-can lo1

ip pim bsr-c lo1
ip msdp peer 154.2.2.2 con lo0

ip msdp ori lo0
end
R4
en
conf t
in fa0/1
ip igmp join-g 232.1.1.1
end
3.2
R2 and R3
en
conf t
ip pim accept-reg li 101
ip access ex 101
per ip any 10.154.68.0 0.0.0.255
ip pim rp-ca lo1 grou 23

acces 23 pe 232.1.1.1
end
4.1
R4
en
conf t
in fa0/1
gl 0 10.54.45.254
gl 0 pree
gl 0 pri 120
gl 0 tim 1 3
gl 0 load wei
gl 0 wei 50
gl 0 authen md5 key-s cisco
end
R5
en
conf t
in fa0/1
gl 0 10.54.45.254
gl 0 pree
gl 0 pri 100
gl 0 tim 1 3
gl 0 load wei
gl 0 wei 150
gl 0 authen md5 key-s cisco
end
4.2 (Variation)
R4
en
conf t
ip forward-protocol udp bootpc
service dhcp
in fa0/1
ip helper-add 10.54.99.99
vrrp 1 ip 10.54.45.1
vrrp 1 pree
vrrp 1 pri 150
vrrp 1 timer adver msec 300
vrrp 2 ip 10.54.45.254
vrrp 2 pree
vrrp 2 pri 50
end
R5
en
conf t
ip forward-protocol udp bootpc
service dhcp
in fa0/1
ip helper-add 10.54.99.99
vrrp 1 ip 10.54.45.1
vrrp 1 pree
vrrp 1 pri 100
vrrp 1 timer learn
vrrp 2 ip 10.54.45.254
vrrp 2 pree
vrrp 2 pri 150
end
4.3
R1
en
conf t
ntp master 1
ntp upda
clo cal
ntp so lo0
end
R3 and R5
en
conf t
ntp server 154.1.1.1
ntp updat
ntp so lo0
end
4.4
R5
en
conf t
ip domain name cisco.com

crypto key genr rsa
1024
ip ssh max 16
usern admin pri 15 pas ccie

usern guest pri 1 pass cisco
line vty 0 15
login local
transport inpu ssh
line con 0
no login local
end
4.5 (Variation)
R5
en
conf t
ip domain name cisco.com

crypto key genr rsa
1024
ip ssh max 16
usern admin pri 15 pas ccie

usern guest pri 1 pass cisco
aaa new-model
aaa authent login ssh local
service linenumber
line vty 0 15
login local
transport inpu ssh
line con 0
no login local
end
4.6
SW3
en
conf t
in lo148
ip add 148.8.0.8 255.255.255.255
no sh
router ei 54
net 148.8.0.8 0.0.0.0
route-map PBR per 10

mat ip add 134
set in vl 18 null0
access 134 per ip host 148.8.0.8 host 148.4.0.4
ip local policy route-map PBR
end
R4
en
conf t
in lo148
ip add 148.4.0.4 255.255.255.255
no sh
router ei 54
net 148.4.0.4 0.0.0.0
end
4.7
R5
en
conf t
class-map match-all SSH

match access name SSH
ip access ex SSH
den tcp 10.54.18.0 0.0.0.255 host 10.154.35.5 eq ssh
per tcp a a eq ssh
class-map match-any BLOCK

match access name HTTP
match access name ALL_ICMP
ip access ext HTTP

per tcp 10.154.188.0 0.0.0.255 an eq 80
per tcp 10.154.188.0 0.0.0.255 an eq 443
ip access ext ALL_ICMP

per icmp a a
class-map match-all ICMP_LIMIT

match access name ICMP_ECHO
ip access ext ICMP_ECHO

per icmp a a echo
per icmp a a echo-reply
policy-map CONTROL
class SSH
police cir 16000
confirm-ac transmit
exceed-ac drop
class ICMP_LIMIT
police rate 100 pps burst 10 packets
confirm-ac transmit
excee-ac drop
class block
drop
control-plane
service-policy in CONTROL
end
5.1
R1
en
conf t
archive
log config
loggin enable
loggin size 10
hidekeys
notify syslog
ex
no logging buffer
loggin on
loggin host 10.154.68.100
end
5.2
R3
en
conf t
event man app ABC

event syslog pattern ".*SYS-5-RESTART.*"
action 1.0 cli command "enable"

action 2.0 cli command "conf t"
action 3.0 cli command "int fa0/0"
action 4.0 cli command "shut"
action 5.0 cli command "no shut"
action 6.0 cli command "int fa0/1"
action 7.0 cli command "shut"
action 8.0 cli command "no shut"

Gomath K8 Lab6 21feb2014

Încărcat de

Informații document

Titlu original

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

Gomath K8 Lab6 21feb2014

Încărcat de

Drepturi de autor:

Formate disponibile

K8---Lab 6

in ra fa1/0/6 - 9 , fa1/0/11 - 18 , fa1/0/25 - 48 , gi1/0/1 - 4

in ra fa0/6 - 10 , fa0/11 - 18 , gi0/1 - 2

in ra fa0/1 - 9 , fa0/11 - 18 , gi0/1 - 2

SW3 and SW4

sp ms 0-1 root pri

sp ms 0-1 root sec

SW3 and SW4

net 10.154.68.6 0.0.0.0 a 0

net 10.154.68.8 0.0.0.0 a 0

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 154.1.1.1 remote 54

nei 10.154.69.6 remote 54

add ipv4 vrf Site-2

add ipv4 vrf Site-2

add ipv4 vrf Site-1

nei 154.3.3.3 remote 54

SW1 and SW3

ipv6 router os 2001

ipv6 router os 2001

ipv6 router ei 2001

ipv6 router ei 2001

ipv6 router ei 2001

ipv6 router ei 2001

ipv6 router ei 2001

ipv6 router ei 2001

SW1 and SW3

ipv6 router os 2001

ipv6 router os 2001

ipv6 router os 2001

ipv6 router os 2001

ipv6 router os 2001

ipv6 route 2002::/16 tun 45

ipv6 route 2002::/16 tun 45

ip pim rp-can lo1

ip msdp peer 154.3.3.3 con lo0

ip pim rp-can lo1

ip msdp peer 154.2.2.2 con lo0

ip pim rp-ca lo1 grou 23

ip domain name cisco.com

usern admin pri 15 pas ccie

ip domain name cisco.com

usern admin pri 15 pas ccie

route-map PBR per 10

access 134 per ip host 148.8.0.8 host 148.4.0.4

ip local policy route-map PBR

class-map match-all SSH

class-map match-any BLOCK

ip access ext HTTP

ip access ext ALL_ICMP

class-map match-all ICMP_LIMIT

ip access ext ICMP_ECHO

event man app ABC

action 1.0 cli command "enable"