1. Kyle Fitzpatrick
CIT-274 Packet Tracer 9.3.1.2
HQ(config)#ipdomain-name CCNASkills.com
HQ(config)#cryptokeygenerate rsa
HQ(config)#username adminpasswordadminonly
HQ(config)#line vty015
HQ(config-line)#transportinputssh
HQ(config-line)#loginlocal
HQ(config-line)#exit
HQ(config)#ipsshversion2
HQ(config)#ipsshauthentication-retries2
HQ(config)#ipsshtime-out60
HQ(config)#interfaces0/0/0
HQ(config-if)#encapsulationframe-relay
HQ(config-if)#frame-relaylmi q933a
HQ(config-if)#noshutdown
HQ(config-if)#interface s0/0/0.41point-to-point
HQ(config-subif)#ipaddress10.255.255.1 255.255.255.252
HQ(config-subif)#frame-relayinterface-dlci 41
HQ(config-subif)#exit
HQ(config)#username ISPpasswordcisco
HQ(config)#interfaces0/1/0
HQ(config-if)#encapsulation ppp
HQ(config-if)#pppauthenticationchap
HQ(config-if)#exit
HQ(config)#username NewBpasswordcisco
HQ(config)#interfaces0/0/1
HQ(config-if)#encapsulationppp
HQ(config-if)#pppauthenticationpap
HQ(config-if)#ppppapsent-usernameHQpasswordcisco
HQ(config-if)#exit
HQ(config)#ipaccess-liststandardNAT
HQ(config-std-nacl)#permit10.0.0.00.255.255.255
HQ(config-std-nacl)#exit
HQ(config)#ipnatpool HQ209.165.200.241 209.165.200.245 netmask255.255.255.248
HQ(config)#ipnatinside source listNATpool HQ
HQ(config)#ipnatinside source static10.0.1.2 209.165.200.246
HQ(config)#interfaces0/1/0
HQ(config-if)#ipnatoutside
HQ(config-if)#interface g0/0
HQ(config-if)#ipnatinside
HQ(config-if)#interface s0/0/0.41
HQ(config-subif)#ipnatinside
HQ(config-subif)#interface s0/0/1
HQ(config-if)#ipnatinside
HQ(config)#iproute 0.0.0.00.0.0.0 s0/1/0
HQ(config)#iproute 10.4.5.0 255.255.255.0 s0/0/1

2. Kyle Fitzpatrick
HQ(config)#routereigrp100
HQ(config-router)#noauto-summary
HQ(config-router)#redistribute static
HQ(config-router)#network10.0.0.0 0.255.255.255
HQ(config-router)#passive-interface g0/0
HQ(config-router)#passive-interface s0/0/1
HQ(config-router)#passive-interface s0/1/0
B1(config)#interface s0/0/0
B1(config-if)#encapsulationframe-relay
B1(config-if)#frame-relaylmi q933a
B1(config-if)#noshutdown
B1(config-if)#exit
B1(config)#ipdhcpexcluded-address10.1.20.1 10.1.20.10
B1(config)#ipdhcppool VLAN20
B1(dhcp-config)#network10.1.20.0 255.255.255.0
B1(dhcp-config)#default-router10.1.20.1
B1(dhcp-config)#dns-server10.0.1.4
B1(dhcp-config)#exit
B1(config)#interface g0/0
B1(config-if)#noshutdown
B1(config-if)#interface g0/0.10
B1(config-subif)#encapsulationdot1q10
B1(config-subif)#ipaddress10.1.10.1 255.255.255.0
B1(config-subif)#interface g0/0.20
B1(config-subif)#encapsulationdot1q20
B1(config-subif)#ipaddress10.1.20.1 255.255.255.0
B1(config-subif)#interface g0/0.30
B1(config-subif)#encapsulationdot1q30
B1(config-subif)#ipaddress10.1.30.1 255.255.255.0
B1(config-subif)#interface g0/0.99
B1(config-subif)#encapsulationdot1q99 native
B1(config-subif)#ipaddress10.1.99.1 255.255.255.0
B1(config-subif)#exit
B1(config)#routereigrp100
B1(config-router)#noauto-summary
B1(config-router)#network10.0.0.00.255.255.255
B1(config-router)#passive-interface g0/0
B1(config-router)#passive-interface g0/0.10
B1(config-router)#passive-interface g0/0.20
B1(config-router)#passive-interface g0/0.30
B1(config-router)#passive-interface g0/0.99
B1(config-router)#exit
B1(config)#interface s0/0/0
B1(config-if)#ipsummary-addresseigrp100 10.1.0.0 255.255.0.0

3. Kyle Fitzpatrick
B1-S2(config)#ipdefault-gateway10.1.99.1
B1-S2(config)#vlan10
B1-S2(config-vlan)#name Admin
B1-S2(config-vlan)#vlan20
B1-S2(config-vlan)#name Sales
B1-S2(config-vlan)#vlan30
B1-S2(config-vlan)#name Production
B1-S2(config-vlan)#vlan99
B1-S2(config-vlan)#name Mgmt&Native
B1-S2(config-vlan)#vlan999
B1-S2(config-vlan)#name BlackHole
B1-S2(config-vlan)#exit
B1-S2(config)#interfacerange fa0/1-4
B1-S2(config-if-range)#switchportmode trunk
B1-S2(config-if-range)#switchporttrunknative vlan99
B1-S2(config-if-range)#noshutdown
B1-S2(config-if-range)#exit
B1-S2(config)#interfacevlan99
B1-S2(config-if)#ipaddress10.1.99.22 255.255.255.0
B1-S2(config-if)#exit
B1-S2(config)#interfacefa0/6
B1-S2(config-if)#switchportmode access
B1-S2(config-if)#switchportaccessvlan10
B1-S2(config-if)#interface fa0/11
B1-S2(config-if)#switchportmode access
B1-S2(config-if)#switchportaccessvlan20
B1-S2(config-if)#interface fa0/16
B1-S2(config-if)#switchportmode access
B1-S2(config-if)#switchportaccessvlan30
B1-S2(config-if)#exit
B1-S2(config)#interfacerange fa0/6,fa0/11,fa0/16
B1-S2(config-if-range)#noshutdown
B1-S2(config-if-range)#switchportport-security
B1-S2(config-if-range)#switchportport-securitymaximum1
B1-S2(config-if-range)#switchportport-securitymac-addresssticky
B1-S2(config-if-range)#switchportport-securityviolationshutdown
B1-S2(config-if-range)#exit
B1-S2(config)#interfacerange fa0/5,fa0/7-10,fa0/12-15,fa0/17-24
B1-S2(config-if-range)#switchportmode access
B1-S2(config-if-range)#switchportaccessvlan999

4. Kyle Fitzpatrick
B1-S2(config-if-range)#shutdown
B1-S2(config-if-range)#interface range g0/1-2
B1-S2(config-if-range)#switchportmode access
B1-S2(config-if-range)#switchportaccessvlan999
B1-S2(config-if-range)#shutdown
HQ(config)#ipaccess-listextendedHQINBOUND
HQ(config-ext-nacl)#permittcpanyhost209.165.200.246 eqwww
HQ(config-ext-nacl)#permittcpanyanyestablished
HQ(config-ext-nacl)#permiticmpanyanyecho-reply
HQ(config-ext-nacl)#denyipanyany
HQ(config-ext-nacl)#exit
HQ(config)#interfaces0/1/0
HQ(config-if)#ipaccess-groupHQINBOUNDin