Daniel Viveros Sepulveda, profile picture
Uploaded byDaniel Viveros Sepulveda
DOCX, PDF34 views

Prueba 2 2015

This document contains the configurations of three switches - ALS1, DLS1, and DLS2. ALS1 connects to DLS1 and DLS2 via port channels. DLS1 and DLS2 each have VLANs configured for different departments and services. They are also configured with HSRP for default gateways and EIGRP for routing. Interfaces are configured for trunking between the switches and access ports for end devices. Basic device settings like SSH, logging, SNMP are also configured.

Embed presentation

Download to read offline
PRUEBA N° 2 DTR8501 Su compañía ha decidido implementar varios de los nuevos servicios basados en Internet. Los servicios web actuales que ofrece la empresa están alojados en un centro de datos externo. Se ha decidido construir un centro de datos dentro de la empresa de la que los nuevos servicios se encuentran alojado. Los servidores que están actualmente alojados externamente también se trasladaran al centro de datos. La compañía cuenta actualmente con un único proveedor de acceso a Internet. Se le ha asignado un AS (65501) y un bloque de direcciones 172.30.1.0/27, los cuales serán utilizados para los nuevos servicios. Después de consultar con el ISP, se ha decidido utilizar BGP entre el borde de la red del router R1 y el ISP (R2). Desde el Router R1 se anuncia solo el bloque de direcciones IP 172.30.1.0/27 al ISP (R2). Ningún otro prefijo puede ser anunciado. Esto garantiza que sólo el bloque de dirección de red asignada será recibido por el ISP. Los ISPs suelen colocar filtros en sus routers de borde para evitar que los clientes accidentalmente anunciar rutas que no les pertenecen. El router ISP enviará una ruta por defecto al router R1 a través de BGP. La ruta por defecto será redistribuida en EIGRP por el router R1. Ninguna otra ruta debe ser redistribuida. Para los demás dispositivos, que tienen direcciones IP en el rango 10.x.0.0/16, se usa la Traducción de Direcciones de Red (NAT), y su acceso a Internet no debería verse afectado por la configuración de BGP. Una vez realizado lo anterior, se perdió conectividad a Internet, por lo cual se les solicita verificar y solucionar los problemas existentes en esta nueva configuración.
Switch ALS1 ! hostname ALS1 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384 enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! archive log config logging size 50 notify syslog ! spanning-tree mode rapid-pvst spanning-tree portfast default ! interface Vlan1 no ip address shutdown ! vlan X10 name OFFICE ! vlan X20 name VOICE ! vlan X30 name GUEST ! vlan 100 name MGMT ! vlan 900 name NATIVE !
vlan 999 name UNUSED ! ip telnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel1 description Channel to DLS1 no shutdown ! interface Port-channel2 description Channel to DLS2 no shutdown ! interface FastEthernet0/1 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range FastEthernet0/2 - 3 description Channel to DLS1 switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,100 switchport mode trunk switchport nonegotiate channel-group 1 mode on no shutdown ! interface range FastEthernet0/4 - 5 description Channel to DLS2 switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,100 switchport mode trunk switchport nonegotiate channel-group 2 mode on no shutdown ! interface range FastEthernet0/6 - 7 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface FastEthernet0/8 description Conexion Hacia PC 1 switchport mode access switchport access vlan x10 switchport nonegotiate no cdp enable spanning-tree portfast no shut ! interface FastEthernet0/9 - 24 description Unused
switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range gigabitethernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan100 ip address 10.X.100.1 255.255.255.0 no shutdown ! ip default-gateway 10.x.100.254 ! ip http server ip http secure-server ! logging source-interface Vlan100 logging 10.X.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server host 10.x.50.1 version 2c cisco snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps vlan-membership ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Switch DLS1 hostname DLS1 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384
enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip routing ! ip domain name tshoot.net ! ip dhcp excluded-address 10.X.10.252 10.1.10.254 ip dhcp excluded-address 10.X.20.252 10.1.20.254 ip dhcp excluded-address 10.X.30.252 10.1.30.254 ! ip dhcp pool OFFICE network 10.X.10.0 255.255.255.0 default-router 10.X.10.254 domain-name tshoot.net ! ip dhcp pool VOICE network 10.X.20.0 255.255.255.0 default-router 10.X.20.254 domain-name tshoot.net ! ip dhcp pool GUEST network 10.X.30.0 255.255.255.0 default-router 10.X.30.254 domain-name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! errdisable recovery cause bpduguard ! archive log config logging size 50 notify syslog hidekeys ! spanning-tree mode rapid-pvst ! spanning-tree vlan x10,x30,100 priority 24576 spanning-tree vlan x20,x50 priority 28672 ! vlan x10
name OFFICE ! vlan x20 name VOICE ! vlan x30 name GUEST ! vlan x50 name SERVERS ! vlan 100 name MGMT ! vlan 200 name TRANS ! vlan 900 name NATIVE ! vlan 999 name UNUSED ! ip telnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel1 description Channel to ALS1 no shut ! interface Port-channel10 description Channel to DLS2 no shut ! interface FastEthernet0/1 description DLS1 to R1 no switchport ip address 10.x.2.1 255.255.255.252 no shut ! interface range FastEthernet0/2 - 3 description Channel to ALS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,100 switchport mode trunk switchport nonegotiate channel-group 1 mode on no shut ! interface range FastEthernet0/4 - 5 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown !
! interface range FastEthernet0/6 - 7 description Channel to DLS2 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,x50,60,100,200 switchport mode trunk switchport nonegotiate no shut ! interface FastEthernet0/8 description Conexion Hacia PC 3 switchport mode access switchport access vlan X50 switchport nonegotiate no cdp enable spanning-tree portfast no shut ! interface range gigabitethernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan1 no ip address shutdown interface Vlan10 ip address 10.x.10.252 255.255.255.0 standby 10 ip 10.x.10.254 standby 10 priority 110 standby 10 preempt ! interface Vlan20 ip address 10.x.20.252 255.255.255.0 standby 20 ip 10.x.20.254 standby 20 preempt ! interface Vlan30 ip address 10.x.30.252 255.255.255.0 standby 30 ip 10.x.30.254 standby 30 priority 110 standby 30 preempt ! interface Vlan50 ip address 10.x.50.252 255.255.255.0 standby 50 ip 10.x.50.254 standby 50 preempt ! interface Vlan100 ip address 10.x.100.252 255.255.255.0 standby 100 ip 10.x.100.254 standby 100 priority 110 standby 100 preempt !
interface Vlan60 ip address 172.60.1.1 255.255.255.224 ! interface Vlan200 ip address 10.x.200.252 255.255.255.0 ! router eigrp 1 passive-interface default no passive-interface Fa0/1 no passive-interface vlan200 no auto-summary network 10.x.0.0 0.0.255.255 ! ip classless ip http server ip http secure-server ! logging source-interface Vlan100 logging 10.X.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server host 10.x.50.1 version 2c cisco snmp-server enable traps eigrp snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps config snmp-server enable traps hsrp snmp-server enable traps vlan-membership snmp-server enable traps errdisable ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Switch DLS2 hostname DLS2 ! service timestamps debug datetime msec service timestamps log datetime service password-encryption
! logging buffered 16384 enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip routing ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! errdisable recovery cause bpduguard ! archive log config logging size 50 notify syslog ! spanning-tree mode rapid-pvst ! spanning-tree vlan x10,x30,100 priority 28672 spanning-tree vlan x20,x50 priority 24576 vlan x10 name OFFICE ! vlan x20 name VOICE ! vlan x30 name GUEST ! vlan x50 name SERVERS ! vlan 100 name MGMT ! vlan 200 name TRANS ! vlan 900 name NATIVE !
vlan 999 name UNUSED ! ip telnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel2 description Channel to ALS1 no shut interface Port-channel10 description Channel to DLS1 no shut ! interface FastEthernet0/1 description DLS2 to R3 no switchport ip address 10.x.2.13 255.255.255.252 speed 100 duplex full no shutdown ! interface range FastEthernet0/2 - 3 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range FastEthernet0/4 - 5 description Channel to ALS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,100 switchport mode trunk switchport nonegotiate channel-group 2 mode on no shut ! interface range FastEthernet0/6 - 7 description Channel to DLS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,X50,60,100,200 switchport mode trunk switchport nonegotiate channel-group 10 mode on no shut ! interface FastEthernet0/8 description Conexion Hacia PC 4 switchport mode access switchport access vlan X30 switchport nonegotiate no cdp enable spanning-tree portfast no shut !
interface range FastEthernet0/9 - 24 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range GigabitEthernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan1 no ip address shutdown ! interface Vlan10 ip address 10.x.10.253 255.255.255.0 standby 10 ip 10.x.10.254 standby 10 preempt ! interface Vlan20 ip address 10.x.20.253 255.255.255.0 standby 20 ip 10.x.20.254 standby 20 priority 110 standby 20 preempt ! interface Vlan30 ip address 10.x.30.253 255.255.255.0 standby 30 ip 10.x.30.254 standby 30 preempt ! interface Vlan50 ip address 10.x.50.253 255.255.255.0 standby 50 ip 10.x.50.254 standby 50 priority 110 standby 50 preempt ! interface Vlan100 ip address 10.x.100.253 255.255.255.0 standby 100 ip 10.x.100.254 standby 100 preempt ! interface Vlan200 ip address 10.x.200.253 255.255.255.0 ! router eigrp 1 passive-interface default no passive-interface Fa0/1 no passive-interface vlan200 no auto-summary network 10.x.0.0 0.0.255.255 ! ip classless ip http server
ip http secure-server ! logging source-interface Vlan100 logging 10.x.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server enable traps eigrp snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps hsrp snmp-server enable traps vlan-membership snmp-server enable traps errdisable snmp-server host 10.x.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Router R1 hostname R1 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384 debugging enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 !
file prompt quiet archive log config logging size 50 notify syslog ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 192.168.1.1 255.255.255.255 ! interface FastEthernet0/0 description R1 to DLS1 ip address 10.x.2.2 255.255.255.252 ip flow ingress ip nat inside speed 100 full-duplex ! interface Serial0/0/0 description WAN link to ISP R2 ip address 209.165.200.225 255.255.255.252 ip nat outside ip flow ingress encapsulation ppp clock rate 128000 no shutdown ! router eigrp 1 redistribute bgp 65502 metric 1544 2000 255 1 1500 passive-interface default no passive-interface FastEthernet0/0 network 10.X.2.0 0.0.0.3 no auto-summary ! router bgp 65501 no synchronization bgp log-neighbor-changes network 172.30.1.0 mask 255.255.255.0 neighbor 192.168.2.1 remote-as 65503 neighbor 192.168.2.1 ebgp-multihop 2 neighbor 192.168.2.1 update-source Loopback0 no auto-summary ! ip route 192.168.2.1 255.255.255.255 209.165.200.226 ip route 172.30.1.0 255.255.255.0 10.X.2.1 ! ip http server no ip http secure-server ! ip flow-export source Loopback0 ip flow-export version 5 ip flow-export destination 10.x.50.1 9996 ! ip nat inside source list 1 interface Serial0/0/0 overload
! logging source-interface Loopback0 logging 10.1.50.1 ! access-list 1 permit 10.x.0.0 0.0.255.255 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp snmp-server enable traps flash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp source Loopback0 ntp update-calendar ntp server 192.168.2.1 end Router R2 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! Hostname R2 ! logging buffered 16384 debugging enable secret tshoot!! ! username tshoot secret tshoot!! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 192.168.2.1 255.255.255.255 !
interface FastEthernet0/0 shutdown ! interface FastEthernet0/1 shutdown ! interface Serial0/0/0 description WAN link to R1 – T1 leased line ip address 209.165.200.226 255.255.255.252 encapsulation ppp no shutdown ! router bgp 65502 no synchronization bgp log-neighbor-changes network 0.0.0.0 neighbor 192.168.1.1 remote-as 65501 neighbor 192.168.1.1 update-source Loopback0 no auto-summary ! ip route 0.0.0.0 0.0.0.0 Null0 ip route 192.168.1.1 255.255.255.255 209.165.200.225 ! ip http server no ip http secure-server ! logging source-interface Loopback0 logging 10.1.50.1 snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp snmp-server enable traps flash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp master 3 end Router R3 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname R3 ! !
logging buffered 16384 debugging enable secret tshoot!! ! username tshoot secret tshoot!! ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! no ip domain lookup ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! file prompt quiet archive log config logging size 50 notify syslog ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 10.x.203.1 255.255.255.255 ! interface FastEthernet0/0 description FE to DLS2 ip address 10.x.2.14 255.255.255.252 ip flow ingress speed 100 full-duplex no shutdown ! router eigrp 1 passive-interface default no passive-interface FastEthernet0/0 network 10.x.2.12 0.0.0.3 network 10.x.203.1 0.0.0.0 no auto-summary ! ip http server no ip http secure-server ! ip flow-export source Loopback0 ip flow-export version 5 ip flow-export destination 10.x.50.1 9996 ! logging source-interface Loopback0 logging 10.x.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp
snmp-server enable traps flash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp source Loopback0 ntp update-calendar ntp server 192.168.2.1 end

More Related Content

DOCX
Configuracion EIGRP
byalexis marck Huiza Canchanya
 
PDF
DMVPN
byNetProtocol Xpert
 
PDF
Cisco discovery drs ent module 8 - v.4 in english.
byigede tirtanata
 
PDF
BACIK CISCO SKILLS
byPeťko Z Chochoľova
 
DOC
הגדרת נתבי סיסקו 1.0
byELI KENDEL אלי קנדל
 
PDF
DMVPN Lab WorkBook
byRHC Technologies
 
PDF
IPSec VPN
byNetProtocol Xpert
 
PPTX
Cisco CCNA-Router on Stick
byHamed Moghaddam
 
Configuracion EIGRP
byalexis marck Huiza Canchanya
 
DMVPN
byNetProtocol Xpert
 
Cisco discovery drs ent module 8 - v.4 in english.
byigede tirtanata
 
BACIK CISCO SKILLS
byPeťko Z Chochoľova
 
הגדרת נתבי סיסקו 1.0
byELI KENDEL אלי קנדל
 
DMVPN Lab WorkBook
byRHC Technologies
 
IPSec VPN
byNetProtocol Xpert
 
Cisco CCNA-Router on Stick
byHamed Moghaddam
 

What's hot

PPTX
Cisco CCNA-Standard Access List
byHamed Moghaddam
 
PPTX
Cisco CCNA EIGRP IPV6 Configuration
byHamed Moghaddam
 
PDF
Simple Misconfiguration Equals Network Vulnerability!
byshira koper
 
PDF
BGP Route Reflectors Lab WorkBook
byRHC Technologies
 
PPT
Cessation of Misconfigurations: Common Network Misconfiguration Risks & How t...
byAlgoSec
 
PPTX
Cisco CCNA OSPF IPV6 Configuration
byHamed Moghaddam
 
PPTX
Cisco CCNA- PPP Multilink Configuration
byHamed Moghaddam
 
PPTX
Cisco CCNA- How to Configure Multi-Layer Switch
byHamed Moghaddam
 
PDF
Nxll10 v lan and trunking
byNetwax Lab
 
PDF
IS-IS Routing Lab WorkBook
byRHC Technologies
 
PPTX
Cisco CCNA Port Security
byHamed Moghaddam
 
PDF
Nxll18 vpn (s2 s gre & dmvpn)
byNetwax Lab
 
PPTX
Cisco CCNA-CCNP IP SLA Configuration
byHamed Moghaddam
 
PPTX
Cisco CCNA- NAT Configuration
byHamed Moghaddam
 
PDF
BGP Route Aggregation Lab WorkBook
byRHC Technologies
 
PDF
Nxll14 cut through-proxy on asa
byNetwax Lab
 
PDF
VPNIPSec site to site
byDimitri LEMBOKOLO
 
PDF
Cisco ASA Firewall Lab WorkBook
byRHC Technologies
 
PDF
Eincop Netwax Lab: Vlan and Trunking ii
byNetwax Lab
 
PPTX
Cisco CCNA CCNP VACL Configuration
byHamed Moghaddam
 
Cisco CCNA-Standard Access List
byHamed Moghaddam
 
Cisco CCNA EIGRP IPV6 Configuration
byHamed Moghaddam
 
Simple Misconfiguration Equals Network Vulnerability!
byshira koper
 
BGP Route Reflectors Lab WorkBook
byRHC Technologies
 
Cessation of Misconfigurations: Common Network Misconfiguration Risks & How t...
byAlgoSec
 
Cisco CCNA OSPF IPV6 Configuration
byHamed Moghaddam
 
Cisco CCNA- PPP Multilink Configuration
byHamed Moghaddam
 
Cisco CCNA- How to Configure Multi-Layer Switch
byHamed Moghaddam
 
Nxll10 v lan and trunking
byNetwax Lab
 
IS-IS Routing Lab WorkBook
byRHC Technologies
 
Cisco CCNA Port Security
byHamed Moghaddam
 
Nxll18 vpn (s2 s gre & dmvpn)
byNetwax Lab
 
Cisco CCNA-CCNP IP SLA Configuration
byHamed Moghaddam
 
Cisco CCNA- NAT Configuration
byHamed Moghaddam
 
BGP Route Aggregation Lab WorkBook
byRHC Technologies
 
Nxll14 cut through-proxy on asa
byNetwax Lab
 
VPNIPSec site to site
byDimitri LEMBOKOLO
 
Cisco ASA Firewall Lab WorkBook
byRHC Technologies
 
Eincop Netwax Lab: Vlan and Trunking ii
byNetwax Lab
 
Cisco CCNA CCNP VACL Configuration
byHamed Moghaddam
 

Similar to Prueba 2 2015

TXT
Cmd
bybayal
 
TXT
Cmd
bymolare2000
 
TXT
R1
byTuan Nguyen
 
PPTX
CCNA_LAB_MANUAL_part1.pptx
bySanathKumarV3
 
PDF
Segundo paracial laboratoria deVictorMena
bythebossim98
 
PDF
Puppet Camp Boston 2014: Network Automation with Puppet and Arista (Beginner)
byPuppet
 
PPTX
Manejo de redes
byDiegoTorres519
 
PDF
Cisco Equipment Security
byConferencias FIST
 
PDF
Packettracersimulationlabl3routing 130306235157-phpapp02
byA.S.M Shmimul Islam.
 
PDF
Catalyst Smart Operations : Simplify Your Network
byCisco Russia
 
PDF
Linux 系統管理與安全:進階系統管理系統防駭與資訊安全
by維泰 蔡
 
PDF
Ncat ccna cheat sheet
byEZREIG OMAR
 
PDF
Cisco Commands
byFredrick Hall
 
PDF
cisco ccna cheat_sheet
byGuntaka Reddy
 
PDF
ccna cheat_sheet
byGuntaka Reddy
 
DOCX
Examen main remote
byjheral stalin
 
DOC
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
byAbhilash Kuniyil
 
DOCX
CCNA Scaling NetworksSA Exam CCNA Scaling NetworksSkills .docx
byketurahhazelhurst
 
DOC
Lab practice 1 configuring basic routing and switching (with answer)
byArz Sy
 
PDF
Basic cisco commands_by_marcus_nielson_2
byMAFANTIRI SELLO
 
Cmd
bybayal
 
Cmd
bymolare2000
 
R1
byTuan Nguyen
 
CCNA_LAB_MANUAL_part1.pptx
bySanathKumarV3
 
Segundo paracial laboratoria deVictorMena
bythebossim98
 
Puppet Camp Boston 2014: Network Automation with Puppet and Arista (Beginner)
byPuppet
 
Manejo de redes
byDiegoTorres519
 
Cisco Equipment Security
byConferencias FIST
 
Packettracersimulationlabl3routing 130306235157-phpapp02
byA.S.M Shmimul Islam.
 
Catalyst Smart Operations : Simplify Your Network
byCisco Russia
 
Linux 系統管理與安全:進階系統管理系統防駭與資訊安全
by維泰 蔡
 
Ncat ccna cheat sheet
byEZREIG OMAR
 
Cisco Commands
byFredrick Hall
 
cisco ccna cheat_sheet
byGuntaka Reddy
 
ccna cheat_sheet
byGuntaka Reddy
 
Examen main remote
byjheral stalin
 
Labpractice1 configuringbasicroutingandswitchingwithanswer-121214084802-phpapp02
byAbhilash Kuniyil
 
CCNA Scaling NetworksSA Exam CCNA Scaling NetworksSkills .docx
byketurahhazelhurst
 
Lab practice 1 configuring basic routing and switching (with answer)
byArz Sy
 
Basic cisco commands_by_marcus_nielson_2
byMAFANTIRI SELLO
 

Recently uploaded

PDF
Quick Learn Laravel for Beginner from Zero to Survive
byiDev Semarang
 
PDF
Peculiar Findings Around CEX Activity and ETH Price
bytobbymnbvcxz
 
PDF
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
PDF
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
PDF
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
PDF
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
PDF
Getting the Best of TrueDEM – January News & Updates
bypanagenda
 
PPTX
CRM for the Insurance Industry Lessons for Insurance CIOs and Digital Leaders...
byKerry Millar
 
PDF
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
PDF
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
PDF
Chapter 3 Cryptography and encryption techniques.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
PDF
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
PDF
Fortinet Certified Fundamentals in Cybersecurity
byVICTOR MAESTRE RAMIREZ
 
PDF
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
PDF
Certified AI-Empowered SAFe 6 Scrum Master.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PPTX
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
Quick Learn Laravel for Beginner from Zero to Survive
byiDev Semarang
 
Peculiar Findings Around CEX Activity and ETH Price
bytobbymnbvcxz
 
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
Real-Time AI at Scale Masterclass - Challenges of AI at Scale
byScyllaDB
 
How the EU Ecolabel's Record Growth Creates ESG Opportunities for CRE
byWastify AI
 
Getting the Best of TrueDEM – January News & Updates
bypanagenda
 
CRM for the Insurance Industry Lessons for Insurance CIOs and Digital Leaders...
byKerry Millar
 
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
Certified AI-Empowered SAFe Release Train Engineer.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
Chapter 3 Cryptography and encryption techniques.pdf
byGetnet Tigabie Askale -(GM)
 
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
Fortinet Certified Fundamentals in Cybersecurity
byVICTOR MAESTRE RAMIREZ
 
Transcript: EU regulations for the North American book supply chain - Tech Fo...
byBookNet Canada
 
Certified AI-Empowered SAFe 6 Scrum Master.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 

Prueba 2 2015

  • 1.
    PRUEBA N° 2DTR8501 Su compañía ha decidido implementar varios de los nuevos servicios basados en Internet. Los servicios web actuales que ofrece la empresa están alojados en un centro de datos externo. Se ha decidido construir un centro de datos dentro de la empresa de la que los nuevos servicios se encuentran alojado. Los servidores que están actualmente alojados externamente también se trasladaran al centro de datos. La compañía cuenta actualmente con un único proveedor de acceso a Internet. Se le ha asignado un AS (65501) y un bloque de direcciones 172.30.1.0/27, los cuales serán utilizados para los nuevos servicios. Después de consultar con el ISP, se ha decidido utilizar BGP entre el borde de la red del router R1 y el ISP (R2). Desde el Router R1 se anuncia solo el bloque de direcciones IP 172.30.1.0/27 al ISP (R2). Ningún otro prefijo puede ser anunciado. Esto garantiza que sólo el bloque de dirección de red asignada será recibido por el ISP. Los ISPs suelen colocar filtros en sus routers de borde para evitar que los clientes accidentalmente anunciar rutas que no les pertenecen. El router ISP enviará una ruta por defecto al router R1 a través de BGP. La ruta por defecto será redistribuida en EIGRP por el router R1. Ninguna otra ruta debe ser redistribuida. Para los demás dispositivos, que tienen direcciones IP en el rango 10.x.0.0/16, se usa la Traducción de Direcciones de Red (NAT), y su acceso a Internet no debería verse afectado por la configuración de BGP. Una vez realizado lo anterior, se perdió conectividad a Internet, por lo cual se les solicita verificar y solucionar los problemas existentes en esta nueva configuración.
  • 2.
    Switch ALS1 ! hostname ALS1 servicetimestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384 enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! archive log config logging size 50 notify syslog ! spanning-tree mode rapid-pvst spanning-tree portfast default ! interface Vlan1 no ip address shutdown ! vlan X10 name OFFICE ! vlan X20 name VOICE ! vlan X30 name GUEST ! vlan 100 name MGMT ! vlan 900 name NATIVE !
  • 3.
    vlan 999 name UNUSED ! iptelnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel1 description Channel to DLS1 no shutdown ! interface Port-channel2 description Channel to DLS2 no shutdown ! interface FastEthernet0/1 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range FastEthernet0/2 - 3 description Channel to DLS1 switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,100 switchport mode trunk switchport nonegotiate channel-group 1 mode on no shutdown ! interface range FastEthernet0/4 - 5 description Channel to DLS2 switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,100 switchport mode trunk switchport nonegotiate channel-group 2 mode on no shutdown ! interface range FastEthernet0/6 - 7 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface FastEthernet0/8 description Conexion Hacia PC 1 switchport mode access switchport access vlan x10 switchport nonegotiate no cdp enable spanning-tree portfast no shut ! interface FastEthernet0/9 - 24 description Unused
  • 4.
    switchport access vlan999 switchport mode access switchport nonegotiate shutdown ! interface range gigabitethernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan100 ip address 10.X.100.1 255.255.255.0 no shutdown ! ip default-gateway 10.x.100.254 ! ip http server ip http secure-server ! logging source-interface Vlan100 logging 10.X.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server host 10.x.50.1 version 2c cisco snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps vlan-membership ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Switch DLS1 hostname DLS1 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384
  • 5.
    enable secret tshoot!! ! usernametshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip routing ! ip domain name tshoot.net ! ip dhcp excluded-address 10.X.10.252 10.1.10.254 ip dhcp excluded-address 10.X.20.252 10.1.20.254 ip dhcp excluded-address 10.X.30.252 10.1.30.254 ! ip dhcp pool OFFICE network 10.X.10.0 255.255.255.0 default-router 10.X.10.254 domain-name tshoot.net ! ip dhcp pool VOICE network 10.X.20.0 255.255.255.0 default-router 10.X.20.254 domain-name tshoot.net ! ip dhcp pool GUEST network 10.X.30.0 255.255.255.0 default-router 10.X.30.254 domain-name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! errdisable recovery cause bpduguard ! archive log config logging size 50 notify syslog hidekeys ! spanning-tree mode rapid-pvst ! spanning-tree vlan x10,x30,100 priority 24576 spanning-tree vlan x20,x50 priority 28672 ! vlan x10
  • 6.
    name OFFICE ! vlan x20 nameVOICE ! vlan x30 name GUEST ! vlan x50 name SERVERS ! vlan 100 name MGMT ! vlan 200 name TRANS ! vlan 900 name NATIVE ! vlan 999 name UNUSED ! ip telnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel1 description Channel to ALS1 no shut ! interface Port-channel10 description Channel to DLS2 no shut ! interface FastEthernet0/1 description DLS1 to R1 no switchport ip address 10.x.2.1 255.255.255.252 no shut ! interface range FastEthernet0/2 - 3 description Channel to ALS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,100 switchport mode trunk switchport nonegotiate channel-group 1 mode on no shut ! interface range FastEthernet0/4 - 5 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown !
  • 7.
    ! interface range FastEthernet0/6- 7 description Channel to DLS2 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,x50,60,100,200 switchport mode trunk switchport nonegotiate no shut ! interface FastEthernet0/8 description Conexion Hacia PC 3 switchport mode access switchport access vlan X50 switchport nonegotiate no cdp enable spanning-tree portfast no shut ! interface range gigabitethernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan1 no ip address shutdown interface Vlan10 ip address 10.x.10.252 255.255.255.0 standby 10 ip 10.x.10.254 standby 10 priority 110 standby 10 preempt ! interface Vlan20 ip address 10.x.20.252 255.255.255.0 standby 20 ip 10.x.20.254 standby 20 preempt ! interface Vlan30 ip address 10.x.30.252 255.255.255.0 standby 30 ip 10.x.30.254 standby 30 priority 110 standby 30 preempt ! interface Vlan50 ip address 10.x.50.252 255.255.255.0 standby 50 ip 10.x.50.254 standby 50 preempt ! interface Vlan100 ip address 10.x.100.252 255.255.255.0 standby 100 ip 10.x.100.254 standby 100 priority 110 standby 100 preempt !
  • 8.
    interface Vlan60 ip address172.60.1.1 255.255.255.224 ! interface Vlan200 ip address 10.x.200.252 255.255.255.0 ! router eigrp 1 passive-interface default no passive-interface Fa0/1 no passive-interface vlan200 no auto-summary network 10.x.0.0 0.0.255.255 ! ip classless ip http server ip http secure-server ! logging source-interface Vlan100 logging 10.X.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server host 10.x.50.1 version 2c cisco snmp-server enable traps eigrp snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps config snmp-server enable traps hsrp snmp-server enable traps vlan-membership snmp-server enable traps errdisable ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Switch DLS2 hostname DLS2 ! service timestamps debug datetime msec service timestamps log datetime service password-encryption
  • 9.
    ! logging buffered 16384 enablesecret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! system mtu routing 1500 ! vtp domain TSHOOT vtp mode transparent ! ip subnet-zero ip routing ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! errdisable recovery cause bpduguard ! archive log config logging size 50 notify syslog ! spanning-tree mode rapid-pvst ! spanning-tree vlan x10,x30,100 priority 28672 spanning-tree vlan x20,x50 priority 24576 vlan x10 name OFFICE ! vlan x20 name VOICE ! vlan x30 name GUEST ! vlan x50 name SERVERS ! vlan 100 name MGMT ! vlan 200 name TRANS ! vlan 900 name NATIVE !
  • 10.
    vlan 999 name UNUSED ! iptelnet source-interface Vlan100 ip ssh source-interface Vlan100 ! interface Port-channel2 description Channel to ALS1 no shut interface Port-channel10 description Channel to DLS1 no shut ! interface FastEthernet0/1 description DLS2 to R3 no switchport ip address 10.x.2.13 255.255.255.252 speed 100 duplex full no shutdown ! interface range FastEthernet0/2 - 3 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range FastEthernet0/4 - 5 description Channel to ALS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan x10,x20,x30,100 switchport mode trunk switchport nonegotiate channel-group 2 mode on no shut ! interface range FastEthernet0/6 - 7 description Channel to DLS1 switchport trunk encapsulation dot1q switchport trunk native vlan 900 switchport trunk allowed vlan X10,X20,X30,X50,60,100,200 switchport mode trunk switchport nonegotiate channel-group 10 mode on no shut ! interface FastEthernet0/8 description Conexion Hacia PC 4 switchport mode access switchport access vlan X30 switchport nonegotiate no cdp enable spanning-tree portfast no shut !
  • 11.
    interface range FastEthernet0/9- 24 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface range GigabitEthernet0/1 - 2 description Unused switchport access vlan 999 switchport mode access switchport nonegotiate shutdown ! interface Vlan1 no ip address shutdown ! interface Vlan10 ip address 10.x.10.253 255.255.255.0 standby 10 ip 10.x.10.254 standby 10 preempt ! interface Vlan20 ip address 10.x.20.253 255.255.255.0 standby 20 ip 10.x.20.254 standby 20 priority 110 standby 20 preempt ! interface Vlan30 ip address 10.x.30.253 255.255.255.0 standby 30 ip 10.x.30.254 standby 30 preempt ! interface Vlan50 ip address 10.x.50.253 255.255.255.0 standby 50 ip 10.x.50.254 standby 50 priority 110 standby 50 preempt ! interface Vlan100 ip address 10.x.100.253 255.255.255.0 standby 100 ip 10.x.100.254 standby 100 preempt ! interface Vlan200 ip address 10.x.200.253 255.255.255.0 ! router eigrp 1 passive-interface default no passive-interface Fa0/1 no passive-interface vlan200 no auto-summary network 10.x.0.0 0.0.255.255 ! ip classless ip http server
  • 12.
    ip http secure-server ! loggingsource-interface Vlan100 logging 10.x.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Vlan100 snmp-server enable traps eigrp snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps port-security snmp-server enable traps hsrp snmp-server enable traps vlan-membership snmp-server enable traps errdisable snmp-server host 10.x.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh line vty 5 15 no transport input ! ntp source Vlan100 ntp server 192.168.2.1 end Router R1 hostname R1 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! logging buffered 16384 debugging enable secret tshoot!! ! username tshoot secret tshoot!! ! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 !
  • 13.
    file prompt quiet archive logconfig logging size 50 notify syslog ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 192.168.1.1 255.255.255.255 ! interface FastEthernet0/0 description R1 to DLS1 ip address 10.x.2.2 255.255.255.252 ip flow ingress ip nat inside speed 100 full-duplex ! interface Serial0/0/0 description WAN link to ISP R2 ip address 209.165.200.225 255.255.255.252 ip nat outside ip flow ingress encapsulation ppp clock rate 128000 no shutdown ! router eigrp 1 redistribute bgp 65502 metric 1544 2000 255 1 1500 passive-interface default no passive-interface FastEthernet0/0 network 10.X.2.0 0.0.0.3 no auto-summary ! router bgp 65501 no synchronization bgp log-neighbor-changes network 172.30.1.0 mask 255.255.255.0 neighbor 192.168.2.1 remote-as 65503 neighbor 192.168.2.1 ebgp-multihop 2 neighbor 192.168.2.1 update-source Loopback0 no auto-summary ! ip route 192.168.2.1 255.255.255.255 209.165.200.226 ip route 172.30.1.0 255.255.255.0 10.X.2.1 ! ip http server no ip http secure-server ! ip flow-export source Loopback0 ip flow-export version 5 ip flow-export destination 10.x.50.1 9996 ! ip nat inside source list 1 interface Serial0/0/0 overload
  • 14.
    ! logging source-interface Loopback0 logging10.1.50.1 ! access-list 1 permit 10.x.0.0 0.0.255.255 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp snmp-server enable traps flash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp source Loopback0 ntp update-calendar ntp server 192.168.2.1 end Router R2 ! service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! Hostname R2 ! logging buffered 16384 debugging enable secret tshoot!! ! username tshoot secret tshoot!! no ip domain lookup ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 192.168.2.1 255.255.255.255 !
  • 15.
    interface FastEthernet0/0 shutdown ! interface FastEthernet0/1 shutdown ! interfaceSerial0/0/0 description WAN link to R1 – T1 leased line ip address 209.165.200.226 255.255.255.252 encapsulation ppp no shutdown ! router bgp 65502 no synchronization bgp log-neighbor-changes network 0.0.0.0 neighbor 192.168.1.1 remote-as 65501 neighbor 192.168.1.1 update-source Loopback0 no auto-summary ! ip route 0.0.0.0 0.0.0.0 Null0 ip route 192.168.1.1 255.255.255.255 209.165.200.225 ! ip http server no ip http secure-server ! logging source-interface Loopback0 logging 10.1.50.1 snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp snmp-server enable traps flash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp master 3 end Router R3 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname R3 ! !
  • 16.
    logging buffered 16384debugging enable secret tshoot!! ! username tshoot secret tshoot!! ! aaa new-model aaa authentication login default local aaa authentication login CONSOLE none aaa authorization exec default local ! no ip domain lookup ip domain name tshoot.net ! crypto key zeroize rsa crypto key generate rsa general-keys modulus 1024 ! file prompt quiet archive log config logging size 50 notify syslog ! ip telnet source-interface Loopback0 ip ssh source-interface Loopback0 ! interface Loopback0 ip address 10.x.203.1 255.255.255.255 ! interface FastEthernet0/0 description FE to DLS2 ip address 10.x.2.14 255.255.255.252 ip flow ingress speed 100 full-duplex no shutdown ! router eigrp 1 passive-interface default no passive-interface FastEthernet0/0 network 10.x.2.12 0.0.0.3 network 10.x.203.1 0.0.0.0 no auto-summary ! ip http server no ip http secure-server ! ip flow-export source Loopback0 ip flow-export version 5 ip flow-export destination 10.x.50.1 9996 ! logging source-interface Loopback0 logging 10.x.50.1 ! snmp-server community cisco RO snmp-server community san-fran RW snmp-server trap-source Loopback0 snmp-server enable traps eigrp
  • 17.
    snmp-server enable trapsflash insertion removal snmp-server enable traps config snmp-server enable traps cpu threshold snmp-server host 10.1.50.1 version 2c cisco ! line con 0 exec-timeout 60 0 login authentication CONSOLE logging synchronous line vty 0 4 exec-timeout 60 0 transport input telnet ssh ! ntp source Loopback0 ntp update-calendar ntp server 192.168.2.1 end