Scribd
Upload
55 views29 pages

All Tasks With Complete Configuration

- The document describes configuring static routes on routers to establish communication between different networks. - Static routes are configured using the IP route command, specifying the destination network, mask, and next hop IP address. - The configuration shows assigning static routes on three routers to connect seven networks, providing IP addresses and static routes on each router's interfaces.

Uploaded by

HAJRA khalid
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
55 views29 pages

All Tasks With Complete Configuration

- The document describes configuring static routes on routers to establish communication between different networks. - Static routes are configured using the IP route command, specifying the destination network, mask, and next hop IP address. - The configuration shows assigning static routes on three routers to connect seven networks, providing IP addresses and static routes on each router's interfaces.

Uploaded by

HAJRA khalid
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 29

SABARAJPUT036@GMAIL.

COM
SABA SHABBIR

Task 1

Configuring a Static Route

• In this task create a topology and assign IPs to them, in this topology there are seven different
networks.
• Main purpose of this task is to assign routes to the routers in order to establish successful
communication between all the PCs.

IP Route

To establish static routes, use the IP route command in switch configuration mode.
Syntax
IP route prefix mask ip-address [metric-value].
To remove static routes, use the no form of this command.
Syntax
no ip route prefix mask ip-address.

Prefix Specifies the IP route prefix for the destination


Mask Specifies the prefix mask for the destination
IP-address Specifies the IP address of the next hop that
can be used to reach that network
Metric-value Specifies the metric of the route. The default
metric is 6. Valid range is from 1–255.
[email protected]
SABA SHABBIR

Configuration

Router 0 Router>en
Router#conf t
Router(config)#int fa0/0
Router(config-if)#ip address 192.168.1.1 255.255.255.0
Router(config-if)#no shutdown

Router(config-if)#int se0/0/0
Router(config-if)#ip address 192.168.2.1 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit

Router(config)#
Router(config)#ip route 192.168.3.0 255.255.255.0 192.168.2.2
Router(config)#ip route 192.168.5.0 255.255.255.0 192.168.2.2
Router(config)#ip route 192.168.7.0 255.255.255.0 192.168.2.2

Router 1 Router>enable
Router#configure terminal
Router(config)#interface FastEthernet0/0
Router(config-if)#
Router(config)#interface Serial0/0/0
Router(config-if)#ip address 192.168.2.2 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit

Router(config)#interface Serial0/0/1
Router(config-if)#ip address 192.168.4.1 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit

Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 192.168.3.1 255.255.255.0
Router(config-if)#no shutdown
Router(config)#exit

Router(config)#ip route 192.168.1.0 255.255.255.0 192.168.2.1


Router(config)#ip route 192.168.5.0 255.255.255.0 192.168.4.2
Router(config)#ip route 192.168.7.0 255.255.255.0 192.168.4.2
[email protected]
SABA SHABBIR

Router 2 Router>enable
Router#configure terminal
Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 192.168.5.1 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit

Router(config)#interface Serial0/0/0
Router(config-if)#ip address 192.168.4.2 255.255.255.0
Router(config-if)#no shutdown

Router(config)#interface Serial0/0/1
ip address 192.168.6.1 255.255.255.0
Router(config-if)#no shutdown

Router(config)#ip route 192.168.1.0 255.255.255.0 192.168.4.1


Router(config)#ip route 192.168.3.0 255.255.255.0 192.168.4.1
Router(config)#ip route 192.168.7.0 255.255.255.0 192.168.6.2
Router(config)#

Router 3 Router>enable
Router#configure terminal
Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 192.168.7.1 255.255.255.0
Router(config-if)#no shutdown

Router(config)#interface Serial0/0/0
Router(config-if)#ip address 192.168.6.2 255.255.255.0
Router(config-if)#no shutdown
Router(config-if)#exit

Router(config)#ip route 192.168.1.0 255.255.255.0 192.168.6.1


Router(config)#ip route 192.168.3.0 255.255.255.0 192.168.6.1
Router(config)#ip route 192.168.5.0 255.255.255.0 192.168.6.1
[email protected]
SABA SHABBIR

Task 2

load balancing configuration using static


routing

When we have two simultaneously path to send packets from source to destination that is known as
load balancing.

SO HERE FOR LOAD BALANCING WE NEED TO CONFIGURE TWO STATIC ROUTES

• Same steps are followed as we assign IP routes, as there are four networks, four routes
are assigned to both routers.
• Therefore, in case of any congestion or route failure, packets are automatically sent to
destination through redundant path.

Load Balancing

In networking, load balancing refers to the process of distributing a set of tasks over a set of resources,
with the aim of making their overall processing more efficient. Load balancing can optimize the response
time and avoid unevenly overloading some compute nodes while other compute nodes are left idle.

Load balancers are used to increase capacity (concurrent users) and reliability of applications.
[email protected]
SABA SHABBIR

Configuration
same configration commands as I have done in TASK 1 “Configuring a Static Routes”.

Router 0 interface FastEthernet0/0


ip address 121.100.100.3 255.255.255.240
interface FastEthernet0/1
ip address 121.100.100.19 255.255.255.240
interface Serial0/0/0
ip address 121.100.100.33 255.255.255.240
interface Serial0/0/1
ip address 121.100.100.49 255.255.255.240
no shutdown

ip route 121.100.100.64 255.255.255.240


121.100.100.34
ip route 121.100.100.80 255.255.255.240
121.100.100.50
ip route 121.100.100.64 255.255.255.240
121.100.100.50
ip route 121.100.100.80 255.255.255.240
192.168.100.34
Router 1 interface FastEthernet0/0
ip address 121.100.100.67 255.255.255.240
interface FastEthernet0/1
ip address 121.100.100.83 255.255.255.240
interface Serial0/0/0
ip address 121.100.100.34 255.255.255.240
interface Serial0/0/1
ip address 121.100.100.50 255.255.255.240
no shutdown

ip route 121.100.100.0 255.255.255.240


121.100.100.33
ip route 121.100.100.0 255.255.255.240
121.100.100.49
ip route 121.100.100.16 255.255.255.240
121.100.100.49
ip route 121.100.100.16 255.255.255.240
121.100.100.33
[email protected]
SABA SHABBIR

Task 3
Static Routing Practice

• This task is just for the more practice of static routing.


• First, create topology as shown and assign IPs to them properly.
• Second, assign IP routes in such way that packets are sent from one route and receive from
another route.
• In this fig. packets are sent from upper portion with purple arrows and received from below
route having pink arrows.

Configuration
Router 0 interface FastEthernet0/0
ip address 192.168.0.1 255.255.255.240

interface Serial0/0/0
ip address 192.168.0.65 255.255.255.240
interface Serial0/0/1
ip address 192.168.0.97 255.255.255.240
no shutdown

ip route 192.168.0.32 255.255.255.240


192.168.0.66
ip route 192.168.0.128 255.255.255.240
192.168.0.66
[email protected]
SABA SHABBIR

Router 2 interface Serial0/0/0


ip address 192.168.0.66 255.255.255.240
no shutdown

interface Serial0/0/1
ip address 192.168.0.129 255.255.255.240
no shutdown

ip route 192.168.0.32 255.255.255.240


192.168.0.130
ip route 192.168.0.0 255.255.255.240
192.168.0.65

Router 3 interface Serial0/0/0


ip address 192.168.0.98 255.255.255.240
no shutdown

interface Serial0/0/1
ip address 192.168.0.161 255.255.255.240
no shutdown

ip route 192.168.0.0 255.255.255.240


192.168.0.97
ip route 192.168.0.32 255.255.255.240
192.168.0.162
Router 1 interface FastEthernet0/0
ip address 192.168.0.33 255.255.255.240
no shutdown

interface Serial0/0/0
ip address 192.168.0.130 255.255.255.240
no shutdown

interface Serial0/0/1
ip address 192.168.0.162 255.255.255.240
no shutdown

ip route 192.168.0.0 255.255.255.240


192.168.0.161
ip route 192.168.0.96 255.255.255.240
192.168.0.161
[email protected]
SABA SHABBIR

Task 4

Creating 10 VLANs

Task of Creating 10 VLANs With Complete Configuration

Switch 0 Switch 1
Creating VLANs (Assigning Name and VLANs Number)

Switch>enable Switch>enable
Switch# Switch#
Switch#configure terminal Switch#configure terminal
Switch(config)#vlan 10 Switch(config)#vlan 10
Switch(config-vlan)#name NCCT Switch(config-vlan)#name NCCT
Switch(config-vlan)#end Switch(config-vlan)#end
Switch(config)#vlan 20 Switch(config)#vlan 20
Switch(config-vlan)#name SW Switch(config-vlan)#name SW
Switch(config-vlan)#vlan 30 Switch(config-vlan)#vlan 30
Switch(config-vlan)#name TC Switch(config-vlan)#name TC
Switch(config-vlan)#vlan 40 Switch(config-vlan)#vlan 40
Switch(config-vlan)#name CS Switch(config-vlan)#name CS
Switch(config-vlan)#vlan 50 Switch(config-vlan)#vlan 50
Switch(config-vlan)#name IT Switch(config-vlan)#name IT
Switch(config-vlan)#vlan 60 Switch(config-vlan)#vlan 60
Switch(config-vlan)#name AI Switch(config-vlan)#name AI
Switch(config-vlan)#vlan 70 Switch(config-vlan)#vlan 70
Switch(config-vlan)#name IOT Switch(config-vlan)#name IOT
[email protected]
SABA SHABBIR

Switch(config-vlan)#vlan 80 Switch(config-vlan)#vlan 80
Switch(config-vlan)#name BD Switch(config-vlan)#name BD
Switch(config-vlan)#vlan 90 Switch(config-vlan)#vlan 90
Switch(config-vlan)#name Guest Switch(config-vlan)#name Guest
Switch(config-vlan)#vlan 100 Switch(config-vlan)#vlan 100
Switch(config-vlan)#name ADMIN Switch(config-vlan)#name ADMIN

Assigning Static-Access Ports to VLANs

Switch>en Switch>
Switch#conf t Switch>en
Enter configuration commands, one per line. Switch#conf t
End with CNTL/Z. Enter configuration commands, one per line.
Switch(config)#int ran fa0/1-2 End with CNTL/Z.
Switch(config-if-range)#switchport mode Switch(config)#int ran fa0/1-2
access Switch(config-if-range)#switchport mode
Switch(config-if-range)#switchport access vlan access
10 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#end 10
Switch# Switch(config-if-range)#exit
Switch#conf t Switch(config)#int ran fa0/3-4
Enter configuration commands, one per line. Switch(config-if-range)#switchport mode
End with CNTL/Z. access
Switch(config)#int ran fa0/3-4 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 20
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/5-6
20 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/5-6 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 30
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/7-8
30 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/7-8 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 40
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/9-10
40 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/9-10 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 50
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/11-12
[email protected]
SABA SHABBIR

50 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/11-12 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 60
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/13-14
60 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/13-14 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 70
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int ran fa0/15-16
70 Switch(config-if-range)#switchport mode
Switch(config-if-range)#exit access
Switch(config)#int ran fa0/15-16 Switch(config-if-range)#switchport access vlan
Switch(config-if-range)#switchport mode 80
access Switch(config-if-range)#exit
Switch(config-if-range)#switchport access vlan Switch(config)#int fa0/18
80 Switch(config-if)#switchport mode access
Switch(config-if-range)#exit Switch(config-if)#switchport access vlan 90
Switch(config)#int fa0/18 Switch(config-if)#exit
Switch(config-if)#switchport mode access Switch(config)#int fa0/19
Switch(config-if)#switchport access vlan 90 Switch(config-if)#switchport mode access
Switch(config-if)#exit Switch(config-if)#switchport access vlan 100
Switch(config)#int fa0/19 Switch(config-if)#exit
Switch(config-if)#switchport mode access
Switch(config-if)#switchport access vlan 100
Switch(config-if)#exit

SWITCH 2

Switch>
Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#Vlan 10
Switch(config-vlan)#name NCCT
Switch(config-vlan)#Vlan 20
Switch(config-vlan)#name SW
Switch(config-vlan)#Vlan 30
Switch(config-vlan)#name TC
Switch(config-vlan)#Vlan 40
Switch(config-vlan)#name CS
[email protected]
SABA SHABBIR

Switch(config-vlan)#Vlan 50
Switch(config-vlan)#name IT
Switch(config-vlan)#Vlan 60
Switch(config-vlan)#name AI
Switch(config-vlan)#Vlan 70
Switch(config-vlan)#name IOT
Switch(config-vlan)#Vlan 80
Switch(config-vlan)#name BD
Switch(config-vlan)#vlan 90
Switch(config-vlan)#name Guest
Switch(config-vlan)#vlan 100
Switch(config-vlan)#name ADMIN
Switch(config-vlan)#
Switch(config-vlan)#end

Trunking

Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int fa0/1
Switch(config-if)#switchport mode trunk
Switch(config-if)#switchport trunk allow vlan all

Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int fa0/2
Switch(config-if)#switchport mode trunk
Switch(config-if)#switchport trunk allow vlan all

Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)#int fa0/3
Switch(config-if)#switchport mode trunk
Switch(config-if)#switchport trunk allow vlan all
[email protected]
SABA SHABBIR

Router Configuration
802.1Q Configuration

Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int fa0/0
Router(config-if)#no shutdown
Router(config-if)#exit

Router#
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int fa0/0.10
Router(config-subif)#encapsulation dot1Q 10
Router(config-subif)#ip address 192.168.10.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.20
Router(config-subif)#encapsulation dot1Q 20
Router(config-subif)#ip address 192.168.20.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.30
Router(config-subif)#encapsulation dot1Q 30
Router(config-subif)#ip address 192.168.30.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.40
Router(config-subif)#encapsulation dot1Q 40
Router(config-subif)#ip address 192.168.40.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.50
Router(config-subif)#encapsulation dot1Q 50
Router(config-subif)#ip address 192.168.50.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.60
Router(config-subif)#encapsulation dot1Q 60
Router(config-subif)#ip address 192.168.60.1 255.255.255.0
Router(config-subif)#exit
[email protected]
SABA SHABBIR

Router(config)#int fa0/0.70
Router(config-subif)#encapsulation dot1Q 70
Router(config-subif)#ip address 192.168.70.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.80
Router(config-subif)#encapsulation dot1Q 80
Router(config-subif)#ip address 192.168.80.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.90
Router(config-subif)#encapsulation dot1Q 90
Router(config-subif)#ip address 192.168.90.1 255.255.255.0
Router(config-subif)#exit

Router(config)#int fa0/0.100
Router(config-subif)#encapsulation dot1Q 100
Router(config-subif)#ip address 192.168.100.1 255.255.255.0
Router(config-subif)#exit

RESULTS
[email protected]
SABA SHABBIR

Task 5

OSPF Configuration

Topology Using OSPF

Configuration

Area 1 Router Area 2 Router

Router> Router>
Router>en Router>en
Router#conf t Router#conf t
Router(config)#no router ospf 10 Router(config)#router ospf 10
Router(config)#router ospf 10 Router(config-router)#network 192.168.80.2
Router(config-router)#network 192.168.10.1 0.0.0.255 area 0
0.0.0.255 area 0 Router(config-router)#network 192.168.50.2
[email protected]
SABA SHABBIR

Router(config-router)#network 192.168.20.1 0.0.0.255 area 0


0.0.0.255 area 0 Router(config-router)#network 192.168.100.2
Router(config-router)#network 192.168.60.1 0.0.0.255 area 0
0.0.0.255 area 0 Router(config-router)#network 192.168.0.1
Router(config-router)#network 192.168.90.1 0.0.0.255 area 0
0.0.0.255 area 0 Router(config-router)#
Router(config-router)#exit Router(config-router)#exit
Router(config)# Router(config)#
Router(config-if)#interface Serial0/0/1 Router(config-if)#interface Serial0/0/0
Router(config-if)#bandwidth 10 Router(config-if)#bandwidth 10
Router(config-if)#exit Router(config-if)#interface Serial0/1/0
Router(config)#interface Serial0/0/0 Router(config-if)#bandwidth 1000
Router(config-if)#bandwidth 500 Router(config-if)#interface Serial0/0/1
Router(config-if)#exit Router(config-if)#bandwidth 500
Router(config)#interface Serial0/1/0 Router(config-if)#
Router(config-if)#bandwidth 1000
Router(config-if)#exit

Backbone Area Routers

R0 R1 R2

Router> Router>en Router>


Router>en Router#conf t Router>en
Router#conf t Router(config)#router ospf 10 Router#conf t
Router(config)#router Router(config- Router(config)#router ospf 10
Router(config)#router ospf 10 router)#network 192.168.20.0 Router(config-
Router(config- 0.0.0.255 area 0 router)#network 192.168.40.0
router)#network 192.168.30.0 Router(config- 0.0.0.255 area 0
0.0.0.255 area 0 router)#network 192.168.30.0 Router(config-
Router(config- 0.0.0.255 area 0 router)#network 192.168.50.0
router)#network 192.168.40.0 Router(config-router)#exit 0.0.0.255 area 0
0.0.0.255 area 0 Router(config)#interface Router(config-router)#exit
Serial0/0/0 Router(config)#
Router(config)#interface Router(config-if)#bandwidth Router(config)#interface
Serial0/0/0 500 Serial0/0/0
Router(config-if)#bandwidth Router(config-if)#interface Router(config-if)#bandwidth
500 Serial0/0/1 500
Router(config-if)#interface Router(config-if)#bandwidth Router(config-if)#interface
Serial0/0/1 500 Serial0/0/1
Router(config-if)#bandwidth Router(config-if)# Router(config-if)#bandwidth
500 500
[email protected]
SABA SHABBIR

R3 R4

Router> Router>
Router>en Router>en
Router#conf t Router#conf t
Router(config)#router ospf 10 Enter configuration commands, one per line.
Router(config-router)#network 192.168.60.0 End with CNTL/Z.
0.0.0.255 area 0 Router(config)#router ospf 10
Router(config-router)#network 192.168.70.0 Router(config-router)#network 192.168.80.0
0.0.0.255 area 0 0.0.0.255 area 0
Router(config-router)#exit Router(config-router)#network 192.168.70.0
0.0.0.255 area 0
Router(config-if)#interface Serial0/0/1 Router(config-router)#
Router(config-if)#bandwidth 1000 Router(config-router)#exit
Router(config-if)#interface Serial0/0/0 Router(config-if)#interface Serial0/0/0
Router(config-if)#bandwidth 1000 Router(config-if)#bandwidth 1000
Router(config-if)# Router(config-if)#interface Serial0/0/1
Router(config-if)#bandwidth 1000

R5
Router>
Router>
Router>en
Router#conf t
Router(config)#router ospf 10
Router(config-router)#network 192.168.90.0 0.0.0.255 area 0
Router(config-router)#network 192.168.100.0 0.0.0.255 area 0
Router(config-router)#
Router(config-router)#exit
Router(config)#interface Serial0/0/0
Router(config-if)#bandwidth 10
Router(config-if)#interface Serial0/0/1
Router(config-if)#bandwidth 10
[email protected]
SABA SHABBIR

Assignment

Complete the Following tasks in Cisco Packet Tracer. Write all the configuration in separate word file.
Submit your task by email attaching Packet Tracer Topology file and word

For switches and Routers complete the following:


• Configure the device name to be StudentName-DeviceName. (ie. Salman-R1/Salman-
S1).
• Secure privileged mode (use password "cisco").
• Secure user EXEC mode for the console (use password "con-cisco") Secure user EXEC mode
for the remote Telnet (use password "rem-cisco").
• Secure all passwords in the config file.
• Provide legal notification using the login banner, "No unauthorized access!".
• Save the configuration.

For the Switches:


• Configure three VLANs and assign IPv4 to the interfaces. Two VLANs for data and one for
management. Do not use the Default VLAN.
• Assign the ports to the Correct VLAN.
• Configure the Trunk to the Router, this should be setup as a router on a stick configuration.
For the Router:
• Add the VLANs to the routers configuration.
• Configure the Trunk to the switch, this should be setup as a router on a stick configuration.
• Configure DHCP Relays for the interfaces.
For PCs
• Setup One Server and setup DHCP for IPv4.
• Setup three PCs on each VLAN and make sure they can connect to the network through DHCP.
• Apply proper ACLs, Setup one PC that can access the management VLAN. None of the other PCs
should have access to the Management VLAN
[email protected]
SABA SHABBIR

TOPOLOGY

For switches and Routers

Tasks Switches Router

Configure the device name to be Switch(config)#hostname Router(config)#hostname


StudentName-DeviceName. Saba-S4 SABA-R1
Saba-S4(config)# SABA-R1(config)#

Secure privileged mode (use Saba-S4(config)#enable SABA-


password "cisco"). password cisco R1(config)#enable
password cisco
Saba-S4>en
Password: cisco SABA-R1>en
Saba-S4# Password: cisco
SABA-R1#

Secure user EXEC mode for the Saba-S4(config)#line con 0 SABA-R1(config)#line


console (use password "con- Saba-S4(config- con 0
cisco"). line)#password con-cisco SABA-R1(config-
Saba-S4(config-line)# line)#password con-cisco
SABA-R1(config-
line)#exit
[email protected]
SABA SHABBIR

Secure user EXEC mode for the Saba-S4(config)#line vty 0 4 SABA-R1(config)#line


remote Telnet (use password Saba-S4(config- vty 0 4
"rem-cisco"). line)#password rem-cisco SABA-R1(config-
Saba-S4(config-line)#line vty line)#password rem-cisco
5 15 SABA-R1(config-
Saba-S4(config- line)#exit
line)#password rem-cisco
Saba-S4(config-line)#end

Secure all passwords in the config Saba-S4#conf t SABA-R1#conf t


file. Saba-S4(config)#service SABA-
password-encryption R1(config)#service
Saba-S4(config)#exit password-encryption
SABA-R1(config)#exit
Saba-S4#sh running-conf
Building configuration... SABA-R1#sh running-
conf
service password-encryption Building configuration...
!
hostname Saba-S4 service password-
! encryption
enable password 7 !
0822455D0A16 hostname SABA-R1
!
enable password 7
0822455D0A16

Provide legal notification using Saba-S4 (config)#banner SABA-R1(config)#banner


the login banner, "No login " login "
unauthorized access!". Enter TEXT message. End Enter TEXT message.
with the character '"'. End with the character '"'.
" No Unauthorized Access! " " No Unauthorized
Access! "

Save the configuration. Saba-S4(config)#do write SABA-R1(config)#do


Building configuration... write
[OK] Building configuration...
Saba-S4(config)# [OK]
SABA-R1(config)#
[email protected]
SABA SHABBIR

Switches Configurations

Switch 1

Switch>

Switch>en

Switch#conf t

Switch(config)#vlan 10

Switch(config-vlan)#name MANAGEMENT

Switch(config-vlan)#vlan 20

Switch(config-vlan)#name IICT

Switch(config-vlan)#vlan 30

Switch(config-vlan)#name IBA

Switch(config-vlan)#exit

Switch(config)#int fa0/2

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 10

Switch(config-if)#exit

Switch(config)#int fa0/3

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 20

Switch(config-if)#exit

Switch(config)#int fa0/4

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 30


[email protected]
SABA SHABBIR

Switch(config-if)#exit

Switch#conf t

Switch(config)#hostname Saba-S1

Saba-S1(config)#enable password cisco

Saba-S1(config)#

Saba-S1(config)#exit

Switch 2

Switch>en

Switch#conf t

Switch(config)#vlan 10

Switch(config-vlan)#name MANAGEMENT

Switch(config-vlan)#vlan 20

Switch(config-vlan)#name IICT

Switch(config-vlan)#vlan 30

Switch(config-vlan)#name IBA

Switch(config-vlan)#exit

Switch(config)#int fa0/2

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 20

Switch(config-if)#exit

Switch(config)#int fa0/3

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 30


[email protected]
SABA SHABBIR

Switch(config-if)#exit

Switch#conf t

Switch(config)#hostname Saba-S2

Saba-S2(config)#enable password cisco

Saba-S2(config)#

Switch 3

Switch>

Switch>

Switch>en

Switch#conf t

Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)#vlan 10

Switch(config-vlan)#name MANAGEMENT

Switch(config-vlan)#vlan 20

Switch(config-vlan)#name IICT

Switch(config-vlan)#vlan 30

Switch(config-vlan)#name IBA

Switch(config-vlan)#

Switch(config-vlan)#exit

Switch(config)#int fa0/3

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 30

Switch(config-if)#int fa0/2
[email protected]
SABA SHABBIR

Switch(config-if)#switchport mode access

Switch(config-if)#switchport access vlan 20

Switch(config-if)#exit

Switch(config)#

Switch(config)#enable password cisco

Switch(config)#hostname Saba-S3

Saba-S3(config)#

Switch 4

Switch>

Switch>

Switch>

Switch>en

Switch#conf t

Switch(config)#hostname Saba-S4

Saba-S4(config)#enable password cisco

Saba-S4(config)#vlan 10

Saba-S4(config-vlan)#name MANAGEMENT

Saba-S4(config-vlan)#vlan 20

Saba-S4(config-vlan)#name IICT

Saba-S4(config-vlan)#vlan 30

Saba-S4(config-vlan)#name IBA

Saba-S4(config-vlan)#exit
[email protected]
SABA SHABBIR

Saba-S4(config)#int fa 0/1

Saba-S4(config-if)#switchport mode trunk

Saba-S4(config-if)#switchport trunk allow vlan all

Saba-S4(config-if)#exit

Saba-S4(config)#int fa 0/2

Saba-S4(config-if)#switchport mode access

Saba-S4(config-if)#switchport access vlan 10

Saba-S4(config-if)#exit

Saba-S4(config)#int fa 0/3

Saba-S4(config-if)#switchport mode trunk

Saba-S4(config-if)#switchport trunk allow vlan all

Saba-S4(config-if)#exit

Saba-S4(config)#int fa 0/4

Saba-S4(config-if)#switchport mode access

Saba-S4(config-if)#switchport access allow vlan all

Saba-S4(config-if)#exit

Saba-S4(config)#int fa 0/5

Saba-S4(config-if)#switchport mode trunk

Saba-S4(config-if)#switchport trunk allow vlan all

Saba-S4(config-if)#exit
[email protected]
SABA SHABBIR

Router
Router>

Router>en

Router#conf t

Router(config)#hostname SABA-R1

SABA-R1(config)#enable password cisco

SABA-R1(config)#in fa0/0

SABA-R1(config-if)#no shutdown

SABA-R1(config-if)#

SABA-R1(config-if)#exit

Encapsulation dot1Q Configuration

SABA-R1(config)#int fa0/0.10

SABA-R1(config-subif)#encapsulation dot1Q 10

SABA-R1(config-subif)#ip address 192.168.10.1 255.255.255.0

SABA-R1(config-subif)#exit

SABA-R1(config)#int fa0/0.20

SABA-R1(config-subif)#encapsulation dot1Q 20

SABA-R1(config-subif)#ip address 192.168.20.1 255.255.255.0

SABA-R1(config-subif)#exit

SABA-R1(config)#int fa0/0.30

SABA-R1(config-subif)#encapsulation dot1Q 30

SABA-R1(config-subif)#ip address 192.168.30.1 255.255.255.0

SABA-R1(config-subif)#exit
[email protected]
SABA SHABBIR

Configuring an IP DHCP Helper Address

SABA-R1(config)#int fa0/0.20

SABA-R1(config-subif)#ip helper-address 192.168.10.2

SABA-R1(config-subif)#exit

SABA-R1(config)#int fa0/0.30

SABA-R1(config-subif)#ip helper-address 192.168.10.2

SABA-R1(config-subif)#exit

SABA-R1(config)#

SABA-R1(config)#do write

Building configuration...

[OK]

SABA-R1(config)#

ACLs Configuration on Router

SABA-R1>en
Password: cisco
SABA-R1#conf t

SABA-R1(config)#access-list 100 deny icmp host 192.168.20.11 host 192.168.10.3


SABA-R1(config)#access-list 100 deny icmp host 192.168.30.11 host 192.168.10.3
SABA-R1(config)#access-list 100 deny icmp host 192.168.30.12 host 192.168.10.3
SABA-R1(config)#access-list 100 deny icmp host 192.168.20.10 host 192.168.10.3

SABA-R1(config)#access-list 100 permit ip any any

SABA-R1(config)#int fa0/0.10
SABA-R1(config-subif)# ip access-group 100 in

SABA-R1(config)#int fa0/0.20
SABA-R1(config-subif)# ip access-group 100 in

SABA-R1(config)#int fa0/0.30
SABA-R1(config-subif)# ip access-group 100 in

SABA-R1(config-subif)#exit
[email protected]
SABA SHABBIR

Definitions

VLANS

A virtual LAN (VLAN) is any broadcast domain that is partitioned and isolated in a computer
network at the data link layer (OSI layer 2). VLANs allow network administrators to group hosts
together even if the hosts are not directly connected to the same network switch.

Difference Between Trunk Port and Access Port

Basis of Trunk Port Access Port


Comparison
Terminology It carries traffic on one or more VLANs on It’s a part of only one VLAN and normally
the same physical links. used to terminating end devices like
Laptops, PC and printer.
Support Mode Multiple Untagged VLAN’s. Single Untagged VLAN.
Common Use- Switch to switch PC/Printer to switch.
Cases Hypervisor to switch
Switch to router
Switch to the server, especially on VM
terminology

Tags Allows multiple VLANs to traverse and Allows single VLAN to traverse and
add tags. removes tags.
Configuration To designate port to trunk mode- switch To designate port to access mode-switch
port mode trunk. port mode access.
Layer It’s in a layer 2 Ethernet frame. It’s in the Layer 2 Ethernet frame.
[email protected]
SABA SHABBIR

802.1Q Encapsulation

802.1Q is the networking standard that defines virtual LANs (VLANs) on an Ethernet network. VLANs are
logical networks that share a single physical connection using 802.1Q tagged frames. An Ethernet frame
can contain an 802.1Q tag, with fields that specify VLAN membership and user priority. The VLAN tag is
inserted between the source MAC address and the Type/Length fields in the Ethernet frame. Figure 1
shows how the VLAN tag is inserted in the frame.

OSPF

Open Shortest Path First (OSPF) is a link-state routing protocol that was developed for IP networks and is
based on the Shortest Path First (SPF) algorithm. OSPF is an Interior Gateway Protocol (IGP).

OSPF has the following key advantages:


[email protected]
SABA SHABBIR

• Compared with distance-vector routing protocols such as the Routing Information Protocol
(RIP), OSPF is more suitable for serving large, heterogeneous internetworks. OSPF can
recalculate the routes in a short amount of time when the network topology changes.
• With OSPF, you can divide an Autonomous System (AS) into areas and keep area topologies
separate to decrease the OSPF routing traffic and the size of the link-state database of each
area.
• OSPF provides equal-cost multipath routing. You can add duplicate routes to the TCP stack using
different next hops.

ACLs

An Access Control List (ACL) is a set of rules that is usually used to filter network traffic. ACLs can be
configured on network devices with packet filtering compatibilities, such as routers and firewalls.
ACLs contains a list of conditions that categorize packets and help you determine when to allow or deny
network traffic. They are applied on the interface basis to packets leaving or entering an interface.
Types of Access Control Lists

Access control lists can be approached in relation to two main categories:

Standard ACL
An access-list that is developed solely using the source IP address. These access control lists allow or
block the entire protocol suite. They don’t differentiate between IP traffic such as UDP, TCP, and HTTPS.
They use numbers 1-99 or 1300-1999 so the router can recognize the address as the source IP address.

Extended ACL
An access-list that is widely used as it can differentiate IP traffic. It uses both source and destination IP
addresses and port numbers to make sense of IP traffic. You can also specify which IP traffic should be
allowed or denied. They use the numbers 100-199 and 2000-2699.

You might also like