Complab Manual
Complab Manual
1. Design a Home Network with a Router, Access Point, and Wireless Work
Stations I
2. Design a Home Network with a Router, Access Point, and Wireless Work
Stations. –II
3. Design a Home Network with a Router, Access Point, and Wireless Work
Stations. –III
4. VLANs Scenario
5. VTP (VLAN Trunking Protocol) Scenario
6. VLANs and Trunking
7. Routing between VLANs (Router on a stick)
Instructions:
Instructions:
We continue with DNS server configuration on WS1 from the previous lab.
Notes: The DNS server enables address resolution. If one needs to connect to remote
resources by host name or domain name (other than the IP address), then DNS server needs
to be configured. Incidentally, 8.8.8.8 and 8.8.4.4 are free public DNS servers provided by
Google. The DNS protocol is an important part of the web's infrastructure, serving as the
Internets phone book. every time you visit a website, your computer performs a DNS look
up.
Notes: The default configuration for Windows PCs (client computers) is that of automatic
DHCP configuration. As soon as a Windows PC is powered on, it searches for DHCP server
to provide IP parameters. If a PC is configured with static IP settings, then it will take
precedence over DHCP server, and automatic configuration is not activated.
Instructions:
Notes: The DNS server itself requires an IP address, and subnet mask, at the minimum, to
be addressable in the network. Therefore, you need to set these IP settings first. Also, note
that the IP settings for DNS server must be configured statically. It cannot obtain it’s own IP
address from another DHCP server!
Next, you configure the DHCP parameters that need to be passed on to the DHCP client
computers as and when required by the client computers. Usually, DHCP will be able to pass
several other parameters, but most widely used options are given here.
For this purpose, assign an IP address 192.168.1.1 and subnet mask 255.255.255.0 for
interface E0 on router R1. Similarly, assign and IP address of 200.202.1.51 and subnet mask
of 255.255.255.0 on interface S0 on R1. Misconfigure Gateway on WS1 to 192.168.0.1
R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int s 0
R1(config-if)#ip address 200.202.1.51 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#
Instructions:
1. Ping from WS1 to 200.202.1.51. Observer that you get ping failed message.
2. Click on WS1 this will open Windows Networking dialog box.
2. Verify the IP settings, including IP address, subnet mask and default gateway. Note that
DNS does not matter at this stage because you are pinging using IP address.
3. Notice that the default gateway has been wrongly configured to 192.168.0.1 instead of
192.168.1.1 Correct the gateway IP address and Save the settings.
Notes: Default gateway plays an important role in network communications. One renowned
way to find problem with IP settings is to ping a remote host by IP address first and then by
domain name or host name. If the former works and the later doesn’t, then it is very likely
that the problem is with DNS resolution.
Scenario: The manually configured client WS1 is unable to communicate to any other clients
or gateway on the network. Check whether the same are properly configured on WS1.
WS1 Configuration:
IP address: 192.168.1.130
Subnet mask: 255.255.255.128
Default gateway: 192.168.1.1
Instructions:
Notes: It is important that the default gateway and the host computer reside in the same
subnet. The purpose of default gateway is to receive any packets from the connected host
computers that could not be delivered within the local network. A subnet mask mismatch
ensures that there is no communication between gateway and the host (in this case Work
Station client WS1)!
Scenario: WS1, which has been manually configured, is not able to ping R1 by using host
name. However, ping to 192.168.1.1 by using IP address is successful. Verify that the
problem exists and correct the same using appropriate diagnostic command in the command
prompt. DNS server is located at IP address 192.168.1.2
1. Go to command prompt on WS1 and issue ping command, ping R1. Verify that the
command fails. Now, issue ping 192.168.1.1. Verify that the command is successful. Since it
is assumed that the gateway is configured properly, we need to troubleshoot WS1 for any
mis-configuration.
2. Click on WS1 this will open Windows Networking dialog box.
3. Verify the DNS server addresses for DNS Primary. It should read 192.168.1.2 However, it
is set to 192.168.1.1. Correct the DNS Primary to 192.168.1.2
4. Exit Properties window, and ping by host name from the command prompt. Ping should be
successful.
Notes: DNS (Domain Name Server) is used for resolving domain names (or host names) to
machine understandable IP addresses. On a workstation, DNS can be configured manually
or may be passed using DHCP. Usually, there will be at least two DNS servers configured on
a workstation accessing the Internet. If one fails, the second DNS server is used for address
resolution. The first in the list is called DNS Primary and the second is called DNS
Secondary.
Instructions:
Notes: Two workstations or client PC can communicate with each other using a Cross
Cable. Note that a straight Ethernet cable is used for connecting a workstation (or a host) to
a Switch or Hub, whereas a cross Ethernet cable is used for connecting a host to host or a
switch to switch or workstation to workstation directly.
Task: Design a network with two workstations WS1, WS2 connected via central switch
(Switch A) using Ethernet as shown in the figure.
Instructions:
Lab Exercise 10: Design a network with DHCP server and a client computer using a
Switch.
Configuration parameters:
DHCP Server IP address: 192.168.1.2
Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1
DHCP Parameters:
IP address range: 192.168.1.2 to 192.168.1.254
subnet mask: 255.255.255.0
Gateway: 192.168.1.1
DNS1: 192.168.1.1 DNS2: None.
Client (WS1) needs to be configured to obtain DHCP parameters automatically.
Instructions:
1. Open designer and drag and drop components as shown in the figure. Connect the Switch
with WS1 and Server with Ethernet (Straight) cables.
2. Export the configuration.
3. Open the exported configuration in the simulator.
4. Click on the Server computer and configure IP address, and DHCP parameters on the
Server. Save configuration and exit.
5. Click on WS1 and view configuration. By default, DHCP parameters are obtained
automatically. If not configured to obtain DHCP values by default, set it back to default
configuration. Save and exit configuration window.
6. Ping Server (192.168.1.2 from WS1. Ping should be successful. If not, troubleshoot for the
same.
Lab Exercise 11:Telnet to a DHCP server (given DHCP server IP address) and verify
login. User name: certexam, password: test
Instructions:
Configure workstations WS3, WS4 to connect to Access Point AP1 without using any
security (Open network). Note that AP1 is already configured with appropriate SSID. Verify
network connectivity by pinging Server IP address 192.168.1.2
1. Configure WS3, WS4 to obtain IP addresses automatically from the DHCP server.
2. Note the SSID provided on AP1 by Opening the Properties window on AP1.
3. Configure the same SSID on both WS3 and WS4 wireless clients.
4. At the command prompt, verify that ping from WS3 to 192.168.1.2 and see if the ping is
successful.
5. Repeat ping on WS4.
Notes: At the minimum, the wireless network needs to be configured with SSID. Though
SSID is the only required parameter for communicating in a wireless LAN environment, the
wireless network is not considered secure. This is because any other client computer (say, a
rogue computer) can communicate over the network using the same SSID and misuse the
network resources. For this reason, security protocols such as WEP or WPA or MAC address
filtering are used on the wireless LANs.
Scenario: Configure a wireless WiFi connection on client computers WS3 and WS4 to
connect to Access Point AP1 using WEP key Cert1 and SSID CertExams. Verify
communication between the work station WS3 and DHCP server (192.168.1.2) using Ping
command from WS3 or WS4. Note that AP1 is already configured with appropriate SSID and
WEP code (5/13 char long) DHCP is also configured with IP address 192.168.1.2 and subnet
mask 255.255.255.0
Requirements: The Access Point is configured properly with SSID CertExams and WEP
password Cert1. The DHCP server is configured with IP address, subnet mask and default
gateway of 192.168.1.2, 255.255.255.0 and 192.168.1.1 respectively..
Instructions:
1.Configure WS3, WS4 to obtain IP addresses automatically from the DHCP server.
2. Configure the SSID CertExams and WEP code Cert1 on both WS3 and WS4 wireless
clients. Save configurations.
Notes: WEP (short for Wireless Equivalent Privacy) is used to secure wireless LAN. The
password could be 5/13 characters long. Necessary conditions to communicate in wireless
environment using WEP are:
1. IP address, subnet mask, and default gateway are configured properly
2. SSID and WEP password are configured properly.
Scenario: WS3 is not able to communicate with WS4. Ping WS4 from WS3 is not successful.
Verify the configuration on WS3/WS4 and ensure that ping works. DHCP is configured on
client computers and working properly.
Requirements: For this purpose, WS3 SSID will be configured wrongly before hand.
No communication takes place (ping fails). Then, bringup the wireless properties window on
WS3 and configure SSID properly. Ping should be successful.
Access Point configuration:
SSID: CertExams, Password: Cert1,
IP address: 192.168.1.3, subnet mask: 255.255.255.0
Default gateway: 192.168.1.1
1. Open command prompt on WS3 and ping WS4. Verify that ping fails.
2. Open WS3 network properties window and make sure that DHCP is set to Automatic (no
manual configuration).
3. Open wireless properties windows and verify that SSID is correct (CertExams, case
sensitive). Ensure that WEP password is properly set by re-entering the password “Cert1,
again case sensitive)
4. Save and exit the Properties window.
5. Repeat the same on WS4.
6. Now, ping WS3 to default gateway 192.168.1.1. The ping should be successful, provided
that the Access Point and DHCP Server are configured properly. Repeat the same on WS4.
Notes: An SSID is the name of a wireless local area network (WLAN). All wireless devices
on a WLAN must employ the same SSID in order to communicate with each other. SSIDs
are case sensitive text strings. The SSID is a sequence of alphanumeric characters (letters or
numbers). SSIDs have a maximum length of 32 characters.
Scenario: Find the route taken by IP packets reach the Default gateway using appropriate
command on WS3. Trace the route from WS3 to Server by using tracert command.
Requirements: AP, Server, and WS3 needs to be configured prior to tracert command with
proper IP addresses.
Instructions:
1. Go to command prompt on WS3. Issue tracert Server command at the prompt. Notice the
path taken by the packet.
2. Exit command prompt.
Notes: You may see only one hop to get to the destination server. This is because the server
is in the local network. The number of hops required to reach the destination is only one in
this case.
1. You have installed TCP/IP protocol stack on your computer. Now you want to check
whether the TCP/IP stack is installed properly by pinging the local loopback address. Which
of the following is used for local loopback?
a) 1.0.0.0
b) 127.0.0.1
c) 255.255.255.255
d) 240.0.0.0
a) PAP
b) Radius
c) CHAP
d) Verisign
3. You are configuring PPP on your router. Which authentication scheme uses 3-way
handshake?
a) PAP
b) CHAP
c) TACACS
d) RADIUS
8. You are Telnetting to a remote host on the Internet. Which protocol is being used?
a) IPX/SPX
b) TCP/IP
c) NetBEUI
d) HTTP
10. Which TCP/IP command is most likely to produce the following output?
Interface:202.100.99.10 on interface 0X1000003
Internet Address Physical Address Type
202.200.99.10 00:A0:C9:14:C8:29 static
a. Ping
b. arp –a
c. tracert
d. nbtstat
11. An administrator has configured a SOHO LAN with two 8-port Hubs. Both Hubs are
connected together using a straight cable. A workstation connected to one Hub is not able to
communicate with any other workstation connected to the second Hub. But workstations on
the same Hub are able to communicate with each other. What is the likely problem?
12. Which of the following cable types has the longest range without significant signal
reduction?
a. UTP
b. STP
c. MMF (Multi Mode Fiber)
d. SMF (Single Mode Fiber)
13. Which utility can be used to view the current TCP/IP connections to your Windows
computer?
a. ARP
b. Ping
c. Tracert
d. Netstat
a. CSU/DSUs
b. Hubs
c. Modems
d. Bridges
15. Which device should you use to monitor the amount of network traffic over a period of
time?
a. Time domain reflectometer (TDR)
b. Oscilloscope
c. Protocol Analyzer
d. Frequency domain reflectometer
a. IP address
b. MAC address
c. SSID
d. Network number
17. You want to make a home network connecting two Windows XP computers with NIC and
RJ-45 connectors. At the minimum, what networking components do you require?
a. 202.199.100.2
b. FEDC:BA98:7654:3210:FEDC:BB98:7654:3210
c. 00:A0:C9:14:C8:29
d. 1101100011110000
19. You are installing a network infrastructure in a new office. Which one of the following is
used to force solid wire into metal slots on the 110 block.
a. A punch-down tool
b. 66 block
c. Smart jack
d. Cable stripper
20. You want to verify the default gateway that a client computer is using. Which of the
following commands can be used to display the default gateway?
a. Tracert
b. Ping
c. IPCONFIG
d. Route
a. True
b. False
Active Connections
Proto Local Address Foreign Address State
TCP system:3931 system:3932 ESTABLISHED
TCP system:3932 system:3931 ESTABLISHED
TCP system:4664 system:12080 ESTABLISHED
24. You are preparing to install and configure a DHCP Server. Which task must you
complete?
a. Configure the Server to be a DNS Server
b. Manually assign a valid IP address to the Server
c. Install NetBEUI on the Server
d. Configure the IP address of the second DHCP server when prompted.
25. Which of the following are key characteristics of PPP? (Choose three)
a) can be used over analog circuits
b) maps Layer 2 to Layer 3 address
c) encapsulates several routed protocols
d) supports IP only
e) provides error correction
1. Ans. b
Explanation: 127.0.0.1 is the local loopback address defined by the Internet Protocol and used
for by a host to ping itself to verify the IP connectivity.
2. Ans a and c
Explanation: PPP supports Password Authentication Protocol (PAP) and,
Challenge Handshake Authentication Protocol (CHAP).
3. Ans. b
Explanation: PAP uses 2-way handshaking. Passwords are sent in clear text across the link.
Therefore, PAP is to be used only when it not possible to use CHAP. CHAP uses 3-way
handshaking. CHAP uses Challenge/ Response method which provides protection against the
password capture while authenticating the user. One should use CHAP whenever it is
possible.
4. Ans. b
Explanation: IPv6 addresses are 128 bits in length that correspond to 16
Bytes or octets.
5. Ans. c
Explanation: The 128 bit IPv6 address correspond to 8 sections
separated by colons with 4 hexadecimal digits in each section.
6. Ans. c
Explanation: IPv6 address format is eight groups of hexadecimals
IP Address: 192.168.1.3
Subnet mask: 255.255.255.0
SSID: CertExams
Channel: 11
Instructions:
Notes: An Access Point, at the minimum requires that SSID is set. Channel is selected
automatically. However, you have the option to change the channel. The IP address and
subnet mask on the Access Point are optional. Wifi access points need not have an IP
address, any more than wired switches and hubs do. However a large number do, as they
also act as DHCP servers and network gateways.
Continuing from the previous lab, your task is to configure WEP on AP1 with a password
1. Open AP1 properties by clicking on the icon. Open Wireless Properties tag, and set the
WEP value to Cert1.
2. Verify that the SSID is same as CertExams. If not, set it to CertExams
3. Save and exit configuration.
Notes: WEP stands for Wireless Equivalent Privacy. There are several other security
mechanisms available for securing wireless networks. These include WPA, MAC filtering,
Authentication.
Configure Access Point AP1 to function as a DHCP server as well. The parameters are: IP
Address range, subnet mask, default gateway, DNS Primary, and DNS Secondary.
AP1:
1. Open AP1 properties by clicking on the icon. Set the IP address and subnet mask to
192.168.1.3 and 255.255.255.0 respectively.
2. Enable DHCP button. Configure IP address range as 192.168.1.4 to 192.168.1.254
3. Subnet mask 255.255.255.0, and default gateway 192.168.1.1
4. Configure DNS Primary as 8.8.8.8 and DNS Secondary as 8.8.4.4
5. Save and exit configuration.
Notes: In pure sense, a wireless access point is nothing but a wireless switch (layer 2
switch). However, additional functionalities are usually built in to the access point. These
include that of a DHCP server and a Gateway. By making an access point multi functional,
manufacturers are able to reduce the number of devices that needs to be used for
accomplishing a task like accessing Internet using a wireless client
.
Task: Design a wireless LAN network using an Access Point (AP) and two wireless work
stations (WS1 and WS2) using designer module. Assign AP SSID: CertExams
Instructions:
Notes: The designer module allows users to design simple to complex networks using
workstations, switches, access points, servers, and routers. Various connectors, including
Ethernet (Straight, Cross), Serial, Console, and other types are made available. WAN types
include Frame Relay, Leased line, and ISDN.
Instructions:
1. In the Simulator window, open the Properties box for AP1 and set the WEP key to Cert1
and save configuration.
2. On WS1 set the WEP key to Cert1 and save.
3. On WS2 also set the WEP key to Cert1 and save.
4. Ping from WS1 to AP by IP address (192.168.1.131). It should succeed.
5. If ping fails, check for SSID mismatch, or WEP mismatch and try again.
6. Try ping from WS2 to AP by IP address. It should also succedd.
1. Which one of the following is typically used for connecting a Wireless mouse to a
computer?
a. 802.11a
b. 802.11g
c. 801.11b
d. Bluetooth
2. Which of the following statements is true about Ad-hoc mode in a 802.11 wireless
network?
a. WAP
b. WEP
c. Kerberos
d. IPSEC
4. A small office has a wireless Access Point with several computers connected to it.
However, some of the users complain that the connection was slow at times. What are the
likely reasons? (Choose 2 best answers).
a. SSID mismatch
b. Incorrect mode selection
c. Wireless phones
d. Antenna mismatch
5. A directional antenna (such as Yagi antenna) radiates more power in a given direction,
whereas omni antenna radiates equal power in all directions.
a. True
b. False
6. You want to connect your notebook computer to a wireless network. Which of the
following network interface card (NIC) is required to connect to a 54 Mbps wireless LAN
that uses 2.4GHz frequencies as per the Wi-Fi standard?
a. 802.11a NIC
b. 802.11b NIC
c. 802.11g NIC
d. Bluetooth NIC
a. Blue tooth
b. 802.11a
c. 802.11b
d. 802.11g
8. Which of the following devices works at the physical layer of OSI model?
a. Switch
b. Router
c. Gateway
d. Wireless Access Point (WAP)
10. Several client computers are connected to a network using WAP (Wireless Access Point).
The WAP in turn is connected to a broadband Internet modem through a router. None of the
computers on the wireless LAN are able to access the Internet during specific times. Which
of the following is the likely reason?
a. Unidirectional
b. b. Yagi
c. c. Parabolic
d. d. Omnidirectional
12. Which of the following supports a maximum speed of 54 Mbps and uses the 2.4-GHz
band?
a. 802.11a
b. b. 802.11b
c. c. 802.11n
d. d. 802.11g
13. Which of the following is true about ESS (Extended Service Set) in a wireless LAN
environment?
a. It allows two devices to communicate directly without the need for an Access Point
(AP)
b. b. It uses a single wireless Access Point (AP)
c. c. Multiple Access Points (APs) create one wireless LAN
d. d. It allows same frequency channels be used for adjacent wireless cells
15. A small office has a wireless AP with several computers connected to it. However, some
users complain that they are not able to access the WLAN. What are the probable causes?
(choose 2 best answers)
16. Which of the following are valid IPv6 addresses? (Choose three.)
a) 2001:0bc8:0000:0000:0000:0000:1128:6ab
b) 2001:0bc8::1128:6ab
c) 2001::13cd:1781::1428:57ab
d) 2001:99:ab:1:99:2:1:9
e) 2001:1858:57ab:1345:2223:1728:34bc
1. Ans:d
Explanation :802.11 standards are typically used in wireless lan configurations. Bluetooth
supports low speeds (up to 1 Mbps) over short distances (up to a max of 30 feet). The
technology is well suited for connecting PDAs or wireless mouse to a computer.
2. Ans:d
Explanation:Ad-hoc mode is used when devices or stations communicate directly with each
other, without the use of Wireless Access Point (WAP). Ad-hoc mode is useful for
establishing a network where wireless infrastructure is un-available or does not exist.
3. Ans:b
Explanation:WEP (Wired Equivalent Protection) is a security standard for 802.11 WAP
networks.
4. Ans:c,d
Explanation:Note that the connectivity was slow or intermittent. If there were any
mode/SSID mismatch, there wouldn’t be any communication at all. It is also likely that the
wireless phones, filing cabinets, and antenna mismatch errors are adding to the problem.
5. Ans.a
Explanation:There are broadly two types of wireless networking antennas. These are Omni
antenna, and Yagi antenna. Omni antennas, as the name implies are omni (omni means "all")
Description: This basic exercise illustrates the steps required to set a hostname to a router.
Instructions:
R1>enable
R1#configure terminal
R1(config)#hostname cisco
Description: In this lab, you will learn to enable interfaces on a router i.e, configure Serial 0
and Ethernet 0 interfaces on a router with specified IP Address and Subnet Mask.
Instructions:
R1>enable
R1#configure terminal
R1(config)#interface serial 0
R1(config-if)#ip address 196.20.32.15 255.255.255.5
R1(config-if)#exit
R1(config)#interface ethernet 0
R1(config-if)#ip address 195.20.32.10 255.255.255.10
Description: Set the line console password for line 0. Use password routercon
Instructions:
R1>enable
R1#configure terminal
R1(config)#line console 0
R1(config-line)#password routercon
Instructions:
R1>enable
R1#configure terminal
R1(config)#line vty 0 4
R1(config-line)#password cisco
Instructions:
R1>enable
R1#config t
R1(config)#line aux ?
R1(config)#line aux 0
R1(config-line)#login
R1(config-line)#password admin
Description: You will practice viewing running configuration, copying running configuration
to startup configuration etc. in this exercise.
c. Copy running-config startup-config or copy run start command copies the current
active configuration to NVRAM.
d. Erase startup-config will enable you to completely delete all configurations on the router
so that you can start from scratch. Type this command to delete the configuration file in
NVRAM.
Instructions:
R1>enable
R1#show running-config
R1#show startup-config
R1#copy running-config startup-config
R1#show startup-config
R1#erase startup-config
R1#show startup-config
Instructions:
R1>enable
R1#show interfaces serial 0
R1#configure terminal
Description: This lab is to learn establishing a telnet session between two routers.
Instructions:
1. Configure R1 and then set the hostname to Router1. Use the command line vty 0 4 to
access telnet lines
2. Configure the router to require the use of login and password
3. Configure cisco as the password that will be used to establish a telnet session
4. Now, assign the IP address of 192.168.100.2 255.255.255.0 to Router1’s Ethernet 0
interface, and enable the interface
5. Connect to R2 and set its host name to Router2 , then access its Ethernet 0 interface and
assign its IP address to 192.168.100.1 255.255.255.0 and enable it
6. From Router2, telnet into Router1’s Ethernet 0 interface
7. A password will be prompted, enter the password as cisco, now the host name changes
from Router2 to Router1 which indicates a telnet session has been established
8. Type the show sessions command on Router2 to view all the active telnet sessions
9. Type the command resume and type the number of session to resume, now the host name
changes to Router1
10. Now go back to Router2 and disconnect the session using disconnect command
R1>
R1>enable
R1#configure terminal
R1(config)#hostname Router1
Router1(config)#line vty 0 4
R2>
R2>enable
R2#configure terminal
R2(config)#hostname Router2
R2(config)#interface ethernet 0
Router2(config-if)#ip address 192.168.100.1 255.255.255.0
Router2(config-if)#no shutdown
Router2(config-if)#end
Router2#telnet 192.168.100.2
Password:
Router1>
Router1>Press CTRL+SHIFT,6 then press X
Router2#show sessions
Router2#resume 1
Router1>Press CTRL+SHIFT,6 then press X
Router2#
Router2#disconnect 1
Description : In this lab exercise, we will be configuring WS1 as a TFTP Server. Then we
shall back up router R1's configuration and restore it to the TFTP Server.
Instructions :
Description: Configure static route 172.16.1.0 mask 255.255.255.0 with next hop address of
172.16.2.1.
Instructions:
R1>enable
R1#configure terminal
R1(config)#no ip routing
R1(config)#ip routing
R1(config)#ip route 172.16.1.0 255.255.255.0 172.16.2.1
Command syntax:
Instructions:
R1>enable
R1#configure terminal
R1(config)#ip route 0.0.0.0 0.0.0.0 192.168.5.1
Description : This lab demonstrates configuring and implementing static routes in a network
Instructions
R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.201.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R2>enable
R2#configure terminal
R2(config)#int e 0
R2(config-if)#ip address 192.168.200.1 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int s 0
R2(config-if)#ip address 192.168.1.2 255.255.255.0
R2(config-if)#no shutdown
WS1:ip address 192.168.201.2 255.255.255.0
WS1:ip default-gateway 192.168.201.1
WS2:ip address 192.168.200.2 255.255.255.0
WS2:ip default-gateway 192.168.200.1
R1#ping R2
R1#ping WS1
R2#ping WS2
WS1:ping 192.168.200.2
WS1:ping 192.168.200.2
Note:Static routes are those which are manually configured on router and which specifies a
path the router should use to reach a destination, typically for smaller networks.
R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.201.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int s 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown
R2>enable
R2#configure terminal
R2(config)#int e 0
R2(config-if)#ip address 192.168.200.1 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int s 0
R2(config-if)#ip address 192.168.1.2 255.255.255.0
R2(config-if)#no shutdown
R1#ping R2
R1#ping 192.168.201.2
R2#ping 192.168.200.2
WS1:ping 192.168.200.2
WS1:ping 192.168.200.2
Note:Default route specifies a path the router should use if it does’nt know how to reach the
destination.
Description: The purpose of this exercise is to configure a loop back interface and test it for
connectivity.The loopback interface is a logical interface internal to a router. It is not
connected to any other device. A loopback interface is UP as long as the router is up and
running. It is useful in managing a router as there will always be at least one interface
available on the router, irrespective of other physical interfaces.
The command used for assigning loopback interface is:
Router(config)#interface loopback <number>
The number can be between 0 and 2147483647
A loopback interface is automatically put in "no shutdown" state when created. However, you
need to assign an ip address to use a loopback interface.
Instructions:
R1>enable
R1#conf term
R1(config)# int ser 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown
R1(Config-if)#end
R1#
R2>enable
R2#conf term
R2(config)#int ser 0
R2(config-if)#ip address 192.158.1.2 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#interface loopback 1
R2(config-if)#ip address 192.168.1.10 255.255.255.0
R2(config-if)#end
R2#
R1>enable
R1#ping 192.168.1.10
Description: Use the traceroute command to map the IP addresses that a packet travels
through to get from one device to another
Instructions:
Router1#conf term
Router1(config)#router rip
Router1(config-router)#network 192.168.10.0
Router1(config-router)#network 192.168.20.0
Router1(config-router)#exit
Router1(config)#exit
Router1#
Router2#conf term
Router2(config)#router rip
Router2(config-router)#network 192.168.10.0
Router2(config-router)#exit
Router2(config)#exit
Router2#
Router3#conf term
Router3(config)#router rip
Router3(config-router)#network 192.168.20.0
Router3(config-router)#exit
Router3(config)#exit
Router3#
Router1#ping 192.168.10.1
Router1#ping 192.168.20.2
Router2#ping 192.168.20.2
Router2#traceroute 192.168.20.2
Description: This exercise helps in understanding RIP Configuration. The router rip
command selects RIP as the routing protocol. The network command assigns a major network
Instructions:
R1>enable
R1#configure terminal
R1(config)#router rip
R1(config-router)#network 1.0.0.0
Description : This lab exercise demonstrates the required commands for DHCP Server
configuration on a cisco router.
Instructions :
1. Issue service dhcp command on router R1 that enables and disables the DHCP server
feature on router. By default, this is enabled.
2. Create an addressing pool for dhcp.
3. Issue network command that specifies the range of IP addresses to be assigned to
clients.
4. Assign the domain-name to the client.
5. In order to resolve Host names to IP addresses, client computers require the IP addresses
of DNS (Domain Name Service) servers. Use dns-server command that allows assigning
upto 8 DNS server addresses to the client, but however in simulator only 1 address is
allowed.
6. Specify the default-router address using default-router command that allows assigning
upto 8 default-gateway addresses to the client for this range of addresses.
7. Specify the duration of the lease, which if omitted results to default 1 day.
R1(config)#service dhcp
R1(config)#ip dhcp pool newpool
R1(config-dhcp)#network 192.168.2.0 255.255.255.0
R1(config-dhcp)#domain-name xyz.com
R1(config-dhcp)#dns-server 192.168.2.2
R1(config-dhcp)#default-router 192.168.2.1
R1(config-dhcp)#lease 2
Description : This lab exercise demonstrates DHCP client configuration i.e, Configuring
an interface on the router to use DHCP to acquire its IP address.
Instructions :
1. Before proceeding with the DHCP client configuration, make sure that DHCP server is
configured as shown in the previous lab exercise.
2. Enter into interface configuration mode on router R2 with appropriate commands.
3. Use the command "ip address dhcp" that configures the specified interface to acquire its
IP Address from the DHCP server, verify the same using "show ip interface brief" on the
router.
R2>enable
R2#configure terminal
R2(config)#interface e 0
R2(config-if)#ip address dhcp
R2(config-if)#exit
R2(config)#exit
R2#show ip interface brief
Description : This lab exercise demonstrates DHCP server configuration and DHCP client
configuration on two routers and also shows the verification commands both on the server
and the client.
1. Issue service dhcp command on router R1 that enables DHCP server feature on router
2. Create an addressing pool for dhcp called pool1.
3. Isssue network command that specifies the range of IP addresses to be assigned to
clients. Use 192.168.4.0 255.255.255.0 in this lab.
4. Assign the domain-name "sample.com" to the client.
5. Assign the IP Address of the DNS-server and Default-router, say 192.168.4.2 and
192.168.4.5 respectively
7. Set the duration of the lease to 4 days.
8. On router R2 and R3, enter into interface confiuration mode and issue the command "ip
address dhcp" that configures the interfaces to acquire IP Addresses from the DHCP
server.
9. Use "show interfaces" or "show ip interface brief" command on R2 and R3 to verify the
addresses acquired from the server.
10. Use "show ip dhcp binding" command on router R1 i.e, server, to view the addresses
assigned to clients.
11. Use "clear ip dhcp binding <client_address>" on the server R1 to clear the specific
address assigned to client or "clear ip dhcp binding *" to remove all the addresses assigned
to clients.
12. Use "no ip address dhcp" command on clients R2/R3 in interface configuration mode
to unconfigure an address assigned on it by the DHCP server.
R1(config)#service dhcp
R1(config)#ip dhcp pool pool1
R1(config-dhcp)#network 192.168.4.0 255.255.255.0
R1(config-dhcp)#domain-name sample.com
R1(config-dhcp)#dns-server 192.168.4.2
R1(config-dhcp)#default-router 192.168.4.5
R1(config-dhcp)#lease 4
R1(config-dhcp)#exit
R1(config)#
R3>enable
R3#configure terminal
R3(config)#interface e 0
R3(config-if)#ip address dhcp
R3(config-if)#exit
R3(config)#exit
R3#show interfaces
1. Which of the following are routing protocols? [Select all that apply]
a) RIP
b) TCP
c) OSPF
d) IP
a) 5
b) 15
c) 255
d) 512
3. You intend to connect your PC directly to a Cisco router. Which of the following allow you
to connect to the router directly?
4. On a Cisco router, you are working in User EXEC (>) mode and want to enter privileged
mode (at # prompt). Which command would you type at the privileged mode prompt?
a) begin
b) exit
c) enable
d) end
5. On a router running Cisco IOS, what is the command used for copying the configuration
from NVRAM to a running RAM?
6. The output of “show interface s0/0” on a router (say, RouterA) is given below. The output
points to some problem with the interface. What is the likely problem?
7. Which cable do you use for connecting a Cisco router console port to a workstation?
a) A straight-through cable
b) A cross-over cable
c) Patch cable
d) Rolled cable
8. On a Cisco router, you want to see the IP address assigned to interface s0. Which command
will display the IP address assigned to serial interface s0?
9. Which of the following statements are true about “debug” command on a Cisco router?
(Choose 2 best answers)
a) Debug command output takes priority over other network traffic
b) The command “undo debug” is used to undo any previous debug commands
c) The “debug all” command generates more output than any other debug command.
d) It is always recommended to use “debug all” commands instead of selectively
issuing debug command.
11. You have configured IP RIP on your network. You want to see the routing table. What is
the command you can use for this purpose?
a) show IP protocol
b) show IP route
c) show IP interface
d) debug IP RIP
12. You are configuring a router running Cisco IOS with a hostname of "Router". You want to
change the hostname to "RouterA". What is(are) the command(s) used for doing this?
a) Router#hostname RouterA
b) Router#config t Router(config)#hostname RouterA
c) Router#hostname Router RouterA
d) Router#config t Router(config)#hostname Router RouterA
13. You are connecting the Auxiliary port on a Cisco access server (DTE) to a modem (DCE).
Which of the following is correct combination of cables? [See the Image]
15. A router connecting two subnets was replaced with a new router. The two subnets are
connected to 2 computers each as shown below:
Subnet 1 Subnet 2:
Computer A: Computer C:
IP address: 202.54.29.6 IP address: 202.54.28.6
Subnet mask: 255.255.255.0 Subnet mask: 255.255.255.0
Default gateway: 202.54.29.1 Default gateway: 202.54.28.1
Computer B: Computer D:
IP address: 202.54.29.7 IP address: 202.54.29.7
Subnet mask: 255.255.255.0 Subnet mask: 255.255.255.0
Default gateway: 202.54.29.1 Default gateway: 202.54.28.1
a. 202.54.29.1
b. 202.54.29.6
c. 202.54.28.1
d. 255.255.255.0
1. Ans: a and c
Explanation : Routing protocols job is to maintain routing tables and route packets
appropriately. Examples of routing protocols are RIP, IGRP, EIGRP,
OSPF. Routers can support multiple independent routing protocols and can update and
maintain routing tables for each protocol independently.
Routed protocols are used to transport user traffic from source node to destination node.
Examples of routed protocols are IP, IPX, AppleTalk.
2. Ans. b
Explanation : Maximum hop count supported by RIP is 15. A hop count of 16 or greater is
considered unreachable.
3. Ans. C
Explanation : There are different types of cables:
1. Straight through cable: This is also known as patch cable. A straight through cable is used
to connect a computer to a hub or a switch.
Description: Select 2950 switch using the N/W Diagram button in the router simulator.
Assign password "consolepass" to line console 0.
Use the line console 0 command, followed by the password and login subcommands, to
require login and establish a login password on the console terminal or on a VTY port. By
default, login is not enabled on the console or on VTY ports.
Instructions:
2950>enable
2950#configure terminal
2950(config)#line console 0
2950(config-line)#password consolepass
2950(config-line)#exit
Description: To assign vty password for a switch for vty lines 0 to 15, choose 2950 switch
from the N/W diagram, and use the following commands. Use the line vty command,
followed by the password and login subcommands, to require login and establish a login
password on the VTY port. By default, login is not enabled on the console or on VTY ports.
Note: The password "virtualpass" is assumed. You can use any other password.
Instructions:
2950>enable
2950#configure terminal
2950(config)#line vty 0 15
2950(config-line)#password virtualpass
2950(config-line)#login
2950(config-line)#exit
2950(config)#
Description: In this exercise, you assign enable password, and secret password on a 2950
switch. Select the switch by going to the network diagram, and selecting appropriate device
from the drop down box.
Instructions:
Description: Here you enter interface configuration mode on a 2950 switch and make the
interface protocol up. Choose 2950 switch by going to the network diagram, and selecting
appropriate device.
Instructions:
2950>enable
2950#configure terminal
2950(config)#interface fastethernet 0/1
2950(config-if)#no shutdown
2950(config-if)#end
Description: This exercise helps in examining the default configurations of a switch and
makechanges to the configuration accordingly as required and view the changes.
Instructions:
2950>enable
2950#configure terminal
Description: You configure a few switch ports for duplex. Choose 2950 switch from the n/w
diagram and exit. The following commands are used for configuring the switch ports.
Instructions:
2950>enable
2950#configure terminal
2950(config)#interface fa 0/1
2950(config-if)#duplex full
2950(config-if)#exit
2950(config)#interface fa 0/3
2950(config-if)#duplex full
2950(config-if)#speed 100
2950(config-if)#end
2950#copy running-config startup-config
Instructions:
SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1
SW1(config)#no spanning-tree vlan 1
SW1(config)#exit
SW1#
Description : This lab exercise demonstrates the necessary commands to configure the root
switch.
Instructions:
SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1 root
SW1(config)#exit
SW1#show spanning-tree
Instructions:
SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/1
Note: Port-Priority can be between 0 and 255, default is 128, the lower the number, higher is
the priority.
Description: This exercise demonstrates the command required to configure switch priority
of a VLAN.
Instructions:
SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1 priority 12288
SW1(config)#exit
SW1#show spanning-tree
Note: The switch priority can be configured thus making it more likely to be chosen as the
root switch. Priority range is 0 to 61440 in increments of 4096, default is 32768.
Description: This lab exercise demonstrates the various show commands to verify spanning-
tree protocol.
Instructions:
SW1>enable
SW1#show spanning-tree
SW1#show spanning-tree summary
SW1#show spanning-tree vlan 1
Instructions:
SW1>enable
SW1#configure terminal
SW1(config)#hostname 2950
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.1.10 255.255.255.0
2950(config-if)#exit
2950(config)#ip default-gateway 172.16.1.2
2950(config)#end
Description: Configure vlan1 on 2950 switch, and set the ip address to 192.16.2.3 mask
255.255.255.0. Set ip default-gateway to 172.16.2.2. copy running configuration to startup
configuration.
Instructions:
2950>enable
2950#configure terminal
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.2.3 255.255.255.0
2950(config-if)#exit
2950(config)#ip default-gateway 172.16.2.2
2950(config)#end
2950#copy running-config startup-config
1. Connect to SW1 and configure fast ethernet interface fa 0/11 on the switch
2. Configure trunking on the switch by issuing command switchport mode trunk
3. Connect to SW2 and configure fast ethernet interface fa 0/11 on the switch
4. Configure trunk line on the switch by issuing switchport mode trunk command
5. Configure WS1 with IP Address 192.168.100.1/24 and WS2 with IP Address
192.168.100.2/24
SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#
WS1:ip address 192.168.100.1 255.255.255.0
WS2:ip address 192.168.100.2 255.255.255.0
Description: Configure switch ip address, default gateway (172.16.2.2), and use ping
command to verify the ip address. Ping default-gateway (192.16.2.2) from the work station.
Instructions:
1. Issue appropriate command to view switch ip address, default gateway, and management
VLAN
2. Enter privileged exec mode
3. Enter terminal configuration mode
4. Correct the configuration and bring up the interface using appropriate commands
5. Use "ping" command from WS22 and verify that the connection to the switch is OK
2950>
2950>enable
2950#configure terminal
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.2.3 255.255.255.0
2950(config-if)#no shutdown
2950(config-if)#exit
Description : This lab exercise helps in learning the concept of creating VLAN's on a
2950Switch, and deleting them.
Instructions :
1. Enter into privileged mode of SW1 and add vlan’s 20 and 50 by entering into vlan
database mode
2. Enter into global configuration mode of SW1 and add ports 2,3 and 4 to vlan 20 and
check the same using show vlan command
3. Configure WS1 with IP Address 192.168.100.1 255.255.255.0 and WS2 with IP
Address 192.168.100.2 255.255.255.0
4. Enter into vlan database mode of SW1 and issue no vlan command to remove a specific
vlan
5. Issue show vlan command to verify the changes and view the vlan information that has
been set.
SW1>enable
SW1#vlan database
SW1(vlan)#vlan 20
SW1(vlan)#vlan 50
SW1(vlan)#exit
SW1#configure terminal
SW1(config)#interface fa 0/2
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#interface fa 0/3
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#interface fa 0/4
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#exit
SW1#show vlan
SW1>enable
Instructions :
1. Configure SW1 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
2. Enter into vlan database mode of SW1 and configure vtp server on SW1 and set vtp
domain to certexams
3. Configure SW2 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
4. Enter into vlan database mode of SW2 and configure vtp server on SW2 and set vtp
domain to certexams, and then create VLAN 30 and VLAN 100 on SW2
5. Confirm that the VLAN’s set on SW2 are seen on SW1
SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#vlan database
SW2(vlan)#vtp server
SW2(vlan)#vtp domain certexams
Description : This lab exercise demonstrates configuring VTP with a VTP client.
Instructions :
1. Configure SW1 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
2. Enter into vlan database mode of SW1 and configure SW1 as VTP Server and set vtp
domain to certexams, create VLAN 10 and VLAN 40 on SW1 and view the VTP
information by issuing show vtp status command
3. Configure SW2 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
4. Enter into vlan database mode of SW2 and configure SW2 as VTP Client and set vtp
domain to certexams, and make sure that VLANs cannot be created on SW2 as SW2 is in
SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams
SW1(vlan)#vlan 10
SW1(vlan)#vlan 40
SW1(vlan)#exit
SW1#show vtp status
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain certexams
SW2(vlan)#exit
SW2#show vtp status
SW2#show vlan
Description : This lab exercise demonstrates vtp domain concept in VLANs. i.e with
nonmatching domains set up on the two switches and see that vlan info is not propagated
between the switches, correct the configuration and verify the same.
Instructions
1. Enter into database mode on SW1, set the mode to server and domain to cisco and create
VLANs 10, 20 and 50
SW1>enable
SW1#vlan database
SW1(vlan)#vlan 10
SW1(vlan)#vlan 20
SW1(vlan)#vlan 50
SW1(vlan)#vtp server
SW1(vlan)#vtp domain cisco
SW1(vlan)#exit
SW1#show vlan
SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain ciscosys
SW2(vlan)#exit
SW2#
SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2#show vlan
SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain cisco
SW2(vlan)#exit
SW2#show vlan
SW2#show vtp status
Instructions
R1>enable
R1#con ter
R1(config)#int e 0
R1(config-if)#ip address 192.168.100.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#end
R1#
WS1:ping 192.168.100.1
SW1>enable
SW2>enable
SW2#vlan database
SW2(vlan)#vlan 50
SW2(vlan)#vtp domain cisco
SW2(vlan)#vtp password ccna
SW2(vlan)#exit
SW2#show vlan
SW2#show vtp status
SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 50
SW1(config-if)#end
SW1#show vlan
SW2#con ter
SW2(config)#int fa 0/1
SW2(config-if)#switchport mode access
SW2(config-if)#switchport access vlan 50
SW2(config-if)#end
SW2#show vlan
WS1:ping 192.168.100.1
SW1#con ter
SW1(config)#int fa 0/12
SW1(config-if)#switchport mode trunk
SW1(config-if)#end
SW2#show vlan
WS1:ping 192.168.100.1
SW2#con ter
SW2(config)#int fa 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end
WS1:ping 192.168.100.1
2. Network devices such as switches and routers have a well defined LED status indicators.
Match the system LED status light on a Cisco 2950 series switch to its description.
a. Green 1. Malfunctioning
b. Amber 2. System is not powered up.
c. Off 3. System is operating normally.
4. Which command will set the default gateway to 192.168.1.1 on a Cisco switch?
a) ip default-route 192.168.1.1
b) ip route 192.168.1.1
c) ip default-gateway 192.168.1.1
d) ip default-network 192.168.1.1
5. A company installs additional workstations in the corporate LAN, and as a result the
network congestion increased significantly. Which device could be used to reduce the
network congestion without the need for additional IP addresses?
a. Gateway
b. Router
c. Switch
d. Hub
Communicating to Internet
a.Wrong DHCP Scope
b.Wrong SSID on Access Point
c. DHCP Server not assigned with static IP address and subnet mask.
Server Configuration:
IP address: 192.168.1.2
Subnet mask: 255.255.255.192
Router R1 configuration:
E0: 192.168.1.1
255.255.255.192
S0: 202.100.15.10
Subnet mask: 255.255.255.64
Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.
It was reported that none of the workstations are able to ping the Router R1’s E0 interface
(Default Gateway). The technician had checked all the physical connections are found them
to be in order.What is the most likely problem?
Solution:
In the above scenario, the DHCP scope was set wrongly on the DHCP Server. The DHCP
scope of 192.168.1.65 to 192.168.1.128 corresponds to subnet ID 192.168.1.64 where as the
default gateway (192.168.1.1) corresponds to subnet ID 192.168.1.0. By correcting the
DHCP scope to 192.168.1.3 to 192.168.1.63 (note that 192.168.1.1 and 192.168.1.2 have
been used for static assignment) the problem could be solved.
Instructions:
1. Open the Server configuration window.
2. Change the Start IP to 192.168.1.3 and Stop IP to 192.168.1.62 (Note that 192.168.1.63 is
broadcast address and can’t be used. 192.168.1.1 is the IP address of default gateway, and
192.168.1.2 is statically assigned to DHCP Server).
3. Ping to default gateway should success.
Scenario Lab2:Design a Home Network with a Router, Access Point, and Wireless
Work Stations. –II
Router R1 configuration:
E0: 192.168.1.65
255.255.255.192
S0: 202.100.15.10
Subnet mask: 255.255.255.64
Access Point (AP1):
SSID:CertExams
WEP:Cert1
Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.
Solution:
Since the wired clients are able to ping the default gateway, it is likely that there is some
configuration problem with wireless Access Point (AP1). Check to make sure that the SSID
and WEP are configured properly, and fix the same if required.
Instructions:
1. Open Access Point AP1 properties.
2. Check SSID and WEP. You will find SSID was wrongly configured as certexams.
Reconfigure SSID to CertExams (Note that SSID and WEP are case sensitive).
3.Now ping default gateway from wireless workstations. It should succeed.
Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.
Solution:
Since it was reported that none of the work stations are able to obtain DHCP settings, it is
likely to be a problem with DHCP server. In this case, DHCP server IP address and subnet
mask are not assigned, because of which, the DHCP server was not able to pass the IP
settings to client workstations. By assigning IP address and subnet mask to DHCP server, the
problem could be solved.
Description : This lab exercise helps to get familiar with the benefits of a VLAN and also in
understanding the process to configure a router and a switch to support VLANs.
Instructions :
R1>enable
R1#configure terminal
R1(config)#interface e 0
R1(config-if)#ip address 192.168.200.1 255.255.255.0
R1(config-if)#no shutdown
SW1>enable
SW1#vlan database
SW1(vlan)#vlan 20 name wrs
SW1(vlan)#exit
SW1#
SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 20
WS2:ping 192.168.200.1
WS2:ping 192.168.200.3
SW1>enable
SW1#configure terminal
SW1(config)#int fa 0/2
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 20
SW1(config-if)#end
WS2:ping 192.168.200.1
WS2:ping 192.168.200.3
SW1>enable
R1>enable
R1#ping 192.168.200.3
R1#ping 192.168.200.4
WS1:ping 192.168.200.1
WS2:ping 192.168.200.1
Note: In the above lab, a switch will not forward frames between two access ports unless
they belong to the same VLAN. By default, all switch ports will be in VLAN1. However,by
configuring one of the switch ports as VLAN20, the switch can only forward packets toother
switch ports that belong to VLAN20. Switchport mode "dynamic auto" is the defaultmode
for all the switches. The interface becomes a trunk port if the neighbouring port is
configured as trunk or Desirable mode.
Description : This lab exercise helps to understand the configuration process of VLAN
Trunking Protocol (VTP) to establish a server and client connection , assigning VLANs to
multiple ports, creating a trunk line between switches to carry VLANs
Instructions :
SW1>enable
SW2>enable
SW2#configure terminal
SW2(config)#interface vlan 1
SW2(config-if)#ip address 192.168.100.2 255.255.255.0
SW2(config-if)#no shutdown
SW2(config-if)#end
SW2#
SW1>enable
SW1#vlan database
SW1(vlan)#vlan 30
SW1(vlan)#vlan 40
SW1(vlan)#exit
SW1#configure terminal
SW1(config)#interface range fast 0/2 - 5
SW1(config-if-range)#switchport access vlan 30
SW1(config-if-range)#exit
SW1(config)#interface range fast 0/6 – 10
SW1(config-if-range)#switchport access vlan 40
SW1(config-if-range)#exit
SW1(config)#exit
SW1#
SW1#show vlan
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams
SW1(vlan)#vtp password ccna
SW1(vlan)#exit
SW1#
SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain certexams
SW2(vlan)#vtp password ccna
SW2(vlan)#exit
SW2#
SW1>enable
SW1#configure terminal
SW1(config)#interface fast 0/12
SW2>enable
SW2#configure terminal
SW2(config)#interface fast 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end
SW2#show vlan
SW2#show vtp status
Description : This lab demonstrates setting up VLAN’s on two switches namely SW1 and
SW2 and test them by pinging between Router R1 and Workstation WS1 as shown in the
figure below.
Instructions :
R1>enable
R1#con ter
R1(config)#int e 0
R1(config-if)#ip address 192.168.100.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#end
R1#
WS1:ping 192.168.100.1
SW1#show vlan
SW2#show vlan
SW1#vlan database
SW1(vlan)#vtp domain certexams
SW1(vlan)#exit
SW1#show vtp status
SW2#vlan database
SW2(vlan)#vtp domain certexams
SW2(vlan)#exit
SW2#show vtp status
SW1#vlan database
SW1(vlan)#vlan 30 name switchvlan
SW1(vlan)#exit
SW1#show vlan
SW2#vlan database
SW2(vlan)#vlan 30 name switchvlan
SW2(vlan)#exit
SW2#show vlan
SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 30
SW1(config-if)#end
SW1#show vlan
SW2#con ter
SW2(config)#int fa 0/1
SW2(config-if)#switchport mode access
SW2(config-if)#switchport access vlan 30
SW2(config-if)#end
SW2#show vlan
SW1#con ter
SW1(config)#int fa 0/12
SW1(config-if)#switchport mode trunk
SW1(config-if)#end
SW1#show interface fa 0/12 switchport
SW2#con ter
SW2(config)#int fa 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end
SW2#show interface fa 0/12 switchport
WS1:ping 192.168.100.1
Instructions
R1>enable
R1#configure terminal
R1(config)#
R1(config)#interface fastethernet 0/0
R1(config-if)#no ip address
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#interface fastethernet 0/0.10
R1(config-subif)#encapsulation dot1q 2
R1(config-subif)#ip address 192.168.100.2 255.255.255.0
R1(config-subif)#exit
R1(config)#interface fastethernet 0/0.20
R1(config-subif)#encapsulation dot1q 3
R1(config-subif)#ip address 192.168.200.2 255.255.255.0
R1(config-subif)#exit
R1(config)#exit
R1#show ip route
SW1>enable
SW1#vlan database
SW1(vlan)#vlan 2
SW1(vlan)#vlan 3
SW(vlan)#exit
SW1#configure terminal
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 2
SW1(config-if)#exit
SW1(config)#int fa 0/2
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 3
SW1(config-if)#exit
WS1:ping 192.168.100.2
WS2:ping 192.168.200.2
WS1:ping 192.168.200.1
SW1>enable
SW1#configure terminal
SW1(config)#interface fast 0/12
SW1(config-if)#switchport trunk encapsulation dot1q
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1#
SW1#show interfaces trunk
WS1:ping 192.168.100.2
WS2:ping 192.168.200.2
WS1:ping 192.168.200.1
Note:The default trunk encapsulation type for 2950 switch is dot1q and it doesn’t support isl
trunking encapsulation whereas 1900 series switches support isl trunking encapsulation type
and doesn’t support dot1q trunking encapsulation.So it is not possible to establish a trunk
connection between a 1900 switch and a 2950 switch.
2. A branch office is connected to the ISP as shown in the figure. Which router is most likely
to be configured with a static route?
a) R1
b) R2
c) R3
d) ISP Router
3. You are a network admin at ABC Corp., and you recently added a Cisco IOS router to your
local office. You need to configure a static route on the router (say, RouterA) to network
4. A branch office is connected to the Internet using a network device as shown in the figure.
Which network device fulfills the requirement?
a) Switch with two Ethernet interface
b) Router with one Ethernet and one Serial interfaces
c) Modem with two serial interfaces
d) Router with two Ethernet interfaces
a) stop ip rip
b) stop router rip
c) no router rip
d) no rip
7. Please refer to the figure below. HostA needs to access SwichA management interface
(VLAN1). HostA is able to ping fa0/0, but unable to access the Switch management interface.
Which of the following needs to be done for enabling access to SwitchA management
interface?
9. Refer to the figure below, hosts on the same VLAN can communicate with each other but
are unable to communicate with hosts on different VLANs. What is needed to allow
communication between VLANs?
10. Please refer to the figure below. HostA was not able to ping HostB. A trace route
command issued a HostA has the following output displayed:
--------------------------------------------------------------------------
C:>tracert 192.200.2.7
Tracing route to 192.200.2.7 over a maximum of 30 hops 1
Destination host unreachable Trace complete
-------------------------------------------------------------------------------
a) The router RTA S0/0 is not configured properly
b) The subnet mask between routers RTB and RTC is incorrect
c) The gateway address on Host A is not configured properly
d) The Host B is not configured properly.
12. The routers A and B are configured as shown in the figure. Host A and Host B are
configured properly. A ping from host A is able to get a successful response from S0 of
RouterB, but failed to get any response from Host B. What is the likely problem?
13.Which of the following addresses represent the 128-bit loopback address in IPv6?
(Choose two)
a) 00:00:00:00::127
b)::1
c) 127.0.0.1
d) 0:0:0:0:0:0:0:1
14. The feature of IPv6 which allows a client to receive an IP address without the use of
DHCP server is which of the following?
a) Stateful DHCP
b) IPsec
c) Stateless autoconfiguration
d) QOS
16. Your network has 120 computers running Windows Operating System. You have decided
to connect your network to the Internet using a T1 line. You want every workstation to be
able to browse the web. However, you are given only one IP address to access the Internet.
What device can be used to allow all work stations access the Internet?
17. Which one of the following is the shortest valid abbreviation for the Ipv6 address
3001:0000:0000:0100:0000:0000:0000:0345 ?
a) 3001::100::345
b) 3001::1::345
c) 3001::100:0:0:0:345:4567
d) 3001:0:0:100::345
1. Ans. a
Explanation: There are three ways a router learns how to forward a packet:
1. Static Routes - Configured by the administrator manually. The Administrator must also
update the table manually every time a change to the network takes place. Static routes are
commonly used when routing from a network to a stub (a network with a single route)
network. The command is ip route network mask address/interface [distance]
Ex: ip route 165.44.34.0 255.255.255.0 165.44.56.5
Here, 165.44.34.0 is the destination network or subnet
255.255.255.0 is the subnet mask
165.44.56.5 is the default gateway.
2. Default Routes - The default route (gateway of last resort) is used when a route is not
known or is infeasible. The command is
ip route 0.0.0.0 0.0.0.0 165.44.56.5
The default gateway is set to 165.44.56.5
3. Dynamic Routes - As soon as dynamic routing is enabled, the routing tables are
automatically updated. Dynamic routing uses broadcasts and multicasts to communicate with
other routers. Each route entry includes a subnet number, the interface out to that subnet, and
the IP address of the next router that should receive the packet. The commands to enable rip
are: router rip network <major network number>.
2. Ans. d
Explanation: ISP router is normally configured with static route.
3. Ans. a
Explanation: The syntax for configuring a static route on a router running IOS is:
ip route network-address subnet-mask {ip address | exit interface}The network address is the
destination network or the remote address that will be added in the routing table.