Scribd
Upload
2 views

Module 04

Module 04 discusses communication between networks, emphasizing the limitations of using only Layer 2 switches and the necessity of routers for inter-VLAN communication. It explains the structure of IPv4 addressing, subnet masks, and the concept of default gateways to facilitate network connectivity. The module concludes with a lab activity focused on configuring VLANs and implementing static routes for inter-VLAN connectivity and internet access.

Uploaded by

srevuelta.es
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
2 views

Module 04

Module 04 discusses communication between networks, emphasizing the limitations of using only Layer 2 switches and the necessity of routers for inter-VLAN communication. It explains the structure of IPv4 addressing, subnet masks, and the concept of default gateways to facilitate network connectivity. The module concludes with a lab activity focused on configuring VLANs and implementing static routes for inter-VLAN connectivity and internet access.

Uploaded by

srevuelta.es
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 54

Absolute Beginners lab guide

Module 04

Module 04 – Communication between networks

Single Network

The big problem with building a network with only Layer 2 switches is scaling. Imagine that
you have 2000 endpoints connected in the same Virtual LAN, say, VLAN1. Now suppose an
endpoint sends a broadcast message, an ARP request for example. The message is
processed by 1999 endpoints. This one broadcast might not be an issue, but what if 40% of
endpoints sent a broadcast at the same time? A single device could process 800 broadcast
messages unnecessarily if it was not the destination on any of those messages. This can
cause inefficiency and poor network performance.

To overcome this situation, we can use more than one VLAN. For example, we can divide
the network into eight smaller VLANs, where each new little network (subnet) accommodates
up to 250 endpoints.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
1
Absolute Beginners lab guide
Module 04

This approach is good because it reduces the broadcast problem, but now your devices are
isolated. Remember, endpoints that are mapped into different VLANs cannot communicate.
We can truly affirm that:
• Intra VLAN communication is permitted
• Inter VLAN communication is denied

Router
A router is the intermediary device that enables you to interconnect devices that reside in
different VLANs or networks. Routers work at Layer 3, and so can analyze both Layer 2 and
Layer 3 headers. However, a router’s forwarding decision is always based on Layer 3
information – the IP address.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
2
Absolute Beginners lab guide
Module 04

Internet Protocol (IP) Addressing

Before you explore routing operations, you must understand the information contained in the
Layer 3 Header - specifically the IP addressing. As with Layer 2, the Layer 3 header includes
two addresses - one for the source and another for the destination.

Note. This document focuses on IP version 4 (IPv4) addressing.

IPv4 Address Structure

IPv4 addresses are made up of 32 binary digits called bits. This is divided in four groups of
eight bits called octets. To make it easier for humans to read these bits, they are usually
translated to a decimal number. Valid range values for an octet are from 0 to 255.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
3
Absolute Beginners lab guide
Module 04

These octets help us visualize how IP addresses are divided in two main portions:
• Host portion
• Network portion
Your full home address has a street name and a house number to help the mailman find our
home. Likewise, IP addresses help routers and multilayer devices deliver our data to a
specific device.

In this manner, the host portion indicates the specific endpoint, while the network portion
identifies that host’s network. Every host in the same network shares the same network
portion in their IP addresses, just like all the houses on your street share the same street
name for their home address.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
4
Absolute Beginners lab guide
Module 04

Subnet mask

You might wonder, “How do I know how many octets are assigned to the host and how many
to the network? Well, that is the role of a subnet mask. The IPv4 subnet mask is used to
differentiate the host portion from the network portion in an IP Address.
The subnet mask is a consecutive sequence of ones followed by a consecutive sequence of
zeros. In the next figure the binary notation shows the zeros and ones. For simplicity we will
use the decimal notation in this document, and you must remember that an octet full of ones
equals in decimal the number 255.

The subnet mask does not contain the network or host portions. It just tells computers,
switches, and routers where the network portion ends and the host portion begins. All the
octets that “match” 255 in a subnet mask are the network portion. The octets that match the
zeros, belong to the host portion.
In the next figure, notice how the IP address 10.0.1.100 uses the subnet mask
255.255.255.0. This implies that the first three octets represent the network and the last octet
represents the host portion.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
5
Absolute Beginners lab guide
Module 04

Prefix length

Another method to express the subnet mask is using the prefix length. This is a number that
is written next to the IP address and indicates the number of ones contained in the subnet
mask.
The format used is ip-address/prefix length, for example 10.0.1.100/24. The next table list
the most common subnet mask and the associated prefix-length.

Subnet mask (decimal) Number of ones Prefix length

255.0.0.0 8 /8

255.255.0.0 16 /16

255.255.255.0 24 /24

IPv4 address type

There are three types of IP addresses, each with a specific function:

• Network addresses identify a network and all the endpoints within it. The first available
IP address in any network is reserved to be the network address. This address has a 0 for
all the bits in the host portion of the address.
• The Broadcast addresses is a special address in every network. It allows broadcast
communication within that network. This address enables endpoints to reach every single
device in the network by sending one single packet - addressed to the broadcast IP
address.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
6
Absolute Beginners lab guide
Module 04

The last available address in the host portion of an IP address is reserved for the
broadcast IP address.
• Host Addresses: Any address between the network and broadcast address can be
assigned to any device in the network. Every endpoint must have a unique host address.

Let’s use an example to understand these address types - network 10.0.1.0 with the subnet
mask 255.255.255.0 (also known as 10.0.1.0/24).

1. Analyzing the address and subnet mask, you know that the first three octets represent
the network and the last one represents the host part. So, you focus your analysis on the
last octet.
2. For the host octet, the first valid value is 0. Therefore 10.0.1.0 represents the Network ID.
It is like saying that 10.0.1.0 is the name of the network itself.
3. For the host octet the last valid value is 255. Therefore 10.0.1.255 represents the
Broadcast ID. This is the address use to say, “Attention everyone”.
4. The addresses between the Network ID and the Broadcast ID are the ones that can be
used by the endpoints in the network. In this example the range is from 10.0.1.1 to
10.0.1.254.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
7
Absolute Beginners lab guide
Module 04

Using the IPv4 addressing

In the first section you learned about challenges with using a single large VLAN. One idea
was to split up the network into eight subnets or subnetworks. The next figure shows how
each VLAN uses a unique subnet address. Notice that the Network ID identifies the
subnetworks

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
8
Absolute Beginners lab guide
Module 04

Inter VLAN communication

Recall that communication between Networks or VLANs require a router. But this is not the
only element required to establish the inter-VLAN connectivity. You must also consider the
endpoints, and the changes required to accommodate them.

Host static routes

When a host communicates to any destination, it must look into its own routing table. This
table contains the routes to all known networks – it serves as a map. If you only configure
the IP address and subnet mask the host only knows how to access its local network. In
other words, there are no entries in the routing table.
You can add entries to an endpoint’s routing table using static routes. To create a static
route, you must specify the destination network and the next hop - the device on the local
network that performs routing.
The next figure illustrates the static route concept. PC1 is in VLAN1. You have added a static
route to destination network 10.0.2.0/24. The next hop is the router’s local IP address in
VLAN1 – 10.0.1.254. You are telling PC1, “To reach any host on subnet 10.0.2.0, you must
send packets to 10.0.1.254”.

Note. A similar configuration must be entered in PC2. In this case the destination network
10.0.1.0/24 is reachable via 10.0.2.254.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
9
Absolute Beginners lab guide
Module 04

Problem: Static routes only grant access from one endpoint to one network destination.
With a larger network of a few thousand devices, imagine the mess of configuring so many
static routes on each endpoint. Even worse, imagine having to create static routes for every
possible internet destination! To solve this issue, engineers designed a solution called the
“Default Gateway”.

Default Gateway

The default gateway is the Layer 3 device that can route traffic to other networks. It is like
your bedroom’s doorway. To gain access to other rooms, you must find and go through that
doorway.
Configuring a Default Gateway can simplify host configurations. Instead of manually adding
routes for all the possible networks, simply point endpoints to the L3 device that can route to
any other external network. Default Gateways are usually routers or multi-layer switches.
Note. The Default Gateway parameter can be offered by a DHCP server.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
10
Absolute Beginners lab guide
Module 04

Routers and their routing table

Like endpoints, routers use a routing table to take forwarding decisions. But here is the
difference. Routers not only add entries using static routes, but they can also run protocols
which dynamically add or delete entries. Each time you add an IP address in the router, that
router automatically adds routing entries to its routing table, and classifies them as directly
connected destinations.
The next figure shows how the router adds two entries to its routing table - one for VLAN1
and other for VLAN2. Notice also that the next hop is the router itself because the router
marks the next hop as directly connected.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
11
Absolute Beginners lab guide
Module 04

Connecting to the internet

The internet is a gigantic network formed by millions and millions of smaller networks.
Thanks to the Internet you can access remote servers containing your favorite applications
and services like Facebook or YouTube. However, to gain access to this amazing network of
networks you must have a clear communication path between your LANs and all these
remote networks.
At this moment, your endpoints are using a default gateway. This means that from their
perspective any destination, including the Internet scope is reachable through that gateway.
Now, what about your router? Currently, this device has only added directly connected
networks. So, when a packet destined to Internet arrives to the router, the router drops the
packet because it does not have an entry in the routing table. Its “map” does not include that
destination.
Like endpoints, your router can add routing table entries using static routes, but that is not a
scalable solution. Instead, routers can define a single entry for any network, known as the
default route (equivalent to default gateway for endpoints).
The interesting part of a default route is that it defines a special IP address and subnet mask
to represent “any network”. These special values are 0.0.0.0 as IP address and 0.0.0.0 as
subnet mask. Using a prefix length notation, it is written 0.0.0.0/0.
The next figure illustrates how the router has a default route pointing to the next hop, the
modem (192.168.1.254).

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
12
Absolute Beginners lab guide
Module 04

Lab Activity 3

Task 1: Configure VLANs 11 and 12

Objective

In this lab you will learn about static routes and how they help inter-VLAN connectivity. Then you
learn to implement a router for inter-VLAN connectivity and how to use it to grant internet access
to all connected endpoint devices.

Network Topology for this task

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
13
Absolute Beginners lab guide
Module 04

Steps

1. Open the Aruba Training Lab environment.


2. Right click on the B1-Switch1 icon and select “Open Console”.

Insert image

3. Login using the following credentials:


Username: admin
Password: aruba123
Verify if this is true in the lab

4. Verify the current VLAN configured in B1-Switch1:


B1-Switch1# show vlan
------------------------------------------------------------------------------
VLAN Name Status Reason Type Interfaces
------------------------------------------------------------------------------
1 DEFAULT_VLAN_1 up ok default 1/1/5
2 Accounting up ok static 1/1/1-1/1/2,1/1/5

How many VLAN-ID you see listed?


_______________________________________________________________
What is the name of the VLAN 2?
_______________________________________________________________
How many interfaces are assigned to that VLAN2?
_______________________________________________________________

5. Validate your configuration by issuing the “show interface trunk” command:


B1-Switch1# show interface trunk
------------------------------------------------------------------------
Port Native VLAN Trunk VLANs
------------------------------------------------------------------------
1/1/5 1 1-2

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
14
Absolute Beginners lab guide
Module 04

6. Create VLANs 11 and 12 on B1-Switch1:


B1-Switch1# configure terminal
B1-Switch1(config)# vlan 11
B1-Switch1(config-vlan-11)# name Teachers
B1-Switch1(config-vlan-11)# exit
B1-Switch1(config)# vlan 12
B1-Switch1(config-vlan-11)# name Students
B1-Switch1(config-vlan-12)# exit

7. Assign VLAN 11 to interface 1/1/1:


B1-Switch1(config)# interface 1/1/1
B1-Switch1(config-if)# vlan access 11
B1-Switch1(config-if)# exit

8. Assign VLAN 12 to Interface 1/1/2:


B1-Switch1(config)# interface 1/1/2
B1-Switch1(config-if)# vlan access 12
B1-Switch1(config-if)# exit

PC1 will be a member of which VLAN?


_____________________________________________________________
PC2 will be a member of which VLAN?
_____________________________________________________________

9. Allow VLANs 11 and 12 through the trunk port connecting to the Enterprise-Router.
Then save your configurations with the command “write memory”:
B1-Switch1(config)# interface 1/1/5
B1-Switch1(config-if)# vlan trunk allowed 11,12
B1-Switch1(config-if)# end
B1-Switch1# write memory
Copying configuration: [Success]

10. Validate your VLANs with the command “show vlan”.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
15
Absolute Beginners lab guide
Module 04

B1-Switch1(config)# show vlan

------------------------------------------------------------------------
VLAN Name Status Reason Type Interfaces
------------------------------------------------------------------------
1 DEFAULT_VLAN_1 up ok default 1/1/5
2 Accounting up ok static 1/1/5
11 VLAN11 up ok static 1/1/1,1/1/5
12 VLAN12 up ok static 1/1/2,1/1/5

Make sure that VLAN 11 is allowed on interfaces 1/1/1 and 1/1/5. Also, that VLAN 12 is
allowed in interfaces 1/1/2 and 1/1/5.

11. Validate your trunk interface with the command “show interface trunk”.

B1-Switch1(config)# show interface trunk


------------------------------------------------------------------------
Port Native VLAN Trunk VLANs
------------------------------------------------------------------------
1/1/5 1 1-2,11-12

How many VLANs are in the Trunk interface?


_____________________________________________________________
What VLANs are included in the Trunk interface?
_____________________________________________________________
Will PC1 and PC2 be able to talk to each other?
_____________________________________________________________

Configure PC1 and PC2 with a static IP address

There is no DHCP scope for VLANs 11 and 12, so you must manually configure them. But
don’t worry, it will be easy.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
16
Absolute Beginners lab guide
Module 04

12. Open the Aruba Training Lab environment.


13. Right click on the PC1 icon.

Insert image

14. Open the network connection shortcut icon from the desktop.

15. Double click on the “Network Connection shortcut” icon located in Desktop.
16. Double click “Lab NIC” to access the NIC Status Window.

Note. If you notice that the icon is gray out, this means that the NIC is disabled. To
enable it, right click on the NIC icon and select “Enable”.

Warning. There is an interface called “Do NOT Touch!”, please never select this NIC
adapter nor modify any parameter on it nor disable the interface. You are remotely
connected to this PC using that NIC.

17. In the “Lab NIC Status” window, click “Properties” button. A new Window appears.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
17
Absolute Beginners lab guide
Module 04

18. In Lab NIC Properties window, select “Internet Protocol Version 4 (TCP/IPv4)” then
click the “Properties” button. A new window appears.

19. In the Internet Protocol Version 4 (TCP/IPv4) Properties, choose “Use the following IP
address:” under the General tab.
20. Type 10.0.11.1 and 255.255.255.0 under IP address and Subnet mask, respectively. Do
not add a default gateway.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
18
Absolute Beginners lab guide
Module 04

21. From Aruba Training Lab, right click on “PC2”.

Insert image

22. Double click on the “Network Connection shortcut” icon located in Desktop.

23. Double click on the “Network Connection shortcut” icon located in Desktop.
24. Double click “Lab NIC” to access the NIC Status Window.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
19
Absolute Beginners lab guide
Module 04

Note. If you notice that the icon is gray out, this means that the NIC is disabled. To
enable it, right click on the NIC icon and select “Enable”.

Warning. There is an interface called “Do NOT Touch!”, please never select this NIC
adapter nor modify any parameter on it nor disable the interface. You are remotely
connected to this PC using that NIC.

25. In the “Lab NIC Status” window, click “Properties” button. A new Window appears.

26. In Lab NIC Properties window, select “Internet Protocol Version 4 (TCP/IPv4)” then
click the “Properties” button. A new window appears.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
20
Absolute Beginners lab guide
Module 04

27. In the Internet Protocol Version 4 (TCP/IPv4) Properties, choose “Use the following IP
address:” under General tab.
28. Type 10.0.12.2 and 255.255.255.0 under IP address and Subnet mask, respectively. Do
not add a default gateway.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
21
Absolute Beginners lab guide
Module 04

Will PC1 and PC2 be able to talk to each other?


_____________________________________________________________
Why not?
_____________________________________________________________

That’s right! PC1 and PC2 are on different VLANs and to talk to each other you must
configure a router to froward messages from one VLAN to the other.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
22
Absolute Beginners lab guide
Module 04

Task 2: Configure Inter-VLAN routing on Enterprise-Router

Objective

In this task you will look at the routing table of the Enterprise-Router and compare it to itself
after creating switched Virtual interfaces to route traffic between VLANs.

Topology for this task

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
23
Absolute Beginners lab guide
Module 04

Steps

1. Open the Aruba Training Lab environment.


2. Right click on the Enterprise-Router icon and select “Open Console”.
Insert image

3. Login using the following credentials:


Username: admin
Password: aruba123
Verify if this is true for the lab

4. Look into the routing table of the Enterprise-Router by issuing the command “show ip
route”.

Enterprise-Router# show ip route

Displaying ipv4 routes selected for forwarding

'[x/y]' denotes [distance/metric]

10.0.1.0/24, vrf default


via vlan1, [0/0], connected
10.0.1.254/32, vrf default
via vlan1, [0/0], local
10.0.2.0/24, vrf default
via vlan2, [0/0], connected
10.0.2.254/32, vrf default
via vlan2, [0/0], local

How many entries does the routing table have?


_____________________________________________________________
Do you see entries for 10.0.1.0 /24 and 10.0.2.0/24 (Y/N)?
_____________________________________________________________
What is the next hop for 10.0.1.0/24 network (look for the information after the “via”
keyword)?
_____________________________________________________________
What is the next hop for 10.0.2.0/24 network (look for the information after the “via”
keyword)?

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
24
Absolute Beginners lab guide
Module 04

_____________________________________________________________

Note. These routes were preconfigured to provide routing between VLANs 1 and 2 to the
DHCP server so a lease could be granted to devices on these networks.

Note. There are two other entries on the routing table that have /32 subnet mask. These
represent a route to a single host or single IP address. In this case the switch has a route
to its own IP address 10.0.1.254 and 10.0.2.254.

Add VLANs 11 and 12 to the Enterprise-Router

5. Create VLANs 11 and 12:


Enterprise-Router# configure terminal
Enterprise-Router(config)# vlan 11
Enterprise-Router(config-vlan-11)# exit
Enterprise-Router(config)# vlan 12
Enterprise-Router(config-vlan-12)# exit

6. Assign both VLANs to the trunk interface 1/1/5:


Enterprise-Router(config)# interface 1/1/5
Enterprise-Router(config-if)# vlan trunk allowed 11,12
Enterprise-Router(config-if)# exit

7. Validate your configurations by issuing the commands “show vlan” and “show interface
trunk”:
Enterprise-Router(config)# show vlan

------------------------------------------------------------------------
VLAN Name Status Reason Type Interfaces
------------------------------------------------------------------------
1 DEFAULT_VLAN_1 up ok default 1/1/1,1/1/5-1/1/6
2 Accounting up ok static 1/1/5-1/1/6
11 VLAN11 up ok static 1/1/5
12 VLAN12 up ok static 1/1/5

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
25
Absolute Beginners lab guide
Module 04

Enterprise-Router(config)# show interface trunk

------------------------------------------------------------------------
Port Native VLAN Trunk VLANs
------------------------------------------------------------------------
1/1/5 1 1-2,11-12
1/1/6 1 1-2

Do you see your newly created VLANs (Y/N)?


_____________________________________________________________
What interface is allowing your new VLANs 11 and 12?
_____________________________________________________________

Create SVIs to route traffic between VLANs

Switched Virtual Interfaces (SVIs) allow L2 devices to have an IP address on every VLAN so
we can use it to communicate as a L3 device.

8. Create an IP address for VLAN 11 and 12 with the “interface vlan” command and save
your configuration.

Enterprise-Router# configure terminal


Enterprise-Router(config)# interface vlan 11
Enterprise-Router(config-if-vlan)# ip address 10.0.11.254/24
Enterprise-Router(config-if-vlan)# no shutdown
Enterprise-Router(config-if-vlan)# exit
Enterprise-Router(config)# interface vlan 12
Enterprise-Router(config-if-vlan)# ip address 10.0.12.254/24
Enterprise-Router(config-if-vlan)# no shutdown
Enterprise-Router(config-if-vlan)# end
Enterprise-Router# write memory
Copying configuration: [Success]

9. Look at the routing table and answer the following questions.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
26
Absolute Beginners lab guide
Module 04

Enterprise-Router# show ip route


Displaying ipv4 routes selected for forwarding
'[x/y]' denotes [distance/metric]

10.0.1.0/24, vrf default


via vlan1, [0/0], connected
10.0.1.254/32, vrf default
via vlan1, [0/0], local
10.0.2.0/24, vrf default
via vlan2, [0/0], connected
10.0.2.254/32, vrf default
via vlan2, [0/0], local
10.0.11.0/24, vrf default
via vlan11, [0/0], connected
10.0.11.254/32, vrf default
via vlan11, [0/0], local
10.0.12.0/24, vrf default
via vlan12, [0/0], connected
10.0.12.254/32, vrf default
via vlan12, [0/0], local

How does Enterprise-Router detect the network 10.0.11.0/24?


a. Connected
b. Local
c. Default
_____________________________________________________________
How about network 10.0.12.0/24?
_____________________________________________________________

10. Issue the command “show ip interface brief” to see all the IP addresses configured on
the Enterprise-Router’s interfaces.

Enterprise-Router# show ip interface brief


Interface IP Address Interface Status
link/admin
1/1/2 No Address down/down

1/1/3 No Address down/down

1/1/4 No Address down/down

1/1/7 No Address down/down

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
27
Absolute Beginners lab guide
Module 04

1/1/8 No Address down/down

1/1/9 No Address down/down

vlan1 10.0.1.254/24 up/up

vlan2 10.0.2.254/24 up/up

vlan11 10.0.11.254/24 up/up

vlan12 10.0.12.254/24 up/up

Take note of the IP addresses configured for VLANs 11 and 12. These will be important
on later activities.
_____________________________________________________________

This next figure will help you to understand the IP addressing and the VLANs set at this
moment.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
28
Absolute Beginners lab guide
Module 04

Note. In this lab activity you will not pay attention to IP addresses on VLAN1 and VLAN2.

11. From the Aruba Training Lab environment, connect to PC1.


12. Find the “command line shortcut” on the Desktop.

13. Right click on the shortcut.


14. Select “Run as an Administrator”.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
29
Absolute Beginners lab guide
Module 04

15. Click Yes at the prompt.

16. Issue the command “route print” and look at the routes that PC1 knows.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
30
Absolute Beginners lab guide
Module 04

17. Analyze the output, under the “IPv4 Route Table” section, answer the following
questions.
Under the “Network Destination” column, is the 10.0.11.0 network listed? (Y/N)
________________________________________________________________
Under the “Network Destination” column, is the 10.0.12.0 network listed? (Y/N)
________________________________________________________________

Configuring an IP address in a PC automatically adds an entry in the routing table.


Therefore, the network 10.0.11.0 is present on PC1’s routing table.

18. From the Aruba Training Lab environment, connect to PC2.


19. Find the “command line shortcut”, you will find a shortcut in the Desktop.

20. Right click on the shortcut


21. Select “Run as an Administrator”

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
31
Absolute Beginners lab guide
Module 04

22. Click Yes at the prompt.

23. Issue the command “route print” and look at the routes that PC2 knows.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
32
Absolute Beginners lab guide
Module 04

24. Analyze the output, under the “IPv4 Route Table” section, answer the following
questions.
Under the “Network Destination” column, is the 10.0.11.0 network listed? (Y/N)
________________________________________________________________
Under the “Network Destination” column, is the 10.0.12.0 network listed? (Y/N)
________________________________________________________________

Configuring an IP address in a PC automatically adds an entry in the routing table, this is


why the network 10.0.12.0 is present on PC2’s routing table.

25. Move back to PC1


26. Ping to 10.0.12.2 (PC2).

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
33
Absolute Beginners lab guide
Module 04

Was the Ping successful?


_____________________________________________________________
Why?
_____________________________________________________________

That’s right! Ping is not successful because even though the router knows the path
between both networks, the PCs don’t know that in order to reach the external network
they must go through the router.

Add static routes on PC1 and PC2

27. Connect to PC1.


28. From the Administrator Command Prompt on PC1. Create a static route to the
network 10.0.12.0/24 with next hop of 10.0.11.254. By issuing the command:

Route add 10.0.12.0 mask 255.255.255.0 10.0.11.254

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
34
Absolute Beginners lab guide
Module 04

Note. If you receive the following message “The requested operation requires
elevation”, it means that you are using a user command prompt. You must open the
Command Prompt using administrator permissions. See steps 12 to 15 for guidance.

29. Connect to PC2.


30. From the Administrator Command Prompt on PC2, create a static route to the network
10.0.11.0/24 with next hop of 10.0.12.254. Use the command:
Route add 10.0.11.0 mask 255.255.255.0 10.0.12.254

31. From PC2, ping PC1 (10.0.11.1).

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
35
Absolute Beginners lab guide
Module 04

32. Answer the following question.


Was the Ping successful?
_____________________________________________________________

33. Look at PC2’s routing table by issuing the command “route print” from the administrator
command prompt and answer the following questions.

What is the gateway on the route that you just added?


_____________________________________________________________
What device in your network has this IP address?
_____________________________________________________________
What is the netmask of the network you configured as your static route?
_____________________________________________________________
What is the destination network?
_____________________________________________________________

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
36
Absolute Beginners lab guide
Module 04

You are pointing traffic to the Enterprise-Router. This device is then helping PC2 to reach
PC1, which is located in a different VLAN.

34. Move to PC3.


35. Verify the IP address of PC3. Enter the “ipconfig” command.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
37
Absolute Beginners lab guide
Module 04

Write down the IP address: ___________________________________

36. Move to PC2.


37. Using the information above, ping PC3 and answer the following questions.

Was the ping successful?


_____________________________________________________________
Why not?
_____________________________________________________________

PC3 is on VLAN 2 and neither PC1 nor PC2 have a route that tells them how to get to
10.0.2.0/24. You can add these routes, but you would have to do it on every single host
in VLANs 11,12 and 2. If you had 100+ devices that would be a lot of work!

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
38
Absolute Beginners lab guide
Module 04

Task 3: Configure Default gateways

Objective

In this task you learn to setup default gateways on your hosts and how they help you gain
connectivity to other networks. At the end of this task your topology will look like the one below.
You will have full inter-VLAN connectivity.

Steps

1. From the Aruba Training Lab environment, connect to PC1.


2. Double click on the “Network Connection shortcut” icon located in Desktop

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
39
Absolute Beginners lab guide
Module 04

3. In the “Lab NIC Status” window, click “Properties” button. A new Window appears.

4. In Lab NIC Properties window, select “Internet Protocol Version 4 (TCP/IPv4)” then
click the “Properties” button. A new window appears.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
40
Absolute Beginners lab guide
Module 04

5. In the Internet Protocol Version 4 (TCP/IPv4) Properties, add 10.0.11.254 as Default


Gateway. Also add the DNS server’s IP address (10.0.1.21)

6. Move to PC2.
7. Open the Network Connection Shortcut located in the desktop.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
41
Absolute Beginners lab guide
Module 04

8. In the “Lab NIC Status” window, click “Properties” button. A new Window appears.

9. In Lab NIC Properties window, select “Internet Protocol Version 4 (TCP/IPv4)” then
click the “Properties” button. A new window appears.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
42
Absolute Beginners lab guide
Module 04

10. In the Internet Protocol Version 4 (TCP/IPv4) Properties, add 10.0.12.254 as Default
Gateway. Also add the DNS server’s IP address (10.0.1.21)

11. Open a session to PC3.


12. Open a “command line” window, you will find a shortcut in the Desktop.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
43
Absolute Beginners lab guide
Module 04

13. Verify the IP parameters for your Lab NIC adapter. Enter the ipconfig command.

14. Analyze the output, and answer the following questions:


Do you have a default gateway value?
_________________________________________________________________

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
44
Absolute Beginners lab guide
Module 04

How did you get this information?


____________________________________________________________

Note. The address should be received from DHCP in the 10.0.2.0/24 network.

Take note of the IP address: _____________________________________

15. From PC2 ping PC3 (use the information obtained above).

16. Answer the following question.


Was the ping successful?
_____________________________________________________________

17. Check the routing table on PC2 with the command “route print” from the command
prompt. You may need to scroll up to the IPv4 routing table to see the entries.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
45
Absolute Beginners lab guide
Module 04

18. Answer the following questions:

What is the gateway for the route that you just added?
_____________________________________________________________
What device in your network has this IP address?
_____________________________________________________________
What is the destination network?
_____________________________________________________________

As you can see, the endpoint device is using a 0.0.0.0/0 route. This means any network
will be reached using the gateway 10.0.12.252.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
46
Absolute Beginners lab guide
Module 04

Task 4: Configure a Default Route on the Enterprise-Router

Objective

In this task you will learn how to setup default routes on a router. You will also configure a
routed interface on your multi-layer switch. At the end of this lab you will have a fully-connected
topology like the following:

Steps

1. From the Aruba Training Lab environment, connect to Enterprise-Router.

Insert image

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
47
Absolute Beginners lab guide
Module 04

2. Look at the routing table with the command “show ip route” and answer the following
questions.

Enterprise-Router# show ip route

Displaying ipv4 routes selected for forwarding

'[x/y]' denotes [distance/metric]

10.0.1.0/24, vrf default


via vlan1, [0/0], connected
10.0.1.254/32, vrf default
via vlan1, [0/0], local
10.0.2.0/24, vrf default
via vlan2, [0/0], connected
10.0.2.254/32, vrf default
via vlan2, [0/0], local
10.0.11.0/24, vrf default
via vlan11, [0/0], connected
10.0.11.254/32, vrf default
via vlan11, [0/0], local
10.0.12.0/24, vrf default
via vlan12, [0/0], connected
10.0.12.254/32, vrf default
via vlan12, [0/0], local

With the current configuration, will your hosts reach the internet?
_____________________________________________________________

Why not?
_____________________________________________________________

That’s right! You are missing a default route, to which the host sends all packets with an
unknown destination IP address.

3. Use interface 1/1/8 to connect the modem. Check the current state using the command
“show interface brief”.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
48
Absolute Beginners lab guide
Module 04

Enterprise-Router# show interface brief


---------------------------------------------------------------------------------------------
Port Native Mode Type Enabled Status Reason Speed Description
VLAN (Mb/s)
---------------------------------------------------------------------------------------------
1/1/1 -- routed -- no down Administratively down 1000 TO-SERVER
1/1/2 -- routed -- no down Administratively down -- --
1/1/3 -- routed -- no down Administratively down -- --
1/1/4 -- routed -- no down Administratively down -- --
1/1/5 1 trunk -- yes up 1000 TO-B1-SW1
1/1/6 1 trunk -- yes up 1000 TO-B2-SW2
1/1/7 1 access -- yes up 1000 TO-SERVER
1/1/8 -- routed -- no down Administratively down -- --
1/1/9 -- routed -- no down Administratively down -- --
vlan1 -- -- yes up -- --
vlan2 -- -- yes up -- --
vlan11 -- -- yes up -- --
vlan12 -- -- yes up -- --

What is 1/1/8 interface’s operating mode?


_____________________________________________________________
Is the interface enabled?
_____________________________________________________________

4. Configure an IP address on interface 1/1/8 in the 192.168.0.0/24 network. Turn on the


interface and save your configurations.

Enterprise-Router# configure terminal


Enterprise-Router(config)# interface 1/1/8
Enterprise-Router(config-if)# ip address 192.168.0.1/24
Enterprise-Router(config-if)# no shutdown
Enterprise-Router(config-if)# end
Enterprise-Router# write memory
Copying configuration: [Success]
Enterprise-Router#

5. Validate your Interface 1/1/8 with the show interface 1/1/8 command.

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
49
Absolute Beginners lab guide
Module 04

Enterprise-Router# show interface 1/1/8

Interface 1/1/8 is up
Admin state is up
Link state: up
Link transitions: 0
Description:
Hardware: Ethernet, MAC Address: 08:00:09:37:50:85
IPv4 address 192.168.0.1/24
MTU 1500
Type --
Full-duplex
qos trust none
Speed 1000 Mb/s
L3 Counters: Rx Disabled, Tx Disabled
Auto-negotiation is off
Flow-control: off
Error-control: off
MDI mode: none
Rx
21 total packets 2274 total bytes
0 unicast packets
0 multicast packets
0 broadcast packets
0 errors 0 dropped
0 CRC/FCS 0 pause
L3:
0 packets, 0 bytes
Tx
42 total packets 4596 total bytes
0 unicast packets
0 multicast packets
0 broadcast packets
0 errors 0 dropped
0 collision 0 pause
L3:
0 packets, 0 bytes

What is the Interface status?


_____________________________________________________________
What is the network that the interface 1/1/8 belongs to?
_____________________________________________________________
What is the host address on interface 1/1/8?
_____________________________________________________________

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
50
Absolute Beginners lab guide
Module 04

Configure a default route on Enterprise-Router pointing to your modem

6. Go back to the Enterprise-Router. Ping your modem to make sure it is reachable.

Enterprise-Router# ping 192.168.0.254


PING 192.168.0.254 (192.168.0.254) 100(128) bytes of data.
108 bytes from 192.168.0.254: icmp_seq=1 ttl=255 time=2.05 ms
108 bytes from 192.168.0.254: icmp_seq=2 ttl=255 time=1.63 ms
108 bytes from 192.168.0.254: icmp_seq=3 ttl=255 time=1.81 ms
108 bytes from 192.168.0.254: icmp_seq=4 ttl=255 time=1.62 ms
108 bytes from 192.168.0.254: icmp_seq=5 ttl=255 time=1.85 ms

--- 192.168.0.254 ping statistics ---


5 packets transmitted, 5 received, 0% packet loss, time 4005ms
rtt min/avg/max/mdev = 1.623/1.796/2.054/0.165 ms

Was the ping successful?


________________________________________________________________

7. Configure a default route pointing to 192.168.0.254. Then save your changes

Enterprise-Router# configure terminal


Enterprise-Router(config)# ip route 0.0.0.0/0 192.168.0.254
Enterprise-Router(config)# end
Enterprise-Router# write memory
Copying configuration: [Success]

8. Verify the routing table, use the “show ip route” command.

Enterprise-Router# show ip route

Displaying ipv4 routes selected for forwarding

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
51
Absolute Beginners lab guide
Module 04

'[x/y]' denotes [distance/metric]

0.0.0.0/0, vrf default


via 192.168.0.254, [1/0], static
10.0.1.0/24, vrf default
via vlan1, [0/0], connected
10.0.1.254/32, vrf default
via vlan1, [0/0], local
10.0.2.0/24, vrf default
via vlan2, [0/0], connected
10.0.2.254/32, vrf default
via vlan2, [0/0], local
10.0.11.0/24, vrf default
via vlan11, [0/0], connected
10.0.11.254/32, vrf default
via vlan11, [0/0], local
10.0.12.0/24, vrf default
via vlan12, [0/0], connected
10.0.12.254/32, vrf default
via vlan12, [0/0], local
192.168.0.0/24, vrf default
via 1/1/8, [0/0], connected
192.168.0.1/32, vrf default
via 1/1/8, [0/0], local

9. Answer the following questions:


Do you see a default route (0.0.0.0/0) listed? (Y/N)
_______________________________________________________________
What is the next hop (look in the IP address after the “via” keyword)?
_______________________________________________________________
Which device is this?
_______________________________________________________________

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
52
Absolute Beginners lab guide
Module 04

Test internet access

10. From Enterprise-Router ping 8.8.8.8 and answer the following questions.

Enterprise-Router# ping 8.8.8.8


PING 8.8.8.8 (8.8.8.8) 100(128) bytes of data.
76 bytes from 8.8.8.8: icmp_seq=1 ttl=116 (truncated)
76 bytes from 8.8.8.8: icmp_seq=2 ttl=116 (truncated)
76 bytes from 8.8.8.8: icmp_seq=3 ttl=116 (truncated)
76 bytes from 8.8.8.8: icmp_seq=4 ttl=116 (truncated)
76 bytes from 8.8.8.8: icmp_seq=5 ttl=116 (truncated)

--- 8.8.8.8 ping statistics ---


5 packets transmitted, 5 received, 0% packet loss, time 4005ms
rtt min/avg/max/mdev = 8.720/8.869/9.250/0.203 ms

Note. This IP address (8.8.8.8) is Google’s public DNS server’s IP address.

Was the ping successful?


________________________________________________________________
Can the router reach the Internet?
________________________________________________________________

Test internet access from PC1

11. Move to PC1


12. Open a web browser on PC1.
13. Navigate to google.com

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
53
Absolute Beginners lab guide
Module 04

Were you able to reach the internet?


________________________________________________________________

Congratulations, you have completed Module 4!

We value your feedback to continue improving our self-paced


training; please fill out your course survey here to receive a
completion certificate.

THANK YOU

Rev 20.41 | © Copyright 2020 Hewlett Packard Enterprise Development LP | Confidential – For Training Purposes Only
54

You might also like