Adv CCIE R&S - Vol-IV - Diagrams PDF

Download as pdf or txt
Download as pdf or txt
You are on page 1of 66

Advanced

CCIE Routing & Switching


v5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

VOL-IV
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 1 of 66
© 2015 Narbik Kocharians. All rights reserved
Table of content
Security
Lab 1 DHCP Snooping 6
Lab 2 IP Source Guard 7
Lab 3 Dynamic ARP Inspection (DAI) 8
Lab 4 MAC Access-lists 9
Lab 5 VLAN Access-maps - I 10
Lab 6 VLAN Access-maps - II 11
Lab 7 Basic Router Security 12
Lab 8 Standard Named Access-lists 13
Lab 9 Controlling Telnet Access and SSH
Lab 10 Extended Access-lists IP & ICMP 14
Lab 11 Using MQC as a filtering tool 15
Lab 12 Extended Access-list with Established 16
Lab 13 Dynamic Access-list 17
Lab 14 Reflexive Access-list 18
Lab 15 Access-list and Time range 19
Lab 16 Configuring PAM 20
Lab 17 Control Plane Policing 21
Lab 18 uRPF 22
Lab 19 Basic Site-2-Site IPSec VPN (Main Mode) 23
Lab 20 Basic Site-2-Site IPSec VPN (Aggressive Mode) 24
Lab 21 Basic Site-2-Site IPSec VPN and NAT 25
Lab 22 Basic Site-2-Site IPSec VPN With Dynamic IP 26
Lab 23 GRE/IPSEC Tunnel mode, Transport Mode & S-VTI 27
Lab 24 Protecting DMVPN Tunnels 28
IP Services & Advanced Features
IP Prefix-lists
Lab 1 Configuring IP Prefix-lists 31
NAT
Lab 1 Static NAT Configuration 33
Lab 2 Static NAT Configuration & the “Alias” Keyword 34
Lab 3 NAT Reversible 35

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 2 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 4 Advanced Static NAT Configuration 36
Lab 5 Configuration of Dynamic NAT - I 37
Lab 6 Configuration of Dynamic NAT - II 38
Lab 7 Configuration of Dynamic NAT - III 39
Lab 8 NAT and TCP Load Balancing 40
Lab 9 Configuring PAT 41
Lab 10 Configuring PAR 42
Lab 11 Configuring Static NAT Redundancy With HSRP 43
Lab 12 Stateful Translation Failover With HSRP 44
Lab 13 Translation of the Outside Source - I 45
Lab 14 Translation of the Outside Source - II 46
Lab 15 NAT on a Stick 47
Lab 16 NAT Virtual Interface 48
FHRP
Lab 1 HSRP Configuration 50
Lab 2 VRRP Configuration 51
Lab 3 GLBP Configuration 52
EEM
Lab 1 Configuring EEM 54
Syslog
Lab 1 Configuring Syslog
IP Accounting
Lab 1 Configuring IP Accounting 56

HTTP, TFTP and Core Dump Using FTP


Lab 1 Configuring HTTP 59
Lab 2 Configuring TFTP 60
Lab 3 Configuring Core Dump Using FTP
NetFlow
Lab 1 Configuring NetFlow 62
SNMP & RMON
Lab 1 Configuring SNMP & RMON
DHCP
Lab 1 Configuring DHCP 64

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 3 of 66
© 2015 Narbik Kocharians. All rights reserved
NTP & More IP Stuff
Lab 31 Configuring NTP 66
Lab 32 More IP Stuff

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 4 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

Security
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 5 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1
DHCP Snooping

DHCP
Server

R1 R2 R3 R4
F0/0 F0/0 F0/0 F0/0

F0/2 F0/3
VLAN VLAN
F0/1 F0/4
100 100

SW1

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 6 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 2
IP Source Guard

DHCP
Server

R1 R2 R3 R4
F0/0 F0/0 F0/0 F0/0

F0/2 F0/3
VLAN VLAN
F0/1 F0/4
100 100

SW1

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 7 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 3
Dynamic ARP Inspection

DHCP
Server

R1 R2 R3 R4
F0/0 F0/0 F0/0 F0/0

F0/2 F0/3
VLAN VLAN
F0/1 F0/4
100 100

SW1

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 8 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 4
MAC Access-list

R1 R2 R3
F0/1 F0/1 F0/1

F0/2
VLAN VLAN
F0/1 F0/3
100 100

SW2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 9 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 5
VLAN Access maps -I

.1 VLAN 203 .2
R1 F0/0
R2
F0/0
100.1.1.0/24

F0/1

F0/2

SW1

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 10 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 6
VLAN Access maps -II

R1 R2 R3
10.1.1.1 /24 F0/0 10.1.1.2 /24 F0/0 F0/0 10.1.1.3 /24
0000.1111.1111 0000.2222.2222 0000.3333.3333

F0/2

F0/1 F0/3

VLAN 200 VLAN 200


F0/4
SW1 F0/6

F0/5

0000.4444.4444 0000.5555.5555 0000.6666.6666


10.1.1.4 /24 F0/0 10.1.1.5 /24 F0/0 F0/0 10.1.1.6 /24

R4 R5 R6

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 11 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 7 – Basic Router Security

12.1.1.0/24
Lo0 Lo0
1.1.1.1/32 2.2.2.2/32

.1 VLAN 12 .2
F0/0 F0/1 F0/2 F0/0
R1 R2
SW1

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 12 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 8 – Standard Named Access List

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 13 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 10 – Extended Access List
IP and ICMP

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 14 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 11 – Using MQC as a Filtering Tool

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 15 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 12 – Extended Access List With
Established

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 16 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 13 – Dynamic Access List

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 17 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 14 – Reflexive Access-Lists

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 18 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 15 – Access-List and Time-Range

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 19 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 16
Configuring PAM

Outside
Network

131.1.1.0 /24

0
1/
S

.1
R1
F0/0
10.1.1.0 /24

.2 .3 .4

Port Port Port


80 8000 8080

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 20 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 17 – Control Plane Policy

12.1.1.0/24
F0/0 Lo0 F0/0
1.1.1.1/24
.1 .2
R1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 21 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 18
Configuring uRPF

R2
F0/0 .2 .2 F0/1

10.1.12.0 /24 10.1.23.0 /24

Lo1
.1 F0/0 F0/1 .3 33.3.3.3 /32

.1
S0/1
S0/1
.3
R1 10.1.13.0 /24 R3
3.3.3.3 /32
Lo0
1.1.1.1 /32
Lo0

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 22 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 19
Basic Site-to-Site IPSec VPN (Main Mode)

Lo0 Lo0
1.1.1.1/24 2.2.2.2/24

.1 S1/2 .2
12.1.1.0/24 S1/1
R1 DCE
R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 23 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 20
Basic Site-to-Site IPSec VPN (Aggressive Mode)

Lo0 Lo0
1.1.1.1/24 2.2.2.2/24

.1 S1/2 .2
12.1.1.0/24 S1/1
R1 DCE
R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 24 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 21
Basic Site-to-Site IPSec VPN and NAT

Lo0
NAT Lo0
1.1.1.1/24 Device 3.3.3.3/24

.1 S1/2 .2 S1/3 .3
12.1.1.0/24 23.1.1.0/24
R2
S1/1 S1/2
R1 DCE DCE
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 25 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 22
Basic Site-to-Site IPSec VPN With Dynamic IP

Lo1 Lo1
10.1.1.1/24 30.3.3.3/24
Lo0 Lo2 Lo0 Lo2
1.1.1.1/24 11.1.1.1/24 3.3.3.3/24 33.3.3.3/24

.1 S1/2 .2 S1/3
12.1.1.0/24 23.1.1.0/24
R2
S1/1 S1/2
R1 DCE DCE
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 26 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 23
GRE/IPSec Tunnel Mode, Transport Mode & S-VTI

Lo1 Lo1
10.1.1.1/24 30.3.3.3/24
Lo0 Lo2 Lo0 Lo2
1.1.1.1/24 11.1.1.1/24 3.3.3.3/24 33.3.3.3/24

.1 S1/2 .2 S1/3
12.1.1.0/24 23.1.1.0/24
R2
S1/1 S1/2
R1 DCE DCE
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 27 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 24 – Protecting DMVPN Tunnels

Lo0

.1 1.1.1.1/24

R1
F0/0

200.1.1.0 /24

DMVPN
10.1.1.0/24

20 4
0. /2
1. 0
2.
0 .3.
F0 1
/0
/2
4 00. /0
2 F0
.2 .3
Lo0
Lo0 3.3.3.3/24
2.2.2.2/24

R2 R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 28 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

IP Services &
Advanced Features

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 29 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
v5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

IP Prefix-lists
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 30 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – Prefix-Lists

.3
R3
S1/1

13.1.1.0/24

S1/3
DCE

.1 S1/4 .4 .6
14.1.1.0/24
R1 R4 R6
DCE S1/1

S1/5
F0/0 F0/0 F0/0

12.1.1.0/24 45.1.1.0/24 56.1.1.0/24 67.1.1.0/24

F0/0 F0/0 S1/6 G0/0


DCE

.2 .5 .7
R2 R5 R7

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 31 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
v5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

NAT
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 32 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – Static NAT Configuration

Loopback 0 Loopback 0
1.1.1.1/24 10.2.2.1/24
1.1.1.2/24 Secondary 10.2.2.2/24 Secondary
1.1.1.3/24 Secondary 10.2.2.3/24 Secondary
1.1.1.4/24 Secondary 10.2.2.4/24 Secondary
1.1.1.5/24 Secondary 10.2.2.5/24 Secondary

131.1.12.0/24
.1
S1/2 .2
DCE
R1 S1/1
DTE R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 33 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 2 –Static NAT Configuration & the “Alias”
Keyword

Lo0 12.1.1.0 /24


1.1.1.1/24
F0/0
.1 .2
R1 F0/0 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 34 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 3 – NAT Reversible

12.1.1.0 /24 23.1.1.0 /24


F0/0 DTE
.2 S1/2
.1 .2 S1/3
R1 F0/0 R2 DCE
.3
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 35 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 4 – Advanced Static NAT Configuration

Lo0
1.1.1.1/24

R1
S1/2 S1/3
DCE DCE

12.1.1.0 /24 13.1.1.0/24

S1/1 S1/1

R2 R3
ISP-1 ISP-2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 36 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 5 – Configuration of Dynamic NAT-I

10.2.2.1/24
10.2.2.2/24 Secondary
10.2.2.3/24 Secondary
10.2.2.4/24 Secondary
Lo0
10.1.1.1 /24 10.2.2.5/24 Secondary

12.1.1.0 /24
.1 .2
S1/2
R1 S1/1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 37 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 6 – Configuration of Dynamic NAT-II

10.2.2.1/24
10.2.2.2/24 Secondary
10.2.2.3/24 Secondary
10.2.2.4/24 Secondary
Lo0
10.1.1.1 /24 10.2.2.5/24 Secondary

12.1.1.0 /24
.1 .2
S1/2
R1 S1/1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 38 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 7 – Configuration of Dynamic NAT-III

Lo0
1.1.1.1/24

.1
R1
S1/2 S1/3
DCE DCE

12.1.1.0 /24 13.1.1.0/24

Lo0 S1/1 S1/1 Lo0


200.2.2.2/24 200.3.3.3/24
.2 .3
R2 R3
ISP-1 ISP-2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 39 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 8 – NAT and TCP Load Balancing

10.2.2.1/24
10.2.2.2/24 Secondary
10.2.2.3/24 Secondary
10.2.2.4/24 Secondary
Lo0
10.1.1.1 /24 10.2.2.5/24 Secondary

12.1.1.0 /24
.1 .2
S1/2
R1 S1/1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 40 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 9 – Configuring PAT

10.2.2.1/24
10.2.2.2/24 Secondary
10.2.2.3/24 Secondary
10.2.2.4/24 Secondary
Lo0
10.1.1.1 /24 10.2.2.5/24 Secondary

12.1.1.0 /24
.1 .2
S1/2
R1 S1/1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 41 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 10 – Configuring PAR

.1 S1/4
14.1.1.0/24
.4
S1/1

R1 R4
DCE

F0/0

10.1.123.0/24 10.1.123.0/24

F0/0 F0/0

.2 .3
R2 R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 42 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 11 – Configuring Static NAT Redundancy
With HSRP

F0/0
.2 F0/1

R2
100.1.1.0 /24

200.1.1.0/24
.1 F0/0
.4
F0/1
R1 R4

F0/0
.3 F0/1

R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 43 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 12 – Stateful Translation Failover With
HSRP

F0/0
.2 F0/1

R2

100.1.1.0 /24

200.1.1.0/24
.1 F0/0
.4
F0/1
R1 R4

F0/0
.3 F0/1

R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 44 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 13 – Translation of the Outside Source - I

Lo0 Lo0
1.1.1.1 /8 2.2.2.2 /8

F0/0 12.1.1.0 /24 F0/0

R1 .1 .2
R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 45 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 14 – Translation of the Outside Source - II

.1 S1/2 .2 S1/3 .3
12.1.1.0 /24 S1/1

R2
23.1.1.0/24
R1
DCE

R3
DCE S1/2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 46 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 15 – NAT on a Stick

Lo0
3.3.3.3 /8

R3
.3 F0/0

123.1.1.0 /24
Lo0 Lo0
10.1.1.1 /24 .1 F0/0 F0/0 .2 10.2.2.2 /24

R1 R2

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 47 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 16 – NAT Virtual Interface

12.1.1.0/24 23.1.1.0/24
F0/0 F0/1
.1 .2 .2 .3
R1 F0/0 R2 F0/1 R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 48 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
v5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

FHRP
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 49 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – HSRP Configuration

Lo0 - 1.1.1.1/32

.1
R1
F0/0

DMVPN
123.1.1.0/24

Lo0 - 1.1.1.7/32 G0/0 Lo0 - 1.1.1.8/32 G0/0

.7 .8
R7 R8
G0/1 G0/1

10.1.1.0/24

F0/1
Lo0 - 1.1.1.4/32

.4
R4

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 50 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 2 – VRRP Configuration
4

Lo0
1.1.1.1/32

.1
R1
S1/2 S1/3 S1/4
DCE DCE DCE

12.1.1.0/24 14.1.1.0/24
13.1.1.0/24

Lo0 Lo0 Lo0


2.2.2.2/32 3.3.3.3/32 R1 4.4.4.4/32
S1/1 S1/1 S1/1

.2 .3 .4
R2 R3 R4
F0/0 F0/0 F0/0

10.1.1.0 /24
F0/0 F0/0

.5 .6
R5 R6

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 51 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 3 – GLBP Configuration

Lo0
1.1.1.1/8
R1

F0/1
R1
S1/3 S1/2
DCE DCE

10.2.2.0/24 13.1.1.0/24 12.1.1.0/24

S1/1 S1/1

F0/1
R3 R2
F0/0 F0/0
10.1.1.0 /24
F0/0 VLAN 100 F0/0

R4 R5

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 52 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

EEM
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 53 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 - EEM

Task 10

12.1.1.0/24
F0/0 Lo0 F0/0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 .2
R1 R2
S1/3
DCE

23.1.1.0/24

S1/2
Lo0 Lo0
4.4.4.4/24 3.3.3.3/24
.4 .3
R4 R3
F0/0 F0/0
34.1.1.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 54 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

IP Accounting
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 55 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – IP Accounting

Lo0 Lo0
1.1.1.1/24 2.2.2.2/24
.1 S1/2
12.1.1.0/24 S1/1
.2
R1 F0/1
DCE
R2
F0/0

18.1.1.0/24 17.1.1.0/24
G0/1 Lo0
G0/0 7.7.7.7/24
Lo0
8.8.8.8/24 .7
.8
R7
R8 G0/0
G0/1
67.1.1.0/24
58.1.1.0/24

Lo0 F0/1 Lo0 F0/0


5.5.5.5/24 6.6.6.6/24
.5 F0/0
Lo0 .6
R5 R6
3.3.3.3/24
35.1.1.0/24
F0/0 .3
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 56 of 66
© 2015 Narbik Kocharians. All rights reserved
Task 9

Reconfigure the routers based on the following topology:

Lo0
1.1.1.1/24
.1
R1
F0/0

10.1.1.0/24 10.1.1.0/24

F0/0 F0/0 F0/0

.2 .3 .4
R2 R3 R4

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 57 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

HTTP, TFTP, and


Core Dump Using FTP
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 58 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – HTTP Connection Management

12.1.1.0 /24 13.1.1.0 /24


F0/0 .1
.2 S0/1
.1 S0/1
R2 F0/0 R1 .3
R3

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 59 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 2 – TFTP

.1 .2
R1 R2
F0/0 F0/0

10.1.1.0/24

F0/0 F0/0

.3 .4
R3 R4

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 60 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

NetFlow
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 61 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – NetFlow

.1 S1/2
DCE
12.1.1.0/24 S1/1
.2 S1/3
23.1.1.0/24 S1/2
.3
DCE
R1 R2 R3
F0/0
10.1.1.0/24

F0/0 F0/0 F0/0

.6 .5 .4
R6 R5 R4

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 62 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

DHCP
CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 63 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – DHCP Configuration

R1 R2 R3 SW2
F0/0 F0/0 F0/0
Vlan 100 VLAN 100
10.1.1.0/24
F0/0

.4
S1/5
R4 DCE
F0/0
45.1.1.0/24
DHCP R6
Server
S1/4 .5
F0/0
R5
F0/0
R7
VLAN 200
10.2.2.0/24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 64 of 66
© 2015 Narbik Kocharians. All rights reserved
Advanced
CCIE Routing & Switching
5.0
www.MicronicsTraining.com

Narbik Kocharians
CCSI, CCIE #12410
R&S, Security, SP

NTP & More IP Stuff


CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 65 of 66
© 2015 Narbik Kocharians. All rights reserved
Lab 1 – Configuring NTP

.1
R1
S1/2 S1/3
DCE DCE

12.1.1.0 /24 13.1.1.0/24

S1/1 S1/1

.2 .3
R2 R3

Task 6

Configure the routers based on the following topology and IP addressing scheme:

R2 R3
.1 .2
R1 R2
F0/0 F0/0
10.1.1.0 /24

CCIE R&S by Narbik Kocharians Advanced CCIE R&S Work Book v5.0 Page 66 of 66
© 2015 Narbik Kocharians. All rights reserved

You might also like