You are on page 1of 4

Final Lab 2.

192.168.2.250/24
Fa0/1

Internet
RID: 1.1.1.1

Saigon
192.168.2.110/24
.1 Fa0/0

Router
ADSL

Address Pool: 192.168.2.177 – 192.168.2.180/24
Fa0/24

192.168.100.0/29
Fa0/22

Fa0/0

SW-ENV

.2

.3
RID: 2.2.2.2

NhaTrang

OSPF
Area 0

Fa0/23

Fa0/0

RID: 4.4.4.4

RID: 3.3.3.3
S0/0/0

PPP/CHAP

Hanoi

Fa0/1

Fa0/1

Fa0/24

Fa0/24

192.168.200.0/24

S0/0/0

Hue
Fa0/0

192.168.40.0/24

SW-NT1

SW-HN1
Fa0/22
Fa0/23 VTP Information:
VTP Information:
VLAN 1: 192.168.100.0/24
VTP Domain: NewStar
Fa0/24 VLAN 11: 192.168.11.0/24
Fa0/23
VTP password: cisco
VLAN 22: 192.168.22.0/24
VTP prunning: Enable
SW-HN2
VLAN 33: 192.168.33.0/24
Sw-HN1: VTP mode server
Native VLAN: 33
Sw-HN2: VTP mode client

Fa0/24

SW-H

A. STARTING – Basic Cisco Devices Configuration
1. Cisco Catalyst Switches Configuration (05 points)
-

Configure the switches with host name of Sw-NT1, Sw-SG, Sw-HN1, SwHN2 and Sw-H as the diagram.

-

Set the management console password to newstar

-

Set the telnet acces (vty 0 15) password to cisco

-

An enable secret password of ccna

-

Start www service on all switches

-

Disable domain name resolution service on all switches

-

Configure all switches so that messages from the siwtches to the console
screen will not be appended to the command line

-

All clear text passwords in the running-config should be encrypted

67.0/24 o DNS server 1: 208. if appropriate) and place a description on each interface starting the router that they are connected to and which interface they are.220 Pool name VLAN33: 192.1. Nhatrang.220.168.222 o DNS server 2: 208.168.- Configure all switches to show banner when you login to the switch (from console port or Telnet) 2. - While configuring IP addresses on the interfaces.22.67. Cisco Routers Configuration (5 points) - Configure the routers with host name of Saigon.11.222 o DNS server 2: 208.0/24 o DNS server 1: 208. Don’t forget look at the netmask.168. B.0/24 . and Hue as the diagram - Set the management console password to newstar - Create a user account on all routers with the name is netadmin and the password is master with the privilege level of 15 - Start the www secure-service on all routers - Diable domain name resolution service on all routers - Configure all routers so that messages from the routers to the console screen will not be appended to the command line - All clear text passwords in the running-config should be encrypted - Configure all routers to show a banner when you login to the router 3.168.67.222.67.0/24 o DNS server 1: 208. DHCP service (05 points) - Configure DHCP service on Hanoi router Pool name VLAN1: 192.222.220 Pool name VLAN22: 192.220 Pool name VLAN11: 192. and assign them to appropriate interfaces.33.67. IP addressing Assignment (05 points) - Look at the network diagram for IP addressing for each interface.220.220.222 o DNS server 2: 208. Hanoi. CHALLENGING 1.67. configure the data link layer (PPP.222.

3. Enable the prunning of unnecessary traffic from nonresident VLANs.222 o DNS server 2: 208.220.o DNS server 1: 208. configure Port 02. o Enable OSPF clear text authentication feature on the Serial interfaces of Hanoi and Hue routers with the key of newstar. 04 into VLAN11. Ensure that users can reach any site of network and the Internet.1q – compliant trunk links that are capable of transporting all VLAN traffic. and apply each of them on appropriate interfaces on Hanoi router to fullfil the following requirements: . - On the Catalyst Switch Sw-HN1.67. 15. - Enable spanning tree mode PVRST on all switches. and apply it on Nhatrang’s FastEhternet 0/1 to fullfil the following requirement: o Deny access to users on VLAN11 and VLAN22 to Nhatrang’s LAN - Extended Access list: Create 02 extended incoming access lists. Port 13. 17. Don’t forget to configure appropriate RouterID on each router. configure Port 01  09 into VLAN11. 19 into VLAN33. The VLAN 33 should be the native VLAN.67. Others (20 points) - Standard Access List: Create a standard out going access list. Each of these channels should be 802. Switching (20 points) - Configure VTP and VLAN database in Hanoi site’s switches with the VTP and VLAN information given in the above diagram. WAN (10 points) - PPP o Configure PPP enacapsulation on the WAN link between Hanoi and Hue o Configure CHAP authentication with the password is newstar 5. - Configure uplinks between access layer Sw-HN2 and distribution layer SwHN1 switches. 21 into VLAN33.222. 14 into VLAN22 and Port 17. and 19 into VLAN22 and Port 20. 18. 13. - On the Catalyst Switch Sw-HN2. Routing (30 points) - OSPF o Configure OSPF routing protocol on each router. Port 12. Ensure the Sw-HN1 should be the Root Bridge of all VLAN. 03. 4.220 2.

o Users in VLAN1 cannot ping Hue’s LAN but can telnet to Sw-H o Deny http (www) request from users from VLAN33 o Permit anything else - NAT: configure NAT on Saigon to have the following: o Every host resides in every VLAN and LAN can go through the Internet C. ENDING - Test the connnectivity between any interfaces of any devices in the diagram - Every host resides in every VLAN and LAN can through the Internet .