-
8/6/2019 Practical new
1/13
Switch port Security Lab (1-2)
Workgroup Router
E0
Fa 0/2
Switch(wg_sw
)
SWITCH
Sh o w c om m a n d s
Switch> Enable Switch# Show version Switch# Show run Switch#
Show interface vlan 1 Switch# Show mac-address-table
Por t c on f i gu ra t i on com m ands
Switch# config t Switch(config)#interface Fastethernet 0/2
Switch(config-if)#switchport mode access
Switch(config-if)#switchport port-security
( to enable security inside the port)
Switch(config-if)#switchport port-security maximum 1(Allow
maximum 1 mac-address)
Switch(config-if)#switchport port-security mac-address
xxxx.xxxx.xxxx(xxxx.xxxx.xxxx - The mac-address which is assigned
to ethernet 0)
Switch(config-if)#switchport port-security violation
shutdown
-
8/6/2019 Practical new
2/13
Wg-Router
Router> enable Router# config t Router(config)# interface
Ethernet 0 Router(config-if)#mac-address 0008.eeee.eeee
VLAN Lab (2-1)
Workgroup Router(wg_ro)
E0
Core_Router
wg_sw fa0/2
Fa 0/11
Sh o w c om m a n d s
SWITCH
Switch#show vtp status Switch#show vlan Switch#show interfaces
fastEthernet 0/11 switchport
-
8/6/2019 Practical new
3/13
c on f i g u r a t i o n c o m m a n d s
Switch(config)#vtp domain icnd Switch(config)#interface vlan
1
(to assingn a ip address to the switch)
Switch(config-if)#ip address X.X.X.X 255.255.255.0
Switch(config-if)#no shut Switch(config)#Ip default-gateway
10.1.1.3 Switch(config)#interface fastEthernet 0/11
Switch(config-if)#switchport mode trunk
(trunking is allow ing the vlan traffic to flow through from one
sw itch to
another)
Switch#telnet 10.1.1.3(To check the connectivity between
devices)
Switch(config)#vlan X Switch(config-vlan)#name vlanX
Switch(config-if)#switchport access vlan X (X is your vlan
number)
(to assign the sw itchport into the vlan)
Core Router
core_b(config)#int fa 0/0.X core_b(config-subif)#encapsulation
dot1q X core_b(config-subif)#ip address 10.X.X.3 255.255.255.0
Wg-Router
Router(config)#ip route 0.0.0.0 0.0.0.0 10.x.x.3
Router(config)#interface Ethernet 0 Router(config-if)#ip address
10.X.X.X 255.255.255.0 Router(config-if)#no shut
STP Lab (2-1)
Sh o w c om m a n d s
SWITCH
-
8/6/2019 Practical new
4/13
Switch#show spanning-tree vlan vlan#
Con f i gu ra t i on c om m ands
Switch(config)#interface fastethernet 0/11 Switch(config-if)#no
shutdown
RIP Lab (3-1)
Wg_ro core
S0 Sx
E0 e0
Fa 0/2 wg_sw
Sh o w c om m a n d s
Switch#show interface vlan1 Switch#show run Router#show run
Router#show ip route
SWITCH
Switch(config)#interface fastEthernet 0/11
-
8/6/2019 Practical new
5/13
Switch(config-if)#shutdown Switch(config)#interface fastEthernet
0/12 Switch(config-if)#shutdown Switch(config)#interface vlan1
Switch(config-if)#ip address 10.x.x.3255.255.255.0
Switch(config-if)#no shut Switch(confi)#int fa 0/2
Switch(config-if)#switchport access vlan 1
Wg-Router
Router(config)#interface ethernet 0 Router(config-if)#ip address
10.x.x.3 255.255.255.0 Router(config-if)#no shut
Router(config)#interface serial 0 Router(config-if)#ip address
10.140.x.2 255.255.255.0 Router(config)#router rip
(to enable the protocol inside the router)
Router(config-router)#network 10.0.0.0 Router#ping 10.140.x.2
Router#debug ip rip Router# no debug ip rip Router#ping
10.1.1.3
EIGRP Lab (3-1)
Wg_ro_Y Wg_ro_X
S1 S1
S0 S0
E0
Core_ro
Sx
-
8/6/2019 Practical new
6/13
Fa 0/2 wg_sw Sy
Sh o w c om m a n d s
Router#show controllers serial 0 Router#show run Router#show ip
route Router#show ip protocols Router#show ip eigrp
Wg-Router
Router(config)#interface serial 0 Router(config-if)#ip address
192.168.x.34 255.255.255.0 Router(config-if)#no shutdown
Router(config)#interface serial 1 Router(config-if)#clock rate
64000 Router(config-if)#bandwidth 64000 Router(config)#router eigrp
100
(to enable the protocol inside the router)
Router(config-router)#network 192.168.x.0 Router#debug eigrp
neighbors
OSPF Lab (3-4)
wg_ro_X
S1 S1 wg_ro_Y
S0 S0
E0
Sy Core_ro
Fa 0/2 Sx
-
8/6/2019 Practical new
7/13
Sh o w c om m a n d s
Router#show controllers serial 0 Router#show run Router#show ip
route Router#show ip protocols Router#show ip ospf neighbor
Wg-Router
Router(config)#interface serial 0 Router(config-if)#ip address
192.168.x.34 255.255.255.0 Router(config-if)#no shutdown
Router(config)#interface serial 1 Router(config-if)#clock rate
64000 Router(config-if)#bandwidth 64000 Router(config)#interface
loopback 0
(to creat a loopback interface inside the rou ter)
Router(config-if)#ip address 192.168.X.X 255.255.255.240
Router(config)#router ospf 650
(to enable the protocol inside the router)
Router(config-router)#network 192.168.0.0 0.0.255.255 area 0
Router#debug ip ospf events Router#ping 10.1.1.3
-
8/6/2019 Practical new
8/13
ACL Lab (4-1)
Wg_ro core
Fa 0/2
Wg_sw
Sh o w c om m a n d s
Router#show ip access-list Router#show ip interface serial 0
Router#showrun
SWITCH
Switch#ping 10.1.1.1 Switch#copy run tftp
Address or name of remote host []? 10.1.1.1
Destination filename [switch-confg]?
-
8/6/2019 Practical new
9/13
Wg-Router Configuration
Router(config)#access-list 101 deny tcp any any eq telnet( to
block the telnet traffic into your pod)
router(config)#access-list 101 permit ip any any
Router(config)#interface ethernet 0 Router(config-if)#ip
access-group 101 in
(to place the ACL inside the interface)
Router(config)#interface serial 0 Router(config-if)#ip
access-group 101 out Router(config)#no access-list 101 deny tcp any
any eq telnet Router(config)#no access-list 101 permit ip any any
Router#ping x.x.x.x
NAT/ PAT Lab (4-2)
Wg_ro core_ro
S0 Sx
E0
fa 0/2 wg_sw
Sh o w c om m a n d s
Router#show ip nat translations Router#show ip nat
statistics
-
8/6/2019 Practical new
10/13
Wg-Router Configuration
Router(config)#interface ethernet 0 Router(config-if)#ip address
10.X.X.3 255.255.255.0 Router(config)#interface serial 0
Router(config-if)#ip address 10.140.X.2 255.255.255.0 Router#ping
10.140.X.1 Router(config)#router rip Router(config-router)#network
10.0.0.0 Router(config)#interface ethernet 0 Router(config-if)#ip
nat inside (to place the translation) Router(config)#interface
serial 0 Router(config-if)#ip nat outside
Router(config)#access-list 10 permit 10.X.X.0 0.0.0.255
(To allow the specified ip address range)
Router(config)#ip nat inside source list 10 interface serial 0
overload(to translate the ip addresses into a single public ip
which reside in the int
serial 0)
Switch#ping 10.1.1.3 Router(config)#no access-list 10
Router(config)#interface ethernet 0 Router(config-if)#no ip nat
inside Router(config)#interface serial 0 Router(config-if)#no ip
nat outside
-
8/6/2019 Practical new
11/13
PP P Lab (5-1)
wg_ro
S0 S0
E0
wg-sw Fa 0/2
Sh o w c om m a n d s
Router#show interfaces serial 0
Wg-Router
Router(config)#hostname wg_ro_a wg_ro_a#show run wg_ro_a
(config)#username core_ro password cisco wg_ro_a (config)#interface
serial 0 wg_ro_a (config-if)#shutdown wg_ro_a
(config-if)#encapsulation ppp wg_ro_a (config-if)#ppp
authentication chap wg_ro_a(config-if)#no shutdown wg_ro_a#debug
ppp authentication wg_ro_a#no debug ppp authentication
-
8/6/2019 Practical new
12/13
Frame Relay Lab (6-1)
Wg_ro
S0
E0
Fa 0/2
Wg_sw
Sh o w c om m a n d s
wg_ro_a#show interfaces serial 0 wg_ro_a#show frame-relay lmi
wg_ro_a#show frame-relay pvc wg_ro_a#show frame-relay map
Wg-Router Configuration
wg_ro_a(config)#interface ethernet 0
-
8/6/2019 Practical new
13/13
wg_ro_a(config-if)#ip address 10.x.x.x 255.255.255.0
wg_ro_a(config)#interface serial 0 wg_ro_a(config-if)#shutdown
wg_ro_a(config-if)#ip address x.x.x.x x.x.x.x Router(config)#router
rip
wg_ro_a(config-if)#encapsulation frame-relay
wg_ro_a(config-if)#no shutdown wg_ro_a#ping 10.1.1.3 wg_ro_a#debug
frame-relay lmi wg_ro_a#No debug frame-relay lmi
wg_ro_a(config)#interface serial 0 wg_ro_a(config-if)#shutdown
wg_ro_a(config-if)#no ip address wg_ro_a(config)#interface serial
0.1 point-to-point wg_ro_a(config-subif)#ip address 10.140.X.2
255.255.255.0 wg_ro_a(config-subif)#frame-relay interface-dlci
100
wg_ro_a#ping 10.1.1.3
