Embed Size (px)
Citation preview
P2: ROUTING
P2- ROUTINGBy
Vishalya Dulam
AVONMORE TERITARY INSTITUTE
NETWORK DIAGRAM:
1
P2: ROUTING
The above network diagram represents configuration done on both head office and site office. I used three routers to develop this network R1 at head office, and R2 at site office and ISP as router for connecting both R1 & R2 by using serial cables.As per the requirement of this assessment, R1 is connected to switch and made that port as trunk, this switch acts as core switch for all three switches connected to core switch by creating one VLAN per switch. Here, S1 for VLAN 10 (SERVERS), S2 for VLAN 30 (ITSTAFF) and S3 for VLAN 20 (WORKSTATION). The IP addresses assigned to each PC’s and servers on both sides can view on above diagram according to VLSM table.At both Head office and Site office, in workstations IP addresses are assigned to systems by using DHCP SERVER at each end under VLAN 20.
STEP-1: CREATE VLSM TABLE
NETWORK NAME
NETWORK ID
1st USABLE ADDRESS/DEFAULT GATEWAY
LAST USABLE ADDRESS
BROADCAST ADDRESS
DOTTED DECIMAL
CIDR
S1Work Station
172.16.0.0 172.16.0.1 172.16.3.254 172.16.3.255 255.255.252.0 /22
S2Work Station
172.16.4.0 172.16.4.1 172.16.4.126 172.16.2.127 255.255.255.128
/25
S1 SERVER 172.16.4.128
172.16.4.129 172.16.4.158 172.16.4.159 255.255.255.224
/27
S1 ITSTAFF 172.16.4.160
172.16.4.161 172.16.4.190 172.16.4.191 255.255.255.224
/27
S2 SERVER 172.16.4.192
172.16.4.193 172.16.4.206 172.16.4.207 255.255.255.240
/28
S2 ITSTAFF 172.16.4.208
172.16.4.209 172.16.4.210 172.16.4.211 255.255.255.252
/30
S1 ISP 172.16.4.212
172.16.4.213 172.16.4.214 172.16.4.215 255.255.255.252
/30
S2 ISP 172.16.4.216
172.16.4.217 172.16.4.218 172.16.4.219 255.255.255.252
/30
STEP-2:
2
P2: ROUTING
VLAN ASSIGNED AT HEAD OFFICE
VLAN ASSIGNED AT SITE OFFICE
STEP-3:SWITCH CONFIGURATION AT HEAD OFFICECurrent configuration: 1695 bytes!version 12.1no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname S_HO!!spanning-tree mode pvst!interface FastEthernet0/1
3
P2: ROUTING
switchport access vlan 10!interface FastEthernet0/2 switchport access vlan 10!interface FastEthernet0/3 switchport access vlan 10!interface FastEthernet0/4 switchport access vlan 30!interface FastEthernet0/5 switchport access vlan 10!interface FastEthernet0/6 switchport access vlan 10!interface FastEthernet0/7 switchport access vlan 20!interface FastEthernet0/8 switchport access vlan 20!interface FastEthernet0/9 switchport access vlan 20!interface FastEthernet0/10 switchport access vlan 20!interface FastEthernet0/11 switchport access vlan 30!interface FastEthernet0/12 switchport access vlan 30!interface FastEthernet0/13 switchport access vlan 30!interface FastEthernet0/14 switchport access vlan 30!interface FastEthernet0/15 switchport access vlan 30!interface FastEthernet0/16 switchport access vlan 10!interface FastEthernet0/17 switchport access vlan 10!interface FastEthernet0/18 switchport access vlan 10!interface FastEthernet0/19 switchport access vlan 20!interface FastEthernet0/20
4
P2: ROUTING
switchport access vlan 20!interface FastEthernet0/21switchport access vlan 30 switchport mode trunk!interface FastEthernet0/22switchport access vlan 20 switchport mode trunk!interface FastEthernet0/23switchport access vlan 10 switchport mode trunk!interface FastEthernet0/24 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan30 ip address 172.16.4.190 255.255.255.224!ip default-gateway 172.16.4.161!!line con 0!line vty 0 4 loginline vty 5 15 login!!End
SWITCH CONFIGURATION AT SITE OFFICE
Current configuration : 1751 bytes!version 12.1no service timestamps log datetime msecno service timestamps debug datetime msecno service password-encryption!hostname S3!!spanning-tree mode pvst!interface FastEthernet0/1 switchport access vlan 11!interface FastEthernet0/2 switchport access vlan 11!
5
P2: ROUTING
interface FastEthernet0/3 switchport access vlan 21!interface FastEthernet0/4 switchport access vlan 21!interface FastEthernet0/5 switchport access vlan 21!interface FastEthernet0/6 switchport access vlan 21!interface FastEthernet0/7 switchport access vlan 31!interface FastEthernet0/8 switchport access vlan 31!interface FastEthernet0/9 switchport access vlan 31!interface FastEthernet0/10 switchport access vlan 31!interface FastEthernet0/11 switchport access vlan 31!interface FastEthernet0/12 switchport access vlan 31!interface FastEthernet0/13 switchport access vlan 31!interface FastEthernet0/14 switchport access vlan 31!interface FastEthernet0/15 switchport access vlan 31!interface FastEthernet0/16 switchport access vlan 11!interface FastEthernet0/17 switchport access vlan 21!interface FastEthernet0/18 switchport access vlan 21!interface FastEthernet0/19 switchport access vlan 21!interface FastEthernet0/20 switchport access vlan 21!interface FastEthernet0/21 switchport access vlan 21!
6
P2: ROUTING
interface FastEthernet0/22 switchport access vlan 11 switchport mode trunk!interface FastEthernet0/23 switchport access vlan 21 switchport mode trunk!interface FastEthernet0/24 switchport mode trunk!interface Vlan1 no ip address shutdown!interface Vlan31 ip address 172.16.4.210 255.255.255.252!ip default-gateway 172.16.4.209!!line con 0!line vty 0 4 loginline vty 5 15 login!!End
STEP-4: ROUTER CONFIGURATION AT HEAD OFFICEHere, the both routers (R1 & R2) configuration is done by using OSPF (OPEN SHORTEST PATH FIRST) by assigning “area 0”.
By running show command in R1, OSPF shows that to which network it connected and their interface.
The both routers performs “Router on Stick” by interfacing it to Fa 0/0 as shown below,
7
P2: ROUTING
ROUTER CONFIGURATION AT SITE OFFICE
At R2, the interfacing fa 0/0 by assigning IP addresses as,
8
P2: ROUTING
ISP CONFIGURATION
STEP-5: ACCESS LIST ASSIGNED IN R1 R1#sh ip access-lists Standard IP access list 1 deny 172.16.4.0 0.0.0.127 (14 match(es)) permit any (4 match(es))
By using access list in routers, we can block the sending and receiving of packets from one end to other end. Here in my network, I am blocking workstation at Site office from Head office so we the user tries to ping to any workstation from site office it replies back message like “Destination Host unreachable”.STEP-6: RESULT
9
P2: ROUTING
(a) At site office, PC2 connected to workstation pings to workstation PC at head office.
(b) At site office, PC2 connected to workstation pings to IT staff at head office.
(c) At site office, PC2 connected to Workstation pings to server at head office.
10
