Scribd Logo
Importer

Bienvenue sur Scribd !

  • Actividad 7

    Transféré par

    Arocha Cesarin
    114 vues18 pages
    Practica del capitulo 7 ccna 1

    Titre original

    Actividad 7.doc

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Formats disponibles

    DOC, PDF, TXT ou lisez en ligne sur Scribd

    Avez-vous trouvé ce document utile ?

    Ce contenu est-il inapproprié ?

    Signaler ce document
    Practica del capitulo 7 ccna 1

    Droits d'auteur :

    Attribution Non-Commercial (BY-NC)
    Téléchargez comme DOC, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    114 vues18 pages

    Actividad 7

    Transféré par

    Arocha Cesarin
    Practica del capitulo 7 ccna 1

    Droits d'auteur :

    Attribution Non-Commercial (BY-NC)
    Téléchargez comme DOC, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    sur 18

    1

    Actividad 7.4.1: Configuracin bsica de DHCP y NAT


    Tarea 2: Configurar un servidor de DHCP del IOS de Cisco R1(config)#ip dhcp excluded-address 192.168.10.1 192.168.10.10 R1(config)#ip dhcp excluded-address 192.168.11.1 192.168.11.10 Paso 2. Configurar el pool. R1(config)#ip dhcp pool R1Fa0 R1(dhcp-config)#network 192.168.10.0 255.255.255.0 R1(dhcp-config)#dns-server 192.168.11.5 R1(dhcp-config)#default-router 192.168.10.1 R1(config)#ip dhcp pool R1Fa1 R1(dhcp-config)#network 192.168.11.0 255.255.255.0 R1(dhcp-config)#dns-server 192.168.11.5 R1(dhcp-config)#default-router 192.168.11.1 Paso 3. Verificar la configuracin del DHCP. R1#show ip dhcp binding IP address Client-ID/ Lease expiration Type Direccin de Hardware 192.168.10.11 0007.EC66.8752 -- Automatic 192.168.11.11 00E0.F724.8EDA -- Automatic Tarea 3: Configurar el enrutamiento esttico y predeterminado ISP(config)#ip route 209.165.200.240 255.255.255.240 serial 0/0/1 Tarea 4: Configurar NAT esttica R2(config)#ip route 0.0.0.0 0.0.0.0 209.165.200.226 R2(config)#router ospf 1 R2(config-router)#default-information originate Tarea 5: Configurar NAT dinmica con un conjunto de direcciones R2(config)#ip nat inside source static 192.168.20.254 209.165.200.254 R2(config)#interface serial 0/0/1 R2(config-if)#ip nat outside R2(config-if)#interface fa0/0 R2(config-if)#ip nat inside R2(config)#ip nat pool MY-NAT-POOL 209.165.200.241 209.165.200.246 netmask 255.255.255.248 R2(config)#ip access-list extended NAT R2(config-std-nacl)#permit ip 192.168.10.0 0.0.0.255 any R2(config-std-nacl)#permit ip 192.168.11.0 0.0.0.255 any R2(config)#ip nat inside source list NAT pool MY-NAT-POOL R2(config)#interface serial 0/0/0 R2(config-if)#ip nat inside

    R2#show ip nat translations Pro Inside global Inside local Outside local Outside global --- 209.165.200.241 192.168.10.11 --- ----- 209.165.200.242 192.168.11.11 --- ----- 209.165.200.254 192.168.20.254 --- --Tarea 6: Configurar NAT con sobrecarga R2(config)#no ip nat pool MY-NAT-POOL 209.165.200.241 209.165.200.246 netmask 255.255.255.248 R2(config)#no ip nat inside source list NAT pool MY-NAT-POOL R2(config)#ip nat inside source list NAT interface S0/0/1 overload R2#show ip nat translations Pro Inside global Inside local Outside local Outside global icmp 209.165.200.225:3 192.168.10.11:3 209.165.200.226:3 209.165.200.226:3 icmp 209.165.200.225:1024192.168.11.11:3 209.165.200.226:3 209.165.200.226:1024 --- 209.165.200.254 192.168.20.254 --- --Actividad 7.4.2: Desafo de configuracin de DHCP y NAT

    En esta actividad, configure los servicios de direccin IP mediante la red que se muestra en el diagrama de topologa. Si necesita ayuda, consulte nuevamente la prctica de laboratorio de configuracin bsica de NAT y DHCP. Sin embargo, intente hacer todo lo posible por su cuenta. Configure el nombre de host del dispositivo. --> hostname Desactive la bsqueda DNS. --> no ip domainlookup Configure una contrasea de modo EXEC privilegiado. --> enable secret Configure un mensaje del da. --> banner motd Configure una contrasea para las conexiones de la consola. --> enable password Habilite RIPv2 en R1 y R2. No publique la red 209.165.200.224/27. --> router rip Configure el nombre de host del dispositivo. --> hostnameDesactive la bsqueda DNS. --> no ip domainlookupConfigure una contrasea de modo EXEC privilegiado. --> enable secretConfigure un mensaje del da. --> banner motdConfigure una contrasea para las conexiones de la consola. --> enable passwordHabilite RIPv2 en R1 y R2. No publique la red 209.165.200.224/27. --> router rip

    Search .. Search

    Configuracinbsicade DHCPy NAT


    Harol Andr Pramo Daz cisco, CONFIGURACIN DE DISPOSITIVOS, dhcp, nat domingo, 17 de julio de 2011

    Para los que estn siguiendo el currculo de cisco CCNA Exploration, esta es la solucin a la actividad 7.4.1 En el cual nos plantea como objetivo lo siguiente. Preparar la red Realizar las configuraciones bsicas del router Configurar un servidor de DHCP del IOS de Cisco Configurar el enrutamiento esttico y predeterminado Configurar NAT esttica.

    TAREA1 CONFIGURACINBSICA.
    Router#erasestartupconfig Router#configureterminal Router(config)#hostnameR1 R1(config)#noip domainlookup R1(configline)#enablepasswordcisco R1(config)#lineconsole0 R1(configline)#passwordcisco R1(configline)#loggingsynchronous R1(config)#linevty 0 4

    R1(configline)#passwordcisco R1(configline)#loggingsynchronous R1(config)#bannerlogin"Personalautorizado" R1(config)#bannermotd"Revision1" Luegodebede ingresarel siguientedireccionamientoip.

    Al finalizaresta actividaddebede aparecerun 50%de la actividadcompleta.

    Tarea2: Configurarun servidorde DHCPdel IOS de Cisco


    R1(config)#ipdhcpexcludedaddress192.168.10.1192.168.10.10 R1(config)#ipdhcpexcludedaddress192.168.11.1192.168.11.10 Paso2. Configurarel pool. R1(config)#ipdhcppool R1Fa0 R1(dhcpconfig)#network192.168.10.0255.255.255.0 R1(dhcpconfig)#dnsserver192.168.11.5 R1(dhcpconfig)#defaultrouter192.168.10.1 R1(config)#ipdhcppool R1Fa1 R1(dhcpconfig)#network192.168.11.0255.255.255.0 R1(dhcpconfig)#dnsserver192.168.11.5 R1(dhcpconfig)#defaultrouter192.168.11.1 Paso3. Verificarla configuracindel DHCP. R1#showip dhcpbinding IP addressClientID/ LeaseexpirationType Direccinde Hardware 192.168.10.110007.EC66.8752 Automatic 192.168.11.1100E0.F724.8EDA Automatic

    Tarea3: Configurarel enrutamientoestticoy predeterminado


    ISP(config)#iproute209.165.200.240255.255.255.240serial 0/0/1

    Tarea4: ConfigurarNATesttica
    R2(config)#iproute0.0.0.00.0.0.0209.165.200.226 R2(config)#routerospf 1 R2(configrouter)#defaultinformationoriginate

    Tarea5: ConfigurarNATdinmicacon un conjuntode direcciones


    R2(config)#ipnat insidesourcestatic 192.168.20.254209.165.200.254 R2(config)#interfaceserial 0/0/1 R2(configif)#ip nat outside R2(configif)#interfacefa0/0 R2(configif)#ip nat inside R2(config)#ipnat pool MYNATPOOL209.165.200.241209.165.200.246netmask255.255.255.248 R2(config)#ipaccesslist extendedNAT R2(configstd-nacl)#permitip 192.168.10.00.0.0.255any R2(configstd-nacl)#permitip 192.168.11.00.0.0.255any R2(config)#ipnat insidesourcelist NATpool MY-NATPOOL R2(config)#interfaceserial 0/0/0 R2(configif)#ip nat inside R2#showip nat translations Pro InsideglobalInsidelocal Outsidelocal Outsideglobal --- 209.165.200.241192.168.10.11--- ----- 209.165.200.242192.168.11.11--- ----- 209.165.200.254192.168.20.254--- ---

    Tarea6: ConfigurarNATconsobrecarga
    R2(config)#noip nat pool MY-NATPOOL209.165.200.241209.165.200.246netmask255.255.255.248 R2(config)#noip nat insidesourcelist NATpool MY-NATPOOL

    R2(config)#ipnat insidesourcelist NATinterfaceS0/0/1overload R2#showip nat translations Pro InsideglobalInsidelocal Outsidelocal Outsideglobal icmp209.165.200.225:3192.168.10.11:3209.165.200.226:3209.165.200.226:3 icmp209.165.200.225:1024192.168.11.11:3209.165.200.226:3209.165.200.226:1024---

    PAP R4

    username R2 password cisco interface Serial0/1 ip address 200.10.10.4 255.255.255.240 encapsulation ppp ppp authentication pap ppp pap sent-username R4 password cisco ip nat outside

    R2
    username R4 password cisco interface Serial0/1 ip address 200.10.10.2 255.255.255.240 encapsulation ppp ppp authentication pap ppp pap sent-username R2 password cisco clock rate 128000

    CHAP R3
    username R5 password cisco interface Serial0/1 encapsulation ppp ppp authentication chap

    R5

    username R3 password cisco interface Serial0/1 encapsulation ppp ppp authentication chap

    PAP con chancho R1


    username R6 password cisco interface Serial0/2 encapsulation ppp ppp authentication pap chap ppp pap sent-username R1 password cisco

    R6
    username R1 password cisco interface Serial0/2 encapsulation ppp ppp authentication pap chap ppp pap sent-username R6 password cisco

    CHAP con PAN R1


    username R7 password cisco interface Serial0/1 encapsulation ppp ppp authentication chap pap ppp pap sent-username R1 password cisco

    R7
    username R1 password cisco interface Serial0/1 encapsulation ppp ppp authentication chap pap ppp pap sent-username R7 password cisco

    FRAME RELAY...
    9

    R1

    int s0/0 encapsulation frame-relay ietf frame-relay lmi-type ansi interface serial 0/0.10 point-to-point frame-relay interface-dlci 101 ip address 192.168.10.1 255.255.255.0 interface serial 0/0.20 point-to-point frame-relay interface-dlci 201 ip address 192.168.20.1 255.255.255.0 interface serial 0/0 no shut

    R2

    int s0/0 encapsulation frame-relay ietf frame-relay lmi-type ansi interface serial 0/0.10 point-to-point frame-relay interface-dlci 100 ip address 192.168.10.2 255.255.255.0 interface serial 0/0 no shut

    R3
    int s0/0 encapsulation frame-relay ietf frame-relay lmi-type ansi interface serial 0/0.20 point-to-point frame-relay interface-dlci 200 ip address 192.168.20.2 255.255.255.0 interface serial 0/0 no shut

    10

    Swtich 1 Configuration Switch>en Switch#conf t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#no ip domain-l Switch(config)#host SW1 SW1(config)#enable secret cisco SW1(config)#line con 0 SW1(config-line)#pass cisco SW1(config-line)#login SW1(config-line)#exit SW1(config)#line vty 0 4 SW1(config-line)#pass cisco SW1(config-line)#login SW1(config-line)#exit SW1(config)#vtp mode server Device mode already VTP SERVER SW1(config)#vtp domain radiance Changing VTP domain name from NULL to radiance SW1(config)#vlan 2

    11

    SW1(config-vlan)#name IT SW1(config-vlan)#exit SW1(config)#vlan 3 SW1(config-vlan)#name HR SW1(config-vlan)#exit SW1(config)#int range fa0/1-3 SW1(config-if-range)#switchport mode trunk SW1(config-if-range)#exit SW1(config)#int range fa0/11-20 SW1(config-if-range)#switchport access vlan 2 SW1(config-if-range)#ex SW1(config)#int range fa0/21-24 SW1(config-if-range)#switchport access vlan 3 SW1(config-if-range)#end SW1# SW1#copy run start Destination filename [startup-config]? Building configuration... [OK] SW1# _____________________________________ Swtich 2 Configuration Switch>en Switch#conf t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#no ip domain-l Switch(config)#host SW2 SW2(config)#vtp mode client Setting device to VTP CLIENT mode. SW2(config)#vtp domain radiance Domain name already set to radiance. SW2(config)#int fa0/1 SW2(config-if)#switchport mode trunk SW2(config-if)#exit SW2(config)#int range fa0/10-20 SW2(config-if-range)#switchport access vlan 2 SW2(config-if-range)#ex SW2(config)#int range fa0/21-24 SW2(config-if-range)#switchport access vlan 3 SW2(config-if-range)#exit SW2(config)#ex SW2# %SYS-5-CONFIG_I: Configured from console by console SW2#copy run start Destination filename [startup-config]?
    12

    Building configuration... [OK] SW2# ________________________________________________ Switch>en Switch#conf t Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#no ip domain-l Switch(config)#host SW3 SW3(config)#vtp mode client Setting device to VTP CLIENT mode. SW3(config)#vtp domain radiance Domain name already set to radiance. SW3(config)#int fa0/1 SW3(config-if)#switchport mode trunk SW3(config-if)#ex SW3(config)#int range fa0/10-20 SW3(config-if-range)#switchport access vlan 2 SW3(config-if-range)#ex SW3(config)#int range fa0/21-24 SW3(config-if-range)#switchport access vlan 3 SW3(config-if-range)#end SW3# %SYS-5-CONFIG_I: Configured from console by console SW3#copy run start Destination filename [startup-config]? Building configuration... [OK] SW3# _______________________________ Radiance Router Configuration Router>en Router#conf t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#no ip domain-l Router(config)#host R1 R1(config)#host Radiance Radiance(config)#int fa0/0 Radiance(config-if)#no shut %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

    13

    Radiance(config-if)#int fa0/0.1 %LINK-5-CHANGED: Interface FastEthernet0/0.1, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.1, changed state to up Radiance(config-subif)#encap dot1q 1 Radiance(config-subif)#ip add 192.168.1.1 255.255.255.0 Radiance(config-subif)#ip nat inside Radiance(config-subif)#ip helper 192.168.1.2 Radiance(config-subif)#ex Radiance(config)#int fa0/0.2 %LINK-5-CHANGED: Interface FastEthernet0/0.2, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.2, changed state to up Radiance(config-subif)#encap dot1q 2 Radiance(config-subif)#ip add 192.168.2.1 255.255.255.0 Radiance(config-subif)#ip nat inside Radiance(config-subif)#ip helper 192.168.1.2 Radiance(config-subif)#ex Radiance(config)#int fa0/0.3 Radiance(config-subif)# %LINK-5-CHANGED: Interface FastEthernet0/0.3, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.3, changed state to up Radiance(config-subif)#encap dot1q 3 Radiance(config-subif)#ip add 192.168.3.1 255.255.255.0 Radiance(config-subif)#ip nat inside Radiance(config-subif)#ip helper 192.168.1.2 Radiance(config-subif)#exit Radiance(config)#ip route 192.168.1.0 255.255.255.0 fa0/0.1 Radiance(config)#ip route 192.168.2.0 255.255.255.0 fa0/0.2 Radiance(config)#ip route 192.168.3.0 255.255.255.0 fa0/0.3 Radiance(config)#ip route 0.0.0.0 0.0.0.0 198.0.0.1 Radiance(config)#acce Radiance(config)#access-list 1 permit 192.168.1.0 0.0.0.255 Radiance(config)#access-list 1 permit 192.168.2.0 0.0.0.255 Radiance(config)#access-list 1 permit 192.168.3.0 0.0.0.255 Radiance(config)#ip nat inside s Radiance(config)#ip nat inside source li Radiance(config)#ip nat inside source list 1 int s0/0/1 Radiance(config)#int s0/0/1
    14

    Radiance(config-if)#ip add 198.0.0.2 255.255.255.252 Radiance(config-if)#ip nat outside Radiance(config-if)#no shut %LINK-5-CHANGED: Interface Serial0/0/1, changed state to down Radiance(config-if)#end Radiance# %SYS-5-CONFIG_I: Configured from console by console Radiance#copy run start Destination filename [startup-config]? Building configuration... [OK] Radiance# _____________________________________ ISP Router configuration Router>en Router#conf t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#no ip domain-l Router(config)#host ISP ISP(config)#int s0/0/0 ISP(config-if)#ip add 198.0.0.1 255.255.255.252 ISP(config-if)#clock rate 56000 ISP(config-if)#no shut ISP(config-if)# %LINK-5-CHANGED: Interface Serial0/0/0, changed state to up ISP(config-if)#ex ISP(config)#int fa0/0 ISP(config-if)# %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0/0, changed state to up ISP(config-if)#ip add 198.0.0.10 255.255.255.252 ISP(config-if)#no shut %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up ISP(config-if)#ex ISP(config)#int fa0/1 ISP(config-if)#ip add 198.0.0.6 255.255.255.252 ISP(config-if)#no shut
    15

    ISP(config-if)# %LINK-5-CHANGED: Interface FastEthernet0/1, changed state to up %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up ISP(config-if)#ex ISP(config)#router rip ISP(config-router)#ver 2 ISP(config-router)#net 198.0.0.0 ISP(config-router)#net 198.0.0.4 ISP(config-router)#net 198.0.0.8 ISP(config-router)#end ISP# %SYS-5-CONFIG_I: Configured from console by console ISP#copy run start Destination filename [startup-config]? Building configuration... [OK] ISP#

    16

    R1(config-if)#ip address <public ip> 255.255.255.0 R1(config-if)#ip nat outside R1(config-if)#no shut R1(config-if)#int s1/0 R1(config-if)#ip 192.168.1.241 255.255.255.252 R1(config-if)#ip nat inside R1(config-if)#ip no shut R1(config-if)#int s1/4 R1(config-if)#ip 192.168.1.245 255.255.255.252 R1(config-if)#ip nat inside R1(config-if)#no shut R1(config-if)#exit R1(config)#ip nat pool natpool 192.168.1.1 192.168.1.254 prefix 24 ---- not sure about this R1(config)#access-list 1 permit ip 192.168.1.0 0.0.0.255

    17

    R1(config)#ip nat inside source list 1 pool natpool R1(config)#ip nat inside source list 1 int s0/0 overload --- not sure about this My second question is should I configure DHCP on the border router, R1, or should it be configured on routers R2 and R3 because they have the LANs with hosts connected to them? Would this be the correct way to configure DHCP on router R2... R1(config)#ip dhcp pool HOME_CLIENTS R1(dhcp-config)#network 192.168.1.0 255.255.255.0 R1(dhcp-config)#default-router 192.168.1.1 R1(dhcp-config)#import all R1(dhcp-config)#dns-server 192.168.1.2 I have not configured either NAT or DHCP in my lab yet, as I wanted to make sure I had a good understanding first of what I was doing. Thank you for any help you can provide to help clarify these questions. Brian

    Respuesta correcta por cadetalain en Feb 3, 2013 5:34 AM


    Hi, 1 on R1 no ip route 0.0.0.0 0.0.0.0 fastethernet0/0 2 on R1 no ip dhcp pool insideDHCP ip dhcp pool subnet_1 import all network 192.168.1.0 255.255.255.240 default-router 192.168.1.1 ip dhcp pool subnet_2 import all network 192.168.1.16 255.255.255.240 default-router 192.168.1.17 3 on R2 link to switch ip helper-address 192.168.1.141 on R3 link to switch ip helper-address 192.168.1.145 Regards

    18

    Vous aimerez peut-être aussi