Scribd Logo
Importer

Bienvenue sur Scribd !

  • SOAL

    Transféré par

    Muhammad Taufik
    20 vues7 pages
    SOAL

    Copyright

    © © All Rights Reserved

    Formats disponibles

    DOCX, PDF, TXT ou lisez en ligne sur Scribd

    Avez-vous trouvé ce document utile ?

    Ce contenu est-il inapproprié ?

    Signaler ce document
    SOAL

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme DOCX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    20 vues7 pages

    SOAL

    Transféré par

    Muhammad Taufik
    SOAL

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme DOCX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    sur 7

    WELCOME TO UNITY 2108 NETWORK COMPETITION PHASE II

    DON’T FORGET TO SAVE YOUR PACKET TRACER FILE REGULARLY!


    (The Cisco Packet Tracer program maybe crash and you could lose marks!, for
    avoid this please save your work periodically)

    PART 1 - CONFIGURE WITH INSTRUCTION BELOW

    IP ADDRESS LIST TABLE


    DEVICE INTERFACE IPv4 NOTE
    Fa 0/0 25.10.21.200/23
    ISP-Router
    Se 0/1/0 24.10.20.17/29
    Fa 0/0 172.16.25.121/29
    Se 0/1/0 10.0.13.101/28
    HQ-R1
    Se 0/0/0 24.24.24.1/30
    Lo 0 1.1.1.1/32
    Fa 0/0 172.16.25.122/29
    Se 0/1/0 10.0.23.202/29
    HQ-R2
    Se 0/0/0 27.27.27.1/30
    Lo 0 2.2.2.2/32
    Se 0/0/0 10.0.23.203/29
    Se 0/1/0 24.10.20.18/29
    HQ-R3
    Se 0/1/1 10.0.13.103.28
    Lo 0 3.3.3.3/32
    Se 0/0/0 24.24.24.2/30
    Fa 0/0 192.168.240.1/24
    RTR-SMG
    Lo 0 4.4.4.4/32

    Se 0/0/0 27.27.27.2/30
    Se 0/1/0 192.168.70.1/29
    RTR-YK
    Lo 0 5.5.5.5/32

    SW-DIST Fa 0/4 10.0.0.1/30


    Vlan1 172.16.25.123/29
    Vlan10 10.10.10.1/28
    RTR-HQ Fa 0/0 10.0.0.2/30
    Fa 0/1.22 X
    Fa 0/1.33 X
    Fa 0/1.44 X
    Fa 0/1.55 X
    Fa 0/1.66 X
    Server-Internet Fa 0 25.10.20.17/22
    DNS Server - 10.10.10.10
    Mail Server - 10.10.10.11
    ALL Workstation Fa 0 DHCP

    NB :
    You don't have to configure Server-Internet and ISP-Router
    X = ip address which you calculate by yourself

    1. Configure hostname for each device according to the topology.


    2. Configure the privileged with encryption password for each device below:
    a) HQ-R1 : Unity2018!
    b) HQ-R2 : Unity2018!
    c) HQ-R3 : Unity2018!
    d) RTR-SMG : Unity2018!
    E) RTR-YK : Unity2018!

    PART 2 - SWITCHING ADMINISTRATION

    Dist-SW and SW-Fram-Server


    1 Use protocol which can simplify VLAN configuration in a switched netwo
    rk.
    2 SW-
    DIST can distributed their VLAN configuration to other switches in the sa
    me domain, use Unity2018 for domain.
    3 Protect this protocol with MD5 digest of ASCII string “connecting”
    4 Create VLAN 10 with name Server-
    Farm on switch which can distributed their VLAN configuration.
    5. Configure the SW-Farm-
    erver so it can’t create, change, or delete VLAN on this database
    6. Verify the VLAN database on ALL switches have same value except SW-YK
    and SW-SMG.

    Other Switch
    7. Use protocol which can simplify VLAN configuration in a switched networ
    k.
    8. all other Switch
    can distributed their VLAN configuration to other switches in the same dom
    ain, use Unity2018 for domain.
    9. Protect this protocol with MD5 digest of ASCII string “connecting”
    10. Configure the others switches except SW-
    HQ so they can’t create, change, or delete VLAN on their database.
    12. Verify the VLAN database on ALL switches have same value.

    PART 3 - ROUTER ADMINISTRATION

    CORE ROUTER DOMAIN


    1. Configure IPv4 Address All router
    with ip addresses as the table IP ADDRESS LIST in above.
    2. Verify that HQ-R3 can ping HQ-R1 and HQ-R2
    3. Configure VLAN1 in Dist-SW can reacheable from HQ-R1 and HQ-
    R2 with an IP address as the table above.
    4. Configure DHCP Server service for All
    Workstation, with requiretments below:
    Set DNS to local server in Server Farm
    Calculate the VLSM according to hosts which needed following table belo
    w!
    Use the first IP address of the first subnet as gateway

    VLAN NAME DHCP POOL NAME VLSM NETWORK


    ADMIN ADMIN 14 host 192.168.22.x/x
    ENGINEER ENGINEER 8 host 192.168.33.x/x
    DESIGNER DESIGNER 14 host 192.168.44.x/x
    SYSADMIN SYSADMIN 14 host 192.168.55.x/x
    PROGRAMER PROGRAMER 14 host 192.168.66.x/x
    Router SMG SMG 250 host 192.168.240.x/x
    Router YK YK 250 host 192.168.70.0/x/x

    X is number of network, and use the first address as a gateway. In this case yo
    u can find out by yourself!!

    Encapsulation
    Set R-SMG to HQ-R1 and R-YK to HQ-R2 with PPP encapsulation
    PART 4 - DYNAMIC ROUTING PROTOCOL

    IPv4 ROUTING
    1. Don’t CONFIGURE routing protocols on ISP-
    Router, Only devices store in local can use this routing protocol.
    2. Use routing protocol which can support unlimited hop count and allows s
    calability.
    3. Configure the routing protocol’s identity each router with requirements b
    elow.

    hostname Identifier
    HQ-R1 1001
    HQ-R2 1002
    HQ-R3 1003
    RTR-SMG 1001
    RTR-YK 1002
    SW-DIST 1000
    RTR-HQ 1010

    4. All loopback must be advertised as internal prefixes


    5. Use loopback of CORE DOMAIN (HQ-R1, HQ-R2, HQ-R3) as router ID
    6. Configure hierarchy to the routing network with requirements below:
    a) All CORE DOMAIN (HQ-R1, HQ-R2, HQ-
    R3) include in backbone, except it use non-backbone.
    b) SW-DIST and RTR-HQ use 12 For Identification Area
    c) RTR-SMG use 24 for identification area.
    c) RTR-YK use 27 for identification area.
    7. Verify all router and each host can commuicated successfully.

    PART 5 - NAT

    NAT
    1. All PC/host and server in local can access server internet.
    2. List address use ACL which control traffic depending of the source addres
    s only.
    3. Create ACL using the highest ACL Number
    4. Configure and verify that there is default route on the others router as an
    external route.
    5. Server-
    Internet can access domain web server on local using IP Public 24.10.20.20.

    PART 6 - HSRP
    HSRP
    1. Configure HSRP with grup 12 and use the highest one an IP address of the
    subnet for the Virtual IP.
    2. Set priority 50 for router with the lowest one mac address as a standby
    3. Check MAC Address between two routers. The lowest mac address router
    use priority 50 and the highest use default.

    PART 8 - Remote Access Management

    Remote Access Management


    3. Configure Remote Access Management Service which have encryption an
    d configure with following requirements:
    a) Use ssh remote access for all router
    b) domain Unity2018
    c) Generate a certificate which used to encrypt the packet with the highest v
    alue.
    d) Limit number user who connect to router is 3 users only.
    e) All routers in Core Domain can access using remote access only.
    f) username uny secret Uny123!

    PART 9 - SERVER Management


    DNS
    1. Configure DNS Server with following requirements:

    DOMAIN IP ADDRESS
    Uny.ac.id 10.10.10.10

    2. Configure DNS on Server Farm

    FTP Server
    1. Configure FTP Server on Server2 with following requirements:
    a) Don’t use default user, so you must delete default user and create new us
    er with following requirementes:

    USER PASSWORD Priviledges


    Programmer Programmer Have full access
    Engineer engineer Have full access
    Sysadmin sysadmin Can’t modify, can remove
    Designer designer Can’t modify, can remove
    Admin Admin Only can see file
    HQ

    YK
    SMG

    INTERNET

    Vous aimerez peut-être aussi