ccnplabguide-130323152251-phpapp01.pdf

May 27, 2018 | Author: shareefgs5560 | Category: Ip Address, Router (Computing), Routing, Gateway (Telecommunications), Networking Standards
Share
Report this link


Comments



Description

www.ccieuniversity.com Configuring Basic EIGRP Lab ............................................................................................................ 3 Configuring Default-network for EIGRP Lab .................................................................................... 6 Manually Summarizing EIGRP Routes Lab ..................................................................................... 11 Configuring EIGRP Unequal Cost Paths Lab ................................................................................... 15 Configuring EIGRP Authentication Lab .......................................................................................... 18 Understand EIGRP Query Lab ........................................................................................................ 20 Configuring Basic Multi Area OSPF and Area Summary Lab ......................................................... 28 Configuring OSPF in NBMA Lab ..................................................................................................... 32 Configuring OSPF Authentication Lab ........................................................................................... 37 Configuring OSPF External Summary Lab ...................................................................................... 43 Configuring OSPF Default Route With Metric Lab ......................................................................... 46 Configuring OSPF Stub Area Lab .................................................................................................... 49 Configuring OSPF Totally Stub Area Lab ........................................................................................ 53 Configuring OSPF NSSA Area and NSSA Totally Stub Lab .............................................................. 56 Configuring OSPF Virtual-Link between normal area and backbone area Lab ............................. 62 Configuring OSPF Virtual-Link between 2 backbone areas Lab .................................................... 65 Understand OSPF Routing Between Inter Area Lab ...................................................................... 68 Configuring Basic IS-IS Lab ............................................................................................................. 70 Configuring IS-IS Multi Area and Summary Route Lab .................................................................. 74 Migrate IS-IS Area Lab ................................................................................................................... 78 Redistributing into RIP and OSPF Lab ............................................................................................ 81 Redistributing Between EIGRP and IS-IS Lab ................................................................................. 83 Redistribution Using Administrative Distance Lab ........................................................................ 87 Filtering Routing Updates with a Distribute List Lab ..................................................................... 89 Filtering Routing Updates with a Route Map Lab ......................................................................... 91 Using Route Tag Filtering Routing Updates Lab ............................................................................ 93 Policy-based route Lab .................................................................................................................. 96 Configuring Basic BGP Lab ............................................................................................................. 99 Configuring BGP Using Loopback Addresses Lab ........................................................................ 101 Understand BGP Auto-Summary Lab .......................................................................................... 103 Configuring BGP Summarization Lab ........................................................................................... 106 Understand BGP Split Horizon Rule Lab ...................................................................................... 108 www.ccieuniversity.com Understand BGP Synchronization Rule Lab ................................................................................. 111 BGP Neighbor Authentication Lab............................................................................................... 114 Configuring BGP Local Preference Lab ........................................................................................ 117 Using Route Maps to Configuring BGP Local Preference Lab ..................................................... 121 Configuring BGP Multi-Exit Discriminator Lab............................................................................. 124 Configuring BGP Weight Lab ....................................................................................................... 128 Affects the BGP Routing By Path Prepend Lab ............................................................................ 131 Configuring BGP Routes Reflector Lab ........................................................................................ 134 Configuring BGP Confederation Lab ............................................................................................ 135 Using Route Tag to Store BGP AS-Path Lab ................................................................................. 139 Using Distribute-list to Filtering BGP Routing Lab ....................................................................... 143 Using Route-Map to Filtering BGP Routing Lab .......................................................................... 145 Using Prefix-List to Filtering BGP Routing Lab ............................................................................. 146 Configuring 802.1x Port-Based Authentication Lab .................................................................... 150 Routing Between VLANs and VTP Protocol Lab .......................................................................... 154 Configuring L2 & L3 EtherChannel with PAGP Lab ...................................................................... 163 Configuring L2 & L3 EtherChannel with LACP Lab ....................................................................... 169 Configuring Layer 3 Redundancy with HSRP Lab ......................................................................... 172 Configuring Layer 3 Redundancy with VRRP Lab......................................................................... 179 www.ccieuniversity.com Configuring Basic EIGRP Lab Topology Lab Purpose: 1、Master EIGRP basic configuration. 2、Master EIGRP wild card bits configuration. 3、Master EIGRP auto summary feature, and learn how to disable auto summary. 4、Master EIGRP manually summary. Lab Steps: 1、Config IP address for each router. 2、EIGRP AS number should be 50. 3、Enable EIGRP for the 3 routers. R1#configure terminal R1(config-if)#router eigrp 50 R1(config-router)#network 172.16.0.0 R1(config-router)#network 10.1.1.0 R1(config-router)#network 10.1.2.0 R1(config-router)#network 10.1.3.0 R1(config-router)#network 10.1.4.0 R2#configure terminal R2(config-if)#router eigrp 50 R2(config-router)#network 172.16.0.0 R2(config-router)#network 131.131.0.0 R3#configure terminal R3(config-if)#router eigrp 50 R3(config-router)#network 172.16.0.0 Serial1/1 D 172.6.0.4/30 is directly connected.0 R3(config-router)#network 192.0/8 [90/2297856] via 172. .3.168.0/8 [90/2297856] via 172.0/24 [90/2297856] via 172. 00:06:33. 00:04:39.1. Serial1/1 D 10. 2 masks C 172. Serial1/1 D 192.16.168.1. Loopback0 D 192.16. 00:06:34.0.168.0. 00:04:39. address is the neighbor address. we could use "no auto-summary" command to disable it. Serial1/1 D 192.1. 00:04:39.2.1.16.1.168.16.0/16 is variably subnetted.1.6. Serial1/1 D 192. 00:10:09. 00:08:14.16.3.0/24 [90/2297856] via 172. 3 subnets.16.0. 00:04:39.168.1.1.168.6.6 Se1/1 13 00:00:37 436 2616 0 2 0 172.0.0/8 via 172.16.1 on R2 by auto summary feature. 2 masks D 172.0.0/24 [90/2297856] via 172. Serial1/1 D 192.0.16. R1(config) R1(config)#router eigrp 50 R1(config-router)#no auto-summary R1(config-router)#exit Then check the eigrp route on R2 again.168.16.16.1.4.16.1.168.0.168. R2#show ip eigrp 50 neighbors IP-EIGRP neighbors for process 50 H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 1 172.6. Interface is the local interface which connect with neighbor.0/16 is a summary.0/24 [90/2297856] via 172. Serial1/0 D 192.6.16.0/16 is directly connected.6.3. 00:08:14.131.16.0 R3(config-router)#network 192.6. Serial1/1 6、 Check EIGRP routing table on R2. Serial1/1 D 10.2.168.6.0/24 [90/2297856] via 172.16.0/16 is a summary.1.1. Serial1/0 D 192.168.0/24 [90/2297856] via 172.168.1.ccieuniversity.0 4、Check the EIGRP neighbour relationship on R2.0.2.0/24 [90/2297856] via 172.16.0. 00:08:14. 3 subnets.168.16.0. Serial1/1 D 192.www.1. 00:10:10. Serial1/0 C 131.1.0 R3(config-router)#network 192.0/24 [90/2297856] via 172.1. 00:04:39.6.0/30 is directly connected. R2#show ip route 172.0/24 [90/2297856] via 172. 00:08:14.16. Null0 D 192. R2#show ip route eigrp 172.16. Serial1/1 7、There is a summary route 10.16.1.4.168. 5、Check the routing table on R2.16. Null0 C 172.0.1.16.com R3(config-router)#network 192.6. Serial1/1 D 192.1.1.0.1.0/24 [90/2297856] via 172. 00:08:14.1.0.0/16 is variably subnetted.1 Se1/0 13 00:02:34 736 4416 0 4 TIPS: H stands for neighbor sequence number. 16. 00:07:26.0.0. Serial1/1 10. R3(config)#interface serail 1/0 R3(config-if)#ip summary eigrp 50 192.16.1.1.2. R2(config)#no router eigrp 50 R2(config)#router eigrp 50 R2(config-router)#network 172.0.16. Serial1/1 192.16.0/16 is variably subnetted.0/24 [90/2297856] via 172.0.168.16. Null0 .0/24 is subnetted. Serial1/1 192.1.0. 00:02:31. 2 masks D 172.0/16 is variably subnetted.6.0.1.4.1.1. 4 subnets D D D D D D D D 10.1. 00:05:09. Serial1/1 8、Manually summarize network 192.0. R2#show ip eigrp neighbors IP-EIGRP neighbors for process 50 H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 172.168.0 [90/2297856] via 172.1.0/16 is a summary.6.0.1.3.168.16.255. Serial1/0 10.0.16. 2 subnets. 00:02:31.com R2#show ip route eigrp 172.168.0 [90/2297856] via 172.168.0/24 192.1.0 0.168.1 Se1/0 12 00:04:57 1510 5000 0 5 12、Check EIGRP routing table on R1.252.1.16.16. R2#show ip route eigrp ……… D 10.0 R3(config-if)#exit 9、Check routing table on R2 again.1.1.0/16 is a summary.0/24 [90/2297856] via 172. 00:02:55. Serial1/0 192.168. Serial1/0 10.1.0.1.168.16. 00:02:31.1.1.0 [90/2297856] via 172.1.1.16.6.16.0 [90/2297856] via 172.0/22 [90/2297856] via 172.0 [90/2297856] via 172.1.3.1. 00:02:31.16.3.16. Serial1/0 D 192. R1#show ip route eigrp 172.16. 00:02:31. 00:05:09.0/24 to 1 item on R3.ccieuniversity.168.0/24 [90/2297856] via 172.6.1.0 [90/2297856] via 172.0.1.16.1.www.3 R2(config-router)#network 131. Serial1/1 ……… 10、Use wild card bits on R2's EIGRP configuration.168.0/24 [90/2297856] via 172. 00:05:09.16.0 255.0.6. 00:02:31. Serial1/1 192.1.4. 2 masks D 172.131. 00:05:09. 00:05:09.0/24 [90/2297856] via 172.6.1.4. 3 subnets.0/24 192.0/24 192.1.0. Serial1/0 D 10.1. Null0 D 192.1. 00:05:09.2.0 R2(config-router)#exit 11、This time there is only R1 in R2's neighbor table.2.168. Serial1/0 10.1.16. R3(config)# R3(config)#ip route 0. Serial1/1 By www.131.2.0. 00:02:55.0.0. What we need is a default route to the internal network on R3.0 " in EIGRP network.0/16 [90/2297856] via 172.0.0.0.www. 5 subnets.16. 00:00:06.0.10. 2、Let's suppose R3 is the external router.0/8 is variably subnetted.com Configuring Default-network for EIGRP Lab Topology Lab Purpose: 1、Learn to use "ip default-network" command instead of " ip route 0.16.0 192.0 0.ccieuniversity.0.0.0.ccieuniversity.0.0 R1(config-router)#exit R5(config)#router eigrp 50 .1 R3(config)# 3、Enable EIGRP 50 on the internal routers.1. Lab Steps: 1、Finish the basic ip address configuration on all the routers.0/8 is a summary.168.com 10. Null0 D 131. 2 masks D 10.0.0.0. so there is no EIGRP relationship between R2 and R3.0 0. R1(config)#router eigrp 50 R1(config-router)#network 172. round-trip min/avg/max = 4/43/92 ms R2# 6、R1 and R5 do not have route to external network.168.1.16.16.10. timeout is 2 seconds: .168.1 Type escape sequence to abort.0 R5(config-router)#exit R2(config)#router eigrp 50 R2(config-router)#network 172.0 is directly connected. so they can not access external network.168.0.ccieuniversity.168. FastEthernet0/1 172.16.16. R1#show ip route Gateway of last resort is not set D C 172.16.1.1.0.0/30 is subnetted.1..1.. R2#show ip eigrp neighbors IP-EIGRP neighbors for process 50 H Address 1 172.2 R2(config)# R2#ping 192. Sending 5.com R5(config-router)#network 172.0 192.1..1. 100-byte ICMP Echos to 192.6 0 172.1.0.0 0. Success rate is 0 percent (0/5) R1# .0.1.1.2.16.4 [90/284160] via 172. Sending 5.168.0 R2(config-router)#exit 4、Check EIGRP neighbor relationship on R2.16. 00:06:40..1.1 Interface (sec) Et1/2 Et1/0 Hold Uptime SRTT RTO Q Seq Type (ms) Cnt Num 11 00:00:54 1 3000 0 2 12 00:00:54 1 3000 0 2 5、Add a default route on R2 to reach the external network.www.1 Type escape sequence to abort.0.0. 100-byte ICMP Echos to 192. timeout is 2 seconds: . R2(config)#ip route 0.0. FastEthernet0/1 R1# R1#ping 192. 2 subnets 172.!!!! Success rate is 80 percent (4/5).16. FastEthernet0/1 C 172.0.0 is directly connected.1.16.168.16.1.ccieuniversity.0/30 is subnetted.0 172.0.0.1.16.4 [90/284160] via 172.0.0. FastEthernet0/1 S* 0. round-trip min/avg/max = 48/71/92 ms R1# R5(config)#ip route 0.0.0 [90/307200] via 172.1.com R5#show ip route Gateway of last resort is not set C D 172.5 to network 0. 100-byte ICMP Echos to 192.1 Type escape sequence to abort.0.0.1.16.1 Type escape sequence to abort. 2 subnets 172. Ethernet1/1 .1.168.0.2 R1# R1#ping 192.16.16.1. Ethernet1/1 172.1.5 R5(config)#exit R5# R5#show ip route Gateway of last resort is 172.0.168.0 C 172.0.1.16.0/30 is subnetted.16. 2 subnets 172.0/0 [1/0] via 172.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1.16.2 to network 0.2.0. R1(config)#ip route 0.. timeout is 2 seconds: .1.0.0/30 is subnetted. Sending 5.4 is directly connected.1.www.0.1. Success rate is 0 percent (0/5) R5# 7、One solution is to add a default route with the next hop R2 on both R1 and R5 .0 0.2 R1(config)#exit R1#show ip route Gateway of last resort is 172.1.0 0.0.16.16..1. Ethernet1/1 R5# R5#ping 192. 2 subnets D 172. 00:09:19.4 is directly connected.16.0 172. Sending 5.0.16.0.1..1.168. 100-byte ICMP Echos to 192.5.16..16.0 172. 00:12:15. 168. this solution is better for large internal network.16.5 R5(config)#exit R5# R5#show ip route Gateway of last resort is not set C D 172.2 R1(config)#exit R1# R1#show ip route Gateway of last resort is not set D C 172.1.16.1.0 172. 00:19:02.5 R5# R5#ping 192.0 0. Sending 5.1.16.4 [90/284160] via 172.16.1. 100-byte ICMP Echos to 192.0.5. Sending 5.0 0. FastEthernet0/1 R1# R1#ping 192.0.. Ethernet1/1 172.0 172..168.1.0.0/30 is subnetted..1. 00:19:42.ccieuniversity.0.4 is directly connected.www.1. round-trip min/avg/max = 32/53/64 ms R5# 8、Another solution is to let R2 announce the external route to R1 and R5.0 [90/307200] via 172.0.16.168.5.1.16. FastEthernet0/1 172.0.16. 00:13:57. as it gets less configuration work.16.0/30 is subnetted.1 Type escape sequence to abort.0.2.0.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1. 2 subnets 172. Ethernet1/1 S* 0. 9、So let's delete the default route on R1 and R5 first.0.0 is directly connected.16. timeout is 2 seconds: .1.16. R1(config)#no ip route 0.0.16.0. Ethernet1/1 R5# .1.com D 172.0.1.1 Type escape sequence to abort.1.1.0/0 [1/0] via 172.16.0 [90/307200] via 172.1. Success rate is 0 percent (0/5) R1# R5(config)#no ip route 0. 100-byte ICMP Echos to 192.1..168. 2 subnets 172.16. 0 D* 192. 00:00:53. FastEthernet0/1 172.0/0 [1/0] via 192.168.16.4/30 is directly connected.0/16 is a summary.16. 3 subnets.1 Type escape sequence to abort.16.168.1. Null0 C 172.1.10.0.com R5#ping 192.2 to network 192.0 is directly connected.168.2 to network 0.0. FastEthernet0/1 R1# R1#ping 192.16.1.0 * 192.4 [90/284160] via 172.168..10.10.0.1 Type escape sequence to abort.. 100-byte ICMP Echos to 192.0/24 is variably subnetted.0 R2(config)#exit R2#show ip route Gateway of last resort is 192.www. to make sure they have the external route.0/30 is subnetted.1. 2 subnets.168.0. 2 subnets D 172.0.168. Sending 5...168.0 R2(config-router)#exit R2(config)#ip default-network 192.168. R2(config)#router eigrp 50 R2(config-router)#network 192.168. Ethernet1/1 172. R1#show ip route Gateway of last resort is 172.2 R2# 11、Check the routing table of R1 and R5 again.10.0/24 is a summary. 2 masks C 172. Sending 5.1.1.10. Ethernet1/2 D 172.0/16 is variably subnetted.2.0.0.1.ccieuniversity.16.16.1.0/30 is directly connected. 00:22:22.1. Null0 C 192.168.168. Ethernet1/0 S* 0.1.168.10.1. Success rate is 0 percent (0/5) R5# 10、Then let's R2 announce the external network 192.2.0/24 [90/284160] via 172. FastEthernet0/1 C 172.0 to R1 and R5. timeout is 2 seconds: .16.168.16.10. 100-byte ICMP Echos to 192.0/30 is directly connected.10. round-trip min/avg/max = 48/105/188 ms .10.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).16. 00:02:03.16. 2 masks D* 192.1.168.10. 00:02:04. .1. Ethernet1/1 D 172.com Manually Summarizing EIGRP Routes Lab Topology Lab Purpose: 1、Understand the weakness of EIGRP auto summarization.168.16. Sending 5.168.4 is directly connected.5.0 [90/307200] via 172.16.10. 2、Master EIGRP manually summary configuration. Ethernet1/1 R5# R5#ping 192. 2 subnets C 172. 00:04:15.168.com R1# R5#show ip route Gateway of last resort is 172. Ethernet1/1 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1. round-trip min/avg/max = 76/87/96 ms By www.1 Type escape sequence to abort.0/24 [90/307200] via 172.16.1.1.0 D* 192.www.10.1. 00:04:19.1.ccieuniversity.0/30 is subnetted.0.1.16.5 to network 192.16.168.1. 100-byte ICMP Echos to 192.16.5.ccieuniversity. 0.1.0. 00:06:25. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1.16.6.16. timeout is 2 seconds: U.16. serno 4 via 172.0/30 is subnetted.16.U Success rate is 0 percent (0/5) R2# R2#ping 10. 100-byte ICMP Echos to 10. Ethernet1/1 192.1.0 is directly connected. 1 successors.6.Update. Ethernet1/1 192.8 [90/307200] via 172.1 Type escape sequence to abort.1.1. 00:06:09.0.16.1. U .0. 00:06:25.2.0.0/24 network. R2#show ip eigrp topology all-links IP-EIGRP Topology Table for AS(50)/ID(172. you will find to R1 is good. Sending 5.0/24 [90/409600] via 172. serno 3 via 172. Q .168.16. Ethernet1/1 172.1. R2#ping 10. Sending 5. 3、Ping on R2 to R1's 10. but to R4 fails.0/24 [90/409600] via 172. timeout is 2 seconds: U.16.X. Ethernet1/1 192.1.6 (435200/409600).0/8. do not disable auto summary.1. 00:06:25.168.Reply status P 10. 3 subnets 172.168.1.16.1.16.com Lab Steps: 1、Finish basic ip configuration. 2、Enable EIGRP on all the routers.1.16.16.16. Sending 5. R . 100-byte ICMP Echos to 10.0/24 [90/409600] via 172. Ethernet1/1 P 192.0.0. R2#show ip route Gateway of last resort is not set D C C D D D D D 172.1.Passive. Ethernet1/0 via 172.1. round-trip min/avg/max = 1/46/92 ms R2#ping 10.1.Query.16.1 (409600/128256).0/24 [90/409600] via 172. A .1.1. Ethernet1/1 .1.1 Type escape sequence to abort.1.0/8 [90/409600] via 172.1. 00:06:25.16.www.5) Codes: P .6 (409600/128256).1.17.17.1 Type escape sequence to abort.1.Reply.4 is directly connected.0/24 network and R4's 10.1.1.1. Ethernet1/0 10.1.168. 1 successors.U. r .16. Ethernet1/1 5、Check the EIGRP topology database of R2. Ethernet1/1 172.ccieuniversity.6.6. Ethernet1/0 192.1.Active.168. 00:06:25.0/24. FD is 409600.U Success rate is 0 percent (0/5) 4、Check the routing table of R2. 100-byte ICMP Echos to 10.U.3.1. FD is 409600.6.16.X. serno 8 via 172.16.252. 1 successors. So R2 has two next hop to network 10.168.0/24.4/30.1) FD 409600 is better than R3's (172.1.8/30. Ethernet1/0 10.0. 1 successors.6 (409600/128256). 3 subnets 172.0. 1 successors.16.16.1.252. 2 subnets 10.1.16.0.3. R2#show ip route Gateway of last resort is not set D C C D D D D 172. R1(config)#router eigrp 50 R1(config-router)#no auto-summary R1(config-router)#exit R1(config)# R1(config)#interface fastEthernet 0/1 R1(config-if)#ip summary-address eigrp 50 10.6 (409600/128256).0 [90/435200] via 172.16. then R2 will choose R1 172.1.6. Ethernet1/1 P 192.0.1. Ethernet1/1 .0/8 before R2 receives. serno 7 via 172.1.6. we need to use manual summary instead of auto summary.1.8 [90/307200] via 172.0/24 [90/409600] via 172.0.0/8.0/24. Ethernet1/1 P 172.6) FD 435200.1.168.1. 00:03:13. according to the topology database R1's (172. Ethernet1/1 172.16.16.1.1. 7、To solve this issue.16.0.168. Ethernet1/1 P 172.1.16.0/30. Ethernet1/0 6、The specific 10.16.0.1.ccieuniversity.0.168. 00:21:08.com P 192. 1 successors.1. 1 successors.1. 00:21:08.168. FD is 409600.16. Ethernet1/1 P 192.0 R1(config-if)#exit R1(config)#exit R4(config)#router eigrp 50 R4(config-router)#no auto-summary R4(config-router)#exit R4(config)# R4(config)#interface fastEthernet 0/0 R4(config-if)#ip summary-address eigrp 50 10. serno 1 via Connected. Ethernet1/1 192.1.1.0/22 is subnetted.16. serno 2 via Connected.1.0.0 255.0/24 networks on both R1 and R4 were automatically summarize to 10.6 (307200/281600).16.0/24.1.6. 00:21:08. 1 successors.1. FD is 281600.1 as the next hop in the routing table. Ethernet1/0 10.1.1.www.16. serno 5 via 172.6 (409600/128256).0 is directly connected.16. Ethernet1/1 192.16.16. FD is 409600.0 [90/409600] via 172.16.0/24 [90/409600] via 172. FD is 307200.0/30 is subnetted. 00:01:02.4 is directly connected.1.1. FD is 281600.16.1. FD is 409600.0 255.255.16.2.X. Ethernet1/1 172. Ethernet1/1 P 172.1.16. serno 6 via 172. so ping traffic to the networks behind R4 will not going to R4.6.0 R4(config-if)#exit R4(config)#exit 8、Check the routing table of R2.255.0. 100-byte ICMP Echos to 10.0 255.17.252.0.2. round-trip min/avg/max = 60/97/140 ms R2#ping 10.168.16. Sending 5. 100-byte ICMP Echos to 10.1.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).0.0 R3(config-if)#exit R3(config)# R3(config)#inter ethernet 1/0 R3(config-if)#ip summary-address eigrp 50 192.1.255.168.1.168. Sending 5.16.0.0/30 is subnetted. R3(config)#router eigrp 50 R3(config-router)#no auto-summary R3(config-router)#exit R3(config)# R3(config)#interface ethernet 1/1 R3(config-if)#ip summary-address eigrp 50 192. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). Ethernet1/1 9、Ping the networks behind R1 and R4 again.3. round-trip min/avg/max = 16/69/145 ms R2#ping 10.16. Sending 5. FastEthernet0/0 172.0/24 [90/409600] via 172.www.0 R3(config-if)#exit R3(config)# 11、Check the routing table of R2 and R4.1 Type escape sequence to abort.1 Type escape sequence to abort. 00:21:08.6.0 255.16.1.0/24 [90/409600] via 172.0.1. we could manually summarize the networks from 192.com D D 192.1.1.1 Type escape sequence to abort.1.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). 00:21:08. round-trip min/avg/max = 48/93/149 ms 10、To decrease the size of routing table.16.ccieuniversity.1.17.4 [90/284160] via 172.16.1.8 is directly connected. 100-byte ICMP Echos to 10.1 Type escape sequence to abort.16. round-trip min/avg/max = 16/44/64 ms R2#ping 10. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1. R4#show ip route Gateway of last resort is not set C D 172.1. Ethernet1/1 192.1.1.168. Sending 5.1.168. 00:02:41.0.252. R2#ping 10.3.0.0/24 to 192. 3 subnets 172.6.1.1.9.168. 100-byte ICMP Echos to 10. FastEthernet0/0 .255.0/24 behind R3.16. 1 Type escape sequence to abort.16.0/22 is subnetted.0/30 is subnetted.18.0/8 is variably subnetted.17.168. Loopback0 10.1. 6 subnets.ccieuniversity. Ethernet1/0 10.0. Ethernet1/0 10. 2 subnets 10.0.16.19.16. round-trip min/avg/max = 1/28/60 ms R4#ping 192.0.ccieuniversity. Loopback0 10. 3 subnets 172.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). Loopback0 10.16.1.16.0/22 [90/156160] via 172.1 Type escape sequence to abort. 00:02:23. Loopback0 192. 00:02:54. Sending 5.0.1.1.4 is directly connected. 00:02:54. 00:02:41.0 [90/435200] via 172.1. Ethernet1/1 172.8 [90/307200] via 172.1.1.168.1.1.1.www.1.1.0/24 is directly connected.1. round-trip min/avg/max = 24/37/48 ms By www.com Configuring EIGRP Unequal Cost Paths Lab Topology .1. Ethernet1/1 172.1.168.com D D C C C D C D 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).16.6. Ethernet1/1 12、Ping the networks behind R3 from R2 and R4.1.0 [90/309760] via 172.0.168.0.16.0 is directly connected.16. 00:03:33. FastEthernet0/0 R2#show ip route Gateway of last resort is not set D C C D D D 172. 100-byte ICMP Echos to 192.16. Null0 10.0. Ethernet1/1 192.9.0. 00:16:13.1.0. 100-byte ICMP Echos to 192.168.16.1.1.1.6.9.16.1. FastEthernet0/0 10.6.168.16.0/24 is directly connected.1.0/24 is directly connected. Sending 5.0/22 is a summary.0.0.0/22 [90/437760] via 172. 00:02:23.16.0 [90/409600] via 172. 2 masks 10.9. 00:02:54.0/22 [90/409600] via 172.0/24 is directly connected.1. R2#ping 192.16.16. FastEthernet0/0 10. 8/30.1.16.16.1.168.1. 1 successors. 6、Check the EIGRP 50 topology database we found that 172.0/24. 3、Master EIGRP AD、FD、FC、Successor、FS principal.16. 2、Enable EIGRP 50 on the 3 routers. Serial1/1 192. FastEthernet0/0 4、We can see there is only one way to network 192.168.1. R1#show ip route C D C D 172.168. 5、If we want to use 172.16.2 is not in the 192. FD is 28160 via Connected.0/24.1. 2、Master EIGRP metric modifying.1. 00:00:11.2 could be the next hop of network 192. not a FS.com Lab Purpose: 1、Master EIGRP unequal cost load balance. R1#show ip eigrp 50 topology all-links .0 is directly connected.2 as a unequal cost path. 3 subnets 172.10.168. then we should make sure it is the FS of network 192.0.16.www.1.16.168. FastEthernet0/0 ……… 7、Check the full EIGRP topology table we found that 172. 1 successors.1.168. we need to use all the usable links. FastEthernet0/0 172. FastEthernet0/0 172.1.1.ccieuniversity. R1#show ip eigrp 50 topology ……… P 192.16. 00:00:11.0/24 list. Lab Steps: 1、Finish basic ip configuration.0/30 is subnetted.16. just not in use by the restriction of algorithm.1. to increase the capability of transmission.1.1.1.10 (156160/128256).16.8 is directly connected.1.0/24. 3、Check the routing table of R1.10. FastEthernet0/0 P 172.0/24. FD is 156160 via 172.16.16.4 [90/2172416] via 172.1.0/24 [90/156160] via 172. then 172.1. . FastEthernet0/0 via 172. Distance from R2 to network 192.16. FastEthernet0/0 via 172. serno 6 via 172. FD of FS route < FD of best route(Successor) * Varince So the math is 2300416 < 156160 * x x≈14.168.2 (2809856/2297856).1.16.0/24. R2#configure terminal R2(config)#interface serial 1/1 R2(config-if)#bandwidth 10000000 R2(config-if)#delay 10 R2(config)#exit 10、Check the topology table of R1.168.168.16. 1 successors. serno 6 via 172. FastEthernet0/0 ……… Seems 14 is not enough.1. According to the variance formula. FD is 156160.0 is directly connected.10 (156160/128256). we see 130816 is less than 15160.ccieuniversity. 9、Let's change the EIGRP metrics of R2 to make it work as a FS of R1. R1#show ip eigrp topology all-links ……… P 192.com ……… P 192.0/24.16. Serial1/1 D 192.16. Serial1/1 ……… 11、This time we could enable unequal cost load balance.2 would be the FS.1.www. 13、Let's change it to 15.10 (156160/128256).16.1.1. Serial1/1 ……… 8、According to the FS formula. and give the right variance value.0/24 should less than 156160. 1 successors.16.73 12、Let test 14 as the variance number.1. 00:00:00.1. FD is 156160.1.168.1.0/24 [90/156160] via 172. AD of secondary-best route < FD of best route(Successor) = Feasible Successor We could do the math.1.2 (2300416/130816). R1(config)#router eigrp 50 R1(config-router)#variance 14 R1(config-router)#exit R1(config)#exit R1#clear ip router * R1#show ip route ……… C 172.10. 16.168.10. Serial1/1 C D R1# .16. R1#show ip route 172.0. Null0 D 192.1.0/24 [90/2297856] via 172.0.0 is directly connected. 2 masks 172.1.1.0. 00:00:01. 2 subnets. 2、Master EIGRP authentication configuration.8/30 is directly connected.1.2. 00:00:01.ccieuniversity. Loopback0 D 10.16.1.1.com R1(config)#router eigrp 50 R1(config-router)#variance 15 R1(config-router)#exit R1(config)#exit R1#clear ip router * R1#show ip route ……… C 172.0/24.1. Serial1/1 D 192.0/16 is variably subnetted.com Configuring EIGRP Authentication Lab Topology Lab Purpose: 1、Master EIGRP authentication principal. 2、Enable EIGRP 50 on the 2 routers.0.0/16 is a summary. 2 subnets. Serial1/1 172.0/8 is a summary.16. 00:00:37.1.0.16.1. 00:00:09. 00:00:37.2 are the next hop for network 192. 3、Check the routing tables of R1 and R2. Lab Steps: 1、Finish basic ip configuration. Serial1/1 This time both 172.0/24 is directly connected.10.16.168.ccieuniversity.16.0/8 is variably subnetted.0/24 [90/156160] via 172. FastEthernet0/0 [90/2300416] via 172.0. Null0 10.10 and 172.16.1. 2 masks C 10.16.1.www.168.1. By www. 6、Then check the routing table of R1 and R2 again. Null0 D 10. R2# . 00:00:16. 00:00:51.16.0.16. R1#configure terminal R1(config)#key chain edurainbow R1(config-keychain)#key 1 R1(config-keychain-key)#key-string cisco R1(config-keychain-key)#exit R1(config-keychain)#exit R1(config)# R1(config)#interface serial 1/1 R1(config-if)#ip authentication key-chain eigrp 50 edurainbow R1(config-if)#ip authentication mode eigrp 50 md5 R1(config-if)#end R1(config)# 5、"Use clear ip route *" command to speed up converge.16. 2 subnets.0/8 is a summary. Serial1/0 C 192.1. Loopback0 R2# This time the neighbor is down and EIGRP routes are missing.0/8 [90/2297856] via 172. Serial1/0 D 172.8/30 is directly connected.16.0/24 is directly connected. R1#show ip route C 172.0.9 (Serial1/0) is up: new adjacency *Mar 14 15:35:29. 00:02:53.0/16 is variably subnetted.8/30 is directly connected. Serial1/1 D 172.0.16.1.343: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 50: Neighbor 172.1.16. Null0 10.0/16 is a summary. Serial1/0 D 172.1.0/16 is a summary.767: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 50: Neighbor 172. 2 masks C 10.0. Null0 R1# R2#show ip route ……… C 172. *Mar 14 15:35:27.1.16. Null0 C 192.9 (Serial1/0) is down: Auth failure 7 Check the neighbor table of R2 we found no item there.0/24 is directly connected.www.16.168.168. Loopback0 D 10. R2#show ip eigrp 50 neighbors IP-EIGRP neighbors for process 50 8、Config EIGRP authentication on R2.ccieuniversity. 00:00:16.1.com R2#show ip route 172. 00:00:53. Loopback0 R2# 4、Config EIGRP authentication on R1.1.0. 2 masks C 172.8/30 is directly connected.0/8 is variably subnetted.0.0.9. 2 subnets.0.0/16 is a summary.0.1.1.16.16.1.0.0/24 is directly connected. Null0 D 10.1.1.1.0/16 is variably subnetted.0/8 is variably subnetted.ccieuniversity. 00:08:28. Serial1/1 D 172.16.168. 00:08:41.0.0.0/24 is directly connected.1. R1#show ip route 172. Null0 10.0/24 [90/2297856] via 172.0/16 is variably subnetted.1.ccieuniversity.8/30 is directly connected.9 (Serial1/0) is up: new adjacency R2#show ip eigrp 50 neighbors IP-EIGRP neighbors for process 50 H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 172. 2 subnets.1.0. 2 masks C 10. Serial1/0 C 192.www. 2 subnets.16. 00:03:44. 00:08:42.8/30 is directly connected.10.1.0.com Understand EIGRP Query Lab Topology .0/24 is directly connected.1.16.16. *Mar 14 15:46:04. Loopback0 D 10.0/16 is a summary. Loopback0 By www.16.0. 2 masks C 172.0.1.16. Null0 D 192.0/8 is a summary.0/8 [90/2297856] via 172.1.0/16 is a summary.com R2#configure terminal R2(config)#key chain edurainbow R2(config-keychain)#key 1 R2(config-keychain-key)#key-string cisco R2(config-keychain-key)#exit R2(config-keychain)#exit R2(config)# R2(config)#interface serial 1/0 R2(config-if)#ip authentication key-chain eigrp 50 edurainbow R2(config-if)#ip authentication mode eigrp 50 md5 R2(config-if)#exit R2(config)#exit R2(config)# 9、Then we found neighbor is up again.0.0.9.0. Serial1/0 D 172.071: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 50: Neighbor 172. Serial1/1 R1# R2#show ip route 172.16.0.16. 2 masks C 172. 2 subnets.9 Se1/0 11 00:01:17 28 200 0 8 10、Check the routing table of R1 and R2 we found the RIGRP routes are back.16.168. 00:02:54.16. R1#show ip route eigrp 172.168.2. R2#debug eigrp fsm EIGRP FSM Events/Actions debugging is on .0.1.0.5.1.0.1. 00:01:00.0/16 is variably subnetted. Serial1/0 D 10. 00:00:59.16. 00:01:30. 3 subnets.1.0.www.1.0/16 is a summary.168.16.16.16.16.0. Serial1/0 [90/2172416] via 172.16. 2 masks D 10. 2、Master EIGRP debug command. 3、Check EIGRP routing table of R1 R2 R3. Serial1/0 D 192.0.6. 00:01:21.1.0. 2 subnets.1.0. 3、Master stub configuration. 2 masks D 172. 3 subnets.0. FastEthernet0/0 R3# 4、Debug EIGRP on R2 to track update.1. Serial1/1 R2# R3#sh ip route eigrp 172.1.0.16.1.0/8 [90/156160] via 192. 00:01:16. Serial1/1 D 172. Null0 R1# R2#show ip route eigrp D 10.0.1.0/8 is a summary.16. Null0 10.16.0/8 [90/2297856] via 172.1. 00:01:21. Lab Steps: 1、Finish basic ip configuration.16.16.0/24 [90/2172416] via 172.0/30 [90/2681856] via 172.0/16 is variably subnetted.0. 00:01:20. 00:01:36.0/16 is a summary. 2、Enable EIGRP 50 on the 3 routers. 00:01:30.4/30 [90/2681856] via 172.ccieuniversity.0/8 is variably subnetted. Null0 D 172.com Lab Purpose: 1、Understand EIGRP route update mechanism. 2 masks D 172. 159: DUAL: Not doing split horizon *Mar 15 22:03:26.6 *Mar 15 22:03:26.1. RD is 2297856 *Mar 15 22:03:26.1 *Mar 15 22:03:26.1.1.1.099: DUAL: Send update about 10.16.www.1.171: EIGRP: Enqueueing QUERY on Serial1/1 iidbQ un/rely 0/1 serno 148-148 .099: DUAL: RT installed 10.087: EIGRP: Received QUERY on Serial1/0 nbr 172.1.6 metric 4294967295/4294967295 *Mar 15 22:03:26.16.1.16.16.151: AS 50.159: DUAL: Going from state 1 to state 3 *Mar 15 22:03:26.099: DUAL: 172. Seq 144/194 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar 15 22:03:26.0/24 via 172.1.com R2#debug eigrp packets query EIGRP Packets debugging is on (QUERY) 5、Shutdown loopback0 on R1 to simulate a network issue.6 metric 2300416/156160 found Dmin is 2300416 *Mar 15 22:03:26.1. RD is 2300416 *Mar 15 22:03:26.099: DUAL: send REPLY(R1/n1) about 10.1.1.0/24 to 172.0/24 via 172.095: DUAL: rcvquery: 10.6 *Mar 15 22:03:26. Reason: new if *Mar 15 22:03:26.1.091: AS 50.1. FD is 2297856.ccieuniversity.099: DUAL: 172.1.1.1.159: DUAL: 172.1.1 *Mar 15 22:03:26.1 metric 4294967295/4294967295 not found Dmin is 4294967295 *Mar 15 22:03:26.1. *Mar 15 22:03:26. *Mar 15 22:03:26.095: DUAL: Find FS for dest 10.0/24.159: DUAL: Peer total/stub 2/0 template/full-stub 2/0 *Mar 15 22:03:26. FD is 2297856.16. Seq 127/192 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar 15 22:03:26. Flags 0x0.0/24. Reason: metric chg *Mar 15 22:03:26. RD is 2297856 *Mar 15 22:03:26.1. R1(config)#interface loopback 0 R1(config-if)#shutdown 6、Check debug information on R2.1.16.1.1.155: DUAL: rcvquery: 10.147: EIGRP: Received QUERY on Serial1/1 nbr 172.0/24.1.16.1.0/24 entering active state.1 metric 4294967295/4294967295 *Mar 15 22:03:26.1. RD is 2300416 *Mar 15 22:03:26. *Mar 15 22:03:26. Count is 2.16.1.16.16.155: DUAL: Find FS for dest 10.0/24.0/24 via 172.159: DUAL: Set reply-status table.1.6 metric 4294967295/4294967295.099: DUAL: Send update about 10.159: DUAL: 172. Flags 0x0.1.1 metric 4294967295/4294967295.159: DUAL: Dest 10. 0.207: EIGRP: Sending QUERY on Serial1/0 nbr 172.1 *Mar 15 22:03:26. Flags 0x0.1.0. 3 subnets.1.16.199: EIGRP: Enqueueing QUERY on Serial1/0 iidbQ un/rely 0/1 serno 148-148 *Mar 15 22:03:26.ccieuniversity.1.219: DUAL: reply count is 2 *Mar 15 22:03:26.0 255.0. Flags 0x0.6 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 148-148 *Mar 15 22:03:26.6 metric 4294967295/4294967295 *Mar 15 22:03:26.271: DUAL: Find FS for dest 10.0/16 is variably subnetted. Seq 196/127 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 148-148 *Mar 15 22:03:26.16.0.1.0.com *Mar 15 22:03:26. R2#show ip route eigrp 172. Seq 195/144 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 148-148 *Mar 15 22:03:26.207: AS 50.267: DUAL: reply count is 1 *Mar 15 22:03:26.1.16. count now 1 *Mar 15 22:03:26. thing if there are hundreds of routers the query will be huge.0/24 via 172.1.1.175: EIGRP: Enqueueing QUERY on Serial1/1 nbr 172.0.0. count now 0 *Mar 15 22:03:26.179: AS 50.1.16.16.179: EIGRP: Sending QUERY on Serial1/1 nbr 172. RD is 4294967295 found ……… According to the debug output there are 4 query packets and 4 respond packets.215: DUAL: rcvreply: 10.1.1 metric 4294967295/4294967295 *Mar 15 22:03:26. R1(config)#interface loopback 0 R1(config-if)#no shutdown R1(config)#interface serial 1/1 R1(config-if)#ip summary-address eigrp 50 10.219: DUAL: Clearing handle 1.16. 7、Manually summary on R1 and R3.1 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 148-148 *Mar 15 22:03:26.0 R3(config)#interface serial 1/0 R3(config-if)#ip summary-address eigrp 50 10.0 8、Check routing table of R2 and R3 again to make sure they have learned the summary route.0/24.0.267: DUAL: rcvreply: 10.0/24 via 172.16.267: DUAL: Clearing handle 0.271: DUAL: Freeing reply status table *Mar 15 22:03:26.203: EIGRP: Enqueueing QUERY on Serial1/0 nbr 172.0 255.6 *Mar 15 22:03:26. FD is 4294967295.1. We could use manually summarize and stub feature to restrict the query scope.1.1. 2 masks .www.0. 1.0.0 [90/156160] via 192. 00:15:09.1. 100-byte ICMP Echos to 10. round-trip min/avg/max = 48/78/104 ms R2# R3>show ip route eigrp 172.0.0/30 [90/2172416] via 192.1.1.0. 00:00:27.1.16.1 metric 4294967295/4294967295. 3 subnets. 00:15:43.1.0/24 to 172. FastEthernet0/0 10.16. 2 masks D 172. 00:15:43.1. 00:00:57.1.0/24 via 172.1.16.0/16 is variably subnetted. Seq 135/207 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar 15 22:11:17.1.1.1.1 *Mar 15 22:11:17. round-trip min/avg/max = 24/62/96 ms R3> 9、Shutdown loopback0 on R1 again to check the debug message on R2.0.ccieuniversity.1.168.1 Type escape sequence to abort.16.871: AS 50. Serial1/0 10.0.1 *Mar 15 22:11:17. RD is 4294967295 *Mar 15 22:11:17.1. Sending 5.1.168.16.1.875: DUAL: dest(10.1.16.www.0/16 [90/2684416] via 172.16.1.1.1.168. RD is 2297856 .1.1.1.16. 00:15:09.0 [90/2297856] via 172.1. 100-byte ICMP Echos to 10.1.16.0/24) not active *Mar 15 22:11:17.0/24 [90/2172416] via 172.0.0.0/8 via 172.1 Type escape sequence to abort. Null0 D 172.1 metric 4294967295/4294967295.1.0/24 is subnetted.16.1.6.com D 172.1. 1 subnets D 10.879: DUAL: rcvquery: 10.0/16 is a summary.1.879: DUAL: send REPLY(R1/n1) about 10.1.0/24 is subnetted. Serial1/0 D 192. 00:15:27. *Mar 15 22:11:17.0.1.16.16.1. Serial1/0 [90/2172416] via 172. Flags 0x0. 1 subnets D 10.1.0.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). Sending 5.1.1. Serial1/1 R2#ping 10.1. FastEthernet0/0 R3> R3>ping 10. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).867: EIGRP: Received QUERY on Serial1/0 nbr 172.875: DUAL: rcvquery: 10. 1 *Mar 15 22:11:18.1.6 *Mar 15 22:11:18.16.1.015: DUAL: No routes.0.903: AS 50.0/8 to 172. Reason: new if *Mar 15 22:11:17.www.887: DUAL: 172.1.16.895: DUAL: Send update about 10.6 *Mar 15 22:11:17.1.039: DUAL: Doing split horizon on Serial1/1 *Mar 15 22:11:18. *Mar 15 22:11:18.0.1.895: DUAL: Send update about 10.0.0.883: DUAL: Find FS for dest 10.16. Count is 1.6 metric 4294967295/4294967295 not found Dmin is 4294967295 *Mar 15 22:11:18.0.035: DUAL: Set reply-status table.1.883: DUAL: 172. RD is 2300416 *Mar 15 22:11:18.907: DUAL: dest(10.0.1.6 *Mar 15 22:11:18.0.0/8.1.16.1.1.0.1. Reason: metric chg *Mar 15 22:11:17.0/8.023: AS 50.907: DUAL: rcvquery: 10.1 metric 4294967295/4294967295 *Mar 15 22:11:17.ccieuniversity.027: DUAL: Find FS for dest 10.16. FD is 2297856.0/24.1.899: EIGRP: Received QUERY on Serial1/1 nbr 172.0.6 *Mar 15 22:11:17.16.1.0.16. nexthop 172.951: DUAL: Removing dest 10.1. FD is 2297856.887: DUAL: send REPLY(R1/n1) about 10.1.015: DUAL: Removing dest 10.0/8 entering active state.031: DUAL: 172.1.0/24.1.0.0/8.16.891: DUAL: RT installed 10.16.16. Seq 154/208 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar 15 22:11:17.1. RD is 2297856 *Mar 15 22:11:17.0.0/24 to 172. Seq 157/212 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar 15 22:11:18.0/24) not active *Mar 15 22:11:17. nexthop 172. RD is 4294967295 *Mar 15 22:11:17.0.1.019: EIGRP: Received QUERY on Serial1/1 nbr 172.0/8.0.1 *Mar 15 22:11:17.0.955: DUAL: Removing dest 10.1. RD is 2300416 *Mar 15 22:11:18.0.1.0/8 via 172.6 *Mar 15 22:11:17.035: DUAL: Dest 10.027: DUAL: rcvquery: 10. *Mar 15 22:11:18.16.1.0/8. Flags 0x0.0/24 via 172. nexthop 172.0/8 via 172.911: DUAL: send REPLY(R1/n1) about 10.0.16.6 metric 4294967295/4294967295.1.6 metric 2300416/156160 found Dmin is 2300416 *Mar 15 22:11:17. Flags 0x0.039: DUAL: Going from state 1 to state 3 .1 *Mar 15 22:11:17.031: DUAL: Peer total/stub 2/0 template/full-stub 2/0 *Mar 15 22:11:18.com *Mar 15 22:11:17.16.6 metric 4294967295/4294967295.1. Flushing dest 10.0/24 *Mar 15 22:11:18.0.1. 0.6 *Mar 15 22:11:18. we enable EIGRP stub feature on R2 to stop query packets for network 10. Flags 0x0.1.1 *Mar 15 22:11:18.1.0/8 Obviously query packets for network 10.119: DUAL: rcvreply: 10.0. R1#show ip eigrp neighbors detail IP-EIGRP neighbors for process 50 H Address Interface Hold Uptime Seq (sec) Num SRTT (ms) RTO Q Cnt .0/8 via 172. Seq 214/135 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 161-161 *Mar 15 22:11:18.1.www.0/24.051: EIGRP: Enqueueing QUERY on Serial1/0 iidbQ un/rely 0/1 serno 161-161 *Mar 15 22:11:18. FD is 4294967295.1.123: DUAL: Clearing handle 0.16.1 *Mar 15 22:11:18.1.0/24 decrease to 2 this time.0.1.0.16.0.0/8.1.16.6 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 161-161 *Mar 15 22:11:18.171: DUAL: No routes.0/8 to 172.1. count now 0 *Mar 15 22:11:18.0/8) active *Mar 15 22:11:18.0.0. RD is 4294967295 found *Mar 15 22:11:18.0.0.16.127: DUAL: send REPLY(R1/n1) about 10.123: DUAL: reply count is 1 *Mar 15 22:11:18.063: EIGRP: Sending QUERY on Serial1/0 nbr 172.0.171: DUAL: Removing dest 10.ccieuniversity.6 *Mar 15 22:11:18.1 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 161-161 *Mar 15 22:11:18.123: DUAL: Find FS for dest 10.0/8.123: DUAL: Freeing reply status table *Mar 15 22:11:18. nexthop 172.1.16.com *Mar 15 22:11:18. Flushing dest 10.16.119: DUAL: dest(10.1 metric 4294967295/4294967295 *Mar 15 22:11:18.063: AS 50.0.1.0.131: DUAL: Going from state 3 to state 1 *Mar 15 22:11:18.16.0/8.131: DUAL: Removing dest 10.055: EIGRP: Enqueueing QUERY on Serial1/0 nbr 172.0.0. 10、To deeply solve the issue. R2(config)#router eigrp 50 R2(config-router)#eigrp stub 11、Check the neighbor table on R1 to see the stub feature.051: EIGRP: Enqueueing QUERY on Serial1/1 nbr 172.047: EIGRP: Enqueueing QUERY on Serial1/1 iidbQ un/rely 0/1 serno 161-161 *Mar 15 22:11:18.1. nexthop 172. Count is 2.1.6 metric 4294967295/4294967295 *Mar 15 22:22:31.0.6 metric 4294967295/4294967295 not found Dmin is 4294967295 *Mar 15 22:22:31.com 0 172.1. *Mar 15 22:22:31.0.168.6 *Mar 15 22:22:31. Retries: 0 Stub Peer Advertising ( CONNECTED SUMMARY ) Routes Suppressing queries 1 192.0/8 via 172.0/8.16. Reason: metric chg *Mar 15 22:22:31.595: DUAL: Set reply-status table.587: DUAL: Find FS for dest 10.0/8.1.16.16.1.0/8 via 172.0/8 entering active state.6 metric 2300416/156160 found Dmin is 2300416 *Mar 15 22:22:31.16.1.0.0. *Mar 15 22:22:31.0.3/1.0/8.595: DUAL: Dest 10.371: DUAL: rcvupdate: 10.16.375: DUAL: 172.375: DUAL: 172.1 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 169-169 .591: DUAL: 172.0. Retries: 0 216 1296 0 75 450 0 12、Shutdown loopback0 of R1 again to see the debug output of R2.0.0.591: DUAL: Peer total/stub 2/0 template/full-stub 2/0 *Mar 15 22:22:31. nexthop 172. RD is 2297856 *Mar 15 22:22:31.www.387: DUAL: Send update about 10.595: DUAL: Not doing split horizon *Mar 15 22:22:31.607: EIGRP: Enqueueing QUERY on Serial1/0 iidbQ un/rely 0/1 serno 169-169 *Mar 15 22:22:31.615: EIGRP: Enqueueing QUERY on Serial1/0 nbr 172.0.3/1.2 Fa0/0 14 01:09:11 159 Version 12.607: EIGRP: Enqueueing QUERY on Serial1/1 iidbQ un/rely 0/1 serno 169-169 *Mar 15 22:22:31.379: DUAL: Removing dest 10.587: DUAL: rcvupdate: 10. Retrans: 1. Retrans: 0.611: EIGRP: Enqueueing QUERY on Serial1/1 nbr 172.16. *Mar 15 22:22:31.16.1.0/8 via 172.6 iidbQ un/rely 0/0 peerQ un/rely 0/0 serno 169-169 *Mar 15 22:22:31.16.1.0.0/8.0.0.0.383: DUAL: RT installed 10. Reason: new if *Mar 15 22:22:31.16.0.2.2.383: DUAL: Send update about 10.1. FD is 2297856.0/8. RD is 2300416 *Mar 15 22:22:31.0.1 metric 4294967295/4294967295 *Mar 15 22:22:31. FD is 2297856.0.1 metric 4294967295/4294967295 *Mar 15 22:22:31.0.16.ccieuniversity.0.1 *Mar 15 22:22:31.1.371: DUAL: Find FS for dest 10.2 Se1/1 12 00:01:01 220 Version 12.1.1. 715: DUAL: rcvreply: 10.0 0.255 area 1 R1(config-router)#network 192.1.623: AS 50.1.0 0.0.16. assign interfaces to the relevant area according to the topology. Lab Steps: 1、Finish basic ip configuration.6 *Mar 15 22:22:31.1 metric 4294967295/4294967295 *Mar 15 22:22:31.1.0. 4、Master OSPF basic configuration. 3、Master OSPF route summary configuration.0.2.0/8 via 172.16.715: DUAL: reply count is 2 ………… This time R2 will not receive any query packet for network 10.0.1.com *Mar 15 22:22:31. R1(config)#router ospf 1 R1(config-router)#network 10.627: EIGRP: Sending QUERY on Serial1/0 nbr 172.1.0.0 0.3 area 1 .1.www.1.255 area 1 R1(config-router)#network 10.com Configuring Basic Multi Area OSPF and Area Summary Lab Topology Lab Purpose: 1、Master OSPF multi area configuration.0. 2、Distinguish routes from different areas.1.0.0/24 By www.619: EIGRP: Sending QUERY on Serial1/1 nbr 172.711: DUAL: dest(10.627: AS 50.0.0/8) active *Mar 15 22:22:31.16. Flags 0x0.168.ccieuniversity. Flags 0x0. Seq 226/169 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 169-169 *Mar 15 22:22:31.1 *Mar 15 22:22:31.0.ccieuniversity. 2、Enable OSPF 1 on R1.1. Seq 227/148 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 169-169 *Mar 15 22:22:31.0. 168.2.EIGRP external.OSPF inter area N1 . 2 subnets C 10. S . 5、Check OSPF neighbor relationship on R2.0/24 is subnetted.mobile.1 1 FULL/ 00:00:37 192. Loopback1 C 10. Serial1/1 O IA 172.1.OSPF NSSA external type 2 E1 .5 486 0x80000003 0x002BB5 2 . Serial1/1 O IA 192.16. R .6 Serial1/1 10.1.1.2.168. M .168.1 10. Serial1/1 C 192.0 is directly connected.0.0.EIGRP. E . I . assign interfaces to relevant area according to the topology. Serial1/1 7、Check OSPF link state database of R1.OSPF external type 1.9 1 FULL/ 00:00:39 192.1.EGP ………… Gateway of last resort is not set 172.OSPF external type 2.168.2.168.1.168.2.0 0.1.168. R2(config)#router ospf 1 R2(config-router)#network 192.0 is directly connected.168. R2#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 192.2.1.0 is directly connected.168.1. R1#show ip route Codes: C . 00:05:06.1.0/30 is subnetted.1.2.1.4 [110/128] via 192.1 Serial1/0 6、Check the routing table of R1 to see OSPF route from different areas. 00:02:23.2.8 [110/192] via 192.1.1.168.1. 2 subnets O IA 172.168. EX .com R1(config-router)#exit 3、Enable OSPF 1 on R2.168.1 [110/193] via 192.1. finish the OSPF configuration on R3 and R4. 3 subnets O IA 192. N2 .OSPF NSSA external type 1.2.16.3 area 0 R2(config)#exit 4、Refer to R1 and R2.1.5 192.1.static.0.connected.1. Loopback0 192.IGRP.1 492 0x80000004 0x00C83F 4 192.4 0.168. E2 .0.www.2. O . 00:02:58. 00:02:23.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 10.2.RIP.1.168.BGP D . R1#show ip ospf database OSPF Router with ID (10.0.OSPF.168. Serial1/1 10.0.1 [110/193] via 192. IA .1.1.0.1.3 area 1 R2(config-router)#network 192.1.16.ccieuniversity. B .0/32 is subnetted. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1.0.5 315 172. Loopback1 10.1.4 [110/128] via 192.1.16.16.168. Loopback0 C 172.9 2 0x80000001 0x00B586 10. 100-byte ICMP Echos to 172.2.0 192. Serial1/0 O IA 192.2.1. Serial1/0 192.16.168.168.1.168.168.9.1.1.0 [110/193] via 192.9.16.0 192.168.1.1.1. R1#ping 172.1. 2 subnets C 172.168.168.168.0.168. 2 subnets O IA 10.1. Sending 5.8 192. R4#show ip route 172.5 315 192.4 192.1.168.168. round-trip min/avg/max = 216/240/288 ms R1# 9、Check the routing table and OSPF link state database on R4.9 1265 0x80000001 0x00766B .16.1.0 192.1.8 is directly connected.2.1 1223 0x80000004 0x00B871 4 192.9 2 0x80000001 0x00AA90 192.www. 00:15:14.1.1.16.168.1 172.1. Serial1/0 R4# R4#show ip ospf database OSPF Router with ID (172.1) (Process ID 1) Router Link States (Area 2) Link ID ADV Router Age Seq# Checksum Link count 172.2.1.16.168.1.16.2.9. 3 subnets C 192.1.0.168.0 is directly connected.ccieuniversity.2.1.0 [110/192] via 192.1.16.168.5 350 Seq# Checksum 0x80000001 0x00CCC0 0x80000001 0x00C1CA 0x80000001 0x00E33E 0x80000001 0x003E9F 8、Use ping to test the connectivity on R1.9 1224 0x80000002 0x00EA2E 2 Summary Net Link States (Area 2) Link ID ADV Router Age Seq# Checksum 10.1.1.16.5 479 192. Serial1/0 O IA 10.com Summary Net Link States (Area 1) Link ID ADV Router Age 172. Serial1/0 O IA 192.0/24 is subnetted. 00:15:14.1 192.1. 00:15:14.1.1.168. 00:15:14.0/24 is subnetted.0 [110/193] via 192.168.1.1.0 is directly connected.168.1 192.1 Type escape sequence to abort.2.1.9 192.168.0/30 is subnetted.9. R2(config)#router ospf 1 R2(config-router)#area 1 range 10. Loopback1 10. 00:00:32.168.168.1 172.1) (Process ID 1) Router Link States (Area 2) Link ID ADV Router Age 172.0.1. 3 subnets C 192. 1 subnets O IA 10.0.0 [110/192] via 192.0 [110/193] via 192.1.0 is directly connected.0/30 is subnetted.168.2.1.0/24 is subnetted.1.1.168.0.1 6 192.16. 10、Config OSPF area summary on R2. Serial1/0 O IA 192.ccieuniversity.16. Loopback0 C 172.ccieuniversity.9 192.168. Serial1/0 R4# R4#show ip ospf database OSPF Router with ID (172.9.9 1265 0x80000001 0x00CB52 As you see all the area 1 specific routes are in the routing table of R4.168.168.1.1. we could do something to make it smaller.0 192.1.1.168.1.168.2.0 is directly connected.9 1325 0x80000001 0x00CB52 By www.168.168.com . Serial1/0 192.16. 2 subnets C 172.1.0.1.0 R2(config-router)#exit R2(config)#exit 11、Check the routing table and OSPF database on R4 again.0/16 is subnetted.168.168.168.www.168.com 192.9 1325 0x80000001 0x00766B 192.0.1. Serial1/0 O IA 192.1.4 192.0 255.16.168.9 29 0x80000001 0x00C07C 192.1.1.2. R4#show ip route 172.9.0.1.2.16.0 192. 00:18:36.9. 00:18:36.8 is directly connected.1.4 192.1.9 13 Seq# Checksum Link count 0x80000005 0x00B672 4 0x80000004 0x00E630 2 Summary Net Link States (Area 2) Link ID ADV Router Age Seq# Checksum 10.1.255.16.4 [110/128] via 192.0. 3 103 broadcast R1(config-if)#exit R1(config)# R1(config)#router ospf 1 R1(config-router)#network 192.0.0.1.255.1.255.1. R1(config)#interface loopback 0 R1(config-if)#ip address 172.0.1. 2、Enable OSPF on all routers and use default network type.2 102 broadcast R1(config-if)#frame-relay map ip 192.255.www.168.168.255.255. 2、Master OSPF interface network type configuration.0 0.3.0 R1(config-if)#ip ospf network point-to-point R1(config-if)#exit R1(config)# R1(config)#interface serial 1/2 R1(config-if)#ip add 192. 3、Master OSPF interface priority configuration.0 R1(config-if)#encapsulation frame-relay R1(config-if)#no frame-relay inverse-arp R1(config-if)#frame-relay map ip 192.0.1 255.168. Lab Steps: 1、Finish basic ip configuration.1 255.1.0 0.255.255 area 0 R1(config-router)#network 172.168.0 R2(config-if)#ip ospf network point-to-point R2(config-if)#exit R2(config)# .1.16.com Configuring OSPF in NBMA Lab Topology Lab Purpose: 1、Master OSPF in NBMA network configuration.ccieuniversity.16.1 255.255 area 0 R1(config-router)#exit R1(config)# R2(config)#interface loopback 0 R2(config-if)#ip address 172.16. R1#show ip ospf interface serial 1/2 Serial1/2 is up.168.168.168.0 0.0 0.255 area 0 R2(config-router)#network 192. Cost: 64 Transmit Delay is 1 sec.0.255.1.0 R2(config-if)#no frame-relay inverse-arp R2(config-if)#frame-relay map ip 192.255.255 area 0 R3(config-router)#exit R3(config)# 3、Check the OSPF neighbor table on R1 we can see no neighbor is up.16.3.1 301 broadcast R3(config-if)#no shutdown R3(config-if)#exit R3(config)# R3(config)#router ospf 1 R3(config-router)#network 172.0. Router ID 172. Priority 1 Designated Router (ID) 172.ccieuniversity. State DR.1. Interface address 192.1 . line protocol is up Internet Address 192.168.1.1/24.3 255.com R2(config)#interface serial 1/2 R2(config-if)#encapsulation frame-relay R2(config-if)#ip address 192.1.0.www.1 255.1.4.168.1.1.1.255.0 0.0.168.1.0 R3(config-if)#ip ospf network point-to-point R3(config-if)#exit R3(config)# R3(config)#interface serial 1/2 R3(config-if)#ip address 192.16.0 R3(config-if)#encapsulation frame-relay R3(config-if)#no frame-relay inverse-arp R3(config-if)#frame-relay map ip 192.16. Network Type NON_BROADCAST.255 area 0 R2(config-router)#exit R2(config)# R3(config)#interface loopback 0 R3(config-if)#ip address 172.0.0. Area 0 Process ID 1.255.4.0.0 0.1.255.0.2 255.16.168.255.16.168.1. R1#show ip ospf neighbor 4、Check Serial 1/2 OSPF information on R1.1 201 broadcast R2(config-if)#no shutdown R2(config-if)#exit R2(config)# R2(config)#router ospf 1 R2(config-router)#network 172.1.255 area 0 R3(config-router)#network 192. maximum is 0 msec Neighbor Count is 0. then change the OSPF network type to broadcast. maximum is 0 Last flood scan time is 0 msec. Let's first remove the manually allocate configuration. Hello 30. *Jun 18 15:36:16.1 on Serial1/2 from LOADING to FULL.1 7、Then we can see the neighbors are up.1 on Serial1/2 from LOADING to FULL.168. 6、One solution is to manually assign OSPF neighbor.ccieuniversity. Dead 120. Adjacent neighbor count is 0 Suppress hello for 0 neighbor(s) 5、According to the above information we could see the default OSPF network type for NBMA is NON_BROADCAST.3.1 R3(config)#router ospf 1 R3(config-router)#neighbor 192. flood queue length 0 Next 0x0(0)/0x0(0) Last flood scan length is 0.16. Loading Done *Jun 18 15:36:16.16. we could also change the OSPF network type to build the neighbor relationship.747: %OSPF-5-ADJCHG: Process 1. R1(config)#router ospf 1 .168.2 Serial1/2 1 FULL/DR 00:01:57 192. R1#show ip ospf neighbor Neighbor ID 172.1.2 R1(config-router)#neighbor 192.3 R2(config)#router ospf 1 R2(config-router)#neighbor 192.1.16.4. Nbr 172.1 172.1.4.3.168. Nbr 172.1 Pri State Dead Time Address Interface 1 FULL/DROTHER 00:01:31 192.www.168.1.16.1. So OSPF will not send out its hello packet which based on multi-cast.743: %OSPF-5-ADJCHG: Process 1.com No backup designated router on this network Timer intervals configured. Loading Don 8、Check the OSPF neighbor table on R1.168.168. Wait 120. R1(config)#router ospf 1 R1(config-router)#neighbor 192. Retransmit 5 oob-resync timeout 120 Hello due in 00:00:15 Index 1/1.1.3 Serial1/2 9、Beside manually allocate. 1. State DR.1.1.2 Serial1/2 1 FULL/DR 00:00:33 192.www.1. 11、Check OSPF neighbor table on R1 R2 R3. Cost: 64 Transmit Delay is 1 sec.2 R1(config-router)#no neighbor 192.1. Router ID 172. R1#show ip ospf neighbor Neighbor ID 172.168. Priority 1 ………… Network type is BROADCAST now.1 R1# Pri State Dead Time Address Interface 1 FULL/DROTHER 00:00:32 192.1.16.1 R2# Pri State 1 FULL/BDR Dead Time Address Interface 00:00:30 192.168.1.168.1.1/24.1 Serial1/2 . Network Type BROADCAST.168. R1#show ip ospf interface serial 1/2 Serial1/2 is up.16.168.1 R3(config)#router ospf 1 R3(config-router)#no neighbor 192.3 Serial1/2 R2#show ip ospf neighbor Neighbor ID 172.4.168.16.1.1 R1(config)#interface serial 1/2 R1(config-if)#ip ospf network broadcast R1(config-if)#exit R2(config)#interface serial 1/2 R2(config-if)#ip ospf network broadcast R2(config-if)#exit R3(config)#interface serial 1/2 R3(config-if)#ip ospf network broadcast R3(config-if)#exit 10、Check serial 1/2 OSPF information on R1.1.ccieuniversity.1 172.1.com R1(config-router)#no neighbor 192.3. line protocol is up Internet Address 192.168.16. Area 0 Process ID 1.168.3 R2(config)#router ospf 1 R2(config-router)#no neighbor 192. 16. R3 considers 172. R1 should be the DR.1(R3) as DR.www. itself as DR. the other is between R1 and R3. itself as DR.16. 13、Change interface OSPF priority to 0 on R2 and R3.1 R3# Pri State 1 FULL/BDR Dead Time Address Interface 00:00:39 192. 172.1.1 172.ccieuniversity.16.3.1(R1) as BDR.4.16.1.1. we can see R1 is always the DR.3 Serial1/2 .168.1.1.1 R1# Pri State Dead Time Address Interface 0 FULL/DROTHER 00:00:38 192.2 Serial1/2 0 FULL/DROTHER 00:00:39 192. it has only two PVC one is between R1 and R2.16.168. R2 considers 172.3.16.16. As the frame-relay network is not full mesh. R1#show ip ospf neighbor Neighbor ID 172.com R3#show ip ospf neighbor Neighbor ID 172.1(R2) as DROTHER. to make sure everyone will receive LSU (LAS update).168.1 Serial1/2 12、Look at the above OSPF neighbor table we can see: R1 considers 172.1. R2(config)#interface serial 1/2 R2(config-if)#ip ospf priority 0 R2(config-if)#exit R2(config)# R3(config)#interface serial 1/2 R3(config-if)#ip ospf priority 0 R3(config-if)#exit 14、Check OSPF neighbor table on R1 R2 R3.4. so neither R2 nor R3 will participate in DR/BDR selection. itself as BDR.1(R1) as BDR. 1. then there will be no DR/BDR selection. OSPF network type diagram.ccieuniversity.168.www.com Configuring OSPF Authentication Lab Topology .ccieuniversity.16.1 Pri State 1 FULL/DR Dead Time Address Interface 00:00:38 192.1 Serial1/2 R3#show ip ospf neighbor Neighbor ID 172.1.1.16. By www.168.com R2#show ip ospf neighbor Neighbor ID 172.1 Serial1/2 15、We could also change the OSPF network type to P2P.1.1 R2# Pri State 1 FULL/DR Dead Time Address Interface 00:00:31 192. 1. 00:01:02.0. 3 subnets O IA 192.16.1. 2 subnets O IA 172.0.168.ccieuniversity.1.1.0 is directly connected.2.1.2.1. 00:01:12. 00:01:02.16.0.2.2.0/24 is subnetted.168.168.0 [110/65] via 192.1.0 is directly connected.1.16.168.1.0/30 is subnetted. 3、 Check the routing table of R1 and R2 R1#show ip route Gateway of last resort is not set 172.1.1. Loopback0 C 10.1.1. 00:09:26.168.168.1.1. Serial1/1 C 192. 2 subnets O IA 172.1. 00:09:16. Lab Steps: 1、Master OSPF in NBMA network configuration.168. Serial1/1 O IA 172.2.1.16.168.1.1. 00:14:00.0/24 is subnetted. Serial1/1 10.1.0/24 is subnetted. Serial1/1 O IA 172.8 [110/192] via 192. Serial1/0 O 10. Serial1/1 O IA 192.168.0 [110/193] via 192.com Lab Purpose: 1、Master OSPF interface and area authentication configuration.168. 00:09:16. Loopback1 192.168.0. 00:05:47. Serial1/1 R2#show ip route Gateway of last resort is not set 172.1.0/30 is subnetted.6. Serial1/1 C 192.1.1.168.0.www. Serial1/0 192.16.0/24 is subnetted.0.4 [110/128] via 192.6.0 [110/65] via 192.168. 00:14:00. Serial1/1 10.1. 2、Finish OSPF basic configuration.0 [110/129] via 192.2.168.1.1.6.16.168. Serial1/0 . 3 subnets O IA 192.2.0 [110/193] via 192.0 is directly connected.2. 2 subnets C 10.0 [110/129] via 192.8 [110/128] via 192.168. 2 subnets O 10.0 is directly connected. 1.168.168.1.5 on Serial1/1 seq 0x182 opt 0x42 flag 0x2 len 152 00:54:55: OSPF: Rcv DBD from 192.5 on Serial1/1 from FULL to DOWN.168.5 on Serial1/1 seq 0x183 opt 0x42 flag 0x0 len 32 00:54:55: OSPF: Database request to 192.com R1(config-if)#exit 5、Enable OSPF debug on R1. Nbr 192. R1#Debug ip ospf adj 00:30:33: OSPF: 192.1.com R2(config-if)#exit R2(config)#exit 7、Check the debug output again on R1. Input packet specified type 0.2 on Serial1/1 is dead.2.168. Serial1/1 : Mismatch Authentication type. R1(config)#interface serial 1/1 R1(config-if)#ip ospf authentication R1(config-if)#ip ospf authentication-key www.1.ccieuniversity.1.com C 192.168. Serial1/1 4、Enable OSPF interface simple password authentication on R1.1.5 on Serial1/1 seq 0x183 opt 0x42 flag 0x3 len 152 mtu 1500 state EXCHANGE 00:54:55: OSPF: Send DBD to 192.5 on Serial1/1 seq 0x182 opt 0x42 flag 0x7 len 32 mtu 1500 state EXSTART 00:54:55: OSPF: NBR Negotiation Done.5 address 192.168.ccieuniversity. state DOWN 00:30:33: %OSPF-5-ADJCHG: Process 1.168.168. we use type 1 00:54:45: OSPF: Rcv pkt from 192.1.2 on Serial1/1 is dead 00:30:33: OSPF: 192. Neighbor Down: Dead timer expired 00:30:35: OSPF: Rcv pkt from 192.1.1.2. Serial1/1 : Mismatch Authentication Key Clear Text 6、Enable OSPF interface simple password authentication on R2.1.4 is directly connected.168.1.168.5 on Serial1/1 seq 0x184 opt 0x42 flag 0x1 len 32 mtu 1500 state EXCHANGE .168.168.1. length 60 00:54:55: OSPF: Rcv DBD from 192. state 2WAY 00:54:55: OSPF: Send DBD to 192.1.ccieuniversity.168.168.1.1.5 on Serial1/1 seq 0x2154 opt 0x42 flag 0x7 len 32 00:54:55: OSPF: Rcv DBD from 192.168.5 on Serial1/1.1. R2(config)#interface s1/1 R2(config-if)#ip ospf authentication R2(config-if)#ip ospf authentication-key www.5 address 192.1. 00:54:55: OSPF: 2 Way Communication to 192.168.168.5 00:54:55: OSPF: sent LS REQ packet to 192.2. We are the SLAVE 00:54:55: OSPF: Send DBD to 192.www. 0 is directly connected.0/24 is subnetted.0.0 is directly connected.ccieuniversity.1.2.168. Loading Done 00:54:56: OSPF: Build router LSA for area 1. 3 subnets O IA 192.0 is directly connected. R1(config)#interface s1/1 R1(config-if)#no ip ospf authentication R1(config-if)#no ip ospf authentication-key www.168.168.16.168.2.168.0/30 is subnetted.168.16. Serial1/1 O IA 172.com R1(config-if)#exit R1(config)#exit R2(config)#interface s1/1 R2(config-if)#no ip ospf authentication R2(config-if)#no ip ospf authentication-key www.com R2(config-if)#exit R2(config)#exit R1(config)#interface serial 1/1 R1(config-if)#ip ospf authentication message-digest R1(config-if)#ip ospf message-digest-key 1 md5 www.1.0/24 is subnetted.ccieuniversity.2. 00:01:53.1. 00:01:53.2.1.1. Nbr 192. seq 0x8000000C R1#show ip route Gateway of last resort is not set 172.8 [110/192] via 192.1.com 00:54:55: OSPF: Exchange Done with 192.1. Loopback0 C 10.5 on Serial1/1 from LOADING to FULL.0.0. 2 subnets O IA 172.www. router ID 10.168. state FULL 00:54:55: %OSPF-5-ADJCHG: Process 1.1.0 [110/193] via 192.1. 00:01:53.ccieuniversity.1.1.1.0 [110/193] via 192.ccieuniversity.2.1.5 on Serial1/1 00:54:55: OSPF: Send DBD to 192.168.4 [110/128] via 192.1.2.1.16. 2 subnets C 10.2.1. Serial1/1 O IA 192.1. Loopback1 192.168.168. Serial1/1 10. 00:01:53.1.com R1(config-if)#exit R1(config)# R2(config)#interface serial 1/0 . Serial1/1 8、Remove OSPF interface simple password authentication and enable interface MD5 authentication on R1 and R2. Serial1/1 C 192.168.168.5 on Serial1/1 seq 0x184 opt 0x42 flag R1#0x0 len 32 00:54:55: OSPF: Synchronized with 192.5 on Serial1/1. www.ccieuniversity.com R2(config-if)#ip ospf authentication message-digest R2(config-if)#ip ospf message-digest-key 1 md5 www.ccieuniversity.com R2(config-if)#exit R2(config)# 9、Check the routing table of R1. R1#show ip route Gateway of last resort is not set 172.16.0.0/24 is subnetted, 2 subnets O IA 172.16.1.0 [110/193] via 192.168.1.2, 00:00:05, Serial1/1 O IA 172.16.2.0 [110/193] via 192.168.1.2, 00:00:05, Serial1/1 10.0.0.0/24 is subnetted, 2 subnets C 10.1.2.0 is directly connected, Loopback0 C 10.1.1.0 is directly connected, Loopback1 192.168.1.0/30 is subnetted, 3 subnets O IA 192.168.1.8 [110/192] via 192.168.1.2, 00:00:05, Serial1/1 C 192.168.1.0 is directly connected, Serial1/1 O IA 192.168.1.4 [110/128] via 192.168.1.2, 00:00:05, Serial1/1 10、Remove OSPF interface MD5 authentication and enable OSPF area simple password authentication on R1 and R2. R1(config)#interface serial 1/1 R1(config-if)#no ip ospf authentication message-digest R1(config-if)#no ip ospf message-digest-key 1 md5 www.ccieuniversity.com R1(config-if)#exit R1(config)# R2(config)#interface serial 1/0 R2(config-if)#no ip ospf authentication message-digest R2(config-if)#no ip ospf message-digest-key 1 md5 www.ccieuniversity.com R2(config-if)#exit R1(config)#router ospf 1 R1(config-router)#area 1 authentication R1(config-router)#exit R1(config)#interface serial 1/1 R1(config-if)#ip ospf authentication-key www.ccieuniversity.com R1(config-if)#exit R1(config)#exit R2(config)#router ospf 1 www.ccieuniversity.com R2(config-router)#area 1 authentication R2(config-router)#exit R2(config)#interface serial 1/0 R2(config-if)#ip ospf authentication-key www.ccieuniversity.com R2(config-if)#exit 11、Check the routing table on R1. R1#show ip route Gateway of last resort is not set 172.16.0.0/24 is subnetted, 2 subnets O IA 172.16.1.0 [110/193] via 192.168.1.2, 00:01:19, Serial1/1 O IA 172.16.2.0 [110/193] via 192.168.1.2, 00:01:19, Serial1/1 10.0.0.0/24 is subnetted, 2 subnets C 10.1.2.0 is directly connected, Loopback0 C 10.1.1.0 is directly connected, Loopback1 192.168.1.0/30 is subnetted, 3 subnets O IA 192.168.1.8 [110/192] via 192.168.1.2, 00:01:19, Serial1/1 C 192.168.1.0 is directly connected, Serial1/1 O IA 192.168.1.4 [110/128] via 192.168.1.2, 00:01:19, Serial1/1 12、Remove OSPF area simple password authentication and enable OSPF area MD5 authentication on R1 and R2. R1(config)#router ospf 1 R1(config-router)#no area 1 authentication R1(config-router)#exit R1(config)#interface serial 1/1 R1(config-if)#no ip ospf authentication-key www.ccieuniversity.com R1(config-if)#exit R1(config)#exit R2(config)#router ospf 1 R2(config-router)#no area 1 authentication R2(config-router)#exit R2(config)#interface serial 1/0 R2(config-if)#no ip ospf authentication-key www.ccieuniversity.com R2(config-if)#exit R1(config)#router ospf 1 R1(config-router)#area 1 authentication message-digest R1(config-router)#exit R1(config)#interface serial 1/1 www.ccieuniversity.com R1(config-if)#ip ospf message-digest-key 1 md5 www.ccieuniversity.com R1(config-if)#exit R1(config)# R2(config)#router ospf 1 R2(config-router)#area 1 authentication message-digest R2(config-router)#exit R2(config)#interface serial 1/0 R2(config-if)#ip ospf message-digest-key 1 md5 www.ccieuniversity.com R2(config-if)#exit R2(config)# 13、Check the routing table on R1. R1#show ip route Gateway of last resort is not set 172.16.0.0/24 is subnetted, 2 subnets O IA 172.16.1.0 [110/193] via 192.168.1.2, 00:01:19, Serial1/1 O IA 172.16.2.0 [110/193] via 192.168.1.2, 00:01:19, Serial1/1 10.0.0.0/24 is subnetted, 2 subnets C 10.1.2.0 is directly connected, Loopback0 C 10.1.1.0 is directly connected, Loopback1 192.168.1.0/30 is subnetted, 3 subnets O IA 192.168.1.8 [110/192] via 192.168.1.2, 00:01:19, Serial1/1 C 192.168.1.0 is directly connected, Serial1/1 O IA 192.168.1.4 [110/128] via 192.168.1.2, 00:01:19, Serial1/1 By www.ccieuniversity.com Configuring OSPF External Summary Lab Topology 1.168. 00:03:50. Lab Steps: 1、Finish basic IP configuration.0.4 0.com Lab Purpose: 1、Master OSPF external route summary configuration.1.1.168. R3(config)#router ospf 1 R3(config-router)#network 192.0.0/30 is subnetted.16.0 is directly connected. Loopback1 C 10.0.1.1.0 is directly connected.1.1. Loopback0 192.168.4 [110/128] via 192. R1#show ip route Gateway of last resort is not set 10. Serial1/1 4、Enable redistribution on R3.ccieuniversity.2.www.0 R3(config-router)#exit 3、check the routing table on R1 and R2. R3(config)#router ospf 1 R3(config-router)#redistribute rip metric 200 subnets R3(config-router)#exit . and routing configuration. 2、Make R3 as the ASBR.2.0 is directly connected.1.168.0/24 is subnetted.0. Serial1/1 O IA 192.0. 2 subnets C 192.3 area 0 R3(config-router)#exit R3(config)#exit R3(config)#router rip R3(config-router)#network 172. 2 subnets C 10.168. 5 192.1.0 is directly connected.1.168.1.2.0 [110/328] via 192.168. Serial1/1 O E1 172.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 10.0 is directly connected.168.2.2. R1#show ip ospf database OSPF Router with ID (10.0/30 is subnetted.1. 00:04:22.16.168.168.4 192.168.1.2.16.0 is directly connected.1.5 1413 0x80000006 0x0025B8 2 Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 192. 00:04:22.0 [110/328] via 192.1.1.1.1.6 192.1 10.0.0. 00:16:54.1.16.0/24 is subnetted. 2 subnets C 1929999.1.1.com R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 R3(config-router)#exit R3(config)# 5、Check the routing table on R1 again.168.2.1.168.168. Serial1/1 10. R1#show ip route Gateway of last resort is not set 172.16. Serial1/1 O IA 192.2.168.ccieuniversity.2.2.168. Loopback0 192.0 [110/328] via 192.168.1.16.0 192.168.0.1.168.1 1413 0x80000009 0x0003FD 4 192.2.0/24 is subnetted. Loopback1 C 10.3.1. 2 subnets C 10. Serial1/1 O E1 172.2.1.6 3603 0x80000003 0x00C43F 0 .1.1. 00:04:22.1. 3 subnets O E1 172.1.4 [110/128] via 192.5 1437 0x80000001 0x00E33E Summary ASB Link States (Area 1) Link ID ADV Router Age Seq# Checksum 192.16.1.0 192.5 1061 0x80000001 0x00D348 Type-5 AS External Link States Link ID ADV Router Age Seq# Checksum Tag 172.www.168.6 3603 0x80000003 0x00CF35 0 172. Serial1/1 6、Check OSPF link state database on R1. Loopback1 C 10.ccieuniversity.168. Loopback0 192.168.168.2. 2 subnets C 192.com Configuring OSPF Default Route With Metric Lab Topology .0.0 192.168.255.16.0 is directly connected.1.0/16 [110/328] via 192.6 3603 0x80000003 0x00B949 0 7、In order to decrease the routing table on R1.168.0 is directly connected. Serial1/1 By www.0 R3(config-router)#exit R3(config)#exit 8、Check the routing table on R1 again.1.1. R3(config)#router ospf 1 R3(config-router)#summary-address 172. R1#show ip route Gateway of last resort is not set O E1 172.0/24 is subnetted.com 172.0. Serial1/1 10.168. we could enable OSPF external summary on R3.1.0 255.ccieuniversity.1.www.16. 2 subnets C 10.3.16.0.1.1.0 is directly connected.1. Serial1/1 O IA 192.2. 00:24:56.4 [110/128] via 192.2. 00:01:29.0/30 is subnetted.0.1.0. 1.252 R4(config)#exit 3、Check routing table on R2.com Lab Purpose: 1、Learn how to use metrics to control OSPF default route selection.1.ccieuniversity.1. Lab Steps: 1、Finish basic IP configuration.255.0/30 is subnetted. R2#show ip route Gateway of last resort is not set 192.1 255. Serial1/0 C 192.168.www.255.2 255.1.4 is directly connected.16.1 . and try to ping the below RIP network.168. and routing configuration.16. R1(config)#interface serial 1/2 R1(config-if)#encapsulation frame-relay R1(config-if)#ip ospf network broadcast R1(config-if)#ip address 172.1.1.255. 2、Finish frame-relay configuration on R1 and R4.0 is directly connected. Serial1/1 R2# R2#ping 10.255.252 R1(config)#exit R4(config)#interface serial 1/2 R4(config-if)#encapsulation frame-relay R4(config-if)#ip ospf network broadcast R4(config-if)#ip address 172.1. 2 subnets C 192.168. 1.0/30 is subnetted. timeout is 2 seconds: . Serial1/0 192. Success rate is 0 percent (0/5) 4、To make sure the whole network is reachable.1.com Type escape sequence to abort.168.168.1. Serial1/0 C 192.6. 100-byte ICMP Echos to 10.1. enable redistribution on R1 and R3.168. Serial1/0 R2# R2#ping 172. 100-byte ICMP Echos to 172.1.1.0.1.. Serial1/1 O*E2 0.168..0.0.1.1 Type escape sequence to abort.0 is directly connected. 00:01:19.1.0/8 [110/20] via 192.0/0 [110/1] via 192.168.168.16. Sending 5.4 is directly connected.1.1..ccieuniversity. round-trip min/avg/max = 28/82/120 ms . 2 subnets C 192.1.1.. 00:01:19. 00:01:19. R2#show ip route Gateway of last resort is not set O E2 10. Sending 5. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). R1(config)#router rip R1(config-router)#redistribute ospf 1 metric 10 R1(config-router)#exit R1(config)# R1(config)#router ospf 1 R1(config-router)# default-information originate always R1(config-router)#exit R1(config)#exit R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 R3(config-router)#exit R3(config)# R3(config)#router ospf 1 R3(config-router)# default-information originate always R3(config-router)#exit R3(config)#exit 5、Check the routing table on R2 again and try to ping the below RIP network. Serial1/1 [110/1] via 192.16.0.1.www. RIP.EIGRP.1. we can see R3 is the next-hop now.periodic downloaded static route Gateway of last resort is 192.ODR. I .www. EX .6.0/0 [110/50] via 192. 2 subnets C 192.168. * .com 6、If we would like to make R3 as the major next-hop.0.OSPF inter area N1 .IS-IS level-1. E .IGRP.EIGRP external. O .168.0/8 [110/20] via 192. B . Serial1/0 192.1.168. IA .mobile.168.per-user static route o .0.168.OSPF external type 1.EGP i . N2 .0.IS-IS.1.connected. 00:08:05. then we could change the OSPF default route metric.0 O E2 10. E2 . Serial1/1 O*E2 0.com Configuring OSPF Stub Area Lab Topology . Serial1/0 C 192. L1 .BGP D .IS-IS summary.0. R2#show ip route Codes: C . M .0. R1 as the backup next-hop.ccieuniversity.1.IS-IS level-2 ia .4 is directly connected.static. S . su . R .0.OSPF NSSA external type 1.OSPF.0/30 is subnetted. P . Serial1/1 By www.OSPF external type 2.168.1.ccieuniversity.candidate default. R1(config)#router ospf 1 R1(config-router)#default-information originate always metric 100 R1(config-router)#exit R3(config)#router ospf 1 R3(config-router)#default-information originate always metric 50 R3(config-router)#exit 7、Check the routing table of R2.6 to network 0.OSPF NSSA external type 2 E1 .IS-IS inter area. L2 .1.1. 00:00:32. U .0 is directly connected. 16.255. Loopback0 .www. Serial1/1 O IA 172.0/30 is directly connected. Lab Steps: 1、Finish basic IP configuration.16.8/30 [110/192] via 172.16.1. 2、Finish basic OSPF and RIP configuration.255.0/16 is variably subnetted. Serial1/1 O IA 172. R1#show ip route Gateway of last resort is not set 172.0.16. 00:07:32. 00:06:57.4/30 [110/128] via 172.2. 2 masks C 172.255.16.2.0/24 is directly connected.255.16. 3、Enable redistribution between OSPF and RIP on R3.16.255.com Lab Purpose: 1、Master OSPF stub area configuration. R3(config)#router ospf 1 R3(config-router)#redistribute rip subnets metric 200 R3(config-router)#exit R3(config)# R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 R3(config-router)#exit R3(config)#exit 4、Check routing table on R1. 5 subnets. Serial1/1 C 172.ccieuniversity. 0. 100-byte ICMP Echos to 10. Serial1/1 O E2 10.16.5 342 0x80000001 0x008648 Type-5 AS External Link States Link ID ADV Router Age Seq# Checksum Tag 10.1.5 581 0x80000001 0x004CEE 172.16.1. R1#show ip ospf database OSPF Router with ID (172.255.16.www. we could set stub area.1.0 192.1 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1.168.1.2.5 668 0x80000001 0x009BE1 172.168.1 348 0x80000001 0x0021F4 0 6、According to the above output we can see external routes are in the routing table of R1.16. 00:02:01.0/8 [110/200] via 172.255.255. R1(config)#router ospf 1 R1(config-router)#area 1 stub R1(config-router)#exit R1(config)#exit .16.5 677 0x80000003 0x0035B1 2 Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 172.0/24 [110/193] via 172.168.1. Sending 5.0 192.16.8 172.16.255.255.com O IA 172. if we would like to use a default route instead of the specific external routes.1.0.1.1. Serial1/1 R1# R1#ping 10.0.16.168.16.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.0.5 172.2.255.5 633 0x80000001 0x00F543 Summary ASB Link States (Area 1) Link ID ADV Router Age Seq# Checksum 192.1.16.1 172.16.255.1 682 0x80000003 0x003BE1 3 172.1 Type escape sequence to abort.4 172.255.255. 00:02:01.1.1.255.0 172. 00:06:05.16.168.2.2.ccieuniversity.1.2.255.16. round-trip min/avg/max = 672/788/984 ms R1# 5、Check OSPF link state database on R1. Serial1/1 O E2 192.16.0/24 [110/200] via 172.16.16.1 348 0x80000001 0x005B1B 0 192. 1.16.255.0.5 172.1.5 168 0x80000002 0x00B7C6 172.2.255.16.8 172.0.255.1 155 0x80000005 0x0055C7 3 172. Serial1/1 O*IA 0.5 155 0x80000005 0x004F97 2 Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 0.255.0.4/30 [110/128] via 172.1.16. Serial1/1 O IA 172.5 168 0x80000001 0x00017B 172.16. Serial1/1 C 172.16.1.16.1.16.2.0.16.16.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172. 5 subnets.255. R1#ping 10.16. R1#show ip ospf database OSPF Router with ID (172.255.ccieuniversity.255. Loopback0 O IA 172.16. 2 masks C 172.16.16.1.0 172.255. Sending 5.www.1.2. Serial1/1 O IA 172.16.255.0/24 [110/193] via 172.2.255.1.16.16. 00:04:19.2 to network 0.1 172.255. 8、Check the routing table of R1 we can see there is a default route instead the previous external routes.255.0/30 is directly connected.255.255.16.1.0. timeout is 2 seconds: . 100-byte ICMP Echos to 10.5 168 0x80000002 0x001228 Type 4 and type 5 LSA is not in the database of R1.0/16 is variably subnetted.0/24 is directly connected.0.4 172.16.2. 00:04:19.16. 00:04:19.16.0 172.16. R1#show ip route Gateway of last resort is 172.0 172.255. Serial1/1 9、Ping to test the connectivity. 00:04:19.com R2(config)#router ospf 1 R2(config-router)#area 1 stub R2(config-router)#exit R2(config)# 7、Check OSPF link state database again.0.255.1 Type escape sequence to abort.5 168 0x80000002 0x0068D3 172.16.16.2.0/0 [110/65] via 172.8/30 [110/192] via 172. com !!!!! Success rate is 100 percent (5/5).www.com Configuring OSPF Totally Stub Area Lab Topology Lab Purpose: 1、Master OSPF totally stub area configuration. R3(config)#router ospf 1 R3(config-router)#redistribute rip subnets metric 200 R3(config-router)#exit R3(config)# R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 R3(config-router)#exit R3(config)#exit . Lab Steps: 1、Finish basic IP configuration.ccieuniversity. round-trip min/avg/max = 240/393/684 ms By www. 2、Finish basic OSPF and RIP configuration. 3、Enable redistribution between OSPF and RIP on R3.ccieuniversity. 255.16.2.16.0 172.255. R1#show ip route Gateway of last resort is 172.4/30 [110/128] via 172.0 172.8 172.0/24 [110/193] via 172. Serial1/1 6、We can see there is a default route instead of external routes. R1#show ip ospf database OSPF Router with ID (172.255.5 168 0x80000002 0x001228 Type 4 and 5 LSA have gone.16.16.16.0/16 is variably subnetted.com 4、First Set area 1 as ospf stub area.16.5 172.0.2.5 168 0x80000002 0x0068D3 172.16.ccieuniversity.16.1.16.255.0. 5 subnets.2.255.1 155 0x80000005 0x0055C7 3 172.16. we can still decrease the size of routing table.255.255.0 172.2 to network 0.1.255.16.255.1 172.16.0. Serial1/1 O IA 172. 00:04:19.0.16.16.255.16.255. Serial1/1 C 172. R2(config)#router ospf 1 R2(config-router)#area 1 stub no-summary R2(config-router)#exit R2(config)#exit R1(config)#router ospf 1 R1(config-router)#area 1 stub R1(config-router)#exit R1(config)#exit . Serial1/1 O IA 172.16. 00:04:19.2.255.0.16.2.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.255.0/30 is directly connected.5 155 0x80000005 0x004F97 2 Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 0.8/30 [110/192] via 172.1. Serial1/1 O*IA 0.0.0/0 [110/65] via 172.5 168 0x80000002 0x00B7C6 172.16.0/24 is directly connected. 5、Check OSPF routing table and OSPF links state database.1.16. 00:04:19.5 168 0x80000001 0x00017B 172. 00:04:19.2.16.0.www.4 172. Loopback0 O IA 172.16. 2 masks C 172.255.255.255.16.16. 16.OSPF external type 1.16.ODR.RIP. M .16.255.IS-IS level-2 ia .www. E2 . U .0.per-user static route o .1 172.0/24 is directly connected. 8、Check the OSPF link state database of R1.0 Summary Net Link States (Area 1) ADV Router Age Seq# Checksum 172.periodic downloaded static route Gateway of last resort is 172.1.255. R . I .1 Type escape sequence to abort.EIGRP external. 00:34:32. R1#show ip ospf database OSPF Router with ID (172.1.1. L2 . Serial1/1 We can see the default route instead of all the external and inter-area routes. Serial1/1 C 172.OSPF external type 2.16.0 172.com . P . B .OSPF NSSA external type 2 E1 .2 to network 0.mobile.5 412 0x80000006 0x004D98 2 Link ID 0.IS-IS.BGP D . we can see there are only type 1 LSA and type 3 for default route link LSA.16.OSPF NSSA external type 1. Sending 5. R1#ping 10.1) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.static.255.OSPF.IS-IS summary. N2 .0/16 is variably subnetted.1.255. * . E . 100-byte ICMP Echos to 10.EIGRP.255.1.!!!! Success rate is 80 percent (4/5).EGP i . R1#show ip route Codes: C .ccieuniversity.0.16. timeout is 2 seconds: .com 7、Check the routing table of R1.ccieuniversity.0.0. IA .0/30 is directly connected.16.16.1. round-trip min/avg/max = 216/570/1488 ms By www.0/0 [110/65] via 172.IS-IS inter area. su .connected.16.0.OSPF inter area N1 .5 172. 2 subnets.16.1. L1 .0.1 387 0x80000006 0x0053C8 3 172.5 295 0x80000003 0x00FC7D 9、Ping to test.candidate default. 2 masks C 172. S . Loopback0 O*IA 0.IGRP.1.255.0.2. O .1.IS-IS level-1.16. EX . www.ccieuniversity. . R2(config)#router ospf 1 R2(config-router)#redistribute rip metric 200 subnets R2(config-router)#exit R2(config)# R2(config)#router rip R2(config-router)#redistribute ospf 1 metric 10 R2(config-router)#exit R2(config)#exit R5(config)#router ospf 1 R5(config-router)#redistribute rip metric 200 subnets R5(config-router)#exit R5(config)# R5(config)#router rip R5(config-router)#redistribute ospf 1 metric 10 R5(config-router)#exit R5(config)#exit 4、Check OSPF routing table and link state database on R3. 3、Enable redistribution on R2 and R5. Lab Steps: 1、Finish basic IP configuration.com Configuring OSPF NSSA Area and NSSA Totally Stub Lab Topology Lab Purpose: 1、Master NSSA area and NSSA totally stub area configuration. 2、Finish basic OSPF and RIP configuration. 0.16.16.255. 00:00:30.16.255.1 172.16.16.168.255.16.16. Serial1/0 O E2 192.6.16.255.255. 00:00:30.168.6.255.8 172.1.16. .9 672 0x80000003 0x00A42F 2 Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 172. 00:00:30.0 [110/200] via 172.16.2.168.1.1.1 172.16.255.255.0 192. 00:00:30.8 [110/128] via 172.131. Serial1/0 O E2 131.255.9 662 0x80000001 0x005B1A Summary ASB Link States (Area 1) Link ID ADV Router Age Seq# Checksum 192.1 513 0x80000001 0x0070B4 0 192.1.1 94 0x80000002 0x0014FF 0 R3# R3#show ip route Gateway of last resort is not set 172.16.2.www. 2 subnets O E2 131.168.16.16.16.16.5) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.0/24 [110/200] via 172.168.255. Serial1/0 C 172.255.1 94 0x80000002 0x001FF5 0 192.255.0/24 is subnetted.9 172.168.1. 00:07:46.16. Serial1/1 131.1 534 0x80000005 0x008564 2 172. 3 subnets C 172.0/30 is subnetted.131.6.16.4 is directly connected. Serial1/1 4、As area1 connects to an external network. Serial1/1 O IA 172.255.0 [110/200] via 172.255.9 98 0x80000001 0x006E5C Type-5 AS External Link States Link ID ADV Router Age Seq# Checksum Tag 131.16.0/24 [110/200] via 172.5 172.255.com R3#show ip ospf database OSPF Router with ID (172.0 is directly connected.0 172.1.1.ccieuniversity.0 192.16.131. Serial1/1 O E2 192.0 172.255.255.1.2.255.5 679 0x80000004 0x007390 4 172.131.1 513 0x80000001 0x007BAA 0 131.16.255.0.131. so we could not set area1 to a pure stub area.1.2.168.255. 5) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.0.131.255.5 172.255.6 to network 0.131.255.com 5、Set area1 to NSSA stub area on R4.16.131.16.16.1.255.9 172. Serial1/1 131.255. Serial1/0 O N2 131. R3(config)#router ospf 1 R3(config-router)#area 1 nssa R3(config-router)#exit R3(config)#exit 7、Set area1 to NSSA stub area on R2.16.0.1 172.0 [110/200] via 172.0.16. 2 subnets O N2 131.0/0 [110/1] via 172.16. R3#show ip route Gateway of last resort is 172.255.255.255.16.6.16.16.0.255.www. 00:01:10.ccieuniversity.4 is directly connected.16.9 450 0x80000005 0x004C7D 2 .5 314 0x80000008 0x0011E8 4 172.0/24 is subnetted.0.16.0.16. 3 subnets C 172.1.0 is directly connected.8 [110/128] via 172.16.255. Serial1/0 O*N2 0.16.16.1 314 0x80000007 0x0027BA 2 172.2.255.0/30 is subnetted.1.0 172. Serial1/1 R3#show ip ospf database OSPF Router with ID (172. 00:01:10. 00:01:10.16.255. R4(config)#router ospf 1 R4(config-router)#area 1 nssa default-information-originate R4(config-router)#exit R4(config)# 6、Set area1 to NSSA stub area on R3. Serial1/1 O IA 172.255.255. 00:01:10.0 [110/200] via 172. Serial1/0 C 172.255. R2(config)#router ospf 1 R2(config-router)#area 1 nssa R2(config-router)#exit R2(config)#exit 8、Check OSPF routing table and link state database on R3 again.6. 168.131.16.1 Type escape sequence to abort.2.com Summary Net Link States (Area 1) Link ID ADV Router Age Seq# Checksum 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).16. R1#ping 192.1.0/0 [120/10] via 131.16.131.ccieuniversity.131.131. 00:00:28. 3 subnets C 172.0 172. Serial1/1 O IA 172.255.2.2. Serial1/0 C 131.2.16.4 [110/128] via 172.16.1 318 0x80000001 0x001647 0 9、Check routing table on R1 and R2.0.0.0.255.2. Serial1/1 10、Ping test on R1.2. 00:07:26. Serial1/1 O 172. 2 subnets R 131.2.2. Serial1/1 R* 0.16.0 R 172.0/24 is subnetted. 00:07:26.255.255. 00:00:06. round-trip min/avg/max = 288/384/432 ms 11、To deeply decrease the routing table in area1.16.16.255.0 172. .1.131.0.0. 00:07:26.131.0.0/30 is subnetted.0.16.131.255. Loopback0 C 131.16.0/24 is subnetted. Serial1/0 O*N2 0. we need to set area1 to Totally NSSA area.1.9 850 0x80000002 0x00FE6F Type-7 AS External Link States (Area 1) Link ID ADV Router Age Seq# Checksum Tag 0. Serial1/1 131.0 is directly connected.8 [110/192] via 172.131.2.0. Sending 5.0 [120/1] via 131.9 850 0x80000001 0x00C464 0 131.131.16.255.255.16.131.255.255.1.0.0 172.131.168.16.0 is directly connected.2.0 is directly connected.0/0 [110/1] via 172. R2#show ip route Gateway of last resort is 172.0.0. 00:00:28. 2 subnets C 131.0 is directly connected.0.0.1 to network 0.2.16.2.131.0 172.255.1 318 0x80000001 0x00213D 0 131.www.0/16 [120/10] via 131.255. 100-byte ICMP Echos to 192.1.2 to network 0. Serial1/1 R1#show ip route Gateway of last resort is 131.2. Serial1/1 131.1.8 172.0. 255.0.131.16.0.255.1. 00:02:10.255.255.1 1508 0x80000001 0x00213D 0 131.1.0.16.131.255.0 172.131.0/0 [110/65] via 172. R4(config)#router ospf 1 R4(config-router)#area 1 nssa no-summary R4(config-router)#exit 13、Check OSPF routing table and link state database on R3 again.16.9 1640 0x80000005 0x004C7D 2 Link ID 0.255.0 [110/200] via 172.255.255.9 66 0x80000002 0x00C265 0 131.0 [110/200] via 172.16.16.255.1.www.16.com 12、Only one command need to add on ABR router (R4) to change NSSA to totally NSSA.5 1504 0x80000008 0x0011E8 4 172.4 is directly connected.0.16.255.255.0.255.6.6 to network 0.2 to network 0. Serial1/0 O*IA 0. Serial1/0 172.0 172.0 Summary Net Link States (Area 1) ADV Router Age Seq# Checksum 172.5 172.16.5) (Process ID 1) Router Link States (Area 1) Link ID ADV Router Age Seq# Checksum Link count 172.16.255.0 172. R2#show ip route Gateway of last resort is 172.0. 00:20:24. R3#show ip route Gateway of last resort is 172.0.1 172. 2 subnets 172. Serial1/1 C C R3#show ip ospf database OSPF Router with ID (172.2.16.0 172.1 1508 0x80000001 0x001647 0 14、Check routing table on R1 and R2 and do the ping test.9 396 0x80000001 0x0070FF Type-7 AS External Link States (Area 1) Link ID ADV Router Age Seq# Checksum Tag 0.255.0 is directly connected. 00:20:24.2.255.0/24 is subnetted.0/30 is subnetted.1.255.0.16.16.0.1 1504 0x80000007 0x0027BA 2 172.ccieuniversity.131.16.16.0.16.9 172.131.0.16. Serial1/1 131.255.0 . Serial1/0 O N2 131.16.16.0.255. 2 subnets O N2 131.16. 9 338 0x80000004 0x005DC2 2 192.0/0 [110/129] via 172.255.168.4 [110/128] via 172.1.16.9 81 0x80000002 0x002C10 172. Serial1/0 O*IA 0.131.1.1 767 0x80000004 0x002753 2 Summary Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 172.0 172.1.0/0 [120/10] via 131.16.1 192. Loopback0 C 131.168.2.2.0/24 is subnetted. Serial1/1 R1#ping 192.255.1.16.0 is directly connected.2.168.9 1337 0x80000002 0x0081F6 Link ID Type-5 AS External Link States ADV Router Age Seq# Checksum Tag . 00:00:17. 100-byte ICMP Echos to 192.0. Serial1/1 O 172.255.255.16.0.2.16.0 is directly connected.1.255.1.2. Serial1/1 131.131.131.0/24 is subnetted.168. 2 subnets C 131. round-trip min/avg/max = 336/454/528 ms 15、Finally we can see the type 7 LSA has been changed to type 5 LAS.16.16.1.16.131.0/30 is subnetted.1 to network 0.com 172.0. 00:04:46. Serial1/1 R2# R1#show ip route Gateway of last resort is 131.1 Type escape sequence to abort.131.0.255.0.255.1. Sending 5. 00:00:13.255.255.ccieuniversity.4 172.16.0. 00:00:13.255.2.131. Serial1/1 131.131. 2 subnets C 172.16. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).0 is directly connected. 00:23:09.2.16.1) (Process ID 1) Router Link States (Area 0) Link ID ADV Router Age Seq# Checksum Link count 172.0 [120/1] via 131.0 is directly connected. Serial1/1 R* 0. 2 subnets R 131.0.www.0.9 172.0.0.2.131.131. R5#show ip ospf database OSPF Router with ID (192.131.2.16.0 R 172.2. Serial1/0 C 131.2.168.0/16 [120/10] via 131. 16.0 0.0 192.0.3 area 3 .168.1 By www.168.1 192.1.16.0 192.9 192.255.com 131.0 172.www.255.0. 2、Finish basic OSPF configuration on R1 R2 R3 R4.2.255.0.1.1.131.0 172.4 0.16.16.255.16.ccieuniversity.3 area 2 R2(config-router)#network 172.9 131.2.0.1. Lab Steps: 1、Finish basic IP configuration.255.0.0. R1(config)#router ospf 1 R1(config-router)#network 172.3 area 3 R1(config-router)#network 172.com 1761 1761 767 767 0x80000001 0x0085DA 0 0x80000001 0x007AE4 0 0x80000003 0x001DF6 0 0x80000003 0x001201 0 Configuring OSPF Virtual-Link between normal area and backbone area Lab Topology Lab Purpose: 1、Master OSPF Virtual-Link between normal area and backbone area configuration.1.131.0 0.168.0.255 area 3 R1(config-router)#exit R1(config)#exit R2(config)#router ospf 1 R2(config-router)#network 172.168.16.0 0.ccieuniversity.0. 5 1 FULL/ 00:00:38 172.2 Serial1/1 R2#show ip ospf neighbor Neighbor ID Pri State 172.1 1 FULL/ - Dead Time Address Interface 00:00:37 172. we could establish a virtual-link between R2 and R3.0/30 is directly connected.16.16.255.0.16.0.0.16.255.3 area 0 R3(config-router)#exit R3(config)#exit R4(config)#router ospf 1 R4(config-router)#network 172.16.255. R1#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 172. R2(config)#router ospf 1 R2(config-router)#area 2 virtual-link 172.255. Loopback0 Above information tells us R1 could not learn route from area 0.0.255.255 area 1 R4(config-router)#exit R4(config)#exit 3、Check the neighbor table on R1 and R2.0 0. 2 subnets. as area3 is not directly connected with area0.255. 5、To solve this issue.16.9 1 FULL/ 172.www.com R2(config-router)#exit R2(config)#exit R3(config)#router ospf 1 R3(config-router)#network 172.6 Serial1/1 00:00:30 172.0.16.1.8 0.ccieuniversity.3 area 0 R4(config-router)#network 172. R1#show ip route Gateway of last resort is not set 172.255.255.0.3 area 2 R3(config-router)#network 172. 2 masks C 172.255.16.0.9 (RID of R3) R2(config-router)#exit R2(config)#exit .16.1.16.4 0.16.0/24 is directly connected.16.255. area1.8 0. Serial1/1 C 172. area2.0/16 is variably subnetted.1 Serial1/0 4、Check the routing table on R1.0.16.16.0.16. 16.16.16. 100-byte ICMP Echos to 172.2.16. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).2.16.9 172.16. Serial1/1 C 172.16.1 Pri State 0 FULL/ 1 FULL/ 1 FULL/ - Dead Time Address 172.com R3(config)#router ospf 1 R3(config-router)#area 2 virtual-link 172. R1#show ip route Gateway of last resort is not set 172.0/16 is variably subnetted.16.16. R2#show ip ospf neighbor Neighbor ID 172.6 00:00:30 172.com . R1#ping 172.www.255.1 Interface OSPF_VL0 Serial1/1 Serial1/0 9、Check routing table on R1. 5 subnets. 00:08:40.255. 3 masks C 172.16.1/32 [110/193] via 172.16. Sending 5.8/30 [110/192] via 172. round-trip min/avg/max = 152/251/312 ms By www.1.4/30 [110/128] via 172.0.9 172.2.255.0/24 is directly connected.1.255.6 00:00:33 172.ccieuniversity.5 (RID of R2) R3(config-router)#exit R3(config)#exit 8、Check OSPF neighbor table on R2. 00:06:20.16. 00:06:20.ccieuniversity. Loopback0 10、Ping test on R1.255.16.255.255.16.16.1 Type escape sequence to abort.255.1.16.255.16. Serial1/1 O IA 172.16.255.16.16.255.16. Serial1/1 O IA 172.0/30 is directly connected. Serial1/1 O IA 172.255. 3 area 0 .0.0 0.255.3 area 0 R2(config-router)#exit R2(config)#exit R3(config)#router ospf 1 R3(config-router)#network 172.3 area 0 R3(config-router)#exit R3(config)#exit R4(config)#router ospf 1 R4(config-router)#network 172.4 0.3 area 0 R1(config-router)#network 172.16.0 0.0. R1(config)#router ospf 1 R1(config-router)#network 172.3 area 2 R2(config-router)#network 172.16.8 0.com Configuring OSPF Virtual-Link between 2 backbone areas Lab Topology Lab Purpose: 1、Master OSPF Virtual-Link between 2 backbone areas configuration.0.0.ccieuniversity.1.3 area 2 R3(config-router)#network 172.8 0.255 area 0 R1(config-router)#exit R1(config)#exit R2(config)#router ospf 1 R2(config-router)#network 172.0.0.255.0.0.www.16.16.255.0. Lab Steps: 1、Finish basic IP configuration.0.16.255.4 0.255. 2、Finish basic OSPF configuration on R1 R2 R3 R4.0 0.0.0.16.0.0.255.16. 4/30 [110/128] via 172. 3 subnets.16.16.1.16.0/30 is directly connected. Serial1/1 O 172. 2 masks O IA 172.255. 00:02:11.0/24 is directly connected. R3#show ip route Gateway of last resort is not set 172.com R4(config-router)#network 172. 00:19:32.16. 2 masks C 172.255.1/32 [110/65] via 172.16. Serial1/1 O IA 172. Serial1/0 5、Check routing table on R3.0.1/32 [110/65] via 172. Serial1/0 C 172.4/30 is directly connected.0/16 is variably subnetted.4/30 [110/128] via 172. Serial1/0 C 172.16.8/30 is directly connected.255.16. R4#show ip route Gateway of last resort is not set 172.255. 2 masks C 172. Serial1/0 C 172.ccieuniversity. Loopback0 4、Check routing table on R2. 2 masks C 172.255.9.16.16. Serial1/1 C 172. R1#show ip route Gateway of last resort is not set 172.255.1.16. Serial1/1 O IA 172.16.0. R2#show ip route Gateway of last resort is not set 172.255.0.0.10.255.0 0.16. Serial1/0 C 172.16.16.16.0/16 is variably subnetted.0.16. 00:05:16.255.0.1.8/30 is directly connected.0/16 is variably subnetted.16.255.16. 3 subnets.0/16 is variably subnetted.16.0/30 is directly connected.255.255.0/24 is directly connected. 00:05:10.16.2. Loopback0 .255 area 1 R4(config-router)#exit R4(config)#exit 3、Check routing table on R1.4/30 is directly connected.16.16. 3 subnets. 3 subnets.16.16.www. Serial1/1 6、Check routing table on R4. Loopback0 10、Ping test on R1.2.16.2. 100-byte ICMP Echos to 172.com 7、From the above output we can see none of the 4 routers can learn routes from area 0 of the other side. as area 0 is split by area 2.9.5 R3(config-router)#exit R3(config)#exit R3# 9、Check routing table on R1 we can see the whole network routes are in the routing table.255. R2(config)#router ospf 1 R2(config-router)#area 2 virtual-link 172.0.0/24 is directly connected.1 Type escape sequence to abort.255. 00:01:08. 00:01:08.1.www.16.ccieuniversity.16.9 Type escape sequence to abort. 100-byte ICMP Echos to 172.16.16. Serial1/1 O IA 172.0/16 is variably subnetted.16.16.1. 8、We can set a virtual-link between R2 and R3 to combine two area 0 together.255.16.4/30 [110/128] via 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). 3 masks C 172. round-trip min/avg/max = 188/239/288 ms R1# R1# R1#ping 172. Serial1/1 C 172.16.255.9 R2(config-router)#exit R2(config)#exit R2# R3(config)#router ospf 1 R3(config-router)#area 2 virtual-link 172.16. R1#ping 172.255. 5 subnets. Serial1/1 O IA 172. 00:01:08.2.16.0/30 is directly connected.255.255.8/30 [110/192] via 172.1/32 [110/193] via 172. Sending 5. Sending 5. Serial1/1 O 172.16. timeout is 2 seconds: .16. R1#show ip route Gateway of last resort is not set 172.255.16.255.255.16.16.16.16. round-trip min/avg/max = 144/168/192 ms By www.ccieuniversity.www. . 2、Make sure R1 and R4 could establish OSPF relationship through Frame-relay network. Lab Steps: 1、Finish basic IP configuration and OSPF configuration. R1(config)#interface serial 1/2 R1(config-if)#ip ospf network broadcast R4(config)#interface serial 1/2 R4(config-if)#ip ospf network broadcast 3、Set OSPF link cost according to the topology.com Understand OSPF Routing Between Inter Area Lab Topology Lab Purpose: 1、Master OSPF inter-area path selection.com !!!!! Success rate is 100 percent (5/5).ccieuniversity. 255.168.168.255.0/24 chooses the path R3 ------> R2 ------> R1 ------> Destination with the cost of 13. Tracing the route to 192. which is not the lowest cost path. No. So R2 will prefer a directly connected backbone area router R1 to a same area router R4 as its next hop.5 52 msec 96 msec 96 msec 2 172.0/24 there are 4 path.com .16.1.1.ccieuniversity.168. when R2 is going to choose its next hop.1 1 172.1 Type escape sequence to abort.16.1. By www. R2 find out the packet is from a normal area 1 to another normal area 2 it must across backbone area 0 first. Why ? R3 will choose R2 as the next hop because link cost between R2 and R3 is lower.1 144 msec * 168 msec 5、From the above information we can see packet from R3 to network 192.ccieuniversity.1.www. Path COST 1# R3 ------> R2 ------> R1 ------> Destination 13 2# R3 ------> R2 ------> R4 ------> R1 ------> Destination 7 3# R3 ------> R4 ------> R1 ------> Destination 8 4# R3 ------> R4 ------> R2 ------> R1 ------> Destination 18 The lowest cost is 7 of path 2# R3 ------> R2 ------> R4 ------> R1 ------> Destination R3#traceroute 192.com R3(config)#interface serial 1/0 R3(config-if)#ip ospf cost 2 R3(config-if)#exit R3(config)#interface serial 1/1 R3(config-if)#ip ospf cost 5 R3(config-if)#exit 4、From R3 to 192.168. 0bbc. 2、Enable IS-IS on R1 R2 R3.0001.0000. 2、Understanding L1 type route. R1(config)#router isis cisco R1(config-router)#net 49.0001.0000.ca01.ccieuniversity.00 R2(config-router)#exit R2(config)#interface serial 1/0 R2(config-if)#ip router isis cisco R2(config-if)#exit R2(config)#interface serial 1/1 R2(config-if)#ip router isis cisco .www. Lab Steps: 1、Finish basic IP configuration.ca00.0bbc.00 R1(config-router)#exit R1(config)# R1(config)#interface loopback 0 R1(config-if)#ip router isis cisco R1(config-if)#exit R1(config)#interface serial 1/1 R1(config-if)#ip router isis cisco R1(config-if)#exit R1(config)# R2(config)#router isis cisco R2(config-router)#net 49.com Configuring Basic IS-IS Lab Topology Lab Purpose: 1、Master basic IS-IS configuration. 3、Master how to change the router type. 2.16.16.0/16 is variably subnetted.16.255.16.16. R1#show ip route Gateway of last resort is not set 172.16. 100-byte ICMP Echos to 172. round-trip min/avg/max = 116/152/192 ms 5、Check IS-IS neighbor table on R2. Serial1/1 i L1 172. R1#ping 172.ca02.0000.16. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).255.16.2.255. Loopback0 R1# 4、Ping test on R1.16.0001.16.0/24 [115/30] via 172. Sending 5.0/30 is directly connected.255.www.0.1 UP 28 00 R2# R2#show clns neighbors System Id Interface SNPA State Holdtime Type Protocol R3 Se1/1 *HDLC* Up 25 L1L2 IS-IS .ccieuniversity.com R2(config-if)#exit R2(config)#exit R3(config)#router isis cisco R3(config-router)#net 49.1.255.16. 4 subnets. 2 masks C 172.0/24 is directly connected. Serial1/1 i L1 172.16.16.1 Type escape sequence to abort.255.4/30 [115/20] via 172.00 R3(config-router)#exit R3(config)#interface serial 1/0 R3(config-if)#ip router isis cisco R3(config-if)#exit R3(config)#interface loopback 0 R3(config-if)#ip router isis cisco R3(config-if)#exit R3(config)#exit 3、Check routing table on R1. Serial1/1 C 172.1.16. R2#show isis neighbors System Id Type Interface IP Address State Holdtime Circuit Id R3 L1L2 Se1/1 172.6 UP 27 00 R1 L1L2 Se1/0 172.0bbc. 255.00-00 0x00000007 0xF207 802 0/0/0 R3.0001 NLPID: 0xCC Hostname: R2 .1.0BBC. R1#show isis database detail IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL R1.BC00.00-00 0x00000005 0x21A8 787 0/0/0 R3.1 Metric: 10 IP 172.0000 R2 * CA00.00-00 * 0x00000005 0xDC1C 897 0/0/0 R2.0 255.ccieuniversity.0001 NLPID: 0xCC Hostname: R1 IP Address: 172.000B.16. R1#show isis database IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL 01CA.0BBC.255.1.0000 R1 1 CA02. R1#show isis hostname Level System ID Dynamic Hostname (cisco) 1 CA01.0 255.0000 R3 R1# 7、Check IS-IS link state database.252 Metric: 10 IP 172.000B.00-00 0x00000005 0x7796 756 0/0/0 R1# 8、Check IS-IS link state database detail.00 R2.255.00-00 * 0x00000008 0xD61F 924 0/0/0 Area Address: 49.255.00-00 0x00000008 0x1BAB 897 0/0/0 Area Address: 49.BC00.0BBC.00-00 0x00000001 0x6107 0 (1083) 0/0/0 R1.00-00 0x00000004 0xE2F0 717 0/0/0 IS-IS Level-2 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL 01CA.com R1 Se1/0 *HDLC* Up 29 L1L2 IS-IS R2# 6、Check host name and system ID on R1.255.16.16.0 Metric: 10 IS R2.00-00 * 0x00000007 0xD846 947 0/0/0 R2.00-00 0x00000001 0x6107 0 (1083) 0/0/0 R1.www. R1#show isis database IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL R1.16.00-00 0x00000008 0x7199 754 Area Address: 49.ccieuniversity.com IP Address: 172.255.0 255.16.255.0 0/0/0 9、Change the routers to IS-IS L1 type.255.255.com .0 255.www.0 255.16.16.252 Metric: 10 IP 172.4 255.255.255.5 ……………… R3.255.00-00 * 0x0000000A 0xD025 829 0/0/0 R2.1 Metric: 10 IS R2.0001 NLPID: 0xCC Hostname: R3 IP Address: 172.252 Metric: 10 IP 172.ccieuniversity.255.0 Metric: 30 IP 172.16. R1(config)#router isis cisco R1(config-router)#is-type level-1 R1(config-router)#exit R1(config)#exit R2(config)#router isis cisco R2(config-router)#is-type level-1 R2(config-router)#exit R2(config)#exit R3(config)#router isis cisco R3(config-router)#is-type level-1 R3(config-router)#exit 10、Change IS-IS link state database to see the change.255.00 Metric: 20 IP 172.255.16.16.00-00 0x00000009 0xD6F9 834 0/0/0 By www.255.1.00-00 0x0000000B 0x13B2 835 0/0/0 R3.16. 0001.1 255.1.16.1 255.255.com Configuring IS-IS Multi Area and Summary Route Lab Topology Lab Purpose: 1、Master basic IS-IS configuration.0000.16.0 R1(config-if)#ip router isis cisco R1(config-if)#isis circuit-type level-1 R1(config-if)#exit R1(config)# R1(config)#interface Serial1/1 R1(config-if)#ip address 172.0 R1(config-if)#ip router isis cisco R1(config-if)#isis circuit-type level-1 R1(config-if)#exit R1(config)# R1(config)#interface Loopback1 R1(config-if)#ip address 172.1 255.www.255. 2、Enable IS-IS on all routers.2.ca00.16.255.252 R1(config-if)#ip router isis cisco R1(config-if)#isis circuit-type level-2-only R1(config-if)#exit R1(config)# R1(config)#router isis cisco R1(config-if)#net 49.255. Lab Steps: 1、Finish basic IP configuration.00 R1(config-if)#exit R1(config)# .255. 3、Master IS-IS area summary configuration.ccieuniversity. R1(config)#interface Loopback0 R1(config-if)#ip address 172.255.255. 2、Understanding L1/L2 type route.0bbc. 1 255.0000.255.2 255.255.255.255.255.0bbc.6 255.255.com R2(config)#interface Serial1/0 R2(config-if)#ip address 172.128.www.16.00 R2(config-if)#exit R2(config)# R3(config)#interface Serial1/0 R3(config-if)#ip address 172.16.0003.0bbc.16.ccieuniversity.252 R4(config-if)#ip router isis cisco R4(config-if)#isis circuit-type level-2-only R4(config-if)#exit R4(config)# R4(config-if)#interface Serial1/1 R4(config-if)#ip address 172.9 255.0002.13 255.0bbc.255.ca01.00 R4(config)#exit R4(config)# R5(config)#interface Loopback0 R5(config-if)#ip address 172.0 R5(config-if)#ip router isis cisco R5(config-if)#isis circuit-type level-1 R5(config-if)#exit .16.252 R2(config-if)#ip router isis cisco R2(config-if)#isis circuit-type level-2-only R2(config-if)#exit R2(config)# R2(config)#interface Serial1/1 R2(config-if)#ip address 172.0000.255.255.255.252 R3(config-if)#ip router isis cisco R3(config-if)#isis circuit-type level-2-only R3(config-if)#exit R3(config)# R3(config-if)#router isis cisco R3(config-if)#net 49.ca02.252 R4(config-if)#ip router isis cisco R4(config-if)#isis circuit-type level-1 R4(config-if)#exit R4(config)# R4(config-if)#router isis cisco R4(config-if)#net 49.252 R2(config-if)#ip router isis cisco R2(config-if)#exit R2(config)# R2(config)#router isis cisco R2(config-if)#net 49.255.255.10 255.252 R3(config-if)#ip router isis cisco R3(config-if)#exit R3(config)# R3(config-if)#interface Serial1/1 R3(config-if)#ip address 172.16.00 R3(config-if)#exit R3(config)# R4(config)#interface Serial1/0 R4(config-if)#ip address 172.255.255.255.0000.5 255.16.255.255.255.0002.255.16.255.ca03. 255. Serial1/1 172.0/30 is directly connected. Loopback1 L2 L2 R1#show isis database .255.16.12/30 [115/40] via 172.0000.1.255.8/30 [115/30] via 172.16.2.16.16.16. 2 masks 172.129.16.com R5(config)# R5(config-if)#interface Loopback1 R5(config-if)#ip address 172.0/24 [115/50] via 172.10 R3# State Holdtime Circuit Id UP 25 01 UP 27 00 R4#show isis neighbors System Id Type Interface IP Address R3 L2 Se1/0 172.14 R4# State Holdtime Circuit Id UP 23 00 UP 22 00 5、Check routing table and IS-IS link state database on R1 and R5. 8 subnets. Serial1/1 172.16.2. Serial1/1 L2 172.255.1 R2# State Holdtime Circuit Id UP 29 01 UP 23 00 R3#show isis neighbors System Id Type Interface IP Address R2 L1L2 Se1/0 172. R1#show ip route Gateway of last resort is not set i i C i i i C C 172.2.0bbc.255.16.ccieuniversity.255.255.6 R1 L2 Se1/0 172.2.255. Loopback0 172.00 R5(config-if)#is-type level-1 R5(config-if)#exit R5(config)# 4、Check IS-IS neighbor table on R2 R3 R4.129. Serial1/1 L2 172.0.2.16. R2#show isis neighbors System Id Type Interface IP Address R3 L1L2 Se1/1 172.252 R5(config-if)#ip router isis cisco R5(config-if)#exit R5(config)# R5(config-if)#router isis cisco R5(config-if)#net 49.16.16.5 R4 L2 Se1/1 172.9 R5 L1 Se1/1 172.14 255.255.www.16.0/24 is directly connected.2.1 255.16.0/24 [115/50] via 172.255.255.255.255.255.ca04.16.0/16 is variably subnetted.16. Serial1/1 172.16.16.255.0 R5(config-if)#ip router isis cisco R5(config-if)#exit R5(config)# R5(config-if)#interface Serial1/0 R5(config-if)#ip address 172.0003.16.128.16.16.255.255.255.16.0/24 is directly connected.4/30 [115/20] via 172.255.255.16. Serial1/1 L2 172. 16.16.0/16 is variably subnetted.9.00-00 0x00000011 R1# LSP Checksum 0xD33B LSP Holdtime 679 ATT/P/OL 1/0/0 LSP Checksum 0xCC4D 0xA297 0x65C8 0x4B41 LSP Holdtime 736 427 1097 818 ATT/P/OL 0/0/0 0/0/0 0/0/0 0/0/0 R5#show ip route Gateway of last resort is 172.16. R1#ping 172. Serial1/0 172. Serial1/0 172.16.0. Loopback1 C 172. Serial1/0 172.00-00 R4. Serial1/0 i*L1 0.0. 100-byte ICMP Echos to 172.9.0/16 is variably subnetted.1.12/30 is directly connected.16.16.128.0.255.16.12/30 is directly connected.13.255. Sending 5. 2 masks C 172. round-trip min/avg/max = 220/240/264 ms 7、Check routing table on R4.00-00 * 0x0000000B IS-IS Level-2 Link State Database: LSPID LSP Seq Num * 0x0000000E R1.0/24 is directly connected. 3 subnets.0/0 [115/10] via 172. R1(config)#router isis cisco . 8 subnets.16.129.2.9.16.com IS-IS Level-1 Link State Database: LSPID LSP Seq Num R1.0/24 is directly connected.13 to network 0.0/24 [115/40] via 172.www.16.16.1.255.00-00 * 0x0000000D 0xF411 R5# LSP Holdtime 770 649 ATT/P/OL 1/0/0 0/0/0 6、Ping test on R1.00-00 0x00000013 0x0000000F R3.0. Serial1/0 L1 L1 L2 L2 8、Config IS-IS summary on R1.255.1 Type escape sequence to abort.16.255.0. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).128.16. Serial1/1 172. Serial1/1 L2 172.255. Loopback0 C 172.0.16.4/30 [115/20] via 172. 2 masks 172.255.129.ccieuniversity.16.0/24 [115/20] via 172. Serial1/0 R5#show isis database IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum R4.8/30 is directly connected.255.16.16. R4#show ip route Gateway of last resort is not set i i i i C C i i 172.00-00 0x0000000C 0x7BA1 R5.16.00-00 R2.9.255.14.0/24 [115/40] via 172.0/24 [115/20] via 172.16.16.16.0 172.129.16. Serial1/1 172.16.129.255.255.14.255.255. Serial1/0 L2 172.0/30 [115/30] via 172. 255. round-trip min/avg/max = 192/225/240 ms By www.0. Serial1/1 L2 172. 100-byte ICMP Echos to 172.com Migrate IS-IS Area Lab Topology .www.255.255.16. Serial1/0 172.0 R1(config-router)#exit R1(config)#exit 9、Check routing table on R4 again.8/30 is directly connected. Serial1/0 L1 L1 L2 L2 10、Check the summary route through ping test.0/24 [115/20] via 172.0/17 [115/40] via 172.255.16.16.com R1(config-router)#summary-address 172. Serial1/0 172. Sending 5.0/16 is variably subnetted.12/30 is directly connected.16.255.16.1.255.16.255.255.128.0.ccieuniversity.9. Serial1/1 172.16. 7 subnets.16.0/24 [115/20] via 172.16.0/30 [115/30] via 172.16.0 255.16.255.1. Serial1/0 172.128.16.16. 3 masks 172.14.9.255.ccieuniversity.129.0.9. Serial1/1 172.4/30 [115/20] via 172.16.1.16.14. R4#show ip route Gateway of last resort is not set i i i i C C i 172.1 Type escape sequence to abort. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).16. R4#ping 172. abc7 R1(config)#router isis cisco R1(config-router)#net 10. FastEthernet0/0 i L1 172.252 Metric: 10 IS R3.0 255.4/30 [115/20] via 172.0000.0/16 is variably subnetted.0/24 [115/20] via 172.1 Metric: 10 IP 172. Serial1/1 C i L1 4、Check link state database on R1.www.255.ca02.0000.0/30 is directly connected.8/30 is directly connected.0/24 [115/20] via 172.255.255.abc7.255.255.01 Metric: 10 IS R2.2.255.16.00 R1(config)#exit R1(config)# R2(config)#router isis cisco R2(config-router)#net 10.255.16.0. Serial1/1 172.1.2 to network 0.00 R2(config)#exit R2(config)# R3(config)#router isis cisco R3(config-router)#net 10. R1#show isis database detail IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime R1. 2、Enable IS-IS on all routers.255. Serial1/1 [115/20] via 172.00 ATT/P/OL 0/0/0 .9. 3、Check the routing table on R1.ca00.00-00 * 0x00000008 0x8D3B 1116 Area Address: 49. Serial1/1 i L1 172.16.255.255.abc7.16.0.ca01.2.16. 2 masks 172.0001 NLPID: 0xCC Hostname: R1 IP Address: 172.16. Lab Steps: 1、Finish basic IP configuration.abc7. FastEthernet0/0 C 172.255.255.ccieuniversity.16.0000.0bbc.00 ………… 5、Migrate IS-IS area to 10.16.com Lab Purpose: 1、Understanding IS-IS area migrate principal. R1#show ip route Gateway of last resort is 172. 5 subnets.2. 2、Master IS-IS area migrate configuration.16.0.255.252 Metric: 10 IP 172.16.2.16.8 255.255.16.0bbc.0bbc.16.16.0 172.255. 16.252 IP 172.255.0001.0bbc.0001.ca01. R1(config)#router isis cisco R1(config-router)#no net 49.255.00 R2(config-router)#exit R2(config)# R3(config)#router isis cisco R3(config-router)#no net 49.0bbc.ccieuniversity.0001 10.0000.8 255.0 255.0000.1 Metric: 10 IP 172. R1#show clns is-neighbors detail System Id Interface State Type Priority R3 Fa0/0 Up L1 64 Area Address(es): 49.255.255.255.0bbc.ca02. R1#show isis database detail IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime R1.abc7 IP Address(es): 172.2* Uptime: 00:08:18 NSF capable Circuit Id R3.0001 10.01 Metric: 10 IS R2.9* Uptime: 00:08:06 NSF capable R2 Se1/1 Up L1 0 Area Address(es): 49.252 Metric: 10 Metric: 10 IS R3.00 R3(config-router)#exit R3(config)# 9、Check routing table on R1.0001.0000.ca00.00 ………… ATT/P/OL 0/0/0 7、Check CLNS neighbor table on R1.255.16.16.abc7 NLPID: 0xCC Hostname: R1 IP Address: 172.16.www.01 Format Phase V 01 Phase V 8、Delete the old area network.com R3(config)#exit R3(config)# 6、Check link state database on R1 again.255.00 R1(config-router)#exit R1(config)# R2(config)#router isis cisco R2(config-router)#no net 49.abc7 IP Address(es): 172.00-00 * 0x00000009 0xAF8D 991 Area Address: 49. .16.0001 Area Address: 10.255.255. 255.0/24 [115/20] via 172.16.255.255.2.16.255. R1#show isis database detail IS-IS Level-1 Link State Database: LSPID LSP Seq Num LSP Checksum LSP Holdtime * 0x0000000F 0xEC9B 1065 R1. Serial1/1 [115/20] via 172.2.255.16.0/30 is directly connected.16.com Redistributing into RIP and OSPF Lab Topology Lab Purpose: 1、Master RIP and OSPF redistribute configuration.1 Metric: 10 IP 172.00-00 Area Address: 10.abc7 NLPID: 0xCC Hostname: R1 IP Address: 172.252 Metric: 10 IP 172.0.255. 2、Understanding OSPF type E1 E2 routes .255.2.www.16.4/30 [115/20] via 172.ccieuniversity.16.255. FastEthernet0/0 i L1 172.ccieuniversity.2.16.0/16 is variably subnetted.00 Metric: 10 IS R3.16.com R1#show ip route Gateway of last resort is not set 172.16.16.0/24 [115/20] via 172.16. 2 masks 172. Serial1/1 i L1 172.255. Serial1/1 172.1.9.8/30 is directly connected. Serial1/1 ……… C i L1 10、Check link state database on R1.252 Metric: 10 IS R2.8 255.255.255.01 ……………… ATT/P/OL 0/0/0 By www. 5 subnets.255.16.255.16.255.0 255. FastEthernet0/0 C 172. 00:00:10.255.16. R1#show ip route Gateway of last resort is not set C C C 172.255.0. Serial1/1 C 172.0/24 is directly connected.2.2. we need to redistribute on R2. 5、Make sure R1 and R3 can also learn the whole network routes. 00:02:47.168. Serial1/0 192.16.16.1.0 is directly connected.168.com Lab Steps: 1、Finish basic IP configuration. Loopback0 .16.1.2. 3、Check routing tables on R1 R2 R3. 3 subnets.168.0/30 is subnetted. Serial1/0 192.168. 1 subnets 192. Loopback1 4、According to the above output only R2 has learned the whole network routes.16.1.0.16.168. 2 masks C 172.255.168. Serial1/1 R3#show ip route Gateway of last resort is not set C C C 192. Serial1/0 172. 00:02:47. Loopback1 R2#show ip route Gateway of last resort is not set C O O C R R 172.0/16 is variably subnetted.0/30 is directly connected.16. Serial1/0 172.1.168.255.16.255. 3 subnets. 2 masks 172. Serial1/1 172.16. Serial1/1 192.0/24 [120/1] via 192.255.ccieuniversity.0/24 [110/65] via 172.www.0/24 is directly connected.0/30 is directly connected. 2、Enable OSPF and RIP on the according routers.0/24 [110/65] via 172.16.0/16 is variably subnetted.16.168.255.0/24 is directly connected.0/24 is directly connected. Loopback0 192.16. Serial1/1 192. 3 subnets. 00:00:10. R2(config)#router ospf 1 R2(config-router)#redistribute rip metric 200 subnets R2(config-router)#exit R2(config)#router rip R2(config-router)#redistribute ospf 1 metric 10 R2(config-router)#exit 6、Check routing table on R1 and R3.0/24 [120/1] via 192.1.168.16.255. 2 masks 172.2.0/24 is directly connected. Loopback0 172.1.255.0/24 is directly connected.1. R1#show ip route 172.1.255.0/30 is directly connected.1.0.0/16 is variably subnetted. Loopback0 C 192.255. 00:02:47.2.1. 100-byte ICMP Echos to 172.2. Sending 5. Serial1/1 O E2 192.0/24 is directly connected.168.16. R1#ping 192.2.168.168. .16.168.0/24 is directly connected.255.255.0/24 [110/200] via 172.255.1. 00:02:53. Loopback1 7、Ping test on R1 and R3. 1 subnets O E2 192.0/24 is directly connected.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).ccieuniversity. Serial1/1 R3#show ip route R 172.16.255.0/16 [120/10] via 192.www.16.16. Sending 5.0/24 is directly connected. 00:02:53.1 Type escape sequence to abort.com Redistributing Between EIGRP and IS-IS Lab Topology Lab Purpose: 1、Master EIGRP and IS-IS redistribute configuration.1.1. Serial1/0 C 192.168.0 [110/200] via 172.1. round-trip min/avg/max = 112/137/144 ms R3#ping 172.255. Serial1/1 O E2 192.0/24 [110/200] via 172. Serial1/0 C 192. round-trip min/avg/max = 120/148/192 ms By www. Loopback1 192.ccieuniversity.2.1 Type escape sequence to abort. 100-byte ICMP Echos to 192.1.168.1. 00:00:24.2.168.2.255.168.168.2.com C 172.168.0/30 is subnetted.0.16.16. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). 168.0.168. we need to redistribute on R2.168.0/24 [115/20] via 172.255. 1 subnets C 192.0/16 is variably subnetted.0/24 is directly connected.16. .0. Loopback0 C 192.255.0/24 is directly connected.0/24 [90/2297856] via 192.255.255.16.16.www.1.2.16. 2 masks C 172.171: %SYS-5-CONFIG_I: Configured from console by console 4、According to the above output only R2 has learned the whole network routes.168. 3 subnets.1.0/24 [90/2297856] via 192. Serial1/1 C 172.168. Serial1/0 i L1 172.0/24 is directly connected. R1#show ip route Gateway of last resort is not set 172. 00:00:04.ccieuniversity.16.16.255.16.1.0/24 is directly connected. 3、Check routing table on R1 R2 R3. Serial1/1 D 192.255.16. 2 masks C 172. 00:00:04. Loopback0 C 172.168. Loopback1 R1# R2#show ip route Gateway of last resort is not set 172. Loopback1 R3# *Mar 29 10:39:29.255.168.2. Serial1/1 R2# R3#show ip route Gateway of last resort is not set C 192. Serial1/0 192.0 is directly connected.2.1.1.168. Serial1/0 i L1 172.168.16.0/16 is variably subnetted.0/30 is subnetted. Serial1/0 C 192.com Lab Steps: 1、Finish basic IP configuration. 5、Make sure R1 and R3 can also learn the whole network routes. 3 subnets.255.0/24 is directly connected. Serial1/1 D 192.0/24 [115/20] via 172.0/30 is directly connected.16.1.1.0/30 is directly connected.2. 2、Enable IS-IS and EIGRP on the relevant routers.255.1. 00:08:48.0 [115/30] via 172.255.0/30 is directly connected.1 .0. 2 subnets D EX 172. Loopback1 7、Ping test on R1 and R3.0.16.16. Loopback0 172.168.255.1 Type escape sequence to abort.0 [170/2172416] via 192.0/24 is directly connected.16.2.255.1.2.168.16.0 [170/2172416] via 192.0/24 is subnetted.16.16.2. R3#ping 172. Serial1/1 172. Loopback1 192.16.168.0/24 is directly connected.ccieuniversity. 3 subnets.1. Loopback0 C 192.168.0/16 is variably subnetted.255.255.1.2.255.168.com R2(config)#router isis cisco R2(config-router)#redistribute eigrp 100 metric 20 level-2 R2(config-router)#exit R2(config)# R2(config)#router eigrp 100 R2(config)#redistribute isis cisco level-1-2 metric 100000 10 255 1 1500 R2(config)# 6、Check routing table on R1 R2 R3.0/24 is directly connected.255.168.1. 00:08:48.168.16.2.2.2. R1#show ip route Gateway of last resort is not set 172. Serial1/1 C C C R3#show ip route Gateway of last resort is not set 172.255.www. 100-byte ICMP Echos to 172.1.16.168.168.0/30 is subnetted.0/24 is directly connected. Serial1/0 C 192.2.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). Sending 5.16.16. Serial1/0 D EX 172.16.0/24 [115/30] via 172.0/24 is directly connected.255. 2 masks 172. Serial1/1 i L2 192.0/24 [115/30] via 172. Serial1/0 C 192.168.1.1. Serial1/1 i L2 192.2. round-trip min/avg/max = 88/94/96 ms R1#ping 192. 1 subnets i L2 192. 255.255.168.com Type escape sequence to abort.168.0/24 is directly connected. Serial1/0 D EX 172. 00:00:06.2.2.255.16.0/24 is subnetted.1.2.16.2. Loopback0 C 192. 00:26:56.16. 2 subnets D EX 172.2.0/24 is directly connected. Loopback0 C 192.1 Type escape sequence to abort.0/24 is directly connected.1.. timeout is 2 seconds: .255.16.1.16. Sending 5.2.0.0/24 is directly connected.168.255. Serial1/0 D EX 172. Serial1/0 C 192.www.ccieuniversity.255.0.168.16.255. R2(config)#router eigrp 100 R2(config-router)#redistribute connected metric 100000 10 255 1 1500 R2(config-router)#exit 10、Check routing table on R3.1. as IS-IS would not announce directly connected network when doing redistribution.16..168.168. Serial1/0 C 192. 100-byte ICMP Echos to 192.0/30 is missing in the routing table.0/24 [170/2172416] via 192.0 [170/2172416] via 192.0 [170/2172416] via 192. Serial1/0 C 192. 3 subnets.1.1. 100-byte ICMP Echos to 192. 00:23:06. timeout is 2 seconds: .1. Serial1/0 D EX 172. Success rate is 0 percent (0/5) 8、Check routing table on R3.2. R3#show ip route Gateway of last resort is not set 172.168. 2 masks D EX 172.0/24 is directly connected.168.255.2.0/16 is variably subnetted.168. 00:23:06.2.1. Loopback1 11、Ping test on R1.0/30 [170/2172416] via 192. Sending 5.168. 00:26:56..168.168.. 9、Redistribute connected in EIGRP on R2.0/24 [170/2172416] via 192. R3#show ip route Gateway of last resort is not set 172. R1#ping 192.0/24 is directly connected.255.168.1.16. Serial1/0 C 192.168. Loopbac 172. round-trip min/avg/max = 120/148/168 ms By www. 00:01:44. 3、Check routing table on R2 and R5.16.4 [110/128] via 172.16. 2、Enable RIP and OSPF on the relevant routers.www.16.2.com !!!!! Success rate is 100 percent (5/5). R2#show ip route Gateway of last resort is not set 172.255.0/30 is subnetted.ccieuniversity.16.0 is directly connected.ccieuniversity.com Redistribution Using Administrative Distance Lab Topology Lab Purpose: 1、Modify Administrative Distance to solve suboptimal routing during multi-point redistribution. Serial1/1 .0. Lab Steps: 1、Finish basic IP configuration.255.255. Serial1/1 O 172. 3 subnets C 172. Serial1/0 O 172.0. Serial1/0 C 192.0/8 is following the path R4-->R3-->R2-->R1-->10.2.2. Serial1/0 R 10.1.16. 00:02:08.com . Serial1/1 R 10.0/24 is directly connected. 00:00:21.16.255.0/24 is directly connected.0. 3 subnets O 172. 00:00:02.168. Serial1/0 O E2 10.1.16.16. 5、To solve this issue we need to change RIP Administrative Distance for the specific network 10.255.255. Serial1/0 O 172. 3 subnets O 172.0.255.8 is directly connected.168.16.2.255.4 [110/128] via 172.0.255.8 [110/192] via 172.168.0/24 [110/200] via 172. 00:00:02.255.1.16.0/24 is directly connected.0.255.ccieuniversity.0.0/30 is subnetted.16.2.9.0.1.16. 00:00:02.9.0 1 R5(config-router)#exit R5(config)#exit 6、Check routing table on R5 again we can see the route is optimal now.1. 00:02:08. Serial1/0 C 172. FastEthernet0/0 O E2 192.16. R5(config)#access-list 1 permit 10.2.0/8 [120/1] via 192. FastEthernet By www. Serial1/0 O E2 192. Serial1/0 C 192.255.255.9.0 [110/192] via 172.9.0.0.168.255.0.4 [110/128] via 172. It's not the best path.0/8. FastEthernet0/0 4、Based on the above information we can see traffic from R5 to network 10.0/24 [110/200] via 172.168.168.168.16.0/8 [80/1] via 192.16.8 is directly connected.0. R5#show ip route Gateway of last resort is not set 172.0.16.0/30 is subnetted.0.255.www. Serial1/0 C 172.255.255.16. 00:00:02. 00:01:44. 00:01:44.0 [110/192] via 172.0/8 [110/200] via 172.16.0/8 on R5.16.1 0.16.255.0.168.9.2.0/24 [110/200] via 172. Serial1/1 R5#show ip route Gateway of last resort is not set 172.1. 00:02:08.0 0.0. Serial1/0 C 192. 00:02:08.9.255 R5(config)#router rip R5(config-router)#distance 80 192.255.2.com O 172.9.255.16.0.16.ccieuniversity. because R5 things OSPF have a better Administrative Distance 110 than RIP network which is 120.255. Serial1/0 O E2 192.0.168.0. 00:00:15.3.255.0 is directly connected.2.0 is directly connected. Serial1/0 172.1. Loopback0 172.168.0.0.2. 00:00:01. Serial1/0 172. 5 subnets 172. 00:00:15.2.168.1.2.www.255.16.16. 00:00:15.168. Loopback0 192.16.168. Loopback0 172.255.16.16.0.16.0/30 is subnetted.2.0/24 [110/200] via 172.255. Serial1/0 172.255.168.3.16. 00:00:15.16.0 is directly connected.16.0/24 [110/200] via 172. 00:00:01. Serial1/1 192.0 [120/10] via 192. Serial1/1 192.0 [120/10] via 192.2.168. R1#show ip route Gateway of last resort is not set C C C C C O O O O O E2 E2 E2 E2 E2 172.16.168.2.2. 00:00:15.0/24 [110/200] via 172.255. 5 subnets 172.0 [120/10] via 192.0/24 [110/200] via 172.0.0.2. 00:00:01.16.0/24 [110/200] via 172. and disable RIPV2 auto summary.255.168.0 [120/10] via 192. 4、Check routing table on R1 and R3. Serial1/0 .16.ccieuniversity. Serial1/1 172. Serial1/1 192.2.168.255. Serial1/1 192.2.16. Serial1/1 R3#show ip route Gateway of last resort is not set R R R R 172.16.16. Lab Steps: 1、Finish basic IP configuration.1.255. 00:00:01.com Filtering Routing Updates with a Distribute List Lab Topology Lab Purpose: 1、Master route distribute-list filtering configuration. 3、Redistribute between RIP and OSPF on R2.255. Loopback0 172. 2、Enable OSPF and RIPV2 on relevant routers.255.0 is directly connected.0 is directly connected.2.16.0/30 is subnetted.255. 16.168.168. Serial1/1 By www. Loopback0 C 172.255. Loopback0 C 172.0/24 is directly connected.168. Loopback0 192.16.1.0/24 is directly connected. Serial1/0 172.0 0. 00:00:02.255.16.16.0 [120/10] via 192.0/24 is directly connected. Loopback0 192.168.2.2. Loopback0 C 172.255.16.168.0 [120/10] via 192. 00:00:02.0/24 is directly connected.0.2.168.1.0/24 is directly connected.ccieuniversity.1.0 [120/10] via 192.0/24 [110/200] via 172. 00:19:20.255 R2(config)#access-list 2 deny 192.168.168.16.0/24 is directly connected. 00:00:01.0.0/24 is directly connected.255.3.168.255. Loopback0 O E2 192. Serial1/1 O E2 192. Serial1/0 192.168.255 R2(config)#access-list 2 permit any R2(config)#router ospf 1 R2(config-router)#distribute-list 2 out rip R2(config-router)#exit 8、Check routing table on R1.16.168.16. R2(config)#access-list 2 deny 192.2.0/24 [110/200] via 172.www.3. R2(config)#access-list 1 deny 172.2.3. Serial1/0 192.com R C C C C C 172.0. Serial1/0 192.0.0. Serial1/1 C 172.0.168. 5 subnets C 172. Loopback0 192.168.0.0 0.2.255.16.1. Loopback0 192.0/24 is directly connected.2.255.3.0 0.0 is directly connected.16.16.com .255.2.1.2.0/24 is directly connected. Loopback0 192.168. R3#show ip route Gateway of last resort is not set R R R C C C C C 172.0.3.0/30 is subnetted.0.0.0.168.0. R1#show ip route Gateway of last resort is not set 172.16.255.3. Loopback0 7、According to the topology config RIP route filtering configuration on R2.0 0.16. 00:19:20. Serial1/0 192.0 is directly connected. 00:19:20.2.255 R2(config)#access-list 1 permit any R2(config)#router rip R2(config-router)#distribute-list 1 out ospf 1 R2(config-router)#exit R2(config)# 6、Check routing table on R3.0 is directly connected.255.ccieuniversity.0 [120/10] via 192.16.168.0.2.0 is directly connected.255. 00:00:02.0. Loopback0 5、According to the topology config OSPF route filtering configuration on R2. Serial1/1 O E2 192. Loopback0 192.255 R2(config)#access-list 1 deny 172.255.168.0/24 is directly connected.168.16.2. Serial1/0 172.0 is directly connected.168.0/24 [110/200] via 172. 16.255.3. 00:00:15. Serial1/1 R3#show ip route Gateway of last resort is not set 172.0.0 is directly connected. Serial1/1 O E2 192.0.2.16.2. 4、Check routing table on R1 and R3. 00:00:15. Loopback0 C 172.16.168.16.16.16.com Filtering Routing Updates with a Route Map Lab Topology Lab Purpose: 1、Master basic Route-map filtering configuration.2. Loopback0 C 172.2. 00:00:15.1.255.3. R1#show ip route Gateway of last resort is not set 172. 00:00:15.0/24 [110/200] via 172. 5 subnets R 172.0 is directly connected.0 is directly connected. 00:00:01.2.0/24 [110/200] via 172.0 [120/10] via 192. Serial1/1 O E2 192.0. and disable RIPV2 auto summary.255.168.16.255.0 is directly connected.255. Serial1/1 C 172. Loopback0 O E2 192.16.168.0/24 [110/200] via 172.255. 00:00:01. 5 subnets C 172.255.0/30 is subnetted.16.0/30 is subnetted.0/24 [110/200] via 172.168. Serial1/0 .0.0/24 [110/200] via 172.0.16. 00:00:15.255.0 [120/10] via 192.168.16. Loopback0 C 172.2. Lab Steps: 1、Finish basic IP configuration.168.255.2.ccieuniversity.16.16.168.2.16.255.www.0 is directly connected. Serial1/1 O E2 192.1. 2、Enable OSPF and RIPV2 on relevant routers.2. Serial1/1 O E2 192. 3、Redistribute between RIP and OSPF on R2. Serial1/0 R 172. 0/24 is directly connected. Serial1/0 R 172.0/24 is directly connected.0.1.255 R2(config)#access-list 1 deny 172.255.2. 3 subnets 172.168.168.168. Serial1/0 172.168.0 [120/10] via 192.255. Loopback0 C 192. Loopback0 5、According to the topology config route-map based OSPF route filtering configuration on R2. Serial1/0 C 192.com R 172.1. Serial1/0 192.3. R2(config)#access-list 1 deny 172.0 [120/10] via 192.0 0.2.16.0.2.255.16.16.1.0/24 is directly connected.0/24 is directly connected.2.168.2.16.0 0.255.0.3.168.0.0 [120/10] via 192.168. Loopback0 192.168.0/24 is directly connected. Serial1/0 C 192.0/30 is subnetted.ccieuniversity.255 R2(config)#access-list 1 permit any R2(config)# R2(config)#route-map ospf_to_rip permit 10 R2(config-route-map)#match ip address 1 R2(config-route-map)#exit R2(config)#router rip R2(config-router)#redistribute ospf 1 metric 10 route-map ospf_to_rip R2(config-router)#exit R2(config)#exit 6、Check routing table on R3.2. R3#show ip route Gateway of last resort is not set R R R C C C C C 172. Serial1/0 172. 00:00:05.16.1.0.168.3. R2(config)#access-list 2 permit 192.0 [120/10] via 192. Loopback0 7、According to the topology config route-map based RIP route filtering configuration on R2.255.168.0 0. Loopback0 C 192.168.255.3. Loopback0 192.16.2.0.0 [120/10] via 192.168.0.0/24 is directly connected. Serial1/0 192.255 R2(config)#access-list 2 permit 192. Loopback0 C 192.0/24 is directly connected.168.0.255. 00:00:05. 00:00:01.0.0.0.2.3. 00:00:01.16.2.168.16. 00:00:01. Loopback0 192. Serial1/0 R 172. 00:00:05.0 0.255.0/24 is directly connected.255.16.0/24 is directly connected.0 [120/10] via 192.168.255 R2(config)# R2(config)#route-map rip_to_ospf deny 10 .www.0.0/24 is directly connected.2.168.2.168.168. 16.ccieuniversity.2. Serial1/1 By www.0/24 [110/200] via 172. 00:19:20.0/30 is subnetted.168.2.0 is directly connected.com Using Route Tag Filtering Routing Updates Lab Topology . Serial1/1 O E2 192.255.0 is directly connected.16.168. 5 subnets C 172.16. Serial1/1 O E2 192.0/24 [110/200] via 172.16. Loopback0 C 172.www.16. Serial1/1 C 172. Loopback0 O E2 192.0.ccieuniversity.16.0 is directly connected. 00:19:20.0/24 [110/200] via 172.255.2.0 is directly connected.1.com R2(config-route-map)#match ip address 2 R2(config-route-map)#exit R2(config)#route-map rip_to_ospf permit 20 R2(config-route-map)#exit R2(config)# R2(config)#router ospf 1 R2(config-router)#redistribute rip metric 200 subnets route-map rip_to_ospf R2(config-router)#exit R2(config)#exit 8、Check routing table on R1. Loopback0 C 172.168.0. Loopback0 C 172.0. R1#show ip route Gateway of last resort is not set 172. 00:19:20.1.16.255.2.16.3.255.16.255.0 is directly connected. ccieuniversity.0. R4#show ip route Gateway of last resort is not set C 172.0 is directly connected.0/30 is subnetted.www. 2、Config redistribution on R2 and R3.0. Lab Steps: 1、Finish basic IP configuration.16. 1 subnets 172.0/24 is subnetted.com Lab Purpose: 1、Master route tag filtering configuration. Serial1/0 10.0.16. R2(config)#router ospf 1 R2(config-router)#redistribute eigrp 10 subnets R2(config-router)#exit R2(config)# R2(config)#router eigrp 10 R2(config-router)#redistribute ospf 1 metric 100000 100 255 1 1500 R2(config-router)#exit R2(config)#exit R3(config)#router ospf 1 R3(config-router)#redistribute rip subnets R3(config-router)#exit R3(config)# R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 R3(config-router)#exit R3(config)# 3、Check routing table on R4.1. 2 subnets . Serial1/0 192. Serial1/0 192. Serial1/0 4、According to the topology. Serial1/0 192. R2(config)#access-list 1 permit 192.0 [120/10] via 172.255 R2(config)#access-list 1 permit 192. R4#show ip route Gateway of last resort is not set C R R R 172. 00:00:00.0 0.168. Serial1/0 10.1.0/24 [120/10] via 172.1. Serial1/0 192. Serial1/0 .16.1.2.16. 00:00:00.ccieuniversity.0.168.168.0 0.1.1.0/24 [120/10] via 172.16. 00:00:00.0.1.1. 00:00:00.4 [120/10] via 172.1.0.1.0/24 are not allowed to be learn by R4.1. R3(config)#route-map match_tag deny 10 R3(config-route-map)#match tag 1 R3(config-route-map)#exit R3(config)# R3(config)#route-map match_tag permit 20 R3(config-route-map)#exit R3(config)# R3(config)#router rip R3(config-router)#redistribute ospf 1 metric 10 route-map match_tag R3(config-router)#exit R3(config)#exit 7、Check the routing table on R4.168.1. 1 subnets 172.16.0/24 and 192.1.0. 5、Config route tag on R2.3.1. we could use route tag plus route-map to filter the routes.com R R R R R R 10.1.0/30 is subnetted.0.16.16.1.168.0.0.0/24 [120/10] via 172. 00:00:00.168.16.1.0.1. 00:00:00.16.16.2.1.168.0/24 is subnetted.2.0 [120/10] via 172.www.1.4 [120/10] via 172.1.16.0.1. 00:00:00.16. Serial1/0 192.1.168.0 is directly connected.1.1.168.1. Serial1/0 10.1.0/24 [120/10] via 172.255 R2(config)# R2(config)#route-map set_tag permit 10 R2(config-route-map)#match ip address 1 R2(config-route-map)#set tag 1 R2(config-route-map)#exit R2(config)# R2(config)#route-map set_tag permit 20 R2(config-route-map)#exit R2(config)# R2(config)#router ospf 1 R2(config-router)#redistribute eigrp 10 subnets route-map set_tag R2(config-router)#exit R2(config)#exit 6、Config route-map on R3 to filter the routes.1.0/24 [120/10] via 172.0. 00:00:00. 2 subnets 10.1.1. network 192. Serial1/0 10. 00:00:00. 0.0.0 R1(config-if)#exit R1(config)#ip route 0.1.0/24 and 192.0.0. Lab Steps: 1、Finish basic IP configuration.1.16.168.0. 00:00:00.0.255.0/24 have gone.1.255.0 R2(config-if)#exit R2(config)#ip route 0.255.ccieuniversity.0 0.0 0. By www.168.2.1. Serial1/0 We can see 192.1.20 255.3.com Policy-based route Lab Topology Lab Purpose: 1、Master policy-based route configuration.0 192.ccieuniversity.com R 192. R3(config)#interface serial 1/2 .1 3、Frame-relay configuration.168.168.0.0 192.168.10 255.1.www.168. 2、Config R1 and R2 to work as PC.1 R2(config)#interface fastEthernet 0/0 R2(config-if)#ip address 192.168.255.0. R1(config)#interface fastEthernet 0/0 R1(config-if)#ip address 192.0/24 [120/10] via 172.0. 1.0/24 on R2.ccieuniversity. Serial1/2 130. Tracing the route to 130.255. R1#traceroute 130. Tracing the route to 130.1.2 216 msec * 8、Track network 130. 00:00:01.0 [120/1] via 10.1.1.168.1.16.1.1 52 msec 96 msec 48 msec 2 10.0 [120/2] via 10.com R3(config-if)#ip address 10.1 Type escape sequence to abort.0.1.1.255.1.0/24 is directly connected.130.16.1.0/24 is subnetted.2.3 255.1. R3(config)#no ip cef 7、Track network 130.1.2 192 msec .1.1.1.0 4、Enable RIPV2 on R3 R4 R5 R6 and disable auto summary.1.1.www.255.255.3 240 msec 10.1.16.130.1.1.1.1 Type escape sequence to abort. 1 subnets 130.0 R4(config-if)#encapsulation frame-relay R4(config-if)#exit R6(config)#interface s1/2 R6(config-if)#encapsulation frame-relay R6(config-if)#ip address 10.3.255.0/24 on R1.1. Serial1/2 172. R3#show ip route 172.1 1 192.0 R3(config-if)#encapsulation frame-relay R3(config-if)#exit R4(config)#interface s1/2 R4(config-if)#ip address 10.1.130.1.168.1.2. 2 subnets 172.1. R2#traceroute 130.1 264 msec 172.1.0. 00:00:01.2 216 msec 10.2.130.130.1.0 [120/1] via 10.1.130.130.1 96 msec 72 msec 2 10.2. FastEthernet0/0 R R C R C 6、Disable CEF on R3.1. Serial1/2 192.1.130.0/24 is subnetted. 00:00:14.0 is directly connected.16.3.168.2 255.1 1 * 192.2 120 msec 3 172. Serial1/2 [120/2] via 10.1.1 255. 00:00:14.0.1.0. 1 subnets 10.255.1. Serial1/2 10.0/24 is subnetted.16.1.1. 5、Check routing table on R3. 16. R3(config)#access-list 10 permit host 192.1 Type escape sequence to abort.1.2.1.3 144 msec 192 msec 144 msec 3 172.1.2 R3(config-route-map)# R3(config-route-map)#exit R3(config)# R3(config)#route-map pbd permit 20 R3(config-route-map)# R3(config-route-map)#match ip address 20 R3(config-route-map)#set ip next-hop 10.1.1 264 msec 172.1.1.130.1 48 msec 68 msec 72 msec 2 10.1.130.2.20 R3(config)# R3(config)#route-map pbd permit 10 R3(config-route-map)# R3(config-route-map)#match ip address 10 R3(config-route-map)#set ip next-hop 10.1.130.com .16.3 120 msec 10.2 168 msec * 312 msec R2#traceroute 130.1.130.2 168 msec 144 msec 144 msec 3 172. R3(config)#interface fastEthernet 0/0 R3(config-if)#ip policy route-map pbd R3(config-if)# 11、Track network 130.3 R3(config-route-map)# R3(config-route-map)#exit R3(config)#route-map pbd permit 30 R3(config-route-map)#exit R3(config)# 10、Assign policy to interface.1 1 192.1.168.www. Tracing the route to 130.1.1.1.com 10.1 216 msec * 216 msec By www.1. Tracing the route to 130. R1#traceroute 130.1.10 R3(config)#access-list 20 permit host 192.1.1.1 1 192.ccieuniversity.1.0/24 on R1 and R2 again.1 132 msec 72 msec 72 msec 2 10.1.1.168.1.168.130.16.16.168.ccieuniversity.2 144 msec 3 172.1 Type escape sequence to abort.1.2 216 msec * 9、According to the topology config policy-based route on R3.1. 255.252 R2(config-router)#exit R2(config)#exit R3(config)#router bgp 64513 R3(config-router)#neighbor 10.16.255.255.2.255.255.0 mask 255.0 R1(config-router)#network 172.1. Lab Steps: 1、Finish basic IP configuration.255.16.3.0 R1(config-router)#network 172.0 .255.255.2 remote-as 64512 R1(config-router)# R1(config-router)#network 172.16.com Configuring Basic BGP Lab Topology Lab Purpose: 1、Master BGP basic configuration.255. 2、Enable BGP on R1 R2 R3.255.255.0 R1(config-router)#exit R1(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 172.0 mask 255.252 R3(config-router)#network 192.255.1.1 remote-as 64512 R3(config-router)# R3(config-router)#network 10.1.1 remote-as 64512 R2(config-router)#neighbor 10.168.255.255.252 R1(config-router)#network 172.2 remote-as 64513 R2(config-router)# R2(config-router)#network 172.255.1.1.255.16.255.0 mask 255.16.0. R1(config)#router bgp 64512 R1(config-router)#neighbor 172.0 mask 255.0.255.255.252 R2(config-router)#network 10.255.255.168.www.0 mask 255.0 R3(config-router)#network 192.1.16.0 R1(config-router)#network 172.255.0 mask 255.0 mask 255.ccieuniversity.255.255.16.0 mask 255.16. 0 R3(config-router)#network 192.16.1 4 64512 42 45 19 0 0 00:37:53 4 .2. remote AS 64512.2. R2#show ip bgp summary BGP router identifier 172.ccieuniversity. R1#show ip bgp neighbors BGP neighbor is 172. scan interval 60 secs Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 10. main routing table version 19 10 network entries using 1010 bytes of memory 11 path entries using 528 bytes of memory 3 BGP path attribute entries using 180 bytes of memory 1 BGP AS-PATH entries using 24 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 1742 total bytes of memory BGP activity 14/4 prefixes.255.255. keepalive interval is 60 seconds Neighbor capabilities: Route refresh: advertised and received(old & new) Address family IPv4 Unicast: advertised and received Message statistics: InQ depth is 0 OutQ depth is 0 Sent Rcvd Opens: 1 1 Notifications: 0 0 Updates: 1 4 Keepalives: 32 32 Route Refresh: 0 0 Total: 34 37 Default minimum time between advertisement runs is 5 seconds ………… 4、Check BGP summary information on R2.2. hold time is 180. internal link BGP version 4. local AS number 64512 BGP table version is 19. up for 00:29:25 Last read 00:00:24.2 4 64513 47 49 19 0 0 00:10:15 5 172.www.255. remote router ID 172.0 R3(config-router)#exit R3(config)# 3、Check BGP neighbor relationship on R1.16.168.255.168.3. 16/5 paths.1.2 BGP state = Established.16.255.16.com R3(config-router)#network 192. ccieuniversity.3. R1#show ip route Gateway of last resort is not set C C C C C B B B B B 172.2.0.2.0/30 is subnetted.168.2. 00:22:27 192.3.0/24 is directly connected. 00:22:27 192.0/24 is directly connected.1. 5 subnets. Loopback0 172.0/24 is directly connected.1. .0.1.16.16.0/30 is directly connected.www.0/16 is variably subnetted.com Configuring BGP Using Loopback Addresses Lab Topology Lab Purpose: 1、Master loopback based BGP neighbor configuration.0.0/24 [200/0] via 10.255. Loopback0 10. 00:22:27 192.16.2.2. FastEthernet0/0 172.255.16.1.0.1. Loopback0 172.com 5、Check routing table on R1.16. 00:22:27 By www. Loopback0 172.ccieuniversity.0/24 is directly connected.0. 00:48:22 192.255.1.255.2.0/24 [200/0] via 10.255.168.1. 2 masks 172.255. 1 subnets 10.16.0 [200/0] via 172.168.168. 2、Understanding why use loopback to establish BGP neighbor.255.2.16.0/24 [200/0] via 10.0/24 [200/0] via 10. 0.1 remote-as 64512 R1(config-router)#neighbor 172.1 remote-as 64512 R3(config-router)#neighbor 172.16.0 mask 255.16.255.168.0 R3(config-router)#network 192.0.0 mask 255.255.1.www.255.0 .16.16.16.16.ccieuniversity. 2、Enable RIPV2 in AS 64512 R1(config)#router rip R1(config-router)#network 172.255.0 mask 255.0 R1(config-router)#network 172.16.0.16.16.16.16. R1(config)#router bgp 64512 R1(config-router)#network 172.255.1 ebgp-multihop 2 R2(config-router)#exit R2(config)#ip route 192.1 ebgp-multihop 2 R3(config-router)# R3(config-router)#network 192.0.255.168.1 remote-as 64513 R2(config-router)#neighbor 192.255.0.255. R1#sh ip bgp summary Neighbor V AS MsgRcvd MsgSent 172.252 R2(config-router)#neighbor 172.1 update-source loopback 0 R1(config-router)#exit R2(config)#router bgp 64512 R2(config-router)#network 172.16.1.255.255.16.0.0.1 remote-as 64512 R2(config-router)#neighbor 172.16.1 update-source loopback 0 R2(config-router)#exit 4、Check BGP summary information on R1. R2(config)#router bgp 64512 R2(config-router)#neighbor 192.16.168.1.1 update-source loopback 0 R2(config-router)#neighbor 192.0 R1(config-router)#neighbor 172.168.2 R3(config)#router bgp 64513 R3(config-router)#neighbor 172.1 4 64512 5 5 TblVer 6 InQ OutQ Up/Down State/PfxRcd 0 0 00:00:20 2 5、Build EBGP neighbor between R2 and R3.168.16.255.0 mask 255.com Lab Steps: 1、Finish basic IP configuration.0.1 update-source loopback 0 R3(config-router)#neighbor 172.0 R1(config-router)#version 2 R1(config-router)#no auto-summary R1(config-router)#exit R2(config)#router rip R2(config-router)#no auto-summary R2(config-router)#version 2 R2(config-router)#network 172.168.0 R2(config-router)#exit 3、Build iBGP neighbor between R1 and R2.0.255.0.16.1 255.1.16.255.252 R2(config-router)#network 10.255 10.16. 1.168.1 255.com Understand BGP Auto-Summary Lab Topology Lab Purpose: 1、Understanding BGP auto summary feature.255.1 6、Check BGP summary information on R2.16. R1(config)#router bgp 64512 R1(config-router)#neighbor 172.1 summary V AS MsgRcvd MsgSent 4 64512 19 20 4 64513 5 6 TblVer 9 9 InQ OutQ Up/Down State/PfxRcd 0 0 00:14:11 2 0 0 00:00:10 3 By www. R2#show ip bgp Neighbor 172.255.2 remote-as 64512 R1(config-router)#exit R2(config)#router bgp 64512 R2(config-router)#neighbor 172.255.1.1 remote-as 64512 .1.1 remote-as 64512 R2(config-router)#neighbor 10.0.255.2 remote-as 64513 R2(config-router)#exit R3(config)#router bgp 64513 R3(config-router)#neighbor 10.16.252 R3(config-router)#exit R3(config)#ip route 172.255.255.255.0 mask 255.16. 2、Build BGP neighbor according to the topology.255.1 192.1.16.16.255 10.www. Lab Steps: 1、Finish basic IP configuration.ccieuniversity.0.ccieuniversity.255.255.com R3(config-router)#network 10. Loopback0 10. R1(config)#router bgp 64512 R1(config-router)#network 172.1.255.2 Maximum path: 1 Routing Information Sources: Gateway Distance Last Update Distance: external 20 internal 200 local 200 R1# 5、Announce network 172.16.0/16 is variably subnetted.0.255. main routing table version 1 Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 10. R1#show ip protocols Routing Protocol is "bgp 64512" Outgoing update filter list for all interfaces is not set Incoming update filter list for all interfaces is not set IGP synchronization is disabled Automatic route summarization is disabled Neighbor(s): Address FiltIn FiltOut DistIn DistOut Weight RouteMap 172.0 is directly connected.0.com R3(config-router)#exit 3、Check BGP neighbor state on R2.255.0.0/30 is directly connected.1.0/30 is subnetted.www.255. FastEthernet0/0 172. 2 subnets.0 on R1. 2 masks 172.0.16.16.0.1. local AS number 64512 BGP table version is 1.255.1 4 64512 5 5 1 0 0 00:01:46 0 4、Check BGP protocol feature on R1.16.0 R1(config-router)#exit 6、Check routing table on R2 we can see 172.0. 1 subnets C 10.2 4 64513 5 5 1 0 0 00:01:01 0 172.16. R2#show ip route Gateway of last resort is not set 172.0/24 is directly connected. Serial1/1 C C .16.16.16.0 /16 is not in the routing table.ccieuniversity. R2#sh ip bgp summary BGP router identifier 172.16.16.16. 255.1.0.16. 3 masks C 172.0/16 is here now.1. 8、Let's enable BGP auto summary to see what happens.16. Loopback0 C 192.1. Serial1/0 C 192. R1(config)#router bgp 64512 R1(config-router)#auto-summary R1(config-router)#exit R1(config)#exit 9、Check routing table on R2 again.0/24 is directly connected. 00:02:26 10.255.0/16 is variably subnetted. 1 subnets C 10.1.0.255.16.0 is directly connected.16.com 7、Make sure network 172.16.168. 00:01:23 10. we can see 172. Serial1/1 R2# R2#show ip bgp summary Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 10.0.255.255.0.1. Loopback0 B 172. 1 subnets C 10.0/16 is in R1's routing table before announced by BGP.1. regardless whether it's the main class network border or not.1.ccieuniversity.0.0/24 is directly connected.0/16 [200/0] via 172.0.1 4 64512 21 20 2 0 0 00:16:11 1 10、Check routing table on R3.16.0/30 is subnetted.0/30 is directly connected.16.0/16 [20/0] via 10.0/30 is subnetted.2 4 64513 19 20 2 0 0 00:15:27 0 172.255.16. By www.0.0.0/24 is directly connected. FastEthernet0/0 C 172.www.168.16.0.0 is directly connected. R3#show ip route Gateway of last resort is not set B 172. 3 subnets.ccieuniversity.16.255. Loopback0 Tips: BGP auto summary feature will summarize the sub-networks and announce the summary route to their neighbors.com . R2#show ip route Gateway of last resort is not set 172.0. 255. 00:02:45 172. 2 masks 172.1. 1 subnets 10. 3、Check routing table on R3.0/24 [20/0] via 10.1. R3#show ip route .255.0 null 0 R1(config)# R1(config)#router bgp 64512 R1(config-router)#network 172.1. Lab Steps: 1、Finish basic IP configuration.0.252.0 is directly connected.0/24 [20/0] via 10.1. 5 subnets.1.255.com Configuring BGP Summarization Lab Topology Lab Purpose: 1、Master Null0 interface static route summary configuration.0.0.16.16.2. 00:02:45 172.0 mask 255.1.0.255.0/30 is subnetted.16.16.255.1. 00:03:15 172.255.255.16.0/30 [20/0] via 10.255. R1(config)#ip route 172.0 255. 00:02:45 172.0. 2、Master aggregate summary configuration.0 R1(config-router)#exit Tips:172.0/22 must in ip routing table before BGP announcement.ccieuniversity.16.16.0/24 [20/0] via 10. 00:02:45 10. Serial1/0 4、Announce summary route based on a null 0 static route.255.16. 5、Check routing table on R3 again.0.0/16 is variably subnetted.3.16.1.1.0/24 [20/0] via 10.0.1.252. R3#show ip route Gateway of last resort is not set B B B B B C 172. 2、Enable BGP according to the topology.www.1.1. 0.0.1.16.www.0 mask 255.16. 1 subnets C 10.255. 00:07:18 172. 00:06:48 172. R3#ping 172.1.0.0/24 [20/0] via 10.255.16. but other BGP peer would never know who is the summary source.1.255.16.16. Serial1/0 B B B B B B 6、The specific 172.0.1.255.255.0 mask 255.0/22 [20/0] via 10. 00:16:20 10.16.0 R1(config-router)#no network 172. 8、Ping test the summary route.3.1. 00:06:48 172.255.0/22 left. we could remove them from BGP announcement.255.16. 00:06:48 172.0/16 is variably subnetted.0/30 is subnetted.16.1 Type escape sequence to abort.0.16.1.0.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). 00:23:36 B 172.0.1.1.255.1.255. round-trip min/avg/max = 144/184/216 ms 9、The above null0 summary method is simple to implement.16.3. R1(config)#router bgp 64512 R1(config-router)#no network 172.255.1.16. .255. Serial1/0 This time only 172.16.16.0/16 is variably subnetted.0 mask 255. 3 masks 172.1. 1 subnets C 10.0.com Gateway of last resort is not set 172.1.0/30 [20/0] via 10.1.255. 00:06:48 10.0/24 [20/0] via 10.0/24 [20/0] via 10.0 is directly connected.0 R1(config-router)#no network 172.1. so we could use BGP aggregate feature to solve this issue.255.0/24 [20/0] via 10. 00:00:01 172.0.1.255. Sending 5.0/22 [20/0] via 10.0 mask 255.2.1.16. R3#show ip route Gateway of last resort is not set 172.1.255.255.0 R1(config-router)#exit R1(config)# 7、Check routing table on R3. 100-byte ICMP Echos to 172.0/30 is subnetted.3.0-172.16.2. 2 subnets. 2 masks B 172.16.1.255.0/24 routes are still in the routing table.0 is directly connected.255.255.16.ccieuniversity.0/30 [20/0] via 10.0 R1(config-router)#no network 172.0.16.1.255.0.16.1.1.1. 6 subnets.0. R3#show ip route Gateway of last resort is not set 172.0. localpref 100.0.16.0/16 is variably subnetted. R1(config)#router bgp 64512 R1(config-router)#aggregate-address 172.16.1 (172.1. 2 masks B 172.1 Type escape sequence to abort.16.0/30 [20/0] via 10. 2 subnets.0/30 is subnetted. 11、Implement aggregation on R1.0 is directly connected.0.1.0. 1 subnets C 10.252.0/22 [20/0] via 10.1 from 10.0 BGP routing table entry for 172.255.0 summary-only R1(config-router)# 12、Check routing table on R3.255. Sending 5.ccieuniversity. 00:18:08 B 172. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).16.0.255.1.0.1) Origin IGP.0. best #1.0.16. round-trip min/avg/max = 68/128/168 ms By www.255. (aggregated by 64512 172.1.0.1.16.255.1.16.16.255. R3#ping 172.255.com Understand BGP Split Horizon Rule Lab Topology .1.16.1.0/22. best 14、Ping test the summary route. 00:02:00 10.ccieuniversity.255. 100-byte ICMP Echos to 172. table Default-IP-Routing-Table) Not advertised to any peer 64512.16.1) 10. Serial1/0 13、Check the summary route 1 R3#show ip bgp 172.0. external. atomic-aggregate. version 32 Paths: (1 available.0 255.www.com 10、Restore the summary configuration on R1. valid. do not establish IBGP relationship between R2 and R4 first.255.255.com Lab Purpose: 1、Understanding BGP split horizon principal Lab Steps: 1、Finish basic IP configuration.255.5 remote-as 64513 R3(config-router)#neighbor 10.1.252 .1.0 mask 255.255.255.255.255.14 remote-as 64514 R4(config-router)#neighbor 10.255.252 R2(config)#router bgp 64513 R2(config-router)#neighbor 10. R1(config)#router bgp 64512 R1(config-router)#neighbor 10.1.9 remote-as 64513 R4(config-router)#network 10.255.www.1.255.255. 2、Enable BGP on all routers.1.1.255.255.1.6 remote-as 64513 R2(config-router)#network 10.4 mask 255.255.255.255.130.255.252 R3(config)#router bgp 64513 R3(config-router)#neighbor 10.255.1.10 remote-as 64513 R4(config)#router bgp 64513 R4(config-router)#neighbor 10.0 R1(config-router)#network 10.8 mask 255.ccieuniversity.1 remote-as 64512 R2(config-router)#neighbor 10.0 mask 255.1.1.2 remote-as 64513 R1(config-router)#network 130.1. com R5(config)#router bgp 64514 R5(config-router)#neighbor 10.255.0/24 is subnetted.0.13 remote-as 64513 R5(config-router)#network 150.1.10 remote-as 64513 R2(config-router)#exit R2(config)#exit R4(config)#router bgp 64513 R4(config-router)#neighbor 10.252 3、Check routing tables on R2 and R4.4 [200/0] via 10.1.1.14. Serial1/1 10.150.130.1.150.255.1. 00:06:24 130.1.0.1.255.1.255.0 R5(config-router)#network 10.ccieuniversity.www. 1 subnets B 150. 00:06:20 B C C 4、According to the BGP split horizon feature: routes learn from an IBGP Peer would never announce to another IBGP peer.0.1.255. 1 subnets B 130.5 remote-as 64513 R4(config-router)#exit R4(config)#exit .0/24 is subnetted. Serial1/0 150.0.255.1. 00:06:20 10.255.1.0 mask 255.150. R2(config)#router bgp 64513 R2(config-router)#neighbor 10.255.255. Serial1/0 10. 5、To solve the above issue.0 is directly connected. 3 subnets 10.1.1.255. we need to build IBGP relationship between R2 and R4.255.130.0 [20/0] via 10.1.6.0.8 is directly connected.12 mask 255.255.0 [20/0] via 10. So R2 can not learn routes from R3 which announced by R4.255.9.0/30 is subnetted. R2#show ip route Gateway of last resort is not set 10. R2 can not learn routes from R3 which announced by R2 either.1.0/30 is subnetted. Serial1/1 10. 00:07:20 C C B R4#show ip route Gateway of last resort is not set 10.255.255.8 [200/0] via 10.1.12 is directly connected. 3 subnets 10.1.255.1.4 is directly connected.255.0.255. 8 [200/0] via 10.ccieuniversity.255.4 is directly connected.0.0.0/24 is subnetted.0.0/30 is subnetted.1. 00:06:03 130.1.255.0.1. 00:05:03 150.1.1.255.0. 1 subnets B 130. 00:00:06 B 10.5.www.130.1.10.150.14. we can see all we need are there.0/24 is subnetted.0. 4 subnets B 10.255. Serial1/1 C 10.1. 1 subnets B 150.0/24 is subnetted.1.1. 00:05:51 B 10.0 [20/0] via 10.0 [200/0] via 10.ccieuniversity.14.0 [20/0] via 10. 1 subnets B 150.1.130.0 [20/0] via 10.255.1.255.1.12 is directly connected. 00:00:06 C 10. 00:16:40 By www. Serial1/1 C 10.0 is directly connected.1.0/24 is subnetted.255.0 [200/0] via 10.6.0/30 is subnetted.150.1.com Understand BGP Synchronization Rule Lab Topology .255.0.com 6、Check routing table on R2 and R4 again.130.8 is directly connected.150.255.1.255. 00:06:03 150. Serial1/0 B 10.255.255.1.1. R2#show ip route Gateway of last resort is not set 10. 4 subnets C 10. Serial1/0 130.0.1.1.255.255.130.1.255.1.150.5.255.12 [200/0] via 10.4 [200/0] via 10. 00:05:39 R2# R4#show ip route 10. 1 subnets B 130.1. 1.0 mask 255.252 R2(config)#router bgp 64513 R2(config-router)#synchronization R2(config-router)#neighbor 10. 2、Config full mesh BGP on all routers.130.1.255. enable BGP synchronization.0 R1(config-router)#network 10.10 remote-as 64513 R4(config)#router bgp 64513 R4(config-router)#synchronization .1.252 R3(config)#router bgp 64513 R3(config-router)#synchronization R3(config-router)#neighbor 10.1.1.1.1 remote-as 64512 R2(config-router)#neighbor 10.ccieuniversity.255.255.255.com Lab Purpose: 1、Understanding BGP synchronization principal Lab Steps: 1、Finish basic IP configuration.1.0 mask 255.255.255.1.2 remote-as 64513 R1(config-router)#network 130.255. R1(config)#router bgp 64512 synchronization R1(config-router)#synchronization R1(config-router)#neighbor 10.6 remote-as 64513 R2(config-router)#neighbor 10.www.1.5 remote-as 64513 R3(config-router)#neighbor 10.255.255.4 mask 255.10 remote-as 64513 R2(config-router)#network 10.255.255.255.255.255. 0 R5(config-router)#network 10.1. 00:03:37 B 10.255.255.ccieuniversity.2. network 130.255.0.www.0.255.255.255.150.255.255.255.1.255.com R4(config-router)#neighbor 10.0/24 is subnetted. 00:12:37 130.13. 00:12:37 150.1.14 remote-as 64514 R4(config-router)#neighbor 10.0/30 is subnetted.0/24 is not in R5's routing table. this is the feature of BGP synchronization.150.255.255. 00:03:37 10. 4 subnets 10.12 is directly connected.5 remote-as 64513 R4(config-router)#network 10. Loopback0 We can see network 150.8 [20/0] via 10. Serial1/1 10.1.150.1.0.1.1.255.1.130.255.1.1.8 mask 255. R1#show ip route B C B B C 10.12 [20/0] via 10.1.13.0.9 remote-as 64513 R4(config-router)#neighbor 10.4 [20/0] via 10. 4、To solve the above issue.0 [20/0] via 10.1.0.12 mask 255. so they could be announced to EBGP peers.1.0.1. 1 subnets C 150.130.255.255.252 3、Check routing table on R1 and R5. Serial1/1 B 10.1.4 [20/0] via 10.0/30 is subnetted. 4 subnets B 10. 00:21:11 C 10.0 is directly connected.0.255.1.0 mask 255.0/24 is subnetted.255.255. R2(config)#router ospf 1 R2(config-router)#redistribute bgp 64513 metric 200 subnets R2(config-router)#exit R4(config)#router ospf 1 R4(config-router)#redistribute bgp 64513 metric 200 subnets R4(config-router)#exit .130.1.130. 00:21:11 10.1.0 is directly connected.252 R5(config)#router bgp 64514 R5(config-router)#neighbor 10.255.0.0.0/24 and 150.13 remote-as 64513 R5(config-router)#network 150.1.2.1.1. 1 subnets 130.0 is directly connected.1.0/24 is not in R1's routing table.150.255.255.255.2.1.8 [20/0] via 10. Loopback0 R5#show ip route 10.150. we need to redistribute the two networks 130.13.255.255.0/24 in to IGP on AS edge routers.255.0. Serial1/1 192.16.0/24 is subnetted. Serial1/1 B 10. same as on R4.0 is directly connected.1. R1#show ip route Gateway of last resort is not set C C B 172.0.150.0 is directly connected.255.0.0/24 is in the table.150.com BGP Neighbor Authentication Lab Topology Lab Purpose: 1、Master MD5 based BGP peer authentication.1.0/30 is subnetted. 00:16:37 130.1.2.0 is directly connected.130.130.255. Lab Steps: 1、Finish basic IP configuration.1.0/30 is subnetted. 3、Check routing table on R1 and R2.0.8 [20/0] via 10.1.1.255. By www. 00:07:37 B 10.2.com 5、Check routing table on R1 again. 1 subnets 10. Loopback0 150.150.0.1. 2、Enable BGP on R1 and R2.255.1.4 [20/0] via 10.2.2.0/24 [20/0] via 10.0.255.1.0/24 is subnetted.12 [20/0] via 10.1.0.255. 1 subnets C 130. 1 subnets 172. 00:01:36 This time 150. 00:32:23 R2#show ip route . 4 subnets B 10.255.0.255.16. 00:25:11 C 10. 1 subnets B 150.www.168.0.0/24 is subnetted.255.0 [20/0] via 10.2.1.1.ccieuniversity.1.255.ccieuniversity. R1#show ip route 10. Loopback0 10.0 is directly connected.1. 0.0.255.1.0.2(44020) to 10.1.143: %TCP-6-BADAUTH: No *Jun 9 15:48:13.1. 1 subnets 10.1.0/24 is directly connected. S Stale Origin codes: i . > best.0. 1 subnets 10. 1 subnets 172.1.1.IGP.1. r RIB-failure.1 Status codes: s suppressed. * valid.incomplete .0.EGP.255.0 Metric LocPrf Weight Path 0 32768 i R2#show ip route Gateway of last resort is not set 10.incomplete Network *> 172.0 is directly connected. Serial1/0 C 192.263: %TCP-6-BADAUTH: No *Jun 9 15:48:15.255. Serial1/0 192.168.1. 1 subnets 172.0/24 is directly connected.1(179) 6、Check routing table and BGP routing table on R1 and R2.16.0/24 is subnetted.0. i .0 is directly connected. d damped.0/30 is subnetted. R1#show ip route Gateway of last resort is not set C 172. *Jun 9 15:48:03. h history. d damped. local router ID is 172. ? .16. 1 subnets C 10. i .1.255. * valid.0.0/24 is subnetted. 00:33:19 10.EGP.16.internal.255.1.IGP.1(179) from 10.255.1.168.1.1.168.ccieuniversity.1(179) from 10.0 is directly connected.2(44020) to 10.1(179) from 10.0/24 is subnetted.255.1. we can see all the route from BGP peer has gone.16.0.1.1.2 password cisco123 5、We'll get the below output soon.1. S Stale Origin codes: i .16. R1(config)#router bgp 64512 R1(config-router)#neighbor 10.1.255.255.0/24 Next Hop 0. > best.0.255. e .0. Loopback0 R2# R2#show ip bgp BGP table version is 4.255.255.com Gateway of last resort is not set B C C 172.0 [20/0] via 10. r RIB-failure.www.internal.0/24 is subnetted. Serial1/1 C R1# R1#show ip bgp BGP table version is 4. ? .16. Loopback0 10. Loopback0 4、Enable BGP authentication on R1.323: %TCP-6-BADAUTH: No *Jun 9 15:48:05.1. h history.0 is directly connected.2(44020) to 10.343: %TCP-6-BADAUTH: No MD5 MD5 MD5 MD5 digest digest digest digest from 10.1.255.1. local router ID is 192.2(44020) to 10.1 Status codes: s suppressed. e . 16.255.859: %BGP-5-ADJCHANGE: neighbor 10. scan interval 60 secs Neighbor 10.2.0.1. R2#show ip bgp summary …… 0 BGP filter-list cache entries using 0 bytes of memory BGP using 209 total bytes of memory BGP activity 2/1 prefixes.0 is directly connected.168.1.1. we can see there is already 1 prefix received. 1 subnets 172. we can see neighbor state changed to active.2 Up 10、Check BGP summary information on R1. local AS number 64512 BGP table version is 5.255.1.1.1.1.255. 00:03:28 R2#show ip route .255.559: %TCP-6-BADAUTH: No MD5 digest from 10.1 password cisco123 R2(config-router)#exit 9、BGP neighbor up again on both side.0/24 [20/0] via 10.1 V AS MsgRcvd MsgSent 4 64512 43 42 TblVer 0 InQ OutQ Up/Down State/PfxRcd 0 0 00:04:00 Active 8、Enable BGP authentication on R2. 1 subnets 10.ccieuniversity. Loopback0 10.1(179) *Jun 9 15:56:51. 2/1 paths.255.1. *Jun 9 15:54:47.www. we can see the BGP route is back.16. R1#show ip route Gateway of last resort is not set C C B 172.1.0. scan interval 60 secs Neighbor 10.0.2 V AS MsgRcvd MsgSent 4 64513 45 49 TblVer InQ OutQ Up/Down State/PfxRcd 5 0 0 00:01:33 1 11、Check routing table on R1 and R2.1.255.0. 3/1 paths.255.255.1. main routing table version 5 2 network entries using 202 bytes of memory 2 path entries using 96 bytes of memory 2 BGP path attribute entries using 120 bytes of memory 1 BGP AS-PATH entries using 24 bytes of memory 0 BGP route-map cache entries using 0 bytes of memory 0 BGP filter-list cache entries using 0 bytes of memory BGP using 442 total bytes of memory BGP activity 3/1 prefixes.0 is directly connected.0.2(16055) to 10.16.0/30 is subnetted. R2(config)#router bgp 64513 R2(config-router)#neighbor 10.1.168.0/24 is subnetted. R1#show ip bgp summary BGP router identifier 172.1.0 Next Hop 0. Serial1/1 192.0 Metric LocPrf Weight Path 0 32768 i 7、Check BGP summary information on R2.com Network *> 192. 168.16. Serial1/0 192.0. 1 subnets 10.16. R3#show ip route Gateway of last resort is not set 172.1.1. Lab Steps: 1、Finish basic IP configuration.1.1.1.ccieuniversity.ccieuniversity.0 [20/0] via 192.www. 2、Enable BGP on all routers.16.0.16. 00:01:06 . 00:04:26 10.com Gateway of last resort is not set B C C 172. 3、Check routing table on R3. 1 subnets 172.255.0/24 is directly connected.0 [20/0] via 10.255. 1 subnets B 172. Loopback0 By www.0/24 is subnetted.1.0.0/24 is subnetted.168.0 is directly connected.1.0/24 is subnetted.0.com Configuring BGP Local Preference Lab Topology Lab Purpose: 1、Master BGP local preference basic configuration.1. 1. 1 subnets 10.1.168.0/24 is directly connected.0.0/24 is subnetted.www.0.168.168. local router ID is 192.168.1.0.1 0 0 64512 i *>i192.1. Serial1/1 130.2 0 100 0 i *> 0.2.1.0 10.0/24 192.168.IGP.0/24 10.0/24 is subnetted.168. R3#show ip bgp BGP table version is 7.2.1.incomplete Network Next Hop Metric LocPrf Weight Path * i10.0 0.1.1.1.1. S Stale Origin codes: i .internal.0/24 192.2 0 100 0 64512 i *> 192. 00:01:06 192.168.2.130.168.1 0 0 64512 i *> 192. R4#show ip route Gateway of last resort is not set B C B B C 172. 1 subnets 130.1.0.2 0 100 0 i .1. d damped.0 [20/0] via 192.0/24 is subnetted.1. > best. we can use local preference feature.1. * valid.2.1.130.1.168.168.1.1. h history. 1 subnets 172.0/24 is subnetted.0.2. 00:02:18 192.0. FastEthernet0/0 5、According to the above information R3 choose the low speed link R2 as the next hop to network 130.16.1. ? . 6、Check BGP routing table on R3.1.1.2.168.0/24 [200/0] via 10.1.1.0 is directly connected.0.1.ccieuniversity.0 is directly connected.0/24 is subnetted.0/24. 1 subnets 130.0 [20/0] via 192. 1 subnets 10.EGP.1.1.1.1.0/24 [200/0] via 10.2. Serial1/0 192.2.2. 00:02:18 192. 00:00:11 4、Check routing table on R4.168.0.2 0 100 0 64512 i *> 192.168.168.0 0 32768 i * i130.0/24 is directly connected. e .16.1. in order to choose the high speed link as next hop.0.com C B C B 10.16. r RIB-failure.1.130.0 0 32768 i * 192.2 Status codes: s suppressed.0 [20/0] via 192. i .130.168.0.130. Serial1/0 130.1 0 64512 i * i172.2.130. 00:02:18 10.0. 2.0.0 0 32768 i * 192. * valid.incomplete Network Next Hop Metric LocPrf Weight Path * i10.com * 192. r RIB-failure. h history.1. i .2.1.1 0 64512 i 7、Check BGP routing table on R4.0/24 192.0/24 192.168.1. R4(config)#router bgp 64513 R4(config-router)#bgp default local-preference 200 R4(config-router)#exit R4(config)# 10、Check BGP routing table on R3.1. local router ID is 192.1.0 0 32768 i *>i130.ccieuniversity.2.1.1 0 100 0 64512 i *> 192.1. h history.1.130.2 0 64512 i *> 192.2. ? .1.168.168. ? .2 0 0 64512 i * i172.incomplete Network Next Hop Metric LocPrf Weight Path * i10.0/24 192.2.internal.1 0 100 0 i *> 0.168.2 Status codes: s suppressed.168.0. d damped.168.168.1.0.0 0 32768 i * i130.168.2.168.1. R3#show ip bgp BGP table version is 10.0/24 10. R4#show ip bgp BGP table version is 9.2 0 200 0 i *> 0.0/24 10.EGP.1 0 100 0 i * 192.EGP. i . d damped.1.2 0 0 64512 i *>i192.0.168.2.2 0 200 0 64512 i .0.IGP. r RIB-failure.1. local router ID is 192. e . S Stale Origin codes: i .1.0 10.internal.1.1 Status codes: s suppressed. > best.16. then R3 will prefer R4 as next hop.0.1.0 0. > best.1 0 100 0 64512 i *> 192.IGP.1. * valid.130.168. e . 9、Change default local preference to 200 on R4.1.www. S Stale Origin codes: i .2 0 0 64512 i 8、If BGP routes from R4 have a higher local preference than R2.168. www.ccieuniversity.com * 192.168.1.1 *>i172.16.1.0/24 192.168.2.2 * 192.168.1.1 0 * i192.168.1.0 192.168.2.2 *> 0.0.0.0 0 * 192.168.1.1 0 *>i192.168.2.0 10.1.1.2 * 192.168.1.1 0 64512 i 0 200 0 64512 i 0 64512 i 0 200 0 64512 i 32768 i 0 64512 i 0 200 0 i 0 64512 i 11、Check routing table on R3 again, we can see this time R1 is the next hop for network 130.130.1.0/24. R3#show ip route Gateway of last resort is not set B C B C B 172.16.0.0/24 is subnetted, 1 subnets 172.16.1.0 [200/0] via 192.168.2.2, 00:06:41 10.0.0.0/24 is subnetted, 1 subnets 10.1.1.0 is directly connected, Serial1/1 130.130.0.0/24 is subnetted, 1 subnets 130.130.1.0 [200/0] via 192.168.2.2, 00:06:41 192.168.1.0/24 is directly connected, Serial1/0 192.168.2.0/24 [200/0] via 10.1.1.2, 00:26:51 12、Next hop attribute will not change between IBGP peers, unless we force them to change. R4(config)#router bgp 64513 R4(config-router)#neighbor 10.1.1.1 next-hop-self 13、Check routing table on R3, we can see R4 is the next hop for network 130.130.1.0/24 now. R3#show ip route B C B C B 172.16.0.0/24 is subnetted, 1 subnets 172.16.1.0 [200/0] via 10.1.1.2, 00:01:32 10.0.0.0/24 is subnetted, 1 subnets 10.1.1.0 is directly connected, Serial1/1 130.130.0.0/24 is subnetted, 1 subnets 130.130.1.0 [200/0] via 10.1.1.2, 00:01:32 192.168.1.0/24 is directly connected, Serial1/0 192.168.2.0/24 [200/0] via 10.1.1.2, 00:32:58 14、Track network 130.130.1.0/24 on R3. www.ccieuniversity.com R3#traceroute 130.130.1.1 Type escape sequence to abort. Tracing the route to 130.130.1.1 1 10.1.1.2 92 msec 72 msec 72 msec 2 192.168.2.2 212 msec * 120 msec 15、Ping test on R3. R3#ping 130.130.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 130.130.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 96/130/168 ms By www.ccieuniversity.com Using Route Maps to Configuring BGP Local Preference Lab Topology Lab Purpose: 1、Master route-map basic configuration. 2、Use route-map to set local preference, to make R3 choose R4 as the next hop of network 130.130.1.0/24, and R2 as the next hop of network 150.150.1.0/24. www.ccieuniversity.com Lab Steps: 1、Finish basic IP configuration. 2、Enable BGP on all routers. 3、Check routing table on R3. R3#show ip route Gateway of last resort is not set 172.16.0.0/24 is subnetted, 1 subnets 172.16.1.0 [20/0] via 192.168.1.1, 00:04:30 10.0.0.0/24 is subnetted, 1 subnets C 10.1.1.0 is directly connected, Serial1/1 130.130.0.0/24 is subnetted, 1 subnets B 130.130.1.0 [20/0] via 192.168.1.1, 00:04:30 C 192.168.1.0/24 is directly connected, Serial1/0 B 192.168.2.0/24 [200/0] via 10.1.1.2, 00:06:07 150.150.0.0/24 is subnetted, 1 subnets B 150.150.1.0 [20/0] via 192.168.1.1, 00:04:30 We can see the default next hop for both network 130.130.1.0/24 and 150.150.1.0/24 is R2 192.168.1.1 B 4、To match the requirement we only need to change the next hop for network 130.130.1.0/24 to R4 10.1.1.2. This time we can not just change default local preference, it must match the specific prefix 130.130.1.0/24. R4(config)#access-list 1 permit 130.130.1.0 0.0.0.255 R4(config)# R4(config)#route-map set_lp permit 10 R4(config-route-map)#match ip address 1 R4(config-route-map)#set local-preference 200 R4(config-route-map)#exit R4(config)# R4(config)#route-map set_lp permit 20 R4(config-route-map)#exit R4(config)# R4(config)#router bgp 64513 R4(config-router)#neighbor 192.168.2.2 route-map set_lp in R4(config-router)#exit R4(config)#exit R4#clear ip bgp * soft in 5、Check BGP routing table on R3, we can see the next hop for network 130.130.1.0/24 is R1 192.168.2.2, very close now, just need to make R4 10.1.1.2 as the direct next hop. 0/24 192.1. 1 subnets 172.1.150. 1 subnets 10. 1 subnets 150.168.0.1.1 0 64512 i *>i 10.2 0 100 0 64512 i *> 192.0/24 10.1.1.1.www.1.168.2. R3#show ip route Gateway of last resort is not set B C B C B B 172.168.0.2 0 200 0 64512 i * i150.16.150.1.1. 00:54:00 10. R3#show ip bgp Network Next Hop Metric LocPrf Weight Path ………… * 130.0.2.1 0 0 64512 i ………… 8、Check the routing table on R3 we can see the same thing.168.1.1.1. 00:54:00 .168.1.2.0/24 is subnetted.0/24.1 0 0 64512 i ………… 6、Modify BGP next hop attribute on R4.com R3#show ip bgp Network Next Hop Metric LocPrf Weight Path ………… * 130.130.1.168.168. this time R4 10.130. Serial1/0 192.1.0/24 192.1 0 64512 i *>i 192.16.1.1 next-hop-self R4(config-router)#exit 7、Check BGP routing table on R3 again.ccieuniversity.1.130.1.1.1. R4(config)#router bgp 64513 R4(config-router)#neighbor 10. 00:55:37 150.0/24 is subnetted.130.0 [20/0] via 192.1.0.0/24 192.1.1.0 [200/0] via 10.1.150.1.0 [20/0] via 192.150.1.0/24 is subnetted.0.2. 00:02:46 192.1.0/24 [200/0] via 10.0/24 is directly connected.2. Serial1/1 130.1.1.168.168.1.2 0 200 0 64512 i * i150.130.1.168.0 is directly connected.2 is the next hop for network 130. 1 subnets 130.0/24 is subnetted.2 0 100 0 64512 i *> 192. 0/24 on R3.150.1 Type escape sequence to abort.1.1.2.1.130.1 Type escape sequence to abort.130.0/24 and 150. Tracing the route to 150.2 96 msec * 80 msec R3# R3#traceroute 150.168.1.1.2 16 msec 48 msec 80 msec 2 192.com Configuring BGP Multi-Exit Discriminator Lab Topology Lab Purpose: .www. R3#traceroute 130.1.1.1. Tracing the route to 130.150.1 1 192.1 1 10.150.130.ccieuniversity.1 40 msec * 24 msec By www.168.ccieuniversity.1.com 9、Track network 130. 1.1.130.168.1 0 64512 i *i 192.0.1.168.com 1、Understanding BGP MED attribute principal.1. 00:08:58 C 192. 1 subnets C 10.150.0 is directly connected.1 0 0 64512 i *i 192.2. 00:08:58 10.2. 2、Enable BGP on all routers.1.168.2.1. R3#show ip bgp Network Next Hop Metric LocPrf Weight Path ……… *> 130.1.0. 00:08:58 We can see the default next hop for both network 130.1.150. 3、Check routing table on R3. 1 subnets B 130.2.0/24 is subnetted. and how does it affects AS inbound traffic. Lab Steps: 1、Finish basic IP configuration.150.0/24 192.130.ccieuniversity. 5、Check BGP routing table to see the default MED on R3 and R4.0/24 to R4 10.0/24.130.168. and R2 as the next hop of network 150.2 0 100 0 64512 i ……… R4#show ip bgp Network Next Hop Metric LocPrf Weight Path .16.1 B 4、To match the requirement we only need to change the next hop for network 130.1.1.0.1.1.0/24 is subnetted. to make R3 choose R4 as the next hop of network 130.1.1.2 0 100 0 64512 i *> 150.0/24 and 150.0 [20/0] via 192. Serial1/0 B 192.130.0/24 is R2 192.0/24.0/24 is subnetted.168.1.2.150.1.1.1. 1 subnets 172.168.0 [20/0] via 192.130.1.150.16.1.168.168. 2、Use route-map to set MED.0/24 192.0.0/24 [200/0] via 10. 00:08:58 150.0 [20/0] via 192.www. R3#show ip route Gateway of last resort is not set 172.168.1.1.130.0/24 is directly connected. Serial1/1 130.168.1.1.1.0.1. 1 subnets B 150.0/24 is subnetted. 0/24 is R1 192.168.1.0/24 192.0 0. just need to make R4 10.1.2.1.130.150.1 100 0 64512 i *>i 192.168. R4(config)#router bgp 64513 R4(config-router)#neighbor 10.168.1.0.0/24 higher than default value on R2.1.1.1.1.130.130.1.0/24 192.2 0 100 0 64512 i *> 150.ccieuniversity.1 0 0 64512 i *i 192. R2(config)#access-list 1 permit 130.1 next-hop-self R4(config-router)#exit R4(config)#exit .2 as the direct next hop.2 route-map set_med out R2(config-router)#exit R2(config)# R2#clear ip bgp * soft out 7、Check BGP routing table to see the default MED on R3.168. very close now.0/24 192.1.130.150.2 0 0 64512 i * i150.130.2 0 64512 i ……… 6、For MED the lower the better.168.255 R2(config)# R2(config)#route-map set_med permit 10 R2(config-route-map)#match ip address 1 R2(config-route-map)#set metric 100 R2(config-route-map)#exit R2(config)# R2(config)#route-map set_med permit 20 R2(config-route-map)#exit R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 192.1.1.1.1.0/24 192.2.168.2.2 0 100 0 64512 i ……… R3# 8、Modify BGP next hop attribute on R4.2.1. so we could set MED for network 130.1.168.2.com ……… * i130.0. R3#show ip bgp Network Next Hop Metric LocPrf Weight Path ……… * 130.168.168.www.1 0 100 0 64512 i *> 192. we can see the next hop for network 130.1 0 100 0 64512 i *> 192.168.2. 2.1 0 0 64512 i *i 10. 1 subnets 130.1.2 0 100 0 64512 i *> 150.1 100 0 64512 i *>i 10.2 128 msec * 84 msec By www.1.0.0.1. 00:48:49 10.130.1.ccieuniversity.ccieuniversity.130.1.150.150.168.1.0.130.168.1. Tracing the route to 130.130.1.1. R3#traceroute 130.168.1.1.1.0/24 is subnetted.130.0 [20/0] via 192.1.2 32 msec 64 msec 80 msec 2 192.168. Serial1/1 130.0.1 Type escape sequence to abort. we can see they are match the requirement now.1.0/24 is subnetted.1 1 10. 00:48:49 10、Track network 130.1.2.150. 1 subnets 10.0/24 is subnetted.16.1. Serial1/0 192.0.16.1.1.0/24 [200/0] via 10.com .1.2 0 100 0 64512 i ……… R3# R3#show ip route Gateway of last resort is not set B C B C B B 172. 00:03:50 192.168.1.0 [20/0] via 192. 00:48:49 150.www.2.1.2.1.1.0/24 192. 1 subnets 150.1. R3#show ip bgp Network Next Hop Metric LocPrf Weight Path ……… * 130.168.0/24 is subnetted.0 [200/0] via 10.0/24 192.130.0/24 on R3.1.0/24 is directly connected.1.0 is directly connected. 1 subnets 172.168.1.com 9、Check routing table and BGP routing table on R3. 1.www.1 Metric LocPrf Weight 0 0 0 0 0 32768 0 Path 64515 64513 64513 i 64515 64514 i 64514 i i 64514 i .1.2.EGP.0 is directly connected.2. ? . 00:16:25 is subnetted.4.2 0.0 Next Hop 192. > best.4.4.168.0. * valid.0 *> * 192.internal.1. d damped.4.3.1.0. h history.2 192.0 192.168. S Stale Origin codes: i . 00:16:39 4、Check BGP routing table on R1.0. local router ID is 192.168.0/24 150.1.168.150.2.168.168.150.1.2.168.0/24 150.0/24 3、Check routing table on R1.168. Lab Steps: 1、Finish basic IP configuration. FastEthernet0/0 is directly connected.168. r RIB-failure.0/24 192.168. i .ccieuniversity.150. 00:16:39 [20/0] via 192.168.0/24 192.1 192.1 as next hop for network 150. 1 subnets [20/0] via 192.1.4.0/24 192. e . 2、Enable BGP on all routers and use BGP WIGHT attribute to make sure R1 will choose AS 64515 R4 192.1. Serial1/1 [20/0] via 192.0/24 *> * 192.168.2 Status codes: s suppressed.4. R1#show ip route Gateway of last resort is not set C C B B B 192.incomplete Network * 150.com Configuring BGP Weight Lab Topology Lab Purpose: 1、Master the basic configuration of BGP WIGHT attribute.168.IGP.168.1.1.168.150. R1#show ip bgp BGP table version is 7. 2 192.1.168.168.EGP.EIGRP external. S Stale Origin codes: i .0/24 is AS 64513 R2 192.0.4.0.2 Status codes: s suppressed.0 * * 192. 7、Use BGP WIGHT attribute to switch it to AS 64515 R4 192.1.168.2 192.connected.1.1.1.internal.0/24 * * 192.OSPF.1. S .1.0 * *> 192.0.168. up for 02:09:04 6、according to the above output information we can see the next hop for network 150.168.0 * * 192.168.0. remote router ID 192.1. remote AS 64515.1.168. R1#show ip bgp neighbors BGP neighbor is 192. e .168.168.4.2 weight 50 R1(config-router)#exit R1#clear ip bgp * soft 8、Check BGP routing table and routing table on R1.EIGRP.4.150. M . O .com *> *> 192.168.168. external link BGP version 4.mobile. h history.1 192.OSPF inter area .2 0.2 192.0 *> *> 192. remote AS 64513. EX .1.1 BGP state = Established.4.1 192.0 0 0 0 0 0 0 0 0 32768 64513 64515 64513 64515 i i i 64514 i i 5、Check BGP neighbor table on R1.168.2.168.static. * valid.168. R1#show ip bgp BGP table version is 13.168.168.150.1 192.3.RIP. ? .2 192. remote router ID 192.4. d damped.0 192.4.1 192.4.3.4. external link BGP version 4.0.4. > best.ccieuniversity.0 *> 192. r RIB-failure.1.1 weight 100 R1(config-router)#neighbor 192.0 *> R1# Next Hop 192.www.4.2. IA .incomplete Network *> 150. R .1 BGP state = Established.1.168.0.168.168.168.1 0. local router ID is 192.168.4. R1(config)#router bgp 64512 R1(config-router)#neighbor 192. up for 02:10:56 ………… BGP neighbor is 192. B . i .4.168.168.IGP.168.0 Metric LocPrf Weight 100 50 0 50 0 32768 100 0 50 0 100 50 0 100 0 32768 Path 64515 64513 64513 i 64515 64513 64515 64513 64515 i 64514 i 64514 i i 64514 i i i 64514 i i R1#show ip route Codes: C .1 0.1 on R1.1.2 right now.4.BGP D .2.168.2 192.168.168. 4.168.168.168. Serial1/1 [20/0] via 192.0/24 192.1 as the next hop for all the networks.candidate default.0 is directly connected.0.168.168.168.150. FastEthernet0/0 is directly connected.OSPF NSSA external type 2 E1 .4.0. 00:03:45 [20/0] via 192.4. R1 is now using R4 192.2.1.1.IS-IS level-2 ia .1.per-user static route o .1. FastEthernet0/0 is directly connected.IS-IS summary.168.168.168.4.0/24.255 R1(config)# R1(config)#route-map set_weight permit 10 R1(config-route-map)#match ip address 1 R1(config-route-map)#set weight 100 R1(config-route-map)#exit R1(config)# R1(config)# R1(config)#route-map set_weight permit 20 R1(config-route-map)#exit R1(config)# R1(config)#router bgp 64512 R1(config-router)#neighbor 192.periodic downloaded static route Gateway of last resort is not set C C B B B 192.168.1.1 weight 100 R1(config-router)#exit R1(config)# R1(config)#access-list 1 permit 150.168.0/24.2 weight 50 R1(config-router)#no neighbor 192.OSPF external type 2 i . 00:03:45 is subnetted.0/24 150.IS-IS inter area. what we want is just for network 150.4.168.4.0 0. P .1.ccieuniversity. 00:01:01 9、According to the above output information.www.1.168. U .168.1. L2 .0/24 192.168. L1 .0 is directly connected. E2 .0. * .ODR.3.1 route-map set_weight in R1(config-router)#exit R1(config)#exit R1#clear ip bgp * soft 11、Check routing table on R1. 00:00:00 .168.IS-IS. 1 subnets [20/0] via 192. Serial1/1 [20/0] via 192.1.1.0/24 192.0.0/24 192.150.150.OSPF NSSA external type 1.4. su .150.0/24 150.150.4.com N1 .1. R1(config)#router bgp 64512 R1(config-router)#no neighbor 192. 00:01:01 [20/0] via 192.168.4.2. 03:12:01 is subnetted.OSPF external type 1.0/24 150.4.2.150.0/24 192. 10、remove the default weight configuration.3.0/24 150. 1 subnets [20/0] via 192. and use route-map to match the specific network 150.150.IS-IS level-1.1. R1#show ip route Gateway of last resort is not set C C B B B 192.1.168. N2 .0/24 192.1. 0.0 192.4.168.2. Tracing the route to 150. r RIB-failure. Sending 5.2 192. S Stale Origin codes: i .168.1 1 192.1 192. 100-byte ICMP Echos to 150.1.168. * valid.0 Next Hop 192.1.4.1 16 msec 60 msec 64 msec 2 192.3.1.internal.1. ? .168.com Affects the BGP Routing By Path Prepend Lab Topology .2 192.150.IGP.ccieuniversity.150.0 192.168.2 0.com 12、Check BGP routing table on R1.1.1 Type escape sequence to abort.1 192.1 192.1 0.2 Status codes: s suppressed.4.168.0 192.168.4. i . h history.EGP.1.ccieuniversity. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).168.www.168.168.3.0 192. d damped. local router ID is 192. > best.0.2 192.4.168.1.4.0.168.4.1 Type escape sequence to abort.1.168.0 Metric LocPrf Weight 100 0 0 0 0 32768 0 0 0 0 0 0 0 0 0 32768 Path 64515 64513 64513 i 64515 64513 64515 64513 64515 i 64514 i 64514 i i 64514 i i i 64514 i i 13、Ping test and trace test on R1.1. R1#show ip bgp BGP table version is 21.0/24 192.0.150. e .168.150.1 [AS 64515] 144 msec * 32 msec By www.1.150.1.incomplete *> * * *> * *> *> * * *> Network 150. round-trip min/avg/max = 68/126/216 ms R1# R1#traceroute 150. R1#ping 150.168. 2 192.168. FastEthernet0/0 Path 64515 64513 64515 64513 i 64515 64513 64515 64513 64515 64513 i 64514 i 64514 i 64514 64513 i i 64514 i i i 64514 i i 64514 64515 i .4.0/24 is directly connected. > best.1.4.com Lab Purpose: 1、Master BGP AS Path prepend configuration.1 as next hop for network 150.IGP.EGP.4. R1#show ip route Gateway of last resort is not set C 192.0 192.1 192.1.0 Next Hop 192. 2、Enable BGP on all routers and use BGP AS Path prepend attribute to make sure R1 will choose R4 192.1. * valid.0 192.168. r RIB-failure.2 0.2 192. d damped.168.4.0.1 192.168.168.168.0 Metric LocPrf Weight 0 0 0 0 0 0 32768 0 0 0 0 0 0 0 0 0 0 32768 4、Check routing table on R1. R1#show ip bgp BGP table version is 6.2 192.0.150.168. S Stale Origin codes: i .168.0.1 192.1. i . e .ccieuniversity.1 192.2 Status codes: s suppressed.3.0 192.0 192.168.4.4. local router ID is 192.168.www.168.2.4.168.1 192.0/24 3、Check BGP routing table on R1.0/24 192.1.internal.2 0.4. Lab Steps: 1、Finish basic IP configuration.168.4.168.150. ? – incomplete * *> * * *> * *> *> * * * *> Network 150.168.0.1.168. h history.1.168.1. www.ccieuniversity.com C B B B 192.168.1.0/24 192.168.2.0/24 192.168.3.0/24 150.150.0.0/24 150.150.1.0 is directly connected, Serial1/1 [20/0] via 192.168.1.2, 00:01:20 [20/0] via 192.168.4.1, 00:01:20 is subnetted, 1 subnets [20/0] via 192.168.1.2, 00:01:20 5、The default next hop for network 150.150.1.0/24 on R1 is 192.168.1.2, use AS prepend to switch it to 192.168.4.1 6、Set AS prepend on R3 for network 150.150.1.0/24, to make the AS path which going trough R2 longer than before. R3(config)#access-list 1 permit 150.150.1.0 0.0.0.255 R3(config)# R3(config)#route-map set_prepend permit 10 R3(config-route-map)#match ip address 1 R3(config-route-map)#set as-path prepend 64514 64514 R3(config-route-map)#exit R3(config)# R3(config)#route-map set_prepend permit 20 R3(config-route-map)#exit R3(config)# R3(config)#router bgp 64514 R3(config-router)#neighbor 192.168.2.1 route-map set_prepend out R3(config-router)#exit R3(config)#exit R3#clear ip bgp * soft out 7、Check BGP routing table on R1. R1#show ip bgp *> * * *> * *> *> * * *> Network 150.150.1.0/24 192.168.1.0 192.168.2.0 192.168.3.0 192.168.4.0 Next Hop 192.168.4.1 192.168.1.2 192.168.1.2 0.0.0.0 192.168.4.1 192.168.1.2 192.168.4.1 192.168.1.2 192.168.4.1 0.0.0.0 Metric LocPrf Weight 0 0 0 0 0 32768 0 0 0 0 0 0 0 0 0 32768 8、Check routing table on R1. R1#show ip route C C B B B 192.168.4.0/24 192.168.1.0/24 192.168.2.0/24 192.168.3.0/24 150.150.0.0/24 150.150.1.0 is directly connected, FastEthernet0/0 is directly connected, Serial1/1 [20/0] via 192.168.1.2, 00:12:54 [20/0] via 192.168.4.1, 00:12:54 is subnetted, 1 subnets [20/0] via 192.168.4.1, 00:09:42 By www.ccieuniversity.com Path 64515 64513 64513 i 64515 64513 64515 64513 64515 i 64514 i 64514 64514 64514 i i 64514 i i i 64514 i i www.ccieuniversity.com Configuring BGP Routes Reflector Lab Topology Lab Purpose: Master BGP route reflector configuration. Lab Steps: 1、Finish basic IP configuration. 2、Enable BGP on all routers. R3(config)#router bgp 100 R3(config-router)#neighbor 192.168.1.5 remote-as 100 R3(config-router)#neighbor 172.24.1.18 remote-as 100 R3(config-router)#network 200.100.50.0 mask 255.255.255.0 R1(config)#router bgp 100 R1(config-router)#neighbor 192.168.1.6 remote-as 100 R2(config)#router bgp 100 R2(config-router)#neighbor 172.24.1.17 remote-as 100 R2(config-router)#network 199.9.9.0 mask 255.255.255.0 3、Check BGP routing table on R1 R2 R3. R2#show ip bgp Network Next Hop Metric LocPrf Weight Path *> 199.9.9.0 0.0.0.0 0 32768 i r>i200.100.50.0 172.24.1.17 0 100 0 i R3#show ip bgp Network Next Hop r>i199.9.9.0 172.24.1.18 Metric LocPrf Weight Path 0 100 0 i R1#show ip bgp Network Next Hop Metric LocPrf Weight Path www.ccieuniversity.com r>i200.100.50.0 192.168.1.6 0 100 0i R1#show ip route R 200.100.50.0/24 [120/1] via 192.168.1.6, 00:00:11, Serial0/0 R 172.24.0.0/16 [120/1] via 192.168.1.6, 00:00:11, Serial0/0 192.168.1.0/30 is subnetted, 1 subnets C 192.168.1.4 is directly connected, Serial0/0 As it's not a full mesh, so R1 can not learn BGP route from R2 because of the BGP split horizon attribute. 4、Enable route reflector on R3 to solve this issue. R3(config)#router bgp 100 R3(config-router)#neighbor 192.168.1.5 route-reflector-client R3(config-router)#neighbir 172.24.1.18 route-reflector-client R1#show ip bgp Network Next Hop Metric LocPrf Weight Path *>i199.9.9.0 172.24.1.18 0 100 0 i *>i200.100.50.0 192.168.1.6 0 100 0 i R1#show ip route B 199.9.9.0/24 [200/0] via 172.24.1.18, 00:00:52 B 200.100.50.0/24 [200/0] via 192.168.1.6, 00:01:48 R 172.24.0.0/16 [120/1] via 192.168.1.6, 00:00:14, Serial0/0 192.168.1.0/30 is subnetted, 1 subnets C 192.168.1.4 is directly connected, Serial0/0 Now R1 could learn BGP route from R2.、 By www.ccieuniversity.com Configuring BGP Confederation Lab Topology 1.1.6 next-hop-self R4(config-router)#neighbor 10.5 remote-as 65502 R3(config-router)#neighbor 10.4 mask 255.252 R4(config)#router bgp 65502 R4(config-router)#bgp confederation identifier 3000 R4(config-router)#bgp confederation peers 65501 65504 R4(config-router)#neighbor 10.1.1.0 mask 255.255.1.1.1.1.0 R3(config-router)#network 10.1.255.252 R4(config-router)#network 10.0 mask 255. R3(config)#router bgp 65501 R3(config-router)#bgp confederation identifier 3000 R3(config-router)#bgp confederation peers 65502 R3(config-router)#neighbor 10.www. set BGP confederation AS according to the topology.16.1.8 mask 255.255.1.1.1.1.1.1.1.255.1.1.255.1. 2、Enable BGP on all routers.1 remote-as 1000 R3(config-router)#neighbor 10.5 next-hop-self R3(config-router)#network 172.255.4 mask 255.com Lab Purpose: Master BGP route reflector configuration.255.1.1.255.10 next-hop-self R4(config-router)#neighbor 10.1.1.252 R3(config-router)#network 10.1.ccieuniversity. Lab Steps: 1、Finish basic IP configuration.10 remote-as 65502 R4(config-router)#neighbor 10.22 next-hop-self R4(config-router)#network 10.255.1.22 remote-as 65504 R4(config-router)#neighbor 10.252 .255.6 remote-as 65501 R4(config-router)#neighbor 10.1. www.ccieuniversity.com R4(config-router)#network 10.1.1.20 mask 255.255.255.252 R4(config-router)#no synchronization R5(config)#router bgp 65502 R5(config-router)#bgp confederation identifier 3000 R5(config-router)#bgp confederation peers 65503 65504 R5(config-router)#neighbor 10.1.1.9 remote-as 65502 R5(config-router)#neighbor 10.1.1.9 next-hop-self R5(config-router)#neighbor 10.1.1.13 remote-as 65503 R5(config-router)#neighbor 10.1.1.13 next-hop-self R5(config-router)#neighbor 10.1.1.26 remote-as 65504 R5(config-router)#neighbor 10.1.1.26 next-hop-self R5(config-router)#network 10.1.1.8 mask 255.255.255.252 R5(config-router)#network 10.1.1.12 mask 255.255.255.252 R5(config-router)#network 10.1.1.24 mask 255.255.255.252 R5(config-router)#no synchronization R6(config)#router bgp 65503 R6(config-router)#bgp confederation identifier 3000 R6(config-router)#bgp confederation peers 65502 R6(config-router)#neighbor 10.1.1.18 remote-as 2000 R6(config-router)#neighbor 10.1.1.14 remote-as 65502 R6(config-router)#neighbor 10.1.1.14 next-hop-self R6(config-router)#network 172.16.2.0 mask 255.255.255.0 R6(config-router)#network 10.1.1.12 mask 255.255.255.252 R6(config-router)#network 10.1.1.16 mask 255.255.255.252 R7(config)#router bgp 65504 R7(config-router)#bgp confederation identifier 3000 R7(config-router)#bgp confederation peers 65502 R7(config-router)#neighbor 10.1.1.21 remote-as 65502 R7(config-router)#neighbor 10.1.1.21 next-hop-self R7(config-router)#neighbor 10.1.1.30 remote-as 65504 R7(config-router)#neighbor 10.1.1.30 next-hop-self R7(config-router)#network 10.1.1.20 mask 255.255.255.252 R7(config-router)#network 10.1.1.28 mask 255.255.255.252 R7(config-router)#no synchronization R8(config)#router bgp 65504 R8(config-router)#bgp confederation identifier 3000 R8(config-router)#bgp confederation peers 65502 R8(config-router)#neighbor 10.1.1.25 remote-as 65502 R8(config-router)#neighbor 10.1.1.25 next-hop-self R8(config-router)#neighbor 10.1.1.29 remote-as 65504 www.ccieuniversity.com R8(config-router)#neighbor 10.1.1.29 next-hop-self R8(config-router)#network 10.1.1.24 mask 255.255.255.252 R8(config-router)#network 10.1.1.28 mask 255.255.255.252 R8(config-router)#no synchronization 3、Check BGP routing table on R1 and R2 we can see the confederation AS have been hidden from outside AS. R1#show ip bgp BGP table version is 13, local router ID is 192.168.1.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop * 10.1.1.0/30 10.1.1.2 *> 0.0.0.0 *> 10.1.1.4/30 10.1.1.2 *> 10.1.1.8/30 10.1.1.2 *> 10.1.1.12/30 10.1.1.2 *> 10.1.1.16/30 10.1.1.2 *> 10.1.1.20/30 10.1.1.2 *> 10.1.1.24/30 10.1.1.2 *> 10.1.1.28/30 10.1.1.2 *> 172.16.1.0/24 10.1.1.2 *> 172.16.2.0/24 10.1.1.2 *> 192.168.1.0 0.0.0.0 *> 192.168.2.0 10.1.1.2 Metric LocPrf Weight Path 0 0 3000 i 0 32768 i 0 0 3000 i 0 3000 i 0 3000 i 0 3000 i 0 3000 i 0 3000 i 0 3000 i 0 0 3000 i 0 3000 i 0 32768 i 0 3000 2000 i R2#show ip bgp BGP table version is 14, local router ID is 192.168.2.1 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop *> 10.1.1.0/30 10.1.1.17 *> 10.1.1.4/30 10.1.1.17 *> 10.1.1.8/30 10.1.1.17 *> 10.1.1.12/30 10.1.1.17 * 10.1.1.16/30 10.1.1.17 *> 0.0.0.0 *> 10.1.1.20/30 10.1.1.17 *> 10.1.1.24/30 10.1.1.17 *> 10.1.1.28/30 10.1.1.17 *> 172.16.1.0/24 10.1.1.17 *> 172.16.2.0/24 10.1.1.17 Metric LocPrf Weight Path 0 3000 i 0 3000 i 0 3000 i 0 0 3000 i 0 0 3000 i 0 32768 i 0 3000 i 0 3000 i 0 3000 i 0 3000 i 0 0 3000 i www.ccieuniversity.com *> 192.168.1.0 *> 192.168.2.0 10.1.1.17 0.0.0.0 0 0 3000 1000 i 32768 i 4、Check BGP routing table on R3 for the specific prefix 10.1.1.4/30 R3#show ip bgp 10.1.1.4/30 BGP table version is 14, local router ID is 172.16.1.6 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path *> 10.1.1.4/30 172.16.1.5 0 (65502 65503)i We can see the confederation AS are in curves. By www.ccieuniversity.com Using Route Tag to Store BGP AS-Path Lab Topology Lab Purpose: 1、Solve AS-PATH attribute missing issue during BGP and IGP redistribution. 2、Master route tag store and restore BGP AS-PATH attribute configuration. Lab Steps: 1、Finish basic IP configuration. R3 R4.255 area 0 R3(config-router)#exit R3(config)#exit 3、Check OSPF neighbor relationship between R2 and R3.1. No BGP relationship between R2 R3.168.168.1.168.255 area 0 R2(config-router)#exit R2(config)#exit R3(config)#router ospf 1 R3(config-router)#network 172. R1(config)#router bgp 64512 R1(config-router)#neighbor 192. R2#show ip bgp summary Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 192.0.1 1 FULL/BDR 00:00:32 172.www.255.255.255.0 mask 255.2.1.1 remote-as 64512 R2(config-router)#network 192.0 mask 255.16.168.0 0.0 R3(config-router)#exit R3(config)#exit R4(config)#router bgp 64514 R4(config-router)#neighbor 192.2 remote-as 64514 R3(config-router)#network 192.16. R2#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 192.2 FastEthernet0/0 R2# 4、Establish BGP relationship between R1 R2.255.1 remote-as 64513 5、Confirm BGP relationship on R2 and R3.1.2.16.0.0.1.0 R2(config-router)#exit R2(config)#exit R3(config)#router bgp 64513 R3(config-router)#neighbor 192.168.168.1.255.1.0.2 remote-as 64513 R1(config-router)#network 130.2.0 R1(config-router)#exit R2(config)#router bgp 64513 R2(config-router)#neighbor 192.255.com 2、Config OSPF between R2 and R3.130.0 0.ccieuniversity.2.168.0 mask 255. R2(config)#router ospf 1 R2(config-router)#network 172.1.168.1 4 64512 8 8 3 0 0 00:03:37 2 . 168.1.16. we can see routes are there. 00:03:18 .168. 00:03:18 130.168.0/24 is directly connected.168. R2(config)#router ospf 1 R2(config-router)#redistribute bgp 64513 subnets R2(config-router)#exit R2(config)# R2(config)#router bgp 64513 R2(config-router)#redistribute ospf 1 match external internal R2(config-router)# R3(config)#router bgp 64513 R3(config-router)#redistribute ospf 1 match internal external R3(config-router)#exit R3(config)# R3(config)#router ospf 1 R3(config-router)#redistribute bgp 64513 subnets R3(config-router)#exit R3(config)#exit 8、Check routing table again on R4.ccieuniversity.www.2 4 64514 6 6 2 0 0 00:01:46 1 6、Check routing table on R4.168. 00:03:18 B 192.2.0/24 [20/1] via 192.0/24 is subnetted. R4#show ip route ………… Gateway of last resort is not set 172. Serial1/0 7、Config redistribution between BGP and OSPF on R2 R3.2.130.2.0/24 is subnetted. R4#show ip route Gateway of last resort is not set C 192.1.2.0.2.1.1. we can see no routes have been learn.130.16.com R3#show ip bgp summary Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 192.0 [20/0] via 192.1.168. 1 subnets B 130. 1 subnets B 172.0 [20/1] via 192.1.0. 168.IGP.2. and restore it by redistribution from OSPF to BGP on R3.1. R3(config)#route-map GET_TAG permit 10 R3(config-route-map)#set as-path tag R3(config-route-map)#set origin igp R3(config)#router bgp 64513 R3(config-router)#redistribute ospf 1 match external internal route-map GET_TAG R3(config-router)#exit 13、Check BGP routing table on R4.1 1 0 64513 ? *> 172.1.com C 192. R4#show ip bgp BGP table version is 5.168. local router ID is 192. we can see the AS-PATH for item 130. . We use route tag to store BGP attribute before redistribution from BGP to OSPF on R2. we can see routes are there but some BGP attributes are missing.130.ccieuniversity. h history.www. e .0. but in the BGP table it only appears AS 64513. the BGP origin attribute is also incomplete. 11、Store AS-PATH attribute in route tag on R2.0/24 192.130. > best.1 0 0 64513 i *> 0. Serial1/0 9、Check BGP routing table on R4.2.1.0/24 from AS 64512.0 192. S Stale Origin codes: i .incomplete Network Next Hop Metric LocPrf Weight Path *> 130.1 1 0 64513 ? * 192.2.168. i . Such as item 130.1.168.16. * valid.0/24 192.EGP.1 0 0 64513 ? *> 192.0.internal.2. route tag should be introduced. ? . R2(config)#route-map SET_TAG permit 10 R2(config-route-map)#set automatic-tag R2(config-route-map)#exit R2(config)# R2(config)#router bgp 64513 R2(config-router)#table-map SET_TAG R2(config-router)#exit 12、Restore AS-PATH attribute from route tag on R3.0/24 is complete now. the AS-PATH of this item should be 64521 65513.2.2.168.168.0/24 is directly connected. To solve this problem.168. and originate from IGP.0 0 32768 i 10、As OSPF can not recognize BGP AS-PATH attribute from redistribution. so there is BGP AS-PATH attribute missing issue.0 192.130.168.2 Status codes: s suppressed.2. d damped.1. r RIB-failure. internal.1.1 Type escape sequence to abort. Sending 5.com R4#show ip bgp BGP table version is 15.130.168.168.1.IGP.ccieuniversity.1.1 0 0 64513 i *> 192.1.com Using Distribute-list to Filtering BGP Routing Lab Topology Lab Purpose: 1、Master BGP route filtering by distribute-list configuration.2 Status codes: s suppressed. * valid. S Stale Origin codes: i . ? . round-trip min/avg/max = 88/138/220 ms By www.1 1 0 64513 64512 i *> 172. R4#ping 130.0.168. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).2.168.2. > best.www.0 0 32768 i R4# 14、Ping test on R4.0 192.0. e . h history.2. i . d damped. local router ID is 192.168.2. 100-byte ICMP Echos to 130.168.1 0 0 64513 i *> 0.168.ccieuniversity.1. r RIB-failure.0/24 192.1 1 0 64513 i * 192.130.0/24 192. .2.EGP.1.2.130.incomplete Network Next Hop Metric LocPrf Weight Path *> 130.16.0 192. 2 masks 172. 00:06:14 10. 3 subnets. 3、Check routing table on R3.1.0.1.1.0.16.0. 00:01:43 10.1.0/16 is variably subnetted.16.1.ccieuniversity.2.1. 2、Enable BGP on all routers. 00:01:43 172.0. 1 subnets C 10.0/24 [20/0] via 10.1.16.1.0/24 [20/0] via 10.0/24 [20/0] via 10.0/30 is subnetted.0 0.16.0 and 172.255.1.16.0 is directly connected.255. 5 subnets.255.ccieuniversity.255.255. 00:06:14 B 172.255.0/16 is variably subnetted.0/30 is subnetted.com Lab Steps: 1、Finish basic IP configuration.1.0.1. By www.16. Serial1/0 We can see network 172.0.1.0.255.1. 00:01:43 172.1.255.0 is directly connected.0.16. 1 subnets 10.3.0/24 [20/0] via 10. 00:06:14 B 172. 00:01:43 172.255 R2(config)#access-list 1 deny 172.1. 00:01:43 172.3.255 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.255.0/30 [20/0] via 10.1.16. R3#show ip route Gateway of last resort is not set B B B B B C 172.16.1.1.0/24 [20/0] via 10. 2 masks B 172.2 distribute-list 1 out R2(config-router)#end R2#clear ip bgp * soft out 5、Check routing table on R3.0.0 have gone.255.0.255.1.1.16.0.16. R3#show ip route 172.2.com . R2(config)#access-list 1 deny 172.0/24 [20/0] via 10.1.16.16.255.0.1.www.0.16.0/30 [20/0] via 10.0 0. Serial1/0 4、Config BGP route filtering on R2.255. 1.0.1.255.0.1.0 0.255.0 is directly connected.ccieuniversity.3.255.0 0.1.16.1.com Using Route-Map to Filtering BGP Routing Lab Topology Lab Purpose: 1、Master route-map based BGP route filtering configuration. 2、Enable BGP on all routers.255. Serial1/0 4、Config route-map based BGP route filtering.0.255 R2(config)#access-list 1 deny 172.0/16 is variably subnetted.255.0/30 is subnetted.255.1.16.0/30 [20/0] via 10.16.1. 00:12:39 172.16.0.2.0/24 [20/0] via 10.16.2 route-map bgpfilter out R2(config-router)#exit R2(config)#exit R2# R2#clear ip bgp * soft out . R2(config)#access-list 1 deny 172. 5 subnets.255 R2(config)#access-list 1 permit any R2(config)# R2(config)#route-map bgpfilter permit 10 R2(config-route-map)#match ip address 1 R2(config-route-map)#exit R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10. 1 subnets 10. 2 masks 172.0.0. 3、Check routing table on R3.1.255.1. 00:00:01 172. 00:12:39 10.www.16.1. 00:00:01 172.0/24 [20/0] via 10.1.0/24 [20/0] via 10.0. Lab Steps: 1、Finish basic IP configuration.16.0/24 [20/0] via 10. R3#show ip route Gateway of last resort is not set B B B B B C 172.16.0.1. 00:12:39 172.0.255.1.1. 2 masks 172.255.255.16. 6 masks B 172.0/24 have been filtered. R3#show ip route Gateway of last resort is not set 172.1.16. 00:19:57 10. we can see network 172.16.1.255.0.0.255.2.0/24 [20/0] via 10.0/30 [20/0] via 10. 00:19:57 172. R3#show ip route Gateway of last resort is not set B B B C 172.ccieuniversity.0. 00:00:04 .0/16 is variably subnetted.0 is directly connected. 00:19:57 172.255.ccieuniversity.0/16 is variably subnetted. Lab Steps: 1、Finish basic IP configuration.4.16.0/30 is subnetted.1.com 5、Check routing table on R3 again.0/28 [20/0] via 10.0/24 and 172.1.1.0/24 [20/0] via 10.1.16.0.255.3.1.16.1. 00:02:56 B 172.com Using Prefix-List to Filtering BGP Routing Lab Topology Lab Purpose: 1、Master Prefix-List based BGP route filtering.16. 1 subnets 10. 2、Use Prefix-List to filter BGP route based on mask length. 2、Enable BGP on all routers.1.0/30 [20/0] via 10.16.1. 3 subnets. 6 subnets.255.255.www.16. Serial1/0 By www. 3、Check routing table on R3.1.1.0. 1. 00:00:16 10.0. 00:00:16 172.0/27 [20/0] via 10.16.16.16.3.255.0/27 [20/0] via 10.1.0/25 [20/0] via 10.255.3.www.16.0.1.0/25 to R3.0/24 is directly connected.0/30 to R3.0.255.0.16.2.0.1.255.0/0 le 32 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.4.0/8 is variably subnetted. 2 subnets.3.16.2 prefix-list bgpfilter out R2(config-router)#exit .3.255. 2 subnets.1.0/30 [20/0] via 10.1.255.255.0/30 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.1. 5、Config prefix-list based BGP route filtering on R2.16.255.255.0/26 [20/0] via 10.com B B B B 172.0/24 [20/0] via 10.255.1.1. 00:00:16 172.255.16.0.1.0/16 is variably subnetted. R2(config)#ip prefix-list bgpfilter seq 5 deny 172.1. Serial1/0 4、Scenario 1: R2 should not announce BGP routes 172. 8、Config prefix-list based BGP route filtering on R2.0.255. 2 masks B 10.0/25 R2(config)#ip prefix-list bgpfilter seq 15 permit 0.1.0.0.255.0/27 R2(config)#ip prefix-list bgpfilter seq 10 permit 172. 2 masks 10.1.255. 00:00:04 172. R3#show ip route Gateway of last resort is not set B B B B C 172.16. 00:00:04 172.1. R2(config)#ip prefix-list bgpfilter seq 5 permit 172.1.1.0/28 [20/0] via 10.0/26 [20/0] via 10.0/24 and 172. 00:00:16 172. Serial1/0 7、Scenario 2: R2 should only announce BGP routes 172.0/8 is variably subnetted.2 prefix-list bgpfilter out R2(config-router)#exit 6、Check routing table on R3.1.1.255.16.16. 00:00:04 10.16.16.16.1.0/24 R2(config)#ip prefix-list bgpfilter seq 10 deny 172.1. 4 subnets.ccieuniversity.255.0/30 [20/0] via 10. 00:02:56 C 10.1.1.0/27 and 172.0.16.1.1.2.0/24 is directly connected.1. 00:01:21 172.1.16. 4 masks 172.255.16. 255.16.0/30 [20/0] via 10. 2 subnets.255.0.0/22 which mask ≧ 26 bit.16.0 is directly connected.16.1.255.1.16.16.16.0/26 [20/0] via 10.ccieuniversity.16.0/30 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.com R2(config)# R2#clear ip bgp * soft out 9、Check routing table on R3.0/27 [20/0] via 10.1.0/30 by BGP. 00:06:15 B 172.1.255. 00:11:25 10. and network 172.0. 3 subnets.2 prefix-list bgpfilter out R2(config-router)#exit R2(config)# R2#clear ip bgp * soft out 12、Check routing table on R3.255. 00:11:25 172.16.0/22 ge 26 R2(config)#ip prefix-list bgpfilter seq 5 permit 172.3.255.0/27 [20/0] via 10.255. R2(config)#ip prefix-list bgpfilter seq 5 permit 172.0. R3#show ip route Gateway of last resort is not set B B B C 172.0.0.0.1.1.3.0/30 [20/0] via 10. 3 masks 172.255.0/16 is variably subnetted.16. Serial1/0 R3# 10、Scenario 3: R2 should only announce network 172.16.www.1.0.1. and network 172. R3#show ip route Gateway of last resort is not set 172. R2(config)#ip prefix-list bgpfilter seq 5 permit 172.255.0/30 is subnetted. 1 subnets C 10.16.1.0 is directly connected.0/22 le 25 .0/30 by BGP.16.2. Serial1/0 13、Scenario 4: R2 should only announce network 172.255. 2 masks B 172.0/22 which mask ≦25 bit.0.0/30 is subnetted.0.1.1.16.1.255.0.0/16 is variably subnetted. 11、Config prefix-list based BGP route filtering on R2. 00:06:15 10.255. 00:01:16 172. 1 subnets 10.255.1.16. 00:01:21 10.2 prefix-list bgpfilter out R2(config-router)#exit R2(config)#exit R2(config)# R2#clear ip bgp * soft out 14、Check routing table on R3.1.0/30 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.0/30 by BGP.0.16.255.1.2.1.255.255.0/30 is subnetted. 00:15:00 172.255. 3 subnets.0/16 is variably subnetted.1.0 is directly connected.ccieuniversity.0/30 R2(config)# R2(config)#router bgp 64512 R2(config-router)#neighbor 10.1.0/22 which 25 bit ≦ mask ≦26 bit.1.255.16.16.0 is directly connected.16.16.1.255.0/26 [20/0] via 10.16. 00:01:10 172. R3#show ip route Gateway of last resort is not set 172.1.16.255.1.1.ccieuniversity. Serial1/0 15、Scenario 5: R2 should only announce network 172.255.1.255.com R2(config)#ip prefix-list bgpfilter seq 10 permit 172.0/24 [20/0] via 10.0.0/25 [20/0] via 10. 00:01:10 10.255.2 prefix-list bgpfilter out R2(config-router)#end R2#clear ip bgp * soft out 16、Check routing table on R3.1.16.16.0.0.0/22 ge 25 le 26 R2(config)#ip prefix-list bgpfilter permit 172.16. 00:05:53 172.0/30 [20/0] via 10.0.1. R2(config)#ip prefix-list bgpfilter permit 172.255. 3 masks 172. R3#show ip route Gateway of last resort is not set B B B C 172. 3 subnets.16.16.1.0/30 is subnetted. 3 masks 172.0/25 [20/0] via 10.0/30 [20/0] via 10.0.1.0.1.1. 1 subnets 10. 1 subnets C 10.0/16 is variably subnetted. Serial1/0 By www.0.255.255. and network 172.www.255.0.16. 00:19:42 172.255.1.com B B B . [064] Tunnel-Type .www. Lab Steps: 1、Add AAA client by click "Network Configuration" on ACS server. choose the following 3 attribute then submit.1x authentication configuration. key: cisco authentication protocol: Radius(IETF) 4、Setup IETF attribute by clicking "Interface Configuration". choose "RADIUS (IETF)".ccieuniversity.1x Port-Based Authentication Lab Topology Lab Purpose: 1、Master interface based 802. 2、Master Cisco Radius server configuration.com Configuring 802. ccieuniversity.com assign this user to Group 1 then click Submit.ccieuniversity. enter username: CCIE University1.com [065] Tunnel-Medium-Type [081] Tunnel-Private-Group-ID 5、Create a user for 802. Tag1 Value 802. [081]Tunnel-Private-Group-ID Tag 1 Value 10。 Click Submit + Restart . Tag 1 Value VLAN. click Add/Edit.www.1x authentication. choose "Group 1". [064]Tunnel-Type. [065]Tunnel-Medium-Type. Set the following 3 attribute as below. 6、Setup Group attribute by clicking "Group Configuration". enter password: www. click“Edit Settings”. Click <User Configuration>. Switch(config)#aaa new-model Switch(config)#radius-server host 202.159 key cisco Switch(config)#radius-server vsa send Switch(config)#aaa authentication login default none Switch(config)#aaa authentication dot1x default group radius Switch(config)#aaa authorization network default group radius Switch(config)#dot1x system-auth-control 12、Interface configuration for 802. remove LEAP "Allow LEAP (For Aironet only)" option. Switch(config)# Switch(config)#interface vlan 1 Switch(config-if)#ip address 202. Switch(config)#interface range fastEthernet 0/1 .0 Switch(config-if)#no shutdown Switch(config-if)#exit Switch(config)# 10、Create vlans on switch.255.1x.255. Tag1 Value 802 [081]Tunnel-Private-Group-ID Tag 1 Value 20 8、Config ACS server. click "System Configurateion".195.30. Tag 1 Value VLAN [065]Tunnel-Medium-Type.20 Switch(config-if-range)#switchport mode access . Switch(config)#vlan 10 Switch(config-vlan)#exit Switch(config)#vlan 20 Switch(config-vlan)#exit 11、Config AAA on switch. 9、Setup vlan interface 1 on switch to communicate with ACS server.1x.www.ccieuniversity.158 255.30.com 7、Create another username: CCIE University2 assign it to Group 2.195. then click Submit + Restart. [064]Tunnel-Type. click "Global Authentication Setup". and enable 802. Meanwhile set Group 2 attribute as below. Fa0/9.-----------------------------1 default active Fa0/3. Fa0/8. Fa0/15. Gi0/2 10 VLAN0010 active 20 VLAN0010 active 14、Enable IEEE 802. Fa0/16 Fa0/17. Fa0/2. Fa0/20 Fa0/21. Switch#show vlan VLAN Name Status Ports ---. Fa0/19. Fa0/23. Fa0/14.-------------------------------. Fa0/7.--------. Fa0/6.-----------------------------1 default active Fa0/1.com Switch(config-if-range)#spanning-tree portfast Switch(config-if-range)#dot1x port-control auto Switch(config-if-range)#exit 13、Check vlan table on switch. 15、Connect PC1 and PC2 to switch. Fa0/7.1x authentication on PC network adapter. Switch#show vlan VLAN Name Status Ports ---. we can see Fa0/1 and Fa0/2 have been assigned to VLAN 10 and VLAN20 automatically.1x authentication table. Fa0/24 Gi0/1. Fa0/10. Fa0/4 Fa0/5. Fa0/3. enter the username and password we have. Fa0/5. Fa0/4.--------.ccieuniversity. Fa0/18. 16、When the authentication succeed. . Fa0/8 Fa0/9. and set EAP type to MD5 query.www. Fa0/6. Fa0/12 Fa0/13.-------------------------------. check vlan table again. Fa0/10. Fa0/11. Fa0/22. then there will be a popup 802. www. Fa0/17.com active Fa0/1 active Fa0/2 act/unsup act/unsup act/unsup act/unsup Routing Between VLANs and VTP Protocol Lab Topology Lab Purpose: . Fa0/21. Fa0/13. Fa0/12.ccieuniversity. Fa0/15. Gi0/1. Fa0/24. Fa0/20. Fa0/22. Fa0/19. Fa0/16.ccieuniversity. Fa0/23. Fa0/18. Fa0/14. Gi0/2 10 VLAN0010 20 VLAN0020 1002 fddi-default 1003 token-ring-default 1004 fddinet-default 1005 trnet-default By www.com Fa0/11. 255.1 PC1(config)# PC1(config)#interface fastEthernet 0/0 PC1(config-if)#ip address 192. PC1(config)#no ip routing PC1(config)# PC1(config)#ip default-network 192.1 PC3(config)# PC3(config)#interface fastEthernet 0/0 PC3(config-if)#ip address 192.0 PC3(config-if)#no shutdown PC3(config-if)#exit PC3(config-if)# 2、Trunk configuration on SW1 and SW2.0 PC2(config-if)#no shutdown PC2(config-if)#exit PC2(config)# PC3(config)#no ip routing PC3(config)# PC3(config)#ip default-network 192.168.2.ccieuniversity.255.2.168.255. 2、Master routing between vlans and sub-interface configuration.www. Lab Steps: 1、PCS configuration as follows.255.2.168.10 255.0 PC1(config-if)#no shutdown PC1(config-if)#exit PC1(config)# PC2(config)#no ip routing PC2(config)# PC2(config)#ip default-network 192.1 PC2(config)# PC2(config)#interface fastEthernet 0/0 PC2(config-if)#ip address 192.255. SW1(config)#interface fastEthernet 1/1 SW1(config-if)#switchport trunk encapsulation dot1q SW1(config-if)#switchport mode trunk SW1(config-if)#exit .1.10 255.168.1.20 255.255.168.2.168.com 1、Master VTP configuration. 0.0 at 0-0-00 00:00:00 Local updater ID is 0.com Changing VTP domain name from cisco to www.ccieuniversity.0. SW2#show interfaces trunk Port Fa1/2 Mode on Encapsulation 802.ccieuniversity. SW2#show vtp status VTP Version : 2 Configuration Revision : 0 Maximum VLANs supported locally : 256 Number of existing VLANs : 5 VTP Operating Mode : Server VTP Domain Name : VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0xBF 0x86 0x94 0x45 0xFC 0xDF 0xB5 0x70 Configuration last modified by 0.com .com SW1(config)#vtp domain www.0. SW1(config)#vtp password www.ccieuniversity.0.com SW2(config)#interface fastEthernet 1/2 SW2(config-if)#switchport trunk encapsulation dot1q SW2(config-if)#switchport mode trunk SW2(config-if)#exit 3、Check trunk interface on SW2.0 (no valid interface found) 5、Enable VTP on SW1 and SW2.ccieuniversity.www.com Setting device VLAN database password to www.ccieuniversity.1q Status trunking Native vlan 1 Port Fa1/2 Vlans allowed on trunk 1-1005 Port Fa1/2 Vlans allowed and active in management domain 1 Port Fa1/2 Vlans in spanning tree forwarding state and not pruned 1 4、Check VTP state before doing VTP configuration. SW1(config)# SW1(config)#vlan 10 SW1(config-vlan)#name ccieuniversity10 SW1(config-vlan)#exit SW1(config)# SW1(config)#vlan 20 SW1(config-vlan)#name ccieuniversity20 SW1(config-vlan)#exit 8、Check vlan table on SW1.com Changing VTP domain name from cisco to www.1.com SW1(config)#vtp pruning Pruning switched on SW1(config)#vtp mode SERVER Setting device to VTP server mode.ccieuniversity.ccieuniversity.www.ccieuniversity.3 at 3-2-93 02:11:08 7、Create vlans on SW1.com SW2(config)#vtp domain www.com SW2(config)#vtp pruning Pruning switched on SW2(config)#vtp mode client Setting device to VTP client mode. . SW2#show vtp status VTP Version : 2 Configuration Revision : 1 Maximum VLANs supported locally : 1005 Number of existing VLANs : 10 VTP Operating Mode : Client VTP Domain Name : www.com VTP Pruning Mode : Enabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0x71 0x62 0x0B 0xD1 0xED 0xFD 0x7D 0xAC Configuration last modified by 199.com Setting device VLAN database password to www.ccieuniversity.ccieuniversity.ccieuniversity. SW2(config)#vtp password www. 6、Check VTP state on SW2.1. -----. Fa1/12 Fa1/13.com SW1#show vlan VLAN Name Status Ports ---.ccieuniversity. Fa1/7. Fa1/8 Fa1/9.-----.-------.---. Fa1/6.---------1 enet 1003 10 enet 0 20 enet 0 1002 fddi 1003 1003 tr 1002 1004 fdnet 0 1005 trnet 0 SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 ---------.www.--------. Fa1/4 Fa1/5. Fa1/3.-------. Fa1/14.-----100001 1500 - - - - - 1002 100010 1500 - - - - - 0 100020 1500 - - - - - 0 101002 1500 - - - - - 1 101003 1500 1005 0 - - srb 1 101004 1500 - - 1 ibm - 0 101005 1500 - - 1 ibm - 0 9、查看 VTP 的状态信息: SW1#show vtp status VTP Version : 2 . Fa1/11. Fa1/15 10 ccieuniversity10 active 20 ccieuniversity20 active 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active active 1005 trnet-default VLAN Type Trans2 ---. Fa1/2.-----------------------------1 default active Fa1/0. Fa1/10.-------------------------------.----. Fa0/9. Fa0/5.www. SW2#show vtp status VTP Version : 2 Configuration Revision : 2 Maximum VLANs supported locally : 256 Number of existing VLANs : 7 VTP Operating Mode : Client VTP Domain Name : www.com VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0xF3 0x1C 0x33 0x46 0xEA 0x14 0xBB 0x9F Configuration last modified by 0.com Configuration Revision : 2 Maximum VLANs supported locally : 256 Number of existing VLANs : 7 VTP Operating Mode : Server VTP Domain Name : www.--------. Fa0/14 .ccieuniversity.0.0.com VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0xF3 0x1C 0x33 0x46 0xEA 0x14 0xBB 0x9F Configuration last modified by 0.0 at 3-1-02 00:52:53 11、Check vlan table on SW2. Fa0/8.0. Fa0/4. Fa0/6 Fa0/7.-------------------------------.ccieuniversity.0 at 3-1-02 00:52:53 Local updater ID is 0. Fa0/13.0. Fa0/12.0.ccieuniversity.0. SW1#show vlan VLAN Name Status Ports ---. Fa0/10 Fa0/11.-----------------------------1 default active Fa0/3.0 (no valid interface found) 10、Check VTP state on SW2. 168.20. 100-byte ICMP Echos to 192.2.www.2. Fa0/21.!!!! Success rate is 80 percent (4/5).168.20.com Fa0/15.1. Sending 5... Sending 5. round-trip min/avg/max = 24/24/24 ms .ccieuniversity. Fa0/16. Fa0/20.. SW1(config)#interface fastEthernet 1/11 SW1(config-if)#switchport access vlan 10 SW1(config-if)#exit SW1(config)# SW1(config)#interface fastEthernet 1/12 SW1(config-if)#switchport access vlan 20 SW1(config-if)#exit SW2(config)#interface fastEthernet 1/11 SW2(config-if)#switchport access vlan 20 SW2(config-if)#exit 13、Ping test on PC1 PC2 and PC3. Fa0/18 Fa0/19.168. 100-byte ICMP Echos to 192.20 Type escape sequence to abort.. Fa0/24.20 Type escape sequence to abort.168. timeout is 2 seconds: . PC1#ping 192. Fa0/22 Fa0/23. Fa0/17.1. timeout is 2 seconds: . Gi0/2 10 ccieuniversity10 active 20 ccieuniversity20 active 1002 fddi-default act/unsup 1003 token-ring-default act/unsup act/unsup 1004 fddinet-default 1005 trnet-default act/unsup ………… 12、Assign interfaces to relevant vlan on SW1 and SW2. Success rate is 0 percent (0/5) PC1# PC2#ping 192. Gi0/1. 10.2. SW1(config)#interface fastEthernet 1/5 SW1(config-if)#switchport trunk encapsulation dot1q SW1(config-if)# SW1(config-if)#switchport mode trunk SW1(config-if)#exit R1(config)# R1(config)#interface fastEthernet 0/0 R1(config-if)#no ip address R1(config-if)#no shutdown R1(config-if)#exit R1(config)# R1(config)#interface fastEthernet 0/0.1.168.0 .2..1.10 R1(config-subif)#encapsulation dot1Q 10 R1(config-subif)#ip address 192.168. 100-byte ICMP Echos to 192. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).10 Type escape sequence to abort.com PC2# PC2#ping 192.168. but between different vlans is not working...168.168.168. timeout is 2 seconds: .1. timeout is 2 seconds: .www. 14、Enable routing between vlans.10. Sending 5. Sending 5.168.255. Success rate is 0 percent (0/5) We can see communication in the same vlan is ok. Success rate is 0 percent (0/5) PC2# PC3#ping 192.255.ccieuniversity.1 255. 100-byte ICMP Echos to 192..1.. round-trip min/avg/max = 1/18/32 ms PC3# PC3#ping 192..1.10 Type escape sequence to abort.. Sending 5.10.10 Type escape sequence to abort. 100-byte ICMP Echos to 192.. 10.168.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1 Type escape sequence to abort.2. 100-byte ICMP Echos to 192.168.1 255.255.168.www. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).168.168.20 .1 Type escape sequence to abort.10 Type escape sequence to abort.2. FastEthernet0/0.255.168.0/24 is directly connected. Sending 5.2. timeout is 2 seconds: .168. FastEthernet0/0.168.168.0/24 is directly connected. 100-byte ICMP Echos to 192. 100-byte ICMP Echos to 192. Sending 5.2.1.20 R1(config-subif)#encapsulation dot1Q 20 R1(config-subif)#ip address 192.1. Sending 5.com R1(config-subif)#exit R1(config)# R1(config)#interface fastEthernet 0/0.!!! Success rate is 60 percent (3/5).ccieuniversity.20 16、Ping test again on all PCS.10 192.1. PC1#ping 192.2. round-trip min/avg/max = 16/232/1040 ms PC1# PC1#ping 192.0 R1(config-subif)#exit R1(config)# 15、Check routing table on R1.168. R1#show ip route Gateway of last resort is not set C C 192.1.2.2. round-trip min/avg/max = 4/223/1012 ms PC1# PC1#ping 192. round-trip min/avg/max = 12/48/92 ms PC1# PC1#ping 192.. 10. Sending 5. Lab Steps: .. timeout is 2 seconds: .10 Type escape sequence to abort.20.1. Sending 5. round-trip min/avg/max = 20/52/96 ms PC1# PC2#ping 192.www.ccieuniversity.com Configuring L2 & L3 EtherChannel with PAGP Lab Topology Lab Purpose: 1、Master PAGP configuration. round-trip min/avg/max = 12/50/88 ms By www.168.10.168.168.com Type escape sequence to abort. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1. round-trip min/avg/max = 20/48/88 ms PC2# PC3#ping 192.1. 100-byte ICMP Echos to 192. Sending 5.1. 100-byte ICMP Echos to 192.!!! Success rate is 60 percent (3/5).10 Type escape sequence to abort.2.ccieuniversity.168. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).168. 100-byte ICMP Echos to 192. com 1、Connect two switches as the above topology. SW1(config)#interface range fastEthernet 1/0/23 . 5、Enable Ethernet-Channel based on PAGE on SW1 and SW2.26 P2p 4、To maximum the bandwidth usage rates. SW1#show spanning-tree VLAN0001 Spanning tree enabled protocol ieee Root ID Priority 32769 Address 0014.--------.25 P2p Fa1/0/24 Altn BLK 19 128.9880 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Aging Time 300 Interface Role Sts Cost Prio. 3、Check STP information on SW1.a8f1.24 SW2(config-if-range)#sw SW2(config-if-range)#switchport SW1(config-if-range)#channel-protocol pagp SW2(config-if-range)#channel-group 1 mode auto Creating a port-channel interface Port-channel 1 SW2(config-if-range)#exit SW2(config)#exit .www.--.a8e2.ccieuniversity. 2、Shutdown interfaces range from Fa1/0/1 – 22 on SW1 and SW2.24 SW1(config-if-range)#switchport SW1(config-if-range)#channel-protocol pagp SW1(config-if-range)#channel-group 1 mode desirable Creating a port-channel interface Port-channel 1 SW1(config-if-range)#exit SW1(config)#exit SW2(config)#interface range fastEthernet 1/0/23 .-------.9880 Cost 19 Port 25 (FastEthernet1/0/23) Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 32769 (priority 32768 sys-id-ext 1) Address 0014. we'd like to combine two links together.---.Nbr Type ---------------.-------------------------------Fa1/0/23 Root FWD 19 128. d . A . changed state to up 0:37:18: %LINK-3-UPDOWN: Interface Port-channel1. changed state to down 00:32:28: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/24. auto is the negative mode for PAGE.Switching timer is running. C . Q .Interface timer is running. SW1#show interfaces fastEthernet 1/0/23 etherchannel Port state = Up Mstr In-Bndl Channel group = 1 Mode = Desirable-Sl Gcchange = 0 Port-channel = Po1 GC = 0x00010001 Pseudo port-channel = Po1 Port index = 0 Load = 0x00 Protocol = PAgP Flags: S .Device is sending Slow hello.a8e2.Hello timer is running. S .ccieuniversity.PAgP is down. 0014.com 00:32:28: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/23. changed state to up 00:32:38: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/24. Timers: H .www. Local information: Hello Partner PAgP Learning Group Port Flags State Timers Interval Count Priority Method Ifindex Fa1/0/23 SC U6/S7 H 30s 1 128 Any 5001 Partner's information: Partner Port Name Fa1/0/23 SW2 Partner Partner Partner Group Device ID Port Age Flags Cap. P . changed state to up 6、TIPS: Descirable is the positive mode for PAGE.9880 Fa1/0/23 20s SAC Age of the port in the current state: 00d:00h:06m:53s 10001 .Device is in Consistent state.Device learns on physical port.Quit timer is running.Device is in Auto mode. changed state to down 00:32:37: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/23. 7、Check interface based Ether-Channel information. I . changed state to up 00:37:19: %LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel1. stand-alone s . SW1#show etherchannel summary Flags: D .in port-channel I .Hot-standby (LACP only) R .www.unsuitable for bundling w .Layer2 U .com 8、Check etherchannel port-channel information on SW1.suspended H . SW1#show etherchannel port-channel Channel-group listing: ---------------------Group: 1 ---------Port-channels in the group: --------------------------Port-channel: Po1 -----------Age of the Port-channel = 00d:00h:15m:37s Logical slot/port = 10/1 Number of ports = 2 GC = 0x00010001 HotStandBy port = null Port state = Port-channel Ag-Inuse Protocol = PAgP Ports in the Port-channel: Index Load Port EC state No of bits ------+------+------+------------------+----------0 00 Fa1/0/23 Desirable-Sl 0 0 00 Fa1/0/24 Desirable-Sl 0 Time since last port bundled: 00d:00h:10m:27s Fa1/0/24 9、Check etherchannel summary information on SW1.default port Number of channel-groups in use: 1 Number of aggregators: 1 .failed to allocate aggregator u .ccieuniversity.down P .Layer3 S .in use f .waiting to be aggregated d . ccieuniversity.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).-------------------------------Po1 Root FWD 12 128. SW1#show spanning-tree ……… Interface Role Sts Cost Prio.255.1. Sending 5.0 SW2(config-if)#no shutdown SW2(config-if)#exit 12、Ping test between SW1 and SW2. SW1(config)#interface vlan 1 SW1(config-if)#ip address 192.1.com Group Port-channel Protocol Ports ------+-------------+-----------+----------------------------------------------1 Po1(SU) PAgP Fa1/0/23(P) Fa1/0/24(P) 10、Check STP information on SW1.168.1.168.168. meanwhile shutdown Fa0/23 on SW1 to see whether the ping traffic has been interrupted.255.--------.0 SW1(config-if)#no shutdown SW1(config-if)#exit SW2(config)#interface vlan 1 SW2(config-if)#ip address 192. we setup continues ping traffic.1 Type escape sequence to abort.1 Repeat count [5]: 1000000 Datagram size [100]: Timeout in seconds [2]: Extended commands [n]: Sweep range of sizes [n]: .255.168.255.1.1 255. SW2#ping Protocol [ip]: Target IP address: 192. 100-byte ICMP Echos to 192.--. SW2#ping 192.-------. round-trip min/avg/max = 1/1/1 ms 13、To test the redundant feature of Ethernet Channel.1.168.Nbr Type ---------------.616 P2p 11、Setup ip address for vlan1 on SW1 and SW2 to test Ethernet Channel connectivity.2 255.www.---. 0 SW1(config-if)#no shutdown SW1(config-if)#exit SW1(config)# SW1(config)# SW1(config)#interface range fastEthernet 1/0/23 . Sending 1000000. and enable layer 3 Ethernet Channel.24 SW1(config-if-range)#no switchport SW1(config-if-range)#channel-protocol pagp SW1(config-if-range)#channel-group 1 mode desirable SW1(config-if-range)#exit SW1(config)#exit 00:12:15: %EC-5-L3DONTBNDL1: Fa1/0/23 suspended: PAgP not enabled on the remote port.168.1.www.1. 100-byte ICMP Echos to 192. 00:12:16: %EC-5-L3DONTBNDL1: Fa1/0/24 suspended: PAgP not enabled on the remote port.255.255. SW1(config)#interface port-channel 1 SW1(config-if)#no switchport SW1(config-if)#ip address 192. 15、Enable layer 3 Ethernet Channel on SW1 and SW2.1.1.168. changed state to up 00:20:04: %LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel1.2 255.ccieuniversity.0 SW2(config-if)#no shutdown SW2(config-if)#exit SW2(config)# SW2(config)#interface range fastEthernet 1/0/23 . changed state to up 00:20:02: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/24.255.24 SW2(config-if-range)#no switchport SW2(config-if-range)#channel-protocol pagp SW2(config-if-range)#channel-group 1 mode desirable SW2(config)#exit 00:20:02: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0/23.168.1 255. changed state to up .255. changed state to up 00:20:03: %LINK-3-UPDOWN: Interface Port-channel1.com Type escape sequence to abort. 14、Remove layer 2 Ethernet Channel configuration. timeout is 2 seconds: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Seems well. SW2(config)#interface port-channel 1 SW2(config-if)#no switchport SW2(config-if)#ip address 192. Layer2 U .in port-channel I .suspended H .1.down P .!!!! Success rate is 80 percent (4/5).1 Type escape sequence to abort.unsuitable for bundling w .stand-alone s . SW2#show etherchannel summary Flags: D .Layer3 S . round-trip min/avg/max = 1/1/1 ms By www. SW2#ping 192.www.in use f .waiting to be aggregated d . 100-byte ICMP Echos to 192. timeout is 2 seconds: .ccieuniversity.com 16、Check Ethernet Channel summary information on SW2.168.Hot-standby (LACP only) R .ccieuniversity.com Configuring L2 & L3 EtherChannel with LACP Lab Topology .1.failed to allocate aggregator u .1.168.default port Number of channel-groups in use: 1 Number of aggregators: 1 Group Port-channel Protocol Ports ------+-------------+-----------+----------------------------------------------1 Po1(RU) PAgP Fa1/0/23(P) Fa1/0/24(P) 17、Ping test on SW2. Sending 5. failed to allocate aggregator u .waiting to be aggregated d .255. Lab Steps: 1、Connect two switches as the above topology.unsuitable for bundling w .Layer3 S .168.255.www.in port-channel Flags: D .suspended H . 3、Enable LACP on SW1 and SW2. 2、Shutdown interfaces range from Fa1/0/1 – 22 on SW1 and SW2. SW1(config)#interface vlan 1 SW1(config-if)#ip address 192.1.24 SW1(config-if-range)#channel-protocol lacp SW1(config-if-range)#channel-group 1 mode active Creating a port-channel interface Port-channel 1 SW1(config-if-range)#exit SW2(config)#interface range fastEthernet 1/0/23 .stand-alone s .down I .0 SW1(config-if)#no shutdown SW1(config-if)#exit SW1(config)# . SW1#show etherchannel summary P .in use f .Hot-standby (LACP only) R .ccieuniversity. SW1(config)#interface range fastEthernet 1/0/23 .1 255.default port Number of channel-groups in use: 1 Number of aggregators: 1 Group Port-channel Protocol Ports ------+-------------+-----------+----------------------------------------------1 Po1(SU) LACP Fa1/0/23(P) Fa1/0/24(P) 5、Setup ip address for vlan1 on SW1 and SW2 to test Ethernet Channel connectivity.com Lab Purpose: 1、Master LACP configuration.Layer2 U .24 SW2(config-if-range)#channel-protocol lacp SW2(config-if-range)#channel-group 1 mode passive SW2(config-if-range)#exit 4、Check etherchannel summary information on SW1. 255.255.suspended H .168.255.2.0 SW2(config-if)#no shutdown SW2(config-if)#exit SW2(config)# SW2(config)#interface range fastEthernet 1/0/23 .1 255.24 SW2(config-if-range)#no switchport SW2(config-if-range)#channel-protocol lacp SW2(config-if-range)# SW2(config-if-range)#channel-group 1 mode passive SW2(config-if-range)#exit SW2(config)#exit 8、Check etherchannel summary information on SW1 and SW2.1.waiting to be aggregated d .168.ccieuniversity.168.255.www. timeout is 2 seconds: .168.1.255.unsuitable for bundling w .failed to allocate aggregator u . SW1#ping 192. Sending 5.com SW2(config)#interface vlan 1 SW2(config-if)#ip address 192. round-trip min/avg/max = 1/1/1 ms 6、Remove Layer2 LACP configuration.down I .0 SW2(config-if)#no shutdown SW2(config-if)#exit Ping test between SW1 and SW2.2 255.1. 100-byte ICMP Echos to 192. SW1(config)#interface port-channel 1 SW1(config-if)#no switchport SW1(config-if)#ip address 192.0 SW1(config-if)#no shutdown SW1(config-if)#exit SW1(config)# SW1(config)#interface range fastEthernet 1/0/23 .1.Hot-standby (LACP only) R .default port .2 Type escape sequence to abort.Layer3 S .stand-alone s .in port-channel Flags: D .Layer2 U . 7、Enable layer3 LACP on SW1 and SW2.168.1.in use f .!!!! Success rate is 80 percent (4/5). SW2#show etherchannel summary P .255.2 255.24 SW1(config-if-range)#no switchport SW1(config-if-range)#channel-protocol lacp SW1(config-if-range)#channel-group 1 mode active SW1(config-if-range)#exit SW2(config)#interface port-channel 1 SW2(config-if)#no switchport SW2(config-if)#ip address 192. in use f .com Number of channel-groups in use: 1 Number of aggregators: 1 Group Port-channel Protocol Ports ------+-------------+-----------+----------------------------------------------1 Po1(RU) LACP Fa1/0/23(P) Fa1/0/24(P) SW1#show etherchannel summary Flags: D .in port-channel I .suspended H .1.default port Number of channel-groups in use: 1 Number of aggregators: 1 Ports Group Port-channel Protocol ------+-------------+-----------+----------------------------------------------1 Po1(RU) LACP Fa1/0/23(P) Fa1/0/24(P) 9、Ping test between SW1 and SW2.com Configuring Layer 3 Redundancy with HSRP Lab Topology .Layer2 U .stand-alone s . Sending 5.waiting to be aggregated d .Layer3 S .168.down P .failed to allocate aggregator u .1.www.ccieuniversity. SW2#ping 192. round-trip min/avg/max = 1/1/1 ms By www.ccieuniversity.unsuitable for bundling w .1 Type escape sequence to abort.1.168. 100-byte ICMP Echos to 192.Hot-standby (LACP only) R .!!!! Success rate is 80 percent (4/5). timeout is 2 seconds: . 255.www.com Lab Purpose: 1、Master HSRP principal.1.255. 2、Master HSRP configuration.1 255.168. 3、Understanding HSRP preempt and track feature.3 255.1.0 R2(config-if)#exit R2(config)# R2(config)#interface fastEthernet 0/0 R2(config-if)#ip address 192.255.255. R1(config)#interface loopback 0 R1(config-if)#ip address 10.1.255.0 R1(config-if)#no shutdown R1(config-if)#exit R1(config)# R2(config)#interface loopback 0 R2(config-if)#ip address 10.2 255.ccieuniversity.0 R1(config-if)#exit R1(config)# R1(config)#interface fastEthernet 0/0 R1(config-if)#ip address 192.255.0 R2(config-if)#no shutdown R2(config-if)#exit R2(config)# . Lab Steps: 1、Finish basic IP configuration.1.1 255.168.1.255.255.1. 812 Virtual mac address is 0000.0 PC1(config-if)#no shutdown PC1(config-if)#exit PC1(config)# PC1(config)#ip default-gateway 192.255. R1(config)#interface fastEthernet 0/0 R1(config-if)#standby 1 ip 192.www. 100-byte ICMP Echos to 10.1. last state change 00:00:10 IP redundancy name is "hsrp-Fa0/0-1" (default) .255.1.1 configured Active router is local Standby router is 192.168. Sending 5.1.1.168.. set default gateway to the HSRP virtual ip address. timeout is 2 seconds: ..168.168.10 255.0c07. priority 100 expires in 7.ccieuniversity.1 PC1(config)#exit 3、Ping test from PC1 to network 10.1.1. PC1(config)#no ip routing PC1(config)# PC1(config)#interface fastEthernet 0/0 PC1(config-if)#ip address 192. holdtime 10 sec Next hello sent in 1.168.ac01 5 state changes. 00:13:27: %STANDBY-6-STATECHANGE: FastEthernet0/0 Group 1 state Standby -> Active 6、Check HSRP group information on R1 and R2.1 5、Below output will following the HSRP configuration.1 Type escape sequence to abort.com 2、PC1 basic configuration..Group 1 Local state is Active. Success rate is 0 percent (0/5) PC1# 4、Enable HSRP on R1 and R2. priority 100 Hellotime 3 sec.3.348 Virtual IP address is 192.1.1.1.0/24 PC1#ping 10. R1#show standby FastEthernet0/0 .1.1..168.1.1 R2(config)#interface fastEthernet 0/0 R2(config-if)#standby 1 ip 192.1. 1 on PC1.1.1. holdtime 10 sec Next hello sent in 2. priority 100 expires in 7.1.1 Repeat count [5]: 1000000 Datagram size [100]: .ac01 ARPA FastEthernet0/0 9、Use continues ping to test redundant feature of HSRP.www.2.168.1 Type escape sequence to abort.10 .1.1. we can see the HSRP virtual MAC address is 0000. PC1#ping 10.0000 ARPA FastEthernet0/0 Internet 192.Group 1 Local state is Standby.1 1 192.1.2 68 msec 56 msec * PC1# 8、Check arp table on PC1.0c07.1.0be4.1. Sending 5.ccieuniversity.168. Tracing the route to 10. round-trip min/avg/max = 44/300/1100 ms PC1# PC1#traceroute 10. priority 100 Hellotime 3 sec. last state change 00:03:11 IP redundancy name is "hsrp-Fa0/0-1" (default) 7、Ping and trace-route to destination 10.168.168.686 Virtual IP address is 192.1. 100-byte ICMP Echos to 10.1.com R2#show standby FastEthernet0/0 .1.1.1.168.1.ac01 PC1#show arp Protocol Address Age (min) Hardware Addr Type Interface Internet 192.1 configured Active router is 192.1 12 0000. R1(config)#interface fastEthernet 0/0 R1(config-if)#shutdown 00:39:48: %STANDBY-6-STATECHANGE: FastEthernet0/0 Group 1 state Active -> Init PC1#ping Protocol [ip]: Target IP address: 10.1.1.0c07.1.ca02.1 Type escape sequence to abort. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).748 Standby router is local 8 state changes.1. timeout is 2 seconds: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!.1 Type escape sequence to abort. round-trip min/avg/max = 20/57/108 ms PC1> PC1>traceroute 10. we can see HSRP can provide redundant feature. 100-byte ICMP Echos to 10.168. holdtime 10 sec Next hello sent in 0.1. 100-byte ICMP Echos to 10. we can see the real next hop changed from 192.1.1.1 1 192. 10、Ping and trace-route to destination 10.168.1.com Timeout in seconds [2]: Extended commands [n]: Sweep range of sizes [n]: Type escape sequence to abort. Sending 1000000.1. Sending 5.1.1. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).ccieuniversity. 12、No shutdown Fa0/0 on R1..www.1..1.3 32 msec 28 msec * PC1> 11、Based on the above test..168.1 Type escape sequence to abort.Group 1 Local state is Standby.1.1.1. R1#show standby FastEthernet0/0 .. R1(config)#interface fastEthernet 0/0 R1(config-if)#no shutdown R1(config-if)#exit R1(config)# 13、Check HSRP group information on R1. round-trip min/avg/max = 16/72/560 ms 00:39:56: %STANDBY-6-STATECHANGE: FastEthernet0/0 Group 1 state Standby -> Active Everything will be back in 10 seconds.1 on PC1 again. Tracing the route to 10.1.3 PC1>ping 10.2 to 192.1.1. priority 100 Hellotime 3 sec.1.1.450 .!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Success rate is 99 percent (456/461). we found the active router is still R2. www. and enable preempt on R2.2.com Virtual IP address is 192.1.Group 1 Local state is Standby.452 Standby router is local 11 state changes. last state change 00:00:34 IP redundancy name is "hsrp-Fa0/0-1" (default) 14、If we want R1 back to the active router when it's up again.168.722 Virtual IP address is 192. priority 100 Hellotime 3 sec. R1(config)#interface fastEthernet 0/0 R1(config-if)#standby 1 priority 200 R1(config-if)#standby 1 preempt R1(config-if)#standby 1 track loopback 0 150 R1(config-if)#exit R1(config)# R2(config)#interface fastEthernet 0/0 R2(config-if)#standby 1 preempt R2(config-if)# 17、Enable HSRP debug and shutdown loopback 0 on R1. holdtime 10 sec Next hello sent in 2.168.1. we can see the HSRP priority of R1 down to 50.1. priority 200 expires in 7.1. enable track on R1.168.168. R2#show standby FastEthernet0/0 .1 configured Active router is 192. last state change 00:03:53 IP redundancy name is "hsrp-Fa0/0-1" (default) 16、HSRP can also track link state to provide high availability.672 Standby router is local 7 state changes.3. then we need to enable preempt feature on R1. . priority 100 expires in 9.1 configured Active router is 192. R1(config)#interface fastEthernet 0/0 R1(config-if)#standby 1 priority 200 R1(config-if)#standby 1 preempt R1(config-if)#exit R1(config)# R1# 00:55:55: %STANDBY-6-STATECHANGE: FastEthernet0/0 Group 1 state Standby -> Active 15、Check HSRP group information on R2.ccieuniversity. 1.3. was 192. priority 50 (confgd 200).1.1.168.1 configured Active router is 192. End with CNTL/Z.1) 01:09:58: SB1: Fa0/0 Standby router is unknown.ccieuniversity.1.3 (vIP 192. R1(config)# R1(config)#interface loopback 0 R1(config-if)#shutdown R1(config-if)# R1(config-if)# 01:09:58: SB: Fa0/0 Grp 1 Tracked interface Loopback0 Down 01:09:58: SB: Fa0/0 Grp 1 Priority 200/200 -> 50/200 01:09:58: SB1: Fa0/0 Active: j/Coup rcvd from higher pri router (100/192. priority 100 expires in 8. may preempt Hellotime 3 sec. R1#show standby FastEthernet0/0 .1.www.1.252 Standby router is local 13 state changes.1. last state change 00:01:19 IP redundancy name is "hsrp-Fa0/0-1" (default) Priority tracking 1 interface.668 Virtual IP address is 192.1. was local 01:09:58: SB: Fa0/0 Remove active hash 192.3) 01:09:58: SB1: Fa0/0 Active router is 192. holdtime 10 sec Next hello sent in 2.168.3 (frc 0) 01:09:58: SB: Fa0/0 Add active hash 192.168.168.168. one per line. 0 up: Interface Decrement State Loopback0 150 Down (administratively down) R1# . changed state to administratively down 01:10:08: SB1: Fa0/0 Speak: d/Standby timer expired (unknown) 01:10:08: SB1: Fa0/0 Standby router is local 01:10:08: SB1: Fa0/0 Speak -> Standby 01:10:08: SB1: Fa0/0 Redundancy "hsrp-Fa0/0-1" state Speak -> Standby 18、Check HSRP group information on R1 and R2.1.3.Group 1 Local state is Standby.168.com R1#debug standby events HSRP Events debugging is on R1# R1#conf t Enter configuration commands.168.168.2 (vIP 192.1.168.1) 01:09:58: SB: Fa0/0 Remove passive hash 192.3 01:09:58: SB1: Fa0/0 Active -> Speak 01:09:58: %STANDBY-6-STATECHANGE: FastEthernet0/0 Group 1 state Active -> Speak 01:09:58: SB1: Fa0/0 Redundancy "hsrp-Fa0/0-1" state Active -> Speak 01:09:58: SB: Fa0/0 Redirect adv start 01:09:58: %LINK-5-CHANGED: Interface Loopback0.168. may preempt Hellotime 3 sec.128 Virtual mac address is 0000.1 configured Active router is local Standby router is 192.2. priority 50 expires in 9. last state change 00:00:57 IP redundancy name is "hsrp-Fa0/0-1" (default) Priority tracking 1 interface.168.ccieuniversity.www. 1 up: Interface Decrement State Loopback0 10 Up By www.1.ccieuniversity.168.Group 1 Local state is Active.ac01 15 state changes. holdtime 10 sec Next hello sent in 0.0c07.com Configuring Layer 3 Redundancy with VRRP Lab Topology Lab Purpose: 1、Master HSRP configuration.808 Virtual IP address is 192.1.com R2#show standby FastEthernet0/0 . . priority 100. 1.255.1 1 192.10 255.1.1 Type escape sequence to abort.1 Type escape sequence to abort.1.20 255. 100-byte ICMP Echos to 10.1.1.1 PC1(config)#exit PC2(config)#no ip routing PC2(config)# PC2(config)#interface fastEthernet 0/0 PC2(config-if)#ip address 192. Tracing the route to 10. round-trip min/avg/max = 72/293/1084 ms PC2# PC2#traceroute 10. PC1#ping 10. Sending 5.1.1.255.168.1.1.168.168. round-trip min/avg/max = 48/60/72 ms PC1# PC1#traceroute 10.0 PC2(config-if)#no cdp enable PC2(config-if)#no shutdown PC2(config-if)#exit PC2(config)# PC2(config)#ip default-gateway 192.1.1.1 12 msec * PC1# 96 msec PC2#ping 10.1.1.1.1.168. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).255.255.168. Sending 5.1. PC1(config)#no ip routing PC1(config)# PC1(config)#interface fastEthernet 0/0 PC1(config-if)#ip address 192.1.1.www.1 .1.1.0 PC1(config-if)#no cdp enable PC1(config-if)#no shutdown PC1(config-if)#exit PC1(config)# PC1(config)#ip default-gateway 192.1 Type escape sequence to abort.ccieuniversity. Tracing the route to 10. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1 Type escape sequence to abort.com Lab Steps: 1、Finish PC configuration according to the topology.2 PC2(config)#exit 2、Ping test and track test on PC1 and PC2.1.1. 100-byte ICMP Echos to 10.1. 1. 100-byte ICMP Echos to 10. Tracing the route to 10.1. Tracing the route to 10.1.1.2 112 msec * PC2# 96 msec 5、Enable VRRP on R1 and R2.www.168.1 1 * 2 * 3 * ……… * * * * * * PC2#ping 10..1..168.1 Type escape sequence to abort.com 1 192.1. PC1#ping 10. R1(config)#interface R1(config-if)#vrrp 1 R1(config-if)#vrrp 1 R1(config-if)#vrrp 1 R1(config-if)# R1(config-if)#vrrp 2 R1(config-if)#vrrp 2 R1(config-if)#vrrp 2 R1(config-if)#exit fastEthernet 0/0 ip 192.1.1 Type escape sequence to abort.2 120 msec * PC2# 72 msec 3、Shutdown Fa0/0 on R1.1.1.1 Type escape sequence to abort.1.1 1 192. Success rate is 0 percent (0/5) PC1# PC1#traceroute 10.168.ccieuniversity.1.1.1..1 Type escape sequence to abort.1.1. 100-byte ICMP Echos to 10.1.1.168. Sending 5. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5). round-trip min/avg/max = 72/128/160 ms PC2# PC2#tr PC2#traceroute 10.1..1.1. R1(config)#interface fastEthernet 0/0 R1(config-if)#shutdown R1(config-if)# 4、Ping test and track test on PC1 and PC2 again. Sending 5. we can see there is no redundant solution although there are 2 links. timeout is 2 seconds: .1.2 priority 100 preempt .1 priority 200 preempt ip 192.1. 1.1.609 sec (expires in 2.5e00.168.1.168.2 Virtual MAC address is 0000.1 Virtual MAC address is 0000.349 sec) R2#show vrrp FastEthernet0/0 .Group 2 State is Master Virtual IP address is 192.5e00.Group 2 State is Backup Virtual IP address is 192.168. priority is 255 Master Advertisement interval is 1.003 sec FastEthernet0/0 .2 priority 200 preempt 6、Check VRRP group information on R1 and R2.1.ccieuniversity.168.773 sec) FastEthernet0/0 .1 Virtual MAC address is 0000.000 sec Preemption enabled Priority is 100 Master Router is 192.1.1.000 sec Master Down interval is 3.0102 . R1#show vrrp FastEthernet0/0 .168.168.2.0102 Advertisement interval is 1.www.609 sec (expires in 3.1.000 sec Master Down interval is 3.com R1(config)# R2(config)#interface R2(config-if)#vrrp 1 R2(config-if)#vrrp 1 R2(config-if)#vrrp 1 R2(config-if)# R2(config-if)#vrrp 2 R2(config-if)#vrrp 2 R2(config-if)#vrrp 2 R2(config-if)#exit R2(config)#exit R2# fastEthernet 0/0 ip 192.1 priority 100 preempt ip 192.168.0101 Advertisement interval is 1.5e00.0101 Advertisement interval is 1.000 sec Master Down interval is 3. priority is 255 Master Advertisement interval is 1.5e00.000 sec Preemption enabled Priority is 255 (cfgd 200) Master Router is 192.168.168.1.1 (local).000 sec Preemption enabled Priority is 100 Master Router is 192.Group 1 State is Master Virtual IP address is 192. priority is 255 Master Advertisement interval is 1.1.2 Virtual MAC address is 0000.Group 1 State is Backup Virtual IP address is 192.1. 168. PC1#ping 10.1.1 1 192.003 sec 7、Shutdown Fa0/0 on R1 again. Tracing the route to 10.131: %VRRP-6-STATECHANGE: Fa0/0 Grp 1 state Master -> Init *Jul 8 21:49:59. R1(config)#interface fastEthernet 0/0 R1(config-if)#shutdown R1(config-if)# *Jul 8 21:49:59. priority is 255 Master Advertisement interval is 1.1.1 Type escape sequence to abort.1.1.1.2 92 msec * PC1# 120 msec PC2#ping 10.1 Type escape sequence to abort.ccieuniversity.1.1.1.1.135: %VRRP-6-STATECHANGE: Fa0/0 Grp 2 state Backup -> Init R2# *Jul R2# 8 21:50:03.168.1. 100-byte ICMP Echos to 10.ccieuniversity.1.000 sec Master Down interval is 3.1. round-trip min/avg/max = 48/78/96 ms PC1# PC1#traceroute 10. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).1.1. 100-byte ICMP Echos to 10. this time we've got redundancy.1 1 192.www.2 132 msec * PC2# 168 msec By www. timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5).168.1.com .000 sec Preemption enabled Priority is 255 (cfgd 200) Master Router is 192. Tracing the route to 10. Sending 5.1 Type escape sequence to abort. round-trip min/avg/max = 72/172/452 ms PC2# PC2#traceroute 10.1.1.191: %VRRP-6-STATECHANGE: Fa0/0 Grp 1 state Backup -> Master 8、Ping test and track test on PC1 and PC2 again.com Advertisement interval is 1.1.1. Sending 5.1 Type escape sequence to abort.1.2 (local).1.
Copyright © 2024 DOKUMEN.SITE Inc.