Lab 3.8: (1.1) Cấu hình định tuyến động OSPF trên Cisco Router (Cấu hình cơ bản trên các thiết bị)

Mục tiêu thực hành:

- Cấu hình tên hostname trên Cisco Router.

- Cấu hình địa chỉ IP trên các cổng giao tiếp của Cisco Router.

- Cấu hình NAT Overload trên các Cisco Router (VPN.RT, Site1.RT, Site2.RT, Firewall).

- Cấu hình định tuyến Static Route trên Cisco Router & Switch (VPN.RT, Site1.RT, Site2.RT, Firewall, CoreSwitch).

- Cấu hình giả lập môi trường Internet ISP trên Cisco Router ISP.

- Cấu hình GRE VPN trên Cisco Router (VPN.RT vs Site1.RT, VPN.RT vs Site2.RT).

- Cấu hình cơ bản trên VPN.RT.

- Cấu hình cơ bản trên MPLS.RT.

- Cấu hình cơ bản trên CoreSwitch.

- Cấu hình cơ bản trên Firewall.

- Cấu hình cơ bản trên Site1.RT.

- Cấu hình cơ bản trên Site2.RT.

Truy cập vào "Lab 3-8 - Cau hinh dinh tuyen dong OSPF tren Cisco Router v1" tại Public Unetlab Server 24/7 để thực hành.

Cấu hình cơ bản trên VPN.RT.

hostname VPN-RT

interface Ethernet0/0
ip address 10.0.0.3 255.255.255.248
ip nat inside
no shutdown
exit
interface Ethernet0/1
ip address 203.0.3.2 255.255.255.0
ip nat outside
no shutdown
exit

ip nat inside source list NatTraffic interface Ethernet0/1 overload
ip route 0.0.0.0 0.0.0.0 203.0.3.1

ip access-list extended NatTraffic
permit ip 10.0.0.0 0.0.255.255 any
exit

Cấu hình cơ bản trên MPLS.RT.

hostname MPLS-RT

interface Ethernet0/0
ip address 10.0.0.2 255.255.255.248
no shutdown
exit
interface Ethernet0/1
ip address 172.16.0.1 255.255.255.252
no shutdown
exit
interface Ethernet0/2
ip address 172.16.0.5 255.255.255.252
no shutdown
exit

Cấu hình cơ bản trên CoreSwitch.

hostname CoreSwitch

interface Ethernet0/0
no switchport
ip address 10.0.0.9 255.255.255.248
exit
vlan 10
name VIP
exit
vlan 11
name Staff01
exit
vlan 12
name Staff01
exit
vlan 13
name Staff01
exit
vlan 14
name Staff01
exit
vlan 15
name Staff01
exit
vlan 16
name Staff01
exit
vlan 17
name Staff01
exit
vlan 18
name Staff01
exit
vlan 20
name GuestWiFi
exit
vlan 30
name Camera
exit
vlan 40
name Server
exit
vlan 50
name Manage
exit
vlan 100
name Backbone
exit

interface Ethernet0/1
switchport trunk allowed vlan 10-14
switchport trunk encapsulation dot1q
switchport mode trunk
spanning-tree portfast trunk
exit
interface Ethernet0/2
switchport trunk allowed vlan 10,15-18
switchport trunk encapsulation dot1q
switchport mode trunk
spanning-tree portfast trunk
exit
interface Ethernet0/3
switchport trunk allowed vlan 30,40,50
switchport trunk encapsulation dot1q
switchport mode trunk
spanning-tree portfast trunk
exit

interface Ethernet1/2
switchport mode access
switchport access vlan 100
spanning-tree portfast
exit
interface Ethernet1/3
switchport mode access
switchport access vlan 100
spanning-tree portfast
exit

interface Vlan10
ip address 10.0.10.1 255.255.255.0
no shutdown
exit
interface Vlan11
ip address 10.0.11.1 255.255.255.0
no shutdown
exit
interface Vlan12
ip address 10.0.12.1 255.255.255.0
no shutdown
exit
interface Vlan13
ip address 10.0.13.1 255.255.255.0
exit
interface Vlan14
ip address 10.0.14.1 255.255.255.0
no shutdown
exit
interface Vlan15
ip address 10.0.15.1 255.255.255.0
no shutdown
exit
interface Vlan16
ip address 10.0.16.1 255.255.255.0
no shutdown
exit
interface Vlan17
ip address 10.0.17.1 255.255.255.0
no shutdown
exit
interface Vlan18
ip address 10.0.18.1 255.255.255.0
no shutdown
exit
interface Vlan20
ip address 10.0.20.1 255.255.255.0
no shutdown
exit
interface Vlan30
ip address 10.0.30.1 255.255.255.0
no shutdown
exit
interface Vlan40
ip address 10.0.40.1 255.255.255.0
no shutdown
exit
interface Vlan50
ip address 10.0.50.1 255.255.255.0
no shutdown
exit
interface Vlan100
ip address 10.0.0.1 255.255.255.248
no shutdown
exit

ip dhcp excluded-address 10.0.10.1
ip dhcp excluded-address 10.0.11.1
ip dhcp excluded-address 10.0.12.1
ip dhcp excluded-address 10.0.13.1
ip dhcp excluded-address 10.0.14.1
ip dhcp excluded-address 10.0.15.1
ip dhcp excluded-address 10.0.16.1
ip dhcp excluded-address 10.0.17.1
ip dhcp excluded-address 10.0.18.1
ip dhcp excluded-address 10.0.19.1
ip dhcp excluded-address 10.0.20.1
ip dhcp excluded-address 10.0.30.1
ip dhcp excluded-address 10.0.40.1
ip dhcp excluded-address 10.0.50.1

ip dhcp pool vlan10
network 10.0.10.0 255.255.255.0
default-router 10.0.10.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan11
network 10.0.11.0 255.255.255.0
default-router 10.0.11.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan12
network 10.0.12.0 255.255.255.0
default-router 10.0.12.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan13
network 10.0.13.0 255.255.255.0
default-router 10.0.13.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan14
network 10.0.14.0 255.255.255.0
default-router 10.0.14.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan15
network 10.0.15.0 255.255.255.0
default-router 10.0.15.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan16
network 10.0.16.0 255.255.255.0
default-router 10.0.16.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan17
network 10.0.17.0 255.255.255.0
default-router 10.0.17.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan18
network 10.0.18.0 255.255.255.0
default-router 10.0.18.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan19
network 10.0.19.0 255.255.255.0
default-router 10.0.19.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan20
network 10.0.20.0 255.255.255.0
default-router 10.0.20.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan30
network 10.0.30.0 255.255.255.0
default-router 10.0.30.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan40
network 10.0.40.0 255.255.255.0
default-router 10.0.40.1
dns-server 8.8.8.8
exit
ip dhcp pool vlan50
network 10.0.50.0 255.255.255.0
default-router 10.0.50.1
dns-server 8.8.8.8
exit

Cấu hình cơ bản trên Firewall.

hostname Firewall

interface Ethernet0/0
ip address 10.0.0.10 255.255.255.248
ip nat inside
no shutdown
exit
interface Ethernet0/1
ip address dhcp
ip nat outside
no shutdown
exit

ip route 0.0.0.0 0.0.0.0 203.0.4.1

ip access-list extended NatTraffic
permit ip 10.0.0.0 0.0.255.255 any
exit
ip nat inside source list NatTraffic interface Ethernet0/1 overload

Cấu hình cơ bản trên Site1.RT.

hostname Site1-RT

interface Ethernet0/0
no ip address
no shutdown
exit
interface Ethernet0/0.10
encapsulation dot1Q 10
ip address 172.16.1.1 255.255.255.192
ip nat inside
exit
interface Ethernet0/0.20
encapsulation dot1Q 20
ip address 172.16.1.65 255.255.255.192
ip nat inside
exit
interface Ethernet0/0.30
encapsulation dot1Q 30
ip address 172.16.1.129 255.255.255.192
ip nat inside
exit
interface Ethernet0/1
ip address 203.0.1.2 255.255.255.0
ip nat outside
no shutdown
exit
interface Ethernet0/2
ip address 172.16.0.2 255.255.255.252
no shutdown
exit

ip route 0.0.0.0 0.0.0.0 203.0.1.1

ip access-list extended NatTraffic
deny ip 172.16.1.0 0.0.0.255 10.0.0.0 0.255.255.255
deny ip 172.16.1.0 0.0.0.255 172.16.0.0 0.31.255.255
deny ip 172.16.1.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 172.16.1.0 0.0.0.255 any
exit
ip nat inside source list NatTraffic interface Ethernet0/1 overload

Cấu hình cơ bản trên Site2.RT.

hostname Site2-RT

interface Ethernet0/0
no ip address
no shutdown
exit
interface Ethernet0/0.10
encapsulation dot1Q 10
ip address 172.16.2.1 255.255.255.192
ip nat inside
exit
interface Ethernet0/0.20
encapsulation dot1Q 20
ip address 172.16.2.65 255.255.255.192
ip nat inside
exit
interface Ethernet0/0.30
encapsulation dot1Q 30
ip address 172.16.2.129 255.255.255.192
ip nat inside
exit
interface Ethernet0/1
ip address 203.0.2.2 255.255.255.0
ip nat outside
no shutdown
exit
interface Ethernet0/2
ip address 172.16.0.6 255.255.255.252
exit

ip route 0.0.0.0 0.0.0.0 203.0.2.1

ip access-list extended NatTraffic
deny ip 172.16.2.0 0.0.0.255 10.0.0.0 0.255.255.255
deny ip 172.16.2.0 0.0.0.255 172.16.0.0 0.31.255.255
deny ip 172.16.2.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 172.16.2.0 0.0.0.255 any
exit
ip nat inside source list NatTraffic interface Ethernet0/1 overload

Thực hành thêm các bài Lab cơ bản khác tại hạng mục Học Network CCNA R&S thông qua các bài thực hành.

Lab 3.8: (1.1) Cấu hình định tuyến động OSPF trên Cisco Router (Cấu hình cơ bản trên các thiết bị)

You Might Also Like

0 comments