Páginas

Mostrando entradas con la etiqueta comandos. Mostrar todas las entradas
Mostrando entradas con la etiqueta comandos. Mostrar todas las entradas

viernes, 11 de abril de 2025

Configuración de Zerotier Acceso a Servidor LAN vía SSH FreeBSD 14.2

Configuración para conectar clientes a un servidor FreeBSD via Zerotier y SSH

Instalación y configuración de Zerotier en el servidor FreeBSD

Instalación y puesta en marcha de Zerotier 

 pkg install net/zerotier
 sysrc zerotier_enable=YES
 service zerotier start

Unirse a la Red Zerotier (192.168.192.0-24): 

 zerotier-cli join <Network ID>

Reemplaza <Network ID> con el ID de tu red Zerotier (puedes verlo en Zerotier central).

Autorizar el servidor en Zerotier, aparecerá en la lista de miembros con su ID

Asigna una IP fija al servidor en la red Zerotier (por ej: 192.168.192.133).

Configuración del cortafuegos PF en el servidor FreeBSD

Habilitar IP Forwarding (Reenvío de paquetes): 

echo "net.inet.ip.forwarding=1" >> /etc/sysctl.conf

Aplicar los cambios:

sysctl net.inet.ip.forwarding=1
net.inet.ip.forwarding: 1

Reglas PF (/etc/pf.conf) 

# Macros
wan_if = "re0"               # Interfaz conectada al MikroTik (LAN)
lan_net = "192.168.88.0/24"  # Red local
zt_if = "zt1ocu1pr8e2sac"    # Interfaz ZeroTier
zt_net = "192.168.192.0/24"  # Red ZeroTier

# Opciones generales
set block-policy drop
set skip on { lo0, $zt_if }  # ZeroTier no necesita filtrado estricto
scrub in all fragment reassemble

# Reglas predeterminadas
block all
pass out quick keep state

# Permitir tráfico entre redes LAN y ZeroTier
pass quick from $lan_net to $zt_net
pass quick from $zt_net to $lan_net

# Permitir servicios desde la LAN (Samba, NFSv4, SSH)
pass in on $wan_if proto { tcp, udp } from $lan_net to any port { 139, \
445, 111, 2049, 22 }

# Permitir SSH desde ZeroTier (clientes externos)
pass in on $zt_if proto tcp from $zt_net to ($wan_if) port 22

# Reglas para ZeroTier (puerto UDP 9993 y comunicación entre peers)
pass in on $zt_if proto udp from any to any port 9993

# Permitir ICMP (pings y mensajes de error)
pass in inet proto icmp all icmp-type { echoreq, unreach }

Configuración de clientes Zerotier:

Instalar Zerotier en los dispositivos cliente

Unirlos a la red Zerotier

zerotier-cli join <Network ID> o mediante la app

Autoriza los clientes en Zerotier y asígnales IPs fijas si es necesario

Acceso SSH al servidor

Conectarse desde un cliente usando la IP de Zerotier del servidor

 ssh usuario@192.168.192.133

Ruta estática entre la red local (192.168.88.0/24) y Zerotier (192.168.192.0/24)

¿Por qué es necesaria?

Los clientes en Zerotier (192.168.192.0/24) no saben como llegar a la red local del servidor (192.168.88.0/24) por defecto.

La ruta estática indica a Zerotier que el servidor actúa como puerta de enlace para la red local.

Configuración en Zerotier Central:

Ir a su red en Zerotier
En Advanced > Managed Routes,
añadir:

 - Destination: 192.168.88.0/24
 - Via: 192.168.192.133 (IP Zerotier del servidor)

Explicación Técnica

Zerotier como VPN Layer 2:

Crea una red virtual donde todos los dispositivos aparecen como si estuvieran en la misma LAN, evitando la necesidad de port forwarding

Ruta estática:

Dirige el tráfico desde Zerotier hacia la red local a través del servidor, que actúa como router.

Regla de Cortafuegos en Mikrotik

Agregar una regla que permita el tráfico SSH desde la red ZeroTier hacia el servidor FreeBSD

# En Mikrotik (RouterOS CLI)

/ip firewall filter add chaind=filter action=accept protocol=tcp \
dst-port=22 src-address=192.168.192.0/24 comment="Permitir SSH desde ZeroTier"

El servidor usa la IP de ZeroTier para SSH, asegúrese de que SSH está configurado para escuchar en esa IP 

# En /etc/ssh/sshd_config
ListenAddress 192.168.192.133

Reiniciar SSH después 

service sshd restart

Verificaión:

Desde un cliente Zerotier, por ej: desactivo la conexión wifi de mi teléfono móvil y activo los datos para conectarme desde una red externa:

 ssh carlos@192.168.192.133


Captura de tráfico 

 tcpdump -i zt1ocu1pr8e2sac

Optimizar ZeroTier:

- En /usr/local/etc/zerotier-one/zerotier-one.conf, configura allowManaged y allowGlobal para controlar el acceso a rutas:

   {
     "settings": {
       "allowManaged": true,
       "allowGlobal": false
     }
   }

Diagrama de Flujo

Esta configuración garantiza que solo los servicios necesarios estén expuestos, y la comunicación entre redes se realice de manera segura y controlada.

FreeBSD es genial!.

Posted by at No hay comentarios:
Labels: , , , , , , , , , , ,

miércoles, 21 de septiembre de 2022

Freebsd tar Excluir Directorios

Fuente:
https://www.gnu.org/software/tar/manual/html_node/exclude.html#exclude

Ciertas opciones para tar le permite especificar un nombre para su archivo. Otras opciones le permiten decidir qué archivos incluir o excluir del archivo, en función de cuándo o si se modificaron los archivos, si los nombres de los archivos coinciden o no con los patrones especificados, o si los archivos están en directorios especificados.

Realizar copias con tar excluyendo directorios listados dentro de un archivo, utilizando la opción --exclude-from

Importamos el zpool copias


# zpool import copias



# zpool status
  pool: copias
 state: ONLINE
config:

	NAME        STATE     READ WRITE CKSUM
	copias      ONLINE       0     0     0
	  da0p1     ONLINE       0     0     0

errors: No known data errors

  pool: zroot
 state: ONLINE
config:

	NAME        STATE     READ WRITE CKSUM
	zroot       ONLINE       0     0     0
	  nvd0p4    ONLINE       0     0     0

errors: No known data errors

Creamos el archivo excluir_dirs.txt donde incluiremos todos los directorios a excluir de la copia

carlos@foo:~ % pwd


/usr/home/carlos

carlos@foo:~ % touch excluir_dirs.txt

Tenga en cuenta que las líneas del archivo se leen palabra por palabra. Uno de los los errores frecuentes es dejar espacios en blanco adicionales después de un nombre de archivo, que es difícil de detectar usando editores de texto. Sin embargo, las líneas vacías están bien

carlos@foo:~ % cat excluir_dirs.txt


./.ssh
./.dbus
./.mozilla
./.cache
./Descargas
./DevOps_Bootcamp
./Musica



# tar cfCv - /usr/home/carlos/ --exclude-from excluir_dirs.txt . | \
tar xpfC - /copias/tar_home_fbsd

-c Crear un nuevo archivo que contenga los elementos especificados

-f Leer el archivo desde o escribir el archivo en el fichero especificado

-C directorio, --cd directorio. En el modo c y r, esto cambia el directorio antes de añadir los siguientes archivos.

-v Produce una salida detallada. En los modos de creación y extracción, tar enumerará cada nombre de archivo a medida que se lea o escriba en el archivo.

-x Extraer al disco desde el archivo. Si un archivo con el mismo nombre aparece más de una vez en el archivo, cada copia será extraído, y las copias posteriores sobrescribirán las anteriores copias.

-p --preserve-permissions (sólo en modo x) Preserva los permisos de los archivos. Intenta restaurar los permisos completos

Exportar el zpool copias


# zpool export copias

carlos@foo:~ % ls -Fa


...
.ssh/
.cache/
.dbus/
.mozilla
Avanzado/
bhyve/
Dell-7390/
Descargas/
DevOps_Bootcamp/
docs/
Documentos/
Ebooks/
Escritorio/
excluir_dirs.txt
Imagenes/
Musica/
Plantillas/
Publico/
scripts/
Videos/

FreeBSD es genial!.

Posted by at No hay comentarios:
Labels: , , , , , , ,

miércoles, 14 de abril de 2021

Configuración de ACL numeradas extendidas En GNS3

Configuración y aplicación de ACL numeradas extendidas En GNS3




Filtro extendido de ACL basado en la dirección de origen y destino, así como los protocolos de capa 4 TCP y UDP.

1.- Configurar los nombres de host en R1 y R2

2.- Configurar en R1 s1/0 como DCE para proveer un clock rate de
80640kbps a R2 más sus correspondientes direcciones IP.

3.- Configurar una ruta predeterminada estática en el R1 señalando a R2 (sobre la conexión serial entre los dos Routers). Configure también una ruta predeterminada estática en el R3 señalando al R1 vía la conexión serial entre los dos Routers y las interfaces de loopback especificadas en el diagrama.

R1#conf t  
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#inter s1/0
R1(config-if)#ip add 172.16.1.1 255.255.255.192
R1(config-if)#no shu
R1(config-if)#
*Mar  1 00:09:59.939: %LINK-3-UPDOWN: Interface Serial1/0, changed state to up
R1(config-if)#
*Mar  1 00:10:00.943: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial1/0, changed state to up
R1(config-if)#clock rate 80640

R2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2(config)#inter s1/0
R2(config-if)#ip add 172.16.1.2 255.255.255.192
R2(config-if)#no shu
R2(config-if)#
*Mar  1 00:10:57.499: %LINK-3-UPDOWN: Interface Serial1/0, changed state to up
R2(config-if)#
*Mar  1 00:10:58.503: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial1/0, changed state to up

R2(config-if)#do ping 172.16.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/14/24 ms
R2(config-if)#end

R2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2(config)#ip route 0.0.0.0 0.0.0.0 s1/0 172.16.1.1
R2(config)#

R2(config)#inter loop10 
R2(config-if)#ip a
*Mar  1 00:18:45.775: %LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback10, changed state to up
R2(config-if)#ip add 10.10.10.2 255.255.255.128
R2(config-if)#inter loop20
R2(config-if)#ip 
*Mar  1 00:20:55.915: %LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback20, changed state to up
R2(config-if)#ip add 10.20.20.2 255.255.255.240
R2(config-if)#inter loop30
R2(config-if)#ip ad 
*Mar  1 00:21:32.163: %LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback30, changed state to up
R2(config-if)#ip add 10.30.30.2 255.255.255.248
R2(config-if)#end

R2#sh ip inter b
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0/0            unassigned      YES unset  administratively down down    
FastEthernet0/1            unassigned      YES unset  administratively down down    
Serial1/0                  172.16.1.2      YES manual up                    up      
Serial1/1                  unassigned      YES unset  administratively down down    
Serial1/2                  unassigned      YES unset  administratively down down    
Serial1/3                  unassigned      YES unset  administratively down down    
Loopback10                 10.10.10.2      YES manual up                    up      
Loopback20                 10.20.20.2      YES manual up                    up      
Loopback30                 10.30.30.2      YES manual up                    up      
R2#


R1#
R1#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#ip route 0.0.0.0 0.0.0.0 s1/0 172.16.1.2
R1(config)#inter loop10
*Mar  1 00:27:12.687: %LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback10, changed state to up
R1(config-if)#ip add 172.16.4.1 255.255.255.192
R1(config-if)#exit
R1(config)#inter loop20
*Mar  1 00:27:57.675: %LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback20, changed state to up
R1(config-if)#ip add 172.17.5.1 255.255.255.248
R1(config-if)#end
R1#

R1#sh ip inter b
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0/0            unassigned      YES unset  administratively down down    
FastEthernet0/1            unassigned      YES unset  administratively down down    
Serial1/0                  172.16.1.1      YES manual up                    up      
Serial1/1                  unassigned      YES unset  administratively down down    
Serial1/2                  unassigned      YES unset  administratively down down    
Serial1/3                  unassigned      YES unset  administratively down down    
Loopback10                 172.16.4.1      YES manual up                    up      
Loopback20                 172.17.5.1      YES manual up                    up      
R1#

R2#ping 172.16.4.1 source loop10

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.4.1, timeout is 2 seconds:
Packet sent with a source address of 10.10.10.2 
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 76/79/84 ms
R2#

R2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2(config)#enable secret CISCO
R2(config)#line vty 0 903
R2(config-line)#password CISCO
R2(config-line)#login
R2(config-line)#end
R2#
*Mar  1 00:35:48.115: %SYS-5-CONFIG_I: Configured from console by console
R2#

R1#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#enable secret CISCO
R1(config)#line vty 0 903
R1(config-line)#end
*Mar  1 00:40:22.755: %SYS-5-CONFIG_I: Configured from console by console
R1#

R2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2(config)#access 170 permit tcp 172.16.4.0 0.0.0.63 10.20.20.0 0.0.0.15 eq telnet 
R2(config)#access-l 170 perm tcp 172.16.4.0 0.0.0.63 10.30.30.0 0.0.0.7 eq telnet
R2(config)#access- 170 perm icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo
R2(config)#access 170 perm icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo-reply
R2(config)#inter s1/0
R2(config-if)#ip access-group 170 in
R2(config-if)#end

R2#sh ip access-lists 170
Extended IP access list 170
    10 permit tcp 172.16.4.0 0.0.0.63 10.20.20.0 0.0.0.15 eq telnet
    20 permit tcp 172.16.4.0 0.0.0.63 10.30.30.0 0.0.0.7 eq telnet
    30 permit icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo
    40 permit icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo-reply

R1#

R1#telnet 10.30.30.2 /source-interface loopback10
Trying 10.30.30.2 ... Open

User Access Verification


Password: 
R2>en
Password: 
R2#exit

R1#telnet 10.20.20.2 /source-interface loopback10
Trying 10.20.20.2 ... Open


User Access Verification

Password: 
R2>en
Password: 
R2#exit

R1#ping 10.10.10.2 source loopback20

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.10.10.2, timeout is 2 seconds:
Packet sent with a source address of 172.17.5.1 
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 76/80/88 ms
R1#

R2#sh ip access-lists 170
Extended IP access list 170
    10 permit tcp 172.16.4.0 0.0.0.63 10.20.20.0 0.0.0.15 eq telnet (234 matches)
    20 permit tcp 172.16.4.0 0.0.0.63 10.30.30.0 0.0.0.7 eq telnet (129 matches)
    30 permit icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo (45 matches)
    40 permit icmp 172.17.5.0 0.0.0.7 10.10.10.0 0.0.0.127 echo-reply
R2#exit

R1#


IOS es genial!.
Posted by at No hay comentarios:
Labels: , , , , , ,

domingo, 11 de abril de 2021

ACLs Inbound Cisco GNS3

Configurar y aplicar Extended Numbered ACLs Inbound en GNS3:



Configurar R1 y R2 para permitir acceso vía telnet.

R2(config)#enable secret CISCO
R2(config)#line vt
R2(config)#line vty 0 903
R2(config-line)#password CISCO
R2(config-line)#login
R2(config-line)#end 
R1(config)#enable secret CISCO
R1(config)#line vt
R1(config)#line vty 0 903
R1(config-line)#password CISCO
R1(config-line)#login
R1(config-line)#end 

Implementar las direcciones IP correspondientes a las interfaces seriales 1/0, en R1 y R2.

R1#conf t
R1(config)#inter se1/0 
R1(config-if)#ip addr 172.16.1.1 255.255.255.192
R1(config-if)#no shut

R2#conf t
R2(config)#inter
R2(config)#interface se1/0
R2(config-if)#ip addr 172.16.1.2 255.255.255.192
R2(config-if)#no shut

Configurar las interfaces loopback 10,20 y 30 y sus correspondientes IPs:

R2(config)#interface loopback 10               
R2(config-if)#ip add 10.10.10.3  255.255.255.128
R2(config-if)#exit
R2(config)#interface loopback 20               
R2(config-if)#ip add 10.20.20.3  255.255.255.240
R2(config-if)#exit
R2(config)#interface loopback 30               
R2(config-if)#ip add 10.30.30.3  255.255.255.248 

Este comando establece una ruta predeterminada para subredes de destino que no están en la tabla de enrutamiento, "gateway del último recurso" configurado en su tabla de rutas IP.

R1(config)#ip route 0.0.0.0 0.0.0.0 172.16.1.2 
R2(config)#ip route 0.0.0.0 0.0.0.0 172.16.1.1 

Access-lists (R1).

R1#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1(config)#access-list 150 deny tcp 10.20.20.0 0.0.0.15 any eq telnet
R1(config)#access-list 150 permit tcp 10.30.30.0 0.0.0.7 any eq telnet
R1(config)#access-list 150 permit icmp 10.20.20.0 0.0.0.15 any echo
R1(config)#inter s1/0
R1(config-if)#ip access-group 150 in
R1(config-if)#^Z   

R1#sh ip access-lists 
Extended IP access list 150
    10 deny tcp 10.20.20.0 0.0.0.15 any eq telnet
    20 permit tcp 10.30.30.0 0.0.0.7 any eq telnet
    30 permit icmp 10.20.20.0 0.0.0.15 any echo
    40 permit tcp 10.10.10.0 0.0.0.127 any eq telnet

R2#ping 172.16.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.1.1, timeout is 2 seconds:
UUUUU
Success rate is 0 percent (0/5)
R2#telnet 172.16.1.1 /source- 
R2#telnet 172.16.1.1 /source-interface loopback
R2#telnet 172.16.1.1 /source-interface loopback 20
Trying 172.16.1.1 ... 
% Destination unreachable; gateway or host down

R2#telnet 172.16.1.1 /source-interface loopback 30
Trying 172.16.1.1 ... Open

User Access Verification

Password: 
R1>en
Password: 
R1#exit

[Connection to 172.16.1.1 closed by foreign host]

R2#ping 172.16.1.1 source 10.20.20.3

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.1.1, timeout is 2 seconds:
Packet sent with a source address of 10.20.20.3 
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 16/21/24 ms
R2#telnet 172.16.1.1 /source-interface loopback 10
Trying 172.16.1.1 ... Open

User Access Verification

Password: 
R1>en
Password: 
R1#exit

Permitir ping a la interface serial 1/0 de R1

R1(config)#access-list 150 permit icmp 172.16.1.0 0.0.0.127 any echo

R1#sh ip access-lists 
Extended IP access list 150
    10 deny tcp 10.20.20.0 0.0.0.15 any eq telnet (3 matches)
    20 permit tcp 10.30.30.0 0.0.0.7 any eq telnet (174 matches)
    30 permit icmp 10.20.20.0 0.0.0.15 any echo (30 matches)
    40 permit tcp 10.10.10.0 0.0.0.127 any eq telnet (111 matches)
    50 permit icmp 172.16.1.0 0.0.0.63 any echo (15 matches)
R1#

R2#ping 172.16.1.1                  

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 76/77/80 ms
R2#


GNS3 es genial!.
Posted by at No hay comentarios:
Labels: , , , , , ,

jueves, 18 de marzo de 2021

VLANs Trunk Routing ROAS Cisco


1.- Permitir solo las vlan 1,10,20 en las interfaces Trunk
2.- Interfaz que conecta a Core 1 cambiar a GigabitEthernet 
2.- Eliminar las Vlans y direcciones IPs.
3.- Gig0/0 no shut
3.- En el router R1-NV implementar Router On A Stick (ROAS), trunking encapsulation dot1Q
4.- Comprobar conectividad

Escenario actual:


R1-NV#sh interfaces tr
R1-NV#sh interfaces trunk 
Port        Mode         Encapsulation  Status        Native vlan
Fa0/0/0     on           802.1q         trunking      1

Port        Vlans allowed on trunk
Fa0/0/0     1

Port        Vlans allowed and active in management domain
Fa0/0/0     1

Port        Vlans in spanning tree forwarding state and not pruned
Fa0/0/0     1

R1-NV#sh ip inter
R1-NV#sh ip interface b
Interface              IP-Address      OK? Method Status                Protocol 
GigabitEthernet0/0     unassigned      YES manual administratively down down 
GigabitEthernet0/1     unassigned      YES unset  administratively down down 
GigabitEthernet0/2     193.37.255.2    YES DHCP   up                    up 
FastEthernet0/0/0      unassigned      YES unset  up                    up 
FastEthernet0/0/1      unassigned      YES unset  up                    down 
FastEthernet0/0/2      unassigned      YES unset  up                    down 
FastEthernet0/0/3      unassigned      YES unset  up                    down 
Serial0/1/0            unassigned      YES manual down                  down 
Serial0/1/1            unassigned      YES unset  down                  down 
Vlan1                  unassigned      YES unset  administratively down down 
Vlan10                 10.16.0.1       YES manual up                    up 
Vlan20                 10.16.2.1       YES manual up                    up 
Vlan30                 10.16.4.1       YES manual up                    up 
Vlan40                 10.16.6.1       YES manual up                    up
R1-NV#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1-NV(config)#inter
R1-NV(config)#no interface vlan 10
R1-NV(config)#
%LINK-5-CHANGED: Interface Vlan10, changed state to administratively down

%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan10, changed state to down

R1-NV(config)#no interface vlan 20
R1-NV(config)#
%LINK-5-CHANGED: Interface Vlan20, changed state to administratively down

%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan20, changed state to down

R1-NV(config)#no interface vlan 30
R1-NV(config)#
%LINK-5-CHANGED: Interface Vlan30, changed state to administratively down

%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan30, changed state to down

R1-NV(config)#no interface vlan 40
R1-NV(config)#
%LINK-5-CHANGED: Interface Vlan40, changed state to administratively down

%LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan40, changed state to down

R1-NV(config)#do wri
Building configuration...
[OK]
R1-NV(config)#^Z
R1-NV#
%SYS-5-CONFIG_I: Configured from console by console

R1-NV#sh ip inter
R1-NV#sh ip interface b
Interface              IP-Address      OK? Method Status                Protocol 
GigabitEthernet0/0     unassigned      YES manual administratively down down 
GigabitEthernet0/1     unassigned      YES unset  administratively down down 
GigabitEthernet0/2     193.37.255.2    YES DHCP   up                    up 
FastEthernet0/0/0      unassigned      YES unset  up                    up 
FastEthernet0/0/1      unassigned      YES unset  up                    down 
FastEthernet0/0/2      unassigned      YES unset  up                    down 
FastEthernet0/0/3      unassigned      YES unset  up                    down 
Serial0/1/0            unassigned      YES manual down                  down 
Serial0/1/1            unassigned      YES unset  down                  down 
Vlan1                  unassigned      YES unset  administratively down down
R1-NV#

R1-NV#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1-NV(config)#inter
R1-NV(config)#interface g
R1-NV(config)#interface gigabitEthernet 0/0
R1-NV(config-if)#no shut

R1-NV(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up

R1-NV(config-if)#exit
R1-NV(config)#inter
R1-NV(config)#interface g
R1-NV(config)#interface gigabitEthernet 0/0.10
R1-NV(config-subif)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0.10, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0.10, changed state to up

R1-NV(config-subif)#enca
R1-NV(config-subif)#encapsulation do
R1-NV(config-subif)#encapsulation dot1Q 10
R1-NV(config-subif)#ip add
R1-NV(config-subif)#ip address 10.16.0.1 255.255.255.0
R1-NV(config-subif)#exit
R1-NV(config)#interface gigabitEthernet 0/0.20
R1-NV(config-subif)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0.20, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0.20, changed state to up

R1-NV(config-subif)#encapsulation dot1Q 20
R1-NV(config-subif)#ip address 10.16.2.1 255.255.255.0
R1-NV(config-subif)#exit
R1-NV(config)#do sh ip inter
R1-NV(config)#do sh ip inter b
Interface              IP-Address      OK? Method Status                Protocol 
GigabitEthernet0/0     unassigned      YES manual up                    up 
GigabitEthernet0/0.10  10.16.0.1       YES manual up                    up 
GigabitEthernet0/0.20  10.16.2.1       YES manual up                    up 
GigabitEthernet0/1     unassigned      YES unset  administratively down down 
GigabitEthernet0/2     193.37.255.2    YES DHCP   up                    up 
FastEthernet0/0/0      unassigned      YES unset  up                    down 
FastEthernet0/0/1      unassigned      YES unset  up                    down 
FastEthernet0/0/2      unassigned      YES unset  up                    down 
FastEthernet0/0/3      unassigned      YES unset  up                    down 
Serial0/1/0            unassigned      YES manual down                  down 
Serial0/1/1            unassigned      YES unset  down                  down 
Vlan1                  unassigned      YES unset  administratively down down

R1-NV(config-if)#exit
R1-NV(config)#interface gigabitEthernet 0/0.10
R1-NV(config-subif)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0.10, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0.10, changed state to up

R1-NV(config-subif)#encapsulation do
R1-NV(config-subif)#encapsulation dot1Q 10
R1-NV(config-subif)#ip add
R1-NV(config-subif)#ip address 10.16.0.1 255.255.255.0
R1-NV(config-subif)#exit
R1-NV(config)#interface gigabitEthernet 0/0.20
R1-NV(config-subif)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0.20, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0.20, changed state to up

R1-NV(config-subif)#encapsulation dot1Q 20
R1-NV(config-subif)#ip address 10.16.2.1 255.255.255.0
R1-NV(config-subif)#exit
R1-NV(config)#do sh ip inter
R1-NV(config)#do sh ip inter b
Interface              IP-Address      OK? Method Status                Protocol 
GigabitEthernet0/0     unassigned      YES manual up                    up 
GigabitEthernet0/0.10  10.16.0.1       YES manual up                    up 
GigabitEthernet0/0.20  10.16.2.1       YES manual up                    up 
GigabitEthernet0/1     unassigned      YES unset  administratively down down 
GigabitEthernet0/2     193.37.255.2    YES DHCP   up                    up 
FastEthernet0/0/0      unassigned      YES unset  up                    down 
FastEthernet0/0/1      unassigned      YES unset  up                    down 
FastEthernet0/0/2      unassigned      YES unset  up                    down 
FastEthernet0/0/3      unassigned      YES unset  up                    down 
Serial0/1/0            unassigned      YES manual down                  down 
Serial0/1/1            unassigned      YES unset  down                  down 
Vlan1                  unassigned      YES unset  administratively down down

Ping desde el router R1 hacia PC10

R1-NV#ping 10.16.0.10

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.16.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/1 ms

R1-NV#ping 10.16.2.10

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.16.2.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/1 ms

Comprobando conectividad:

R1-NV#

R1-NV#ping 10.16.0.10

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.16.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/1 ms

R1-NV#ping 10.16.2.10

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.16.2.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/1 ms

R1-NV#

Ping desde PC20 VLAN 20

C:\>ipconfig

FastEthernet0 Connection:(default port)

   Link-local IPv6 Address.........: FE80::201:63FF:FE51:CDBB
   IP Address......................: 10.16.2.10
   Subnet Mask.....................: 255.255.255.0
   Default Gateway.................: 10.16.2.1

C:\>ping 10.16.2.1

Pinging 10.16.2.1 with 32 bytes of data:

Reply from 10.16.2.1: bytes=32 time<1ms TTL=255
Reply from 10.16.2.1: bytes=32 time<1ms TTL=255
Reply from 10.16.2.1: bytes=32 time=3ms TTL=255
Reply from 10.16.2.1: bytes=32 time<1ms TTL=255

Ping statistics for 10.16.2.1:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 3ms, Average = 0ms

C:\>ping 10.16.0.10

Pinging 10.16.0.10 with 32 bytes of data:

Reply from 10.16.0.10: bytes=32 time<1ms TTL=127
Reply from 10.16.0.10: bytes=32 time=1ms TTL=127
Reply from 10.16.0.10: bytes=32 time<1ms TTL=127
Reply from 10.16.0.10: bytes=32 time<1ms TTL=127

Ping statistics for 10.16.0.10:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 1ms, Average = 0ms

C:\>tracert 10.16.0.10

Tracing route to 10.16.0.10 over a maximum of 30 hops: 

  1   0 ms      0 ms      0 ms      10.16.2.1
  2   0 ms      0 ms      0 ms      10.16.0.10

Trace complete.

C:\>

Ping desde PC10 VLAN 10



Cisco es genial!.
Posted by at No hay comentarios:
Labels: , , , , ,

sábado, 13 de marzo de 2021

IPv4 Subnetting Cisco

Red 67.83.0.0/21 y la tabla
Crear subredes en el orden programado

Optimizar el espacio de direcciones

No desperdiciar IPs

Comprobar ping y tracert entre PC-10, 

MA-PC1 y ZA-PC1










Desde         Hasta           VLAN

67.83.0.1 - 67.83.0.254      10 

67.83.1.1 - 67.83.1.254      20

67.83.2.1 - 67.83.2.254      30

67.83.3.1 - 67.83.3.126      40

67.83.3.129 - 67.83.3.190   --

67.83.3.193 - 67.83.3.254   --

67.83.4.1 - 67.83.4.6           --



Core1#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Core1(config)#vlan 10
Core1(config-vlan)#exit
Core1(config)#interface vlan 10
Core1(config-if)#
%LINK-5-CHANGED: Interface Vlan10, changed state to up

Core1(config-if)#ip address 67.83.0.1 255.255.255.0
Core1(config-if)#exit
Core1(config)#vlan 20
Core1(config-vlan)#
Core1(config-vlan)#exit
Core1(config)#int
Core1(config)#interface vlan 20
Core1(config-if)#
%LINK-5-CHANGED: Interface Vlan20, changed state to up
Core1(config-if)#ip address 67.83.1.1 255.255.255.0
Core1(config-if)#exit
Core1(config)#vlan 30
Core1(config-vlan)#
Core1(config-vlan)#exit
Core1(config)#inter
Core1(config)#interface vlan 30
Core1(config-if)#
%LINK-5-CHANGED: Interface Vlan30, changed state to up

Core1(config-if)#ip address 67.83.2.1 255.255.255.0
Core1(config-if)#exit
Core1(config)#vlan 40
Core1(config-vlan)#exit
Core1(config)#inter
Core1(config)#interface vlan 40
Core1(config-if)#
%LINK-5-CHANGED: Interface Vlan40, changed state to up
Core1(config-if)#ip address 67.83.3.1 255.255.255.128
Core1(config-if)#exit
Core1(config)#
Core1(config)#^Z
Core1#
%SYS-5-CONFIG_I: Configured from console by console

Core1#sh ip interface b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet1/0/1 unassigned YES unset up up 

GigabitEthernet1/0/2 unassigned YES unset up up 

GigabitEthernet1/0/3 unassigned YES unset down down 

GigabitEthernet1/0/4 unassigned YES unset down down 

GigabitEthernet1/0/5 unassigned YES unset down down 

GigabitEthernet1/0/6 unassigned YES unset down down 

GigabitEthernet1/0/7 unassigned YES unset down down 

GigabitEthernet1/0/8 unassigned YES unset down down 

GigabitEthernet1/0/9 unassigned YES unset down down 

GigabitEthernet1/0/10 unassigned YES unset down down 

GigabitEthernet1/0/11 unassigned YES unset down down 

GigabitEthernet1/0/12 unassigned YES unset down down 

GigabitEthernet1/0/13 unassigned YES unset down down 

GigabitEthernet1/0/14 unassigned YES unset up up 

GigabitEthernet1/0/15 unassigned YES unset up up 

GigabitEthernet1/0/16 unassigned YES unset down down 

GigabitEthernet1/0/17 unassigned YES unset down down 

GigabitEthernet1/0/18 unassigned YES unset down down 

GigabitEthernet1/0/19 unassigned YES unset down down 

GigabitEthernet1/0/20 unassigned YES unset down down 

GigabitEthernet1/0/21 unassigned YES unset down down 

GigabitEthernet1/0/22 unassigned YES unset down down 

GigabitEthernet1/0/23 unassigned YES unset down down 

GigabitEthernet1/0/24 unassigned YES unset down down 

GigabitEthernet1/1/1 unassigned YES unset down down 

GigabitEthernet1/1/2 unassigned YES unset down down 

GigabitEthernet1/1/3 unassigned YES unset down down 

GigabitEthernet1/1/4 unassigned YES unset down down 

Loopback0 11.11.11.11 YES manual up up 

Vlan1 unassigned YES unset administratively down down 

Vlan10 67.83.0.1 YES manual up up 

Vlan20 67.83.1.1 YES manual up up 

Vlan30 67.83.2.1 YES manual up up 

Vlan40 67.83.3.1 YES manual up up

Core1#


Core1#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID

R1-NV Gig 1/0/1 157 R C2900 Gig 0/0

Core2 Gig 1/0/15 157 3650 Gig 1/0/15

Access Gig 1/0/2 120 S 2960 Fas 0/1

Core2 Gig 1/0/14 157 3650 Gig 1/0/14

Core1#


Core1#conf t

Enter configuration commands, one per line. End with CNTL/Z.

Core1(config)#interface g

Core1(config)#interface gigabitEthernet 1/0/1

Core1(config-if)#sw

Core1(config-if)#switchport mode

Core1(config-if)#switchport mode access 

Core1(config-if)#switchport access

Core1(config-if)#switchport access vlan 40

Core1(config-if)#

Core1(config-if)#exit


Core1(config)#interface gigabitEthernet 1/0/2

Core1(config-if)#switchport trunk encapsulation dot1q 

Core1(config-if)#switchport mode trunk 

Core1(config-if)#switchport trunk allowed vlan 1,10,30,40

Core1(config-if)#exit

Core1(config)#interface gigabitEthernet 1/0/14

Core1(config-if)#switchport trunk encapsulation dot1q 

Core1(config-if)#switchport mode trunk 

Core1(config-if)#switchport trunk allowed vlan 1,10,30,40

Core1(config-if)#exit

Core1(config)#interface gigabitEthernet 1/0/15

Core1(config-if)#switchport trunk encapsulation dot1q 

Core1(config-if)#switchport mode trunk 

Core1(config-if)#switchport trunk allowed vlan 1,10,30,40

Core1(config-if)#


Core1#sh interfaces trunk 

Port Mode Encapsulation Status Native vlan

Gig1/0/2 on 802.1q trunking 1

Gig1/0/14 on 802.1q trunking 1

Gig1/0/15 on 802.1q trunking 1


Port Vlans allowed on trunk

Gig1/0/2 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 1,10,20,30,40


Port Vlans allowed and active in management domain

Gig1/0/2 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 1,10,20,30,40


Port Vlans in spanning tree forwarding state and not pruned

Gig1/0/2 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 none


Core1#wri
Building configuration...
Compressed configuration from 7383 bytes to 3601 bytes[OK]
[OK]

Core1#sh vlan


VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active Gig1/0/3, Gig1/0/4, Gig1/0/5, Gig1/0/6

Gig1/0/7, Gig1/0/8, Gig1/0/9, Gig1/0/10

Gig1/0/11, Gig1/0/12, Gig1/0/13, Gig1/0/16

Gig1/0/17, Gig1/0/18, Gig1/0/19, Gig1/0/20

Gig1/0/21, Gig1/0/22, Gig1/0/23, Gig1/0/24

Gig1/1/1, Gig1/1/2, Gig1/1/3, Gig1/1/4

10 VLAN10 active 

20 VLAN20 active 

30 VLAN30 active 

40 VLAN40 active Gig1/0/1

1002 fddi-default act/unsup 

1003 token-ring-default act/unsup 

1004 fddinet-default act/unsup 

1005 trnet-default act/unsup 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 0 0

10 enet 100010 1500 - - - - - 0 0

20 enet 100020 1500 - - - - - 0 0

30 enet 100030 1500 - - - - - 0 0

40 enet 100040 1500 - - - - - 0 0

1002 fddi 101002 1500 - - - - - 0 0 

1003 tr 101003 1500 - - - - - 0 0 

1004 fdnet 101004 1500 - - - ieee - 0 0 

1005 trnet 101005 1500 - - - ibm - 0 0 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------


Remote SPAN VLANs

------------------------------------------------------------------------------


Primary Secondary Type Ports

------- --------- ----------------- ------------------------------------------

Core1#




Core2#sh cdp ne
Core2#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID

Core1 Gig 1/0/15 174 3650 Gig 1/0/15

Core1 Gig 1/0/14 174 3650 Gig 1/0/14

Access Gig 1/0/1 174 S 2960 Fas 0/4

Core2#


Core2#conf t

Enter configuration commands, one per line. End with CNTL/Z.

Core2(config)#inter

Core2(config)#interface g

Core2(config)#interface gigabitEthernet 1/0/1

Core2(config-if)#switchport trunk encapsulation do

Core2(config-if)#switchport trunk encapsulation dot1q 

Core2(config-if)#switchport mode trunk 

Core2(config-if)#switchport trunk allowed vlan 1,10,20,30,40

Core2(config-if)#exit


Core2(config)#interface gigabitEthernet 1/0/14

Core2(config-if)#switchport trunk encapsulation dot1q 

Core2(config-if)#switchport mode trunk 

Core2(config-if)#switchport trunk allowed vlan 1,10,20,30,40

Core2(config-if)#exit


Core2(config)#interface gigabitEthernet 1/0/15

Core2(config-if)#switchport trunk encapsulation dot1q 

Core2(config-if)#switchport mode trunk 

Core2(config-if)#switchport trunk allowed vlan 1,10,20,30,40

Core2(config-if)#exit

Core2(config)#


Core2#sh interfaces trunk 

Port Mode Encapsulation Status Native vlan

Gig1/0/1 on 802.1q trunking 1

Gig1/0/14 on 802.1q trunking 1

Gig1/0/15 on 802.1q trunking 1


Port Vlans allowed on trunk

Gig1/0/1 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 1,10,20,30,40


Port Vlans allowed and active in management domain

Gig1/0/1 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 1,10,20,30,40


Port Vlans in spanning tree forwarding state and not pruned

Gig1/0/1 1,10,20,30,40

Gig1/0/14 1,10,20,30,40

Gig1/0/15 10,20,30


Core2#


Core2#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Core2(config)#vlan 10
Core2(config-vlan)#exit
Core2(config)#inter
Core2(config)#interface vlan 10
Core2(config-if)#
%LINK-5-CHANGED: Interface Vlan10, changed state to up
Core2(config-if)#ip address 67.83.0.2 255.255.255.0
Core2(config-if)#exit
Core2(config)#vlan 20
Core2(config-vlan)#
Core2(config-vlan)#exit
Core2(config)#int
Core2(config)#interface vlan 20
Core2(config-if)#
%LINK-5-CHANGED: Interface Vlan20, changed state to up

Core2(config-if)#exit
Core2(config)#interface vlan 20
Core2(config-if)#ip address 67.83.1.2 255.255.255.0
Core2(config-if)#exit
Core2(config)#vlan 30
Core2(config-vlan)#
Core2(config-vlan)#exit
Core2(config)#inter
Core2(config)#interface vlan 30
Core2(config-if)#
%LINK-5-CHANGED: Interface Vlan30, changed state to up

Core2(config-if)#ip address 67.83.2.2 255.255.255.0
Core2(config-if)#exit
Core2(config)#vlan 40
Core2(config-vlan)#exit
Core2(config)#inter
Core2(config)#interface vlan 40
Core2(config-if)#
%LINK-5-CHANGED: Interface Vlan40, changed state to up
Core2(config-if)#ip address 67.83.3.2 255.255.255.128
Core2(config-if)#exit

Enter configuration commands, one per line. End with CNTL/Z.

Core2(config)#interface loo

Core2(config)#interface loopback 0

Core2(config-if)#ip add

Core2(config-if)#ip address 22.22.22.22 255.255.255.255

Core2(config)#^Z
Core2#
%SYS-5-CONFIG_I: Configured from console by console

Core2#wri
Building configuration...
Compressed configuration from 7383 bytes to 3601 bytes[OK]
[OK]

Core2#sh ip interface b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet1/0/1 unassigned YES unset up up 

GigabitEthernet1/0/2 unassigned YES unset down down 

GigabitEthernet1/0/3 unassigned YES unset down down 

GigabitEthernet1/0/4 unassigned YES unset down down 

GigabitEthernet1/0/5 unassigned YES unset down down 

GigabitEthernet1/0/6 unassigned YES unset down down 

GigabitEthernet1/0/7 unassigned YES unset down down 

GigabitEthernet1/0/8 unassigned YES unset down down 

GigabitEthernet1/0/9 unassigned YES unset down down 

GigabitEthernet1/0/10 unassigned YES unset down down 

GigabitEthernet1/0/11 unassigned YES unset down down 

GigabitEthernet1/0/12 unassigned YES unset down down 

GigabitEthernet1/0/13 unassigned YES unset down down 

GigabitEthernet1/0/14 unassigned YES unset up up 

GigabitEthernet1/0/15 unassigned YES unset up up 

GigabitEthernet1/0/16 unassigned YES unset down down 

GigabitEthernet1/0/17 unassigned YES unset down down 

GigabitEthernet1/0/18 unassigned YES unset down down 

GigabitEthernet1/0/19 unassigned YES unset down down 

GigabitEthernet1/0/20 unassigned YES unset down down 

GigabitEthernet1/0/21 unassigned YES unset down down 

GigabitEthernet1/0/22 unassigned YES unset down down 

GigabitEthernet1/0/23 unassigned YES unset down down 

GigabitEthernet1/0/24 unassigned YES unset down down 

GigabitEthernet1/1/1 unassigned YES unset down down 

GigabitEthernet1/1/2 unassigned YES unset down down 

GigabitEthernet1/1/3 unassigned YES unset down down 

GigabitEthernet1/1/4 unassigned YES unset down down 

Loopback0 22.22.22.22 YES manual up up 

Vlan1 unassigned YES unset administratively down down 

Vlan10 67.83.0.2 YES manual up up 

Vlan20 67.83.1.2 YES manual up up 

Vlan30 67.83.2.2 YES manual up up 

Vlan40 67.83.3.2 YES manual up up

Core2#


Core2#sh vlan


VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active Gig1/0/2, Gig1/0/3, Gig1/0/4, Gig1/0/5

Gig1/0/6, Gig1/0/7, Gig1/0/8, Gig1/0/9

Gig1/0/10, Gig1/0/11, Gig1/0/12, Gig1/0/13

Gig1/0/16, Gig1/0/17, Gig1/0/18, Gig1/0/19

Gig1/0/20, Gig1/0/21, Gig1/0/22, Gig1/0/23

Gig1/0/24, Gig1/1/1, Gig1/1/2, Gig1/1/3

Gig1/1/4

10 VLAN0010 active 

20 VLAN0020 active 

30 VLAN0030 active 

40 VLAN0040 active 

1002 fddi-default act/unsup 

1003 token-ring-default act/unsup 

1004 fddinet-default act/unsup 

1005 trnet-default act/unsup 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 0 0

10 enet 100010 1500 - - - - - 0 0

20 enet 100020 1500 - - - - - 0 0

30 enet 100030 1500 - - - - - 0 0

40 enet 100040 1500 - - - - - 0 0

1002 fddi 101002 1500 - - - - - 0 0 

1003 tr 101003 1500 - - - - - 0 0 

1004 fdnet 101004 1500 - - - ieee - 0 0 

1005 trnet 101005 1500 - - - ibm - 0 0 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------


Remote SPAN VLANs

------------------------------------------------------------------------------


Primary Secondary Type Ports

------- --------- ----------------- ------------------------------------------

Core2#



R1-NV#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID

MAN Gig 0/1 152 S 2960 Fas 0/1

Core1 Fas 0/0/0 152 3650 Gig 1/0/1

R1-NV#


R1-NV(config-if)#

R1-NV#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R1-NV(config)#interface gigabitEthernet 0/1
R1-NV(config-if)#ip address 67.83.4.1 255.255.255.248
R1-NV(config-if)#no shut

R1-NV(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to up

R1-NV#conf t

Enter configuration commands, one per line. End with CNTL/Z.

R1-NV(config)#interface g

R1-NV(config)#interface gigabitEthernet 0/0

R1-NV(config-if)#ip add

R1-NV(config-if)#ip address 67.83.3.3 255.255.255.128

R1-NV(config-if)#no shut

R1-NV(config-if)#


%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up

R1-NV#conf t

Enter configuration commands, one per line. End with CNTL/Z.

R1-NV(config)#inte

R1-NV(config)#interface loo

R1-NV(config)#interface loopback 0

R1-NV(config-if)#ip addr

R1-NV(config-if)#ip address 1.1.1.1 255.255.255.255


R1-NV(config-if)#do wri
Building configuration...
[OK]

R1-NV#sh ip interface b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet0/0 67.83.3.3 YES manual up up 

GigabitEthernet0/1 67.83.4.1 YES manual up up 

GigabitEthernet0/2 unassigned YES unset administratively down down 

FastEthernet0/0/0 unassigned YES unset up down 

FastEthernet0/0/1 unassigned YES unset up down 

FastEthernet0/0/2 unassigned YES unset up down 

FastEthernet0/0/3 unassigned YES unset up down 

Loopback0 1.1.1.1 YES manual up up 

Vlan1 unassigned YES unset administratively down down

R1-NV#


R2-MA#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID

MAN Gig 0/0 169 S 2960 Fas 0/2

SW-MA 


R2-MA#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2-MA(config)#inter
R2-MA(config)#interface g
R2-MA(config)#interface gigabitEthernet 0/0
R2-MA(config-if)#ip add
R2-MA(config-if)#ip address 67.83.4.2 255.255.255.248
R2-MA(config-if)#no shut

R2-MA#conf t

Enter configuration commands, one per line. End with CNTL/Z.

R2-MA(config)#inter

R2-MA(config)#interface loo

R2-MA(config)#interface loopback 0

R2-MA(config-if)#ip add

R2-MA(config-if)#ip address 2.2.2.2 255.255.255.255


R2-MA(config-if)#do sh ip inter b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet0/0 67.83.4.2 YES manual up up 

GigabitEthernet0/1 67.83.3.129 YES manual up up 

GigabitEthernet0/2 unassigned YES unset administratively down down 

FastEthernet0/0/0 unassigned YES unset up down 

FastEthernet0/0/1 unassigned YES unset up down 

FastEthernet0/0/2 unassigned YES unset up down 

FastEthernet0/0/3 unassigned YES unset up down 

Loopback0 2.2.2.2 YES manual up up 

Vlan1 unassigned YES unset administratively down down

R2-MA(config-if)#


R2-MA#ping 67.83.4.1

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 67.83.4.1, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/2 ms


R2-MA#ping 67.83.4.3


Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 67.83.4.3, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/2 ms


R2-MA#

R2-MA#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R2-MA(config)#interface gigabitEthernet 0/1
R2-MA(config-if)#ip address 67.83.3.129 255.255.255.192
R2-MA(config-if)#no shut

R2-MA(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to up

R2-MA(config-if)#do wri
Building configuration...
[OK]
R2-MA(config-if)#

R2-MA#sh ip interface b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet0/0 67.83.4.2 YES manual up up 

GigabitEthernet0/1 67.83.3.129 YES manual up up 

GigabitEthernet0/2 unassigned YES unset administratively down down 

FastEthernet0/0/0 unassigned YES unset up down 

FastEthernet0/0/1 unassigned YES unset up down 

FastEthernet0/0/2 unassigned YES unset up down 

FastEthernet0/0/3 unassigned YES unset up down 

Loopback0 2.2.2.2 YES manual up up 

Vlan1 unassigned YES unset administratively down down

R2-MA#


R3-ZA#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID

SW-ZA Gig 0/1 147 S 2960 Fas 0/1

MAN Gig 0/0 120 S 2960 Fas 0/3

R3-ZA#


R3-ZA#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R3-ZA(config)#interface gigabitEthernet 0/1
R3-ZA(config-if)#ip address 67.83.3.193 255.255.255.192
R3-ZA(config-if)#no shut
R3-ZA(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to up


R3-ZA#conf t

Enter configuration commands, one per line. End with CNTL/Z.

R3-ZA(config)#inter

R3-ZA(config)#interface g

R3-ZA(config)#interface gigabitEthernet 0/0

R3-ZA(config-if)#ip add

R3-ZA(config-if)#ip address 67.83.4.3 255.255.255.248

R3-ZA(config-if)#no shut

R3-ZA(config-if)#

%LINK-5-CHANGED: Interface GigabitEthernet0/0, changed state to up


%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up


R3-ZA#conf t

Enter configuration commands, one per line. End with CNTL/Z.

R3-ZA(config)#inter

R3-ZA(config)#interface lo

R3-ZA(config)#interface loopback 0

R3-ZA(config-if)#ip add

R3-ZA(config-if)#ip address 3.3.3.3 255.255.255.255


R3-ZA(config-if)#do wri
Building configuration...
[OK]
R3-ZA(config-if)#

R3-ZA#sh ip interface b

Interface IP-Address OK? Method Status Protocol 

GigabitEthernet0/0 67.83.4.3 YES manual up up 

GigabitEthernet0/1 67.83.3.193 YES manual up up 

GigabitEthernet0/2 unassigned YES unset administratively down down 

FastEthernet0/0/0 unassigned YES unset up down 

FastEthernet0/0/1 unassigned YES unset up down 

FastEthernet0/0/2 unassigned YES unset up down 

FastEthernet0/0/3 unassigned YES unset up down 

Loopback0 3.3.3.3 YES manual up up 

Vlan1 unassigned YES unset administratively down down

R3-ZA#


R3-ZA(config-if)#do wri
Building configuration...
[OK]
R3-ZA(config-if)#


Access#sh cdp neighbors 

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone

Device ID Local Intrfce Holdtme Capability Platform Port ID


Core1 Fas 0/1 122 3650 Gig 1/0/2

Core2 Fas 0/4 122 3650 Gig 1/0/1


Access#conf t

Enter configuration commands, one per line. End with CNTL/Z.

Access(config)#inter

Access(config)#interface fa

Access(config)#interface fastEthernet 0/1

Access(config-if)#sw

Access(config-if)#switchport mode

Access(config-if)#switchport mode tr

Access(config-if)#switchport mode trunk 

Access(config-if)#sw

Access(config-if)#switchport tr

Access(config-if)#switchport trunk all

Access(config-if)#switchport trunk allowed vlan 1,10,20,30,40

Access(config-if)#exit

Access(config)#interface fastEthernet 0/4

Access(config-if)#switchport mode trunk 

Access(config-if)#switchport trunk allowed vlan 1,10,20,30,40

Access(config-if)#sw

Access(config-if)#switchport none

Access(config-if)#switchport nonegotiate 

Access(config-if)#exit

Access(config)#interface fastEthernet 0/1

Access(config-if)#sw

Access(config-if)#switchport none

Access(config-if)#switchport nonegotiate 

Access(config-if)#exit

Access(config)#inter

Access(config)#interface fa

Access(config)#interface fastEthernet 0/2

Access(config-if)#sw

Access(config-if)#switchport mode acc

Access(config-if)#switchport mode access 

Access(config-if)#sw

Access(config-if)#switchport acc

Access(config-if)#switchport access vlan 10

Access(config-if)#exit

Access(config)#interface fastEthernet 0/3

Access(config-if)#switchport mode access 

Access(config-if)#switchport access vlan 20

Access(config-if)#


Access#sh interfaces trunk 
Port        Mode         Encapsulation  Status        Native vlan
Fa0/1       on           802.1q         trunking      1
Fa0/4       on           802.1q         trunking      1

Port        Vlans allowed on trunk
Fa0/1       1,10,20,30,40
Fa0/4       1,10,20,30,40

Port        Vlans allowed and active in management domain
Fa0/1       1,10,20,30,40
Fa0/4       1,10,20,30,40

Port        Vlans in spanning tree forwarding state and not pruned
Fa0/1       1,40
Fa0/4       10,20,30

Access#

Access#sh interfaces trunk 

Port Mode Encapsulation Status Native vlan

Fa0/1 on 802.1q trunking 1

Fa0/4 on 802.1q trunking 1


Port Vlans allowed on trunk

Fa0/1 1,10,20,30,40

Fa0/4 1,10,20,30,40


Port Vlans allowed and active in management domain

Fa0/1 1,10,20,30,40

Fa0/4 1,10,20,30,40


Port Vlans in spanning tree forwarding state and not pruned

Fa0/1 1,40

Fa0/4 10,20,30


Access#sh vlan


VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active Fa0/5, Fa0/6, Fa0/7, Fa0/8

Fa0/9, Fa0/10, Fa0/11, Fa0/12

Fa0/13, Fa0/14, Fa0/15, Fa0/16

Fa0/17, Fa0/18, Fa0/19, Fa0/20

Fa0/21, Fa0/22, Fa0/23, Fa0/24

Gig0/1, Gig0/2

10 VLAN10 active Fa0/2

20 VLAN20 active Fa0/3

30 VLAN30 active 

40 VLAN40 active 

1002 fddi-default act/unsup 

1003 token-ring-default act/unsup 

1004 fddinet-default act/unsup 

1005 trnet-default act/unsup 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 0 0

10 enet 100010 1500 - - - - - 0 0

20 enet 100020 1500 - - - - - 0 0

30 enet 100030 1500 - - - - - 0 0

40 enet 100040 1500 - - - - - 0 0

1002 fddi 101002 1500 - - - - - 0 0 

1003 tr 101003 1500 - - - - - 0 0 

1004 fdnet 101004 1500 - - - ieee - 0 0 

1005 trnet 101005 1500 - - - ibm - 0 0 


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------


Remote SPAN VLANs

------------------------------------------------------------------------------


Primary Secondary Type Ports

------- --------- ----------------- ------------------------------------------

Access#


Implementando OSPF

Core1(config)#router ospf 1
Core1(config-router)#net
Core1(config-router)#network 11.11.11.11 0.0.0.0 area 0
Core1(config-router)#net
Core1(config-router)#network 67.83.0.0 0.0.0.255 area 0
Core1(config-router)#network 67.83.1.0 0.0.0.255 area 0
Core1(config-router)#network 67.83.2.0 0.0.0.255 area 0
Core1(config-router)#network 67.83.3.0 0.0.0.127 area 0
Core1(config-router)#do wri
Building configuration...
Compressed configuration from 7383 bytes to 3601 bytes[OK]

Core1#sh ip route

Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

O 1.1.1.1 [110/2] via 67.83.3.3, 01:58:21, Vlan40

2.0.0.0/32 is subnetted, 1 subnets

O 2.2.2.2 [110/3] via 67.83.3.3, 01:58:21, Vlan40

11.0.0.0/32 is subnetted, 1 subnets

C 11.11.11.11 is directly connected, Loopback0

22.0.0.0/32 is subnetted, 1 subnets

O 22.22.22.22 [110/2] via 67.83.0.2, 00:45:46, Vlan10

[110/2] via 67.83.2.2, 00:45:46, Vlan30

[110/2] via 67.83.3.2, 00:45:46, Vlan40

67.0.0.0/8 is variably subnetted, 6 subnets, 4 masks

C 67.83.0.0/24 is directly connected, Vlan10

C 67.83.1.0/24 is directly connected, Vlan20

C 67.83.2.0/24 is directly connected, Vlan30

C 67.83.3.0/25 is directly connected, Vlan40

O 67.83.3.128/26 [110/3] via 67.83.3.3, 01:58:21, Vlan40

O 67.83.4.0/29 [110/2] via 67.83.3.3, 00:09:49, Vlan40


Core1#


Core2(config)#route ospf 1
Core2(config-router)#netw
Core2(config-router)#network 22.22.22.22 0.0.0.0 area 0
Core2(config-router)#netw
Core2(config-router)#network 67.83.0.0 0.0.0.255 area 0
Core2(config-router)#network 67.83.1.0 0.0.0.255 area 0
Core2(config-router)#network 67.83.2.0 0.0.0.255 area 0
Core2(config-router)#network 67.83.3.0 0.0.0.127 area 0
08:18:45: %OSPF-5-ADJCHG: Process 1, Nbr 11.11.11.11 on Vlan10 from LOADING to FULL, Loading Done

Core1#sh ip route

Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

O 1.1.1.1 [110/2] via 67.83.3.3, 00:00:21, Vlan40

2.0.0.0/32 is subnetted, 1 subnets

O 2.2.2.2 [110/3] via 67.83.3.3, 00:00:21, Vlan40

3.0.0.0/32 is subnetted, 1 subnets

O 3.3.3.3 [110/3] via 67.83.3.3, 00:00:21, Vlan40

11.0.0.0/32 is subnetted, 1 subnets

C 11.11.11.11 is directly connected, Loopback0

22.0.0.0/32 is subnetted, 1 subnets

O 22.22.22.22 [110/2] via 67.83.0.2, 01:01:09, Vlan10

[110/2] via 67.83.1.2, 01:01:09, Vlan20

[110/2] via 67.83.2.2, 01:01:09, Vlan30

[110/2] via 67.83.3.2, 01:01:09, Vlan40

67.0.0.0/8 is variably subnetted, 7 subnets, 4 masks

C 67.83.0.0/24 is directly connected, Vlan10

C 67.83.1.0/24 is directly connected, Vlan20

C 67.83.2.0/24 is directly connected, Vlan30

C 67.83.3.0/25 is directly connected, Vlan40

O 67.83.3.128/26 [110/3] via 67.83.3.3, 00:00:21, Vlan40

O 67.83.3.192/26 [110/3] via 67.83.3.3, 00:00:21, Vlan40

O 67.83.4.0/29 [110/2] via 67.83.3.3, 00:00:21, Vlan40


Core1#


Core1#sh ip ospf neighbor 

Neighbor ID Pri State Dead Time Address Interface

22.22.22.22 1 FULL/DR 00:00:31 67.83.0.2 Vlan10

22.22.22.22 1 FULL/DR 00:00:31 67.83.1.2 Vlan20

22.22.22.22 1 FULL/DR 00:00:31 67.83.2.2 Vlan30

22.22.22.22 1 FULL/DR 00:00:31 67.83.3.2 Vlan40

1.1.1.1 1 FULL/DROTHER 00:00:31 67.83.3.3 Vlan40

Core1#


Core2(config-router)#network 67.83.2.0 0.0.0.255 area 0
08:18:52: %OSPF-5-ADJCHG: Process 1, Nbr 11.11.11.11 on Vlan20 from LOADING to FULL, Loading Done

Core2(config-router)#network 67.83.2.0 0.0.0.255 area 0
08:18:55: %OSPF-5-ADJCHG: Process 1, Nbr 11.11.11.11 on Vlan30 from LOADING to FULL, Loading Done

Core2(config-router)#do wri
Building configuration...

Core1#sh ip protocols 

Routing Protocol is "ospf 1"

Outgoing update filter list for all interfaces is not set 

Incoming update filter list for all interfaces is not set 

Router ID 11.11.11.11

Number of areas in this router is 1. 1 normal 0 stub 0 nssa

Maximum path: 4

Routing for Networks:

11.11.11.11 0.0.0.0 area 0

67.83.0.0 0.0.0.255 area 0

67.83.1.0 0.0.0.255 area 0

67.83.2.0 0.0.0.255 area 0

67.83.3.0 0.0.0.127 area 0

Routing Information Sources: 

Gateway Distance Last Update 

1.1.1.1 110 00:04:38

2.2.2.2 110 00:04:49

3.3.3.3 110 00:04:49

11.11.11.11 110 00:04:48

22.22.22.22 110 00:04:48

Distance: (default is 110)


Core1#



Core2#sh ip route 

Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

O 1.1.1.1 [110/2] via 67.83.3.3, 00:01:39, Vlan40

2.0.0.0/32 is subnetted, 1 subnets

O 2.2.2.2 [110/3] via 67.83.3.3, 00:01:39, Vlan40

3.0.0.0/32 is subnetted, 1 subnets

O 3.3.3.3 [110/3] via 67.83.3.3, 00:01:39, Vlan40

11.0.0.0/32 is subnetted, 1 subnets

O 11.11.11.11 [110/2] via 67.83.0.1, 01:02:18, Vlan10

[110/2] via 67.83.1.1, 01:02:18, Vlan20

[110/2] via 67.83.2.1, 01:02:18, Vlan30

[110/2] via 67.83.3.1, 01:02:18, Vlan40

22.0.0.0/32 is subnetted, 1 subnets

C 22.22.22.22 is directly connected, Loopback0

67.0.0.0/8 is variably subnetted, 7 subnets, 4 masks

C 67.83.0.0/24 is directly connected, Vlan10

C 67.83.1.0/24 is directly connected, Vlan20

C 67.83.2.0/24 is directly connected, Vlan30

C 67.83.3.0/25 is directly connected, Vlan40

O 67.83.3.128/26 [110/3] via 67.83.3.3, 00:01:39, Vlan40

O 67.83.3.192/26 [110/3] via 67.83.3.3, 00:01:39, Vlan40

O 67.83.4.0/29 [110/2] via 67.83.3.3, 00:01:39, Vlan40


Core2#


Core2#sh ip ospf neighbor 


Neighbor ID Pri State Dead Time Address Interface

11.11.11.11 1 FULL/BDR 00:00:38 67.83.0.1 Vlan10

11.11.11.11 1 FULL/BDR 00:00:39 67.83.2.1 Vlan30

11.11.11.11 1 FULL/BDR 00:00:39 67.83.3.1 Vlan40

1.1.1.1 1 FULL/DROTHER 00:00:39 67.83.3.3 Vlan40

Core2#


Core2#sh ip protocols 


Routing Protocol is "ospf 1"

Outgoing update filter list for all interfaces is not set 

Incoming update filter list for all interfaces is not set 

Router ID 22.22.22.22

Number of areas in this router is 1. 1 normal 0 stub 0 nssa

Maximum path: 4

Routing for Networks:

22.22.22.22 0.0.0.0 area 0

67.83.0.0 0.0.0.255 area 0

67.83.1.0 0.0.0.255 area 0

67.83.2.0 0.0.0.255 area 0

67.83.3.0 0.0.0.127 area 0

Routing Information Sources: 

Gateway Distance Last Update 

1.1.1.1 110 00:05:25

2.2.2.2 110 00:05:34

3.3.3.3 110 00:05:34

11.11.11.11 110 00:05:35

22.22.22.22 110 00:05:34

Distance: (default is 110)


Core2#



R1-NV(config)#router ospf 1
R1-NV(config-router)#network 67.83.4.0 0.0.0.7 area 0
R1-NV(config-router)#
07:59:00: %OSPF-6-AREACHG: 67.83.4.0/0 changed from area 1 to area 0

R1-NV(config-router)#network 67.83.4.0 0.0.0.7 area 0
R1-NV(config-router)#net
R1-NV(config-router)#network 67.83.0.0 0.0.0.255 area 0
R1-NV(config-router)#
08:00:22: %OSPF-6-AREACHG: 67.83.0.0/0 changed from area 1 to area 0

R1-NV(config-router)#network 67.83.1.0 0.0.0.255 area 0
R1-NV(config-router)#
08:00:30: %OSPF-6-AREACHG: 67.83.1.0/0 changed from area 1 to area 0

R1-NV(config-router)#network 67.83.2.0 0.0.0.255 area 0
R1-NV(config-router)#
08:00:35: %OSPF-6-AREACHG: 67.83.2.0/0 changed from area 1 to area 0

R1-NV(config-router)#network 67.83.3.0 0.0.0.127 area 0
R1-NV(config-router)#
08:01:09: %OSPF-5-ADJCHG: Process 1, Nbr 11.11.11.11 on Vlan40 from LOADING to FULL, Loading Done

R1-NV(config-router)#network 1.1.1.1 0.0.0.0 area 0

R1-NV(config-router)#^Z
R1-NV#
%SYS-5-CONFIG_I: Configured from console by console

R1-NV#w
08:01:14: %OSPF-5-ADJCHG: Process 1, Nbr 22.22.22.22 on Vlan40 from LOADING to FULL, Loading Done
ri
Building configuration...
[OK]

R1-NV#sh ip route

Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

C 1.1.1.1/32 is directly connected, Loopback0

2.0.0.0/32 is subnetted, 1 subnets

O 2.2.2.2/32 [110/2] via 67.83.4.2, 02:01:17, GigabitEthernet0/1

11.0.0.0/32 is subnetted, 1 subnets

O 11.11.11.11/32 [110/2] via 67.83.3.1, 02:01:17, Vlan40

22.0.0.0/32 is subnetted, 1 subnets

O 22.22.22.22/32 [110/2] via 67.83.3.2, 00:18:18, Vlan40

67.0.0.0/8 is variably subnetted, 8 subnets, 5 masks

O 67.83.0.0/24 [110/2] via 67.83.3.1, 00:18:18, Vlan40

[110/2] via 67.83.3.2, 00:18:18, Vlan40

O 67.83.1.0/24 [110/2] via 67.83.3.1, 00:18:18, Vlan40

[110/2] via 67.83.3.2, 00:18:18, Vlan40

O 67.83.2.0/24 [110/2] via 67.83.3.1, 00:18:18, Vlan40

[110/2] via 67.83.3.2, 00:18:18, Vlan40

C 67.83.3.0/25 is directly connected, Vlan40

L 67.83.3.3/32 is directly connected, Vlan40

O 67.83.3.128/26 [110/2] via 67.83.4.2, 02:01:17, GigabitEthernet0/1

C 67.83.4.0/29 is directly connected, GigabitEthernet0/1

L 67.83.4.1/32 is directly connected, GigabitEthernet0/1


R1-NV#sh ip ospf neighbor 


Neighbor ID Pri State Dead Time Address Interface

11.11.11.11 1 FULL/BDR 00:00:38 67.83.3.1 GigabitEthernet0/0

22.22.22.22 1 FULL/DROTHER 00:00:38 67.83.3.2 GigabitEthernet0/0

3.3.3.3 1 FULL/DR 00:00:38 67.83.4.3 GigabitEthernet0/1

2.2.2.2 1 FULL/BDR 00:00:38 67.83.4.2 GigabitEthernet0/1

R1-NV#


R1-NV#sh ip protocols 


Routing Protocol is "ospf 1"

Outgoing update filter list for all interfaces is not set 

Incoming update filter list for all interfaces is not set 

Router ID 1.1.1.1

Number of areas in this router is 1. 1 normal 0 stub 0 nssa

Maximum path: 4

Routing for Networks:

67.83.4.0 0.0.0.7 area 0

1.1.1.1 0.0.0.0 area 0

67.83.3.0 0.0.0.127 area 0

0.0.0.0 255.255.255.255 area 0

Routing Information Sources: 

Gateway Distance Last Update 

1.1.1.1 110 00:00:27

2.2.2.2 110 00:00:28

3.3.3.3 110 00:00:28

11.11.11.11 110 00:00:27

22.22.22.22 110 00:00:27

Distance: (default is 110)


R1-NV#



R2-MA(config)#router ospf 1
R2-MA(config-router)#net
R2-MA(config-router)#network 67.83.3.128 0.0.0.63 area 0
R2-MA(config-router)#net
R2-MA(config-router)#network 2.2.2.2 0.0.0.0 area 0
R2-MA(config-router)#netw
R2-MA(config-router)#network 67.83.4.0 0.0.0.7 area 0
R2-MA(config-router)#^Z
R2-MA#
%SYS-5-CONFIG_I: Configured from console by console

R2-MA#wri
Building configuration...
[OK]
R2-MA#sh ip r
08:03:59: %OSPF-5-ADJCHG: Process 1, Nbr 1.1.1.1 on GigabitEthernet0/0 from LOADING to FULL, Loading Done

R2-MA#sh ip route

Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

O 1.1.1.1/32 [110/2] via 67.83.4.1, 04:02:59, GigabitEthernet0/0

2.0.0.0/32 is subnetted, 1 subnets

C 2.2.2.2/32 is directly connected, Loopback0

3.0.0.0/32 is subnetted, 1 subnets

O 3.3.3.3/32 [110/2] via 67.83.4.3, 00:13:14, GigabitEthernet0/0

11.0.0.0/32 is subnetted, 1 subnets

O 11.11.11.11/32 [110/3] via 67.83.4.1, 01:54:58, GigabitEthernet0/0

22.0.0.0/32 is subnetted, 1 subnets

O 22.22.22.22/32 [110/3] via 67.83.4.1, 00:18:58, GigabitEthernet0/0

67.0.0.0/8 is variably subnetted, 9 subnets, 5 masks

O 67.83.0.0/24 [110/3] via 67.83.4.1, 01:54:58, GigabitEthernet0/0

O 67.83.1.0/24 [110/3] via 67.83.4.1, 01:32:17, GigabitEthernet0/0

O 67.83.2.0/24 [110/3] via 67.83.4.1, 01:54:58, GigabitEthernet0/0

O 67.83.3.0/25 [110/2] via 67.83.4.1, 01:54:58, GigabitEthernet0/0

C 67.83.3.128/26 is directly connected, GigabitEthernet0/1

L 67.83.3.129/32 is directly connected, GigabitEthernet0/1

O 67.83.3.192/26 [110/2] via 67.83.4.3, 00:13:14, GigabitEthernet0/0

C 67.83.4.0/29 is directly connected, GigabitEthernet0/0

L 67.83.4.2/32 is directly connected, GigabitEthernet0/0


R2-MA#sh ip ospf neighbor 

Neighbor ID Pri State Dead Time Address Interface

1.1.1.1 1 FULL/DROTHER 00:00:32 67.83.4.1 GigabitEthernet0/0

3.3.3.3 1 FULL/DR 00:00:32 67.83.4.3 GigabitEthernet0/0

R2-MA#


R2-MA# sh ip protocols 


Routing Protocol is "ospf 1"

Outgoing update filter list for all interfaces is not set 

Incoming update filter list for all interfaces is not set 

Router ID 2.2.2.2

Number of areas in this router is 2. 2 normal 0 stub 0 nssa

Maximum path: 4

Routing for Networks:

67.83.4.0 0.0.0.7 area 0

67.83.3.128 0.0.0.63 area 0

2.2.2.2 0.0.0.0 area 0

0.0.0.0 255.255.255.255 area 1

Routing Information Sources: 

Gateway Distance Last Update 

1.1.1.1 110 00:01:53

2.2.2.2 110 00:02:48

3.3.3.3 110 00:02:04

11.11.11.11 110 00:02:03

22.22.22.22 110 00:02:03

Distance: (default is 110)


R2-MA#



R3-ZA#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
R3-ZA(config)#router ospf 1
R3-ZA(config-router)#net
R3-ZA(config-router)#network 3.3.3.3 0.0.0.0 area 0
R3-ZA(config-router)#network 67.83.3.192 0.0.0.63 area 0
R3-ZA(config-router)#network 67.83.4.0 0.0.0.7 area 0
R3-ZA(config-router)#^Z
R3-ZA#
%SYS-5-CONFIG_I: Configured from console by console

R3-ZA#wri
Building configuration...
[OK]
R3-ZA#
08:06:53: %OSPF-5-ADJCHG: Process 1, Nbr 1.1.1.1 on GigabitEthernet0/0 from LOADING to FULL, Loading Done

08:06:53: %OSPF-5-ADJCHG: Process 1, Nbr 2.2.2.2 on GigabitEthernet0/0 from LOADING to FULL, Loading Done

R3-ZA#sh ip route

Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o - ODR

P - periodic downloaded static route


Gateway of last resort is not set


1.0.0.0/32 is subnetted, 1 subnets

O 1.1.1.1/32 [110/2] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

2.0.0.0/32 is subnetted, 1 subnets

O 2.2.2.2/32 [110/2] via 67.83.4.2, 00:04:23, GigabitEthernet0/0

3.0.0.0/32 is subnetted, 1 subnets

C 3.3.3.3/32 is directly connected, Loopback0

11.0.0.0/32 is subnetted, 1 subnets

O 11.11.11.11/32 [110/3] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

22.0.0.0/32 is subnetted, 1 subnets

O 22.22.22.22/32 [110/3] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

67.0.0.0/8 is variably subnetted, 9 subnets, 5 masks

O 67.83.0.0/24 [110/3] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

O 67.83.1.0/24 [110/3] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

O 67.83.2.0/24 [110/3] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

O 67.83.3.0/25 [110/2] via 67.83.4.1, 00:04:23, GigabitEthernet0/0

O 67.83.3.128/26 [110/2] via 67.83.4.2, 00:04:23, GigabitEthernet0/0

C 67.83.3.192/26 is directly connected, GigabitEthernet0/1

L 67.83.3.193/32 is directly connected, GigabitEthernet0/1

C 67.83.4.0/29 is directly connected, GigabitEthernet0/0

L 67.83.4.3/32 is directly connected, GigabitEthernet0/0


R3-ZA#sh ip ospf neighbor 


Neighbor ID Pri State Dead Time Address Interface

1.1.1.1 1 FULL/DROTHER 00:00:34 67.83.4.1 GigabitEthernet0/0

2.2.2.2 1 FULL/BDR 00:00:34 67.83.4.2 GigabitEthernet0/0

R3-ZA#


R3-ZA#sh ip protocols 


Routing Protocol is "ospf 1"

Outgoing update filter list for all interfaces is not set 

Incoming update filter list for all interfaces is not set 

Router ID 3.3.3.3

Number of areas in this router is 1. 1 normal 0 stub 0 nssa

Maximum path: 4

Routing for Networks:

3.3.3.3 0.0.0.0 area 0

67.83.4.0 0.0.0.7 area 0

67.83.3.192 0.0.0.63 area 0

Routing Information Sources: 

Gateway Distance Last Update 

1.1.1.1 110 00:06:21

2.2.2.2 110 00:06:32

3.3.3.3 110 00:06:32

11.11.11.11 110 00:06:31

22.22.22.22 110 00:06:31

Distance: (default is 110)


R3-ZA#


Comprobando conectividad:








C:\>ipconfig

FastEthernet0 Connection:(default port)


Link-local IPv6 Address.........: FE80::260:3EFF:FE42:38D

IP Address......................: 67.83.0.10

Subnet Mask.....................: 255.255.255.0

Default Gateway.................: 67.83.0.1



C:\>ping 67.83.3.130


Pinging 67.83.3.130 with 32 bytes of data:


Reply from 67.83.3.130: bytes=32 time<1ms TTL=125

Reply from 67.83.3.130: bytes=32 time=1ms TTL=125

Reply from 67.83.3.130: bytes=32 time=12ms TTL=125

Reply from 67.83.3.130: bytes=32 time=12ms TTL=125


Ping statistics for 67.83.3.130:

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 12ms, Average = 6ms


C:\>tracert 67.83.3.130


Tracing route to 67.83.3.130 over a maximum of 30 hops: 


1 1 ms 0 ms 0 ms 67.83.0.2

2 0 ms 0 ms 1 ms 67.83.3.3

3 1 ms 0 ms 1 ms 67.83.4.2

4 10 ms 12 ms 11 ms 67.83.3.130


Trace complete.


C:\>ping 67.83.3.200


Pinging 67.83.3.200 with 32 bytes of data:


Reply from 67.83.3.200: bytes=32 time=11ms TTL=125

Reply from 67.83.3.200: bytes=32 time=12ms TTL=125

Reply from 67.83.3.200: bytes=32 time<1ms TTL=125

Reply from 67.83.3.200: bytes=32 time<1ms TTL=125


Ping statistics for 67.83.3.200:

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 12ms, Average = 5ms


C:\>tracert 67.83.3.200


Tracing route to 67.83.3.200 over a maximum of 30 hops: 


1 4 ms 0 ms 1 ms 67.83.0.2

2 0 ms 1 ms 1 ms 67.83.3.3

3 0 ms 1 ms 0 ms 67.83.4.3

4 0 ms 9 ms 1 ms 67.83.3.200


Trace complete.


C:\>

C:\>ipconfig


FastEthernet0 Connection:(default port)


Link-local IPv6 Address.........: FE80::2E0:F7FF:FE0C:B2C9

IP Address......................: 67.83.3.130

Subnet Mask.....................: 255.255.255.192

Default Gateway.................: 67.83.3.129


C:\>ping 67.83.0.10


Pinging 67.83.0.10 with 32 bytes of data:


Reply from 67.83.0.10: bytes=32 time=11ms TTL=125

Reply from 67.83.0.10: bytes=32 time=12ms TTL=125

Reply from 67.83.0.10: bytes=32 time=10ms TTL=125

Reply from 67.83.0.10: bytes=32 time=11ms TTL=125


Ping statistics for 67.83.0.10:

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 10ms, Maximum = 12ms, Average = 11ms


C:\>

C:\>ipconfig


FastEthernet0 Connection:(default port)


Link-local IPv6 Address.........: FE80::2D0:BCFF:FE4B:A292

IP Address......................: 67.83.3.200

Subnet Mask.....................: 255.255.255.192

Default Gateway.................: 67.83.3.193


C:\>tracert 67.83.0.10


Tracing route to 67.83.0.10 over a maximum of 30 hops: 


1 0 ms 0 ms 0 ms 67.83.3.193

2 0 ms 0 ms 0 ms 67.83.4.1

3 0 ms 1 ms 12 ms 67.83.3.2

4 12 ms 0 ms 11 ms 67.83.0.10


Trace complete.


C:\>


Cisco es genial!.
Posted by at No hay comentarios:
Labels: , , , , , , ,
Suscribirse a: Entradas (Atom)