You will practice and be assessed on the following skills:
Town Hall router:
Step 1:
Design an IPv4 addressing scheme and complete the Addressing Table based on the following requirements. Use the table above to help you organize your work.
a. Subnet the 192.168.1.0/24 network to provide 30 host addresses per subnet while wasting the fewest addresses.
b. Assign the fourth subnet to the IT Department LAN.
c. Assign the last network host address (the highest) in this subnet to the G0/0 interface on Town Hall.
d. Starting with the fifth subnet, subnet the network again so that the new subnets will provide 14 host addresses per subnet while wasting the fewest addresses.
e. Assign the second of these new 14-host subnets to the Administration LAN.
f. Assign the last network host address (the highest) in the Administration LAN subnet to the G0/1 interface of the Town Hall router.
g. Assign the second to the last address (the second highest) in this subnet to the VLAN 1 interface of the Administration Switch.
h. Configure addresses on the hosts using any of the remaining addresses in their respective subnets.
Step 2:
Configure the Town Hall Router.
a. Configure the Town Hall router with all initial configurations that you have learned in the course so far:
· Configure the router hostname: Middle
· Protect device configurations from unauthorized access with the encrypted password.
· Secure all of the ways to access the router using methods covered in the course and labs.
· Newly-entered passwords must have a minimum length of 10 characters.
· Prevent all passwords from being viewed in clear text in device configuration files.
· Configure the router to only accept in-band management connections over the protocol that is more secure than Telnet, as was done in the labs. Use the value 1024 for encryption key strength.
· Configure user authentication for in-band management connections.
b. Configure the two Gigabit Ethernet interfaces using the IPv4 addressing values you calculated and the IPv6 values provided in the addressing table.
· Reconfigure the link local addresses as was practiced in the labs. The IPv6 link-local Interface ID should match the IPv6 unicast Interface ID as is practiced in the labs.
· Document the interfaces in the configuration file.
Step 3:
Configure the Administration Switch.
Configure Administration Switch for remote management.
Step 4:
Configure and Verify Host Addressing.
a. Use the IPv4 addressing from Step 1 and the IPv6 addressing values provided in the addressing table to configure all host PCs with the correct addressing.
b. Use the router interface link-local addresses as the IPv6 default gateways on the hosts.
c. All hosts should be able to ping each other over IPv4.
Step 5: Backup the Configuration of the Town Hall Router to TFTP.
a. Complete the configuration of the TFTP server using the IPv4 addressing values from Step 1 and the values in the addressing table.
b. Backup the running configuration of Town Hall to the TFTP Server. Use the default file name.
Answer
Router>
Router>enable
Router#configure terminal
Router(config)#interface g0/0
Router(config-if)#ip address 192.168.1.126 255.255.255.224
Router(config-if)#description IT Department LAN
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface g0/1
Router(config-if)#ip address 192.168.1.158 255.255.255.240
Router(config-if)#description Administration LAN
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#ipv6 unicast-routing
Router(config)#interface g0/0
Router(config-if)#ipv6 address 2001:db8:acad:A::1/64
Router(config-if)#ipv6 address FE80::1 link-local
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface g0/1
Router(config-if)#ipv6 address 2001:db8:acad:B::1/64
Router(config-if)#ipv6 address FE80::1 link-local
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#
Router(config)#hostname Middle
Middle(config)#Enable secret class12345
Middle(config)#line console 0
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#line vty 0 15
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#line aux 0
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#
Middle(config)#Banner motd “Authorized Access Only”
Middle(config)#security password min-length 10
Middle(config)#service password-encryption
Middle(config)#ip domain-name ccna5.net
Middle(config)#username cisco secret ccna5.net2014
Middle(config)#crypto key generate rsa
The name for the keys will be: Middle.cisco.local
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.
How many bits in the modulus [512]: 1024
% Generating 1024 bit RSA keys, keys will be non-exportable…[OK]
Middle(config)#line vty 0 15
Middle(config-line)#login local
Middle(config-line)#transport input ssh
Middle(config-line)#exit
Middle(config)#
Middle# copy running-config startup-config
—————————————–
Administration Switch
ip default-gateway 192.168.1.158
—————————————–
Reception Host
IPv4
IP address: 192.168.1.97
Mask: 255.255.255.224
default gateway: 192.168.1.126
IPv6
IPv6 address: 2001:DB8:ACAD:A::FF/64
default gateway: FE80::1
—————————————–
Operator Host
IPv4
IP address: 192.168.1.98
Mask: 255.255.255.224
default gateway: 192.168.1.126
IPv6
IPv6 address: 2001:DB8:ACAD:A::15/64
default gateway: FE80::1
—————————————–
IT Host
IPv4
IP address: 192.168.1.145
Mask: 255.255.255.240
default gateway: 192.168.1.158
IPv6
IPv6 address: 2001:DB8:ACAD:B::FF/64
default gateway: FE80::1
—————————————–
SERVER TFTP
IPv4
IP address: 192.168.1.146
Mask: 255.255.255.240
default gateway: 192.168.1.158
IPv6
IPv6 address: 2001:DB8:ACAD:B::15/64
default gateway: FE80::1
—————————————–
Backup the Configuration of the Town Hall Router to TFTP.
Middle#copy running-config tftp
Address or name of remote host []? 192.168.1.146
Destination filename [Router-confg]? [Press Enter]
- Configuration of initial IOS device settings
- Design and calculation of IPv4 addressing
- Configuration of IOS device interfaces including IPv4 and IPv6 addressing when appropriate
- Addressing of network hosts with IPv4 and IPv6 addresses
- Enhancing device security, including configuration of the secure transport protocol for remote device configuration
- Configuration of a switch management interface
- Requirements by device:
Town Hall router:
- Configuration of initial router settings
- Interface configuration and IPv4 and IPv6 addressing
- Device security enhancement or “device hardening”
- Secure transport for remote configuration connections as covered in the labs.
- Backup of the configuration file to a TFTP server
- Administration Switch:
- Enabling basic remote management by Telnet
- PC and Server hosts:
- IPv4 full addressing
- IPv6 addressing
- CCNA 1 ITN Skill Exam PT 2014
Step 1:
Design an IPv4 addressing scheme and complete the Addressing Table based on the following requirements. Use the table above to help you organize your work.
a. Subnet the 192.168.1.0/24 network to provide 30 host addresses per subnet while wasting the fewest addresses.
b. Assign the fourth subnet to the IT Department LAN.
c. Assign the last network host address (the highest) in this subnet to the G0/0 interface on Town Hall.
d. Starting with the fifth subnet, subnet the network again so that the new subnets will provide 14 host addresses per subnet while wasting the fewest addresses.
e. Assign the second of these new 14-host subnets to the Administration LAN.
f. Assign the last network host address (the highest) in the Administration LAN subnet to the G0/1 interface of the Town Hall router.
g. Assign the second to the last address (the second highest) in this subnet to the VLAN 1 interface of the Administration Switch.
h. Configure addresses on the hosts using any of the remaining addresses in their respective subnets.
Step 2:
Configure the Town Hall Router.
a. Configure the Town Hall router with all initial configurations that you have learned in the course so far:
· Configure the router hostname: Middle
· Protect device configurations from unauthorized access with the encrypted password.
· Secure all of the ways to access the router using methods covered in the course and labs.
· Newly-entered passwords must have a minimum length of 10 characters.
· Prevent all passwords from being viewed in clear text in device configuration files.
· Configure the router to only accept in-band management connections over the protocol that is more secure than Telnet, as was done in the labs. Use the value 1024 for encryption key strength.
· Configure user authentication for in-band management connections.
b. Configure the two Gigabit Ethernet interfaces using the IPv4 addressing values you calculated and the IPv6 values provided in the addressing table.
· Reconfigure the link local addresses as was practiced in the labs. The IPv6 link-local Interface ID should match the IPv6 unicast Interface ID as is practiced in the labs.
· Document the interfaces in the configuration file.
Step 3:
Configure the Administration Switch.
Configure Administration Switch for remote management.
Step 4:
Configure and Verify Host Addressing.
a. Use the IPv4 addressing from Step 1 and the IPv6 addressing values provided in the addressing table to configure all host PCs with the correct addressing.
b. Use the router interface link-local addresses as the IPv6 default gateways on the hosts.
c. All hosts should be able to ping each other over IPv4.
Step 5: Backup the Configuration of the Town Hall Router to TFTP.
a. Complete the configuration of the TFTP server using the IPv4 addressing values from Step 1 and the values in the addressing table.
b. Backup the running configuration of Town Hall to the TFTP Server. Use the default file name.
Answer
Router>
Router>enable
Router#configure terminal
Router(config)#interface g0/0
Router(config-if)#ip address 192.168.1.126 255.255.255.224
Router(config-if)#description IT Department LAN
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface g0/1
Router(config-if)#ip address 192.168.1.158 255.255.255.240
Router(config-if)#description Administration LAN
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#ipv6 unicast-routing
Router(config)#interface g0/0
Router(config-if)#ipv6 address 2001:db8:acad:A::1/64
Router(config-if)#ipv6 address FE80::1 link-local
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#interface g0/1
Router(config-if)#ipv6 address 2001:db8:acad:B::1/64
Router(config-if)#ipv6 address FE80::1 link-local
Router(config-if)#no shutdown
Router(config-if)#exit
Router(config)#
Router(config)#hostname Middle
Middle(config)#Enable secret class12345
Middle(config)#line console 0
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#line vty 0 15
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#line aux 0
Middle(config-line)#password ccna5.net2014
Middle(config-line)#login
Middle(config-line)#exit
Middle(config)#
Middle(config)#Banner motd “Authorized Access Only”
Middle(config)#security password min-length 10
Middle(config)#service password-encryption
Middle(config)#ip domain-name ccna5.net
Middle(config)#username cisco secret ccna5.net2014
Middle(config)#crypto key generate rsa
The name for the keys will be: Middle.cisco.local
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.
How many bits in the modulus [512]: 1024
% Generating 1024 bit RSA keys, keys will be non-exportable…[OK]
Middle(config)#line vty 0 15
Middle(config-line)#login local
Middle(config-line)#transport input ssh
Middle(config-line)#exit
Middle(config)#
Middle# copy running-config startup-config
—————————————–
Administration Switch
ip default-gateway 192.168.1.158
—————————————–
Reception Host
IPv4
IP address: 192.168.1.97
Mask: 255.255.255.224
default gateway: 192.168.1.126
IPv6
IPv6 address: 2001:DB8:ACAD:A::FF/64
default gateway: FE80::1
—————————————–
Operator Host
IPv4
IP address: 192.168.1.98
Mask: 255.255.255.224
default gateway: 192.168.1.126
IPv6
IPv6 address: 2001:DB8:ACAD:A::15/64
default gateway: FE80::1
—————————————–
IT Host
IPv4
IP address: 192.168.1.145
Mask: 255.255.255.240
default gateway: 192.168.1.158
IPv6
IPv6 address: 2001:DB8:ACAD:B::FF/64
default gateway: FE80::1
—————————————–
SERVER TFTP
IPv4
IP address: 192.168.1.146
Mask: 255.255.255.240
default gateway: 192.168.1.158
IPv6
IPv6 address: 2001:DB8:ACAD:B::15/64
default gateway: FE80::1
—————————————–
Backup the Configuration of the Town Hall Router to TFTP.
Middle#copy running-config tftp
Address or name of remote host []? 192.168.1.146
Destination filename [Router-confg]? [Press Enter]
ConversionConversion EmoticonEmoticon