TSHOOTメモ ●トポロジとコンフィグ

CCNP更新のため
TSHOOT(300-135J)
の勉強を頑張っているここ最近。

WEBで見つけた
いろんな情報についてのまとめ。
電車の中でトポロジとコンフィグを覚えようっと。



●トポロジ

b0024832_21511278.jpg
b0024832_21512269.jpg
b0024832_21513447.jpg


##################
##################

●config

- ASW1

hostname ASW1
!
interface port-channel 13
description Trunk to DSW1
switchport mode trunk
switchport trunk allowed vlan 10,200
!
interface port-channel 23
description Trunk to DSW2
switchport mode trunk
switchport trunk allowed vlan 10,200
!
interface Fa1/0/1
description Link to Client1
spanning-tree portfast
switchport mode access
switchport access vlan 10
switchport port-security
switchport port-security max-mac-count 1
switchport port-security violation shutdown
!
interface Fa1/0/2
description Link to Client2
spanning-tree portfast
switchport mode access
switchport access vlan 10
!
interface Fa1/0/19
description Trunk to DSW1
switchport mode trunk
switchport trunk allowed vlan 10,200
channel-group 13 mode on
!
interface Fa1/0/20
description Trunk to DSW1
switchport mode trunk
switchport trunk allowed vlan 10,200
channel-group 13 mode on
!
interface Fa1/0/21
description Trunk to DSW2
switchport mode trunk
switchport trunk allowed vlan 10,200
channel-group 23 mode on
!
interface Fa1/0/22
description Trunk to DSW2
switchport mode trunk
switchport trunk allowed vlan 10,200
channel-group 23 mode on
!
interface port-channel 13
description Trunk to DSW1
switchport mode trunk
switchport trunk allowed vlan 10,200
!
interface port-channel 23
description Trunk to DSW2
switchport mode trunk
switchport trunk allowed vlan 10,200
!
interface Vlan200
ip address 192.168.1.131 255.255.255.224
!
ip default-gateway 192.168.1.129
!
end

======

- ASW2

hostname ASW2
!
interface port-channel 14
description Trunk to DSW1
switchport mode trunk
switchport trunk allowed vlan 20,200
!
interface port-channel 24
description Trunk to DSW2
switchport mode trunk
switchport trunk allowed vlan 20,200
!
interface FastEthernet1/0/1
description Link to FTP Server
spanning-tree portfast
switchport mode access
switchport access vlan 20
!
interface FastEthernet1/0/19
description Link to DSW2
switchport mode trunk
switchport trunk allowed vlan 20,200
channel-group 24 mode on
!
interface FastEthernet1/0/20
description Link to DSW2
switchport trunk allowed vlan 20,200
switchport mode trunk
channel-group 24 mode on
!
interface FastEthernet1/0/21
description Link to DSW1
switchport mode trunk
switchport trunk allowed vlan 20,200
channel-group 14 mode on
!
interface FastEthernet1/0/22
description Link to DSW1
switchport mode trunk
switchport trunk allowed vlan 20,200
channel-group 14 mode on
!
interface Vlan200
ip address 192.168.1.132 255.255.255.224
!
ip default-gateway 192.168.1.130
!
end



====

- DSW1

hostname DSW1
ipv6 unicast-routing
!
ip routing
!
interface Loopback1
no ip address
ipv6 address FEC0::11:1/122
ipv6 rip RIP_ZONE enable
!
interface Fa1/0/1
description Link to R4
no switchport
ip address 10.1.4.6 255.255.255.252
ipv6 address 2026::2:2/122
ipv6 rip RIP_ZONE enable
!
interface Fa1/0/19
description Trunk to ASW1
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,200
channel-group 13 mode on
!
interface Fa1/0/20
description Trunk to ASW1
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,200
channel-group 13 mode on
!
interface Fa1/0/21
description Trunk to ASW2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 20,200
channel-group 14 mode on
!
interface Fa1/0/22
description Trunk to ASW2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 20,200
channel-group 14 mode on
!
interface port-channel 12
no switchport
ip address 10.2.4.13 255.255.255.252
ipv6 address 2026::3:1/122
ipv6 rip RIP_ZONE enable
!
interface Fa1/0/23
description Link to DSW2
no switchport
no ip address
channe-group 12 on
!
interface Fa1/0/24
description Link to DSW2
no switchport
no ip address
channe-group 12 on
!
interface Vlan10
ip address 10.2.1.1 255.255.255.0
!
interface Vlan20
ip address 10.2.2.2 255.255.255.0
!
interface Vlan200
ip address 192.168.1.129 255.255.255.224
!
ip helper-address 10.1.4.5
!
standby 10 ip 10.2.1.254
standby 10 priority 150
standby 10 preempt
standby 10 track 10 decrement 60
!
track 1 ip route 10.2.4.13 255.255.255.252 metric threshold
threshold metric up 1 down 2
!
track 10 ip route 10.1.4.6 255.255.255.252 metric threshold
threshold metric up 63 down 64
!
router eigrp 10
variance 2
network 10.1.4.4 0.0.0.3
network 10.2.1.0 0.0.0.255
network 10.2.2.0 0.0.0.255
network 10.2.4.12 0.0.0.3
network 192.168.1.224 0.0.0.31
no auto-summary
!
ipv6 router rip RIP_ZONE
!
vlan access-map test1 10
match ip address 10
!
vlan filter test1 vlan-list 10
!
ip access-list standard 10
permit 10.2.0.0 0.0.255.255
!
end



===

- DSW2

hostname DSW2
!
ipv6 unicast-routing
!
ip routing
!
interface Loopback2
no ip address
ipv6 address FEC0::22:2/122
ipv6 rip RIP_ZONE enable
!
interface port-channel 12
description Link to DSW1
no switchport
ip address 10.2.4.14 255.255.255.252
ipv6 address 2026::3:2/122
ipv6 rip RIP_ZONE enable
!
interface port-channel 23
description Trunk to ASW1
switchport mode trunk
switchport trunk allowed vlan 10,200
!
interface port-channel 24
description Trunk to ASW2
switchport mode trunk
switchport trunk allowed vlan 20,200
!
interface Fa1/0/14
description Link to R4
no switchport
ip address 10.1.4.10 255.255.255.252
!!
interface Fa1/0/19
description Trunk to ASW2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 20,200
channel-group 24 mode on
!
interface Fa1/0/20
description Trunk to ASW2
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 20,200
channel-group 24 mode on
!
interface Fa1/0/21
description Trunk to ASW1
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,200
channel-group 23 mode on
!
interface Fa1/0/22
description Trunk to ASW1
switchport mode trunk
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,200
channel-group 23 mode on
!
interface Fa1/0/23
description Link to DSW1
no switchport
no ip address
channe-group 12 on
!
interface Fa1/0/24
description Link to DSW1
no switchport
no ip address
channe-group 12 on
!
interface Vlan10
ip address 10.2.1.2 255.255.255.0
!
interface Vlan20
ip address 10.2.2.1 255.255.255.0
!
interface Vlan200
ip address 192.168.1.130 255.255.255.224
!
standby 10 ip 10.2.1.254
standby 10 preempt
!
router eigrp 10
network 10.1.4.8 0.0.0.3
network 10.2.1.0 0.0.0.255
network 10.2.2.0 0.0.0.255
network 10.2.4.12 0.0.0.3
network 192.168.1.224 0.0.0.31
no auto-summary
!
ipv6 router rip RIP_ZONE
!
end




====

- R4

hostname R4
!
ip dhcp pool CLIENTS
network 10.2.1.0 255.255.255.0
default-router 10.2.1.254
!
ip dhcp excluded-address 10.2.1.1 10.2.1.2
ip dhcp excluded-address 10.2.1.254
!
!
ipv6 unicast-routing
!
interface Loopback4
ip address 4.4.4.4 255.255.255.255
ip address 10.1.21.129 255.255.255.255
ipv6 address FEC0::4:4/122
ipv6 ospf 6 area 34
!
interface Tunnel34
description Link to R3
no ip address
ipv6 address 2026::34:2/122
ipv6 enable
ipv6 ospf 6 area 34
tunnel source 10.1.1.10
tunnel destination 10.1.1.9
!
interface FastEthernet0/0
description Link to DSW1
ip address 10.1.4.5 255.255.255.252
ipv6 address 2026::2:1/122
ipv6 rip RIP_ZONE enable
!
interface FastEthernet0/1
description Link to DSW2
ip address 10.1.4.9 255.255.255.252
!
interface Serial1/3.34 point-to-point
description Link to R3
ip address 10.1.1.10 255.255.255.252
frame-relay interface-dlci 403
!
router eigrp 10
redistribute ospf 1 metric 100 10 255 1 1500 route-map OSPF>EIGRP
network 10.1.4.4 0.0.0.3
network 10.1.4.8 0.0.0.3

network 10.1.21.128 0.0.0.3
no auto-summary
!
router ospf 1
area 34 nssa
redistribute eigrp 10 metric 100 route-map EIGRP>OSPF subnets
network 4.4.4.4 0.0.0.0 area 34
network 10.1.1.8 0.0.0.3 area 34
!
ipv6 router ospf 6
redistribute rip RIP_Zone include-connected
!
ipv6 router rip RIP_ZONE
redistribute ospf 6 metric 4
!
access-list 50 permit 10.1.1.0 0.0.0.255
access-list 50 permit 209.65.200.0 0.0.0.255
!
route-map OSPF>EIGRP permit 10
set metric 30000 1000 255 1 1500
match ip address 50
!
route-map EIGRP>OSPF deny 10
match ip address 50
!
route-map EIGRP>OSPF permit 20
!
end




====

- R3

hostname R3
ipv6 unicast-routing
!
interface Loopback3
ip address 3.3.3.3 255.255.255.255
ipv6 address FEC0::3:3/122
ipv6 ospf 6 area 0
!
interface Tunnel34
description Link to R4
no ip address
ipv6 address 2026::34:1/122
ipv6 enable
ipv6 ospf 6 area 34
tunnel source 10.1.1.9
tunnel destination 10.1.1.10
!
interface Serial0/0/0/0.23 point-to-point
description Link to R2
ip address 10.1.1.6 255.255.255.252
ipv6 address 2026::1:2/122
ipv6 ospf 6 area 0
frame-relay interface-dlci 302
!
interface Serial0/0/0/0.34 point-to-point
description Link to R4
ip address 10.1.1.9 255.255.255.252
frame-relay interface-dlci 304
!
router ospf 1
area 34 nssa no-summary
network 3.3.3.3 0.0.0.0 area 0
network 10.1.1.4 0.0.0.3 area 0
network 10.1.1.8 0.0.0.3 area 34
!
ipv6 router ospf 6
router-id 3.3.3.3
!
end




====

- R2

hostname R2
!
ipv6 unicast-routing
!
interface Loopback2
ip address 2.2.2.2 255.255.255.255
ipv6 address FEC0::2:2/122
ipv6 ospf 6 area 0
!
interface Serial0/0/0/0.12 point-to-point
description Link to R1
ip address 10.1.1.2 255.255.255.252
ipv6 address 2026::12:2/122
ipv6 ospf 6 area 12
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 TSHOOT
frame-relay interface-dlci 201
!
interface Serial0/0/0/0.23 point-to-point
description Link to R3
ip address 10.1.1.5 255.255.255.252
ipv6 address 2026::1:1/122
ipv6 ospf 6 area 0
frame-relay interface-dlci 203
!
router ospf 1
log-adjacency-changes
network 2.2.2.2 0.0.0.0 area 0
network 10.1.1.0 0.0.0.3 area 12
network 10.1.1.4 0.0.0.3 area 0
!
ipv6 router ospf 6
router-id 2.2.2.2
!
end



====

- R1
hostname R1
!
ipv6 unicast-routing
!
interface Loopback1
ip address 1.1.1.1 255.255.255.255
ipv6 address FEC0::1:1/122
ipv6 ospf 6 area 12
!
interface Serial0/0/0/1
description Link to ISP 65002
ip address 209.65.200.225 255.255.255.252
ip nat outside
ip access-group 30 in
!
interface Serial0/0/0/0.12 point-to-point
description Link to R2
ip address 10.1.1.1 255.255.255.252
ip nat inside
ipv6 address 2026::12:1/122
ipv6 ospf 6 area 12
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 TSHOOT
frame-relay interface-dlci 102
!
router ospf 1
router-id 1.1.1.1
log-adjacency-changes
network 1.1.1.1 0.0.0.0 area 12
network 10.1.1.0 0.0.0.3 area 12
default-information originate always
!
router bgp 65001
no synchronization
bgp log-neighbor-changes
network 209.65.200.224 mask 255.255.255.252
neighbor 209.65.200.226 remote-as 65002
no auto-summary
!
ipv6 router ospf 6
!
ip nat inside source list nat_pool interface Serial0/0/0/1 overload
ip access-list standard nat_pool
permit 10.1.0.0
permit 10.2.0.0
!
access-list 30 permit host 209.65.200.241
access-list 30 permit 209.65.200.224 0.0.0.3
access-list 30 deny 10.1.0.0 0.0.255.255
access-list 30 deny 10.2.0.0 0.0.255.255
!
end





トラブルチケットメモはコチラ







by akkikkikki | 2016-07-10 21:50 | CCNA/CCNP | Comments(0)