Scribd
Upload
38 views18 pages

Routing Labs RIPv2 EIGRP ACL PAT LAB

zr

Uploaded by

sriharikrish2019
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
38 views18 pages

Routing Labs RIPv2 EIGRP ACL PAT LAB

zr

Uploaded by

sriharikrish2019
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 18

Routing

 Forwarding of packets from one network to another network


 Choosing the best path from the routing tables
 Routing is the act of moving information across an internetwork from a source to a
destination.

Three types:

1. Static Routing
2. Default Routing
3. Dynamic Routing

Static Routing

Routes to the different destination networks have to be entered manually on all the
routers by administrator.

Administrator has to update the routing table manually.

It is suitable for small networks.

Router CPU utilization is less.

Static Routing by using Two router


R1-router Configuration

Router> enable

Router# config t

Router(config)#hostname R1

R1(config)# int g0/0

R1(config-if)# ip add 192.168.1.100 255.255.255.0

R1(config-if)# no shut

R1(config-if)# int s0/3/0

R1(config-if)# ip add 10.0.0.1 255.0.0.0

R1(config-if)# clock rate 64000

R1(config-if)# no shut

R1(config-if)#exit

R1(config)# ip route 192.168.2.0 255.255.255.0 10.0.0.2

R1(config)#exit
R1# Sh ip int brief

R1# sh ip route

R2-Router configuration

Router> enable

Router# config t

Router(config)# hostname R2

R2(config)# int g0/0

R2(config-if)# ip add 192.168.2.100 255.255.255.0

R2(config-if)# no shut

R2(config-if)# int s0/2/0

R2(config-if)# ip add 10.0.0.2 255.0.0.0

R2(config-if)# no shut

R2(config-if)# exit

R2(config)# ip route 192.168.1.0 255.255.255.0 10.0.0.1

R2(config)# exit

R2# Sh ip int brief

R2# sh ip route

Static Routing by using Three router


R1-router Configuration

Router> enable

Router# config t

Router(config)#hostname R1

R1(config)# int g0/0

R1(config-if)# ip add 192.168.1.100 255.255.255.0

R1(config-if)# no shut

R1(config-if)# int s0/2/0

R1(config-if)# ip add 10.0.0.1 255.0.0.0

R1(config-if)# clock rate 64000

R1(config-if)# no shut

R1(config-if)#exit

R1(config)# ip route 192.168.2.0 255.255.255.0 10.0.0.2

R1(config)# ip route 192.168.3.0 255.255.255.0 10.0.0.2


R1(config)# ip route 20.0.0.0 255.0.0.0 10.0.0.2

R1(config)#exit

R1# Sh ip int brief

R1# sh ip route

R2-Router configuration

Router> enable

Router# config t

Router(config)# hostname R2

R2(config)# int g0/0

R2(config-if)# ip add 192.168.2.100 255.255.255.0

R2(config-if)# no shut

R2(config-if)# int s0/2/0

R2(config-if)# ip add 10.0.0.2 255.0.0.0

R2(config-if)# no shut

R2(config-if)# exit

R2(config-if)# int s0/2/1

R2(config-if)# ip add 20.0.0.1 255.0.0.0

R2(config-if)# no shut

R2(config-if)# exit

R2(config)# ip route 192.168.1.0 255.255.255.0 10.0.0.1

R2(config)# ip route 10.0.0.0 255.0.0.0 10.0.0.1

R2(config)# ip route 192.168.3.0 255.255.255.0 20.0.0.2

R2(config)# ip route 20.0.0.0 255.0.0.0 20.0.0.2


R2(config)# exit

R2# Sh ip int brief

R2# sh ip route

R3-configuration

Router> enable

Router# config t

Router(config)#hostname R3

R3(config)# int g0/0

R3(config-if)# ip add 192.168.3.100 255.255.255.0

R3(config-if)# no shut

R3(config-if)# int s0/2/1

R3(config-if)# ip add 20.0.0.2 255.0.0.0

R3(config-if)# clock rate 64000

R3(config-if)# no shut

R3(config-if)#exit

R3(config)# ip route 192.168.2.0 255.255.255.0 20.0.0.1

R3(config)# ip route 192.168.1.0 255.255.255.0 20.0.0.1

R3(config)# ip route 10.0.0.0 255.0.0.0 20.0.0.1

R3(config)#exit

R3# Sh ip int brief

R3# sh ip route

Default Routing
We use default routing to send packets with a remote destination network not in the
routing table, but to the next-hop router.

You can only use default routing on stub networks (those with only one exit path out of
the network).

R1-router Configuration

Router> enable

Router# config t

Router(config)#hostname R1

R1(config)# int g0/0

R1(config-if)# ip add 192.168.1.100 255.255.255.0

R1(config-if)# no shut

R1(config-if)# int s0/2/0

R1(config-if)# ip add 10.0.0.1 255.0.0.0

R1(config-if)# clock rate 64000

R1(config-if)# no shut
R1(config-if)#exit

R1(config)# ip route 0.0.0.0 0.0.0.0 10.0.0.2

R1(config)#exit

R1# Sh ip int brief

R1# sh ip route

R2-Router configuration

Router> enable

Router# config t

Router(config)# hostname R2

R2(config)# int g0/0

R2(config-if)# ip add 192.168.2.100 255.255.255.0

R2(config-if)# no shut

R2(config-if)# int s0/2/0

R2(config-if)# ip add 10.0.0.2 255.0.0.0

R2(config-if)# no shut

R2(config-if)# exit

R2(config-if)# int s0/2/1

R2(config-if)# ip add 20.0.0.1 255.0.0.0

R2(config-if)# no shut

R2(config-if)# exit

R2(config)# ip route 192.168.1.0 255.255.255.0 10.0.0.1

R2(config)# ip route 10.0.0.0 255.0.0.0 10.0.0.1

R2(config)# ip route 192.168.3.0 255.255.255.0 20.0.0.2

R2(config)# ip route 20.0.0.0 255.0.0.0 20.0.0.2


R2(config)# exit

R2# Sh ip int brief

R2# sh ip route

R3-configuration

Router> enable

Router# config t

Router(config)#hostname R3

R3(config)# int g0/0

R3(config-if)# ip add 192.168.3.100 255.255.255.0

R3(config-if)# no shut

R3(config-if)# int s0/2/1

R3(config-if)# ip add 20.0.0.2 255.0.0.0

R3(config-if)# clock rate 64000

R3(config-if)# no shut

R3(config-if)#exit

R3(config)# ip route 0.0.0.0 0.0.0.0 20.0.0.1

R3(config)#exit

R3# Sh ip int brief

R3# sh ip route

RIPv2 LAB
Pre-Requisite :
Assign Ip addresses as per the topology
Configuration of EIGRP
Pre-Requisite :
Assign Ip addresses as per the topology

STANDARD ACL LAB


Pre-Requisite :
1.Assign Ip addresses as per the topology
2. configure Routing (RIP, EIGRP)

TASK :
1. Deny the host 192.168.1.1 communicating with 192.168.2.0
2. Dent the host 192.168.1.2 communicating with 192.168.2.0
3. Deny the network 192.168.3.0 communicating with 192.168.2.0
4. Permit all the remaining traffic

Standard ACL configuration on Router2


Router2(config)#access-list 15 deny host 192.168.1.1 0.0.0.0
Router2(config)#access-list 15 deny host 192.168.1.2
Router2(config)#access-list 15 deny 192.168.3.0 0.0.0.255
Router2(config)#access-list 15 permit any
Router2#sh access-list

Implementation of Standard Acl @Router2 interface Gig0/0


Router2(config)#interface g0/0
Router2(config-if)#ip access-group 15 out
Router2#sh access-list
EXTENDED ACL LAB
Pre-Requisite
1.Assign Ip addresses as per the topology
2. configure Routing (RIP, EIGRP)

TASK :
1.Deny the users on LAN 192.168.2.0 should not access 192.168.1.3 HTTP service
2.Deny the users on LAN 192.168.3.0 should not access 192.168.1.4 FTP service
3.Deny the users on LAN 192.168.3.1 should not access 192.168.1.3 HTTP service
4. Deny the user on LAN 192.168.2.0 should not access 192.168.1.4 DNS
5. Deny the users from the host between 192.168.3.2 and 192.168.1.2 should not be
able to send ICMP(PING/Trace) messages
6. Remaining

Extended ACL configuration on Router1


Router1(config)#access-list 145 deny tcp 192.168.2.0 0.0.0.255 host 192.168.1.3 eq www
Router1(config)#access-list 145 deny udp 192.168.2.0 0.0.0.255 host 192.168.1.4 eq domain
Router1(config)#access-list 145 deny tcp 192.168.3.0 0.0.0.255 host 192.168.1.4 eq ftp
Router1(config)#access-list 145 deny tcp host 192.168.3.1 host 192.168.1.3 eq 80
Router1(config)#access-list 145 deny icmp host 192.168.3.2 host 192.168.1.1
Router1(config)#access-list 145 permit ip any any
Implementation of Extended Acl @Router1 interface Gig0/0
Router1(config)#interface g0/0
Router1(config-if)#ip access-group 145 out
Router1#sh access-list

VERIFY from Other HOSTS

NAT
NAT Lab Pre-Requisite
1. Configure Ip addresses as per the Diagram
2. Configure Default Routing in Router R1
3. Configure Static Routing on ISP router

ROUTER1 configuration :
R1(config)#int G0/0
R1(config-if)#ip add 192.168.1.100 255.255.255.0
R1(config-if)#no shutdown
R1(config)# int s0/0/0
R1(config-if)#ip add 100.1.1.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#clock rate 64000
R1(config)#ip route 0.0.0.0 0.0.0.0 100.1.1.2
R1#sh ip route

ROUTER2(ISP) configuration :
ISP(config)#int G0/0
ISP (config-if)#ip add 200.1.1.100 255.255.255.0
ISP (config-if)#no shutdown
ISP (config)# int s0/0/0
ISP (config-if)#ip add 100.1.1.2 255.255.255.0
ISP (config-if)#no shutdown
ISP (config)#ip route 50.1.1.0 255.255.255.0 100.1.1.1
ISP #sh ip route static

Verify by Pinging from private network to public network

Static NAT Configuration:

R1(config)#ip NAT inside source static 192.168.1.1 50.1.1.1


R1(config)#ip NAT inside source static 192.168.1.2 50.1.1.2
R1(config)#ip NAT inside source static 192.168.1.3 50.1.1.3

R1(config)#int G0/0
R1(config-if)#ip nat inside

R1(config)#int s0/0/0
R1(config-if)#ip nat outside

R1#sh ip nat translations


R1#sh ip nat statistics

Verify by sending ping requests

Verification Commands:
 Show ip nat translation
 Clear ip nat translations
 Sh ip nat statistics

Dynamic NAT LAB


Dynamic NAT Lab Pre-Requisite
1. Configure Ip addresses as per the Diagram
2. Configure Default Routing in Router R1
3. Configure Static Routing on ISP router
Router configuration
R-1(config)#ip access-list standard private_ip
R-1(config-std-nacl)#permit 192.168.1.0 0.0.0.255
R-1(config-std-nacl)#exit
R-1(config)#ip nat pool pub_ip 50.1.1.1 50.1.1.200 netmask 255.255.255.0
R-1(config)#ip nat inside source list private_ip pool pub_ip

R-1(config)#int G0/0
R-1(config-if)#ip nat inside

R-1(config)#int s0/0/0
R-1(config-if)#ip nat outside

R-1#sh ip nat translations


R-1#sh ip nat statistics
PAT LAB(Port Address Translation)
Router configuration
R-1(config)#ip access-list standard private_ip
R-1(config-std-nacl)#permit 192.168.1.0 0.0.0.255
R-1(config-std-nacl)#exit
R-1(config)#ip nat pool pub_ip 50.1.1.1 50.1.1. netmask 255.255.255.252
R-1(config)#ip nat inside source list private_ip pool pub_ip overload

R-1(config)#int G0/0
R-1(config-if)#ip nat inside

R-1(config)#int s0/0/0
R-1(config-if)#ip nat outside

R-1#sh ip nat translations


R-1#sh ip nat statistics

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy