Reference no: EM132315767
Project
Tables
Note: You are provided with the networks that interfaces should be configured on. Unless you are told to do differently in the detailed instructions below, you are free to choose the host addresses to assign.
Addressing Table:
|
Device
|
Interface
|
Network
|
Configuration Details
|
|
Site-1
|
S0/0/0
|
192.168.100.20/30
|
any address in the network
|
|
S0/0/1
|
192.168.100.28/30
|
any address in the network
|
|
G0/0
|
192.168.8.0/24
|
first host address
|
|
G0/1
|
192.168.9.0/24
|
first host address
|
|
HQ
|
S0/0/0
|
192.168.100.20/30
|
any address in the network
|
|
S0/0/1
|
192.168.100.36/30
|
any address in the network
|
|
S0/1/0
|
203.0.113.16/29
|
(The first address in this network is already in use on the ISP router. Any other address in the network can
be assigned to this interface.)
|
|
Site-2
|
S0/0/0
|
192.168.100.28/30
|
any address in the network
|
|
S0/0/1
|
192.168.100.36/30
|
any address in the network
|
|
G0/1.2
|
10.10.2.0/24
|
first address in the network
|
|
G0/1.4
|
10.10.4.0/24
|
first address in the network
|
|
G0/1.8
|
10.10.8.0/24
|
first address in the network
|
|
G0/1.15
|
10.10.15.0/24
|
first address in the network
|
|
G0/1.25
|
10.10.25.0/24
|
first address in the network
|
|
SW-A
|
SVI
|
10.10.25.0/24
|
the highest address in the network
|
|
SW-B
|
SVI
|
10.10.25.0/24
|
the second to the highest address in the network
|
|
SW-C
|
SVI
|
10.10.25.0/24
|
the third to the highest address in the network
|
|
Oper 1A
|
NIC
|
192.168.8.0/24
|
any available address in the network
|
|
Clerk 1C
|
NIC
|
192.168.9.0/24
|
any available address in the network
|
|
Admin-A
|
NIC
|
10.10.15.0/24
|
any available address in the network
|
|
Admin-B
|
NIC
|
10.10.15.0/24
|
any available address in the network
|
VLAN Switch Port Assignment Table:
|
VLAN
|
Name
|
Network
|
Device
|
Switch Ports
|
|
2
|
sales
|
10.10.2.0/24
|
SW-A
|
Fa0/5
|
|
SW-C
|
Fa0/7
|
|
4
|
prod
|
10.10.4.0/24
|
SW-A
|
Fa0/10
|
|
SW-C
|
Fa0/10
|
|
8
|
acct
|
10.10.8.0/24
|
SW-A
|
Fa0/15
|
|
SW-C
|
Fa0/15
|
|
15
|
admin
|
10.10.15.0/24
|
SW-A
|
Fa0/24
|
|
SW-C
|
Fa0/24
|
|
25
|
SVI-NET
|
10.10.25.0/24
|
SW-A
|
SVI
|
|
SW-B
|
SVI
|
|
SW-C
|
SVI
|
|
99
|
null
|
N/A
|
SW-A
|
all unused ports
|
Ether-Trunk Group Interfaces:
|
Channel
|
Device
|
Interfaces
|
|
1
|
SW-A
|
Fa0/1, Fa0/2
|
|
SW-C
|
Fa0/1, Fa0/2
|
|
2
|
SW-A
|
Fa0/3, Fa0/4
|
|
SW-B
|
Fa0/3, Fa0/4
|
|
3
|
SW-B
|
Fa0/5, Fa0/6
|
|
SW-C
|
Fa0/5, Fa0/6
|
You are required to do the following:
Part I: OSPF Router Configuration
Step 1: Plan the Addressing.
Determine the IP addresses that you will use for the required interfaces on the devices and LAN hosts. Follow the configuration details provided in the Addressing Table.
Step 2: Configure Site-1.
Configure Site-1 with initial settings:
• Configure the router host name: Site-1. This value must be entered exactly as it appears here.
• Protect device configurations from unauthorized access with an encrypted secret password.
• Secure the router console and remote access lines.
• Configure a Welcome message.
• Encrypt all clear text passwords.
Step 3: Configure the Router Interfaces.
Use the information in the addressing table to configure the interfaces of all routers for full connectivity with the following:
• Configure IP addressing.
• Descriptions for the three connected interfaces of HQ.
• The Ethernet sub interfaces on Site-2 will be configured later in this assessment.
Step 4: Configure inter-VLAN ;'routing on Site-2.
Configure router Site-2 to route between VLANs using information in the Addressing Table and VLAN Switch Port Assignment Table. The VLANs will be configured on the switches later in this assessment.
• Do not route the VLAN 99 network.
Step 5: Configure OSPF Routing and a default route.
a. On all routers:
• Configure OSPF for IPv4 to route between the internal networks.
• Use the precise wild card masks for all network statements.
• You are not required to route the SVI-NETVLAN network over OSPF.
• Prevent routing updates from being sent on the LAN networks. Do notuse the default keyword version of the command to do so.
b. On the HQ router:
• Configure a default route to the Internet. Use the exit interface argument.
• Configure OSPF for IPv4 to distribute the default route to the other routers.
Step 6: Customize OSPF for IPv4.
Customize OSPF for IPv4 by performing the following configuration tasks:
• Create a summary route for the LANs connected to SW-C. It should include all networks from 10.10.0.0 to 10.10.15.0.
• Do not include the SVI-NETVLAN network in the summary route.
• Configure OSPF for IPv4 with the route summary so that it will be sent to the other routers. Be sure to configure the summary on all of the appropriate interfaces.
Part II: Switching and DHCP Configuration
Step 1: Create and name VLANs.
On all three switches that are attached to Site-2, create and name the VLANs shown in the VLAN Table.
• The VLAN names that you configure must match the values in the table exactly.• Each switch should be configured with all of the VLANs shown in the table.
Step 2: Assign switch ports to VLANs.
Using the VLAN table, assign the switch ports to the VLANs you created in Step 1, as follows:
• All switch ports that you assign to VLANs should be configured to static access mode.
• All switch ports that you assign to VLANs should be activated.
Step 3: Configure the SVIs.
Refer to the Addressing Table. Create and address the SVIs on all three of the switches that are attached to Site-2. Configure the switches so that they can communicate with hosts on other networks. Full connectivity will be established after routing between VLANs has been configured later in this assessment.
Step 4: Configure Trunking and EtherTrunk.
a. Use the information in the Port-Channel Groups table to configure EtherTrunk as follows:
• Use LACP.
• The switch ports on both sides of Channels 1 and 2 should initiate negotiations for channel establishment.
• The switch ports on the SW-B side of the Channel 3 should initiate negotiations with the switch ports on SW-C.
• The switch ports on the SW-C side of Channel 3 should not initiate negotiations with the switch ports on the other side of the channel.
• All channels should be ready to forward data after they have been configured.
b. Configure all port-channel interfaces as trunks.
c. Configure static trunking on the switch port on SW-B that is connected to Site-2.
Step 5: Configure Rapid PVST+.
Configure Rapid PVST+ settings as follows:
a. Activate Rapid PVST+ and set root priorities.
• All three switches should be configured to run Rapid PVST+.
• SW-A should be configured as root primary for VLAN 2 and VLAN 4 using the default primary priority values.
• SW-A should be configured as root secondary for VLAN 8 and VLAN 15 using the default secondary priority values.
• SW-C should be configured as root primary for VLAN 8 and VLAN 15 using the default primary priority values.
• SW-C should be configured as root secondary for VLAN 2 and VLAN 4 using the default secondary priority values.
b. Activate PortFast and BPDU Guard ontheactive SW-C switch access ports.
• Configure PortFast on all access ports that are connected to hosts.
• Activate BPDU Guard on all access ports that are connected to hosts.
Step 6: Configure switch security.
You are required to complete the following onlyon some of the devices in the network for this assessment. In reality, security should be configured on all devices in the network.
a. Secure unused switch ports. Following security best practices, do the following on SW-A only:
• Shutdown all unused switch ports.
• Configure all unused switch ports as static access ports.
• Ensure that all unused switch ports have been assigned to VLAN 99.
b. Configure port security on all active access ports on SW-A.
• Each switch port should accept only two MAC addresses before a security action occurs.
• The learned MAC addresses should be recorded in the running configuration.
• If a security violation occurs, the switch ports should provide notification that a violation has occurred but not place the interface in an err-disabled state.
Step 7: Configure Site-2 as a DHCP server for the hosts attached to the SW-A and SW-B switches.
Configure three DHCP pools as follows:
• Create a DHCP pool for hosts on VLAN 2 using the pool name vlan2pool.• Create a DHCP pool for hosts on VLAN 4 using the pool name vlan4pool.
• Create a DHCP pool for hosts on VLAN 8 using the pool name vlan8pool.
• All VLAN pool names must match the provided values above exactly.
• Exclude the first five addresses from each pool.
• Configure a DNS server address of 192.168.200.225.
• All hosts should be able to communication with hosts on other networks.
Step 8: Configure host addressing.
Note: This assessment is a simulation of a working network. Due to the complexities of the protocols and technologies that are simulated in this network, some connectivity tests may not succeed even though the network has been properly configured. If all required configurations are complete, your score will not be affected.
All hosts should be able to ping each other and the two external servers after they have been addressed.
• Hosts on VLANs 2, 4, and 8 should be configured to receive addresses dynamically over DHCP.
• Hosts on VLAN 15 should be addressed statically as indicated in the addressing table. Once configured, the hosts should be able to ping hosts on other networks.
• Hosts on the LANs attached to Site-1 should be statically assigned addressing that enables them to communicate with hosts on other networks.
Topology:
Important Notes:
• If there are no specific configurations requirement then you may choose according to your best judgment.
• For each and every step you should present a detailed configuration and its verification in your report.
• If you think anything is missing or incompatible, you must discuss this with your teacher urgently.
Presentation:
• The students' participation should be equally distributed.
• Any result in technical failure will not be compensated hence precautionary backup measures are advisable.
• Each group will have a maximum of 15 minutes which includes 5-7 minutes of presentation and the rest 8-10 minutes for the viva voce.
• The whole group will be given a single mark. Every student should be able to answer as it will affect all of the group members.
Attachment:- Project.rar