Professional Documents
Culture Documents
EWAN Student Lab Skills Based Assessment Answer Key
EWAN Student Lab Skills Based Assessment Answer Key
Addressing Table
Device
R1
R2
R3
Interface
IP Address
Subnet Mask
Default Gateway
Fa0/1
10.0.0.1
255.255.255.128
N/A
S0/0/0
172.16.0.1
255.255.255.252
N/A
S0/0/1
172.16.0.9
255.255.255.252
N/A
Lo0
209.165.200.161
255.255.255.224
N/A
S0/0/0
172.16.0.2
255.255.255.252
N/A
S0/0/1
172.16.0.5
255.255.255.252
N/A
Fa0/1
S0/0/0
10.0.0.129
172.16.0.10
255.255.255.128
255.255.255.252
N/A
N/A
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 1 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
Device
Interface
IP Address
Subnet Mask
Default Gateway
S0/0/1
172.16.0.6
255.255.255.252
N/A
PC1
NIC
10.0.0.10
255.255.255.128
10.0.0.1
PC3
NIC
10.0.0.139
255.255.255.128
10.0.0.129
Learning Objectives
To complete this lab:
Erase the startup configuration and reload a router to the default state
Configure and activate serial interfaces (PPP with CHAP, HDLC, and Frame Relay)
Configure ACLs
Scenario
This lab tests you on the skills and knowledge that you learned in Exploration 4. Use cisco for all
passwords in this lab, except for the enable secret password, which is class.
enable
configure terminal
no ip domain-lookup
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 2 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 3 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
interface Serial0/0/0
ip address 172.16.0.10 255.255.255.252
clockrate 125000
no shutdown
!
interface Serial0/0/1
ip address 172.16.0.6 255.255.255.252
no shutdown
!
Step 2: Verify IP addressing and interfaces.
R1:
R1#show ip interface brief
Interface
IP-Address
Protocol
FastEthernet0/0
unassigned
FastEthernet0/1
10.0.0.1
Serial0/0/0
172.16.0.1
Serial0/0/1
172.16.0.9
Serial0/1/0
unassigned
Serial0/1/1
unassigned
R2:
R2#show ip interface brief
Interface
IP-Address
Protocol
FastEthernet0/0
unassigned
FastEthernet0/1
unassigned
Serial0/0/0
172.16.0.2
Serial0/0/1
172.16.0.5
Serial0/1/0
unassigned
Serial0/1/1
unassigned
Loopback0
209.165.200.161
R3:
R3#show ip interface brief
Interface
IP-Address
Protocol
FastEthernet0/0
unassigned
FastEthernet0/1
10.0.0.129
Serial0/0/0
172.16.0.10
Serial0/0/1
172.16.0.6
unset
manual
manual
manual
unset
unset
unset
unset
manual
manual
unset
unset
manual
administratively
administratively
up
up
administratively
administratively
up
down down
down down
up
up
down down
down down
up
unset
manual
manual
manual
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 4 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
interface Serial0/0/0
encapsulation ppp
ppp authentication chap
!
R2:
username R1 password 0 cisco
interface Serial0/0/0
encapsulation ppp
ppp authentication chap
!
R1:
R1#show interfaces S0/0/0
Serial0/0/0 is up, line protocol is up
Hardware is GT96K Serial
Internet address is 172.16.0.1/30
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation PPP, LCP Open
Listen: CDPCP
Open: IPCP, loopback not set
Keepalive set (10 sec)
<output omitted>
R2:
R2#show interfaces S0/0/0
Serial0/0/0 is up, line protocol is up
Hardware is GT96K Serial
Internet address is 172.16.0.2/30
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation PPP, LCP Open
Open: IPCP, loopback not set
Keepalive set (10 sec)
<output omitted>
Step 2: Configure and verify HDLC encapsulation between R2 and R3.
!no extra configuration is needed, The default encapsulation is HDLC
R2:
R2#show interfaces S0/0/1
Serial0/0/1 is up, line protocol is up
Hardware is GT96K Serial
Internet address is 172.16.0.5/30
MTU 1500 bytes, BW 128 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
<output omitted>
R3:
R3#show interfaces S0/0/1
Serial0/0/1 is up, line protocol is up
Hardware is GT96K Serial
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 5 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 6 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
R1:
router rip
version 2
passive-interface default
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
network 10.0.0.0
network 172.16.0.0
no auto-summary
!
R2:
router rip
passive-interface default
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
network 172.16.0.0
network 209.165.200.0
no auto-summary
!
R3:
router rip
version 2
passive-interface default
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
network 10.0.0.0
network 172.16.0.0
no auto-summary
!
Step 2: Test connectivity with the ping command.
R1:
R1#ping 10.0.0.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/4 ms
R1#ping 10.0.0.129
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.129, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R1#ping 10.0.0.139
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.139, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R1#ping 172.16.0.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.2, timeout is 2 seconds:
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 7 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R1#ping 172.16.0.5
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.5, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/22/24 ms
R1#ping 172.16.0.6
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.6, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R1#ping 172.16.0.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 16/16/16 ms
R2:
R2#ping 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R2#ping 10.0.0.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R2#ping 10.0.0.129
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.139, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R2#ping 10.0.0.139
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.139, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/16 ms
R2#ping 172.16.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/14/16 ms
R2#ping 172.16.0.6
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.0.2, timeout is 2 seconds:
!!!!!
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 8 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 9 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
R2:
R2#show ip route
<output omitted>
Gateway of last resort is not set
R
C
C
C
C
R
R
R3:
R3#show ip route
<output omitted>
Gateway of last resort is not set
C
C
R
R
R
C
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 10 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 11 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
Username: R1
Password: cisco
R2#
eq
eq
eq
eq
ftp
ftp-data
telnet
www
Step 3: Do not allow PC1 to receive traffic from the 10.0.0.128 /25 network.
R1:
ip access-list extended pc3-out
deny
ip 10.0.0.128 0.0.0.127 any
permit ip any any
!
interface FastEthernet0/1
ip access-group pc3-out out
!
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 12 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
Step 4: Verify that PC3 cannot ping PC1, but can ping 10.0.0.1.
C:\ >ping 10.0.0.10
Pinging 10.10.10.1 with 32 bytes of data:
Request
Request
Request
Request
timed
timed
timed
timed
out.
out.
out.
out.
from
from
from
from
10.0.0.1:
10.0.0.1:
10.0.0.1:
10.0.0.1:
bytes=32
bytes=32
bytes=32
bytes=32
time=1ms
time=2ms
time=1ms
time=1ms
TTL=255
TTL=255
TTL=255
TTL=255
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 13 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 14 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
permit 172.16.0.2
!
ip access-list extended pc3-out
deny
ip 10.0.0.128 0.0.0.127 any
permit ip any any
!
line con 0
exec-timeout 5 0
password cisco
logging synchronous
line aux 0
line vty 0 4
access-class telnet in
password cisco
!
end
R2:
no service pad
service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
enable secret class
!
aaa new-model
!
!
aaa authentication login Auth_Local local
!
aaa session-id common
!
no ip source-route
no ip gratuitous-arps
ip cef
!
no ip bootp server
no ip domain lookup
!
username R1 password 0 cisco
username ccna password 0 cisco
!
interface Loopback0
ip address 209.165.200.161 255.255.255.224
ip access-group PC1-in in
!
interface FastEthernet0/0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
no ip directed-broadcast
shutdown
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 15 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
!
interface FastEthernet0/1
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
no ip directed-broadcast
shutdown
!
interface Serial0/0/0
ip address 172.16.0.2 255.255.255.252
no ip redirects
no ip unreachables
no ip proxy-arp
no ip directed-broadcast
encapsulation ppp
ppp authentication chap
!
interface Serial0/0/1
ip address 172.16.0.5 255.255.255.252
no ip redirects
no ip unreachables
no ip proxy-arp
no ip directed-broadcast
clockrate 125000
!
router rip
passive-interface default
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
network 172.16.0.0
network 209.165.200.0
no auto-summary
!
no ip http server
!
ip access-list extended PC1-in
deny
tcp any host 10.0.0.10 eq ftp
deny
tcp any host 10.0.0.10 eq ftp-data
deny
tcp any host 10.0.0.10 eq telnet
deny
tcp any host 10.0.0.10 eq www
permit ip any any
!
no cdp run
!
line con 0
exec-timeout 5 0
logging synchronous
line aux 0
line vty 0 4
exec-timeout 5 0
login authentication Auth_Local
!
end
R3:
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 16 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
hostname R3
!
no ip domain lookup
frame-relay switching
!
interface FastEthernet0/0
no ip address
shutdown
!
interface FastEthernet0/1
ip address 10.0.0.129 255.255.255.128
ip nat inside
!
interface Serial0/0/0
ip address 172.16.0.10 255.255.255.252
ip nat outside
encapsulation frame-relay
clockrate 125000
frame-relay map ip 172.16.0.9 103 broadcast
frame-relay map ip 172.16.0.10 103
no frame-relay inverse-arp
frame-relay intf-type dce
!
interface Serial0/0/1
ip address 172.16.0.6 255.255.255.252
ip nat outside
!
router rip
version 2
passive-interface default
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
network 10.0.0.0
network 172.16.0.0
no auto-summary
!
ip nat inside source list NAT interface Serial0/0/1 overload
!
ip access-list standard NAT
permit 10.0.0.128 0.0.0.127
ip access-list standard telnet
permit 172.16.0.5
permit 172.16.0.2
!
line con 0
exec-timeout 5 0
password cisco
logging synchronous
line aux 0
line vty 0 4
access-class telnet in
password cisco
!
end
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 17 of 18
CCNA Exploration
Accessing the WAN: Skills Based Assessment
All contents are Copyright 19922007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 18 of 18