CIERSASSESS-6

Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section
Cisco 360 CCIE® Routing and Switching (R&S) Advanced Workshop 2 is a five-day course for CCIE candidates who are ready to attempt the Cisco CCIE lab. Advanced Workshop 2 is not an entry-level course. You should take this course only if you are close to passing the actual CCIE lab. Advanced Workshop 2 further develops such high-level candidates by presenting learners with five multitopic labs at CCIE level that simulate the actual Cisco CCIE lab experience (four of these labs are eight hours long; one is four hours long). A lab is administered on each day of the course. On the first four days, you will perform an eight-hour lab. On the fifth, and last, day of the course, you will perform the four-hour lab. During each lab, you will be tested on your knowledge of complex internetworking subjects, your problem solving skills, and your test-taking strategies. After each of these labs, you will get a detailed assessment score report combined with an answer key and Mentor Guide support. To supplement this feedback, Cisco CCIE instructors will provide review sessions after each lab and directed instruction during each lab if necessary. These resources provide feedback that maximizes the learning experience of each lab.

Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section

Note COPYRIGHT. 2008. CISCO SYSTEMS, INC. ALL RIGHTS RESERVED. ALL CONTENT AND MATERIALS, INCLUDING WITHOUT LIMITATION, RECORDINGS, COURSE MATERIALS, HANDOUTS AND PRESENTATIONS AVAILABLE ON THIS PAGE, ARE PROTECTED BY COPYRIGHT LAWS. THESE MATERIALS ARE LICENSED EXCLUSIVELY TO REGISTERED STUDENTS FOR THEIR INDIVIDUAL PARTICIPATION IN THE SUBJECT COURSE. DOWNLOADING THESE MATERIALS SIGNIFIES YOUR AGREEMENT TO THE FOLLOWING: (1) YOU ARE PERMITTED TO PRINT THESE MATERIALS ONLY ONCE, AND OTHERWISE MAY NOT REPRODUCE THESE MATERIALS IN ANY FORM, OR BY ANY MEANS, WITHOUT PRIOR WRITTEN PERMISSION FROM CISCO; AND (2) YOU ARE NOT PERMITTED TO SAVE ON ANY SYSTEM, MODIFY, DISTRIBUTE, REBROADCAST, PUBLISH, TRANSMIT, SHARE OR CREATE DERIVATIVE WORKS ANY OF THESE MATERIALS. IF YOU ARE NOT A REGISTERED STUDENT THAT HAS ACCEPTED THESE AND OTHER TERMS OUTLINED IN THE STUDENT AGREEMENT OR OTHERWISE AUTHORIZED BY CISCO, YOU ARE NOT AUTHORIZED TO ACCESS THESE MATERIALS.

2

Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2

© 2009 Cisco Systems, Inc.

................... 13 2................. Control OSPF Advertisements (Intermediate: 3 points) ................................................................................. 16 6...............1....... 18 10...... NAT (Advanced: 2 points) ..................................................................... Configure Frame Relay Interfaces (Basic: 1 point) .......................................3..................................................................................................................2............................... Synchronize the Backbone (Advanced: 1 point) ..................................2...1.................................................................................................................................................................. Configure Switch-to-Router Links (Basic: 2 points) ........... 15 4........................................ Control the Full Mesh with Static Maps (Basic: 2 points) .................................................................................................................................................................. 19 13......2.................... Part 2 (Intermediate: 2 points) ............. 14 3.................. 20 © 2009 Cisco Systems.................................................................1.. Security Section Total: 3 points ..................2........................................................... EIGRP IP Subnet (Intermediate: 1 point) ... Part 1 (Intermediate: 2 points) ..............................................................1..................... 17 6........................................ 6 Grading and Duration .............................................................. 17 8........................................................... 14 2... QoS Section Total: 4 points .............................................................2...2............................................... 19 12................................................................................................ 1 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section ....................... 18 11.... Tuning Ports (Intermediate: 2 points) ........ 12 2.......................................................................................................... 14 2................ 16 6............................4................................... 18 10...................... 12 2.............. Configure VLANs on SW1 and SW2 (Intermediate: 2 points) .... Configure Processes and Peers Within Your Network (Intermediate: 2 points) ...................................... 4 General Lab Instructions................................................................................................................................................................................................................................................................. BGP Decision Process (Advanced: 2 points) .......3................................................................ IPv6 Routing Section Total: 4 points ...............................Table of Contents Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section ...............1..............1. Border Gateway Protocol Section Total: 8 points ....................................... 5 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section ................................................. Cisco IOS Software Services Section Total: 2 points .... 15 3...................... Multicast Configuration Section Total: 6 points ..................................................................... 13 2.......... 17 7.1............................... Configure Processes and Peers with the Backbone (Basic: 2 points) .................................................. 18 10........................................ OSPF Authentication (Intermediate: 2 points) .................. Control Switch-to-Switch Links (Basic: 2 points) ...................................................................... Configure IPv6 NAT (Advanced: 2 points) ................... 16 4.............................................. 17 6............ 6 Restrictions and Goals......................... 18 10...................... 16 5................ Control VLANs (Intermediate: 1 point) ....6................ 12 1..... 17 9.... BGP Adjustments (Intermediate: 2 points) .................... IPv4 EIGRP Section Total: 5 points .................................. Configure Policy Maps............................... IPv4 OSPF Section Total: 12 points ............. Catalyst Switch Configuration Section Total: 13 points ........ 16 4............... 19 12................................... OSPF Forwarding (Intermediate: 2 points) .................. EIGRP AS1 (Basic: 2 points) .... 15 3................................................................................ 19 12.....5.......................... Control EIGRP Bandwidth and Advertisements (Advanced: 2 points) ............ 17 8..........................................1..........................4...............................................................................................................3........................................................ 15 3................................................. OSPF Advertisements (Basic: 3 points) ...................... 13 2.................. 19 13....................................... 6 1........3........1........................................................................................................................................... 15 3.......... Enable NTP (Intermediate: 2 points) ........................ Internal RIP (Basic: 2 points) ........................... Enable PIM.................................................... 12 1......4..... 12 1........ Enable PIM............................. 16 4........1.. Join Multicast Group (Intermediate: 2 point) ...1................... Part 2 (Advanced: 2 points) ................ 17 7................................................................................................................ IPv4 RIP Section Total: 4 points .............. Network Time Section Total: 5 points ............................ Verify Layer 3 Connectivity (Basic: 1 point) ............................... 20 14........... Adjust Clock (Intermediate: 2 points) .................................... 12 2.......... Native VLANs and Greeting Message (Intermediate: 2 points) ............2.................................................................................................................................................. Frame Relay and Serial Communications Section Total: 4 points .2................................................3... RIP and Backbone (Intermediate: 2 points) ....................................... Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 3 ..................................................5...3.............................................................................................................. 16 6.. 17 7... 6 Difficulty Level ........................................ 19 11.........3.................................................... 15 3. 3 Activity Objectives ........................................................ Part 1 (Advanced: 2 points) ..........................7................. Address Administration Section Total: 2 points.............................. Create OSPF Areas (Basic: 2 points) ............... 4 Difficulty Levels ................................................................................................................................................. Catalyst Specialties Section Total: 3 points .............................. Security Policy (Intermediate: 3 points) ............................... 16 5.......... 16 5...........................2..........2.. Enable SSH (Intermediate: 2 points) .......................................................................................1...... 2 Table of Contents ......................................... 17 9..............................................1... Configure Policy Maps........ Configure VLANs on SW3 and SW4 (Intermediate: 2 points) ........................................................1................................................................................... RSPAN (Advanced: 3 points) .............. 19 12....................................................................... Configure IPv6 Addresses for RIP (Basic: 2 points) .............................................................................................................................. 19 14.............. Inc..................................... 18 9.......................................

When performing any assessment lab. very likely you will lose points. You have a predetermined set of hours to complete each assessment lab. you will encounter a multitopic-practice Cisco CCIE Routing and Switching lab. Review all the tasks in the scenario. After you have read the General Lab Instructions section. . Pay very close attention to the Restrictions and Goals section. try to access the routers through the terminal server with Ctrl-Shift-6x. read all the other sections of the lab. If you experience any connectivity problems to the terminal server using multiple Telnet sessions. formulate a test-taking strategy that includes the following activities. Inc. These same activities should be conducted in the actual Cisco CCIE lab: Create a strategy for how to begin an assessment lab Create a checklist of best general practices to observe during the assessment lab Create a strong set of issue-spotting skills to be able to uncover hidden and complex internetworking issues Develop time-management techniques General Lab Instructions Read the instructions carefully. Frame Relay switching and the terminal server are preconfigured. All routers should have an initial IP configuration loaded. Your pod is cabled according to the Ethernet Cabling Topology and the Frame Relay and Serial Cabling Topology diagrams. Each lab consists of a range of internetworking topics. 4 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems.Activity Objectives When performing any assessment lab. If you misinterpret any directions.

Difficulty Levels Tasks are categorized as follows: Basic: These fundamental tasks are generally those that are needed to provide the basic functions of the protocol or feature. Intermediate: These tasks include protocol features like routing optimization. Advanced: This category includes new Cisco IOS Software features and IP services. route filtering. complex optimizations. and summarization. and fine-tuning. You must complete these tasks to provide reachability and to move forward in the lab. Inc. Scenarios are categorized as follows based on task classifications: Basic Basic to intermediate Intermediate Intermediate to advanced Advanced © 2009 Cisco Systems. load sharing. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 5 . optimal path selection. Failure to complete these tasks will usually not affect later lab sections.

10. Do not introduce any new IP addresses and do not create any tunnel links. IP subnets on the Lab IPv4 IGP diagram belong to network 172. X represents the pod number. except for the prefixes advertised from the backbone and interfaces connected to the shared equipment. Do not use any static routes. Advertise loopback interfaces with their original masks. The backbone router BB2 is reachable via 172. All IP version 4 (IPv4) IP addresses involved in this scenario must be reachable.10.30. To receive any credit for a subsection you must fully complete the subsection. Do not use the ip default-network or default-information originate commands. Failure to assign the correct IP address could result in losing points in multiple sections.4.10. The backbone router BB1 is reachable via 192. .10.40.0.100.0/16. N represents the group number. 6 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems. The backbone router BB3 is reachable via 172. Check your online instructions for your number NX. You will not get partial credit for partially completed subsections.40.Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 Configuration Section Grading and Duration Configuration lab duration: Configuration lab maximum score: Troubleshooting lab duration: Troubleshooting lab maximum score: Minimum passing score (after troubleshooting and configuration): 8 hours 75 points 2 hours 25 points 80 points Difficulty Level Difficulty: Intermediate Restrictions and Goals Note Note: Read this section carefully. Inc.16. unless specifically specified.

Do not modify the hostname. or vty configuration unless you are specifically asked to do so. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 7 . Inc. console. © 2009 Cisco Systems. Do not modify the initial interface or IP address numbering.

Inc.Ethernet Cabling Topology Fa0/0 R6 2811 Fa0/1 Fa0/0 R5 2811 Fa0/1 Fa0/0 R4 2811 Fa0/1 Fa0/0 R3 2811 Fa0/1 Fa0/0 R2 2811 Fa0/1 Fa0/0 R1 2811 Fa0/1 Fa0/6 Fa0/5 Fa0/4 Fa0/3 Fa0/2 Fa0/1 Fa0/23 Fa0/24 Fa0/23 Fa0/24 Fa0/21 Fa0/22 Fa0/1 Fa0/2 Fa0/3 Fa0/4 Fa0/5 Fa0/6 Fa0/19 Fa0/20 Fa0/21 Fa0/22 Fa0/20 Fa0/19 Fa0/19 Fa0/20 Fa0/21 Fa0/22 Fa0/23 Fa0/24 Fa0/22 Fa0/23 Fa0/21 Fa0/19 Fa0/20 Fa0/24 Fa0/10 TRUNK BACKBONE 8 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems. .

Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 9 .Frame Relay and Serial Cabling Topology Frame Relay DLCI Assignments Router DLCI Assignments 102 R1 Frame Relay interface 103 104 201 R2 Frame Relay interface 203 204 301 R3 Frame Relay interface 302 304 401 R4 Frame Relay interface 402 403 © 2009 Cisco Systems. Inc.

1/24 192.1/24 Lo5:53.20/24 A41 R4 Lo120:120.3 Fa0/0 123.65/28 Lo81:4.3/24 R4 Fa0/0 172.NX/24 Lo103:103.1/24 26.7/24 Fa0/1 VLAN13 A12 VLAN14 12.1/24 Fa0/0 35. .1/24 10.1/24 BB1 RIPv2 Lo101:101.4.5/30 Lo9:53.4/24 S0/0/0 R6 Fa0/0 172.40.40.81/28 A4 VLAN888 172.10. Inc.40.5/24 Fa0/0 A115 Lo105:105.1/24 Lo53:53.2 VLAN11 123.NX/24 VLAN999 Lo104:104.49/28 Lo65:4.30.1/24 14.NX/24 Fa0/1 12.1/24 Lo97:4.100.1/24 Lo49:4.1/24 Lo10:10.1/30 BB3 R5 116.10/24 VLAN998 Fa0/1 192.1/24 AS1 Lo106:106.10.10/24 VLAN12 A0 172.1/24 Lo10:10.20.100.9/30 Fa0/0 A0 R4 21.40.1/24 R2 Fa0/0 26.1/24 VLAN15 10 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems.1/24 A1 10.3/24 S0/0/0 14.10.1/24 A22 Lo102:102.11/24 123.2/24 S0/0/0 R1 S0/0/0 10.97/29 R3 Fa0/0 35.Lab IPv4 IGP Lo107:107.30.1/24 Lo115:115.10.4.10.2/24 S0/0/0 201 401 301 102 RIPv2 21.10/24 BB2 Lo113:113.10/24 104 103 Lo110:110.

Lab IPv6 IGP © 2009 Cisco Systems. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 11 . Inc.

allow the VLANs to be advertised from SW2 to SW1 only. Configure a physical interface on router R3 and logical interfaces on all other Frame Relay interfaces. Inc. R1 and R4 should be in the same subnet. Use point-to-point logical interfaces wherever possible.1. 2. . Verify Layer 3 Connectivity (Basic: 1 point) Supply IPv4 addresses on all required Frame Relay interfaces.” Make sure that only the permanent virtual circuits (PVCs) listed on the Lab IPv4 interior gateway protocol (IGP) diagram are used for user traffic. Catalyst Switch Configuration Section Total: 13 points Note Port 0/10 on SW4 is connected to the backbone.1. Make sure that routers R2. The configuration of this port should be trunk encapsulation dot1q. VLANs VLAN VLAN11 VLAN12 VLAN13 VLAN14 VLAN15 VLAN998 VLAN888 VLAN999 A B C D E VLANBB1 VLANBB2 VLANBB3 VLAN NAME When creating VLANs.1. 1. 2. Frame Relay and Serial Communications Section Total: 4 points 1. Configure Frame Relay Interfaces (Basic: 1 point) R1.2. The domain name is ciers2lab02. Control the Full Mesh with Static Maps (Basic: 2 points) The Frame Relay switch router is configured for a “full mesh. and R3 should be in the same subnet. 1. R3. No dynamic entries are allowed in the Frame Relay map tables.1q Status trunking Do not change any initially configured link speeds. Healthy trunk status is displayed as following: Mode on Encapsulation 802. 12 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems. and R4 can ping R1 over respective Frame Relay PVCs.3. R2. Configure VLANs on SW1 and SW2 (Intermediate: 2 points) Create the VLANs referenced in the VLANs table and the IPv4 IGP diagram.

VLAN888 Create the necessary switched virtual interfaces (SVIs) and assign the IP addresses specified in the Lab IPv4 IGP diagram.2. Inc. 2. VLAN14 VLAN12 VLAN999 VLAN12. Configure Switch-to-Router Links (Basic: 2 points) Configure the following switch-to-router connections. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 13 . Switch SW3 VLAN VLAN15 VLAN1234 VLAN998 VLAN888 E VLAN NAME ODD? VLANBB1 VLANBB2 VLANBB3 ODD? SW4 VLAN999 VLAN1234 Make sure that only these VLANs are configured on SW3 and SW4. VLAN998 VLAN11.3.2. 2. Configure VLANs on SW3 and SW4 (Intermediate: 2 points) SW3 and SW4 should operate in transparent VTP mode. Configure VLANs according to the following table. Control Switch-to-Switch Links (Basic: 2 points) Make sure that the ports specified in the following table are shut down: © 2009 Cisco Systems. VLAN14.4. Use the IEEE tagging method on the trunk links where necessary and be sure that they will not conflict with other lab requirements. VLAN15 VLAN11. Switch-to-Router Connections Switch SW2 SW1 SW1 SW1 SW1 SW1 R1 R2 R3 R4 R5 R6 Router VLAN VLAN13.

0/24 between SW1 and SW2 using the interface 0/23 on both switches. See the IPv4 IGP diagram. Assign an IPv4 address on SW4 according to the IPv4 IGP diagram. Tuning Ports (Intermediate: 2 points) Configure the link 172.7. 14 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 . Control VLANs (Intermediate: 1 point) Allow only VLAN 1234 on the link between SW3 and SW4. 2.16. Verify that it is a dot1q trunk.6. Use the Cisco proprietary tagging method on the trunk links where necessary: Switch-to-Switch Connections Switch SW1 SW1 SW1 SW2 SW2 SW3 Port 0/23 0/24 0/20 0/19 0/20 0/23 Switch SW2 SW2 SW3 SW4 SW4 SW4 0/23 0/24 0/20 0/19 0/20 0/23 Port Routed Trunk Mode Access VLAN15 TBD Trunk Trunk Note TBD = To be determined SW4 port 0/10 is your connection to the backbone. Inc. Configure an appropriate trunk encapsulation. Configure a message of the day Welcome to CIERS2-GA-LAB02! on SW1.5.21. VLAN 998 and VLAN 999 on the link between ports 0/20 of SW2 and SW4. Allow only backbone VLAN 888. 2.Switch 0/19 SW1 0/21 0/22 SW2 0/21 0/22 0/19 SW3 0/21 0/22 0/21 SW4 0/22 0/24 Port Configure switch-to-switch links according to the following table. © 2009 Cisco Systems. 2. Native VLANs and Greeting Message (Intermediate: 2 points) Set the native VLAN to 11 for the link between R6 and SW1.

16. Advertise the loopback 107 interface on the SW4 router into OSPF as an internal OSPF route. Inc.123.16.16.0/24. Control OSPF Advertisements (Intermediate: 3 points) Do not allow any external or interarea OSPF routing information to enter Area 1 from R1.9/30 Summarize the /30 networks with the mask /24.3. 3.16.5. 172. Configure authentication type only at the area level. . and SW4 in OSPF Area 1. Create OSPF Areas (Basic: 2 points) Configure the Frame Relay network between R1.16. 3. 3.0/24 in OSPF Area 115.0/30.0/24 subnet should be advertised by OSPF in a network link-state advertisement (LSA).102. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 15 © 2009 Cisco Systems. OSPF Authentication (Intermediate: 2 points) Configure OSPF Message Digest 5 (MD5) authentication for Area 0 using password cisco.5/30 172. OSPF Advertisements (Basic: 3 points) On R4.16. SW1. Make R4 the designated router for the R1/R4 link. Advertise loopback 103 as a type 2 OSPF external route with the maximum possible metric. You will lose points from multiple sections for failing to assign one and only one OSPF PID on each specified router. Place the loopback networks 172. R2.16.1/24 172. The 172. 3. IPv4 OSPF Section Total: 12 points Note Configure all Open Shortest Path First (OSPF) routers with only one OSPF process ID (PID). Configure OSPF Area 0 between router R3 and R5. Do not use any prefix-based filtering techniques.104. advertise the loopback with a 29-bit mask as a type 1 OSPF external route with the minimal possible metric. On R3.16.0/24 into OSPF Area 4. Place this link in OSPF Area 41.3. Automatically discover neighbors. The OSPF packets carried on the link between R4 and R1 must have a unicast IP address in the destination field. OSPF Forwarding (Intermediate: 2 points) Place the VLAN 14 link between the router R1 and R2 in the OSPF Area 12. Advertise the network between R1. Configure OSPF on the link between R1 and R4.2.1. and R3 as the OSPF backbone area. Summarize the /28 networks with the most optimal mask. place the loopback interfaces with a 28-bit prefix and loopback 172.53. Advertise the following loopbacks from R2 as Area 22: — — — 172.105. 3. 53. and 172. Use your IGP diagram to help guide configuration.115.53.4.

NX/24 to Fa0/0 on R6.10. Routers R1 and SW1 must not communicate through RIP.0/24.10.105. Border Gateway Protocol Section Total: 8 points Note The Border Gateway Protocol (BGP) table must display only networks that are advertised according to the BGP section specifications. IPv4 RIP Section Total: 4 points 5.1 for interarea and external routes. Advertise these addresses and 172.0/24 and 192.1. © 2009 Cisco Systems. Allow only the 192. EIGRP IP Subnet (Intermediate: 1 point) Only two devices with the IP addresses displayed on the IPv4 IGP diagram must be on the subnet and form Enhanced Interior Gateway Routing Protocol (EIGRP) adjacency.40.168.16. Allow only the prefixes 140.0/24.123.107. 4.101. Control EIGRP Bandwidth and Advertisements (Advanced: 2 points) Make sure that EIGRP advertises only over the interfaces that are connected to VLAN 11. 16 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 .1/24.1.5. Note Perform redistribution as necessary to provide universal unicast connectivity 6.1/24 and 10. Configure Processes and Peers with the Backbone (Basic: 2 points) Configure BGP peering between BB2 (autonomous system [AS] 1581) and R6 (AS 800) and BB3 (AS 1771) and R4 (AS 800). 140.10. Restrict the bandwidth use to half the default value for EIGRP traffic on VLAN 11. 5. and 140.0/24 subnets in from BB1.10.12.2. 5.1.20. Internal RIP (Basic: 2 points) Configure RIP between SW1 and SW2. Make R1 a silent RIP router.10. 4. Assign the IP address 172. Add the network 172. RIP and Backbone (Intermediate: 2 points) Configure Routing Information Protocol (RIP) version 2 over the VLAN 998 connection between R1 and BB1. EIGRP AS1 (Basic: 2 points) Configure EIGRP AS 1 between R2 and R6. This access list must contain the minimal number of statements to complete this task.10.4.0/24 into AS 800. Create one and only one loopback 10 on router R6 and assign the following two addresses to the single loopback interface: 10.16. Inc. Configure the access list BB1-RIP-IN for this task. Use the minimum number of standard access list filtering entries to accomplish this task.1 instead of 172.2. Do not change any interface-to-area assignments.16.0/24 to the RIP process on R1 with the network statement.10.2.106. 6.16.0/24 through EIGRP as internal EIGRP prefixes. Do not use any filtering technique to accomplish this task.10. 140. IPv4 EIGRP Section Total: 5 points 4.3. Make sure that R2 prefers a next hop of 172. 4.0/24.168.3.

No IPv6 static and default routes are permitted in this scenario.16. and R6 in AS 65000. R5. Router R3 R5 Interface with IPv4 Address 172.4. R2.10. BGP Decision Process (Advanced: 2 points) Make AS 1771 the preferred AS over AS 1581 for all outbound traffic destined to the 140.1/24 by configuring router R3.6.16.1.123.3 172. BGP Adjustments (Intermediate: 2 points) Do not redistribute the BGP learned prefixes into any IGP on any router. R3. R4. exchange BGP updates through R3 within AS 65000. 6.16.1) and destined to the loopback interface of R6 (172.2.1) must be forwarded by R1 across the Frame Relay link. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 17 . Only one peering relationship can exist between AS 65000 and AS 65001.1. Configure R2.16.3. and 11:00 p. and R6 BGP speakers within AS 800.2.16.5 IPv6 Address 3500::35:3/96 3500::35:5/96 Configure an IPv6 RIP process named IPV6RIP on routers R3 and R5. Perform redistribute connected where required and when the lab does not restrict it.2.16. Use the following addresses to accomplish this task: 3555::35:3 and 172. Configure IPv6 NAT (Advanced: 2 points) Provide connectivity between the R5 IPv6 address and the IPv4 address 172. QoS Section Total: 4 points Note Note The quality of service (QoS) configuration must be applied on R2 using only one policy-map. This peering must be established between R3 and R4. R5. Configure IPv6 Addresses for RIP (Basic: 2 points) Configure the IPv6 addresses in accordance with the IPv6 diagram and this table. Do not form a full mesh of internal BGP peer relationships. IPv6 Routing Section Total: 4 points 7. R3.106.105. Note 8. Security Policy (Intermediate: 3 points) According to your company's security policy.10. between 10:00 p.5. © 2009 Cisco Systems.35. 7. Security Section Total: 3 points 8.m. traffic that pertains to time synchronization that is sourced from the loopback interface of R5 (172.0/24 subnets.m. 7. Other traffic should be unaffected. Inc.123. Make R1.10. 9. 6.0/24 to 140.35. Configure Processes and Peers Within Your Network (Intermediate: 2 points) Configure R1 and R4 in AS 65001.

18 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 . Configure Policy Maps.1. Enable daylight saving time on SW1 and SW2. Use only Network Time Protocol (NTP) configuration commands to accomplish this task. Enable NTP (Intermediate: 2 points) All routers and switches specified in the following table must obtain time from the R6 loopback interface.1 172.106.1 172.16.16. 172.1 172.110. Do not restrict ICMP packets of sizes between 300 and 500 bytes entering R2 through the interface on VLAN 11.1 172. Adjust Clock (Intermediate: 2 points) All devices in the preceding table must show the current real time in Eastern Standard Time (EST) format with five hours offset.16.103. change the differentiated services code point (DSCP) value of these packets to AF22.106. allowing bursts for 2000 bytes and excess bursts for 1000 bytes.1 172.1 172.1 172. Inc. Part 1 (Advanced: 2 points) Set the IP precedence to 4 for traffic with packet sizes in the range between 1000 and 1300 bytes entering R2 through the interface connected to VLAN 11. drop it.16.1. Router R1 R2 R3 R4 R5 R6 SW4 SW1 SW2 IP Address 172. Part 2 (Advanced: 2 points) Make sure that you allow IP traffic with packet sizes in the range between 300 and 500 bytes that are entering router R2 through VLAN 11 at the leak rate of 8 kb/s.16.1 172. Instead.3.1) and the IP addresses listed for each device in the following table. 10. without attempting to adjust the R6 clock.103.1.16. originated from the VLAN 11 interface of R6 and destined to 172. R6 should not attempt to provide time to the BB2.2.9.120.105. Configure Policy Maps.1.106.16. 10. All time synchronization packets within your pod must be terminated between the R6 loopback interface (172.2.102. the packets must be unconditionally discarded.16. If this type of traffic still exceeds the allowed buffers. If the same size packets are Internet Control Message Protocol (ICMP) packets originated from the VLAN11 connected interface of R6 and destined to 172. Synchronize the Backbone (Advanced: 1 point) Configure R6 to get the time from BB2.101.107.16. © 2009 Cisco Systems.16.16. Network Time Section Total: 5 points 10.16.103. 9.1.1 10.104.16.

101.com and generate an RSA key pair.0/24.110.16.16. R2.16.102. Cisco IOS Software Services Section Total: 2 points 11.1 IP address should be delivered to SW2 with a source IP address of 172. Router R1-R2 R1-R3 R3 Link 172.16. and make sure that the ICMP translation entry stays in the translation table for 10 minutes.9 from R5 to all other multicast routers.35.16.0/24 172. Router R1 R2 R3 SW4 SW1 SW2 Loopback 172.123.107.0/24 172.2. SW1.16.3/24 Do not configure Protocol Independent Multicast (PIM) on the interfaces of subnet 172. Make R5 accessible through only version 2 of the Secure Shell (SSH) protocol from the user admin.103.0/24 172. Verify with the ping utility.10. Enable PIM. Part 1 (Intermediate: 2 points) Configure multicast routing between R1. 13.0/24 172.123. 12. 12. and R3 according to the following table.1. R3. . Enable PIM.0/24 172. Part 2 (Intermediate: 2 points) Configure multicast routing on R1.16.1 IP address should be delivered to SW4 with a source IP address of 172.16. NAT (Advanced: 2 points) IP packets sourced from the loopback 105 interface of R5 and destined to 172.0/24 172. Join Multicast Group (Intermediate: 2 point) Join management loopback interfaces of R1.9. SW1.1.11.9.101. Enable SSH (Intermediate: 2 points) On R5. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 19 © 2009 Cisco Systems. R2.101.16.120. and SW2 using a protocol that uses any unicast routing protocol for source address determination and applies a “flood and prune” mechanism.16.20.16. SW4.9.0/24 Ping the multicast group 229. SW4.9.3.16. 12. and SW2 to group 229.16.120.1.16.0/24 172. configure the domain name lab02.9. Multicast Configuration Section Total: 6 points 12. Inc. Address Administration Section Total: 2 points 13.12. using the password cisco.107. IP packets sourced from the loopback 105 interface of R5 and destined to 172. Apply the solution on router R1.

116.16. VLAN 15. and SW1. RSPAN (Advanced: 3 points) Ping the IP address 172.10. and VLAN 1234.10. 20 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 2 © 2009 Cisco Systems.16.1 only. SW4.16.255 from R1 and make sure that you get replies from 172.16.1. or tunneling between the VLAN 13. SW3.11.255 must be forwarded through SW2. 172.10. and 172.7. Catalyst Specialties Section Total: 3 points 14. Inc. .14.16. ICMP echo request for 172. Do not use any bridging.10. VLAN mapping. in this particular order.