CIERSASSESS-5

Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1
The Cisco 360 CCIE® Routing and Switching (R&S) Advanced Workshop 2 is a five-day course for CCIE candidates who are ready to attempt the Cisco CCIE lab. Advanced Workshop 2 is not an entry-level course. You should take this course only if you are close to passing the actual CCIE lab. Advanced Workshop 2 further develops such high-level candidates by presenting learners with five multitopic labs that simulate the actual Cisco CCIE lab experience. Four of the labs are eight hours long; one is four hours long. One lab is administered on each day of the course. On the first four days, you will perform an eight-hour lab. On the fifth day of the course, you will perform the four-hour lab. During each lab, you will be tested on your knowledge of complex internetworking subjects, your problemsolving skills, and your test-taking strategies. After each of the labs, you will receive a detailed assessment score report combined with an answer key and Mentor Guide support. To supplement this feedback, Cisco CCIE instructors will provide review sessions after each lab and directed instruction during each lab if necessary. These resources provide feedback that maximizes the learning experience of each lab.

Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1
COPYRIGHT 2009, CISCO SYSTEMS, INC. ALL RIGHTS RESERVED. ALL CONTENT AND MATERIALS, INCLUDING WITHOUT LIMITATION, RECORDINGS, COURSE MATERIALS, HANDOUTS AND PRESENTATIONS AVAILABLE ON THIS PAGE, ARE PROTECTED BY COPYRIGHT LAWS. THESE MATERIALS ARE LICENSED EXCLUSIVELY TO REGISTERED STUDENTS FOR THEIR INDIVIDUAL PARTICIPATION IN THE SUBJECT COURSE. DOWNLOADING THESE MATERIALS SIGNIFIES YOUR AGREEMENT TO THE FOLLOWING: (1) YOU ARE PERMITTED TO PRINT THESE MATERIALS ONLY ONCE, AND OTHERWISE MAY NOT REPRODUCE THESE MATERIALS IN ANY FORM, OR BY ANY MEANS, WITHOUT PRIOR WRITTEN PERMISSION FROM CISCO; AND (2) YOU ARE NOT PERMITTED TO SAVE ON ANY SYSTEM, MODIFY, DISTRIBUTE, REBROADCAST, PUBLISH, TRANSMIT, SHARE OR CREATE DERIVATIVE WORKS ANY OF THESE MATERIALS. IF YOU ARE NOT A REGISTERED STUDENT THAT HAS ACCEPTED THESE AND OTHER TERMS OUTLINED IN THE STUDENT AGREEMENT OR OTHERWISE AUTHORIZED BY CISCO, YOU ARE NOT AUTHORIZED TO ACCESS THESE MATERIALS.

2

Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1

© 2009 Cisco Systems, Inc.

...........4...................4........................................3............................................. 17 7..........2.2.................. 17 7...................................... VLAN 12 Spanning Tree Manipulation (Intermediate: 3 points) ............................................... HSRP Gateway Redundancy Section Total: 4 points ................................................5......................................................................................................................................... 6 Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1 ............................................................................................. 5 Difficulty Levels ..........2...... Create the OSPF Backbone Area (Basic: 2 points) ........................................................................................0/8 (Advanced: 3 points) ................................... 18 8............. Security Section Total: 5 points .. 20 14................................................................................................................................................................................ 16 4............................... Within VLAN IP Connectivity (Intermediate: 2 points) .............. IP Header (Intermediate: 2 points) ...............3................................................... IPS Probe (Advanced: 3 points) ......................... Configure Processes and Peers (Basic: 2 points) ...............................................1....................................................................... 19 9.............................................. 13 1............ Secure Multicast (Intermediate: 2 points) ..................................................................................... Border Gateway Protocol Section Total: 10 points .......3...... 17 7........ 19 10............... Control the Full Mesh with Static Maps (Basic: 2 points) .................1 Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1 ................................................................. 19 9............................. 5 General Lab Instructions .............................................................. 13 2........................ 20 12............................................................................ 17 6................................................ QoS Section Total: 5 points.........................1.................................................................................................. 13 1....................... 19 11..................... Join Multicast Group (Intermediate: 1 point) ................... Cisco OER and NAT Section Total: 6 points ....................................................................... 7 Difficulty Level .............. Traffic Shaping (Advanced: 3 points) .......1........................................ 16 4............................................................... 19 10..... Cisco Catalyst Switch Configuration Section Total: 17 points .................................................................................... Configure NAT (Intermediate: 3 points) ... 16 5.................. NTP Configuration Section Total: 3 points ........1.................. 13 2..................................... Enable PIM (Intermediate: 3 points) .......................1.................................. 18 8................................................................2.......................................................................................................... 7 1.............................. 13 1.......................................... Address Administration Section Total: 4 points ........ Allow Only One Prefix (Advanced: 2 points) ................................................................ 16 5............... 7 Restrictions and Goals .......................................................... Configure VLANs (Basic: 3 points) ...................................................... Control Updates (Advanced: 2 points) ........... OSPF Advertisements (Basic: 3 points) ....... 18 9................................................1............ 7 Grading and Duration ................................................................................ 18 7...................................... 16 3............ 20 14............................................................................................................. Control Switch-to-Switch Links (Basic: 3 points) ...................... 16 3.. Enable NTP (Intermediate: 3 points) ............................................ 20 13................................2............................................................................. 19 10......................................1.........2............................. 15 2............................................................................................. Multicast Configuration Section Total: 9 points ........................................................................................2..................................................................................... 15 3...... DHCP (Intermediate: 2 points) ...... Verify Layer 3 Connectivity (Basic: 1 point) .................................................... 15 3........................................1.................................................... 17 6.................................................................................. BGP AS11111 (Advanced: 3 points) ............ Enable RIP (Intermediate: 3 points) ...................6.................................................. 2 Table of Contents .....................1............... 3 Activity Objectives ......2......... Frame Relay and Serial Communications Section Total: 5 points.............................................................1..........................................4...............................................................................................................2.............. 19 11........................................................................................................................................................................................................................... 20 14................4.................. Allow Only Prefix 3.................. 20 12................................. Link Aggregation and VLAN Control (Intermediate: 3 points) .....................................................................................1............. Configure Cisco OER (Advanced: 3 points) ............... 20 14.......... Inc..3...........2.......... 16 4............................................ 20 14...........0. 20 13... VLAN 16 Spanning Tree Manipulation (Intermediate: 3 points) ..................................................................................................... 16 6.................................................................................................... 17 7........................... Tune PIM (Intermediate: 3 points) .......1.................................0...............2....................... 15 2......................................1...................... 20 12...................................................................1........................................... Create EIGRP AS (Basic: 2 points) .... 20 © 2009 Cisco Systems................................ 16 4................................................... 13 2............... More OSPF Areas (Intermediate: 2 points) .................................. 19 11... Advertise and Summarize Routes in BGP II (Intermediate: 2 points) ............... IPv4 OSPF Section Total: 9 points ......... Enable HSRP (Intermediate: 2 points) .... Configure Frame Relay Interfaces (Basic: 2 points) . IPv4 EIGRP Section Total: 7 points .......... Configure IPv6 OSPF and IPv6 Redistribution (Intermediate: 3 points)..... IPv6 Routing Section Total: 6 points . Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 3 ........................................................... Configure RIPng (Intermediate: 3 points) .... DHCP Binding (Intermediate: 2 points) ....Table of Contents Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1..............................................2............... Tune HSRP (Intermediate: 2 points) .................... Set the Gateway of Last Resort (Intermediate: 2 points) ............................................................ 18 8......................................... 16 5.................................................................................................................................................................... 15 2. Advertise and Summarize Routes in BGP I (Intermediate: 3 points) .............................. IPv4 RIP Section Total: 5 points....................2........ Limit Traffic (Intermediate: 2 points) .. 16 3.................................................................................................... 14 2....................3......3...................................................................

.................................. Users......21 4 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems........................ Configure SNMP Groups....1............................. and Views (Intermediate: 3 points) ... Inc................. SNMP Section Total: 5 points ....................2....................15......... ........................................................21 Restrict SNMP Access (Intermediate: 2 points) ....................... 15... 21 15.........

try to access the routers through the terminal server with Ctrl-Shift-6-x. formulate a test-taking strategy that includes the following activities. read all the other sections of the lab. All routers should have an initial IP configuration loaded. © 2009 Cisco Systems. you will very likely lose points. Your pod is cabled according to the Ethernet Cabling Topology and the Frame Relay and Serial Cabling Topology diagrams. If you experience any connectivity problems to the terminal server using multiple Telnet sessions. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 5 .Activity Objectives When performing any assessment lab. Inc. When performing any assessment lab. Review all the tasks in the scenario. you will encounter a multitopic-practice Cisco CCIE R&S lab. These same activities should be conducted in the actual Cisco CCIE lab: Create a strategy for how to begin an assessment lab Create a checklist of best general practices to observe during the assessment lab Create a strong set of issue-spotting skills to be able to uncover hidden and complex internetworking issues Develop time-management techniques General Lab Instructions Read the instructions carefully. Frame Relay switching and the terminal server are preconfigured. Each lab consists of a range of internetworking topics. You have a predetermined set of hours to complete each assessment lab. If you misinterpret any directions. Pay very close attention to the Restrictions and Goals section. After you have read the General Lab Instructions section.

load sharing. optimal path selection. You must complete these tasks to provide reachability and to move forward in the lab. Failure to complete these tasks will usually not affect later lab sections. Advanced: This category includes new Cisco IOS Software features and IP services. and fine-tuning. complex optimizations.Difficulty Levels Tasks are categorized as follows: Basic: These fundamental tasks are generally those that are needed to provide the basic functions of the protocol or feature. Scenarios are categorized as follows based on task classifications: Basic Basic to intermediate Intermediate Intermediate to advanced Advanced 6 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. Intermediate: These tasks include protocol features like routing optimization. . route filtering. and summarization. Inc.

Cisco 360 CCIE R&S Advanced Workshop 2 Assessment Lab 1 Grading and Duration Lab duration: Maximum score: Minimum passing score: 8 hours 100 points 80 points Difficulty Level Difficulty: Intermediate Restrictions and Goals Note Read this section carefully. except for the prefixes from the 1. Do not use policy-based routing (PBR).0/16. You will not get partial credit for partially completed subsections. Do not rely on Frame Relay Inverse Address Resolution Protocol (Inverse ARP).0. The Frame Relay switching router is configured for a full mesh of permanent virtual circuits (PVCs). N represents the group number.0. X represents the pod number.0/8 network involved in Cisco Optimized Edge Routing (OER).16. and interfaces that are connected to the shared equipment. . Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 7 © 2009 Cisco Systems. IP subnets on the Lab IPv4 IGP diagram belong to network 172. Inc. Do not create any static routes on any routers and switches except for R6 and SW2. Use a minimum number of statements in all filters unless otherwise directed. Do not change the PVC configuration on the Frame Relay switching router. To receive any credit for a subsection. unless noted otherwise. prefixes that are advertised from the backbone. Use only the IP version 4 (IPv4) and IPv6 addresses that are displayed on the IPv4 and IPv6 interior gateway protocol (IGP) diagrams. Failure to assign the correct IP address could result in losing points in multiple sections. you must complete the subsection. Do not introduce new addresses. Check your online instructions for your number NX. All IPv4 IP addresses that are involved in this scenario must be reachable. Advertise all loopback interfaces with their original masks.0.

Do not modify the hostname. . Do not modify the initial interface or IP address numbering. Inc. 8 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. or vty configuration unless you are specifically asked to do so. console.

Inc. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 9 .Ethernet Cabling Topology © 2009 Cisco Systems.

Frame Relay and Serial Cabling Topology Frame Relay DLCI Assignments Router DLCI Assignments 102 103 104 201 203 204 206 301 302 304 401 402 403 602 R1 Frame Relay interface R2 Frame Relay interface R3 Frame Relay interface R4 Frame Relay interface R6 Frame Relay interface 10 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. Inc. .

Inc. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 11 .Lab IPv4 IGP © 2009 Cisco Systems.

.Lab IPv6 IGP 12 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. Inc.

R1 must send Internet Control Message Protocol (ICMP) packets to R2 when you ping 172.16.16. No dynamic entries are allowed in the Frame Relay map tables.1.123. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 13 © 2009 Cisco Systems. Set the domain name to CIERS2 on all switches.1. Configure VLANs (Basic: 3 points) Create the VLANs that are referenced in the VLANs table and in the Lab IPv4 and IPv6 IGP diagrams.3. Supply IPv4 addresses on required Frame Relay interfaces. Healthy trunk status is displayed as following: Mode on Encapsulation 802. including local IPv4 addresses. The configuration of this port should be trunk encapsulation dot1q. Use physical interfaces on R2 and R3 on the IP subnet 172. When creating these VLANs. 1.123. 2. 2. Frame Relay and Serial Communications Section Total: 5 points 1.1. same-subnet Frame Relay IPv4 interfaces. Control the Full Mesh with Static Maps (Basic: 2 points) Use only the PVCs that are listed on the Lab IPv4 IGP diagram for user traffic. Verify Layer 3 Connectivity (Basic: 1 point) All routers must be able to ping all attached.1q Status trunking Do not change any initially configured link speeds. 1. R6 must be able to ping R2 over respective Frame Relay PVC.0/24 and use logical point to point interfaces on R2 and R6. Cisco Catalyst Switch Configuration Section Total: 17 points Note Port 0/10 on switch SW4 is connected to the backbone. Configure Frame Relay Interfaces (Basic: 2 points) Use a logical interface on R1. Inc. Routers R2 and R3 must be able to ping R1 over respective Frame Relay PVCs. Configure only the necessary VLANs on the switches.2. Use the IEEE tagging method on these trunk links where necessary.1 from R1. . VLANs VLAN VLAN12 VLAN16 VLAN17 VLAN25 VLAN34 VLAN88 VLAN100 VLAN150 VLAN Name MERCURY VENUS MARS NEPTUNE JUPITER SATURN TRAFFIC BB Configure the following switch-to-router connections. do not use any type of dynamic VLAN advertisement protocol.

Inc. Switch 0/20 SW1 0/21 0/22 SW2 0/20 0/22 0/20 0/22 0/20 SW4 0/21 0/22 Port 2. VLAN100 VLAN34 VLAN34 VLAN Create the necessary switched virtual interfaces (SVIs). Control Switch-to-Switch Links (Basic: 3 points) Make sure that the ports specified in the following table are shut down. Use the Cisco proprietary tagging method on these trunk links. .Switch-to-Router Connections Switch SW1 SW1 SW1 SW2 SW2 SW2 SW2 R2 R5 R6 R6 R1 R3 R4 Router VLAN25 VLAN150. and assign the IP addresses that are specified in the Lab IPv4 IGP diagram. 14 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems.2. VLAN25 VLAN12 VLAN16 VLAN16. VLAN88. SW3 Configure switch-to-switch links according to the following table. VLAN17.

2. Initiate this process from the SW1 switch only. The SW2 end of the trunk should be set to permanent trunking. 3.Switch-to-Switch Connections Switch SW1 SW1 SW2 SW2 SW3 Port 0/19 0/23 0/24 0/19 0/21 0/23 0/24 Switch SW3 SW2 SW4 SW3 SW4 0/19 0/23 0/24 0/19 0/21 0/23 0/24 Port Trunk Trunk Trunk Access VLAN16 Access VLAN12 Access VLAN17 Mode SW4 port 0/10 is your connection to the backbone. Make SW4 the root bridge for VLAN 12 with priority 24576. Link Aggregation and VLAN Control (Intermediate: 3 points) Automatically aggregate ports 0/23 and 0/24 between SW1 and SW2 using a protocol that is nonproprietary to Cisco.6. Leave all path cost values on the links of VLAN 12 at the default values that are set by Cisco IOS Software. Within VLAN IP Connectivity (Intermediate: 2 points) Configure VLAN 17 between R1 and SW3. 2.3. make sure that forwarding on the link between SW1 and SW3 resumes without waiting for maximum aging time expiration.1. Assign the IP address 10. Allow only the necessary VLANs on the trunk between SW1 and SW2.4.NX/24 to the interface that is associated with VLAN 100. If the link between SW2 and SW3 goes down. make sure that forwarding on the link between SW1 and SW3 resumes within 5 seconds maximum. Leave all path cost values on the links of VLAN 16 at the default values that are set by Cisco IOS Software. specify the trunk encapsulation on SW2 only. verify it as a dot1q trunk. IPv4 OSPF Section Total: 9 points Note Configure all Open Shortest Path First (OSPF) routers with only one OSPF process ID (PID). For IP addressing. © 2009 Cisco Systems. and configure VLAN 88 between R1 and the SW1 SVI. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 15 . Assign the lowest IP addresses on R1 for VLANs 17 and 88. VLAN 16 Spanning Tree Manipulation (Intermediate: 3 points) Make SW2 the root bridge for VLAN 16 with priority 24576. Use your IGP diagram to help guide configuration.1. 2. If the link between SW1 and SW2 goes down. Configure VLAN 100 on R1. For the link between SW1 and SW2. All same-subnet VLAN IP addresses must be reachable within all VLANs. VLAN 12 Spanning Tree Manipulation (Intermediate: 3 points) All switches should operate in the default spanning-tree mode. see the diagram. You will lose points from multiple sections for failing to assign one and only one OSPF PID on each specified router. Inc.5. 2.

5.1. Add loopback 2 on R2 into OSPF as an external route.16.0.0/24. .0.20.4.2. Control Updates (Advanced: 2 points) Configure SW1 to send only a summary 172. 4. Summarize the address that is assigned to loopback 20 of R2 to 172.1. Advertise loopback 140 as an internal EIGRP AS2 network. Create the OSPF Backbone Area (Basic: 2 points) Configure the OSPF backbone area between R1.16.2. 3. Add loopback 40 on R4 into EIGRP as an “EX” prefix.0.0/8 to be advertised from R3 to R4. R4 is not excluded from the scenario reachability requirement. Let the backbone OSPF speakers automatically discover each other. OSPF Advertisements (Basic: 3 points) Add loopback 20 on R2 to OSPF Area 20. Add loopback 50 on R5 into OSPF as Area 50. 3. Create EIGRP AS (Basic: 2 points) Configure Enhanced Interior Gateway Routing Protocol (EIGRP) autonomous system 1 (AS1) between R3 and R4 on VLAN 34.*.0. Inc. 5. More OSPF Areas (Intermediate: 2 points) Configure Area 25 between R2 and R5. Configure OSPF Area 126 on the R2 Frame Relay interface that is configured with the IPv4 address 172. 4. Configure RIP version 2 between devices that are connected to VLAN 88. Allow Only Prefix 3. Set the Gateway of Last Resort (Intermediate: 2 points) Make sure that the network 2. filter all other prefixes.62. Place loopback 30 and loopback 3 in OSPF Area 30 on R3.*. 4. This network is not excluded from the scenario reachability requirement. IPv4 EIGRP Section Total: 7 points 4. Enable RIP (Intermediate: 3 points) Configure Routing Information Protocol (RIP) version 2 between devices that are connected to VLAN 17. IPv4 RIP Section Total: 5 points 5.0/8 (Advanced: 3 points) Allow only the prefix 3.0 and its subnets do not appear in the routing tables of any router except R2. Restrict the advertisement of RIP updates to VLAN 17 and VLAN 88 only.0.0/25 on VLAN 88. 3.2.80.3. filter all other prefixes. R2.1.* networks in the RIP process. Allow only one prefix—the one that represents the entire IPv4 address space—to be advertised from R3 to SW4.3.16. 16 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. Do not include the 192. Do not use the redistribute connected command anywhere on R3.3.0. and R3 on the Frame Relay cloud. Make sure that they elect R1 as the designated router (DR). Allow Only One Prefix (Advanced: 2 points) Configure EIGRP AS2 between R3 and SW4.2.

103. Statically configure a default route to 1.105.3. R6 should actively monitor a network delay to network 3. R3. Cisco OER and NAT Section Total: 6 points 6. select R1 as a gateway for the network 3. Configure Cisco OER (Advanced: 3 points) Statically configure two default routes to 172.102.3. All BGP speakers in AS64600 must have the following prefixes in their BGP and IP routing tables: (1) 192.0/24 192.3. Peer AS700 and AS100.16. and (3) a summary for the remaining prefixes that are advertised by SW3 through BGP.0/24 192.104. Peer AS100 and AS64600 between R1 and R2 only.3/32 by sending ICMP probes and.101.3.1. Advertise and Summarize Routes in BGP I (Intermediate: 3 points) Originate the following prefixes from SW3 with the origin code incomplete: — — — — — — 192.0/24.3. If the ICMP probe fails between the R6 interface on VLAN 16 and the network 3. and R4.168.2.0/24 with either source IP address 172.16.16.3.168.6 on SW2.6 or 172.3. Use the synchronization method on R2 and R3.168.3. Use the AS numbers that are given in the exam.62. Border Gateway Protocol Section Total: 10 points Note The Border Gateway Protocol (BGP) table must display only networks that are advertised according to the BGP section specifications.16. 7.2. Do not form a BGP peer relationship between R2 and R4.1.0/24 192.6.1.2 on R6.104. Configure AS100 on R1 and AS64600 on routers R2.168.6.0/24 192. 6. Apply this configuration on R1.62.16. Configure NAT (Intermediate: 3 points) IP packets that originated from SW2 should arrive on the network 3.100.168. R6 should be configured as a master controller and a border Cisco OER router.16. based on the lower delay. (2) 192.1 and 172.168. R6 should forward packets to R2. The summary must have the same AS path attribute as its constituents. Inc. Configure Processes and Peers (Basic: 2 points) Assign SW3 to AS700.105.168. 7.3/32.3/32.0/24. You may redistribute as necessary to meet this requirement. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 17 . Note Perform redistribution as necessary to provide universal unicast connectivity.0/24 7. © 2009 Cisco Systems.0/24 192.1.168.

123. and SW4.16.16.140. Configure a RIPng routing process named “frame” between R1.7. Configure IPv6 OSPF and IPv6 Redistribution (Intermediate: 3 points) Configure IPv6 addresses on R1 and R6 according to the Lab IPv6 IGP diagram and the following table. . The RIP speakers that are connected to the “frame” RIP process should exchange updates using port 65000 and multicast group ff02::9999.3 172. Summarize the received prefixes on R5 with an optimal mask.34.16. Peer AS11111 only with the backbone AS1771. All BGP speakers should have only a classful prefix of this network in their BGP tables. R3. The summary must not be listed in the BGP tables of any other routers.2 R3 R3 SW4 SW4 172.16. 7. Advertise and Summarize Routes in BGP II (Intermediate: 2 points) Advertise loopback 3 into BGP on R3 only. the solution should not be based on a distribute list and should work even if new BGP peer relationships are added in the future without any additional configuration. 18 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems. R2. and 52323.40 172. Inc.16.4. Use the minimal number of statements and characters in the filtering solution.2. 524. this major network should be shown as originated from AS100.1. 523. On SW3.1 IPv6 Address 1230::1/16 FE80::123:1 link local 1230::2/16 FE80::123:2 link local 1230::3/16 FE80::123:3 link local 3400::3/16 3400::40/16 1400::1/16 R2 172. 8.123.3 172.1 All routers that are involved in this subsection must be able to ping same-subnet IPv6 addresses. BGP AS11111 (Advanced: 3 points) Configure BGP AS11111 on R5. and suppress more specific prefixes without using the suppress map option.3. Do not reoriginate this network on any other routers. Configure RIPng (Intermediate: 3 points) Configure the link-local and site-local IPv6 addresses in accordance with the Lab IPv6 IGP diagram and this table: Router R1 Interface with IPv4 address 172.34. 8.16. Configure filtering so that the only prefixes accepted are those that contain one of the following AS entries in their path AS: 51.123. IPv6 Routing Section Total: 6 points 8.

Limit Traffic (Intermediate: 2 points) A User Datagram Protocol (UDP) stream originates from imaginary IP address 10. IPS Probe (Advanced: 3 points) An imaginary intrusion prevention system (IPS) probe with the MAC address 0007.10. Configure IPv6 OSPF Area 0 on the VLAN 16 link between the interfaces of R1 and R6.2. Inc. Address Administration Section Total: 4 points 11. and do not use a throttling mechanism. configure pool test. 10.16.1. The committed information rate (CIR) of the PVC should be set to 96000 b/s.0/24 destined to the network 172.1. Limit the above-specified UDP traffic to an 8000-b/s rate on the VLAN 100 interface of R1. the domain name is test.ebaa. Security Section Total: 5 points 9.1 Ethernet 172.1.Router R1 Interface with IPv4 address Logical Ethernet 172.NX port 5120. Do not apply your solution to any interface.16. Do not allow excess bursts. and printers.16.1.16. Use the OSPF network type that does not elect a DR or backup designated router (BDR) and that would permit additional OSPF routers on the link. as well as an appropriate gateway IP address. The UDP stream is destined to 10.77. DHCP (Intermediate: 2 points) On R4. and the lowest 10 IP addresses will be used for routers.net.0/24 must be exported to the IPS probe.16. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 19 © 2009 Cisco Systems. IP address 172. 9. Supply the Domain Name System (DNS) server address 10. Configure the minimal values for normal burst size and maximum burst size.50.2.1.16. One in every five packets of the incoming traffic from the network 172. R4 will supply IP addresses to workstations on VLAN 34. your supervisor has decided to drop all IP traffic containing IP options on R5. 10.1 on VLAN 100 connected to port 0/10 of SW4.40 is configured on the VLAN 34 interface of SW4.10. Traffic Shaping (Advanced: 3 points) Configure Frame Relay traffic shaping (FRTS) on the PVC between R1 and R3 on both routers.10. IP Header (Intermediate: 2 points) IP options are not used very often in modern networks. Provide IPv6 connectivity between all routed IPv6 addresses that are involved in this lab. QoS Section Total: 5 points 10.6 Loopback80 IPv6 Address 1600::1/16 R6 R6 1600::6/16 8000::1/16 All routers that are involved in this subsection must be able to ping same-subnet IPv6 addresses.16. The committed rate measurement interval (Tc) value should be 10 ms. 9. Drop excessive traffic.34. Advertise the loopback 80 interface on R6 in IPv6 OSPF Area 80. Perform redistribution between IPv6 routing protocols on R1 and R2. 11.0e00 is residing on VLAN 16. therefore.1. Do not use the Modular QoS CLI (MQC) configuration method. .1. servers.

3. Enable HSRP (Intermediate: 2 points) Prefer R3 as a gateway for imaginary hosts on VLAN 34.16.30 should be rooted from interface loopback 10 of R1. Join Multicast Group (Intermediate: 1 point) Use loopback interfaces to simulate receivers of the traffic destined to the group 230. Secure Multicast (Intermediate: 2 points) Build the multicast tree only for 230.30. 12.30. Tune HSRP (Intermediate: 2 points) If the Frame Relay connection fails. HSRP Gateway Redundancy Section Total: 4 points 12.30.30.34.G) state in their respective multicast routing tables.30 230.16.60/25 and 172.30 230.1. 14. Configure a peer association between R3 and R4.16.30.16. Use a standard access list with the name “MCAST” to accomplish this task. These workstations must also receive the appropriate gateway address. NTP Configuration Section Total: 3 points 13.30. 20 Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 © 2009 Cisco Systems.2.30. Enable NTP (Intermediate: 3 points) Make R1 the Network Time Protocol (NTP) master with stratum 5. No multicast routers should display (S. 13.30 14.30. Configure member routers to statically join the shared tree. The following table provides details for this task.30. Inc.30.2. Multicast Configuration Section Total: 9 points 14.1.30. 12.1. 14.1.61/25. hosts should prefer R4.30 230. and domain name.30.30. Enable PIM (Intermediate: 3 points) The shared tree for the group 230. Router R2 R1 R3 R5 Loopback20 Loopback10 Loopback30 Loopback50 Interface Multicast Group 230.4. Assign the lowest IP address on VLAN 34 to the virtual gateway.30.34.30.2.11. . DNS server address. DHCP Binding (Intermediate: 2 points) UNIX workstations with MAC addresses 00-50-04-DF-5F-60 and 00-50-04-DF-5F-61 should always receive the IP addresses 172.30. R6 is excluded from the multicast tree and should not have any PIM configuration. Tune PIM (Intermediate: 3 points) Use the ping utility to source the multicast traffic from R6 IP address 172. Configure a server association between R3 and R1. Hosts must again prefer R3 when the Frame Relay connection becomes active. 14. respectively.

Inc. Cisco 360 CCIE R&S Workshop 2 Assessment Lab 1 21 .91. Configure a group named ADMINISTRATORS to support the SNMP version 3 security model.1. Restrict access to the group ADMINISTRATORS from only one host located at 10. 15. Assign a user named OPER to the group OPERATORS.1. Assign a user named ADMIN to the group ADMINISTRATORS.1. Configure SNMP Groups. The group named ADMINISTRATORS should be able to write to a view CISCO of the SNMP object cisco. © 2009 Cisco Systems.90.2. Users.1. and Views (Intermediate: 3 points) Configure a group named OPERATORS to support the SNMP version 3 security model. SNMP Section Total: 5 points 15. Apply the SNMP configuration with no authentication on R1. The OPERATORS group members should be able to read only a view CISCO of the SNMP object cisco.1.15. Restrict SNMP Access (Intermediate: 2 points) Restrict access to the group OPERATORS from only one host located at 10.