You are on page 1of 8

Juniper Networks Certified Internet

Specialist Service Provider

LAB DIAGRAMS: POD - D

Management Network Diagram


gege-0/0/0 (on all SRX devices)

srxDsrxD-1

Terminal
Server

Serial Console
srxD-2
Connections srxD-

Management
Network
Student
Workstations

10.210.14.128/27
10.210.8.160/28

Management Addressing
exDexD-1

exDexD-2

Management interface
srxDsrxD-1
srxDsrxD-2
vrvr-device
exDexD-1
exDexD-2

telnet 10.210.14.137
telnet 10.210.14.138
telnet 10.210.14.139
telnet 10.210.8.167
telnet 10.210.8.168
Console Access

me0 (on all EX devices)


srxDsrxD-1
srxDsrxD-2
exDexD-1
exDexD-2

telnet 192.168.2.11 7007


telnet 192.168.2.11 7008
telnet 10.1.1.253 7017
telnet 10.1.1.253 7018

Username/password
username:
password:

lab
lab456

Cavell JNCIS-SP Lab Access Procedure POD D


ssh js2.lab2.cavellgroup.com using port 7037 takes you to our Jump Server.
From Jump Server prompt run telnet to your SRXs ge-0/0/0 interface using the OoB network IP address (10.210.14.128/27).
- Use either the IP address provided here below or SRX name: srxD-1 and srxD-2
From Jump Server prompt run Telnet to 192.168.2.11 and selected port number for each SRXs Console port.
End your session with CTRL + ]. If not the session might hang preventing you to re-establish a console session again.
From Jump Server prompt run telnet to your Switchs me0 interface using the OoB network IP address (10.210.8.160/28).
Use either the IP address provided here below or router name: exD-1 and exD-2
From Jump Server prompt run Telnet to 10.1.1.253 and selected port number for each Switchs Console port.
End your session with CTRL + ]. If not the session might hang preventing you to re-establish a console session again.

JUNOS Security Device

srxD-1
srxD-2
exD-1
exD-2
vr-device J2350

Telnet via Terminal Server to SRX Console


port. Don't forget to log out, otherwise the
session will hang!!!
ssh to js2.lab2.cavellgroup.com port 7037

OoB network, ge-0/0/0 or me0 via


Jumpserver

Authentication in Jumpserver
Login as user: & passwd:
Provided by Cavell

Authentication in Jumpserver
Login as user: & passwd:
Provided by Cavell

Login to SRX as user: lab


password: lab456
Quit session with: CTRL +
192.168.2.11 port 7007
192.168.2.11 port 7008
10.1.1.253 port 7017
10.1.1.253 port 7018

telnet to OoB IP address as below


Login to SRX as user: lab
password: lab456
telnet 10.210.14.137
telnet 10.210.14.138
telnet 10.210.8.167
telnet 10.210.8.168
telnet 10.210.14.139

ssh to js2.lab2.cavellgroup.com port 7037

Lab 1: Protocol Independent Routing


VLAN Assignments
Hostname

VLANVLAN-ID

srxD-1

117

srxD-2

118

Internet Host
Internet
(.1

(.2

(.1
)

30
/
.0
.1
8
1
2.
7
1

172.31.15.1

17
2.
18
.2
.0
/3
0

(.2
)

ge
-0
/0
/3

3
0/
/
-0
ge

gege-0/0/2 (.1)

172.20.66.0/30

(.2) gege-0/0/2

ge-0/0/1 (.1)
lo0: 192.168.1.1 ge-

172.20.77.0/30

(.2) gege-0/0/1 lo0: 192.168.2.1

srxDsrxD-1

(.1) gege-0/0/4.117
172.20.117.0/24
(.10)
vr117
lo0: 192.168.1.2

Tagged Interface
Note: v = remainder of VLAN-ID.
See table for details.

Virtual Routers

srxDsrxD-2

gege-0/0/4.118 (.1)
172.20.118.0/24
(.10)
vr118
lo0: 192.168.2.2

Lab 2: OSPF Multi-area


VLAN Assignments
Hostname

VLANVLAN-ID

srxD-1

117

srxD-2

118

Internet Host
Internet

(.1

(.2

172.31.15.1

(.1
)

17
2.
18
.2
.0
/3
0

30
/
0
1.
.
8
.1
2
17

(.2
)

ge
-0
/0
/3

/3
0
/
-0
e
g

srxDsrxD-1
lo0: 192.168.1.1

gege-0/0/2 (.1)

172.20.66.0/30

(.2) gege-0/0/2

gege-0/0/1 (.1)

172.20.77.0/30

(.2) gege-0/0/1 lo0: 192.168.2.1

srxDsrxD-2

gege-0/0/4.118 (.1)

(.1) gege-0/0/4.117

OSPF Area 0.0.0.0


OSPF Area
0.0.0.1

172.20.118.0/24

172.20.117.0/24
(.10)
vr117
lo0: 192.168.1.2

Note: v = remainder of VLAN-ID.


See table for details.

(.10)
vr118
lo0: 192.168.2.2

OSPF Area
0.0.0.2

Lab 2 part 4: IS-IS


VLAN Assignments
Hostname

VLANVLAN-ID

srxD-1

117

srxD-2

118

Internet Host
Internet
)
(.1

(.2

L1/L2 Router

IS-IS Area

17
2.
18
.2
.0
/3
0

(.2
)

ge
3
/
-0
/0
/0
0
49.0002.1921.6800.2001.00
/3
- 49.0001.1921.6800.1001.00
e
g
172.20.66.0/30
gege-0/0/2 (.1)
(.2) gege-0/0/2
srxDsrxD-2
srxDsrxD-1
(.2) gege-0/0/1 lo0: 192.168.2.1
ge-0/0/1 (.1)
172.20.77.0/30
lo0: 192.168.1.1 ge-

ge-0/0/4.117
(.1) ge-

gege-0/0/4.118 (.1)
172.20.118.0/24

172.20.117.0/24

49.0001
(.10)
L1 Router

30
/
.0
.1
8
1
2.
7
1

172.31.15.1

(.1
)

vr117
lo0: 192.168.1.2

Note: v = remainder of VLAN-ID.


See table for details.

L1/L2 Router

IS-IS Area
49.0002

(.10)
vr118
lo0: 192.168.2.2

L1 Router

Lab 3: BGP
VLAN Assignments

118

ISP X

ISP Z

AS 65510

AS 65520
0
.0/3
.18.2
172
(.1)
(.2)

(.1)

srxD-2

AS 65515

/30

117

.18
.1.0

srxD-1

ISP Y

172

VLANVLAN-ID

(. 2 )

Hostname

gege-0/0/3

gege-0/0/3
gege-0/0/2 (.1)

172.20.66.0/30

ge-0/0/1 (.1)
lo0: 192.168.1.1 ge-

172.20.77.0/30

srxDsrxD-1

AS 64700

lo0: 192.168.1.2

172.20.118.0/24
(.10)

(.10)
vr117

srxDsrxD-2
(.2) gege-0/0/1 lo0: 192.168.2.1
gege-0/0/4.118 (.1)

(.1) gege-0/0/4.117
172.20.117.0/24

(.2) gege-0/0/2

Note: v = remainder of VLAN-ID.


See table for details.

vr118
lo0: 192.168.2.2

Lab 4: Implementing Spanning Tree


Bridge Priority: 4K

172.23.21.10/24

srxDsrxD-2

srxDsrxD-1

172.23.22.10/24

ge-0/0/2

ge-0/0/8

172.23.12.10/24

ge-0/0/1

0
ge-

0
/1
/0

ge0/

ge-0/0/8

172.23.11.10/24

Bridge Priority: 8K

0/
10

Bridge Priority: 32K


(default)

Bridge Priority: 32K


(default)

ge
-0 /
0/
6

ge
-0 /
0/
6

172.23.12.100/24

172.23.21.100/24

vr12

Virtual Routers

vr21

VLAN: v22

VLAN: v21

ge-0/0/9

0/
-0 /
ge

vr11

VLAN: v12

172.23.11.100/24

0/
-0 /
ge

VLAN: v11

exDexD-2

exDexD-1

ge-0/0/9

172.23.22.100/24
vr22