Study Gudie for Approaching Advance Network (Interactive Trainining Video) Chapter 1 : Basie for Cisco device and configuration Chapter 2 : Port Security for Switch Chapter 3 : VLAN, Intervlan Routing Chapter 4 : Ether Channel Chapter 5 : Routing Chapter 6 : Access Control List Chapter 7 : network address translation (NAT) Chapter 8 : IP Addressing Chapter 9 : Spanning Tree Protocol (STP) Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@email.com Ph:09-73063176) @ Page 1Ja GIOD 8 ( adloSev5[Bicor? ovpoSeplogen o8 Eio8 vqpaScd, 8 “B".08 ah:c8oSon0)_ Interactive training for approaching advance network og§ ICND1/2.9 aac{ox2E:saepap: 46 Cisco Networking Academy Explorartion g cooSeog,og& soasorpS$Seg$ sealetréicospapic? Course ox8qaoeq(Gé opoSconZEs GSdlargSwlogqScor [BaSeor opoc] © ) Professional orSecorSexpoScoseS cog§: soor05$6 95: [Brooravsicloso$u Bigox{GSc0S0} Training video eopSsoupoSclogen Bigo(GSogoror00 internet BE 3, computer 38860925 (8008 oof clooeSi interactive training e958, software eo download qqo028, Microphone! Stick <8, 20008 ooSqosoefo8I1 interactive training video o8 w8ooeox9 Alpha Channel g friend qr20308 opSgoSclos08u CCNA Exam oooSagqpicoogoScngS: foundataion oSgaaegs, corSEc8SouSe8 aiclonaSu CCNA Exam oefgqE qéeord network ecrearrosaacg§, egg pdopS2g0:0p508, 8§:{3oSoos:019€ & interactive training Recperocos:20¢ or080$, cogolooeSn networking 66 o0Sa005 [92 or8o8orea29 corSeorS ofsoroSaza:0uSa8,co€ona5 # 8 filecR interactive training video 3, oj[B: ecpco>q209 [23§8Eq> [S008 2778 cop5:s8e009 ond], case coger video file 6og 9.03 9S:{G022%c8. router configure 402268, switch configure gj07208, 25008 aclu video file GSpSqScor Chapter 1 gqStg> caoScocBoSoREr (BaSc$ qaser€ section joloSeog onScorcos:enc1 onuS uvideo file adyrcor ogifcorS Rapping og goScosseao:onuSqu agoSe8,copS: eqpgen oBoS harddisk space coelGaoagcR BagonacRen video fileooy on second 8 IMB ccor8eBo8 eg epagoron ap8slayy oGiur corse §8:Ror dleostc8 Boron video file pSenrtcr208 ogifecrieond GfelBalqtogen opScort07 coosoqe,u soGfqaicrcor? cnSal cobs s Sseeare eoSaleclovosu sleveus Se. $2318: (GoScosercl wsar€s corr€seaanE apdgEcloradu sleoou sogifor o9c$,u 2995358: (Bascor{jole8,u Interactive training 4, Size qo 3GB ecor0S$or§, Intemet eclor8$, ego08 2 co0Secvo08 ao $ug qee8 ané dloveSu Slefo308 interactive training oB ogeor8s8or ogSEclor08i agSeor88e2 098, coapdrcorg’ oBeaooeag 9, oB4Gj:2908,c59 Share op5B: ayGEclooS oogcloooSi [Bxcoo9 interactive video BgSooSa8q g2{6353,05 gorecorSeo:{S301c8 neonsonegecge] sooa8oS gosgo 8208, SI ° s © cos loose @ (e808 @fo8 eqpoSon$: wogror8or ormoseor? orcqtogcog oarrgpre§, qo} agepdleors © (B08 g&od cepoSon§: 09508, qora1s20Se{Goabs9) Interactive training DVD 63036 CCNA Exam og ee:229§ Simulation Question gp:o8coaS: video file [BE q&:{Goortclaop$u CCNA efGepSagapessego8 seab:o8opSup co€closoSu u Packet Tracer software, VCE Crack, CCNA Exam Question ap:ocopS: 8 DVD 03€ copSogE:corogotepS [@SoopSu Interactive Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 2training Version 2 cp62993 sealogccogs: CCNA Question qp:op cog5: interactive video [gc g€*Gog22625(BSc] 2995 Professional sega$or0295: networking §, vc52005(8: Interactive video training |geo3 ogoSao2§ cops: egcoESoroSqyii 22208, copS: a8e029 sapev2q0% 290803208 1 Interactive Video eco: g&i Bze0>9 BEB: [aSegcloSqodu (a3 . ayFeorSurog,c0r 3808 agr10aQSc$oScl§,u exogpor202 orslorpS: BScepagcc8Se0S) gore0>9 interactive video (network) oo english version },co903 VCD 60303 §ea10000 oBoSorcop5s English ar6002E:0%§ e079 002603 65 Ged] corse] Bayon 80005 oomnrgprege cogs: esor€rcorragell sse20Sgrcvp5s ocro¢gp:c0r1029603 005: fear:oruSa$e029 © Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 3Chapter 1 (Ba: co device and User Modre) Devices in packet tracer Cable Type Mode (user,enable,config) Component (RAM,VRAM,ROM, Flash) Cable Type Straight 2.Cross 3.Roll over Cable Group 1 Switch Hub Group 2 Router PC (NIC) Wireless Access Point Network Printer Group ose soogkiyn §od devicesoSiass GoSq§ Cross Over Cable o8 afsqoro$u Group eogo> device wayStqés JoSqf Straigh Cable o8 a}:qoSu Rollover cable Beo29 Device 60308 configuration ajqjSo3a281 a}eqo2051 roll over cable esl: pg5a6 (Bj: assign efGr€:G§ 8B: a2Seo:qor0Su Components in Cisco Device IOS oRa8S:eo20008u(CatOS Vs IOS) Vian information 6og08 288:e0r02051 Power on self Test (POST) op5G:9E IOS o8 eslorEcor§, Gsed03 Program (Bootstrap Program) 0 288:co2:0005u NVRAM...>Startup-configuration file o088:c0s:0008 ag09 System (switch or router) oSan20BEs ap.g2 Fo3(s88:002:03) Configuration file 2og§, zaapSop5oo05uRAM ec goGo3 Running-config file 308 ay,059o Qor2e0g08 Copy aQoop$B: seapSepSsooruSegooSordq00 NVRAMop Configuration Register 0803 File o8:88:co:02051 Configuration Register ALBeSBrcorsy oBoroSeor9’ 108 o8 snaSoreggnqecs sBorre8 ab:(GoSooeSu Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 4RAM...>Running-configuration file 0} a36s¢os02051 User oo Configurtion 1699 [CEc$o5or§, § file gooos28S:00051 RAM 070803 saoBEs onS8adehaSqE or09 emgorrs8eor saoiap: Configuration qB:agosqSeory NVRAM(startup configuration file) go agora3Sre0reurqoo5u copy running-config startup-configuration 2803 command of0§:(8:1 Mode Mode Sox00 Router or Switch eogado8 configure a8 sepo5$eo$ permission level cog 1.User Mode (password can be set) presented with “>” Enable (command to go Enable Mode From User Mode) 2.Enable Mode (password can be set) presented with “#” Configure terminal (command to go configuration mode from Enable Mode) 3.Configuration Mode(no password can be set}presented with “config” 4, Specific Configuration Mode 5.(Setup Mode) >device ooda}:a> ozo Configuration vqjozeé device o ogcho5qé Setup Mode §, config yooorcd cororoSuwildzard mode 6d] nogon device orbed:go wfa[G5 cpSce0s8a>803 mode 60203 ofe0$ password cogsooSgoSoxe0303 cyS$Eror05u setup $03 command of Gos Gseorpcop5: Setup Mode o 0€8E0205u Command to be used in Enable Mode 208 enable mode dg SoScBoSqE enable mode adg> 9$:8&03 command 60308 (Gevrer05u Show ? (c8 GoSqéeox show §_ oJa}:c8.qo3 command co308 (Georora5u) Show version Show running-config Show interface Show ip interface Show vian Show mac-address-table Command to be used in Configuration Mode Interface fastethernet 0/1 Interface gigabitethernet 0/1 Interface serial 0/0/1 Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|outer e1grp 1 Router rip line vty 015 line console 0 Setting Password L.User Mode doSqSsor8:008 password oS gp5:co{G§ Device od oofon8, coxsStwcS Password... gS4y:GooSi Console mregoEqScorré:oo§ User s00305 Password ( Console user password) §, Telent 3 o€qEcorE:00§ Password (telnet user Password) Setting Console user password (Command) Enable (used in user mode) Configure terminal Line console 0 Password alphachannel Login End Copy running-config startup-config. Setting up telnet user Password Enable (used in user mode) Configure terminal Line vty 015 Password alpha Login End Copy run start 2.Enable password or enable secret (Enable Mode oSc$a5aé eoxS:e08 Password)» telnet user e000 Console User s00308e009 089031 Setting enable password Command Enable Configure terminal Enable secret cisco (configuration file go Encrypt op5(Gs088eu) (OR) Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 6Enable Password cisco Telnet §, connection o security soorg 5:08, 96g2053Eze022 telnet coor SSH connection aprcox[Booe5i SSHoo data 8 enorypt p58: 8,609 8 Secure [SSoo05u Command for initializing connectin with ssh in client: ssh —1 (username) (device IP) G:q€ password corcoré:08§e05u device §6:2005 SSH e905 connection c00548 28 Domain name eoreozqeo5u. Asymmetrical keys o8 generate opSeorqooSu Local authentication o3 s905goScusqea5i username (username) password (password) §, Locating IOS (IOS § wwe wé show version >configuration-register 2102>boot system( startup config)>flash (if no IOS in flash found flash>tftp>ROM) or tftp Show version> configuration-register 2101> flash Show version> configuration-register 2100>ROM>ROMON OS Locating Startup-config file (Startup configuration file qoagg_soa8 08. First in VNRAMLf file is not found.find in TFTP server, Create new startup-file by prompting setupmode Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 7Chapter 2 (Port Security) Specific interface Mode(interface) go Configure opSeorq 05 Enable Configure terminal Interface fastethernet 0/? Switchport mode access Switchport port-security Switch port or89qo of8jEgaSora5z computer 2208450}:03 a}zgE corwod005g08 Swichport port-security maximum 1 arcSgodaoste3 secbiseeqsaego50008 896 Action ago} Command n (protect/restrict/ shutdown) Switchport port-security QBs Security coxsdeqSq’ s0SyoScost0} Maximum soagessoqso0g05 (ca Bis goSoop$s aood:gEcor00$ computer sacdzeq) o5go so0SMAC address §o3 Computer 0393 <905:(jeoqjSqe Switchport port-security mac-address (mac addresses) seedToo command 9 port 28990305 cB seo$s{gjgeeorqjéo3 Computer 4, MAC address o8 BuSoBE GoScop$eozqorvSu cvo$§, GoScos:0} computer go§o3 MAC address 08 Switch o> auto learn op5[B: cop 8érqSae Switchport port-security mac-address sticky Port Secuirty apScosr07 200603 [gSag03 [aSc3 Command Show port-security interface fastetherent 0/L Example 1 Computer 1 o}o3 port 1 ag JoSgSeorqyEoreSigeooS$ooSeo2203 Computer creg (Ss oupoSogé shutdown gjooSi Example 2 Port 1 gq Computer 2of:c8 nS qo3 GoSgSoorwaSn y oficoo8 Bq 8 Porto® restrict opSooSu Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 8Chapter 3 (VLAN) Switch oo89g2 eopo} Network Zorn Rule: Vian 1 paés8c00g05 vog9803 Network Address 9 2 eoxc0:qor0Su VLAN 098908 port cogo8 cop$ajeqé VLAN ordgo3coqEssoroS qeuSis38 vlan oSc8 Switch grGod Port cogadg 338 esoroSco2103 VLAN 03 cop$qéod port coga8 cop$eo:qooeSu(Switchport mode vlan (no) 3803 command &,) Vian 09 g03a005go5c00203 (eepodeg03) Port go {o5coo%0} Computer oo data $0859 data co 8 port 3, vlan y€:0g0) port oa803 Data cepoSoraSigoes vlan 20 adoop$.cos0} port go oSco20} computer meq data o5908 §,cBaSor05uc3$ §.c$050} data or vlan 20 Soop$co0} port cog8c803 eqpaSazrr008u Beg’ Trunk Link Boxeq onfgo: Switch g2$o} vlan 20 despodegod port 60308 data cqpoSogor005u Trunk Link o> 238 Data 8 o205c8 ono: Switch 083.o3<8q Vian 20 c0203 data g§:28ece28 vlan 20 2803 header oo8{8: 8,o005u( Switch oo vlan header or8cor0%) o2fg2t Switch o> vlan 20 header BaSBr vlan 20 coevrdlooss$Br 88 Switch gs VLAN 20 s08goSoo2103 port coz803 data 23 9° fT 03 8 eorone5u Note: native vlan o905go5c02103 vlan c2c020} data cog} Switch cogao trunk edToségé vlan header woopSogail o20205 Switch oocopSs vlan header edlodoo205 §s§s data frame cogo$ 22, Switch go native vlan 2005goSeost0} Port 60338239,00081 coe22202 Switch oo894, Trunk Link go native vlan o} 1.08, acdgodaos:e205 af é vlan 1 cdoop$oo2:03 port cogco co20} datao} trunk linkeoTosé sé data frame o8 vlan header vcopSevreBoSoqen {28% data frame 2088:038, BoSon0Su o20008 Switch reopSe Ss data frame BoooSdeaE native vlan o>co20} data frame o, ogeoB: 88 Swtich 4, Trunk Link go aooSgo8ooxto} native vlan 19> 803 port cogs8o805 20058 capi 38qo 20260, 9033898 coa08 vlan 1 09 8.08080} data frame oo onfgor Switch 8, vlan I oBoSeqpoSoreecon vlan header copSeoroapoc§o3$,u1 axBcosrqgo0> trunk link cod, native vlan o8 ogogcos:avzqa0Su or200509 native vlan 18 oo000Socop$: native vlan 1 231 eup0803 onox0500 native vlan 1, 00200809 native vlan 2.28 ona008 vlan I osc0203 frame cogos onn05y> vlan 2.cd088.corege8SouSu (Note:Native vlan o8 trunk 29 svoSgoSeurqor05 802.1 trunking protocol o8 of:005<89 native vlanop 1) Trunk (B08 §oSco203. Switch port 98a, native vlan a05go803 command Switchport trunk native vlan (no) Default vlan: 1 (Switch 6og@, Vlan soo op default 89€ default van S03 vlan 1 ogo§{a3o005u Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 9Switch Port: Access or Trunk (dynamic auto(default) or dynamic desirable) s26g4, cos@Co205u Access on computer 8, SoSeaS portaogoSeorsorqvoSi Trunk cscoxp Switch aaqStSsGoSecS portso0go5 costeoxae5u VLAN Trunk Protocol: 802.10 Vs ISL Switch cogii, Trunk link goasog5ayS0} protocol gGj:GooaSu 802.1Q Vs ISL 802.1Q = 32 bit vlan header o8 Data Frame od0o9§.00:07011802.1Q good. native vlan Sosu5u default native vlan o> Vian 1 (gSosuSuvlan 1 ooqo203 frame 6oge8 Trunk link ecTooE9§ $4; frame saagdoSor€oouSu 802.1 Q vlan header §, encapsulate eapSoq:( vlan header oforSox6{G202011 c008303 Switch oocop8: Trunk Link 800 4; data Frame 0823 cooSSqeoo9€ native vlan 68.23 opeo(§: 88 port coga8o3 of data frame 603099 1 Switch 4, Native Van ogo0op$ ISL= Data frame of ISL VLAN header ogo onp$coo:0001 (interactive video yo garecopSecor0oq:00808, coSgS:(Gaortov00 Creating VLAN (configuration mode) Vian (no) Vian name (name) Adding Switch port to appropriate VLAN Interface fastethernet 0/2 Switchport mode access Switchport mode vlan 10 (Switch port 0/263 ea0205c02:0} vlan 1003 aop§cfoSoron 338 Switch port go or5c00:0} computer a9 0000} data frame ogo vian 10 o§ 2005q05(§: 338 port a> co20} data a Switch oo vlan 10 oqo a05goSavs:0} so[Gor port coga8 data 8. Bzqé Switch oo trunk link eTocs orfgo: Switch coga8 8 data § n (3380$ 8.03224 § go or2005 Switch oo vlan 10a0c020} data frame g§:28eq06 Switch op vlan header 078(8:@8.) Management VLAN: IP cog§$costo} VLAN esTooon o8 IP oBo5:{8: Device eogo8 configure qjeo%ion0S Management IP o8 vlan 10 gocogScosrq§ vlan 10 go8o3 port eogooege3 switch Beonfigure qgéGocSn Presented By Thant Zin Soe @ (Email 19-73063176) @ Pave 10 thantzinsoe.ucsy@pmail.com P|Setting Management IP in VLAN Interface vlan (no) Ip address (ip no) (Subnet mask) No shutdown Management IP copSg switch o§ telnet ores o€ configure ajo8.qgou management IP 6 vlan 10 go Gore vlan 10 gogo} ageogod of configure y8Egou oofgor vlanor cyeog eal§Eogei security eorkraEqéeors a2000§ user.staff coo}scos6} vlan cogg2 management IP ofecoro3 on{go: vlan cwaaSorde create opSB: eo:aEcraSu Breoxzg 88 computer JoSea$ port o8 38 viancd copieo:qeoSuslg 8802 o€ configure qo8.qg2 (Telnet §,) 0 switch go default gateway dorre8,cororred08q8 Computer ar6ed:e26q Switch o8 of configure 98, router 05908 GoSqeoS BoE corqorudigoee Grr N eae ee eae hon cae ene Oe. nme e LoL SO) Filo Edit Optens View Took Extonsions Help Interfere vlan 1 ipaddross 192.192,10.8 [p address 192,168,206 Gw192,168, 10.1 Gws192,168.20.1 192,168.20,1 192.188.10.1 om) 2950-24. € 5 Switeho tet Laptop-PT Tobe twineted by Teddy Routers easy Computer ae mms D Scenano ow (Fire Last status Source es Connections > Copper CrossOver | [Toggle POU List Window) gj) SwitchO @ default Gateway go router 8, IP oBoop$eorqar0Su Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@email.com Ph:09-73063176) @ Page 11Adaing Trunk mode on trunk link between Switches Switch gq GoScoss03{3 03 Trunk mode coogé, conpSayS$Eqs configure aGSar (trunk seg, caeySaySgavs vlan header of cop$eo:§Egon orgaS:coox{gE vlan header copScoo:03 data frame 6ogo3 sooSeaxécor005n Switch 48908$08c0x10} [Bec} Access Link saaga sdoorxv0Sabq6 «38 link oovlan header copSoost0} data frame o8 oaroScusagsn Ses data frame o3 8.00: co05$03 aes) cooSSo5 port oo vlan 20 a$9€ vlan 20 go$o3 port coge8 8 eoror05u Switchport mode trunk (or) switchport mode dynamic desirable Switchport trunk encapsulation dotlq Switch g5gGoSeost03 port orox050005yo Switchport mode trunk (or Switchport mode dynamic desirable) 3, configure ac8o5qE trunk (3:0> trunk mode sag 5, socgSoySeqpi 22008 cop5S:<8e0r9 c20008 port g> default o> switchport mode dynamic auto 3, configure acootc$ caoroSdlcoo88: Configure qaSeopS: Trunk (09 Trunk mode (gSogoto0Su Trunk mode (Sy Vian orSga|Ss8or co20} data frame 6068 2003<8Sqp vlan header ov: Trunk [BeeT@o 8 28q21GSor05u One link (dynamic auto)-other link (dynamic desirable) -—>Result (Trunk) One link (dynamic auto)-other link (Trunk) ->Result (Trunk) One link (trunk)=other link (trunk) -->Result (Trunk) One link (dynamic desirable)=other link (dynamic desirable) ~>Result (Trunk) One link (trank)=other link (dynamic desirable) -->Result (Trunk) cBu$ Switch go oo08 port eogoo Trunking s96g3, soopSapSed a8qéq& command o> Show interface trunk trunk mode 263, apSeg03 port cogo8 co2[6u: Vian 3 0003 data co3o3 Switch J 9 &, Trunk QB: go agrrqyEoooda$qé Link o8 Acess Link weg 9, configure qc3,qoo05u One link (acess,vlan 3 )=other link (acess,vlan 3) --> Result (access,3) wmoscl}daao8és configure opS8Eoo0Su 24008 vlan 20 ord9 coSo§sq8 [BrorSe[ogoé: coSGoSB: 38 [3sGoSoos:03 port o§ One link (acess,vlan 20)other link (acess,vlan 20) -->Result (access,20) 8: Configure 58S 005i Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 12VLAN cogcagesqyzcoage 629[Ge0] ifo32603 opgoadilgsqC port cogop4eoducsSce0go3 Trunking Protocol of ogéG: Trunk Link 1 goxpSt089$:(8: eogp8o} Vian cogor0000 Data Frame cogo$ Trunk [Bisq2 vlan headear cogen5fGs 8,co9{s300051 VTP (virtual trunk protocol) VIP 2800 88 Switch go configure ajoos:03 vlan information 60308 oof: Switch 20338 8.0: (virtual trunking protocol o8o5:Gsu trunk link ox¢g00008) VIP modeoo o}s9Qoo05u Server Client Transparent SgGao2(ZE intemetwork ooSag2 VIP server a3 y goos:a2€o205n VIP server mode a005yo5c02:0} Switch 9203 vlan o8 creat og5e8,q1 Transparent mode a05ga5cos:05 Switch goeoxp vlan o} create 69508, q000511 sleowu$ 22,99 620205903 vlan so30} oo{GrsSwitch 60308 08 sosogen souSageeg8.g eeqpo> 20600260]! S]eoau$ on{Gor Switch o> $.c$aSco29 VIP information cogo3 {G2 Switch 60328 cooSeo$ardrcvroradi 22,0800 (GoSgScororuSeclu VTP client mode 2205yoSco2:03. Switch yo vlan 603 ¢s0205c3,eqage VIP server 809 cao20$co2:03 vlan information 60393 005808, goo Mode cogcasto}s4, vip domain name o> default 9709 o§ogi VIP server mode @Sego3 Switch go Vip domain name co:c8o5q€ 23.92 §o3 information cog03 o[§2: Switch 8 805 (G§,eqpu Breor on[§or Switch cogeocopS:ag, domain name cao3Ex{gSago:0205 (domain name :null ooeg)u Vian information 8 oofg2: switch cogo> coaSde§ 23,08,g2$03 Revision no of{o3a$ osu Revision no coSyano onfgot Switch a8 e880} vlan information cogo8 cooS} you VIP (virtual Trunking Protocol) Vtp mode (server,client,transparent) Server>save in nvaram, originate,process.forward vlan advertisement Cleint>save in Vlan.dat in flash, process .forward vlan adverstisement (process only if Revision no is greater)can’t create vian/ Transparent>save in vlan.data in flash and nvram.Only forward vlan advertisement Seeing vtp status (vtp information o3[(o39§ <=) Show vip status VLAN Example Company 008992 Floor 3 co5§o0u5u Department oo 23:9 %0005 (Admin, Network, Software): Floor 1 g03Esgo Department serre5:§o0051 Floor 1 g036:g2 24 port Switch or805:03 §oo05u Boss oo Department on8@ 3, or89 udohq Data cog 08 ofaSooasogin My Network Place yocoré onfGot Department o> computer cogo8corsSeedl aS agen (opSo8,qq’ seySegoS$ésoroSGol <8, egoScdoSgred) ieslEsonte8, @) Vian eai:o5 IP ogc Department socBo$. Network address eopes928 sorbed s qucortevroru8 qwloroSu sleowe$ ooone$ Data $rqfod aya8qE oBoS$:qSos Department go§od Network range odo IP 008990888 Computer gocop$(: a98: Hack goed] u VLAN feacture aprcorouSaBaE 3808 IP cogoopScSoSqSconsE 889, vlan[SEreogo3 onfGor vlan o> data cB souSc8y Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 13gop ,eqeorpogiil (intervlan routing apdcossgC cox oogysco] 1 Vian a3o22 Technically saqeigaqceox) Broadeast domain & gqode$oSoru cafe soqaGoaScor Switch or8gq> Virlual Switch og gc8o50) avea2260] 1 8 Interactive video meoScoo8 oscqieg qcleo246g5 mnmmnnmunnenuuumuntauuuMnne nu mMMHONH Intervlan sor202 ego} Vlan coggo§o> Computer cogsaqézqé: communicate pSajEo> saslaoggo Layer 3 switch or Router of 2$:(8:0pSeorqo005uExample sage{goqqScor9 Admin department orcgeogé, Network Department aocgeog sear: data cog$_ ajo} seal intervlan o3cegSevzqoo05u Router g> vlan ox69q838 socho5 subinterface cog§qo205u ( Switch 80 Trunk (Bj: 026 [Bs0805 router @, interface o28 port go sevr0rdor208eu 338 route d, interface port cB vlan odgaEr8 sacbaS subinterface 60330205" encapsulation dot1q 10 8000 vlan 104, a8603 subinterface Bar05goSorou 238 Subinterface 90305 IP cor Vian 10 go 60:0) network address aco IP ngo8ag: cozooSu AS router groooSgoScBa8o} TPov o8 vlan soogésqo$od computer cog, default gateway eogq> sgoreoxco:qe05n Intervlan Routing Procedure on Router Enable Configure terminal Interface fastethemnet 0/0 No shutdown Exit Interface fastethernet 0/0.10 Encapsulation dotlq 10 (vlan 10 s2005 dot1q encapsulation 2$:6a5¢$ e{Goor0n) Ip address 192.168.1.254 255.255.255.0 (8 IP o8 vlan 10 odeqpo5eg03 Computer cog, Default GW a5go copSeorqeo5u) Exit Interface fastethernet 0/0.20 Encapsulation dotlq 20 IP address 192.168.2.254 255.255.255.0 Exit Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|3 5 Switch go Router §, gjo3c02:03 porto} Trunk mode ¢goczeorqec3i Switchport mode trunk Dotlq encapsulation 8 gSor05eb:a}:eu:qeuSue8o200 Encapsulation type ogqeoSn Switch 3, Default co dotlgq encapsulation 05 932092 8.08, 2209 wapSaoaS:qoouSu router yo Dotlq encapsulation o3 a205goSoorqe05u (Encapsulation dotlq 20 command 3.) Interylan Routing on Layer 3 Switch Interface vlan 10 Ip address 192.168.1.254 255.255.255.0 Interface vlan 20 Ip address 192.168.2.254 255,255,255.0 Exit That’s all... Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|Chapter 4 (EtherChannel) EtherChannel Switch] 3, Switch 2 45303 100Mbps 3, §oScosto205u 338 Trunk [B:92 Switch 1 ox6¢ Computer ocge 50.264 o&SqoSoraS: Data corareSe8q§ computer ovSep:8oo Bandwidth o8 2Mbps scvro8adqqsorpecSicpS sool Trunk (Bs cog coScngS[Rs Logical seq on (BporgSsepSchoSoro 08 etherchannel <8 csfoooSn Switch 8908 soqnro}: 8 [Brc8 Go5(Bra$:2&oo05i 100 Mbps link Ge & BrozeaS Bes Bandwidth ov 800Mbps Bqagr:Gor]u 1 Gbps 38 8 Gbps BafEorrsu Command Interface fastethernet 0/1 (Channel group oo8g0d copSajSo> interfacesogc$ ecoa0ScTsoo8E: configure epSeorqveSu ChannelGroup oS gcdeqpoSe4o3 Trunk Link cogoo logical oo8{@ijz03 2698, soopSopSogzeg2I Switch 489 4joScos0} link 009300308 channelgroup (logical one link) apSqjéq& Link o8 oScost03 Switch coi, port o8 ogo803 channelgroup 028 godoop$sosqo005 1 cq208 on8Beqagod port gSqoRcog5: «38 channel group cdaogSoGoSqs seedTy> configure apSc0st03 [Bpg, logical @Bzor6{BsorpS: (GSagrxeepu (0 (Bzc8 one logical link opS$é) Fastethernet 0/1 o3 channelgroup 1 oScop$o}_ command Switchport mode trunk Channnel-group 1 mode desirable Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 16Chapter 5; Routing Routing (static) Router cogq, interface o3 no shutdown command §, gécosqeoSua$:60§ interface cozo} IP cu:cozqoo5. Router 05:08 lab yo (or packet tracer )yo serial Link 3, JoSq& Router ooS05:08 clock rate a005goSeu:q 05 show controller (632508, DCE #2202:603,03 Router 4, 2005go clock rate sooSgoScurqeusn packel tracer goa Clock rate oSgoScusquu$ Router oo Mouse o8 oné|aiaSe3, clock § (Gego3 Link 229309 Routent Ethernet interface cog}, Josqicox clock rate 05go58_ oofogen Router ore$:0 88 8eepo5cv20) packet co34, Destination IP 8AG3e58: Routing egSoron Computer or80}:00 8.08050} data fiame 6038, destination IP o> a8:oxccqpo5e}: (conS$o} computer sepoSe3 3208) we[gaEsogen Source IP oo NAT opScvr03 Router cogo8GoSyons 6[go8:orN Source MAC, Destination MAC o> Router or803: (G0503E: ¢(G2E:o05 u(routing decision go googSB:) MAC address 99 Ethemet > 20081 Frame-relay 8 datalink layer 2ogo8. MAC address 2$:0g21 LCI oo}:oo05 ATM 28 data link layer address 290308 VPI/VCI 08030320005 Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmailcom P|eee Fie Edit Oplore View Taok Extreme Help Sle autre Brame Network accross: 262.108.2009 Natvork arose 1.1.0 age a0e.40.254 Netwerk edress:392 166.200 f yf wean 190 368.10. so.369. 20058 cur Lptep-Pt NC ag Banden N iease20 estacoeuresinac/bes Pscurte aptop-Pr MamayTnoe estac/seureaMac oes BScurce cam ENS > fa) a Diese _ a newest eee cette comacions AE) IZ) 3 Gee BOBS cooper Cress Over as aus ie Command for static route caecl$yoeo3.03 Router cogyo Static route cop$qeaSu Static route cog$gaxo AC go GoSaos:03 BonBon §, CNT go Gjc5c0010} MaMayThwe 08, saQgcoop§ sooSageS$Eqou At AC, (AC router gocog$qau$ Command.router 38 eepoSeo20} data frame 4, Destination IP o> 192.168.20.0 (gSqE (883, 4jo5c02:03) IP 98 1.1.1.2 coroos:e} router 8 data of 8 cBoSle8.¢{Gror0n e22205 Command o> router 38 eepoSco203 data frame & Destination IP o> 192.168.20.0(gSqS 884, serial 0/0 interface 028 cBoScle3, command cap$.cos207011 Ip route 192.168.20.0 255,255,255.0 1.1.12 or Ip route 192.168. 10,0 255.255.255.0 serial0/0 (acorn AC Router ocepoScor03 packet 8 Destination address o> 192,168.10. 1~-192.168.10.254 Range mogéio GSeqo BS packet B 1.1.1.2c8, IP corcos:0} Router 8 (CNT Router, cBoScle8,e{G20001) Ping command a$:0r0Sa8or §,o8oSo3ag02 ICMP data frame of cooSdoSage8 998800081 coohSo32309 8,c8o880908 ICMP data frame £8 co08i8,BoSo3oqoo (BF data qg 228, computer Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 18screen gol go “reply from” ap[§s[gox2coo3 3032385 seposq§, e[gogs1Two way connection jsecso), e{GoorcT BonBon o> MaMayThwe 28 98: Ping $058 DataFrame oo (Source IP:BonBon @, IP:DesIP 9 MaMayThwe @, IP address (g803 192.168.10.1 cog clagorouS) AC Router BeqpoSagoze8$eoSu AC Router 92 Packet §, Destination IP o2 888, interface cogo8 coxcost0} network range cog§, 2026079 Static Route go 2205goSan2:03 CNT Router 28 data frame 088 eore8oSo2051 (2208{Gjqg209 BonBon 8c} Computer @, Default gateway go AC Rotuer a, IP BcopScorganslg MaMayThwe 8 §,c850} data oo AC Rouer SeepoSog21gou )default gateway IP address o> BonBon computer co§o5c02:03 Router interface 8 IP address Default Gateway a» souSRcoapSapSedo8qE 23o3z203é:0311 Computer 1 op:o 88}, Network Address 60303 computer 38 data$ qéqé gateway computer or router 48 data frame of saqE$ eorqorSu( data frame coqEeepoSqjéo3 gateway computer or router of 333 computer §, Default gateway g> agozcoa$ eorqoou5u) 338 gateway computer or router 02g s005(§: data frame o8 caar$ao€8 agsron0$ (9203.4, routing table o8{o395(8:) ALCNT, Ip route 192.168. 10.0 255.255.255.0 1.1.1.2 Or Ip route 192.168. 10.0 255.255.255.0 serial0/0 454 05:§, Static Route 205goSox0 AC Router 0 8.080803 data frame o8 CNT router a8eqp05230:8 CNT router or 88 s8eqpoSeor03 data frame godloos03 Destination IP 08 fo3pSoouSn Destination IP o> 192.168.10.1 8009 88 Router g? §o} interface or$903 corcost} IP 4, network range 60g9, 096029 938 interface oagoreo’ data frame of MaMayThwe 8 8059058, BoSeqpi' 8 Case go og§orS08, CNT router y> copScoot3o} static route o3e9}s030:(8:0 ola CNT router go static route o3 oro0$,seoo0Scor8c5 cosespgoreSu ping command §, 29602000 data frame (ICMP packet) 08 090905 computer 288 c2051 020905 computer Sor G$8,cGo50} data frame o8 G§espo5g “Reply from” 88; command prompt go Goraccon go> data frame op cooocSsSeqpoSeasio505 BonBon 38 GfeqpoSqg}soo5u MaMayThwe computer oo data epoSexa9€ 288 data cB bonbon 38 (§8, (§8,008 Data frame o8 neSe8csor0S05a8q8 BonBon Boo cov0} data frame a, source IP 08 98 Data frame > Destination IP{ 192.168.10.1) a2[géGFapzecSualg Bon Bob 8(G§eqpoSqoo3:n 88 IP o86029 Source IP eg.qpgoco2:0005 8800 8 oro0§zu ...CNT Router 8eqpo5eoS udestination IP (192.168.10.1) o> 88g o&cor9 Routing Table o> 9qonea0005303 static route B (6395: AC router 88,0051 AC router gorao€ BonBon Computer 8G feep05[8: BonBon oo “Reply From” Message o8 command prompt 92 603.9921 Sas H8c8 Router cogqo static route ScSecop$qéo5 routing protocol §, auto cop$3E sqjEqE Presented By Thant Zin Soe @ (Email hantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 19At AC router go configure ajsgo02 Configure terminal Router rip Version 2(8 command odl9§ RIP version 1 9,93 sacgSagSagz:08$e05u) Network 192.168.10.0 (Router g>$o} interface 4, network address) Network 1.1.1.0 (Router go§o3 interface 4, network address) At CNT Router Configure terminal Router rip Version 2 Network 192.168.20.0 (Router go§o} interface 4 network address) Network 1.1.1.0 (Router goo’ interface 4, network address) 3le030 RIP version 2 Routing Protocol 68 93:00500011 Routing table o8 (Sp$qyEqE o$:qo0$ Command o Show ip route RIP o gpeo codrelegodso3 BaF qyEqE afzqoo$ Command oo Show ip route rip router g> Routing protocol o8 or6qe00 2gé:corzo3cesloysé or0205 2§:005 routing protocol of routing protocol 6034, administrative distance 08 (6395(8: 4}:{goSc2u5u administrative distance $95:03 Routing protocol o$ router 4, routing protocol ze{g$2}:0205 EIGRP oo routing protocol eogadqo Administrative ogo 2aga5:a}1 a8e0x oofgor routing protocol o8§, 29.03(8|§ agé:co218 comesa}:ec5 routing protocol oo EIGRP [8302005 Adminstrative Distance Connected : 0 Static : 1 EIGRP : 90 IGRP : 100 OSPF : 110 Is-IS : 115 RIP (v1 or v2) : 120 Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@email.com P!About EIGRP Protocol (CCNA efgeasagco3s20303 9o3q[gogcoloou5u) Internal Routing Protocol cogy2 EIGRP 09 convergence aa[gSap:o3u B:qé loadbalancing eySox200 OSPF coo$a200051 unequal path 16.08 ogS8Eor08u variance a9 q8sv0SyoSeurg20> load balancing 08 opSgo (GSer05u variance 4, default value qo ons corcoore’ path o§ 2 godo$:orcSie[GoEreory maximum path $as¢c0205 23:9 (condition corp §eco:0>06d) )1 maximum path default o> 41 16 ScoorZEu subnet ox8908 cep05$_ path ogoSo3 formula op ( (10 power 7 / least bandwidth) +total delay (show go God sede 29Q0 orSohsoBeaqpp)x 256) EIGRP routing protocol oo cisco oo opoScosroxa" non cisco router cogg2 @2}:8EogtH Routing update ogS0> Muticast address coIPv4 go38 224.0.0.10 8, IPV6 g208 FFO2::A address BapioroSu Administrative Distance 02 90 Advance Distance Vector Protocol Topology table.neighbor table $oo05u Routing update o8 soqSras oopuS$ 8 router 459 sooSajs neighbor [958.c8u router soqSeqySs neighbor [59222 Routing update 2008 ca[SSc209§ 8.8EouSn hello message o8 9 second > 318,ccx00051 neighbor 39065 GaeSqoScogoo router sogg> soaiSzaySsdjoSco2so5 link 2094, interface Bcorcosx03 IP 6oga), network address og qo05i go8aoos ASN no ogqeoSi onc8us00 Authentication ogquSu EIGRP o> md5 authentication oBo3a$:0005u (Key chain method 3.) interface sub config mode go s005086qp ASN §,360} keychain o8 so05goSeorqo05u aqnoSorSqoSos Router wqStq’:GoScoa0} interface o8 avoS8Eep eigrp asn adyo( router subeonfig mode yo) efaxgreorquoSi network 803 command a}:8s1 network 303 command yo EIGRP process cdyodloo$ interface oB 28xGor a205yo5e8.qoouSu wildcard mask oBo}:(G:vOSPF yoo vooa$ecy Wildcard mask o8 cogScorqeo5i EIGRP goo wildcard mask o3 ea}:cog5s9o005 11 network command 3, EIGRP process cSoop$cont0} interface cogo® (BpSqéo& show ip eigrp interface 4 fo5e52E i network command 3,c0%9 copScor(B: passive interface of:c020} interface cogoBeor 8go orfgqe expoSoge) 0008s] saqjoScacooiecgs, Roda cor neighbor [GSBu router ox8ofi00 BBor08 router cogs, neighbor GSaqodsBor208-4S a8 “Show ip eigrp neighbor” 8c}. command 9:60:00051 Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 21EIGRP gs sacal cacol so3gjo2051 Successor router, feasible successor, Feasible di Distance ince , Reported Router oodo$:02 subnet or6908 23228, matrix 02§§:g6qGo2051 00500 Feasible distance (router m88a8oreg subnet of 23028603 matrix or§8:( (10 power 7 / least bandwidth) +total delay )x 256) §030508,903 02§8:) 11 eg205028900 Reported distance (next hop router oo¢{goev:0} distance) next hop router 0 o8subnet s8032:8E03 oo§§:n routing table goeox9 808(Go005 (feasible distance! report distance) router coda}:0o subnet or5903 next hop router cogaeqp:{8:§0205 Boleor2u333 Subnet 06903 cepo88, (FGF 8.$E03 next hop router 68 successor c8,caToou8i ge8un solSFase 8,0: $605 router of feasible successor 8,ceToouSn (ge8> aofefass B.cu:86o5 router 8:08 feasible successor <8, eavodgoSagen go8uo sofGhads §, $80} router 4, leam opScB,q0> reported distance oo§8:09 Sucessor a, feasible distance conSgp5:g feasible Successor 08 2905g050005) Sucessor §, feasible success on router soo yup onSovan Feasible distance §, Reported distance cqeor subnet 28903 23228, 632005 matrix o§§:036[Go020n Debug ip packets §, router gSo$s90 §os:o}authentication 3, key ofoSeo$oS 068602081 OSPF (Open shortest path fast) OSPF 99 cisco a0p0503 routing protocol ev7050} 90305 cisco eupoSo} Router coggo 2§8Eoo05u Link state saGjss202: routing protocol 231 Administrative distance o> 090 Son08u Loadbalancing o95§,200305 patho} 08 gc8qo2051 EIGRP o205 aaargp5:02209 ao subnet 028908 espase} aoGre[egereogon total cost value oggaz> routing table Scog$[B: loading balancing seg 3, a0}: GSE goucrgpSsce2{GE equal cost maximum path 230}2$Eox26c00 EIGRP a unequal cost maximum path 3 a}:$€os05 (variance o0§ $10} ooe2x(8:) 23.92 ongog:[gore2009 aor auto summarize eopSogen Subnet 006908 230:03 formula co 338 subnet o8o30%03 router 603, outgoing interface o> Link cost or§§:c0308 eclEse8o5000( subnet §o5 router 4, link cost dledlE:020645) router 6032, outing interface 00694, cost o8 805805 ip ospf cost 8. interface configuration mode go cor08 copS:qoruSuslgeupoS cost router o$ ecoooSo> formulat 3, 03053€:08 copS:qor05 20058Eron95s 030500905 :) formula oo (10 power 5 (reference bandwidth)’ interface bandwidth ) thantzinsoe.ucsy@pmail.com P| Presented By Thant Zin Soe @ (Email§, 0303020511 10 power 5 oo kbps § [gox08}¢0x9 100 Mbps 934)0205 (reference bandwidth op )u auto-cost reference-bandwidth 2803 command § reference bandwidth o3e(QrE:eore$ qor05u (reference value , default o> 100 Mbps 8(8:$6g020Si Mbps § 0902886009) 1000 eozcoarqSeor9 corn8ron05u default oSo}:co0t005808 Bandwidth 100Mbps j, 1Gbps link gSgo}:c00g03 cost oo 9 30905908. c8.0} Reference bandwidth o8 router oSoheys ofGoS:eo8s8qE Garg router caggrcop8: cBoSe(GoEra0é or05u alg stability GSc8GeSu bandwidth 2803 command 3, interface sub configuration mode g> bandwidth oe{goézeorc§,qo205u OSPF a, interface cost o8 formulat 30070503 0805805 efGa8sqéaé Interface subconfiguration mode go ip ospf cost (number) command 3, ¢(G2E:8E oruSu OSPF router co30> EIGRP <$o} router eogsoqS:qié: neighbor [g$q routing update (LSA) 8 cagfSrqszoogoSe9,qgo1 Neighbor (G58, aoogo5 OSPF o> BaoSox260300 neighbor ogSeo5 router 5q}2a, Subnet no ,mask ogqe05u Brqf Area no ogqwoSu Authentication method 3, 2$cost0) key ogqooSu Hello interval ,dead interval cogogqacS (EIGRP 9> 38 oc8og:) OSPF a, authentication oo g64j:{0005u Simple authentication 3, MDS authenticationuneighbor 3 Go5cosc} interface eolgo aocSyoSeorqga Area sec$oS o20 authentication a$:go03a802003 ospf router subconfiguration mode go e{goeoxe8,cop5:q 020511 Hello interval , dead interval «8 interface subconfiguration mode o3q ip ospf hello-interval 3, ip ospf dead-interval 3, s905goSco:qoeSu OSPF &, hello interval 9 90 second 3, dead interval o> hello interval 4, ¢ e0fGS0} second 40 Gs default GSegorSi Router cogoo hello message o8 90 second 00§(6358,00081 hello message op router co3o8 neighbor gocor03 message neighbor so05[GSu[go8 cos: 8 hello message o8 quqecl googSB: o$:{GoSoouSi OSPF 4, multicast address (S03 224.0.0.5 oB Destination IP goco2:{8: hello message o8 8, 0005 smoovie soqjaiaog ogorSaqS Neighbor (5(8n Neighbor State 88 neighbor 3, BoScayGSor coSareGaneg eqpedogBede$, eGoovons}idy Soo0S Init, Two Way , Full Init state o> router eog neighbor oaS03 wG§go sano§: 403,903 staten Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|Two Way state o> router goa): neighbor (g6232:[Sc),e{g20),q03 staten database e036092 0} 03q03 exchange eap5[gSeosz0gen Fullo> router S05: neighbor GS Bsc8, database cogeoeS: co[BSsocy§od(Gec$, Router gScb:a, LinkState database cog ogego} Staten OSPF Router 60392 Router ID §{o302u81 OSPF op router id 2oeSo8ugeda8q6 88y> router-id command gp abecont0} 0088208 [pS BragoreSu router-id oo gy bitasscor9 og feor'c%, ob:0} IP address &, bit J, conegegoroSecon oBcSon router-id 8, OSPF router id o8 eeorcostagesSie core 2209 29,40 Rod loopback address cogodqoq ca(Btop: IP address oo8 908 router ID 206§§,c02:02081 Loopback cops: ecorconragsbq€ 88 4, Physical interface gocoscost0} IP cogodeo so[@8:05: IP 08 Router ID mead ofieSo8or0Su Summary: router-id command>largest loopback IP~largest physical IP address OSPF yo Routersog $059 Go5qa5s g6Qj2%00051 pointTopoint Router 2 o$3 o2o5§oS{oSoo2 cqo05008 gpSt oobroadcast cgoSogoSeGoaé router cog sogpe[SBso Switch of cor§o5[Bs Router oooh: 3, ondods 38 Switch coegore0€ connection w9{c30%16380$ Network topology $63, §o3 Router cogar orda}:3, coded: noSe$ LSA (linkstate advertisement)eog wapuSea8.q8 Router ordo5:08 main seg$,cox(B: 38 router negore08 LSA cogo8 wopoS{or05i main router ooSeq(gSagrq8 sogood main c2oqs0(g6 3225:{08 backup router of copS:cos:e292020Simain router o8 Designated Router (DR) o},¢a! o205u backup router oysox) Backup Designated Router (BDR) ¢8,ssToouSi DR §, BDRevzoSo3 Router 202036029 DROther router 60308 esToouSu DR oBao05e8 egecda3qé OSPF router cog, OSPF priority o8[3p$oou5 soqpxad: priority Go} router co DRod OSPF priority o> defaults 1Géego205u (08058, routero8 oo05e3y DR/BDR ooorrgeagia$g’ priority o} 0 cosscvsc8aSqEqor05u) Router cogssorcb:a, priority og6go2058.qEeor2 router co3a, Router ID o3 $€:075(@s sa{eBsa$: router id or§§:§05 router oo Designated Router (DR) (GSogor0208u go8uo router id ca[B:a: router oo BDR (gS2go:00050 88 router oo DRother router {@Segdloo DR (or BDR) router cog, neighbor state a Full 8 (GegooSi DR (or BDR) router 2og3, LSA 08 0805808 eapaSo8n oofgor DRother router cog§,a8 neighbor state oo Two way 93 (Gegc8Sea5u ox008 coaS:a8cox9 DRother router soqyzyéz LSA 08 080505 wscgoSogin DR (or BDR) 9 or60§ woguSoran OSPF 99 LSA 00899j8:803 2303,03 create opSo2 minute 30 [632203628 eoror05 LSA geor05203 on[BSgoSorg8s oopoSogei Presented By Thant Zin Soe @ (Email:thantzinsoe.ucsy@pmail.com Ph:09-73063176) @ Page 24LSDB (link state database) co Link State Advertisement 6030}@002:02011 OSPF o2 Dijskstra algorithm §, LSDB odo information a}: subnet 05908 ayor8803 codtelegoSto$qoor05 ifGemE routing table Beop}oru5u OSPF router cogqy2:0029E(s2.0$:000) LSDB (link state database) size 68:c0202081 path qp03 algorithm co LSDB database size ox{B:eor processor oeorSeorS a5:qoruSu (B:core memory ego LSDB (Br8 orEeosrqeorpeaguSagen 338 oysor OSPF router cogo8 Area sacboS «pSqeoggo$oSoou5 Area cogaoayStajét sooSagoScoro} Router o8 Area Border router 8 ¢sToooSn number 0 2905 goSoos:03 Area cB Backbone area c8 esToveSusgSponSqcoogéty28o> router coos onfgo: «9590 router cog soclogré:o8 summary coeg$_2528{cj00050 s8c8aSecexe Area Border router (ABR) cogo0 cpSeorS3o005n Area Border router(ABR) 6034, interface cogo> interface oror0Soo Area o8gqo88: interface ono008 oo area onSgqooo05u Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|Chapter 6 (Access Control List (ACL) ) Router or8c$too SB8GoSago:one$ data fiame B ACL yo avoSgoSaosc} Rule aogi, onSfeo$: qis8 Ro8oS Bs Roko} Rule oo898, 09,0008, 98 Rule a, actioncac8é: data frame o8 permit or deny ag511 Router cogoo Access control list o8:99 Deny all 0803 Rule o8 egooSadzqo copSevrorbiad8 Rule oo of@Sqagsn ACL of interface cogecT yo sooSgoSco:qooeSu Interface on89go gSegep 29059058 qoouSu 08 3, o0goSs, a8{Gsn (noterinterfice ooSgccTyo protocol oS —qf$:8300305 direction 2 90 2005go5$Eo005u) ACL Bor Rule cogo8 gaosto} cogaocorn ACL g6GsGooe5u Standard ACL (§clo808 9 069 @g or 9200 ore4 ogee ogo5ago:e05 packet , Source IP o§o30508, 51 06(G:6029 Rule 3,cd:0 08059 3% Rule 4.0205 go50} action (géQigrcorse[Gjogecors) sooRE: data frame o8 cpSor05i Format : access-list (1~99) permit or deny source ip §. Extended ACL (§clo$ 08 200 oreg ogg oF Jooo meg JSe@gq Ba}:8E) Format : 2200 Router s80€2203 packet or Router o> ogoSago:e0§ packet 8, Protocol, Source IP.Des Ip , Source Port.Des Port 08 0888 iGeorrE:oruSuodB:cor Rule 3,cd:0 BoSeé <8 Rule {c005goSo5 action (@§{ygocorene[S|ogscos:) a2088s data frame o8 apSor05 defaultos Router eogs8y> ACL ooqsn 80) computer eogcas:a}:00 CNT Network ooo Computer cogcaoic}io8. Access cpSgé Geos cleooa$ CNT oo AC op a}s000:03 192.168.10.0 network o3: ono: network address §, cosa}su08 computer 6ojo8 gSe[gjoqan leogoo CNT oo 88 Network «8 cos08yo 8.8, CNT good Technician cogo> 2303,a8go§03 Router go 8 Rule cogvlo> ACL of avo5goScosqou5i Router o9 packet o8 o&€ ACL a, seecTsb:goGo} Rule 3, oc§oSeBs oBoSq§ action (forward or deny) op5[B: eao208e0 Rule cogs, wc§oSeScorregen wohoSeScor2 ecor08eo Rule cog, packet o8 soose§oSoSoou5i 2 CNT Router s90g05 Access control list rule cogoog$eo:qecSiccoe rule o> IP 192.168.10.1~254 oneg, 192.168,20.1~254 389,05 data frame cogs g&{GjooS=$0} Rule apS1 38 Rule §, vofo5o} Packet Bas block cpSeoSa8o> Rule cog ACL doopScosqoudifBeq’ o8 rule cogdlod clo} ACL 8 router a, interface od aggo ago:s00SgoSeurqeruS i Command (At CNT) Accesslist 100 permit IP 192.168.10.0 0.0.0.255.192.168.20.0 0.0.0.0.255 Presented By Thant Zin Soe @ (Email thantzinsoe.ucsy@pmail.com P|