Professional Documents
Culture Documents
Access Layer
172.16.10.5 172.16.20.5 172.16.30.5 ALSwitch
VLAN 1 Fa0/3,13-24
VLAN 10 Fa0/4-6
VLAN 20 Fa0/7-9
Access Layer VLAN 30 Fa0/10-12
Fa0/5 Fa0/8 Fa0/10
ALSwitch1 ALSwitch2 ALSwitch3
172.16.1.1/24 172.16.1.2/24 172.16.1.3/24
Fa0/1-2 Fa0/1-2 Fa0/1-2
172.16.2.1/24 Fa0/0
Internet S0/0
200.200.100.0/24
NAT router
Nat Pool 200.200.200.18-30/28
Objectives
2. DLSwitch
a. Is the only VTP Server.
b. Configured with VTP Pruning
c. Is the STP root for all VLANs and is guaranteed to always remain the STP root
d. Remote access is by SSH only
e. All passwords are encrypted
3. CLSwitch
a. Performs all Inter-VLAN Routing
b. Connects to NATRouter via a Layer 3 link in the 172.16.2.0/24 network
c. Is running EIGRP and advertises all routes to NATRouter
d. Remote access is by SSH only
e. Is running DHCP to provide IP addresses to all hosts. Ensure that there are 3 DHCP pools – 1
for each VLAN
f. All passwords are encrypted
4. NATRouter
a. Configured with PAT (Nat with overloading or Port address translation) and translates all
internal address to the NAT Pool of 200.200.200.18/24 – 200.200.200.30/24.
b. Has default static route pointing to Internet that is advertised via EIGRP back to CLSwitch
c. Remote access is by SSH only
d. All passwords are encrypted
5. ISPRouter (cloud)
a. Has static route to the 200.200.200.16/28 network pointing to NATRouter’s S0/0 Interface