Scribd Logo
Upload

Welcome to Scribd!

  • 2158 Case Study1

    Uploaded by

    thestig08
    268 views2 pages

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    268 views2 pages

    2158 Case Study1

    Uploaded by

    thestig08

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    VLAN 10 VLAN 20 VLAN 30

    Access Layer
    172.16.10.5 172.16.20.5 172.16.30.5 ALSwitch
    VLAN 1 Fa0/3,13-24
    VLAN 10 Fa0/4-6
    VLAN 20 Fa0/7-9
    Access Layer VLAN 30 Fa0/10-12
    Fa0/5 Fa0/8 Fa0/10
    ALSwitch1 ALSwitch2 ALSwitch3
    172.16.1.1/24 172.16.1.2/24 172.16.1.3/24
    Fa0/1-2 Fa0/1-2 Fa0/1-2

    VLAN 10 Accounting 172.16.10.0/24 FEC


    VLAN 20 Marketing 172.16.20.0/24 FEC FEC
    VLAN 30 Engineering 172.16.30.0/24 Fa0/3-4
    VTP Domain CORP

    Distribution Layer Fa0/5-6


    Fa0/1-2 DLSwitch
    GB0/1 Vlan 1 172.16.1.4/24
    803.1Q Trunk
    GB0/1
    Core Layer
    CLSwitch CLSwitch
    Core Layer
    VLAN 1 GB0/1-2 Fa0/1-24
    172.16.2.2/24 Layer 3 Fa0/13
    Fa0/13

    172.16.2.1/24 Fa0/0

    Internet S0/0
    200.200.100.0/24
    NAT router
    Nat Pool 200.200.200.18-30/28

    Objectives

    1. Access Layer Switches


    a. No interfaces in VLAN 1
    b. All non connected interfaces are shutdown
    c. Access Interfaces are manually set to Access Mode
    d. Management VLAN is VLAN 99 in the 172.16.1.0/24 network
    e. Trunk Links are manually set to Trunk Mode
    f. Native VLAN is set to 100 on all Trunks
    g. Fast Ether Channel is configured to bind the Fa0/1 and Fa/02 Interfaces together
    h. Set to VTP clients only
    i. Remote access is by SSH only
    j. All passwords are encrypted

    2. DLSwitch
    a. Is the only VTP Server.
    b. Configured with VTP Pruning
    c. Is the STP root for all VLANs and is guaranteed to always remain the STP root
    d. Remote access is by SSH only
    e. All passwords are encrypted
    3. CLSwitch
    a. Performs all Inter-VLAN Routing
    b. Connects to NATRouter via a Layer 3 link in the 172.16.2.0/24 network
    c. Is running EIGRP and advertises all routes to NATRouter
    d. Remote access is by SSH only
    e. Is running DHCP to provide IP addresses to all hosts. Ensure that there are 3 DHCP pools – 1
    for each VLAN
    f. All passwords are encrypted

    4. NATRouter
    a. Configured with PAT (Nat with overloading or Port address translation) and translates all
    internal address to the NAT Pool of 200.200.200.18/24 – 200.200.200.30/24.
    b. Has default static route pointing to Internet that is advertised via EIGRP back to CLSwitch
    c. Remote access is by SSH only
    d. All passwords are encrypted

    5. ISPRouter (cloud)
    a. Has static route to the 200.200.200.16/28 network pointing to NATRouter’s S0/0 Interface

    You might also like