Building Cisco Service Provider

Next-Generation Networks, Part 2

SPNGN2 v1.01

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-1
Course Management

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-2
Pod Access Information

Parameter Default value

Remote lab SSH access IP address 128.107.245.9

Remote lab SSH access username instr

Remote lab SSH access password testMe

Pod PE (Cisco IOS XR) router username root

Pod PE (Cisco IOS XR) router password 1ronMan

Pod CE, SW, and PE privileged-level password cisco

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-3
 Legend:
GE

SPNGN2 Lab Topology FE

OC-3 POS

Team 1 Team 2
CE1 Pod 1 SW1 PE1 PE3 SW3 Pod 3 CE3

P1

SW12 SW34

CE2 Pod 2 SW2 PE2 PE4 SW4 Pod 4 CE4

CE5 Pod 5 SW5 PE5 PE7 SW7 Pod 7 CE7

SW56 P2 SW78

CE6 Pod 6 SW6 PE6 PE8 SW8 Pod 8 CE8

Team 3 Team 4
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-4
SPNGN2 Lab Interface Identification: Team View
Team z
CEx Pod x SWx PEx
GE0/0 FE0/1 FE0/2 GE0/0/0/2
P1
GE0/0/0/0
FE0/23
GE0/1 GE0/0/0/
FE0/24 1
FE0/21 GE0/0/0/3
FE0/21
FE0/22 FE0/22
FE0/1

FE0/2
FE0/23
SWxy
FE0/24
FE0/21 GE0/0/2
FE0/23 GE0/0/1
GE0/1 FE0/22
FE0/24
GE0/0/3
P2
GE0/0 FE0/1 FE0/2 GE0/0/0
POS0/2/0
CEy Pod y SWy PEy
POS0/2/1

POS0/2/0
Legend: GE POS0/2/1
FE Connections to
OC-3 POS PE(y+2)
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-5
SPNGN2 Lab IP Addressing: Team View
Team z 10.0.1.1
CEx Pod x SWx PEx
192.168.10x.0/24 192.168.10x.0/24 192.168.x1.0/24
P1
.x1 .x0 .x0 .1

10.xy.0.1 .x0 .1 .1

19
.x0 .1

2.
16
8
10.x.10.1 10.x.0.1 10.x.1.1

192.168.2.0/24
192.168.1.0/24
. x2
.0
/2
4
192.168.1xy.0/24

4
/2
.0
10.y.10.1 SWxy 10.y.0.1 10.y.1.1

. y1
68
.2

1
.y0

2.
.y0 .2

19
.2
.y1 .y0 .y0 .2
P2
192.168.10y.0/24 192.168.10y.0/24 192.168.y2.0/24
.y0
CEy Pod y SWy PEy .y0
10.0.2.1
z = 1,2,3,4
Legend: GE
x = 1,3,5,7 192.168.2w2.0/24 192.168.2w1.0/24
FE y = 2,4,6,8
OC-3 POS w = 1 (for teams 1 and 2) Connections to
Loopback 2 (for teams 3 and 4) PE(y+2)
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-6
SPNGN2 Management IP Addresses
Team 1 Team 2
CE1 Pod 1 SW1 PE1 PE3 SW3 Pod 3 CE3
10.10.10.14 10.10.10.11 10.10.10.17 10.10.10.25 10.10.10.19 10.10.10.22
P1

10.10.10.13 10.10.10.18 10.10.10.21

SW12 SW34

10.10.10.15 10.10.10.12 10.10.10.16 10.10.10.24 10.10.10.20 10.10.10.23

CE2 Pod 2 SW2 PE2 PE4 SW4 Pod 4 CE4

CE5 Pod 5 SW5 PE5 PE7 SW7 Pod 7 CE7

10.10.10.30 10.10.10.27 10.10.10.33 10.10.10.40 10.10.10.34 10.10.10.37

10.10.10.29 10.10.10.26 10.10.10.36

SW56 P2 SW78

10.10.10.31 10.10.10.28 10.10.10.32 10.10.10.39 10.10.10.35 10.10.10.38

CE6 Pod 6 SW6 PE6 PE8 SW8 Pod 8 CE8

Team 3 Team 4
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-7
Visual Objective for Lab 2-1:
Configure Advanced Switching Features

Team z Optimize RSTP

CEx Pod x SWx PEx
GE0/0 VLAN x0 FE0/1 FE0/2 GE0/0/0/0

FE0/23
GE0/1 TRUNK FE0/21
1, x0, y0
FE0/21 TRUNK
FE0/1 1, x0, y0
Configure VLANs
FE0/2 SWxy
FE0/23 Configure trunking
TRUNK
GE0/1 1, x0, y0 FE0/21
FE0/23 GE0/0/0
GE0/0 FE0/2
VLAN y0FE0/1
CEy Pod y SWy PEy

Configure MSTP

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-8
Visual Objective for Lab 2-2: Configure Inter-VLAN
Routing and Gateway Redundancy
Team z
192.168.10x.x0/24
Pod x VLAN SWx 192.168.10y.y2/2 HSRP
CEx 4
PEx
x0 FE0/2 GE0/0/0/0 VRRP
VLANs x0, y0
FE0/23

y0
GE0/1 FE0/21

,
x0
1,
192.168.10x.x1/24 192.168.10x.x3/24
FE0/21

s
AN
192.168.10y.y3/24
VL

VLANs 1,x0, y0
FE0/1

FE0/2 SWxy
VL
AN
FE0/23 s
1,
x0
192.168.10y.y1/24 ,y
0
GE0/1 FE0/21
FE0/23 VLANs x0, y0
FE0/2 GE0/0/0
CEy Pod y VLAN y0 SWy 192.168.10x.x2/24 PEy
192.168.10y.y0/2
4
Legend:

TRUNK
GE
FE
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-9
Visual Objective for Task 2: HSRP
Active router for VLAN x0
Team z Backup router for VLAN y0

CEx Pod x VLAN x0 PEx Pod y VLAN y0

GE0/0/0/0.y0
GE0/0/0/0.x0
192.168.10y.y2/2
192.168.10x.x0/24
4
192.168.10x.x1/24

192.168.10x.x3/24

192.168.10y.y3/24

192.168.10y.y1/24
GE0/0/0.x0 GE0/0/0.y0
192.168.10x.x2/24 192.168.10y.y0/2
PEy 4 CEy
Active router for VLAN y0
Backup router for VLAN x0

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-10
Visual Objective for Lab 3-1:
Implement OSPF

Team z
CEx Pod x OSPF Area 0 PEx

Enable OSPFv2 Enable OSPFv2

and OSPFv3 authentication
Pod y OSPF Area 0

CEy PEy

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-11
Visual Objective for Lab 3-2:
Implement IS-IS

Team z
CEx Pod x IS-IS Area 49.0000 PEx

Enable IS-IS for Enable IS-IS

IPv4 and IPv6 authentication
Pod y IS-IS Area 49.0000

CEy PEy

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-12
Visual Objective for Lab 4-1:
Configure Basic BGP

Team z
CEx Pod
AS x
6450x Pod x AS 64500 PEx

EBGP

IBGP
Enable BGP
authentication
AS 6450y

EBGP

CEy Pod y PEy

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-13
Visual Objective for Lab 5-1:
Implement ACLs

Team z
CEx Pod x PEx

Configure IPv4
and IPv6 ACLs
Configure and
Pod y verify antispoofing

CEy PEy

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-14
Visual Objective for Lab 6-1:
Manage Cisco IOS XR Software Package

Team z
CEx Pod x PEx

Manage Cisco
IOS XR Software

Commit and rollback

configuration

CEy Pod y PEy

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-15
Password Recovery on Cisco IOS/IOS XE

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-16
Prepare for Password Recovery
Sentry Switched CDU Version 6.0k
Username: ccnx
Password: redhat
Location: BORG 239 Row B2
Switched CDU: list outlets
 
Outlet Outlet
ID Name Administrator
2. Access RPDU
 
.AA1 SW1-TEAM1 and list outlets

.AA2 SW2-TEAM1

.AA3 SW12-TEAM1 Internet

.AA4 CE1-TEAM1 SSH 1. Not able to access

3. Find Outlet ID Terminal Server
for CE1 Cisco IOS device:
.AA5routerCE2-TEAM1
Forgotten password

Remote Power
Distribution Unit Console CE1>enable
(RPDU) Password:
asr1001 Password:
Password:
% Bad passwords
C2900
CE1>
ME340x

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-17
Power Cycle of the Cisco IOS Router or Switch
Administrator
4. Power off and power on
Switched CDU: reboot .AA4 outlet ID .AA4

Outlet Outlet Outlet Control

ID Name Status State

.AA4 CE1-TEAM1 Off Reboot

Command successful
Remote Power
Distribution Unit
(RPDU)
C2900
5. Observe text
appears on the console
System Bootstrap, Version 15.0(1r)M9, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 2010 by cisco Systems, Inc.

Total memory size = 2560 MB - On-board = 512 MB, DIMM0 = 2048 MB

CISCO2901/K9 platform with 2621440 Kbytes of main memory
Main memory is configured to 72/72(On-board/DIMM0) bit mode with ECC enabled
Ctrl-Shift-6, Ctrl-b 6. Send break sequence
Readonly ROMMON initialized to the console
rommon 1 >

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-18
Power Cycle of the Cisco IOS XE Router Administrator
4. Reboot two outlets
Switched CDU: reboot .AA6
Outlet Outlet Outlet Control
ID Name Status State
.AA6 ASR1K-PE2-TEAM1_PS0 Off Reboot

Command successful
Switched CDU: reboot .AA7
Outlet Outlet Outlet Control
ID Name Status State
.AA7 ASR1K-PE2-TEAM1_PS1 Off Reboot

Command successful Remote Power asr1001

Distribution Unit
(RPDU)

ASR 1001 has redundant 5. Observe text

power supplies appears on the console
Initializing Hardware ...
Calculating the ROMMON CRC ... CRC is correct
System Bootstrap, Version 15.0(1r)S, RELEASE SOFTWARE
Copyright (c) 1994-2010 by cisco Systems, Inc.
Current image running: Boot ROM1
Last reset cause: PowerOn
ASR1000-1RU platform with 4194304 Kbytes of main memory
Ctrl-Shift-6, Ctrl-b autoboot: aborted due to user interrupt 6. Send break sequence
rommon 1 > to the console
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-19
Password Recovery Procedure on the Cisco
IOS/IOS XE Router
Administrator
7. Change
rommon 1 > confreg 0x2142 configuration register

You must reset or power cycle for new config to take effect
rommon 2 > reset
8. Reset system
9. Observe boot up sequence
10. Do not enter initial configuration dialog
--- System Configuration Dialog ---
Would you like to enter the initial configuration dialog? [yes/no]: no
Press RETURN to get started!
Router>enable 11. Load configuration from startup-config
Router#copy startup-config running-config
Destination filename [running-config]? <Enter>
2446 bytes copied in 0.228 secs (10728 bytes/sec) 12. Change enable password
CE1#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
CE1(config)#enable password cisco
CE1(config)#config-register 0x2102 13. Change config-register
CE1(config)#interface GEgabitEthernet 0/0
CE1(config-if)#no shutdown
14. Enable interfaces
CE1(config-if)#end
CE1#copy running-config startup-config 15. Save configuration
Destination filename [startup-config]? <Enter>
Building configuration...
[OK]
CE1#

© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-20
© 2012 Cisco and/or its affiliates. All rights reserved. SPNGN2 v1.01—CAG-21