Ccna Masterit Lab

Cp v cc thit b Cisco

PAGE 3

MC LCPhn 1 TNG QUAN

OSI MODEL2CABLE

3LNH CISCO CN BN8CISCO DISCOVERY PROTOCOL21TELNET

26CRACK PASSWORD30BACKUP V RESTORE35Phn 2 NH TUYN

STATIC ROUTE40DYNAMIC ROUTING PROTOCOL RIP48DYNAMIC ROUTING PROTOCOL IGRP53DYNAMIC ROUTING PROTOCOL EIGRP60DYNAMIC ROUTING PROTOCOL OSPF69Phn 3 ACCESS-LIST

STANDARD IP ACCESS-LIST75EXTENDED IP ACCESS-LIST80Phn 4 NAT

84NAT OverloadDynamic NAT

Static NAT

Phn 5 WANPPP

90FRAME-RELAY95ISDNPhn 6 - SWITCH

SWITCH (BASIC CONFIGURE)VLANOSI MODEL:OSI Model l mt s chun ha cho nhng chc nng Network. Lm cho tnh phc tp ca network tr nn n gin hn, cho php cc nh pht trin modul ha vic thit k. Phng php ny cho php nhiu nh pht trin lm vic c lp nhau to ra nhng chc nng ring bit m vn c th ha hp thnh mt th thng nht mt cch d dng (plug-and-play).

M hnh OSI

ApplicationGiao din ngi dngTelnet

HTTP

PresentationChun ha d liuASCII

JPEG

SessionThit lp, qun l v kt thc cc phin giao dch gia cc ng dng.Operating systems

Scheduling

TransportCung cp vic vn ti m bo v khng m boTCP

UDP

SPX

NetworkCung cp vic nh a ch lun l nh tuyn cc gi d liuIP

IPX

DatalinkTo frames t cc bits ca d liu

Dng a ch MAC

Detect li, nhng khng sa li802.2

802.3

HDLC

PhysicalTn hiu s, xung in truyn ra connectors, cableEIA/TIA

V.35

Protocol Data Unit (PDU) c s dng giao tip gia cc lpEncapsulation l phng php thm header (phn u) v trailer (phn ui) khi data di chuyn qua mi lp. Pha thit b nhn, s tin hnh g tng header ra khi qua mi lp (De-encapsulation)

Tm lc M hnh OSI:

OSI Model c 7 lp, c chia lm 2 phn Application (5,6,7) v Data flow (1,2,34)

Encapsulation l qu trnh ng gi: d liu khi dch chuyn qua cc lp s c thm header v trailers

Pha thit b nhn, s tin hnh de-encapstulation.

Collision domain:1444

Broadcast domain:1114

CABLE:1. Cp xon 4 i:L cp thng tin chun STP/UTP Cat-5, gm c 8 si xon vi nhau thnh tng i mt theo m mu: Cam-Trng v Cam; Lc-Trng v Lc; Dng-Trng v Dng; Nu-Trng v Nu. Hai u cp ni vi Jack cm RJ-45.

Ty theo chun mu ca 2 u Jack RJ-45 m ta phn bit thnh cc loi sau:

STTiMu scChc nngSTTiMu scChc nng

13Trng LPht13Trng CamPht

23LPht23CamPht

32Trng CamThu32Trng LThu

41DngCha dng41DngCha dng

51Trng DngCha dng51Trng DngCha dng

62CamThu62LThu

74Trng NuCha dng74Trng NuCha dng

84NuCha dng84NuCha dng

Cp thng (Straight-Through Cable):Hai u s dng chun T568B (hoc T568A). S ni dy cp thng nh sau:

Cp cho (Crossover Cable):C mt u s dng chun T568A, mt u s dng chun T568B. S ni dy cp cho nh sau:

Trng hp s dng

Cc thit b mng c chia lm hai nhm:

Nhm 1: Hub, Switch

Nhm 2: Cc thit b cn li (Router, Computer, )

Khi u ni hai thit b cng nhm: dng cp cho (crossover)

Khi u ni hai thit b khc nhm: dng cp thng (straight-through)

i vi Switchs:

2. Cp Serial:L cp thng tin (data cable) c 2 u ni vi jack cm DB-60, mt u ni vi thit b DCE, u cn li ni vi thit b DTE. S dng: Ni 2 cng Serial ca 2 Router, hoc cng serial Router vi tng i s, Frame-Relay

3. Cp console:

hay cn gi l cp Roll: Rolled-over CableS ni dy cp Console nh sau:

Cp console c th c

bm li theo s sau:

1 8

2 7

3 6

4 5

5 4

6 3

7 2

2 1

Lm quen vi ch dng lnh (CLI) v mt s lnh ca router CiscoHng dn

1. Ni cp

m bo an ton thit b trong khi thc hnh, cn phi tt hon ton ngun in cc thit b trong khi ni cp. Dng cp Console ni cng COM1 ca my PC (dng Terminal chuyn i t DB-9 sang RJ45) vi cng Console ca Router.

Kim tra li dy v jack cm m bo ni chc chn.2. ng nhp vo router

Khi ng Windows, vo HyperTerminal Start Programs Accessories Communicatons Hyper Terminal t tn v cc thng s nh hnh Name: Icon: chn biu tng ty thch Connect using: COM1

y l dng c bn nht c th thng qua mt my tnh cu hnh cc thit b cisco. Nhng cch thc ny rt b ng, v mt my tnh ch cu hnh c mt router.

Trong thc t phng LAB, ta thng u ni theo s sau, cu hnh cc router thng qua Terminal Server.

Terminal Server cung cp truy cp out-of-band, ngha l c th s dng telnet truy cp router thng qua cng console hay cng aux. Termial server l router c cc Asynchronous port ni trc tip vi console port ca cc thit b router, switch.

LNH CISCO CN BN:Giao din terminal khi va khi ng router

Would you like to terminate autoinstall? [yes]:

Press RETURN to get started!00:01:01: %IP-5-WEBINST_KILL: Terminating DNS process

00:01:07: %SYS-5-RESTART: System restarted --

Cisco Internetwork Operating System Software

IOS (tm) 2500 Software (C2500-I-L), Version 12.1(1)T, RELEASE SOFTWARE (fc1)

Copyright (c) 1986-2000 by cisco Systems, Inc.

Compiled Thu 16-Mar-00 16:10 by ccai

00:01:07: %LINK-5-CHANGED: Interface Ethernet0, changed state to administratively down

00:01:07: %LINK-5-CHANGED: Interface Serial1, changed state to administratively down

00:01:08: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to down

00:01:08: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial1, changed state to down

Router>

Bm ? ti Router>? xem tr gip ti mode ny c bao nhiu lnh tt c

Router>?Exec commands:

access-enable Create a temporary Access-List entry

access-profile Apply user-profile to interface

clear Reset functions

connect Open a terminal connection

disable Turn off privileged commands

disconnect Disconnect an existing network connection

enable Turn on privileged commands

exit Exit from the EXEC

help Description of the interactive help system

lock Lock the terminal

login Log in as a particular user

logout Exit from the EXEC

mrinfo Request neighbor and version information from a multicast

router

mstat Show statistics after multiple multicast traceroutes

mtrace Trace reverse multicast path from destination to source

name-connection Name an existing network connection

pad Open a X.29 PAD connection

ping Send echo messages

ppp Start IETF Point-to-Point Protocol (PPP)

resume Resume an active network connection

--More--

Vo Priviledge mode:Router>enableRouter#

quay li user mode bng lnh disable Router>enable

Router#

Router#disableRouter>

thot hn tr ra khi ch dng lnhRouter con0 is now available

Press RETURN to get started.

Router>enable

Router#logout

Router con0 is now available


Lnh gip (?) rt hu dng, bn c th dng trong bt k ch no, Router s a ra cc lnh c php s dng v ngha ca lnh . V d mun nh lnh enable ti user mode vo Priviledge mode, nhng bn li qun, khng nh r lnh enable phi nh nh th no, bn ch cn nh e?Router>e?enable exit

Router lit k cho bit, ngay ti mode ny c 2 lnh bt u bng ch e l lnh enable v lnh exit.

By gi, bn nh vo:

Router>en?enable

Router lit k cho bit ch c 1 lnh ti mode ny l lnh enable, do vy ta c th nh tt lnh enable = en cng c.

Router>enRouter#

Nh vy, du hi c t lin k vo lnh (khng c khong trng) s cho ta bit nhng lnh no c trong mode ny bt u bng nhng ch trc?

Ti priviledg mode, v d bn mun xem tip cc phn ca lnh show, bn g:Router#show ?

access-expression List access expression

access-lists List access lists

accounting Accounting data for active sessions

adjacency Adjacent nodes

aliases Display alias commands

arp ARP table

async Information on terminal lines used as router

................................................................................................................................................................................................................................................................................. cops COPS information

debugging State of each debugging option

--More

traffic-shape traffic rate shaping configuration

users Display information about terminal lines

version System hardware and software status vtemplate Virtual Template interface information

whoami Info on current tty line

x25 X.25 information

x29 X.29 information

router lit k cho ta thy tt c nhng sub-comand i theo sau lnh show, ti y bn lu c sub-command l version, dng xem tnh trng ca hardware v software

Router#s?*s=show send set setup show

slip start-chat systat

//c 4 lnh bt u bng ch s, nhng lnh show c u tin (c du * ng trc lnh show), tc l ch cn nh vo l s, th router vn t hiu l ta ang cn nh lnh show. Nhng thng thng ta nh tt l sh.

Router#sh

Router#show v?version vtemplate

// c 2 lnh sub-command

Router#show ve?

version

Router#show ve

Router#show version

Router#sh ver





Image text-base: 0x0303F64C, data-base: 0x00001000

ROM: System Bootstrap, Version 11.0(10c), SOFTWARE

BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT

WARE (fc1)

Router uptime is 55 minutes

System returned to ROM by reload

System image file is "flash:R1_Flash_New"

cisco 2511 (68030) processor (revision M) with 2048K/2048K bytes of memory.

Processor board ID 20475723, with hardware revision 00000000

Bridging software.

X.25 software, Version 3.0.0.

1 Ethernet/IEEE 802.3 interface(s)

2 Serial network interface(s)

16 terminal line(s)

32K bytes of non-volatile configuration memory.

8192K bytes of processor board System flash (Read ONLY)

--More

Configuration register is 0x2102

Router#

Vo ch Global-configuration-mode, dng lnh configuration terminalRourter#config terminal //c th nh tt l: conf t

Router(config)#

t tn cho router l R1

Router(config)#hostname R1

R1(config)#

t banner cho Router:

R1(config)#banner motd & chao mung cac ban den voi CCNA tai NHAT NGHE &

R1(config)#end

R1#logout

Sau khi lm xong banner th bn logout ri vo li router s thy banner mi khi kt ni vo routerCc lnh t thng s cho line console:

R1>en

R1#conf t

Enter configuration commands, one per line. End with CNTL/Z.

r1(config)#line console 0

r1(config-line)#loggin sync //dng t ng xung hng

r1(config-line)#exec-timeout 0 0 //dng t thi gian timeout

r1(config-line)#end

R1#

Sau khi lm xong lnh loggin sync th trn mn hnh console khng cn hin tng b mt con tr. Lnh exec-timeout X Y c hai tham s X l pht, Y l giy. Dng t thi gian t kha router nu khng g phm no bt k. Vi thi gian 0 0 c ngha l khng bao gi timeout. (Ch nn p dng trn thit b phng LAB) vo mode interface:R1>en

R1#conf t


R1(config)#interface ethernet 0 //lnh tt int e0

R1(config-if)#exit

t a ch IP cho interface ethernet 0

R1(config)#interface ethernet 0

R1(config-if)#ip address 192.168.2.151 255.255.255.0

R1(config-if)#no shutdown // up int e0 ln.

R1(config-if)#end

t description cho interface:

R1#conf t


R1(config)#int e0

R1(config-if)#description day la int noi vao mang lan

R1(config-if)#end

R1#sh int e0

Sau khi lm xong lnh description cho int e0, bn dng lnh sh int e0 kim tra kt qu.R1#sh int e0

Ethernet0 is up, line protocol is up

Hardware is Lance, address is 0010.7be8.5847 (bia 0010.7be8.5847)

Description: day la int noi vao mang lan

Internet address is 192.168.2.151/24

MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation ARPA, loopback not set

Keepalive set (10 sec)

ARP type: ARPA, ARP Timeout 04:00:00

Last input 00:00:01, output 00:00:09, output hang never

Lnh Sh ip int brief dng kim tra tt c cc ip address ca cc interface trn router.r1#sh ip int brief

Interface IP-Address OK? Method Status Protocol

Ethernet0 192.168.2.151 YES NVRAM up up

Serial0 unassigned YES NVRAM administratively down down

Serial1 unassigned YES NVRAM administratively down down

PASSWORD:Thng thng c 5 loi password bo mt cho mt router Cisco.1.Hai loi password u tin l enable password, s dng vo ch priviledge mode, password ny s yu cu bn nhp vo khi nh lnh enable t user mode vo privilegde mode.

2.Ba loi cn li t password cho cc ch cho user mode khi truy cp qua cng console, cng Aux, hay Telnet( IOS password c phn bit ch hoa hay ch thng (case sensitive), v khng qu 25 k t. Cc k t ny c th l ch hoa, ch thng, con s, cc du chm cu v khong cch; tuy nhin k t u tin khng c l khong cch.Password truy cp vo Priviledge Mode:

Password dng khng m ha khi lu tr (clear-text), Password secrect l password khi lu tr s c m ho dng MD5 theo mc nh, ta c th kim li bng lnh show run.

Nu va tn ti password enable password v enable secrect th enable password khng c tc dng.

R1#conf t

R1(config)#enable password 456R1(config)#enalbe secrect 789

R1(config)#end

R1#show run

Building configuration...

Current configuration:

!

version 12.1

service timestamps debug uptime

service timestamps log uptime

no service password-encryption

!

hostname R1!

enable secret 5 $1$nsVj$eErWsNTNwP.jmJckAv8qE. //789 c m haenable password 456 //456 vn gi nguyn !

!

!

!

!

ip subnet-zero

!

!

!

!

interface Ethernet0

--More--

Password truy cp vo User Mode:

t password cho user mode bng lnh line, xem xt cc thng s theo sau bng cch nh du ? sau lnh line.R1(config)#line ?

First Line number

aux Auxiliary line

console Primary terminal line

tty Terminal controller

vty Virtual terminal

Aux t password cho cng aux, thng dng khi cu hnh cho modem gn router, quay s vo cu hnh router.

Console t password trc khi vo user mode

vty t password telnet vo router. Nu khng t password, khng th thc hin telnet vo router. t password user mode, cn xc nh line mun cu hnh v dng lnh login cho router bit a ra thng bo chng thc i hi nhp password.Cu lnh login rt quan trng, nu khng c router s khng thng bo i hi chng thc.

1. t password aux trn router: vo global config mode nh lnh line aux 0. Ch rng ch c chn s 0 v ch c mt port aux.R1(config)#line aux 0

R1(config-line)#login

R1(config-line)#password passaux

2. t console password trn router: dng lnh line console 0R1(config)#line console 0


R1(config-line)#password 123

3. t password telnet: dng lnh line vty 0 4

R1(config)#line vty 0 4

R1(config)#login

R1(config)#password telnet

4. Kim tra la tt c bng lnh: show running-configR1(config)#^Z

R1#show run

Current configuration:

!

version 12.1




!

hostname R1!

enable secret 5 $1$nsVj$eErWsNTNwP.jmJckAv8qE.

enable password 456

!

!

!

!

!

ip subnet-zero

!

!

!

!

interface Ethernet0

--More

no ip address

shutdown

!

interface Serial0

no ip address

shutdown

no fair-queue

!

interface Serial1

no ip address

shutdown

!

ip classless

no ip http server

!

!

line con 0

password 123

login

transport input none

line 1 16

line aux 0

password passaux

--More

CC LNH DNG LU TR CU HNH CA ROUTER:R1#Write

R1#Copy running startup

Hai lnh trn dng lu cu hnh t RAM ca router n NVRAM ca router. Nn thng xuyn dng lnh ny trong qu trnh thao tc cu hnh router trnh s c bt ng nh mt in t ngt.

R1#Copy startup running

Lnh trn dng copy cu hnh t NVRAM n RAM, dng trong mc ch recovery password s cp trong phn sau.Lu : c 3 lnh u thc hin ti priviledge mode th li cc password t u tin logout ri vo li router. vo c priviledge mode, cc bn phi tri qua 2 ln kim tra password.

Password USER mode l 123

Password Priviledge mode l 789.


User Access Verification

Password: //nh vo 123 lu bn s khng thy pass khi g

R1>en

Password: //nh vo 789 lu bn s khng thy pass khi g

R1#

TM TT:Cc lnh c bn dng cu hnh router nh sau:

Router>en

Router#conf t


Router(config)#hostname rX

RX(config)#enable password 456

RX(config)#enable secret 789

RX(config)#banne motd & chao mung cac ban den voi CCNA tai NHATNGHE &

RX(config)#line console 0

RX(config-line)#loggin syn

RX(config-line)#login

RX(config-line)#password 123

RX(config-line)#exec-timeout 0 0

RX(config-line)#exit

RX(config)#line vty 0 4

RX(config-line)#login

RX(config-line)#password telnet

RX(config-line)#exit

RX(config)#int e 0

RX(config-if)#ip add 192.168.2.150+X 255.255.255.0

RX(config-if)#description day la int noi vao mang lan

RX(config-if)#no shut

RX(config-if)#end

RX#sh ver

RX#sh run

RX#wr


[OK]

RX#

LU : X L S TH T CA ROUTER BN ANG KT NI

CC LNH XA CU HNH ROUTER:

xa cu hnh router v a router v trng thi default, ta xa NVRAM, cu hnh thng s register thnh 0X2102 ri reload li router. Bn thc hin vic ny mi khi cn reset li router thc hin bi lab mi.

LUN THC HIN CC CU LNH NY TRC MI BUI THC HNH RESET ROUTER.RX>en

RX#conf t

RX(config)#config 0x2102

RX(config)#no boot system

RX(config)#end

RX#write erase

Erasing the nvram filesystem will remove all configuration files! Continue? [confirm] //bm phm enter

[OK]

Erase of nvram: complete

RX#

*Mar 1 00:05:46.743: %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram

RX#reload //dng khi ng li router

Proceed with reload? [confirm] //bm phm enter

Ch : nu router ca bn xut hin cu hi yu cu save cu hnh router th phi tr li NO

00:04:56: %SYS-5-RELOAD: Reload requested

System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1)

%SYS-4-CONFIG_NEWER: Configurations from version 12.1 may not be correctly understood.

F3: 7873484+123020+586988 at 0x3000060

............................

..............................

cisco 2620 (MPC860) processor (revision 0x200) with 45056K/4096K bytes of memory.

Processor board ID JAD05030IL1 (1384535827)

M860 processor: part number 0, mask 49

Bridging software.


1 FastEthernet/IEEE 802.3 interface(s)

2 Serial(sync/async) network interface(s)


16384K bytes of processor board System flash (Read/Write)

--- System Configuration Dialog ---

Would you like to enter the initial configuration dialog? [yes/no]: n


//bm phm enter

Press RETURN to get started!

BI TP CC CU LNH CN BN:Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19. Hn ch tham kho ti liu trong khi thc hin cc lnh c.

A.Thc hin cu hnh router vi yu cu nh sau:

t tn router ca bn l RouterX (X l s th t router ca bn ang kt ni) Password priviledge khng m ha l 456 Password priviledge m ha l 789

Password console l 123 Mi khi kt ni vo router th c cu thng bo: CCNA NHAT_NGHE

Thi gian router t kha l 5 pht 30 giy

Cc cu thng bo ca router t ng xung hng Password telnet vo router l Telnet_RouterX

t a ch cho interface ethenet 0 ca router l 192.168.2.150+X

t cu ghi nh cho int e0 l connect to LAN

Lu cu hnh vo NVRAM

Reload v kim tra li cc cu hnh va lm xong. Router ca bn phi kim tra password 2 ln, lun c cu thng bo mi khi connect vo router, phi ping c cc router khc.

B.Thc hin tip phn sau nu cn thi gian: i password console thnh 321

b hn password priviledge mode

khng cho router t logout (t kha)

b a ch IP ADD ca Ether 0 ng thi tt Ether 0

Sau khi thc hin phn B th router ca bn ch cn 1 password duy nht l 321, khng c a ch IP ADD v khng t logout.CC BN THC HIN BI THC HNH TRN KHNG C THAM KHO BT C TI LIU NO. CH DNG CC LNH GIP CA IOS.CISCO DISCOVERY PROTOCOL:

Cisco Discovery Protocol (CDP) l giao thc ring ca Cisco dng thu nhp thng tin v neighbor (lng ging). S dng CDP, bn c th bit c thng tin phn cng, giao thc ca cc thit b gn k, thng tin ny hu ch trong x l s c hay kim sot thit b trong mng.

Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17.Trnh by thng tin tng qut v CDP ca Router R1: show cdp

R1#show cdp

Global CDP information:

Sending CDP packets every 60 seconds

Sending a holdtime value of 180 seconds

Sending CDPv2 advertisements is enabled

R1#

Khong thi gian nh k m mt router gi cc packets dng CDP

Gi tr hold time router ny gi i l 180 giy.

Vic qung b CDP version 2 c cho php.

Xem thng tin tng qut v cdp ca cc thit b ln cn: show cdp neighbors

R1#show cdp neighbors

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge

S - Switch, H - Host, I - IGMP, r - Repeater

Device ID Local Intrfce Holdtme Capability Platform Port ID

sw1900003094FA530Eth 0 179 T S 1900 9

Router2 Eth 0 126 R 2500 Eth 0

Router16 Eth 0 170 R 2500 Eth 0

r4 Eth 0 155 R 2620 Fas 0/0

R3 Eth 0 139 R 2520 Eth 0

Theo v d ny, th R1 bit c hin c cc router v Switch c t : Router 2 , Router 16, Router r4, Router R3, v Sw1900, gi tr holdtime, loi platform ca tng thit b ny, nhng thit b ny ni vi R1 bng cng g ca n (Port ID) v ni vo interface Ethernet 0 ca R1

Xem thng tin chi tit v cdp ca cc thit b ln cn: show cdp neighbors detailR1#show cdp neighbors detail

-------------------------

Device ID: sw1900003094FA5300Entry address(es):

IP address: 192.168.2.252Platform: cisco 1900, Capabilities: Trans-Bridge Switch

Interface: Ethernet0, Port ID (outgoing port): 9

Holdtime : 169 sec

Version :

V8.01

advertisement version: 1

-------------------------

Device ID: Router2Entry address(es):

IP address: 192.168.2.152

Platform: cisco 2500, Capabilities: Router

Interface: Ethernet0, Port ID (outgoing port): Ethernet0

Holdtime : 176 sec

Version :


--More





Duplex: half

-------------------------


IP address: 192.168.2.166



Holdtime : 158 sec

Version :






Duplex: half

--More-- (cn na)

Bit chi tit hn v cc thit b ln cn: a ch IP , versionLnh tng ng vi show cdp neighbors detail l show cdp entry *R1#show cdp entry *

-------------------------

Device ID: sw1900003094FA5300Entry address(es):

IP address: 192.168.2.252

Platform: cisco 1900, Capabilities: Trans-Bridge Switch

Interface: Ethernet0, Port ID (outgoing port): 9

Holdtime : 169 sec

Version :

V8.01


-------------------------


IP address: 192.168.2.152



Holdtime : 176 sec

Version :


--More





Duplex: half

-------------------------


IP address: 192.168.2.166



Holdtime : 158 sec

Version :






Duplex: half

--More-- (cn na)

Xem thng tin traffic v cdp ca Router R1:

R1#show cdp traffic

CDP counters :

Total packets output: 177, Input: 818

Hdr syntax: 0, Chksum error: 0, Encaps failed: 6

No memory: 0, Invalid packet: 0, Fragmented: 0

CDP version 1 advertisements output: 87, Input: 447

CDP version 2 advertisements output: 90, Input: 371

Lnh show cdp traffic hin th lu lng ti interface gm c s gi CDP gi nhn v b li.

Thng tin trng thi CDP trn port hay interface hin th bng lnh show cdp interface (sh cdp int)R1#show cdp interface

Ethernet0 is up, line protocol is up

Encapsulation ARPA


Holdtime is 180 seconds

Serial0 is administratively down, line protocol is down

Encapsulation HDLC




Encapsulation HDLC



Tt CDP hon ton trn router dng lnh: no cdp runR1#conf t


R1(config)#no cdp run

R1(config)#^Z

R1#show cdp

01:36:31: %SYS-5-CONFIG_I: Configured from console by console inter

R1#show cdp int

R1#show cdp interface

% CDP is not enabled

Tt CDP trn tng interface dng lnh: no cdp enableR1#show cdp

% CDP is not enabled

R1#conf t


R1(config)#cdp run //bt li CDP trn ton b router R1R1(config)#^ZR1#show cdp //kim tra li, thy R1 bt li CDP Global CDP information:



Sending CDPv2 advertisements is enabledR1#show cdp interface

Ethernet0 is up, line protocol is up // cc interface chy CDP Encapsulation ARPA // lu , hin ti E0 ang cha CDP Sending CDP packets every 60 seconds



Encapsulation HDLC




Encapsulation HDLC



R1#conf t


R1(config)#interface e0R1(config-if)#no cdp enable

R1(config-if)#^Z

R1#

01:37:56: %SYS-5-CONFIG_I: Configured from console by console

R1#

R1#show cdp //Kim li, thy CDP vn chy trn R1Global CDP information:



Sending CDPv2 advertisements is enabled

R1#show cdp interface //nhng interface e0 b tt cdpSerial0 is administratively down, line protocol is down

Encapsulation HDLC




Encapsulation HDLC



Nh vy ta tt cdp trn interface ethernet 0.

TELNET:

Telnet l mt giao thc u cui o (virtual terminal) l mt phn ca b giao thc TCP/IP. Telnet cho php to kt ni vi thit b t xa, thu nhp thng tin v chy chng trnh.

Lab ny hng dn dng lnh telnet v cc lnh lin quan trn router.

Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17.t password cho cc ng VTYR1(config)#line vty 0 4


R1(config-line)#password telnetpassR1(config-line)#exit

t password cho Global modeR1(config)#enable sec

R1(config)#enable secret 789

Cu hnh a ch IP cho interface ethernet 0R1(config)#interface e0

R1(config-if)#ip address 192.168.2.151 255.255.255.0R1(config-if)#no shut

R1(config-if)#^Z

R1#

R1#ping 192.168.2.153Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 192.168.2.153, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms

Router R3 c cu hnh a ch IP cho e0 l: 192.168.2.153 /24, by gi, ng ti Router R3, ta telnet vo router R1:

R3#telnet 192.168.2.151

Trying 192.168.2.151 ... Open


Password: telnetpassR1>en

Password: 789R1#

Lu : R3 s khng th no telnet vo c R2, nu R2 cha c cu hnh password vty v R3 s nhn thng bo li nh sau:

R3#telnet 192.168.2.152

Trying 192.168.2.152 ... Open

.

Password required, but none set[Connection to 192.168.2.152 closed by foreign host]

R3#

( Virtual terminal (VTY) lines cho php vic truy cp vo router thng qua cc phin ni kt Telnet. VTY lines khng ni trc tip vo cc interfaces nh cch TTY ni vo asynchronous interface m l cc kt ni ovo router thng qua a ch ca ethernet port (interface ethernet). Router to nhng VTY lines mt cch linh ng, trong khi TTY lines l ch ni kt vo nhng cng vt l. Khi ngi dng kt ni vo router bng VTY line, ngi ang kt ni vo mt cng o trn interfaceKhi t mt router ny m telnet vo mt router khc v mun thot tr li router ca mnh, th c 2 dng:

a. Thot hn.

b. Tm thot.

a. Router R3 telnet vo Router R1 v thot hn (chm dt hon ton session):

R3#telnet 192.168.2.151

Trying 192.168.2.151 ... Open


Password:

R1>en

Password:

R1#exit[Connection to 192.168.2.151 closed by foreign host]

b. Router R3 telnet vo Router R1 v tm thot v Router ca mnh (tr li R3, nhng vn gia session vi R1):

R3#telnet 192.168.2.151

Trying 192.168.2.151 ... Open


Password:

Password:

Password:

R1>en Password:

R1#

ti y nhn t hp phm Ctrl+Shift+6 cng lc, bung phm ra, ri nhn xR3#

Sau khi tm thot, ta c th dng lnh sau xem Router ca mnh (R3) ang cn gi session vi Router no hay khng, bng lnh sau:

R3#show sessionsConn Host Address Byte Idle Conn Name

* 1 192.168.2.151 192.168.2.151 0 2 192.168.2.151

By gi, nu R3 mun quay tr li session m trc ang telnet vo R1, th ch cn bm

1 ri Enter + Enter (bm 1 ri enter 2 ln): 1 chnh l s th t ca session.R3#1 (Enter)[Resuming connection 1 to 192.168.2.151 ... ] (Enter)R1#

Cn nu ti R3, sau khi tm thot session khi R1, m by gi mun chm dt session lun (khng mun quay tr li na) :

R3#show ses

R3#show sessions

Conn Host Address Byte Idle Conn Name

* 1 192.168.2.151 192.168.2.151 0 0 192.168.2.151

R3#disconnect 1Closing connection to 192.168.2.151 [confirm]

R3#show session

% No connections open

R3#

Trong lc R3 ang telnet v R1, R1 mun bit c ai ang telnet vo mnh :

R1#show users Line User Host(s) Idle Location

* 0 con 0 idle 00:00:00

18 vty 0 idle 00:00:16 192.168.2.153

Interface User Mode Idle Peer Address

R1#

By gi, nu R1 mun hy lun session m R3 ang telnet vo mnh:

R1#clear line 18

[confirm]

[OK]

R1#show user

Line User Host(s) Idle Location

* 0 con 0 idle 00:00:00

Interface User Mode Idle Peer Address

Ngay lc ny, bn mn hnh Hyperterminal ca R3 s xut hin thng bo sau:

[Connection to 192.168.2.151 closed by foreign host]R3#

TM TT:

1. ngi khc c th telnet vo Router ca mnh, Router ca mnh phi t password cho cc ng VTY:

Line vty 0 4

Login

Password telnetpass2. Khi telnet vo Router khc, mun thot hn (chm dt session) tr li Router mnh:

ExitLogout

Q3. Khi telnet vo ngi ta, mun tm thot v th bm t hp phm:

+ X

4. Mun bit Router mnh cn ang gi session vi router no:

Show sessions

5. Mun hy session ang tn ti ca mnh vi Router khc:

Disconnect [s th t session]

6. Mun bit ai ang telnet vo mnh:

Show users

7. Mun hy session ca ngi khc ang telnet vo mnh:

Clear line (s th t line)

CRACK PASSWORD:

Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17.Cc bc crack password ca Router Cisco:

1. Tt Bt router, nhn t hp phm trong 30 giy u

khi ng router vo rom monitor mode

2. Khi vo c monitor mode, ta cu hnh lnh gi tr cho config-register l 0x2142 bit th 6 c gi tr l 1 th router trong ln khi ng k s khng load cu hnh trong nvram vo ram, do ta s khng b hi password

3. Khi ng li router (trong ch 2142, khng load nvram), copy tan b cu hnh trong nvram vo ram4. Vo global config mode no cc lai password, hoc i li password theo mnh. Sau write li cu hnh vo nvram.

5. vo cc interface c cu hnh g thm lnh NO SHUT6. Dng lnh config-register i li gi tr l 0x2102 router s khi ng bnh thng tr li trong ln khi ng k tip.7. Sao lu li cu hnh vo NVRAM bng lnh WRITE v reload li router.2500 processor with 16384 Kbytes of main memory

Abort at 0x10CFB9E (PC)

>o/r 0x2142>i




00:02:15: %SYS-5-RESTART: System restarted --


IOS (tm) 2500 Software (C2500-I-L), Version 12.1(12), RELEASE

Router>

Router>

Router>

Router> SOFTWARE (fc1)


Compiled Mon 26-Nov-01 21:28 by kellythw

Router>

Router>

Router>en

Router#show run


Current configuration : 376 bytes

!

version 12.1




!

hostname Router //do boot vi 2142 nn khng c cu hnh!

!

!

ip subnet-zero

!

!

interface Serial0

no ip address

shutdown

--More

interface Serial1

no ip address

shutdown

!

interface TokenRing0

no ip address

shutdown

!

ip classless

no ip http server

!

!

line con 0

line aux 0

line vty 0 4

!

End

Router#copy startup-config running-config

Destination filename [running-config]? //bm phm enter701 bytes copied in 4.16 secs (175 bytes/sec)

Router#

R1#show run


Current configuration : 721 bytes

!

version 12.1




!

hostname R1 // c li cu hnh!

enable secret 5 $1$nsVj$eErWsNTNwP.jmJckAv8qEenable password 456!

ip subnet-zero

!

!

interface Ethernet 0 ip address 192.168.2.151 255.255.255.0 shutdown --More--

R1#

R1#conf t


R1(config)#no enable password

R1(config)#no enable secret

R1(config)#line console 0R1(config-line)#no password

R1(config-line)#exit

R1(config)#int e 0

R1(config-if)#no shut

R1(config-if)#endR1#wrBuilding configuration...

R1#show ver


IOS (tm) 2500 Software (C2500-I-L), Version 12.1(12), RELEASE SOFTWARE (fc1)


Compiled Mon 26-Nov-01 21:28 by kellythw

Image text-base: 0x03041C88, data-base: 0x00001000

ROM: System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1)

BOOTLDR: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1)

R6 uptime is 4 minutes

System returned to ROM by power-on

System image file is "flash:/r6_flash"

cisco 2500 (68030) processor (revision B) with 16384K/2048K bytes of memory.


Bridging software.


1 Token Ring/IEEE 802.5 interface(s)




--More--


R1#conf t


R1(config)#config-register 0x2102R1(config)#exit

R1#show ver

cisco 2500 (68030) processor (revision B) with 16384K/2048K bytes of memory.


Bridging software.


1 Token Ring/IEEE 802.5 interface(s)




--More--

Configuration register is 0x2142 (will be 0x2102 at next reload)

R6#reload

System configuration has been modified. Save? [yes/no]: yProceed with reload? [confirm]

TM TT:1. Bt, tt, Ctrl+break2. >o/r 0x2142>i3. Router#copy start run4. Router#conf t

Router(config)#no enable pass

Router(config)#no enable sec

Router(config)#line cons 0

Router(config-line)#no login

Router(config-line)#no pass

Router(config-line)#exit5.

Router(config)#int e 0

Router(config-if)#no shut

Router(config-if)#exit6.

Router(config)#conf 0x2102

Router(config)#end7.Router#WRITE

Router#reload* i vi router 2600 v 3600 th i li lnh:>o/r 0x2142 thnh rommon 1>confreg 0x2142

>i

thnh

rommon 2>reset

BACKUP V RESTORE CU HNH ROUTER:

Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17.BACKUP CU HNH ROUTER:

backup c cu hnh router ta s sao lu cu hnh ca router trong RAM n bt k mt my tnh no chy software TFTP. u tin, to mt folder C:\backup_config trn my tnh ca bn. Khi ng chng trnh TFTP trn my ca bn ln, vo mc propertie ca TFTP chn root directory l C:\backup_config, ng thi xem v ghi nhn s ip add ca TFTP server (192.168.2.X)Tip theo, vo hyper terminal ca router ping kim tra kt ni n TFTP.

RX#ping 192.168.2.X

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 192.168.2.X, timeout is 2 seconds:

!!!!!


rX#

Sau khi ping c TFTP, tin hnh vic backup cu hnh:

rX#copy run tftp

Address or name of remote host []? 192.168.2.XDestination filename [router-confg]?RX_backup_config //t tn file.!!

419 bytes copied in 9.308 secs (46 bytes/sec)

LU : X L S TH T CA ROUTER BN ANG KT NISau khi backup xong ta c th xem trn C:\backup_config s c 1 file tn l R1_backup_config. Ta c th xem file ny bng wordpad. Backup thnh cng.

RESTORE CU HNH ROUTER: restore cu hnh trn router, trc ht ta gi s router mt cu hnh (khng c cu hnh) ta dng lnh WRITE ERASE xa NVRAM ri dng lnh RELOAD khi ng li router (thc hin cc cu lnh trong phn XA CU HNH ROUTER trang 19)RX#write erase

Erasing the nvram filesystem will remove all configuration files! Continue? [confirm] //bm phm enter

[OK]

Erase of nvram: complete

RX#

*Mar 1 00:05:46.743: %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram

RX#reload //dng khi ng li router

Proceed with reload? [confirm] //bm phm enter

Ch : nu router ca bn xut hin cu hi yu cu save cu hnh router th phi tr li NO

00:04:56: %SYS-5-RELOAD: Reload requested

System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1)


F3: 7873484+123020+586988 at 0x3000060

............................

..............................

cisco 2620 (MPC860) processor (revision 0x200) with 45056K/4096K bytes of memory.

Processor board ID JAD05030IL1 (1384535827)

M860 processor: part number 0, mask 49

Bridging software.


1 FastEthernet/IEEE 802.3 interface(s)

2 Serial(sync/async) network interface(s)


16384K bytes of processor board System flash (Read/Write)




//bm phm enter


Sau ta phi t ti thiu l a ch IP ca router sao cho n c kh nng ping c TFTP server.

Router>en

Router#conf t

Router(config)#int e 0

Router(config-if)#ip add 192.168.2.X 255.255.255.0

Router(config-if)#no sh

Router(config-if)#end

Router#

Router#ping 192.168.2.X


Sending 5, 100-byte ICMP Echos to 192.168.2.X timeout is 2 seconds:

!!!!!


Router#

LU : X L S TH T CA ROUTER BN ANG KT NITip theo thc hin lnh copy tftp run restore

Router#copy tftp run

Address or name of remote host []? 192.168.2.X

Source filename []? RX_backup_config //tn file lc backup

Destination filename [running-config]? //bm phm enter

Accessing tftp://192.168.2.14/pc14_config...

Loading pc14_config from 192.168.2.1 (via Ethernet0): !!

[OK - 442/4096 bytes]


RX# //restore thnh cng

Lc ny router R1 ly li c cu hnh, sao lu cu hnh vo NVRAM dng lnh WRITE.

RX#write


[OK]

RX# //KT THC BI LAB BACKUP V RESTORE CU HNH ROUTER

BACKUP V RESTORE IOS:

Trong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17.Backup IOS

RX#sh flash //dng kim tra tn file ca IOS

System flash directory:

File Length Name/status

1 7824848 rX_flash //ghi nhn tn file cung cp trong qu _ trnh backup

[7824912 bytes used, 563696 available, 8388608 total]


RX#copy flash tftp

Source filename ? rX_flash //nhp tn file ghi nhn trn

Address or name of remote host []? 192.168.2.X //nhp a ch TFTP

Destination filename [rX_flash]?Rx_Backup_flash //nhp tn file backup

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!


RX#

Sau khi backup xong, kim tra trong root directory ca TFTP s c 1 file tn l Rx_Backup_flash. Backup thnh cng.RESTORE IOSRX#copy tftp flash

**** NOTICE ****

Flash load helper v1.0

This process will accept the copy options and then terminate

the current system image to use the ROM based image for the copy.

Routing functionality will not be available during that time.

If you are logged in via telnet, this connection will terminate.

Users with console access can see the results of the copy operation.

---- ******** ----

Proceed? [confirm] //bm enter xc nhn

Address or name of remote host []? 192.168.2.X //nhp a ch TFTP

Source filename []? Rx_Backup_flash //file backup trn TFTP

Destination filename [r1_flash]? rX_flash_new //tn IOS mi

Accessing tftp://192.168.2.X/Rx_Backup_flash...

Erase flash: before copying? [confirm] //bm enter xc nhn


%FLH: r1_flash from 192.168.2.X to flash ...

System flash directory:

File Length Name/status

1 7824848 R1_New_flash

[7824912 bytes used, 563696 available, 8388608 total]

Accessing file 'r1_flash' on 192.168.2.1...

Loading r1_flash from 192.168.2.1 (via Ethernet0): ! [OK]

Erasing device... eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee ...erased

Loading r1_flash from 192.168.2.1 (via Ethernet0): !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

[OK - 7824848/8388608 bytes]

Verifying checksum... OK (0x8030)

Flash copy took 0:03:51 [hh:mm:ss]

%FLH: Re-booting system after download

F3: 7712008+112808+595100 at 0x3000060

Restricted Rights Legend

Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph

(c) of the Commercial Computer Software Restricted

Rights clause at FAR sec. 52.227-19 and subparagraph

(c) (1) (ii) of the Rights in Technical Data and Computer

Software clause at DFARS sec. 252.227-7013.

cisco Systems, Inc.

170 West Tasman Drive

San Jose, California 95134-1706








Bridging software.




16 terminal line(s)




RX>en

RX#sh ver //kim tra kt qu






ROM: System Bootstrap, Version 11.0(10c), SOFTWARE

BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFTWARE (fc1)

r1 uptime is 0 minutes

System returned to ROM by reload

System image file is "flash:Rx_flash_new" //tn IOS mi



Bridging software.




16 terminal line(s)




STATIC ROUTE:

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.Lu vic cu hnh s IP ca cc interface serial thc hin ging nh vic cu hnh s IP ca cc interface Ethernet. Tuy nhin v cc int serial dng trong vic kt ni WAN do kt ni cc int serial trong phng LAB ta dng cross cable. V vy mt trong hai u ca ng kt ni s ng vai tr gi lp thit b DCE. xem v bit c u no l DCE, hy dng lnh:R_A#sh controllers s 0

HD unit 0, idb = 0x1027AC, driver structure at 0x108AF0

buffer size 1524 HD unit 0, V.35 DCE cable

cpb = 0x21, eda = 0x4940, cda = 0x4800

RX ring with 16 entries at 0x214800

00 bd_ptr=0x4800 pak=0x10C36C ds=0x21ECC8 status=80 pak_size=0

01 bd_ptr=0x4814 pak=0x10C110 ds=0x21E60C status=80 pak_size=0

02 bd_ptr=0x4828 pak=0x10BEB4 ds=0x21DF50 status=80 pak_size=0

03 bd_ptr=0x483C pak=0x10BC58 ds=0x21D894 status=80 pak_size=0

i vi u cable DCE cc bn phi dng thm lnh CLOCK RATE 64000 t tc clock ca ng kt ni. Lu l lnh ny khng thc hin trong mi trng thc t.Cc int loopback ca router R_B v R_C dng gi lp cc network vi mc ch thc hin bi lab static route.

Cu hnh IP address ca router R_A nh sau:

R_A#

R_A#conf t

R_A(config)#interface s0

R_A(config-if)#ip add 172.16.0.1 255.255.0.0

R_A(config-if)#clock rate 64000 //y l u DCE

R_A(config-if)#no shut

R_A(config-if)#exit

R_A(config)interface s1

R_A(config-if)#ip add 172.17.0.1 255.255.0.0

R_A(config-if)#clock rate 64000

R_A(config-if)#no shut

Cu hnh IP address ca router R_B nh sau:

R_B#

R_B#conf t

R_B(config)#interface s0

R_B(config-if)#ip add 172.16.0.2 255.255.0.0

R_B(config-if)#no shut

R_B(config-if)#exit

R_B(config)#interface loop 1 //lnh to int loopback


R_B(config-if)#exit

R_B(config)#interface loop 2


R_B(config-if)#end

Cu hnh ip address ca router R_C tng t router R_B.

Vi cu hnh nh trn, cc router router R_B v R_C khng th lin lc c vi nhau v Routing table ca chng khng cha y tt c cc network address, hin chng ch cha cc NET_ID ca cc interface kt ni vi chng m thi. Tng t nh vy, R_A khng th ping c cc int loopback ca R_B v R_C.Routing table cua R_A trc khi cu hnh static route:

R_A#

R_A#sh ip route

Codes: C - connected, S static, I - IGRP, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 OSPF external type 2, E - EGP

i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area

* - candidate default, U per-user static route, o - ODR

P - periodic downloaded static route

Gateway of last resort is not set

C 172.17.0.0/16 is directly connected, Serial1


R_A#ping 192.168.1.2



.....

Success rate is 0 percent (0/5)

Cc lnh thc hin cu hnh static route trn router R_A:R_A>en

R_A#conf t


R_A(config)#ip route 192.168.1.0 255.255.255.0 172.16.0.2




R_A(config)#end

R_A#

R_A#sh ip route

Codes: C - connected, S - static, I IGRP, R - RIP, M mobile, B BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area


E1 - OSPF external type 1, E2 OSPF external type 2, E EGP

i - IS-IS, L1 - IS-IS level-1, L2 IS-IS level-2, ia - IS-IS inter area

* - candidate default, U - per-user static route, o ODR





S 192.168.1.0/24 [1/0] via 172.16.0.2

S 192.168.2.0/24 [1/0] via 172.16.0.2

S 192.168.3.0/24 [1/0] via 172.17.0.2

S 192.168.4.0/24 [1/0] via 172.17.0.2

R_A#

R_A#ping 192.168.1.2



!!!!!


R_A#

Vy R_A c th ping c loop ca R_B v R_C.Cho n ti thi im ny R_B vn khng th lin lc c vi R_C, thc hin static route trn R_B nh sau:

R_B>en

R_B#conf t


R_B(config)#ip route 172.17.0.0 255.255.0.0 172.16.0.1



R_B(config)#end

R_B#

R_B#sh ip route

Codes: C - connected, S - static, I IGRP, R - RIP, M mobile, B BGP




i - IS-IS, L1 IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area




C 172.16.0.0/16 is directly connected, Serial0C 192.168.1.0/24 is directly connected, Loopback 1C 192.168.2.0/24 is directly connected, Loopback 2

S 172.17.0.0/16 [1/0] via 172.16.0.1

S 192.168.3.0/24 [1/0] via 172.16.0.1

S 192.168.4.0/24 [1/0] via 172.16.0.1

R_B#

R_B#ping 192.168.4.2



!!!!!


R_B#

Tng t cho router R_C.

Lu : R_B ch ping c R_C sau khi thc hin cu hnh static route trn c 3 router R_A, R_B v R_C.

CC LNH V HOSTNAME v SH INTERFACE:

Thng thng khi nhp mt chui k t khng ging vi cc cu lnh ca IOS, router s t ng i chui k t thnh s IP ADD. Do router khng bit a ch ca name server c th nn n s gi broadcast i tn.R_A#abc

Translating "abc"...domain server (255.255.255.255)

Translating "abc"...domain server (255.255.255.255)

(255.255.255.255)% Unknown command or computer name, or unable to find computer address

Ta c lnh ip name-server t a ch name server cho router

R_A#conf t

r1(config)#ip name-server 192.168.2.200

R_A#www.yahoo.com

Translating "www.yahoo.com"...domain server (192.168.2.200)

Translating "www.yahoo.com"...domain server (192.168.2.200)

(192.168.2.200)Translating "www.yahoo.com"...domain server (192.168.2.200) [OK]

Trying www.yahoo.akadns.net (66.94.230.41)... Destination unreachable; gateway or host down

tt ch t ng chuyn t tn sang s IP ta c lnh:

R_A#conf t

R_A(config)#no ip domain-lookup

R_A#ping r1

Translating "r1"

% Unrecognized host or address, or protocol not running.

R_A#abc

Translating "abc"

Translating "abc"

% Unknown command or computer name, or unable to find computer address

map static tn sang s IP ta c lnh:

R_A#conf t

R_A(config)#ip host r1 192.168.2.2

R_A#ping r1



!!!!!


Lnh kim tra cc tn v s IP ca router:

R_A#sh host

Default domain is not set

Name/address lookup uses static mappings

Host Flags Age Type Address(es)

r1 (perm, OK) 0 IP 192.168.2.2

www.yahoo.com (temp, EX) 0 IP 66.94.230.41 66.94.230.43

66.94.230.47 66.94.230.37

66.94.230.33 66.94.230.38

66.94.230.50 66.94.230.48

www.yahoo.akadns.net

www.yahoo.com (temp, UN) 0 X.121

abc (temp, UN) 0

abc (temp, UN) 0 X.121

Lnh kim tra trng thi ca INTERFACE:Khi thng bo c dng sau, ta c trng hp S0 cha cu hnh, cha c lnh NO SHUT (Serial0 is administratively down)

R_A#sh int s 0


Hardware is HD64570



Encapsulation HDLC, loopback not set


Khi cu hnh S0 v nh lnh NO SHUT, ta c th gp mt trong ba trng hp sau:

Serial1 is down, line protocol is down, c th do cable khng tt, router ni trc tip cha cu hnh IP ADD v NO SHUT, thng l do li ti lp physical

R_A#sh int s 0

Serial0 is down, line protocol is down

Hardware is HD64570






Serial1 is up, line protocol is down, y l li ti lp datalink, thng do hai u kt ni dng hai kiu encapsulation khc nhauR_A#sh int s 0

Serial0 is up, line protocol is down

Hardware is HD64570





Serial1 is up, line protocol is up, trng hp ny l trng hp bnh thng, khng gp vn ti lp 1 v 2, cc interface hoat ng tt

R_A#sh int s 0

Serial0 is up, line protocol is up

Hardware is HD64570





BI TP STATIC ROUTE :

Thc hin cu hnh static route trn cc router sau vi cc s IP c cho trong s .

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.Yu cu: Cc routing table trn mi router phi c 11 subnet

Tt c cc router u c th ping c cc a ch ca cc int loopback trn cc router cn li.

DEFAULT ROUTE:Trong trng hp bi tp trn ta nhn thy cc router R_B v R_C ch dng duy nht mt a ch next-hop routing, do n gin routing table ta c th dng default route. cu hnh default route hiu qu, ch nn cu hnh default route ti cc router c mt gateway ra ngoi. Cu lnh nh sau:R_B>en

R_B#conf t


R_B(config)#no ip routing //tt routingR_B(config)#ip rouitng //bt routingR_B(config)#ip route 0.0.0.0 0.0.0.0 10.10.0.0

R_B(config)#end

R_B#

Tng t cho router R_C.R_B#sh ip route

Codes: C - connected, S - static, I IGRP, R - RIP, M - mobile, B BGP




i - IS-IS, L1 IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area



Gateway of last resort is 10.10.0.0 to network 0.0.0.0

C 10.8.0.0/13 is directly connected, Serial0C 10.255.16.0/20 is directly connected, Loopback 1C 10.255.168.0/21 is directly connected, Loopback 2

C 10.255.32.0/21 is directly connected, Loopback 3

S* 0.0.0.0/0 [1/0] via 10.10.0.0

R_B#

R_B#ping 10.255.50.2



!!!!!


R_B#

DYNAMIC ROUTING PROTOCOL RIP:

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.Vic cu hnh IP address cc router nh trong hnh tng t nh trong phn static route. Sau y l cc bc thc hin cu hnh Dynamic routing protocol RIP

Cu hnh ti R1:

r1#conf t


r1(config)#router rip //bt chc nng routing RIP

r1(config-router)#network 192.168.10.0 //routing trn int s0

r1(config-router)#network 192.168.30.0 //routing trn int s1

r1(config-router)#network 10.0.0.0 //routing trn int loop 1

r1(config-router)#end

r1#

Cu hnh ti R2:

r2#conf t


r2(config)#

r2(config)#router rip

r2(config-router)#network 20.0.0.0




r2#

Tng t cho R3.

Lu : khi dng lnh Network 192.168.X.X th ch nhp vo tham s default netID ca a ch interface (default class A, B hoc C)Routing table ca cc router:

r1#sh ip route

Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B BGP

D - EIGRP, EX EIGRP external, O - OSPF, IA - OSPF inter area


E1 - OSPF external type 1, E2 - OSPF external type 2, E EGP






R 20.0.0.0/8 [120/1] via 192.168.10.2, 00:00:07, Serial0


R 192.168.20.0/24 [120/1] via 192.168.30.2, 00:00:02, Serial1

[120/1] via 192.168.10.2, 00:00:07, Serial0

C 10.0.0.0/8 is directly connected, Loopback1

R 30.0.0.0/8 [120/1] via 192.168.30.2, 00:00:02, Serial1

r1#

r2#sh ip route









R 192.168.30.0/24 [120/1] via 192.168.20.2, 00:00:09, Serial1

[120/1] via 192.168.10.1, 00:00:14, Serial0




R 10.0.0.0/8 [120/1] via 192.168.10.1, 00:00:14, Serial0

R 30.0.0.0/8 [120/1] via 192.168.20.2, 00:00:10, Serial1

r2#

r3#sh ip route










R 20.0.0.0/8 [120/1] via 192.168.20.1, 00:00:20, Serial0

R 192.168.10.0/24 [120/1] via 192.168.20.1, 00:00:20, Serial0

[120/1] via 192.168.30.1, 00:00:19, Serial1


R 10.0.0.0/8 [120/1] via 192.168.30.1, 00:00:19, Serial1


r3#

Cc hng route c in m trong hnh l cc route vi nhiu ng i khc nhau v cng bng metric nn RIP dng c 2 ng load balance. Nu khng cu hnh thm th default RIP c kh nng load balance trn 4 ng. Ngoi ra cn c th cu hnh cho RIP load balance t 1 n 6 ngCu hnh t tham s load balancer1#conf t



r1(config-router)#maximum-paths ? //t tham s loadbalance

Number of paths

Trong trng hp khng mun RIP gi update trn interface no th dng lnh passive-int

r1#conf t



r1(config-router)#passive-interface ?

Ethernet IEEE 802.3

Loopback Loopback interface

Null Null interface

Serial Serial

default Suppress routing updates on all interfaces

r1(config-router)#passive-interface e 0 //RIP s khng gui update trn e0

r1(config)#exit

r1#

Dng lnh sh ip protocol xem thng tin v routing protocol trn routerr1#sh ip protocols

Routing Protocol is "rip"

Sending updates every 30 seconds, next due in 22 seconds

Invalid after 180 seconds, hold down 180, flushed after 240

Outgoing update filter list for all interfaces is

Incoming update filter list for all interfaces is

Redistributing: rip

Default version control: send version 1, receive any version

Interface Send Recv Triggered RIP Key-chain

Loopback1 1 1 2

Serial0 1 1 2

Serial1 1 1 2

Automatic network summarization is in effect

Routing for Networks: //cc network ang c routing

10.0.0.0

192.168.10.0

192.168.30.0

Passive Interface(s): //cc interface ang trong trng thi passive

Ethernet0

Routing Information Sources: //cc router gi update cho R1

Gateway Distance Last Update

192.168.10.2 120 00:00:07

192.168.30.2 120 00:00:02

Distance: (default is 120)

r1#

thay i cc tham s v thi gian dng lnh timer basicr1#conf t



r1(config-router)#timers basic 60 200 200 300

r1(config-router)#^Z

r1#sh ip pro

Routing Protocol is "rip"





Redistributing: rip

Default version control: send version 1, receive any version

Interface Send Recv Triggered RIP Key-chain

Loopback1 1 1 2

Serial0 1 1 2

Serial1 1 1 2

Automatic network summarization is in effect

Routing for Networks:

10.0.0.0

192.168.10.0

192.168.30.0

Passive Interface(s):

Ethernet0

Routing Information Sources:


192.168.10.2 120 00:00:24

192.168.30.2 120 00:00:19


Cc thng tin v RIP update:

r1#debug ip rip

RIP protocol debugging is on

r1#

00:50:50: RIP: received v1 update from 192.168.10.2 on Serial0

00:50:50: 20.0.0.0 in 1 hops

00:50:50: 30.0.0.0 in 2 hops

00:50:50: 192.168.20.0 in 1 hops

r1#


00:50:55: 20.0.0.0 in 2 hops

00:50:55: 30.0.0.0 in 1 hops

00:50:55: 192.168.20.0 in 1 hops

r1#

00:51:13: RIP: sending v1 update to 255.255.255.255 via Loopback1 (10.0.0.1)

00:51:13: RIP: build update entries

00:51:13: network 20.0.0.0 metric 2

00:51:13: network 30.0.0.0 metric 2

00:51:13: network 192.168.10.0 metric 1

00:51:13: network 192.168.20.0 metric 2

00:51:13: network 192.168.30.0 metric 1

00:51:13: RIP: sending v1 update to 255.255.255.255 via Serial0 (192.168.10.1)


00:51:13: network 10.0.0.0 metric 1

00:51:13: network 30.0.0.0 metric 2

00:51:13: network 192.168.30.0 metric 1

00:51:13: RIP: sending v1 update to 255.255.255.255 via Serial1 (192.168.30.1)


r1#

00:51:13: network 10.0.0.0 metric 1

00:51:13: network 20.0.0.0 metric 2

00:51:13: network 192.168.10.0 metric 1

r1#

00:51:31: %LINK-3-UPDOWN: Interface Serial1, changed state to down

00:51:32: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial1, changed state to down

r1#

00:51:33: RIP: sending v1 flash update to 255.255.255.255 via Loopback1 (10.0.0.1)

00:51:33: RIP: build flash update entries

00:51:33: network 30.0.0.0 metric 16

00:51:33: network 192.168.30.0 metric 16

00:51:33: RIP: sending v1 flash update to 255.255.255.255 via Serial0 (192.168.10.1)

00:51:33: RIP: build flash update entries

00:51:33: network 30.0.0.0 metric 16

00:51:33: network 192.168.30.0 metric 16


00:51:33: 30.0.0.0 in 16 hops (inaccessible)



r1#

Trong trng hp c mt netID no thay i trng thi t UP sang DOWN th RIP s update vi metric=16.

DYNAMIC ROUTING PROTOCOL IGRP:IGRP c mt s c im khc so vi RIP, tuy nhin vic cu hnh v nguyn l hot ng ca chng l gn ging nhau. im khc bit l cch tnh metric ca IGRP da trn Bandwidth v delay ch khng c tnh bng hop count nh RIP. c im na l IGRP c kh nng load balance unequal.S v a ch IP address c cu hnh ging nh RIP

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.Cu hnh IGRP ti R1:r1(config)#router igrp 10

r1(config-router)#net 192.168.10.0




r1#

Cu hnh IGRP ti R2:

r2(config)#router igrp 10





r2#

Cu hnh IGRP ti R3:






r3#

Lu : s AS trn cc router phi ging nhau.Routing table ti R1:r1#sh ip route

Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP



E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP


* - candidate default, U - per-user static route, o - ODR




I 20.0.0.0/8 [100/8976] via 192.168.10.2, 00:00:56, Serial0


I 192.168.20.0/24 [100/10476] via 192.168.10.2, 00:00:56, Serial0

[100/10476] via 192.168.30.2, 00:01:11, Serial1


I 30.0.0.0/8 [100/8976] via 192.168.30.2, 00:01:11, Serial1

Routing table ti R2:

r2#sh route


I 192.168.30.0/24 [100/10476] via 192.168.10.1, 00:00:52, Serial0

[100/10476] via 192.168.20.2, 00:01:20, Serial1




I 10.0.0.0/8 [100/8976] via 192.168.10.1, 00:00:52, Serial0

I 30.0.0.0/8 [100/8976] via 192.168.20.2, 00:01:20, Serial1

Routing table ti R3:

r3#sh ip route



I 20.0.0.0/8 [100/8976] via 192.168.20.1, 00:01:10, Serial0

I 192.168.10.0/24 [100/10476] via 192.168.20.1, 00:01:10, Serial0

[100/10476] via 192.168.30.1, 00:00:57, Serial1


I 10.0.0.0/8 [100/8976] via 192.168.30.1, 00:00:57, Serial1

30.0.0.0/24 is subnetted, 1 subnets

Xem c 3 bng routing ta nhn xt thy IGRP load balance equal. By gi thay i tham s bandwidth v delay s nh hng n metric ca c 3 router.

Thay i bandwidth v delay ca R1r1#conf t


r1(config)#int s 0

r1(config-if)#band 128

r1(config-if)#delay 2000

r1(config-if)#int s 1

r1(config-if)#band 64

r1(config-if)#delay 4000

r1(config-if)#end

r1#

r1#cle ip route * //dng refresh routing table

Tng t cho R2 v R3.

Bng routing mi nh sau:

r1#sh ip route



I 20.0.0.0/8 [100/80625] via 192.168.10.2, 00:00:15, Serial0


I 192.168.20.0/24 [100/84125] via 192.168.10.2, 00:00:15, Serial0


I 30.0.0.0/8 [100/84625] via 192.168.10.2, 00:00:15, Serial0

r2#sh ip route


I 192.168.30.0/24 [100/84125] via 192.168.20.2, 00:00:24, Serial1




I 10.0.0.0/8 [100/80625] via 192.168.10.1, 00:00:25, Serial0

I 30.0.0.0/8 [100/4656] via 192.168.20.2, 00:00:24, Serial1

r3#sh ip route



I 20.0.0.0/8 [100/82625] via 192.168.30.1, 00:00:30, Serial1

I 192.168.10.0/24 [100/82125] via 192.168.30.1, 00:00:30, Serial1


I 10.0.0.0/8 [100/80625] via 192.168.30.1, 00:00:30, Serial1


C 30.0.0.0 is directly connected, Loopback1

Vy c 3 bng routing u khng cn cc ng load balance. Default IGRP ch load balance equal. Mun IGRP load balance unequal phi t tham s VARIANCEt variance trn R1:r1#conf t



r1(config-router)#variance 128


r1#

Tng t cho R2 v R3

Cc bng routing mi sau khi thm tham s VARIANCE nh sau:

r1#sh ip route



I 20.0.0.0/8 [100/80625] via 192.168.10.2, 00:00:48, Serial0


I 192.168.20.0/24 [100/84125] via 192.168.10.2, 00:00:48, Serial0


I 30.0.0.0/8 [100/84625] via 192.168.10.2, 00:00:48, Serial0

[100/160750] via 192.168.30.2, 00:00:31, Serial1

r1#

r2#sh ip route


I 192.168.30.0/24 [100/84125] via 192.168.20.2, 00:00:37, Serial1




I 10.0.0.0/8 [100/80625] via 192.168.10.1, 00:00:40, Serial0

I 30.0.0.0/8 [100/4656] via 192.168.20.2, 00:00:37, Serial1

r2#

r3#sh ip route



I 20.0.0.0/8 [100/82625] via 192.168.30.1, 00:00:46, Serial1

[100/160750] via 192.168.20.1, 00:01:00, Serial0

I 192.168.10.0/24 [100/82125] via 192.168.30.1, 00:00:46, Serial1

[100/162250] via 192.168.20.1, 00:01:00, Serial0


I 10.0.0.0/8 [100/80625] via 192.168.30.1, 00:00:46, Serial1


C 30.0.0.0 is directly connected, Loopback1

r3#

Vy nhn thy routing table mi c metric ln hn routing table c v gim bandwidth, tng delay. ng thi xut hin cc ng load balance unequal (vi metric khc nhau).

Kim tra cu hnh routing trn R1r1#sh ip protocol





Default networks flagged in outgoing updates

Default networks accepted from incoming updates

IGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0

IGRP maximum hopcount 100

IGRP maximum metric variance 1

Redistributing: igrp 10

Routing for Networks:

10.0.0.0

192.168.10.0

192.168.30.0

Routing Information Sources:


192.168.10.2 100 00:00:33

192.168.30.2 100 00:00:49


Qu trnh update ca IGRP:

r1#debug ip igrp trans

IGRP protocol debugging is on

r1#

02:48:59: IGRP: received update from 192.168.30.2 on Serial1

02:48:59: network 192.168.20.0, metric 164250 (neighbor 160250)


r1#






r1#

02:49:42: network 192.168.30.0, metric=160250

02:49:42: network 10.0.0.0, metric=501

02:49:42: IGRP: sending update to 255.255.255.255 via Serial1 (192.168.30.1)

02:49:42: network 20.0.0.0, metric=80625

02:49:42: network 192.168.10.0, metric=80125

r1#

02:49:42: network 192.168.20.0, metric=84125

02:49:42: network 10.0.0.0, metric=501

r1#


02:50:34: network 192.168.30.0, metric 4294967295 (inaccessible)




02:50:34: IGRP: edition is now 10

02:50:34: IGRP: sending update to 255.255.255.255 via Loopback1 (10.0.0.1)

02:50:34: network 192.168.30.0, metric=160250

02:50:34: network 20.0.0.0, metric=80625

02:50:34: network 192.168.10.0, metric=80125

02:50:34: network 192.168.20.0, metric=4294967295

02:50:34: network 30.0.0.0, metric=160750

02:50:34: IGRP: sending update to 255.255.255.255 via Serial0 (192.168.10.1)

02:50:34: network 192.168.30.0, metric=160250

02:50:34: network 192.168.20.0, metric=4294967295

02:50:34: network 10.0.0.0, metric=501

02:50:34: network 30.0.0.0, metric=160750

r1#no debug all

All possible debugging has been turned off

r1#

Khi c mt netID no chuyn trng thi DOWN, IGRP update vi metric 4294967295 l maximum metric ca IGRP.BI TP ROUTING PROTOCOL RIP V IGRP

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.A. Cu Hnh Cc Router Trong S Bng RIP Vi Yu Cu Sau: Tt c cc router u ping c tt c cc a ch loopback ca cc router cn li.

Cc router R1, R2, R3 khng c cc route loadbalance.

Thi gian update l 60s 240s 240s 360s

B. Cu Hnh Thm Cc Router Trong S Bng IGRP Vi Yu Cu Sau: Tt c cc router u ping c tt c cc a ch loopback ca cc router cn li.

iu chnh tham s:S0R1---S0R2

bandwidth = 64K bps,

delay = 20000

S1R1---S1R3

bandwidth = 128K bps,delay = 10000

S1R2---S0R3

bandwidth = 256K bps,delay = 8000 Cu hnh sao cho cc router loadbalance unequal pathC.Yu Cu Thm Trong Trng Hp Cn Thi Gian:

Gii thch ti sao ti router R1 khng thy c cc subnet ca cc int LOOP trn cc router khc (R2, R3). Tng t i vi R2 v R3.

Gii thch ti sao hin ti mi router ang chy 2 protocol RIP v IGRP nhng ti sao trn routing table ch c cc routes hc c bng IGRP.

Thc hin cu hnh thm cho RIP sao cho tt c cc router u dng RIP routing, ch l khng tt IGRP. Phn tch hot ng ca classfull routing protocol.

DYNAMIC ROUTING PROTOCOL EIGRP:EIGRP l protocol c pht trin da trn IGRP do n c cc c tnh ca IGRP l cch tnh metric v loadbalance unequal cng nh support multi protocol.im khc bit l EIGRP h tr VLSM v l loi classless routing protocol.

Cc cu lnh cu hnh EIGRP ging vi IGRP, c mt s khc bit s phn tch sau.

S ni dy v a ch IPTrong lab ny yu cu bn thc hin trc cc cu lnh trong phn XA CU HNH ROUTER trang 19, sau thc hin tip phn TM TT trang17. Lu khi t s IP ADD theo s . Hn ch tham kho ti liu trong khi thc hin cc lnh c.Cu hnh a ch IP ADD ca cc int ging trong s , cu hnh routing EIGRP cn bn nh sau:

Ti router R1:R1#conf t


R1(config)#int s 0

R1(config-if)#ip add 172.16.0.1 255.255.0.0


R1(config-if)#clo ra 64000

R1(config-if)#int s 1

R1(config-if)#ip add 172.17.0.1 255.255.0.0

R1(config-if)#clo ra 64000


R1(config-if)#

R1(config-if)#exit

R1(config)#router eigrp 10

R1(config-router)#network 172.16.0.0


r1(config-router)#no eigrp log-neighbor-warnings


r1#

Ti router R2:r2(config)#router eigrp 10


r2(config-router)#network 192.168.1.0 //ch nh default netID


r2#

Ti router R3:

r3(config)#router eigrp 10


r3(config-router)#network 192.168.2.0 //ch nh default netID


r3#

Routing table ca cc router sau khi cu hnh xong:r1#sh ip route











D 192.168.1.0/24 [90/2297856] via 172.16.0.2, 00:00:20, Serial0

D 192.168.2.0/24 [90/2297856] via 172.17.0.2, 00:00:20, Serial1

r2#sh ip route

Codes: C - connected, S - static, I - IGRP, R - RIP, M mobile, B BGP






P periodic downloaded static route


D 172.17.0.0/16 [90/2681856] via 172.16.0.1, 00:01:08, Serial0

C 1

Ccna Masterit Lab

Documents