4. CLASIFICACIONES SEGÚN DIVERSAS VARIABLES
4.2. Rama de actividad
www.ccieuniversity.com
(This lab builds on the previous lab)
Task 1
Configure clear text authentication between R1 and R2 and MD5 authentication between R3 and R4. Use “cisco” to be the password.
To enable authentication for RIP version 2, a key must be defined and then applied to the interface.
RIP and EIGRP use key chain authentication, in which a key chain is configured.
Within that key chain a key is defined and a keystring (Password) is assigned to the defined key. Lastly the key chain is assigned to the interface and the authentication type is configured. RIP can be configured to authenticate with clear text or MD5
On R1
R1(config)#key chain TEST R1(configkeychain)#key 1
R1(configkeychainkey)#keystring cisco R1(config)#int S0/0.12
R1(configif)#ip rip authentication keychain TEST
On R2
R2(config)#key chain TEST R2(configkeychain)#key 1
R2(configkeychainkey)#keystring cisco R2(config)#int S0/0.21
R2(configif)#ip rip authentication keychain TEST
On R3
R3(config)#key chain TEST R3(configkeychain)#key 1
Lab 2
RIPv2 Authentication
www.ccieuniversity.com
R3(configkeychainkey)#keystring cisco R3(config)#int S0/0.34
R3(configsubif)#ip rip authentication keychain TEST R3(configsubif)#ip rip authentication mode md5
On R4
R4(config)#key chain TEST R4(configkeychain)#key 1
R4(configkeychainkey)#keystring cisco R4(configkeychainkey)#int S0/0.43
R4(configsubif)#ip rip authentication keychain TEST R4(configsubif)#ip rip authentication mode md5
To verify the configuration:
On R1
Routing Protocol is "rip"
Outgoing update filter list for all interfaces is not set Incoming update filter list for all interfaces is not set Sending updates every 60 seconds, next due in 35 seconds
Flash update is suppressed when next update due within 10 seconds Invalid after 360 seconds, hold down 360, flushed after 480
Redistributing: rip
Default version control: send version 2, receive version 2 Interface Send Recv Triggered RIP Keychain
FastEthernet0/0 2 2 Note the key chain in
Serial0/0.21 2 2 TEST Use is TEST
Loopback0 2 2
Task 2
Remove the configuration commands from this lab before proceeding to the next lab.
www.ccieuniversity.com
Use the topology and IP addressing from Lab1
Task 1
Configure RIPv2 on R1, R2, R3, and R4 and advertise their directly connected networks, ensure that auto summarization is disabled on all routers.
Task 2
R1 and R2 should exchange their updates using the Multicast destination of 224.0.0.9, whereas R2 and R3 should exchange their updates via Unicast.
RIPv2 by default sends its updates to the destination address of 224.0.0.9, this behavior can be changed such that the updates are sent to the neighbor’s IP address (Unicast) or to the broadcast (255.255.255.255) address, in this task we only need to be concerned with R2 and R3’s configuration, since R1 and R2 will send their updates to 224.0.0.9 (Multicast) address by default.
On R2
R2(config)#router rip
R2(configrouter)#passiveinterface F0/0
The passiveinterface command stops RIP from sending updates out of a specified interface. This router will still process the updates that it receives through F0/0 interface. Another way to handle this task is to configure “passiveinterface
default”. This command stops sending RIP updates out of all interfaces, and then we can configure “neighbor” command to send updates ONLY to the specified
neighbor. If the neighbor command is used without the passiveinterface command, RIP will send two updates, one to Multicast and another to a Unicast destination.
R2(configrouter)#neighbor 131.1.23.3
On R3
R3(config)#router rip
R3(configrouter)#passiveinterface F0/0 R3(configrouter)#neighbor 131.1.23.2
Lab 3
Configuring RIPv2 Updates
www.ccieuniversity.com
Task 3
R3 and R4 should exchange updates via Broadcast.
On R3
R3(config)#int s0/0.34
R3(configsubif)#ip rip v2broadcast
On R4
R4(config)#int s0/0.43
R4(configsubif)#ip rip v2broadcast
The “IP rip v2broadcast” is used to send version 2 updates to a destination address of 255.255.255.255 for hosts/routers that do not listen to Multicast addresses.
Task 4
Remove the configuration commands form this lab before proceeding to the next lab.
www.ccieuniversity.com
Use the topology and IP addressing from Lab1
Task 1
R1 should NOT be configured with any routing protocol. Configure a static route for network 1.0.0.0 /8 on R2 with a next hop IP address of 131.1.12.1, and configure a static default route on R1 pointing to R2’s S0/0.21 IP address (131.1.12.2).
On R1
R1(config)#ip route 0.0.0.0 0.0.0.0 131.1.12.2
On R2
R2(config)#ip route 1.0.0.0 255.0.0.0 131.1.12.1
Task 2
Configure RIPv2 on R2, R3 and R4 and advertise their connected networks. Ensure that auto summarization is disabled.
On R2
R2(config)#router rip
R2(configrouter)#netw 131.1.0.0 R2(configrouter)#netw 2.0.0.0 R2(configrouter)#ver 2
R2(configrouter)#no au
On R3
R3(config)#router rip
R3(configrouter)#netw 131.1.0.0 R3(configrouter)#netw 3.0.0.0
Lab 4
Configuring Default routes
www.ccieuniversity.com
R3(configrouter)#ver 2 R3(configrouter)#no au
On R4
R2(config)#router rip
R4(configrouter)#netw 131.1.0.0 R4(configrouter)#no au
R4(configrouter)#ver 2
R4(configrouter)#netw 4.0.0.0
Task 3
Configure R2 to inject a default route into RIP routing domain. This configuration should be tested in three different ways.
Default route injection can be configured in three ways as follows:
Defaultinformation originate
Configuring a Static default route, and then redistributing the static route into RIP routing domain.
IP defaultnetwork command.
First method:
On R2
R2(config)#router rip
R2(configrouter)#defaultinformation originate
To verify the configuration:
Ping 1.1.1.1
You should be successful
www.ccieuniversity.com
The second method:
Remove the previous command from R2.
On R2
R2(configrouter)#no defaultinformation originate Remove the static route for network 1.0.0.0 from R2.
R2(config)#no ip route 1.0.0.0 255.0.0.0 131.1.12.1
Configure a static default route pointing to 131.1.12.1 and then redistribute static routes into RIP routing domain.
R2(config)#ip route 0.0.0.0 0.0.0.0 131.1.12.1 R2(config)#router rip
R2(configrouter)#redistribute static
Note, this method can also be configured using the following steps:
Do not remove the static route from R2 for network 1.0.0.0 /8.
Create a static default route pointing to NULL0
Redistribute static into RIP.
The third method:
Remove the static default route that was configured in the previous step from R2:
R2(config)#No ip route 0.0.0.0 0.0.0.0 131.1.12.1
Remove the redistribute static that was configured in the previous step from R2:
R2(config)#router rip
R2(configrouter)#No redistribute static
Configure ip defaultnetwork command to inject a default route into RIP’s routing domain.
On R2
R2(config)#ip defaultnetwork 2.0.0.0
www.ccieuniversity.com
The above command injects a default route into RIP’s routing domain. This tells the other routers that if they are not aware of any routes, they should send it to R2.
To verify the configuration:
On R4
Ping 1.1.1.1Note, you should be getting unreachable messages and your ping should not be successful. The actual echo messages are getting to R2, but R2 does not have a route to network 1.0.0.0 /8, therefore, to rectify this problem we have to configure a static route on R2 that is pointing to 131.1.12.1 as follows:
On R2
Ip route 1.0.0.0 255.0.0.0 131.1.12.1
Task 4
Remove the command/s from Task 1 and Task 3 before proceeding to the next task.
On R2
R2(config)#No Ip route 1.0.0.0 255.0.0.0 131.1.12.1 R2(config)#No ip defaultnetwork 2.0.0.0
On R1
R1(config)#No ip route 0.0.0.0 0.0.0.0 131.1.12.2
Task 5
Configure EIGRP AS 100 on R1 and R2 and advertise the following networks in this routing domain:
On R1 Advertise its directly connected networks and remove the static default route that points to 131.1.12.2.
www.ccieuniversity.com
On R2 Advertise network 131.1.12.0 /24.
On R1
Router eigrp 100 No au
Netw 1.0.0.0
Netw 131.1.12.0 0.0.0.255 Exit
No ip route 0.0.0.0 0.0.0.0 131.1.12.2
On R2
Router eigrp 100 No au
Netw 131.1.12.0 0.0.0.255
Task 6
Do not redistribute between the routing protocols and instead configure R2 to inject a default route into RIP’s routing domain. Choose any method to accomplish this task. R3 and R4 must use the default route to reach network 1.0.0.0 /8.