proyecto de casos de estudio ccna2 ing. justinianot para el proyecto
TRANSCRIPT
Caso de Uso CCNA 02
PROYECTO: CASO DE ESTUDIO CCNA 02
Ing. Jorge Justiniano Tapia
BO: 5952805
Santa Cruz – Bolivia
Julio de 2007
Ing. Jorge Justiniano T. 1
Caso de Uso CCNA 02
Descripción del problema.-
Una empresa tiene un grupo de personas a cargo del mantenimiento de las
diversas secciones de la infraestructura de redes. Varios técnicos han hecho un
excelente trabajo dentro de las pequeñas secciones de la red de la cuales son
responsables.
Uno de los responsables de una sección más amplia de la infraestructura renuncia
repentinamente a la empresa. Esto deja a mitad de camino el rediseño y la puesta
en marcha de dicha sección de la red. Se le asigna a un técnico la tarea de
finalizar el diseño y la puesta en marcha que quedaron inconclusas.
Objetivos generales.-
Los siguientes objetivos que se mencionan a continuación se obtubieron de
realizar el estudio de los requerimientos que la corporación necesita para con el
desarrollo de la implementación de una red informática.
Objetivos Específicos.-
1. Establecer la configuración física de la red, de acuerdo al diagrama y la
descripción correspondiente.
2. Efectuar correctamente una configuración básica de los routers
3. Crear y activar listas de control de acceso en los routers e interfaces
apropiadas.
4. Diagnosticar fallas y comprobar todas las interconexiones y listas de control
de acceso.
5. Proveer de documentación detallada, tanto del diseño como de las
configuraciones de los equipos.
Marco Teórico.-
Cableado estructurado
El Cableado Estructurado es una técnica o un sistema de cableado de redes
dentro del contexto de la capa 1 del modelo OSI, y que sigue una serie de
normativas de manera modular a efecto de proporcionar una obra física apropiada
Ing. Jorge Justiniano T. 2
Caso de Uso CCNA 02para el usuario desde el punto de vista de la necesidad de telecomunicaciones
presente y futura, ya que el seguir con los estándares para el cableado horizontal,
vertical, área de trabajo, cuarto de telecomunicaciones, cuarto de equipo y
entradas de servicios, regulados principalmente por los estándares EIA/TIA 569-A,
569, ANSI TIA/EIA-T568-B, ISO/IEC 11801 e IEEE 802.x. y las reglas de
administración de la infraestructura de red del estándar EIA/TIA 606, las cuales
deben ser proyectados a largo plazo, como de al menos 10 años. CISCO
ACADEMY CASO DE ESTUDIO PARA REDES
En el presente proyecto la norma que se utilizará para el cableado estructurado
será la ANSI/TIA/EIA-606 Administrations Standard for Telecommunication
Infrastructure of Commercial Buildings, (February 1993).
Esta norma Regula y sugiere los métodos para la administración de los sistemas
de telecomunicaciones en infraestructuras de edificios comerciales. Donde la
administración se refiere a establecer una nomenclatura de documentación para la
instalación del cableado estructurado, todos los cables paneles y salidas deben de
estar documentados tanto a simple vista como en su interior. Deben mantenerse
planos y/o diagramas de las instalaciones.
Dentro del cableado estructurado se definen los siguientes elementos:
1. Áreas de trabajo donde están ubicadas las estaciones de trabajo
2. POP (point of presence) lugar donde la operadora de telecomunicaciones
instala su punto de acceso.
3. IDF/MDF (intermediate/Main distribution facility) Son los lugares donde se sitúan
los equipos: como ser paneles de distribución, concentradores, conmutadores,
enrutadores, servidores.
· 1 IDF por cada 1000 metros cuadrados, de área de trabajo
· El MDF es el más cercano al POP
4. Cableado Horizontal y vertical, de 100 m de cable UTP
Ing. Jorge Justiniano T. 3
Caso de Uso CCNA 02El cableado horizontal es aquel que va horizontalmente desde las estaciones de
trabajo a los armarios de conexiones (patch panel) intermedios situados en
habitaciones de comunicaciones intermedios IDF’s.
5. El cableado vertical o backbone, es aquel que va desde los armarios de
conexiones intermedias hacia los armarios de comunicaciones Principales, en la
habitación de comunicación principal MDF.
6. Armarios de telecomunicaciones (Salas de telecomunicaciones), sirve como
punto de unión central para el cableado y el equipo de cableado que se usa para
conectar dispositivos en una LAN. Puede ser una habitación diseñada
especialmente, por lo general incluye:
Paneles de interconexión
Concentradores o HUBs
Puentes o Bridges
Switches
Routers
El bastidor de distribución es un marco de esqueleto simple que contiene equipos
como los mencionados anteriormente. Su altura varía entre 1 a 1.9 metros.
Ingieneria del proyecto.
Diseño de topología de red.-
Se debe escribir una descripción completa del proyecto, mediante un procesador
de palabras. Dado que la descripción de las funciones de la red se divide en varias
partes, sea cuidadoso a la hora de describir todas y cada una de las funciones, a
fin de que hasta los que no son especialistas puedan entenderlas.
Se puede utilizar Microsoft Excel o cualquier otro programa de planilla de
cálculos para facilitar la elaboración de la lista de equipos y sus números de
serie.
Se puede utilizar Cisco Network Designer (CND), Microsoft Visio o cualquier
otro programa de dibujo para hacer un croquis de la red.
Ing. Jorge Justiniano T. 4
Caso de Uso CCNA 02 Entregue documentación que especifique el procedimiento usado para
probar la seguridad. También se deberá incluir un plan de monitoreo de la
red.
Planteamiento del proyecto
A continuación se especifica el siguiente planteamiento para especificar todas
las características generales que tendrá el proyecto.
Se plantea crear dos órdenes de red una de direcciones pares y otra de
direcciones impares, para dar limitaciones y accesos a los equipos que se
configuren en ese rango de direcciones.
Pliticas de Seguridad.-
Las redes de orden impares:
Podrán acceder al servidor para aprovechar recursos que se le
administren desde el mismo.
No gozarán del servicio de Internet tampoco podrán utilizarse como
monitor para hacer mantenimiento de la red o de equipos de red.
Las redes pares.-
Estas tendrán el beneficio de tener el servicio de Internet y utilizar los
periféricos del orden de esa red, como ser impresoras, escaner etc.
Como también podrán usar los recursos del servidor que se les
administren desde el mismo.
Estos también servirán de monitor para la configuración y
mantenimiento de los equipos de redes.
Equipo de Administración de red.-
El monitor de administrador tendrá los permisos necesarios para administrar
todas las estaciones de trabajo como también los periféricos, hasta el servidor.
Croquis del diseño de la topología de red.-
Ing. Jorge Justiniano T. 5
Caso de Uso CCNA 02Este diagrama representa el nuevo diseño de la red y las subredes. Muestra los
routers, concentradores y switches, los circuitos y las estaciones de trabajo y los
servidores planificados para cada lugar. El servidor en el lugar llamado 'Center' es
un servidor de archivos al cual tienen acceso sólo las estaciones de trabajo de la
subred local. Todos los routers de la red se administran desde una estación de
trabajo en Center.
El siguiente diseño de topología de red esta diseñado en packet tracer 4.1 dando a
conocer las especificaciones técnicas de cableado, configuración y ordenamiento
de equipos.
Ámbito de direcciones de red.- Clase C
Cantidad requerida de subredes.- 8
Protocolo de enrutamiento.- Eigrp 100
Dirección de red.- 198.160.10.0
Mascara de red.- 255.255.255.240
Bits usados.- 28bits
Políticas de Seguridad:
Ing. Jorge Justiniano T. 6
Caso de Uso CCNA 02 Las maquinas impares pueden llegar al SERVIDOR mediante ICMP y
PING.
Las maquinas pares pueden realizar TELNET y PING a su Puerta de
Enlace.
La Printer LASER 02 puede responder a los ping de Cliente 02.
La Printer LASER 03 puede responder a los ping de Cliente 04.
La Printer LASER 01 puede responder a los ping de Monitor.
El equipo MONITOR puede administrar y verificar todos los Routers
mediante TELNET e ICMP.
El equipo MONITOR puede llegar con PING y http al SERVIDOR.
Direccionamiento de red.-
Nro
Sub-
Nets
Direcciones
de red
Rango de host usables Direcciones usadas
en hosts
Dirección de
broadcast
1 198.160.10.16 198.160.10.17 - 198.160.10.30 198.160.10.17
198.160.10.18
198.160.10.31
2 198.160.10.32 198.160.10.33 - 198.160.10.46 198.160.10.33
198.160.10.34
198.160.10.47
3 198.160.10.48 198.160.10.49 - 198.160.10.62 198.160.10.49
198.160.10.50
198.160.10.51
198.160.10.52
198.160.10.63
4 198.160.10.64 198.160.10.65 - 198.160.10.78 198.160.10.65
198.160.10.66
198.160.10.79
5 198.160.10.80 198.160.10.81 - 198.160.10.94 198.160.10.81
198.160.10.82
198.160.10.83
198.160.10.95
6 198.160.10.96 198.160.10.97 - 198.160.10.110 198.160.10.97
198.160.10.98
198.160.10.111
7 198.160.10.112 198.160.10.113 – 198.160.10.126 198.160.10.113
198.160.10.114
198.160.10.115
198.160.10.127
8 198.160.10.128 198.160.10.129 – 198.160.10.142 198.160.10.129
198.160.10.130
198.160.10.143
Configuración básica de los router y host.-
Ing. Jorge Justiniano T. 7
Caso de Uso CCNA 02
Descripción Boaz Center Eva
Hostname Boaz Center EvaConsole Password Cisco Cisco ciscoSecret Password Class class class
VTY Password Cisco Cisco ciscoSerial 0/0 IP address 198.160.10.17 198.160.10.34Serial 0/1 IP address 198.160.10.18 198.160.10.33*Serial 0/0 Clock Rate 125000*Serial 0/1 Clock Rate 125000Fa 0/0 IP address 198.160.10.81 198.160.10.49 198.160.10.97Fa 0/1 IP address 198.160.10.65 198.160.10.129 198.160.10.113Interfaces habilitadas (up)No shutdown
Fa 0/0Serial 0/1
Fa 0/0Serial 0/0Serial 0/1
Fa 0/0Serial 0/0
Add Routing Protocols IGRP IGRP IGRP Add Network Statements 198.160.10.0 198.160.10.0 198.160.10.0*Host Table-contains all routers and servers
CenterEva
Boaz Eva
BoazCenter
Message of the DaySerial 0/0 descriptionSerial 0/1 descriptionFa 0/0 descriptionFa 0/1 description
Equipo Comando Resultado
Cliente 1 Ping 198.160.10.81 BloqueadoCliente 1 Ping 198.160.10.52 ExitoCliente 2 Ping 198.160.10.81 ÉxitoCliente 2 telnet 198.160.10.81 Éxito Cliente 2 ping 198.160.10.66 ÉxitoCliente 3 Ping 198.160.10.113 BloqueadoCliente 3 Ping 198.160.10.52 exitoCliente 4 Ping 198.160.10.98 ExitoCliente 4 telnet 198.160.10.113 Éxito Monitor Ping 198.160.10.98 ÉxitoMonitor Ping 198.160.10.66 ÉxitoMonitor telnet 198.160.10.18 ÉxitoMonitor telnet 198.160.10.34 Éxito Monitor telnet 198.160.10.49 ÉxitoMonitor Ping 198.160.10.130 Éxito User Ping 198.160.10.51 ÉxitoUser Ping 198.160.10.130 BloqueadoUser Ping 198.160.10.52 exito
Configuraciones de periféricos.-
Esta es una muestra de la configuración guardada en la nvran de cada router y de
los host.
Configuración Router Boaz.-
SHOW STARTUP-CONFIG
Building configuration...
Current configuration : 1025 bytes
version 12.2
Ing. Jorge Justiniano T. 8
Caso de Uso CCNA 02no service password-encryption
hostname Boaz
enable password cisco
interface FastEthernet0/0
ip address 198.160.10.81 255.255.255.240
ip access-group 101 in
duplex auto
speed auto
interface FastEthernet1/0
ip address 198.160.10.65 255.255.255.240
duplex auto
speed auto
interface Serial2/0
no ip address
shutdown
interface Serial3/0
ip address 198.160.10.18 255.255.255.240
interface FastEthernet4/0
no ip address
shutdown
interface FastEthernet5/0
no ip address
shutdown
router eigrp 100
network 198.160.10.0
auto-summary
ip classless
access-list 101 permit icmp host 198.160.10.83 host 198.160.10.81
access-list 101 permit tcp host 198.160.10.83 host 198.160.10.81 eq telnet
access-list 101 permit icmp host 198.160.10.83 host 198.160.10.66
access-list 101 permit icmp host 198.160.10.82 host 198.160.10.52
access-list 101 permit tcp host 198.160.10.82 host 198.160.10.52 eq www
line con 0
password class
login
line vty 0 4
password cisco
login
end
Configuración router Center
SHOW STARTUP-CONFIG
Building configuration...
Current configuration : 1914 bytes
version 12.2
Ing. Jorge Justiniano T. 9
Caso de Uso CCNA 02no service password-encryption
hostname Center
enable secret 5 $1$c/rD$blDUFPuoQTK/8BsMofNmE1
enable password cisco
interface FastEthernet0/0
ip address 198.160.10.49 255.255.255.240
ip access-group 103 in
duplex auto
speed auto
interface FastEthernet1/0
ip address 198.160.10.129 255.255.255.240
duplex auto
speed auto
interface Serial2/0
ip address 198.160.10.17 255.255.255.240
clock rate 125000
interface Serial3/0
ip address 198.160.10.33 255.255.255.240
clock rate 125000
interface FastEthernet4/0
no ip address
shutdown
interface FastEthernet5/0
no ip address
shutdown
router eigrp 100
network 198.160.10.0
auto-summary
ip classless
access-list 103 remark accede a todos los routers
access-list 103 permit tcp host 198.160.10.51 host 198.160.10.49 eq telnet
access-list 103 permit tcp host 198.160.10.51 host 198.160.10.34 eq telnet
access-list 103 permit tcp host 198.160.10.51 host 198.160.10.18 eq telnet
access-list 103 remark accede al server mediante http
access-list 103 permit tcp host 198.160.10.51 host 198.160.10.52 eq www
access-list 103 remark accede a todas las impresoras laser
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.130
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.66
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.98
access-list 103 remark accede a todos los router mediante ping
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.34
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.18
access-list 103 remark accede a los host mediante ping
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.49
access-list 103 permit icmp host 198.160.10.51 host 198.160.10.52
access-list 103 remark accede a todo los puertos tcp
Ing. Jorge Justiniano T. 10
Caso de Uso CCNA 02access-list 103 permit tcp any any
line con 0
password cisco
login
line vty 0 4
password cisco
login
end
Configuración Router EVA.-
SHOW STARTUP-CONFIG
Building configuration...
Current configuration : 1079 bytes
version 12.2
no service password-encryption
hostname Eva
enable secret 5 $1$YQyI$MsuKFC1IA3KHrIqiyunk1.
enable password cisco
interface FastEthernet0/0
ip address 198.160.10.113 255.255.255.240
ip access-group 102 in
duplex auto
speed auto
interface FastEthernet1/0
ip address 198.160.10.97 255.255.255.240
duplex auto
speed auto
interface Serial2/0
ip address 198.160.10.34 255.255.255.240
interface Serial3/0
no ip address
shutdown
interface FastEthernet4/0
no ip address
shutdown
interface FastEthernet5/0
no ip address
shutdown
router eigrp 100
network 198.160.10.0
auto-summary
ip classless
access-list 102 permit icmp host 198.160.10.115 host 198.160.10.113
access-list 102 permit tcp host 198.160.10.115 host 198.160.10.113 eq telnet
access-list 102 permit icmp host 198.160.10.115 host 198.160.10.98
Ing. Jorge Justiniano T. 11
Caso de Uso CCNA 02access-list 102 permit tcp host 198.160.10.114 host 198.160.10.52 eq www
access-list 102 permit icmp host 198.160.10.114 host 198.160.10.52
line con 0
password cisco
login
line vty 0 4
password cisco
login
end
Show CDP NEIGHBORS en la configuración del router BOAZ
Boaz#show cdp neighbors
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Device ID Local Intrfce Holdtme Capability Platform Port ID
Center Ser 0 166 R PT1000 Ser 0
Switch Fas 0/0 166 S PT3000 Fas 0/1
Show CDP NEIGHBORS en la configuración del router CENTER
Center#SHOW CDP NEIGHBORS
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Device ID Local Intrfce Holdtme Capability Platform Port ID
Boaz Ser 0 129 R PT1000 Ser 0
Eva Ser 0 159 R PT1000 Ser 0
Switch Fas 0/0 129 S PT3000 Fas 1
Show CDP NEIGHBORS en la configuración del router EVA
Eva#show CDP NEIGHBORS
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Device ID Local Intrfce Holdtme Capability Platform Port ID
Center Ser 0 120 R PT1000 Ser 0
Switch Fas 0/0 119 S PT3000 Fas 0/1
Show IP ROUTE en la configuración del router EVA
Boaz#SHOW IP ROUTE
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
* - candidate default, U - per-user static route, o - ODR
P - periodic downloaded static route
Gateway of last resort is not set
Ing. Jorge Justiniano T. 12
Caso de Uso CCNA 02
198.160.10.0/28 is subnetted, 8 subnets
C 198.160.10.16 is directly connected, Serial3/0
D 198.160.10.32 [90/21024000] via 198.160.10.17, 00:11:35, Serial3/0
D 198.160.10.48 [90/20514560] via 198.160.10.17, 00:11:35, Serial3/0
C 198.160.10.64 is directly connected, FastEthernet1/0
C 198.160.10.80 is directly connected, FastEthernet0/0
D 198.160.10.96 [90/21026560] via 198.160.10.17, 00:11:35, Serial3/0
D 198.160.10.112 [90/21026560] via 198.160.10.17, 00:11:35, Serial3/0
D 198.160.10.128 [90/20514560] via 198.160.10.17, 00:11:35, Serial3/0
Show IP ROUTE en la configuración del router CENTER
Center#SHOW IP ROUTE
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
* - candidate default, U - per-user static route, o - ODR
P - periodic downloaded static route
Gateway of last resort is not set
198.160.10.0/28 is subnetted, 8 subnets
C 198.160.10.16 is directly connected, Serial2/0
C 198.160.10.32 is directly connected, Serial3/0
C 198.160.10.48 is directly connected, FastEthernet0/0
D 198.160.10.64 [90/20514560] via 198.160.10.18, 00:12:03, Serial2/0
D 198.160.10.80 [90/20514560] via 198.160.10.18, 00:12:03, Serial2/0
D 198.160.10.96 [90/20514560] via 198.160.10.34, 00:10:29, Serial3/0
D 198.160.10.112 [90/20514560] via 198.160.10.34, 00:10:29, Serial3/0
C 198.160.10.128 is directly connected, FastEthernet1/0
Show IP ROUTE en la configuración del router EVA
Eva#show IP ROUTE
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
* - candidate default, U - per-user static route, o - ODR
P - periodic downloaded static route
Gateway of last resort is not set
Ing. Jorge Justiniano T. 13
Caso de Uso CCNA 02 198.160.10.0/28 is subnetted, 8 subnets
D 198.160.10.16 [90/21024000] via 198.160.10.33, 00:10:44, Serial2/0
C 198.160.10.32 is directly connected, Serial2/0
D 198.160.10.48 [90/20514560] via 198.160.10.33, 00:10:44, Serial2/0
D 198.160.10.64 [90/21026560] via 198.160.10.33, 00:10:44, Serial2/0
D 198.160.10.80 [90/21026560] via 198.160.10.33, 00:10:44, Serial2/0
C 198.160.10.96 is directly connected, FastEthernet1/0
C 198.160.10.112 is directly connected, FastEthernet0/0
D 198.160.10.128 [90/20514560] via 198.160.10.33, 00:10:44, Serial2/0
Show IP PROTOCOL en la configuración del router BOAZ
Boaz#SHOW IP protocol
Routing Protocol is "eigrp 100 "
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
EIGRP maximum hopcount 100
EIGRP maximum metric variance 1
Redistributing: eigrp 100
Automatic network summarization is in effect
Automatic address summarization:
Maximum path: 4
Routing for Networks:
198.160.10.0
Routing Information Sources:
Gateway Distance Last Update
198.160.10.17 90 23
Distance: internal 90 external 170
Show IP PROTOCOL en la configuración del router CENTER
Center#SHOW IP PROTOCOL
Routing Protocol is "eigrp 100 "
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
EIGRP maximum hopcount 100
EIGRP maximum metric variance 1
Redistributing: eigrp 100
Automatic network summarization is in effect
Ing. Jorge Justiniano T. 14
Caso de Uso CCNA 02 Automatic address summarization:
Maximum path: 4
Routing for Networks:
198.160.10.0
Routing Information Sources:
Gateway Distance Last Update
198.160.10.18 90 5
198.160.10.34 90 6
Distance: internal 90 external 170
Show IP PROTOCOL en la configuración del router CENTER
Eva#show IP PROTOCOL
Routing Protocol is "eigrp 100 "
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
EIGRP maximum hopcount 100
EIGRP maximum metric variance 1
Redistributing: eigrp 100
Automatic network summarization is in effect
Automatic address summarization:
Maximum path: 4
Routing for Networks:
198.160.10.0
Routing Information Sources:
Gateway Distance Last Update
198.160.10.33 90 93067
Distance: internal 90 external 170
Show IP INTERFACE BRIEF en la configuración del router BOAZ
Boaz#show ip interface brief
Interface IP-Address OK? Method Status Protocol
FastEthernet0/0 198.160.10.81 YES manual up up
FastEthernet1/0 198.160.10.65 YES manual up up
Serial2/0 unassigned YES manual administratively down down
Serial3/0 198.160.10.18 YES manual up up
FastEthernet4/0 unassigned YES manual administratively down down
FastEthernet5/0 unassigned YES manual administratively down down
Show IP INTERFACE BRIEF en la configuración del router CENTER
Center#SHOW IP INTERFACE BRIEF
Interface IP-Address OK? Method Status Protocol
Ing. Jorge Justiniano T. 15
Caso de Uso CCNA 02 FastEthernet0/0 198.160.10.49 YES manual up up
FastEthernet1/0 198.160.10.129 YES manual up up
Serial2/0 198.160.10.17 YES manual up up
Serial3/0 198.160.10.33 YES manual up up
FastEthernet4/0 unassigned YES manual administratively down down
FastEthernet5/0 unassigned YES manual administratively down down
Show IP INTERFACE BRIEF en la configuración del router EVA
Eva#show IP INTERFACE BRIEF
Interface IP-Address OK? Method Status Protocol
FastEthernet0/0 198.160.10.113 YES manual up up
FastEthernet1/0 198.160.10.97 YES manual up up
Serial2/0 198.160.10.34 YES manual up up
Serial3/0 unassigned YES manual administratively down down
FastEthernet4/0 unassigned YES manual administratively down down
FastEthernet5/0 unassigned YES manual administratively down down
Show VERSION a la configuración del router BOAZ
Boaz#show VERSION
Cisco Internetwork Operating System Software
IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Wed 27-Apr-04 19:01 by miwang
Image text-base: 0x8000808C, data-base: 0x80A1FECC
ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.
ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
System returned to ROM by reload
System image file is "flash:pt1000-i-mz.122-28.bin"
PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory
Processor board ID PT0123 (0123)
PT2005 processor: part number 0, mask 01
Bridging software.
X.25 software, Version 3.0.0.
4 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Configuration register is 0x2102
Show VERSION a la configuración del router CENTER
Center#SHOW version
Cisco Internetwork Operating System Software
IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
Ing. Jorge Justiniano T. 16
Caso de Uso CCNA 02Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Wed 27-Apr-04 19:01 by miwang
Image text-base: 0x8000808C, data-base: 0x80A1FECC
ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.
ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
System returned to ROM by reload
System image file is "flash:pt1000-i-mz.122-28.bin"
PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory
Processor board ID PT0123 (0123)
PT2005 processor: part number 0, mask 01
Bridging software.
X.25 software, Version 3.0.0.
4 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Configuration register is 0x2102
Show VERSION a la configuración del router EVA
Eva#show version
Cisco Internetwork Operating System Software
IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Wed 27-Apr-04 19:01 by miwang
Image text-base: 0x8000808C, data-base: 0x80A1FECC
ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.
ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)
System returned to ROM by reload
System image file is "flash:pt1000-i-mz.122-28.bin"
PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory
Processor board ID PT0123 (0123)
PT2005 processor: part number 0, mask 01
Bridging software.
X.25 software, Version 3.0.0.
4 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Configuration register is 0x2102
Show HOSTS a la configuración del router BOAZ
Ing. Jorge Justiniano T. 17
Caso de Uso CCNA 02Boaz#show HOSTS
Default Domain is not set
Name/address lookup uses domain service
Name servers are 255.255.255.255
Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate
temp - temporary, perm - permanent
NA - Not Applicable None - Not defined
Host Port Flags Age Type Address(es)
Show HOSTS a la configuración del router CENTER
Center#SHOW HOSTS
Default Domain is not set
Name/address lookup uses domain service
Name servers are 255.255.255.255
Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate
temp - temporary, perm - permanent
NA - Not Applicable None - Not defined
Host Port Flags Age Type Address(es)
Show HOSTS a la configuración del router EVA
Eva#show HOST
Default Domain is not set
Name/address lookup uses domain service
Name servers are 255.255.255.255
Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate
temp - temporary, perm - permanent
NA - Not Applicable None - Not defined
Host Port Flags Age Type Address(es)
CONFIGURACION DE SEGURIDAD
Show IP INTERFACE a la configuración del router BOAZ
Boaz#show ip interface
FastEthernet0/0 is up, line protocol is up (connected)
Internet address is 198.160.10.81/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is 101
Proxy ARP is enabled
Ing. Jorge Justiniano T. 18
Caso de Uso CCNA 02 Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
FastEthernet1/0 is up, line protocol is up (connected)
Internet address is 198.160.10.65/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
Ing. Jorge Justiniano T. 19
Caso de Uso CCNA 02 TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
Serial2/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
Serial3/0 is up, line protocol is up (connected)
Internet address is 198.160.10.18/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
FastEthernet4/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
FastEthernet5/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
Ing. Jorge Justiniano T. 20
Caso de Uso CCNA 02
Show IP INTERFACE a la configuración del router VENTER
Center#show ip interface
FastEthernet0/0 is up, line protocol is up (connected)
Internet address is 198.160.10.49/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is 103
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
FastEthernet1/0 is up, line protocol is up (connected)
Internet address is 198.160.10.129/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Ing. Jorge Justiniano T. 21
Caso de Uso CCNA 02 Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
Serial2/0 is up, line protocol is up (connected)
Internet address is 198.160.10.17/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
Ing. Jorge Justiniano T. 22
Caso de Uso CCNA 02 RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
Serial3/0 is up, line protocol is up (connected)
Internet address is 198.160.10.33/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
FastEthernet4/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
FastEthernet5/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
Show IP INTERFACE a la configuración del router EVA
Eva#show ip interface
Ing. Jorge Justiniano T. 23
Caso de Uso CCNA 02FastEthernet0/0 is up, line protocol is up (connected)
Internet address is 198.160.10.113/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is 102
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
FastEthernet1/0 is up, line protocol is up (connected)
Internet address is 198.160.10.97/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
Ing. Jorge Justiniano T. 24
Caso de Uso CCNA 02 ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
Serial2/0 is up, line protocol is up (connected)
Internet address is 198.160.10.34/28
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP Fast switching turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Ing. Jorge Justiniano T. 25
Caso de Uso CCNA 02 Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
Serial3/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
FastEthernet4/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
FastEthernet5/0 is administratively down, line protocol is down (disabled)
Internet protocol processing disabled
Show IP ACCESS LIST a la configuración del router BOAZ
Boaz#SHOW IP ACCess-lists
Extended IP access list 101
permit icmp host 198.160.10.83 host 198.160.10.81
permit tcp host 198.160.10.83 host 198.160.10.81 eq telnet
permit icmp host 198.160.10.83 host 198.160.10.66
permit icmp host 198.160.10.82 host 198.160.10.52
permit tcp host 198.160.10.82 host 198.160.10.52 eq www
Show IP ACCESS LIST a la configuración del router CENTER
Center#SHOW IP ACCess-lists
Extended IP access list 103
permit tcp host 198.160.10.51 host 198.160.10.49 eq telnet
permit tcp host 198.160.10.51 host 198.160.10.34 eq telnet
permit tcp host 198.160.10.51 host 198.160.10.18 eq telnet
permit tcp host 198.160.10.51 host 198.160.10.52 eq www
permit icmp host 198.160.10.51 host 198.160.10.130
permit icmp host 198.160.10.51 host 198.160.10.66
permit icmp host 198.160.10.51 host 198.160.10.98
permit icmp host 198.160.10.51 host 198.160.10.34
permit icmp host 198.160.10.51 host 198.160.10.18
permit icmp host 198.160.10.51 host 198.160.10.49
permit icmp host 198.160.10.51 host 198.160.10.52
permit tcp any any<
Show IP ACCESS LIST a la configuración del router EVA
Eva#SHOW IP ACCess-lists
Extended IP access list 102
permit icmp host 198.160.10.115 host 198.160.10.113
permit tcp host 198.160.10.115 host 198.160.10.113 eq telnet
permit icmp host 198.160.10.115 host 198.160.10.98
permit tcp host 198.160.10.114 host 198.160.10.52 eq www
permit icmp host 198.160.10.114 host 198.160.10.52
Ing. Jorge Justiniano T. 26
Caso de Uso CCNA 02
CONCLUSIONES
Ing. Jorge Justiniano T. 27
Caso de Uso CCNA 021. Se realizó el montaje de la red según las especificaciones del proyecto con
resultados exitosos.
2. para dar un respaldo de la configuración realizada en los equipos de la red
se especifica en el documento cada una de las consulta a los mismos
equipos y los resultados que arrojaron.
3. Se configuraron listas de control de acceso en capa superior de los equipos
para dar una seguridad eficiente en el acceso de los equipos.
4. se comprobó uno a uno los equipos configurados con el objetivo de
comprobar la funcionalidad de la red, con los resultados exitosos.
5. Finalmente se crea un documento del proyecto detallando el mismo paso a
paso según el avance del proyecto.
Ing. Jorge Justiniano T. 28