SlideShare uma empresa Scribd logo

Caso de estudio(ccna4)

Irwin Viteri
Irwin Viteri

https://twitter.com/IrWiN_ViTeRi

Tecnologia
1 de 23
Baixar para ler offline
ACADEMIA REGIONAL CISCO ESPOL CCNA 4 Acceso a la WAN CASO DE ESTUDIO NOMBRE: IRWIN ALBERTO VITERI RAMBAY PROFESOR: Ing. JAIME LUCERO {https://twitter.com/IrWiN_ViTeRi} Página 1 de 23
OBJETIVOS {https://twitter.com/IrWiN_ViTeRi} Página 2 de 23
ROUTER ISP hostname ISP ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ip dhcp excluded-address 10.10.0.1 ip dhcp excluded-address 10.10.0.5 ! ip dhcp pool LANisp network 10.10.0.0 255.255.0.0 default-router 10.10.0.1 dns-server 10.10.0.5 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 10.10.0.1 255.255.0.0 ip access-group 110 in ip nat inside duplex auto speed auto ! interface FastEthernet0/1 no ip address {https://twitter.com/IrWiN_ViTeRi} Página 3 de 23
duplex auto speed auto shutdown ! interface Serial0/0/0 ip address 192.168.4.97 255.255.255.252 encapsulation frame-relay frame-relay map ip 192.168.4.98 101 broadcast ip nat outside ! interface Serial0/0/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! ip nat pool pool-NATisp 192.168.100.11 192.168.100.20 netmask 255.255.255.0 ip nat inside source list listaNAT pool pool-NATisp ip nat inside source static 10.10.0.1 192.168.100.1 ip classless ip route 172.16.0.0 255.255.0.0 192.168.4.98 ip route 192.168.0.0 255.255.0.0 192.168.4.98 ! ip access-list extended listaNAT permit ip 10.10.0.0 0.0.255.255 any access-list 110 permit tcp host 10.10.0.5 host 192.168.2.2 eq telnet access-list 110 permit tcp host 10.10.0.5 host 192.168.1.130 eq telnet access-list 110 permit tcp host 10.10.0.5 host 192.168.4.98 eq telnet ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password cisco logging synchronous login ! line aux 0 ! line vty 0 4 password cisco logging synchronous login line vty 5 15 password cisco logging synchronous login end {https://twitter.com/IrWiN_ViTeRi} Página 4 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 5 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 6 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 7 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 8 de 23
ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.4.98 eq telnet ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.2.2 eq telnet ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.1.130 eq telnet ISP(config)#end ISP(config)#interface fastEthernet 0/0 ISP(config-if)#ip access-group 110 in ISP(config-if)#end Solamente desde el Servidor DNS se puede hacer Telnet a los ruteadores. {https://twitter.com/IrWiN_ViTeRi} Página 9 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 10 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 11 de 23
ROUTER SIDNEY hostname SIDNEY ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! aaa new-model ! aaa authentication login SIDNEY_LOCAL local ! username AUCKLAND password 7 080D786B5D username SIDNEY password 7 0822455D0A16 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.4.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/1/0 ip address 192.168.4.98 255.255.255.252 encapsulation frame-relay frame-relay map ip 192.168.4.97 101 broadcast ip access-group 110 out ! interface Serial0/1/1 no ip address shutdown ! interface Serial0/3/0 ip address 192.168.1.129 255.255.255.252 clock rate 64000 ! interface Serial0/3/1 ip address 192.168.2.1 255.255.255.252 encapsulation ppp ppp authentication chap ! interface Vlan1 no ip address {https://twitter.com/IrWiN_ViTeRi} Página 12 de 23
shutdown ! router eigrp 100 redistribute static network 192.168.1.128 0.0.0.3 network 192.168.2.0 0.0.0.3 network 172.16.4.0 0.0.0.255 no auto-summary ! ip classless ip route 0.0.0.0 0.0.0.0 192.168.4.97 ! access-list 110 permit udp any host 192.168.4.97 eq domain access-list 110 permit tcp any host 192.168.4.97 eq smtp access-list 110 permit tcp any host 192.168.4.97 eq www access-list 110 deny ip any any ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 logging synchronous login authentication SIDNEY_LOCAL ! line aux 0 ! line vty 0 4 logging synchronous login authentication SIDNEY_LOCAL line vty 5 15 logging synchronous login authentication SIDNEY_LOCAL end {https://twitter.com/IrWiN_ViTeRi} Página 13 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 14 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 15 de 23
SIDNEY(config)#access-list 110 permit udp any host 192.168.4.97 eq domain SIDNEY(config)#access-list 110 permit tcp any host 192.168.4.97 eq smtp SIDNEY(config)#access-list 110 permit tcp any host 192.168.4.97 eq www SIDNEY(config)#access-list 110 deny ip any any SIDNEY(config)#int s0/1/0 SIDNEY(config-if)#ip access-group 110 out SIDNEY(config-if)#end {https://twitter.com/IrWiN_ViTeRi} Página 16 de 23
ROUTER TOKYO hostname TOKYO ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.20.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/2/0 ip address 192.168.1.130 255.255.255.252 ! interface Serial0/2/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router eigrp 100 network 172.16.20.0 0.0.0.255 network 192.168.1.128 0.0.0.3 auto-summary ! ip classless ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password cisco logging synchronous login ! line aux 0 ! {https://twitter.com/IrWiN_ViTeRi} Página 17 de 23
line vty 0 4 password cisco logging synchronous login line vty 5 15 password cisco logging synchronous login ! end {https://twitter.com/IrWiN_ViTeRi} Página 18 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 19 de 23
ROUTER AUCKLAND hostname AUCKLAND ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! username SIDNEY password 7 080D786B5D ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.15.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/1/0 ip address 192.168.2.2 255.255.255.252 encapsulation ppp ppp authentication chap clock rate 64000 ! interface Serial0/1/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router eigrp 100 network 192.168.2.0 0.0.0.3 network 172.16.15.0 0.0.0.255 no auto-summary ! ip classless ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password 7 0822455D0A16 {https://twitter.com/IrWiN_ViTeRi} Página 20 de 23
logging synchronous login ! line aux 0 ! line vty 0 4 password 7 0822455D0A16 logging synchronous login line vty 5 15 password 7 0822455D0A16 logging synchronous login ! end {https://twitter.com/IrWiN_ViTeRi} Página 21 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 22 de 23
{https://twitter.com/IrWiN_ViTeRi} Página 23 de 23

Recomendados

Loquetodorouterdebedellevar
LoquetodorouterdebedellevarLoquetodorouterdebedellevar
LoquetodorouterdebedellevarJuan Segovia
 
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Naoto MATSUMOTO
 
Tiny Server Clustering using Vyatta/VyOS (MEMO)
Tiny Server Clustering using Vyatta/VyOS (MEMO)Tiny Server Clustering using Vyatta/VyOS (MEMO)
Tiny Server Clustering using Vyatta/VyOS (MEMO)Naoto MATSUMOTO
 
הגדרת נתבי סיסקו 1.0
הגדרת נתבי סיסקו 1.0הגדרת נתבי סיסקו 1.0
הגדרת נתבי סיסקו 1.0ELI KENDEL אלי קנדל
 
VPNIPSec site to site
VPNIPSec site to siteVPNIPSec site to site
VPNIPSec site to siteDimitri LEMBOKOLO
 
Unbreakable VPN using Vyatta/VyOS - HOW TO -
Unbreakable VPN using Vyatta/VyOS - HOW TO -Unbreakable VPN using Vyatta/VyOS - HOW TO -
Unbreakable VPN using Vyatta/VyOS - HOW TO -Naoto MATSUMOTO
 
Examen main remote
Examen main remoteExamen main remote
Examen main remotejheral stalin
 
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)Naoto MATSUMOTO
 

Recomendados

Loquetodorouterdebedellevar
LoquetodorouterdebedellevarLoquetodorouterdebedellevar
LoquetodorouterdebedellevarJuan Segovia
 
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)
Large Scale L2TPv3 Overlay Networking with OSPFv3(DRAFT)Naoto MATSUMOTO
 
Tiny Server Clustering using Vyatta/VyOS (MEMO)
Tiny Server Clustering using Vyatta/VyOS (MEMO)Tiny Server Clustering using Vyatta/VyOS (MEMO)
Tiny Server Clustering using Vyatta/VyOS (MEMO)Naoto MATSUMOTO
 
הגדרת נתבי סיסקו 1.0
הגדרת נתבי סיסקו 1.0הגדרת נתבי סיסקו 1.0
הגדרת נתבי סיסקו 1.0ELI KENDEL אלי קנדל
 
VPNIPSec site to site
VPNIPSec site to siteVPNIPSec site to site
VPNIPSec site to siteDimitri LEMBOKOLO
 
Unbreakable VPN using Vyatta/VyOS - HOW TO -
Unbreakable VPN using Vyatta/VyOS - HOW TO -Unbreakable VPN using Vyatta/VyOS - HOW TO -
Unbreakable VPN using Vyatta/VyOS - HOW TO -Naoto MATSUMOTO
 
Examen main remote
Examen main remoteExamen main remote
Examen main remotejheral stalin
 
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)Naoto MATSUMOTO
 
Nat
NatNat
NatMohamed Gamel
 
An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)Naoto MATSUMOTO
 
Vyos clustering ipsec
Vyos clustering ipsecVyos clustering ipsec
Vyos clustering ipsecGireesh Hariharasubramony
 
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]Naoto MATSUMOTO
 
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO) UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO) Naoto MATSUMOTO
 
8 steps to protect your cisco router
8 steps to protect your cisco router8 steps to protect your cisco router
8 steps to protect your cisco routerIT Tech
 
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 TunnelingUNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 TunnelingNaoto MATSUMOTO
 
FreeLix: Semplicità & Controllo
FreeLix: Semplicità & ControlloFreeLix: Semplicità & Controllo
FreeLix: Semplicità & ControlloValerio Balbi
 
ভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBERভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBERmd shariful eng
 
How to configure Extended acl for a network
How to configure Extended acl for a networkHow to configure Extended acl for a network
How to configure Extended acl for a networktcpipguru
 
Cho
ChoCho
ChoTrần Sang
 
QNAP Selection Guide 2015
QNAP Selection Guide 2015QNAP Selection Guide 2015
QNAP Selection Guide 2015Fernando Barrientos
 
Dfhghg
DfhghgDfhghg
Dfhghgayedaljohani1
 
Cisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 ConfigurationCisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 ConfigurationHamed Moghaddam
 
Chap 18 net
Chap 18 netChap 18 net
Chap 18 netKenny (netman)
 
OSPF (open shortest path first) part ii
OSPF (open shortest path first) part iiOSPF (open shortest path first) part ii
OSPF (open shortest path first) part iiNetwax Lab
 
How to Configure ip address for router interfaces
How to Configure ip address for router interfacesHow to Configure ip address for router interfaces
How to Configure ip address for router interfacestcpipguru
 
Configuracion EIGRP
Configuracion EIGRPConfiguracion EIGRP
Configuracion EIGRPalexis marck Huiza Canchanya
 
Nxll22 role based cli
Nxll22 role based cliNxll22 role based cli
Nxll22 role based cliNetwax Lab
 
Network Security Best Practice (BCP38 & 140)
Network Security Best Practice (BCP38 & 140) Network Security Best Practice (BCP38 & 140)
Network Security Best Practice (BCP38 & 140) Bangladesh Network Operators Group
 
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...sonjeku1
 
Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)Netwax Lab
 

Mais conteúdo relacionado

Mais procurados

An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)Naoto MATSUMOTO
 
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]Naoto MATSUMOTO
 
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO) UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO) Naoto MATSUMOTO
 
8 steps to protect your cisco router
8 steps to protect your cisco router8 steps to protect your cisco router
8 steps to protect your cisco routerIT Tech
 
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 TunnelingUNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 TunnelingNaoto MATSUMOTO
 
FreeLix: Semplicità & Controllo
FreeLix: Semplicità & ControlloFreeLix: Semplicità & Controllo
FreeLix: Semplicità & ControlloValerio Balbi
 
ভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBERভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBERmd shariful eng
 
How to configure Extended acl for a network
How to configure Extended acl for a networkHow to configure Extended acl for a network
How to configure Extended acl for a networktcpipguru
 
Cisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 ConfigurationCisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 ConfigurationHamed Moghaddam
 
OSPF (open shortest path first) part ii
OSPF (open shortest path first) part iiOSPF (open shortest path first) part ii
OSPF (open shortest path first) part iiNetwax Lab
 
How to Configure ip address for router interfaces
How to Configure ip address for router interfacesHow to Configure ip address for router interfaces
How to Configure ip address for router interfacestcpipguru
 

Mais procurados (17)

Nat
NatNat
Nat
 
An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)An Easy way to build a server cluster without top of rack switches (MEMO)
An Easy way to build a server cluster without top of rack switches (MEMO)
 
Vyos clustering ipsec
Vyos clustering ipsecVyos clustering ipsec
Vyos clustering ipsec
 
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]IPv4 over IPv6 Tunneling with IPSec [DRAFT]
IPv4 over IPv6 Tunneling with IPSec [DRAFT]
 
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO) UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
UNDOCUMENTED Vyatta vRouter: Unbreakable VPN Tunneling (MEMO)
 
8 steps to protect your cisco router
8 steps to protect your cisco router8 steps to protect your cisco router
8 steps to protect your cisco router
 
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 TunnelingUNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
UNDOCUMENTED Vyatta vRouter: IPv4 over IPv6 Tunneling
 
FreeLix: Semplicità & Controllo
FreeLix: Semplicità & ControlloFreeLix: Semplicità & Controllo
FreeLix: Semplicità & Controllo
 
ভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBERভিবিন্ন DEVISE AND AR PORT NUMBER
ভিবিন্ন DEVISE AND AR PORT NUMBER
 
How to configure Extended acl for a network
How to configure Extended acl for a networkHow to configure Extended acl for a network
How to configure Extended acl for a network
 
Cho
ChoCho
Cho
 
QNAP Selection Guide 2015
QNAP Selection Guide 2015QNAP Selection Guide 2015
QNAP Selection Guide 2015
 
Dfhghg
DfhghgDfhghg
Dfhghg
 
Cisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 ConfigurationCisco CCNA OSPF IPV6 Configuration
Cisco CCNA OSPF IPV6 Configuration
 
Chap 18 net
Chap 18 netChap 18 net
Chap 18 net
 
OSPF (open shortest path first) part ii
OSPF (open shortest path first) part iiOSPF (open shortest path first) part ii
OSPF (open shortest path first) part ii
 
How to Configure ip address for router interfaces
How to Configure ip address for router interfacesHow to Configure ip address for router interfaces
How to Configure ip address for router interfaces
 

Semelhante a Caso de estudio(ccna4)

Nxll22 role based cli
Nxll22 role based cliNxll22 role based cli
Nxll22 role based cliNetwax Lab
 
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...sonjeku1
 
Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)Netwax Lab
 
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...CODE BLUE
 
Nat failover with dual isp on cisco router configuration explained with example
Nat failover with dual isp on cisco router configuration explained with exampleNat failover with dual isp on cisco router configuration explained with example
Nat failover with dual isp on cisco router configuration explained with exampleunixhowto
 
Cisco sample configuration
Cisco sample configurationCisco sample configuration
Cisco sample configurationBenedek Rakovics
 
Ccna lab manual 640 802
Ccna lab manual 640 802Ccna lab manual 640 802
Ccna lab manual 640 802manikkan
 
Modul Tournamentof Cisco.doc
Modul Tournamentof Cisco.docModul Tournamentof Cisco.doc
Modul Tournamentof Cisco.doc36Zaini
 
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdf
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdfcisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdf
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdfAsgarAlam6
 
[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network Troubleshooting[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network TroubleshootingOpen Source Consulting
 
Chapter11ccna
Chapter11ccnaChapter11ccna
Chapter11ccnarobertoxe
 
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid UmarPENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid UmarWalid Umar
 

Semelhante a Caso de estudio(ccna4) (20)

Configuracion EIGRP
Configuracion EIGRPConfiguracion EIGRP
Configuracion EIGRP
 
Nxll22 role based cli
Nxll22 role based cliNxll22 role based cli
Nxll22 role based cli
 
Network Security Best Practice (BCP38 & 140)
Network Security Best Practice (BCP38 & 140) Network Security Best Practice (BCP38 & 140)
Network Security Best Practice (BCP38 & 140)
 
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
us-17-Tsai-A-New-Era-Of-SSRF-Exploiting-URL-Parser-In-Trending-Programming-La...
 
Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)Nxll18 vpn (s2 s gre & dmvpn)
Nxll18 vpn (s2 s gre & dmvpn)
 
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages! ...
 
Nat failover with dual isp on cisco router configuration explained with example
Nat failover with dual isp on cisco router configuration explained with exampleNat failover with dual isp on cisco router configuration explained with example
Nat failover with dual isp on cisco router configuration explained with example
 
Cisco sample configuration
Cisco sample configurationCisco sample configuration
Cisco sample configuration
 
BACIK CISCO SKILLS
BACIK CISCO SKILLSBACIK CISCO SKILLS
BACIK CISCO SKILLS
 
Ccna lab manual 640 802
Ccna lab manual 640 802Ccna lab manual 640 802
Ccna lab manual 640 802
 
Modul Tournamentof Cisco.doc
Modul Tournamentof Cisco.docModul Tournamentof Cisco.doc
Modul Tournamentof Cisco.doc
 
Prueba 2 2015
Prueba 2 2015Prueba 2 2015
Prueba 2 2015
 
Indicaciones nota 4
Indicaciones nota 4Indicaciones nota 4
Indicaciones nota 4
 
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdf
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdfcisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdf
cisco-ewan-nat-acl-pt-practice-sba-with-solution-110516171316-phpapp02.pdf
 
Ccna command
Ccna commandCcna command
Ccna command
 
Ccnacommand 140205001152-phpapp01
Ccnacommand 140205001152-phpapp01Ccnacommand 140205001152-phpapp01
Ccnacommand 140205001152-phpapp01
 
[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network Troubleshooting[오픈소스컨설팅] Linux Network Troubleshooting
[오픈소스컨설팅] Linux Network Troubleshooting
 
Chapter11ccna
Chapter11ccnaChapter11ccna
Chapter11ccna
 
Chapter11ccna
Chapter11ccnaChapter11ccna
Chapter11ccna
 
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid UmarPENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
PENYELESAIAN SOAL UKK/UPK TAHUN 2018 Paket 3 oleh Walid Umar
 

Último

Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfPrecisely
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DaySri Ambati
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 

Último (20)

Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 

Caso de estudio(ccna4)

  • 1. ACADEMIA REGIONAL CISCO ESPOL CCNA 4 Acceso a la WAN CASO DE ESTUDIO NOMBRE: IRWIN ALBERTO VITERI RAMBAY PROFESOR: Ing. JAIME LUCERO {https://twitter.com/IrWiN_ViTeRi} Página 1 de 23
  • 3. ROUTER ISP hostname ISP ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! ip dhcp excluded-address 10.10.0.1 ip dhcp excluded-address 10.10.0.5 ! ip dhcp pool LANisp network 10.10.0.0 255.255.0.0 default-router 10.10.0.1 dns-server 10.10.0.5 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 10.10.0.1 255.255.0.0 ip access-group 110 in ip nat inside duplex auto speed auto ! interface FastEthernet0/1 no ip address {https://twitter.com/IrWiN_ViTeRi} Página 3 de 23
  • 4. duplex auto speed auto shutdown ! interface Serial0/0/0 ip address 192.168.4.97 255.255.255.252 encapsulation frame-relay frame-relay map ip 192.168.4.98 101 broadcast ip nat outside ! interface Serial0/0/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! ip nat pool pool-NATisp 192.168.100.11 192.168.100.20 netmask 255.255.255.0 ip nat inside source list listaNAT pool pool-NATisp ip nat inside source static 10.10.0.1 192.168.100.1 ip classless ip route 172.16.0.0 255.255.0.0 192.168.4.98 ip route 192.168.0.0 255.255.0.0 192.168.4.98 ! ip access-list extended listaNAT permit ip 10.10.0.0 0.0.255.255 any access-list 110 permit tcp host 10.10.0.5 host 192.168.2.2 eq telnet access-list 110 permit tcp host 10.10.0.5 host 192.168.1.130 eq telnet access-list 110 permit tcp host 10.10.0.5 host 192.168.4.98 eq telnet ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password cisco logging synchronous login ! line aux 0 ! line vty 0 4 password cisco logging synchronous login line vty 5 15 password cisco logging synchronous login end {https://twitter.com/IrWiN_ViTeRi} Página 4 de 23
  • 9. ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.4.98 eq telnet ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.2.2 eq telnet ISP(config)#access-list 110 permit tcp host 10.10.0.5 host 192.168.1.130 eq telnet ISP(config)#end ISP(config)#interface fastEthernet 0/0 ISP(config-if)#ip access-group 110 in ISP(config-if)#end Solamente desde el Servidor DNS se puede hacer Telnet a los ruteadores. {https://twitter.com/IrWiN_ViTeRi} Página 9 de 23
  • 12. ROUTER SIDNEY hostname SIDNEY ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! aaa new-model ! aaa authentication login SIDNEY_LOCAL local ! username AUCKLAND password 7 080D786B5D username SIDNEY password 7 0822455D0A16 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.4.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/1/0 ip address 192.168.4.98 255.255.255.252 encapsulation frame-relay frame-relay map ip 192.168.4.97 101 broadcast ip access-group 110 out ! interface Serial0/1/1 no ip address shutdown ! interface Serial0/3/0 ip address 192.168.1.129 255.255.255.252 clock rate 64000 ! interface Serial0/3/1 ip address 192.168.2.1 255.255.255.252 encapsulation ppp ppp authentication chap ! interface Vlan1 no ip address {https://twitter.com/IrWiN_ViTeRi} Página 12 de 23
  • 13. shutdown ! router eigrp 100 redistribute static network 192.168.1.128 0.0.0.3 network 192.168.2.0 0.0.0.3 network 172.16.4.0 0.0.0.255 no auto-summary ! ip classless ip route 0.0.0.0 0.0.0.0 192.168.4.97 ! access-list 110 permit udp any host 192.168.4.97 eq domain access-list 110 permit tcp any host 192.168.4.97 eq smtp access-list 110 permit tcp any host 192.168.4.97 eq www access-list 110 deny ip any any ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 logging synchronous login authentication SIDNEY_LOCAL ! line aux 0 ! line vty 0 4 logging synchronous login authentication SIDNEY_LOCAL line vty 5 15 logging synchronous login authentication SIDNEY_LOCAL end {https://twitter.com/IrWiN_ViTeRi} Página 13 de 23
  • 16. SIDNEY(config)#access-list 110 permit udp any host 192.168.4.97 eq domain SIDNEY(config)#access-list 110 permit tcp any host 192.168.4.97 eq smtp SIDNEY(config)#access-list 110 permit tcp any host 192.168.4.97 eq www SIDNEY(config)#access-list 110 deny ip any any SIDNEY(config)#int s0/1/0 SIDNEY(config-if)#ip access-group 110 out SIDNEY(config-if)#end {https://twitter.com/IrWiN_ViTeRi} Página 16 de 23
  • 17. ROUTER TOKYO hostname TOKYO ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.20.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/2/0 ip address 192.168.1.130 255.255.255.252 ! interface Serial0/2/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router eigrp 100 network 172.16.20.0 0.0.0.255 network 192.168.1.128 0.0.0.3 auto-summary ! ip classless ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password cisco logging synchronous login ! line aux 0 ! {https://twitter.com/IrWiN_ViTeRi} Página 17 de 23
  • 18. line vty 0 4 password cisco logging synchronous login line vty 5 15 password cisco logging synchronous login ! end {https://twitter.com/IrWiN_ViTeRi} Página 18 de 23
  • 20. ROUTER AUCKLAND hostname AUCKLAND ! enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1 ! username SIDNEY password 7 080D786B5D ! no ip domain-lookup ! spanning-tree mode pvst ! interface FastEthernet0/0 ip address 172.16.15.1 255.255.255.0 duplex auto speed auto ! interface FastEthernet0/1 no ip address duplex auto speed auto shutdown ! interface Serial0/1/0 ip address 192.168.2.2 255.255.255.252 encapsulation ppp ppp authentication chap clock rate 64000 ! interface Serial0/1/1 no ip address shutdown ! interface Vlan1 no ip address shutdown ! router eigrp 100 network 192.168.2.0 0.0.0.3 network 172.16.15.0 0.0.0.255 no auto-summary ! ip classless ! banner motd *******************************UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. ! line con 0 password 7 0822455D0A16 {https://twitter.com/IrWiN_ViTeRi} Página 20 de 23
  • 21. logging synchronous login ! line aux 0 ! line vty 0 4 password 7 0822455D0A16 logging synchronous login line vty 5 15 password 7 0822455D0A16 logging synchronous login ! end {https://twitter.com/IrWiN_ViTeRi} Página 21 de 23