Case Study WANs Cisco Networking Academy Routing & Switching: Connecting Networks
Overview and Objectives This final case study allows students to build and configure a complex network using skills gained throughout the course. This case study is not a trivial task. To complete it as outlined with all required documentation will be a significant accomplishment. The case study scenario describes the project in general terms, and will explain why the network is being built. Following the scenario, the project is broken into a number of phases, each of which has a detailed list of requirements. It is important to read and understand each requirement to make sure that the project is completed accurately. The following tasks are required to complete this case study: Set up the physical layout of the network using the diagram and accompanying narrative Correctly configure single-area OSPF Correctly configure s and 80.1q trunking Correctly configure Correctly configure the two Point to Point links with PPP encapsulation, Authentication over one link and over the second link. Correctly configure a GRE Tunnel Correctly configure routing Correctly configure DHCP Correctly configure NAT Create and apply access control lists (ACL S) on the appropriate routers and interfaces Test/Verify and document that all devices are operational and functioning according to the scenario guidelines Provide detailed documentation in a prescribed form as listed in the deliverables sections - CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.
Scenario 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 A company needs a network to be designed and implemented; the company has locations in four cities. Three of the locations will be connected using leased-line serial links. The fourth location () will be connected using and the fifth location () will be connected using a VPN due to cost considerations. The company has previously used RIP version at the location and wishes to continue using it for now. However, the other four locations will use OSPF. So RIP routes must be redistributed into the OSPF routing process and RIP networks must be reached from the OSPF routing. Also, OSPF networks must be reached from the networks through default static route. One location,, has a large and complex LAN. Due to the size and complexity, the company wants to create s to control broadcasts, enhance security, and logically group users. The company also wants to use private addresses throughout the Autonomous System, DHCP over most of the LAN segments, and NAT implemented for Internet connectivity. The company also wishes to limit Internet access to Web traffic while allowing multiple protocols (not all) within its own WAN. Although private addresses (RFC 1918) will be used, the company appreciates efficiency and address conservation in design. To minimize wasted address space, they have requested VLSM to be used when appropriate. Copyright ~ 00, Cisco Systems, Inc. Case Study: WANs -9
Phase 1: Addressing the WAN & LAN 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 Use the following instructions to complete Phase 1: Use 17.16.0.0/ for internal addressing with IP subnet zero enabled. Apply /0 subnets on all serial interfaces, using the last available subnet. Assign an appropriately sized subnet for the LAN, which has about 900 devices: - : 1 devices (Management ) - : - : 0 hosts - : 5 hosts Assign the appropriately sized subnet to the, which has. Assign the appropriate sized subnet to the LAN, which has. Assign an appropriately sized subnet for the, which has 150 devices. Assign an appropriately sized subnet for the LAN, which has 10 devices. Document all of the addressing in tables. DHCP POOL (covered in phase 6) Configure DHCP services on the router. DHCP should provide services to the following LANs hosts:, s, and - CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.
Phase : Configuring Static and Default Routes, RIP & OSPF Routing 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V 09.165.00.0/0 09.165.00.1/0 s 6 hosts (total) LAN Use the following instructions to complete Phase : Configure each router with a hostname and required passwords. Configure each interface on all routers documented in Phase 1. Configure OSPF on the,, and routers. Configure Default Route and redistribute such route within the AS Configure RIP version on the and routers. Redistribute RIP networks into the OSPF routing process. Configure a Default Route on pointing to the OSPF networks. Verify that the,,, and routers have connectivity through Layers 1-7. Capture and save the five router configuration files. Edit the text files, and include comments at the top of each file documenting the following: Your name The date CCNA Case Study Phase The router name that corresponds to each file. This documentation will serve as the deliverable item for Phase. Copyright ~ 00, Cisco Systems, Inc. Case Study: WANs 5-9
Phase : Configuring, PPP & GRE VPN 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 Use the following instructions to complete Phase : 1. Configure the as follows: Configure the serial interfaces on both the and the routers to use encapsulation and LMI type ANSI. Use - maps (disable Inverse-Arp). Configure PPP encapsulation between: The router and the router using authentication. The router the router using authentication. Use the password cisco. Configure a Site-to-Site GRE tunnel Configure a Site-to-Site GRE tunnel between the router and the router. Configure a static route on and Enable OSPF routing between the and routers Document the PP & NAT configuration in a chart; it will serve as the deliverable item for Phase.
Phase : Configuring ACLs 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 09.165.00.1/0 LAN Use the following instructions to complete Phase : 1. Configure an Extended ACL to filter traffic. The ACL should: Deny the FTP and HTTP access to (HR network); allow all other traffic to all destinations within the Autonomous System. Setup WEB and FTP server at the HR to test your ACL. Configure a Standard ACL to filter traffic. The ACL should: Permit the HR ( ) and the LAN users access the while denying all others.. Configure an Extended ACL On the Router. The ACL should: Allow IP traffic for TCP and ICMP sessions originating from the inside (established sessions) while denying IP traffic for sessions originating outside the network.. Use an ACL to control VTY access to all routers. The ACL should: Allow telnet session to all routers from the Management ( ) only; telnet from other networks should be denied Document the ACL configuration a chart. This will serve as the deliverable item for Phase. Copyright ~ 00, Cisco Systems, Inc. Case Study: WANs 7-9
Phase 5: Configuring s 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 Use the following instructions to complete Phase : 1. Apply the basic switch configuration Hostname and passwords. Configure the Local Area Network switch as follows: Create and name three Data and one Management for a total of s. - : Management (Native) - : HR - : R&D - : Production. Assign ports: - Ports 1- to trunk mode (80.1Q) - Ports to - Ports -7 to - Ports 8-11 to - Ports 1-15 to - Disable all unused ports Connect Fa0/0 of the router to port 1 Connect one workstation per. Configure the workstations IP automatically. This documentation will serve as the deliverable item for Phase 5
Phase 6: Configuring DHCP 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 DHCP Services DHCP should provide services to the following LANs hosts:, s, and DHCP should pass the following parameters to the hosts: IP address, Subnet Mask and Default Gateway The router will perform DHCP. Configure the using the DHCP pools documented in Phase 1. Configure DHCP services on the router as follows: Fa0/0 and sub-interfaces with the first useable address. Configure the DHCP pools on the router. Exclude the first 10 IP addresses from each pool (to be used for printers and servers) Connect a workstation to Fa0/0 on and s - on the router. Configure the workstation to obtain its IP address automatically. Recapture and save the router configuration file. Edit the text file, and include comments at the top documenting the following: Your name The date CCNA Case Study Phase 5 router 1-9 CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.
This documentation will serve as the deliverable item for Phase 6 Phase 7: Configuring Dynamic & Static NAT 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 The router will perform NAT. Configure the router as follows: Define the NAT pool. The pool consists of public network address 00.10.10.6/6. Exclude first 10 addresses from this pool (to be used for public domain servers, when required). Define an access control list, which will translate for all internal (17.16.0.0/) addresses only. Establish dynamic source translation, specifying the NAT pool and the ACL defined in the previous steps. Specify the inside and the outside NAT interfaces. Configure Static NAT so the can be accessed from the Internet 1-10 CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.
Phase 8: Verification and Testing 09.165.00.6/0 09.165.00./0 00.10.10.6/6 17.16.0.0/ RIP V s 6 hosts (total) 09.165.00.0/0 LAN 09.165.00.1/0 Use the following instructions to complete Phase 5: S0/0 Internet (Use a PC to 1. Verify communication between various hosts simulate in the network. Troubleshoot 10.0.0./0) and fix any problems in the network until it works Galaway properly. Document the results of the tests in a table.. Recapture RIP V and save the router configuration files for all four routers. Edit the Fa0/0 text files, and include comments at the top of each file documenting the S0/0 10.0.0.1/0 00 hosts following: S0/0 Your name S0/1 The date S0/1 S0/0 Fa0/0 CCNA Case Study Fa0/1 Final Router Configuration 00.10.10.6/6 The router name that corresponds to each file. Fa0/0 17.16.0.0/1 This documentation, along with the completed tables from Phase 1, Phase, Phase, Phase, Phase 5, Phase 6, and Phase 7, will serve the LAN final deliverable item for the case study. 0 hosts 00 hosts s 900 hosts (total) 1-11 CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.
Phase 9: Case Study Deliverables Documentation & Presentation The final task in this case study is to deliver a 0 minutes presentation of the main features of the design decisions and recommendations. A formal written report should also be provided that contains all of the design documents as well as all the supporting worksheets (see the case study requirements; Overview and Objectives on page 1). The design documentation should include: device configurations, a list of the number and types of networking devices selected for this design, logical and physical diagrams, subnetting scheme, and network testing verifications. The completed tables from Phase 1, Phase, Phase, Phase, Phase 6, Phase 6, Phase 7, and Phase 8 should be included with the final deliverable items. The following items must be included in the final report and presentation: Outline Summary of the Company and Network Requirements Discussion on the implementation of IP address and VLSM Discussion on the implementation of Routing Discussion on the implementation of s, STP, and switches Discussion on the physical layer design and equipment Discussion on testing and verification strategies Recommendations for future network upgrades Logical Diagram Physical Diagram IP Addressing Table Router Interface Table Switch Table Equipment Table including quantity, make and model (Routers & Switches ONLY) Show Commands outputs to verify connectivity and operation: show ip route, show ip ospf neighbors, show spanning-tree, show vlan, ping, telnet, etc. Router Configurations Switch Configuration The documentation should be complete and should contain enough information to allow a third party to properly install and configure or troubleshoot the network without requesting additional information. 1-1 CCNA : WAN Technologies v.1 Copyright ~ 00, Cisco Systems, Inc.