CCIE R&S Lab Workbook Volume I Version 5.0

Similar documents
Chapter 2 Lab 2-2, EIGRP Load Balancing

CertificationKits.com EIGRP Sample CCNA Lab. EIGRP Routing. The purpose of this lab is to explore the functionality of the EIGRP routing protocol.

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

CCNP ROUTE 6.0 Student Lab Manual

Lab QoS Classification and Policing Using CAR

CCNP CISCO CERTIFIED NETWORK PROFESSIONAL LAB MANUAL

How To Lower Data Rate On A Network On A 2Ghz Network On An Ipnet 2 (Net 2) On A Pnet 2 On A Router On A Gbnet 2.5 (Net 1) On An Uniden Network On

Example: Advertised Distance (AD) Example: Feasible Distance (FD) Example: Successor and Feasible Successor Example: Successor and Feasible Successor

Cisco CCNP Optimizing Converged Cisco Networks (ONT)

Interconnecting Cisco Networking Devices Part 2

Task 20.1: Configure ASBR1 Serial 0/2 to prevent DoS attacks to ASBR1 from SP1.

Lab 4.2 Challenge Lab: Implementing MPLS VPNs

CCNA2 Chapter 11 Practice

Distance Vector Routing Protocols. Routing Protocols and Concepts Ola Lundh

Table of Contents. Cisco How Does Load Balancing Work?

CCNA 2 v5.0 Routing Protocols Final Exam Answers

Troubleshooting Load Balancing Over Parallel Links Using Cisco Express Forwarding

Chapter 2 Lab 2-2, Configuring EtherChannel Instructor Version

Administrative Distance

- Enhanced Interior Gateway Routing Protocol -

Lab Configure Cisco IOS Firewall CBAC on a Cisco Router

How to Configure Cisco 2600 Routers

Configuring a Gateway of Last Resort Using IP Commands

GLBP Gateway Load Balancing Protocol

EIGRP Commands. Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols IP2R-141

BSCI Chapter Cisco Systems, Inc. All rights reserved.

: Interconnecting Cisco Networking Devices Part 2 v1.1

Frame Mode MPLS Implementation

Configuring Static and Dynamic NAT Simultaneously

IMPLEMENTING CISCO IP ROUTING V2.0 (ROUTE)

Introduction about cisco company and its products (network devices) Tell about cisco offered courses and its salary benefits (ccna ccnp ccie )

Route Optimization. rek Petr Grygarek, VSB-TU Ostrava, Routed and Switched Networks 1

Cisco Configuring Basic MPLS Using OSPF

IPv6 Hands-on Lab. Faraz Shamim, Technical Leader Harold Ritter, Technical Leader. Toronto, Canada May 30, 2013

MPLS. Cisco MPLS. Cisco Router Challenge 227. MPLS Introduction. The most up-to-date version of this test is at:

Lab 3.5.1: Basic VLAN Configuration (Instructor Version)

Lab 6.1 Configuring a Cisco IOS Firewall Using SDM

Lab Configure Cisco IOS Firewall CBAC

Table of Contents. Cisco Configuring a Basic MPLS VPN

CCNA Access List Sim

Cisco Discovery 3: Introducing Routing and Switching in the Enterprise hours teaching time

Lab 5-5 Configuring the Cisco IOS DHCP Server

Unicast Reverse Path Forwarding

Chapter 4. Distance Vector Routing Protocols

Textbook Required: Cisco Networking Academy Program CCNP: Building Scalable Internetworks v5.0 Lab Manual.

This document is exclusive property of Cisco Systems, Inc. Permission is granted to print and copy this document for non-commercial distribution and

How To Configure A Cisco Router With A Cio Router

Module 12 Multihoming to the Same ISP

Link-State Routing Protocols

Course Contents CCNP (CISco certified network professional)

DEGREE THESIS. Improving Network Performance by Implementing the Path Control Tools. Derick Kolle Nduge, Augustine Chika, Mohammednur Ibrahim

Lab Load Balancing Across Multiple Paths

Lab 5.5 Configuring Logging

Configuring a Basic MPLS VPN

Introduction to Dynamic Routing Protocols

NetFlow Subinterface Support

IOS NAT Load Balancing with Optimized Edge Routing for Two Internet Connections

Chapter 1 Implement EIGRP operations Chapter 2 Implement multiarea OSPF operations Chapter 4 Implement Cisco IOS routing features...

- Routing Information Protocol -

ASA 9.x EIGRP Configuration Example

Lab Developing ACLs to Implement Firewall Rule Sets

CCNA Exploration 4.0: (II) Routing Protocols and Concepts. Chapter 1: Introduction to Routing and Packet Forwarding

Cisco Networking Academy CCNP Multilayer Switching

Configure ISDN Backup and VPN Connection

BGP Link Bandwidth. Finding Feature Information. Contents

Network Simulator Lab Study Plan

ISOM3380 Advanced Network Management. Spring Course Description

How To Configure InterVLAN Routing on Layer 3 Switches

Sample Configuration Using the ip nat outside source static

LAB II: Securing The Data Path and Routing Infrastructure

COURSE AGENDA. Lessons - CCNA. CCNA & CCNP - Online Course Agenda. Lesson 1: Internetworking. Lesson 2: Fundamentals of Networking

Configuring RIP. Overview. Routing Update Process CHAPTER

Troubleshooting IP Routing

Anycast. Implementing a High-Availability Web-Based Service with Anycast: A Success Story. Merit Networking 2013 December 12, 2013

Configuring Denial of Service Protection

Lab 7: Firewalls Stateful Firewalls and Edge Router Filtering

- Route Filtering and Route-Maps -

Using the Border Gateway Protocol for Interdomain Routing

Configuring NetFlow Switching

Effect of Windows XP Firewall on Network Simulation and Testing

ITRI CCL. IP Routing Primer. Paul C. Huang, Ph.D. ITRI / CCL / N300. CCL/N300; Paul Huang 1999/6/2 1

This feature was introduced. This feature was integrated in Cisco IOS Release 12.2(11)T.

Configuring a Load-Balancing Scheme

Skills Assessment Student Training Exam

Router and Routing Basics

CCT vs. CCENT Skill Set Comparison

Configuring a Leased Line

Interconnecting Cisco Networking Devices, Part 2 Course ICND2 v2.0; 5 Days, Instructor-led

Understanding Route Redistribution & Filtering

: Interconnecting Cisco Networking Devices Part 2 v2.0 (ICND2)

Lab 2 - Basic Router Configuration

LAB THREE STATIC ROUTING

Welcome to Todd Lammle s CCNA Bootcamp

Edge-1#show ip route Routing entry for /24. Known via "bgp 65001", distance 200, metric 0. Tag 65300, type internal

Deploying IPSec VPN in the Enterprise

UPDATE = [Withdrawn prefixes (Optional)] + [Path Attributes] + [NLRIs].

Transcription:

Copyright Information, Inc. All rights reserved. The following publication, CCIE R&S Lab Workbook Volume I Version 5.0, was developed by Internetwork Expert, Inc. All rights reserved. No part of this publication may be reproduced or distributed in any form or by any means without the prior written permission of Internetwork Expert, Inc. Cisco, Cisco Systems, CCIE, and Cisco Certified Internetwork Expert, are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain countries. All other products and company names are the trademarks, registered trademarks, and service marks of the respective owners. Throughout this manual, Internetwork Expert, Inc. has used its best efforts to distinguish proprietary trademarks from descriptive names by following the capitalization styles used by the manufacturer. i

Disclaimer The following publication, CCIE R&S Lab Workbook Volume I Version 5.0, is designed to assist candidates in the preparation for Cisco Systems CCIE Routing & Switching Lab Exam. While every effort has been made to ensure that all material is as complete and accurate as possible, the enclosed material is presented on an as is basis. Neither the authors nor Internetwork Expert, Inc. assume any liability or responsibility to any person or entity with respect to loss or damages incurred from the information contained in this workbook. This workbook was developed by Internetwork Expert, Inc. and is an original work of the aforementioned authors. Any similarities between material presented in this workbook and actual CCIE lab material is completely coincidental. ii

Table of Contents... 1 5.1 Network Statement...1 5.2 Auto-Summary...1 5.3 Split Horizon...1 5.4 MD5 Authentication...2 5.5 Key Chain Rotation...2 5.6 Unicast Updates...2 5.7 Default Network...2 5.8 Summarization...3 5.9 Summarization with Default Routing...3 5.10 Summarization with Leak Map...3 5.11 Floating Summarization...3 5.12 Poisoned Floating Summarization...3 5.13 Metric Weights...4 5.14 Traffic Engineering with Metric...4 5.15 Unequal Cost Load Balancing...4 5.16 Convergence Timers...4 5.17 Stub Routing...4 5.18 Stub Routing with Leak Map...5 5.19 Filtering with Passive Interface...5 5.20 Filtering with Prefix-Lists...5 5.21 Filtering with Standard Access-Lists...5 5.22 Filtering with Extended Access-Lists...5 5.23 Filtering with Offset Lists...6 5.24 Filtering with Administrative Distance...6 5.25 Filtering with Per Neighbor AD...6 5.26 Filtering with Route Maps...6 5.27 Bandwidth Pacing...6 5.28 Default Metric...7 5.29 Neighbor Logging...7 5.30 Router-ID...7 5.31 Maximum Hops...7 Solutions... 9 5.1 Network Statement...9 5.2 Auto-Summary...15 5.3 Split Horizon...16 5.4 MD5 Authentication...18 5.5 Key Chain Rotation...20 5.6 Unicast Updates...22 5.7 Default Network...24 5.8 Summarization...26 5.9 Summarization with Default Routing...28 iii

5.10 Summarization with Leak Map...29 5.11 Floating Summarization...31 5.12 Poisoned Floating Summarization...35 5.13 Metric Weights...36 5.14 Traffic Engineering with Metric...38 5.15 Unequal Cost Load Balancing...42 5.16 Convergence Timers...49 5.17 Stub Routing...55 5.18 Stub Routing with Leak Map...58 5.19 Filtering with Passive Interface...61 5.20 Filtering with Prefix-Lists...63 5.21 Filtering with Standard Access-Lists...66 5.22 Filtering with Extended Access-Lists...67 5.23 Filtering with Offset Lists...71 5.24 Filtering with Administrative Distance...74 5.25 Filtering with Per Neighbor AD...75 5.26 Filtering with Route Maps...78 5.27 Bandwidth Pacing...83 5.28 Default Metric...84 5.29 Neighbor Logging...85 5.30 Router-ID...86 5.31 Maximum Hops...88 iv

Note Erase and reload all devices and load the Basic Routing initial configurations. 5.13 Metric Weights Configure all devices in AS 100 so that only delay is used in the composite metric calculation. 5.14 Traffic Engineering with Metric Configure a metric manipulation on SW1 so that traffic from SW3 to the Loopback0 network of R6 transits the link between R3 and R1. 5.15 Unequal Cost Load Balancing Configure unequal cost load balancing so that traffic from R6 going to VLAN 9 is load balanced between R1 and SW1. The traffic share should be configured in such a way that the link to SW1 is used five times as much as the link to R1. Verify this by configuring per-packet load balancing on R6. 5.16 Convergence Timers Configure R1 through R6 so that hellos are sent every one second; these devices should inform their neighbors to declare them down if subsequent hellos are not received within three seconds. Configure SW1 through SW4 so that hellos are sent every ten seconds; these devices should inform their neighbors to declare them down if subsequent hellos are not received within thirty seconds. Additionally configure AS 100 so that lost routes are considered Stuck In Active if a query response has not been heard within one minute. 5.17 Stub Routing Configure the stub feature in such a way that SW2 does not receive query messages. Ensure that all devices in AS 100 still have IP reachability to VLAN 8. 4

5.15 Unequal Cost Load Balancing Configure unequal cost load balancing so that traffic from R6 going to VLAN 9 is load balanced between R1 and SW1. The traffic share should be configured in such a way that the link to SW1 is used five times as much as the link to R1. Verify this by configuring per-packet load balancing on R6. Configuration R1: interface Serial0/1 delay 1 R3: interface FastEthernet0/0 delay 1 R6: interface FastEthernet0/0.146 delay 56! router eigrp 100 variance 128 Verification Note Previously the metric weights command was updated on all devices in AS 100 so that only delay was weighted. Therefore based on the interface delay values from R6 outbound towards VLAN 9 we can calculate how traffic will be routed. Recall that the delay value used in the composite calculation is tens of microseconds scaled by 256. 42

To start, without any configuration changes, the path from R6 to SW3 has the following delays. Rack1R6#show interface FastEthernet0/0.67 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Rack1SW1#show interface Vlan79 include DLY Rack1SW3#show interface Vlan9 include DLY The path from R6 -> SW1 -> SW3 therefore has a total delay of 120 microseconds. 12 tens of microseconds scaled by 256 gives us a composite metric of 3,072. This path is then compared to the one R6 -> R1 -> R3 -> SW1 -> SW3 with the following delays. Rack1R6#show interface FastEthernet0/0.146 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Rack1R1#show interface Serial0/1 include DLY MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, Rack1R3#show interface FastEthernet0/0 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Rack1SW1#show interface Vlan79 include DLY Rack1SW3#show interface Vlan9 include DLY This path has a total delay of 20,220 microseconds. 2,022 tens of microseconds scaled by 256 gives us a composite metric of 517,632. Since 3,072 is lower than 517,632, the Successor is the route from R6 to SW1. This can be verified from the topology view of R6. 43

Rack1R6#show ip eigrp topology 155.1.9.0 255.255.255.0 IP- (AS 100): Topology entry for 155.1.9.0/24 State is Passive, Query origin flag is 1, 1 Successor(s), FD is 3072 Routing Descriptor Blocks: 155.1.67.7 (FastEthernet0/0.67), from 155.1.67.7, Send flag is 0x0 Composite metric is (3072/512), Route is Internal Vector metric: Minimum bandwidth is 100000 Kbit Total delay is 120 microseconds Reliability is 255/255 Load is 1/255 Minimum MTU is 1500 Hop count is 2 In order to consider the route from R6 to R1 for load balancing, the route first must pass the Feasibility Condition. Again the Feasibility Condition states that if the Advertised Distance of an alternate route is lower than the Feasible Distance of the Successor, the route is a loop free path and can be considered for load balancing. In other words if R1 s metric to reach SW3 is lower than R6 s metric to reach SW3, R6 can assume that R1 is closer to SW3, and is a loop free path. The Advertised Distance that R1 would be sending to R6 is based on these interfaces in the transit path. Rack1R1#show interface Serial0/1 include DLY MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, Rack1R3#show interface FastEthernet0/0 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Rack1SW1#show interface Vlan79 include DLY Rack1SW3#show interface Vlan9 include DLY The total delay of this path is 20,120 microseconds, or 2,012 tens of microseconds. Scaled by 256 R1 would be advertising 515,072. Since 515,072 is greater than 3,072, R6 s Feasible Distance, this path cannot be considered a Feasible Successor. Therefore the first step in doing unequal cost load balancing is to lower what R1 is advertising as its metric. In this example this is accomplished by changing the delay of R1 s link to R3 and R3 s link to SW1 to 10 microseconds. 44

Rack1R1#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R1(config)#interface Serial0/1 Rack1R1(config-if)#delay 1 Rack1R1(config-if)# Rack1R3#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R3(config)#interface FastEthernet0/0 Rack1R3(config-if)#delay 1 Rack1R3(config-if)# These new delay values update the entire path as follows. Rack1R6#show interface FastEthernet0/0.146 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, Rack1R1#show interface Serial0/1 include DLY MTU 1500 bytes, BW 1544 Kbit, DLY 10 usec, Rack1R3#show interface FastEthernet0/0 include DLY MTU 1500 bytes, BW 100000 Kbit, DLY 10 usec, Rack1SW1#show interface Vlan79 include DLY Rack1SW3#show interface Vlan9 include DLY The total delay of the path is now 140 microseconds. 14 tens of microseconds scaled by 256 equals a total composite of 3,584. Since this is still higher than 3,072, this path is not the Successor. However R1 s Advertised Distance is now a total delay of 40 microseconds. 4 tens of microseconds scaled by 256 equals a total Advertised Distance of 1024. Since 1,024 is lower than 3,072, R6 s Feasible Distance, this route is now a Feasible Successor. 45

If the variance command were configured on R6 this path would now be installed in the routing table for load balancing. The actual value of variance is arbitrary, as long as the Feasible Distance, 3,072, times the variance is greater than the total composite metric through R1. Rack1R6#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R6(config)#router eigrp 100 Rack1R6(config-router)#variance 128 Rack1R6(config-router)#end Rack1R6#show ip route 155.1.9.9 Routing entry for 155.1.9.0/24 Known via "eigrp 100", distance 90, metric 3072, type internal Redistributing via eigrp 100, eigrp 10 Advertised by eigrp 10 Last update from 155.1.146.1 on FastEthernet0/0.146, 00:00:03 ago Routing Descriptor Blocks: 155.1.146.1, from 155.1.146.1, 00:00:03 ago, via FastEthernet0/0.146 Route metric is 3584, traffic share count is 103 Total delay is 140 microseconds, minimum bandwidth is 1544 Kbit Reliability 255/255, minimum MTU 1500 bytes Loading 1/255, Hops 4 * 155.1.67.7, from 155.1.67.7, 00:00:03 ago, via FastEthernet0/0.67 Route metric is 3072, traffic share count is 120 Total delay is 120 microseconds, minimum bandwidth is 100000 Kbit Reliability 255/255, minimum MTU 1500 bytes Loading 1/255, Hops 2 These paths are now balanced 103:120. To achieve the desired 1:5 traffic share, R6 s delay on the link to R1 must be updated. The actual values used on R1, R3, and R6 for delay can have multiple valid options as long as two conditions are true. First, the Advertised Distance R1 sends to R6 must be lower than R6 s Feasible Distance. Secondly the entire composite result R6 calculates through R1 should be five times the Feasible Distance. In our case R1 s Advertised Distance is 40 microseconds, or 4 tens of microseconds. This specifically means the following must be true if we want a traffic share of 1:5. 3072 * 5 = (R6_TO_R1_DLY + 4) * 256 Therefore R6 s delay to R1 should be 56 tens of microseconds. 46

Rack1R6#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R6(config)#interface FastEthernet0/0.146 Rack1R6(config-subif)#delay 56 Rack1R6(config-subif)#end Rack1R6#show ip route 155.1.9.9 Routing entry for 155.1.9.0/24 Known via "eigrp 100", distance 90, metric 3072, type internal Redistributing via eigrp 100, eigrp 10 Advertised by eigrp 10 Last update from 155.1.146.1 on FastEthernet0/0.146, 00:00:05 ago Routing Descriptor Blocks: 155.1.146.1, from 155.1.146.1, 00:00:05 ago, via FastEthernet0/0.146 Route metric is 15360, traffic share count is 1 Total delay is 600 microseconds, minimum bandwidth is 1544 Kbit Reliability 255/255, minimum MTU 1500 bytes Loading 1/255, Hops 4 * 155.1.67.7, from 155.1.67.7, 00:00:05 ago, via FastEthernet0/0.67 Route metric is 3072, traffic share count is 5 Total delay is 120 microseconds, minimum bandwidth is 100000 Kbit Reliability 255/255, minimum MTU 1500 bytes Loading 1/255, Hops 2 To test that traffic is actually sent in this distribution CEF is disabled on R6, and traffic is load balanced per packet. Next access-lists are used inbound on R1 and SW1 to count how many ICMP packets they receive from R6 going to VLAN 9. Rack1R6#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R6(config)#interface FastEthernet0/0.67 Rack1R6(config-subif)#no ip route-cache Rack1R6(config-subif)#ip load-sharing per-packet Rack1R6(config-subif)#interface FastEthernet0/0.146 Rack1R6(config-subif)#no ip route-cache Rack1R6(config-subif)#ip load-sharing per-packet Rack1R1#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1R1(config)#access-list 100 permit icmp any host 155.1.9.9 log Rack1R1(config)#access-list 100 permit ip any any Rack1R1(config)#interface FastEthernet0/0 Rack1R1(config-if)#ip access-group 100 in Rack1SW1#config t Enter configuration commands, one per line. End with CNTL/Z. Rack1SW1(config)#access-list 100 permit icmp any host 155.1.9.9 log Rack1SW1(config)#access-list 100 permit ip any any Rack1SW1(config)#interface Vlan67 Rack1SW1(config-if)#ip access-group 100 in 47

Rack1R6#ping 155.1.9.9 repeat 600 Type escape sequence to abort. Sending 600, 100-byte ICMP Echos to 155.1.9.9, timeout is 2 seconds:!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Success rate is 100 percent (600/600), round-trip min/avg/max = 1/4/20 ms Based on the show access-list output on R1 and SW1 we can see that packets actually were sent in a ratio of 1:5. Rack1R1#show access-list Extended IP access list 100 10 permit icmp any host 155.1.9.9 log (100 matches) 20 permit ip any any (24 matches) Rack1SW1#show access-list Extended IP access list 100 10 permit icmp any host 155.1.9.9 log (500 matches) 20 permit ip any any (4 matches) 48

.254 BB1 Frame Relay 101 54.X.1.0/24.6 R6.67.6.6.146 155.X.146.0/24 VLAN 146.4 Fa0/1.4 R4 204.12.X.0/24 VLAN 43.4.254.4 BB3 155.X.7.0/24 VLAN 7 SW3 VL9.9 VL67 VL7.7 155.X.9.0/24 VLAN 9 155.X.67.0/24 VLAN 67.7.7 SW1 Fa0/3 155.X.79.0/24 VLAN 79.9 VL79 VL79.7 155.X.37.0/24.3.1 155.X.13.0/24.3 S1/2.3 R3 S1/0 S1/3.3 155.X.23.0/24.2.2.1 R1 R2.1.2 105 VL10.10 501 305 503 Frame Relay 155.X.0.0/24 155.X.10.0/24 VLAN 10 205 405 504 502 SW4 155.X.45.0/24 Fa0/16.5.5.10 155.X.108.0/24 Fa0/17.5.5 R5 Fa0/1 155.X.58.0/24 VLAN 58 VL58 Fa0/19.8 Fa0/20.8 SW2.8 155.X.5.0/24 VLAN 5 VL8.254 192.10.X.0/24 VLAN 22 155.X.8.0/24 VLAN 8 BB2 CCIE Routing & Switching Lab Workbook Volume I (IEWB-RS-VOL-I) Version 5.0 2008 Internetwork Expert

Frame Relay 101 BB1 R6.67.146 Fa0/1 R4 BB3 VL67 VL7 SW1 VL79 VL79 SW3 VL9 Fa0/3 S1/2 R3 S1/3 S1/0 R1 R2 105 405 501 305 503 Frame Relay 205 VL10 504 502 SW4 Fa0/16 Fa0/17 R5 Fa0/1 VL58 Fa0/19 SW2 Fa0/20 VL8 BB2 CCIE Routing & Switching Lab Workbook Volume I (IEWB-RS-VOL-I) Version 5.0 2008 Internetwork Expert

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information