Escolar Documentos
Profissional Documentos
Cultura Documentos
OSPF(Open Short Path First) is of two types : 1) Single Area OSPF and
2) Multi Area OSPF.
Area0 S0
S0 Area2
IR
ABR
ABR
Internal Routers
IR
Area Border Router
Area1
OSPF under Single Area
S 0 192.168.1.194/252 192.168.1.193/252 S 0
Router A Router B
E 0 1.33 E 0 1.65
192.168.1.32/ 192.168.1.64/
255.255.255.224 255.255.255.224
(Config)# ip routing
(Config-Router)# router OSPF 6573
(Config-Router)# network 192.168.1.32 0.0.0.31 area 1
(Config-Router)# area 1 range 192.168.1.32
255.255.255.224
(Config-Router)# network 192.168.1.192 0.0.0.3 area 1
(Config-Router)# area 1 range 192.168.1.192
255.255.255.224
Configuration of Router B
--------------------------------
(Config)# ip routing
(Config-Router)# router OSPF 6573
(Config-Router)# network 192.168.1.32 0.0.0.31 area 1
(Config-Router)# area 1 range 192.168.1.64
255.255.255.224
(Config-Router)# network 192.168.1.195 0.0.0.3 area 1
(Config-Router)# area 1 range 192.168.1.195
255.255.255.252
OSPF under Different Areas
Area 0
Area 2
Area 1
Router A Router B
E0 E0
(Config)# ip routing
(Config-Router)# router OSPF 6573
(Config-Router)# network 192.168.5.0 0.0.0.255 area 2
(Config-Router)# area 2 range 192.168.5.0 255.255.255.0
(Config-Router)# network 172.16.0.0 0.0.255.255 area 0
(Config-Router)# area 0 range 172.16.0.0 255.255.0.0
Access Control List
It is also called Network Traffic Control
Management (NTCM). We can provide restrictions to
individual users, subnets and services etc.
ACL
S. A. L 1 – 99
Ex. A. L 100 - 199
Rules for creating and implementing
Access List
1. Access list must begin with the Deny Statements (If
exists) then Permit Statements must follow.
2. There must be at least one Permit Statement as an
Implicit “Deny All” always exists.
3. While Implementation of Access list, There must be
only one Access list per Interface, per direction and
per protocol.
Standard Access List
S 0 172.16.1.1 172.16.1.2 S 0
Router A Router B
E 0 1.50 E 0 5.50
5.4 5.1
1.4 1.1
5.3 5.2
1.3 1.2
Syntax
Router(config)# Access-list ALNO P/D Src Src-WCM
Router(config)# Int <name of interface>
Router(Config-if)#Ip Access-Group <Direction>
Configuration Standard Access-list For
Router A
Restricting particular user
(Config)# Access-list 1 deny 192.168.1.3 0.0.0.0
(Config)# Access-list 1 permit 0.0.0.0
255.255.255.255
or
Access-list 1 permit any
Restricting a Network
(Config)# Access-list 1 deny 192.168.3.0 0.0.0.255
(Config)# Access-list 1 permit any
Extended Access List
S 0 172.16.1.1 172.16.1.2 S 0
Router A Router B
E 0 1.50 E 0 5.50
1.4 1.1 5.4 5.1
1.3 1.2 5.3 5.2
1.20
Configuration of Router A
Implementation
(Config)#int E0
(config-if)# IP Access-group 101 Out
NAT(Network Address Translation)
S 0 172.16.1.1 172.16.1.2 S 0
Router B
Router A
E 0 1.50 E 0 5.50
1.4 1.1 5.4 5.1
192.168.1.3 1.2 5.3 5.2
Note : 192.168.1.3 is denied from entering the network of 5.0.So it will enter
with mask.
Configuration of Router A
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.1.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.1 255.255.0.0
(Config-if)# clock rate 56000
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.5.0 255.255.255.0 172.16.1.2
(Config)# int E 0
(Config-if)# ip nat inside
(Config)# int S 0
(Config-if)# ip nat outside
Configuration of Router B
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.5.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.2 255.255.0.0
(Config-if)# clock rate 56000
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.1.0 255.255.255.0 172.16.1.1
(Config)# int E 0
(Config-if)# ip access-group 10 out
172.16.1.1 172.16.1.2
Routing
Switch
Natting
Configuration of Router A
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.1.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.1 255.255.0.0
(Config-if)# clock rate 56000(for DCE)
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 0.0.0.0 0.0.0.0 192.168.1.99
(Config)# int E 0
(Config-if)# ip nat outside
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip nat inside
((Config-if)# exit
Configuration of Router B
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.5.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.2 255.255.0.0
(Config-if)# clock rate 56000
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# int E 0
(Config-if)# ip nat inside
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip nat outside
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 0.0.0.0 0.0.0.0 172.16.1.1
S 0 172.16.1.1 172.16.1.2 S 0
Router A Router B
(ISDN) (Zoom)
E 0 1.50 E 0 5.50
1.4 1.1 5.4 5.1
1.3 1.2 5.3 5.2
(Config)# int S 0
(Config-if)# ip address 172.16.1.1 255.255.0.0
(Config-if)# clock rate 56000(for DCE)
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.5.0 255.255.255.0 172.16.1.2
(Config)# int S 0
(Config-if)# encapsulation ppp
(Config-if)# ppp authentication PAP
(Config-if)# ppp PAP sent-username zoom password cisco
Configuration of Router B
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.5.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.2 255.255.0.0
(Config-if)# clock rate 56000(for DCE)
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.1.0 255.255.255.0 172.16.1.1
(Config)# int S 0
(Config-if)# encapsulation ppp
(Config-if)# ppp authentication PAP
(Config-if)# ppp PAP sent-username ISP password cisco
PPP(Point-to-Point) using CHAP protocol
S 0 172.16.1.1 172.16.1.2 S 0
Router A Router B
(ISDN) (Zoom)
E 0 1.50 E 0 5.50
1.4 1.1 5.4 5.1
1.3 1.2 5.3 5.2
(Config)# int S 0
(Config-if)# ip address 172.16.1.1 255.255.0.0
(Config-if)# clock rate 56000(for DCE)
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.5.0 255.255.255.0 172.16.1.2
(Config)# int S 0
(Config-if)# encapsulation ppp
(Config-if)# ppp authentication CHAP
(Config-if)# ppp CHAP hostname zoom
(Config-if)# ppp CHAP password cisco
Configuration of Router B
--------------------------------
# Config t
(Config)# int E 0
(Config-if)# ip address 192.168.5.50 255.255.255.0
(Config-if)# no shut
(Config-if)# exit
(Config)# int S 0
(Config-if)# ip address 172.16.1.2 255.255.0.0
(Config-if)# clock rate 56000(for DCE)
(Config-if)# bandwidth 64
(Config-if)# no shut
(Config-if)# exit
(Config)# ip routing
(Config-Router)# ip route 192.168.1.0 255.255.255.0 172.16.1.1
(Config)# int S 0
(Config-if)# encapsulation ppp
(Config-if)# ppp authentication CHAP
(Config-if)# ppp CHAP hostname ISP
(Config-if)# ppp CHAP password cisco
DDR(Dial on Demand Routing)
ISP
S 0 172.16.1.1 172.16.1.2 S 0
Router A Router B
E 0 1.50 E 0 5.50
1.4 1.1 5.4 5.1
1.3 1.2 5.3 5.2
# Config t
(Config)# isdn switch-type basic-net 3