Escolar Documentos
Profissional Documentos
Cultura Documentos
FACULDADE DE ENGENHARIA
DEPARTAMENTO DE INFORMÁTICA
REDES ESCALÁVEI
LUANDA – 2021
UNIVERSIDADE CATÓLICA DE ANGOLA
FACULDADE DE ENGENHARIA
DEPARTAMENTO DE INFORMÁTICA
REDES ESCALÁVEI
2
ÍNDICE
OBJECTIVOS ................................................................................................................. 4
CENÁRIO ........................................................................................................................ 5
TABELA DE ENDEREÇÃMENTO ............................................................................... 6
FERRAMENTAS UTILIZADAS .................................................................................... 6
CONFIGURAÇÕES ....................................................................................................... 8
CONCLUSÃO ............................................................................................................... 15
BIBLIOGRAFIA ............................................................................................................ 17
3
OBJECTIVOS
Objectivo Geral
Objectivos Específicos
• Executar as configurações dos dispositivos (routers e switches)
• Atribuir e configurar endereço IPv4 e IPv6
• Executar as configurações iniciais nos switches protegendo as portas
dos mesmos e criar SVIs.
• Configurar roteamento e segurança (ACLs)
• Configurar o roteamento dinâmico com OSPFv2 e distribuir uma rota
padrão
• Configurar RPVST+, segurança de porta, EtherChannel, DHCP,
DHCPv6, VLANs e entroncamento e roteamento entre VLANs
• Controlar o acesso à rede de gerenciamento dos switches com listas de
controle de acesso.
4
CENÁRIO
5
FERRAMENTAS UTILIZADAS
TABELA DE ENDEREÇAMENTO
• IP da WAN: 192.168.220.0/24
• IP da LAN: 10.10.0.0/12
• IPV6 para LAN e WAN: 2001:db8:acad:c።1 /32-64
192.168.220.0/30
S0/0/0 qualquer endereço na rede: 192.168.220.1
2001:BD8:ACAD:C::/127 2001:BD8:ACAD:C::
192.168.8.0/24
A_HSEDE G0/0 primeiro endereço de host: 192.168.8.1 (?)
2001:DB8:ACAD:C::8:/64
192.168.9.0/24
G0/1 primeiro endereço de host: 192.168.9.1 (?)
2001:DB8:ACAD:C::9:/64
192.168.220.0/30
S0/0/0 qualquer endereço na rede: 192.168.220.2
2001:BD8:ACAD:C::/127 2001:BD8:ACAD:C::1
SITE_BG 192.168.220.4/30
S0/0/1 qualquer endereço na rede: 192.168.220.5
2001:BD8:ACAD:C::10/127 2001:BD8:ACAD:C::10
10.10.4.0/24
G0/1.4 primeiro endereço na rede 10.10.4.1
2001:DB8:ACAD:C:4::/64 2001:DB8:ACAD:C:4::1/64
10.10.8.0/24
G0/1.8 primeiro endereço na rede 10.10.8.1
2001:DB8:ACAD:C:8::/64 2001:DB8:ACAD:C:8::1/64
10.10.15.0/24
G0/1.15 primeiro endereço na rede 10.10.15.1
2001:DB8:ACAD:F::/64 2001:DB8:ACAD:F::1/64
10.10.25.0/24
G0/1.25 primeiro endereço na rede 10.10.25.1
2001:DB8:ACAD:19::/64 2001:DB8:ACAD:19::1/64
10.10.15.0/24
Admin - B NIC qualquer endereço na rede: 10.10.15.3
2001:DB8:ACAD:C:15::/64
7
Tabela de atribuição de porta do switch VLAN:
8
CONFIGURAÇÕES
A-HSEDE
interface GigabitEthernet0/0
ip address 192.168.8.1 255.255.255.0
interface GigabitEthernet0/1
ip address 192.168.9.1 255.255.255.0
interface Serial0/0/0
description CONEXAO PARA SITE-BG
bandwidth 128
ip address 192.168.220.1 255.255.255.252
ipv6 address 2001:BD8:ACAD:C::/127
clock rate 128000
router ospf 10
router-id 1.1.1.1
log-adjacency-changes
passive-interface GigabitEthernet0/0
passive-interface GigabitEthernet0/1
network 192.168.220.0 0.0.0.3 area 0
network 192.168.8.0 0.0.0.255 area 1
network 192.168.9.0 0.0.0.255 area 1
line aux 0
line vty 0 4
login local
transport input ssh
line vty 5 15
login local
transport input ssh
/*personalizar ospfv2*/
int s0/0/0
bandwidth 128
…….
9
SITE-BG
interface GigabitEthernet0/0
ip address 126.110.10.1 255.255.255.248
interface GigabitEthernet0/1
duplex auto
speed auto
shutdown
interface Serial0/0/0
description CONEXAO PARA A-HSEDE
ip address 192.168.220.2 255.255.255.252
ipv6 address 2001:BD8:ACAD:C::1/127
interface Serial0/0/1
description CONEXAO PARA B-HSEDE
ip address 192.168.220.5 255.255.255.252
ipv6 address 2001:BD8:ACAD:C::10/127
clock rate 128000
interface Serial0/1/0
description CONEXAO PARA ISP
ip address 208.0.116.18 255.255.255.248
interface Serial0/1/1
no ip address
clock rate 2000000
shutdown
interface Vlan1
no ip address
shutdown
router ospf 10
router-id 2.2.2.2
log-adjacency-changes
network 192.168.220.0 0.0.0.3 area 0
network 192.168.220.4 0.0.0.3 area 0
network 208.0.116.0 0.0.0.7 area 0
network 208.0.116.16 0.0.0.7 area 0
network 126.110.10.0 0.0.0.7 area 3
default-information originate
ip classless
ip route 10.10.0.0 255.255.0.0 Serial0/1/0
ip route 0.0.0.0 0.0.0.0 Serial0/1/0
ip route 0.0.0.0 0.0.0.0 208.0.116.17
banner motd ^CACESSO RESTRITO^C
line con 0
password 7 0822455D0A1606181C1B0D1739
login
line aux 0
line vty 0 4
login local
transport input ssh
line vty 5 15
10
login local
transport input ssh
end
…….
B-HSEDE
interface GigabitEthernet0/0
ip address 192.168.220.9 255.255.255.252
interface GigabitEthernet0/1.2
encapsulation dot1Q 2
ip address 10.10.2.1 255.255.255.0
ipv6 address 2001:DB8:ACAD:C:2::/64
interface GigabitEthernet0/1.4
encapsulation dot1Q 4
ip address 10.10.4.1 255.255.255.0
interface GigabitEthernet0/1.8
encapsulation dot1Q 8
ip address 10.10.8.1 255.255.255.0
interface GigabitEthernet0/1.15
encapsulation dot1Q 15
ip address 10.10.15.1 255.255.255.0
ipv6 address 2001:DB8:ACAD:F::/64
interface GigabitEthernet0/1.25
encapsulation dot1Q 25
ip address 10.10.25.1 255.255.255.0
ipv6 address 2001:DB8:ACAD:19::/64
interface Serial0/0/1
ip address 192.168.220.6 255.255.255.252
ipv6 address 2001:BD8:ACAD:C::11/127
router ospf 10
router-id 3.3.3.3
log-adjacency-changes
passive-interface GigabitEthernet0/1.2
passive-interface GigabitEthernet0/1.4
passive-interface GigabitEthernet0/1.8
passive-interface GigabitEthernet0/1.15
network 192.168.220.4 0.0.0.3 area 0
network 192.168.220.8 0.0.0.3 area 0
network 10.10.2.0 0.0.0.255 area 2
network 10.10.4.0 0.0.0.255 area 2
network 10.10.8.0 0.0.0.255 area 2
network 10.10.15.0 0.0.0.255 area 2
11
ip classless
SW-A
spanning-tree mode rapid-pvst
spanning-tree extend system-id
spanning-tree vlan 2,4 priority 24576
spanning-tree vlan 8,15 priority 28672
interface Port-channel1
switchport mode trunk
interface Port-channel2
switchport mode trunk
interface FastEthernet0/1
switchport mode trunk
channel-group 1 mode active
interface FastEthernet0/2
switchport mode trunk
channel-group 1 mode active
interface FastEthernet0/3
switchport mode trunk
channel-group 2 mode active
interface FastEthernet0/4
switchport mode trunk
channel-group 2 mode active
interface FastEthernet0/5
switchport access vlan 2
switchport mode access
switchport port-security maximum 2
switchport port-security mac-address sticky
switchport port-security violation restrict
interface FastEthernet0/6
switchport access vlan 99
switchport mode access
shutdown
12
interface FastEthernet0/7
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/8
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/9
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/10
switchport access vlan 4
switchport mode access
switchport port-security maximum 2
switchport port-security mac-address sticky
switchport port-security violation restrict
interface FastEthernet0/11
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/12
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/13
switchport access vlan 99
switchport mode trunk
interface FastEthernet0/14
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/15
switchport access vlan 8
switchport mode access
switchport port-security maximum 2
switchport port-security mac-address sticky
switchport port-security violation restrict
interface FastEthernet0/16
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/17
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/18
switchport access vlan 99
switchport mode access
13
shutdown
interface FastEthernet0/19
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/20
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/21
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/22
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/23
switchport access vlan 99
switchport mode access
shutdown
interface FastEthernet0/24
switchport access vlan 15
switchport mode access
switchport port-security maximum 2
switchport port-security mac-address sticky
switchport port-security violation restrict
interface GigabitEthernet0/1
switchport access vlan 99
switchport mode access
shutdown
interface GigabitEthernet0/2
switchport access vlan 99
switchport mode access
shutdown
interface Vlan1
ip address 192.168.10.60 255.255.255.0
interface Vlan25
mac-address 0090.217d.2601
ip address 10.10.25.254 255.255.255.0
ip default-gateway 10.10.25.1
banner motd ^CACESSO RESTRITO^C
SW-B
ip domain-name ibrama.com
username admin secret 5 $1$mERr$AFX/pZT1Lh7NP3Dp3P/qq/
spanning-tree mode rapid-pvst
spanning-tree extend system-id
interface Port-channel2
switchport mode trunk
14
interface Port-channel3
switchport mode trunk
interface FastEthernet0/3
switchport mode trunk
channel-group 2 mode active
interface FastEthernet0/4
switchport mode trunk
channel-group 2 mode active
interface FastEthernet0/5
switchport mode trunk
channel-group 3 mode active
interface FastEthernet0/6
switchport mode trunk
channel-group 3 mode active
interface GigabitEthernet0/1
switchport mode trunk
interface GigabitEthernet0/2
interface Vlan1
ip address 192.168.10.30 255.255.255.0
interface Vlan25
mac-address 000b.be88.cb01
ip address 10.10.25.253 255.255.255.0
ip default-gateway 10.10.25.1
banner motd ^CACESSO RESTRITO^C
line con 0
password 7 0822455D0A16
logging synchronous
login
line vty 0 4
password 7 0822455D0A16
login local
transport input ssh
line vty 5 15
login local
transport input ssh
15
CONCLUSÃO
16
BIBLIOGRAFIA
17