Difference between revisions of "CCDP-Campus Viborg/Opgave 3/Gruppe14"
m |
|||
(22 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
− | == | + | === Netværks tegning === |
− | + | {| | |
+ | |- | ||
+ | | [[Image:Opgave3.jpg|thumb|left|800px|Netværks tegning]] | ||
+ | |} | ||
− | + | <br> | |
− | |||
− | |||
− | * configs | + | === Navngivning === |
+ | |||
+ | Vi har valgt at navngive udstyret på følgende måde. | ||
+ | |||
+ | De første 2 karakterer viser lokationens navn, dernæst filial nr; så type, og til sidst løbenummer. | ||
+ | |||
+ | Eksempler på navngivning kan ses nedenfor. | ||
+ | |||
+ | {| | ||
+ | |- | ||
+ | | [[Image:Navngivning.JPG|thumb|left|800px|Navngivning]] | ||
+ | |} | ||
+ | |||
+ | === Udstyr === | ||
+ | |||
+ | '''Core:''' | ||
+ | Cisco 6509-E x 2 | ||
+ | En 6500 vil indeholde: | ||
+ | |||
+ | 1x Supervisor Engine 720 - VS-S720-10G-3CXL | ||
+ | |||
+ | 2 x Cisco Catalyst 6500 Series Gigabit Ethernet Interface Module WS-X6748-SFP | ||
+ | |||
+ | 1x Cisco Firewall Services Module - WS-SVC-FWM-1-K9 | ||
+ | * SC-SVC-FWM-3.2-K9 – Firewall software module 3.2 | ||
+ | * FR-SVC-FWM-VC-T4 - 250 virtual firewall licenses for Cisco FWSM Software 3.1 or above | ||
+ | |||
+ | 1x Cisco WiSM - WS-SVC-WISM-1-K9 | ||
+ | |||
+ | '''Data Center Core/Distribution(collapsed core datacenter):''' | ||
+ | |||
+ | 2 x Cisco Catalyst 3750G-48PS-48 Ethernet 10/100/1000 ports with IEEE 802.3af and Cisco prestandard PoE and four SFP uplinks | ||
+ | |||
+ | '''Access (der er 20 access Krydsfelter) 1 krydsfelt vil se således ud:''' | ||
+ | |||
+ | 1x Cisco Catalyst 2960S-48FPD-L | ||
+ | |||
+ | 1x Cisco Catalyst 2960S-48TD-L | ||
+ | |||
+ | '''Edge:''' | ||
+ | |||
+ | 2 x Cisco 2801 | ||
+ | |||
+ | 2x Firewall ASA5510-SEC-BUN-K9 (en interior FW og en exterior FW) imellem vores DMZ | ||
+ | |||
+ | '''WAN:''' | ||
+ | |||
+ | 2 x Cisco 2801 | ||
+ | |||
+ | '''Filial:''' | ||
+ | |||
+ | 1x Cisco 2801 | ||
+ | |||
+ | Extra: der skal købes 10GB fibermoduler(SFP) til alle fiberlinks, der skal også IOS på der understøtter BGP, OSPF og hvad vi ellers har med i vores setup | ||
+ | |||
+ | Der skal laves UPS backup strøm til alle vores krydsfelter/core så IP telefoni samt kritiske systemer kører i tilfælde af strømnedbrud | ||
+ | |||
+ | === IP PLAN === | ||
+ | {| | ||
+ | |[[Image:Ipadr.jpg|thumb|left|800px|]] | ||
+ | |- | ||
+ | |[[Image:Ipadr2.jpg|thumb|left|800px|]] | ||
+ | |- | ||
+ | |[[Image:Ipadr3.jpg|thumb|left|800px|]] | ||
+ | |- | ||
+ | |[[Image:Ipadr4.jpg|thumb|left|800px|]] | ||
+ | |- | ||
+ | |[[Image:Ipadr5.jpg|thumb|left|800px|]] | ||
+ | |} | ||
+ | |||
+ | |||
+ | |||
+ | === configs === | ||
+ | |||
+ | ===bgp_conf_vi01mp11=== | ||
+ | |||
+ | interface loopback0 | ||
+ | |||
+ | ip address 192.168.0.2 255.255.255.255 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface FastEthernet1/3 | ||
+ | |||
+ | description Backbone to VI01MP10 | ||
+ | |||
+ | ip address 10.0.10.70 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/4 | ||
+ | |||
+ | description "MPLS" til Horsens | ||
+ | |||
+ | ip address x.x.x.x x.x.x.x | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/1 | ||
+ | |||
+ | description Backbone til VI01CO10 | ||
+ | |||
+ | ip address 10.0.10.58 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/2 | ||
+ | |||
+ | description Backbone til VI01CO11 | ||
+ | |||
+ | ip address 10.0.10.50 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | router ospf 1 | ||
+ | |||
+ | network 10.0.10.70 0.0.0.0 area 0 | ||
+ | |||
+ | network 10.0.10.58 0.0.0.0 area 0 | ||
+ | |||
+ | network 10.0.10.50 0.0.0.0 area 0 | ||
+ | |||
+ | ! | ||
+ | |||
+ | router bgp 700 | ||
+ | |||
+ | no synchronization | ||
+ | |||
+ | redistribute ospf 1 route-map LAN_Subnets | ||
+ | |||
+ | neighbor 192.168.0.1 remote-as 700 | ||
+ | |||
+ | neighbor 192.168.0.1 update source loopback0 | ||
+ | |||
+ | neighbor x.x.x.1(ISP) remote-as xxx(ISP) | ||
+ | |||
+ | neighbor x.x.x.1(ISP)update source loopback0 | ||
+ | |||
+ | no auto-summary | ||
+ | |||
+ | ! | ||
+ | |||
+ | access-list 10 permit 10.0.0.0 0.31.255.255 | ||
+ | |||
+ | ! | ||
+ | |||
+ | route-map LAN_Subnets permit 10 | ||
+ | |||
+ | |||
+ | |||
+ | match ip address 10 | ||
+ | |||
+ | set metric 100 | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | ===bgp_config_vi01mp10=== | ||
+ | |||
+ | |||
+ | |||
+ | interface loopback0 | ||
+ | |||
+ | ip address 192.168.0.1 255.255.255.255 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface FastEthernet1/3 | ||
+ | |||
+ | description Backbone to VI01MP11 | ||
+ | |||
+ | ip address 10.0.10.69 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/4 | ||
+ | |||
+ | description "MPLS" til Horsens | ||
+ | |||
+ | ip address x.x.x.x x.x.x.x | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/1 | ||
+ | |||
+ | description Backbone til VI01CO10 | ||
+ | |||
+ | ip address 10.0.10.54 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | interface GI1/2 | ||
+ | |||
+ | description Backbone til VI01CO11 | ||
+ | |||
+ | ip address 10.0.10.46 255.255.255.252 | ||
+ | |||
+ | ! | ||
+ | |||
+ | router ospf 1 | ||
+ | |||
+ | network 10.0.10.69 0.0.0.0 area 0 | ||
+ | |||
+ | network 10.0.10.54 0.0.0.0 area 0 | ||
+ | |||
+ | network 10.0.10.46 0.0.0.0 area 0 | ||
+ | |||
+ | ! | ||
+ | |||
+ | router bgp 700 | ||
+ | |||
+ | no synchronization | ||
+ | |||
+ | redistribute ospf 1 route-map LAN_Subnets | ||
+ | |||
+ | neighbor 192.168.0.2 remote-as 700 | ||
+ | |||
+ | neighbor 192.168.0.2 update source loopback0 | ||
+ | |||
+ | neighbor x.x.x.2(ISP) remote-as xxx(ISP) | ||
+ | |||
+ | neighbor x.x.x.2(ISP) update source loopback0 | ||
+ | |||
+ | no auto-summary | ||
+ | |||
+ | ! | ||
+ | |||
+ | access-list 10 permit 10.0.0.0 0.31.255.255 | ||
+ | |||
+ | ! | ||
+ | |||
+ | route-map LAN_Subnets permit 10 | ||
+ | |||
+ | match ip address 10 | ||
+ | |||
+ | set metric 100 | ||
+ | |||
+ | |||
+ | |||
+ | http://www.cisco.com/en/US/docs/ios/12_2/ip/configuration/guide/1cfbgp.html | ||
+ | http://www.cisco.com/en/US/docs/ios/12_0/np1/configuration/guide/1cospf.html http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.1E/native/configuration/guide/l3_int.html |
Latest revision as of 11:26, 22 September 2010
Contents
Netværks tegning
Navngivning
Vi har valgt at navngive udstyret på følgende måde.
De første 2 karakterer viser lokationens navn, dernæst filial nr; så type, og til sidst løbenummer.
Eksempler på navngivning kan ses nedenfor.
Udstyr
Core: Cisco 6509-E x 2 En 6500 vil indeholde:
1x Supervisor Engine 720 - VS-S720-10G-3CXL
2 x Cisco Catalyst 6500 Series Gigabit Ethernet Interface Module WS-X6748-SFP
1x Cisco Firewall Services Module - WS-SVC-FWM-1-K9
- SC-SVC-FWM-3.2-K9 – Firewall software module 3.2
- FR-SVC-FWM-VC-T4 - 250 virtual firewall licenses for Cisco FWSM Software 3.1 or above
1x Cisco WiSM - WS-SVC-WISM-1-K9
Data Center Core/Distribution(collapsed core datacenter):
2 x Cisco Catalyst 3750G-48PS-48 Ethernet 10/100/1000 ports with IEEE 802.3af and Cisco prestandard PoE and four SFP uplinks
Access (der er 20 access Krydsfelter) 1 krydsfelt vil se således ud:
1x Cisco Catalyst 2960S-48FPD-L
1x Cisco Catalyst 2960S-48TD-L
Edge:
2 x Cisco 2801
2x Firewall ASA5510-SEC-BUN-K9 (en interior FW og en exterior FW) imellem vores DMZ
WAN:
2 x Cisco 2801
Filial:
1x Cisco 2801
Extra: der skal købes 10GB fibermoduler(SFP) til alle fiberlinks, der skal også IOS på der understøtter BGP, OSPF og hvad vi ellers har med i vores setup
Der skal laves UPS backup strøm til alle vores krydsfelter/core så IP telefoni samt kritiske systemer kører i tilfælde af strømnedbrud
IP PLAN
configs
bgp_conf_vi01mp11
interface loopback0
ip address 192.168.0.2 255.255.255.255
!
interface FastEthernet1/3
description Backbone to VI01MP10
ip address 10.0.10.70 255.255.255.252
!
interface GI1/4
description "MPLS" til Horsens
ip address x.x.x.x x.x.x.x
!
interface GI1/1
description Backbone til VI01CO10
ip address 10.0.10.58 255.255.255.252
!
interface GI1/2
description Backbone til VI01CO11
ip address 10.0.10.50 255.255.255.252
!
router ospf 1
network 10.0.10.70 0.0.0.0 area 0
network 10.0.10.58 0.0.0.0 area 0
network 10.0.10.50 0.0.0.0 area 0
!
router bgp 700
no synchronization
redistribute ospf 1 route-map LAN_Subnets
neighbor 192.168.0.1 remote-as 700
neighbor 192.168.0.1 update source loopback0
neighbor x.x.x.1(ISP) remote-as xxx(ISP)
neighbor x.x.x.1(ISP)update source loopback0
no auto-summary
!
access-list 10 permit 10.0.0.0 0.31.255.255
!
route-map LAN_Subnets permit 10
match ip address 10
set metric 100
bgp_config_vi01mp10
interface loopback0
ip address 192.168.0.1 255.255.255.255
!
interface FastEthernet1/3
description Backbone to VI01MP11
ip address 10.0.10.69 255.255.255.252
!
interface GI1/4
description "MPLS" til Horsens
ip address x.x.x.x x.x.x.x
!
interface GI1/1
description Backbone til VI01CO10
ip address 10.0.10.54 255.255.255.252
!
interface GI1/2
description Backbone til VI01CO11
ip address 10.0.10.46 255.255.255.252
!
router ospf 1
network 10.0.10.69 0.0.0.0 area 0
network 10.0.10.54 0.0.0.0 area 0
network 10.0.10.46 0.0.0.0 area 0
!
router bgp 700
no synchronization
redistribute ospf 1 route-map LAN_Subnets
neighbor 192.168.0.2 remote-as 700
neighbor 192.168.0.2 update source loopback0
neighbor x.x.x.2(ISP) remote-as xxx(ISP)
neighbor x.x.x.2(ISP) update source loopback0
no auto-summary
!
access-list 10 permit 10.0.0.0 0.31.255.255
!
route-map LAN_Subnets permit 10
match ip address 10
set metric 100
http://www.cisco.com/en/US/docs/ios/12_2/ip/configuration/guide/1cfbgp.html http://www.cisco.com/en/US/docs/ios/12_0/np1/configuration/guide/1cospf.html http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.1E/native/configuration/guide/l3_int.html