Difference between revisions of "3-tier design"

From Teknologisk videncenter
Jump to: navigation, search
m (Campus Configuration)
m (Undo revision 30076 by Rael (talk))
 
(22 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
=Setup=
 
=Setup=
We are going to configure the following 3-tier design in steps
+
We are going to configure the following 3-tier design in steps<br/>
{|
+
[http://mars.tekkom.dk/mediawiki/images/3/36/ScreenShot14135.png PNG diagram]<br/>
|[[Image:ScreenShot14135.png|800px|left|thumb|Setup]]
 
|}
 
 
Download the setup as a [http://mars.tekkom.dk/mediawiki/images/0/04/OpgaveBooklet.pdf PDF]
 
Download the setup as a [http://mars.tekkom.dk/mediawiki/images/0/04/OpgaveBooklet.pdf PDF]
 
==Campus Configuration==
 
==Campus Configuration==
Line 14: Line 12:
 
##Configure ip addresses on all routed ports [[/routerIPs|Config]]/[[Cisco_basic_configuration/en|Info]]
 
##Configure ip addresses on all routed ports [[/routerIPs|Config]]/[[Cisco_basic_configuration/en|Info]]
 
##Configure ip addresses on all SVI interfaces [[/SVIIPs|Config]]
 
##Configure ip addresses on all SVI interfaces [[/SVIIPs|Config]]
#Configure VTP configuration/[[CCNA_Explorer_3_VTP|Info]]
+
#Configure VTP configuration [[CCNA_Explorer_3_VTP|Info]]
 
##The distribution switches should be VTP Servers [[/VTPServers|Config]]
 
##The distribution switches should be VTP Servers [[/VTPServers|Config]]
##The Access Switches should be VTP Clients [[/VTPClinets|Config]]
+
##The Access Switches should be VTP Clients [[/VTPServers|Config]]
##The VTP Domain and password should be different in each block [[/VTPConfig|Config]]
+
##The VTP Domain and password should be different in each block [[/VTPServers|Config]]
 
#Configure Distribution Switch 1 to be the STP Master for alle PVST+ instances [[/STPconfig|Config]]/[[Spanning_tree|Info]]
 
#Configure Distribution Switch 1 to be the STP Master for alle PVST+ instances [[/STPconfig|Config]]/[[Spanning_tree|Info]]
 
#Configure HSRP on all SVI interfaces [[/HSRPConfig|Config]]/[[HSRP|Info]]
 
#Configure HSRP on all SVI interfaces [[/HSRPConfig|Config]]/[[HSRP|Info]]
Line 25: Line 23:
 
#Configure ports for the clients [[/Access ports|Config]]/[[VLAN_Cisco_IOS|Info]]
 
#Configure ports for the clients [[/Access ports|Config]]/[[VLAN_Cisco_IOS|Info]]
 
#Configure OSPF [[OSPF_Cisco_IOS|Info]]
 
#Configure OSPF [[OSPF_Cisco_IOS|Info]]
##Configure OSPF area 0 on all interconnects
+
##Configure OSPF area 0 on all interconnects [[/OSPFConfig|Config]]
 
##Configure OSPF area 1/2 on the distribution blocks
 
##Configure OSPF area 1/2 on the distribution blocks
 
##Do '''Not''' use stub areas
 
##Do '''Not''' use stub areas
 +
#Configure a static default route on HQFW01 point to 80.112.80.1[[/StaticConfig|Config]]
 +
#Redistribute the default route into OSPF [[/OSPFRedistConfig|Config]]
 +
#Configure NAT/PAT on HQFW01 [[/NATConfig|Config]]/[[NAT_Cisco_IOS#Overloading_example_2:_Connection_with_floating_WAN_IP_Address_.28DHCP.29|Info]]
 +
 +
==Branch Configuration==
 +
{|
 +
|[[Image:ScreenShot14139.png|800px|left|thumb|Branches]]
 +
|}
 +
#Add another ethernet interface to the HQFW01 Router
 +
#Configure the internet as a norman Layer 2 switch
 +
#Configure the Branch 1 equipment
 +
##Configure IP addresses on all devices
 +
##Configure SVI interfaces for the user LANs
 +
#Configure tunnel interfaces to connect the Branch with HQ [[/tunnelConfig|Config]]
 +
#Configure OSPF across the tunnel
 +
##Configure Area 10 for the user LANs inside Branch 1
 +
#Configure FrameRelay as the primary WAN connection [[/FRCloudConfig|Config]]
 +
##Configure frame-relay maps for the missing routers [[/FRConfig|Config]]
 +
==Routed Access==
 +
#Create an addressing scheme for the network that supports Routed Access Layers
 +
##The Access switches only need room for 48 hosts in each VLAN
 +
##The access switches needs min. 2 VLANs. Data and Voice
 +
##All Access switches need a loopback interface for management.
 +
##Tune OSPF timers in packet tracer as much as possible.
 +
##Configure alle the Distribution, Core switches and Routers with Loopback interfaces too.
 +
#To make management easier configure a DNS server
 +
##The Server should be configured in the Data VLAN on Access Switch 1 in Distribution Block 1
 +
##Configure all the network equipment with a A record for the loopback address

Latest revision as of 10:23, 3 June 2015

Setup

We are going to configure the following 3-tier design in steps
PNG diagram
Download the setup as a PDF

Campus Configuration

Configure the campus core and the 2 distribution blocks with OSPF and the other needed protocols.

Campus
  1. Configure Hostnames on all devices in the Campus Config/Info
  2. Configure IP addresses on all devices
    1. Configure ip addresses on all routed ports Config/Info
    2. Configure ip addresses on all SVI interfaces Config
  3. Configure VTP configuration Info
    1. The distribution switches should be VTP Servers Config
    2. The Access Switches should be VTP Clients Config
    3. The VTP Domain and password should be different in each block Config
  4. Configure Distribution Switch 1 to be the STP Master for alle PVST+ instances Config/Info
  5. Configure HSRP on all SVI interfaces Config/Info
  6. Configure Etherchannel between the distibution switches Config/Info
  7. Configure trunk ports between the Distribution and Access Switches Config/Info
  8. Configure the access switches with an ip address in the MGMT VLAN Config
  9. Configure ports for the clients Config/Info
  10. Configure OSPF Info
    1. Configure OSPF area 0 on all interconnects Config
    2. Configure OSPF area 1/2 on the distribution blocks
    3. Do Not use stub areas
  11. Configure a static default route on HQFW01 point to 80.112.80.1Config
  12. Redistribute the default route into OSPF Config
  13. Configure NAT/PAT on HQFW01 Config/Info

Branch Configuration

Branches
  1. Add another ethernet interface to the HQFW01 Router
  2. Configure the internet as a norman Layer 2 switch
  3. Configure the Branch 1 equipment
    1. Configure IP addresses on all devices
    2. Configure SVI interfaces for the user LANs
  4. Configure tunnel interfaces to connect the Branch with HQ Config
  5. Configure OSPF across the tunnel
    1. Configure Area 10 for the user LANs inside Branch 1
  6. Configure FrameRelay as the primary WAN connection Config
    1. Configure frame-relay maps for the missing routers Config

Routed Access

  1. Create an addressing scheme for the network that supports Routed Access Layers
    1. The Access switches only need room for 48 hosts in each VLAN
    2. The access switches needs min. 2 VLANs. Data and Voice
    3. All Access switches need a loopback interface for management.
    4. Tune OSPF timers in packet tracer as much as possible.
    5. Configure alle the Distribution, Core switches and Routers with Loopback interfaces too.
  2. To make management easier configure a DNS server
    1. The Server should be configured in the Data VLAN on Access Switch 1 in Distribution Block 1
    2. Configure all the network equipment with a A record for the loopback address