Datacenter CCNP 3 - december 2009
From Teknologisk videncenter
Contents
Access Layer
Lokale 1
Building configuration... Current configuration : 4993 bytes ! version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Lokale1 ! enable secret 5 $1$uw0B$hEkCpsrPMRzcE5hX5UGo90 enable password cisco ! ip subnet-zero ! ip dhcp snooping vlan 1 100 ip ssh time-out 120 ip ssh authentication-retries 3 ! ! spanning-tree mode mst spanning-tree portfast bpduguard default no spanning-tree optimize bpdu transmission spanning-tree extend system-id ! spanning-tree mst configuration name REGION1 revision 1 instance 1 vlan 1-2 instance 2 vlan 3, 100 ! ! ! ! ! interface FastEthernet0/1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/2 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/3 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/4 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/5 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/6 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/7 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/8 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/9 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/10 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/11 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/12 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/13 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/14 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/15 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/16 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/17 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/18 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/19 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/20 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/21 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/22 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/23 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/24 switchport access vlan 100 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface GigabitEthernet0/1 ! interface GigabitEthernet0/2 ! interface Vlan1 no ip address no ip route-cache shutdown ! interface Vlan100 ip address 192.168.100.11 255.255.255.0 no ip route-cache ! ip http server ! line con 0 line vty 0 4 password cisco login line vty 5 15 password cisco login ! ! end
Lokale 2
Building configuration... Current configuration : 5556 bytes ! version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Lokale2 ! enable secret 5 $1$2P6t$ucjfqPwCMeUBxZyTLav3i. enable password cisco ! ip subnet-zero ! ip dhcp snooping vlan 1 100 ip dhcp snooping ip ssh time-out 120 ip ssh authentication-retries 3 ! ! spanning-tree mode mst spanning-tree portfast bpduguard default no spanning-tree optimize bpdu transmission spanning-tree extend system-id ! spanning-tree mst configuration name REGION1 revision 1 instance 1 vlan 1-2 instance 2 vlan 3, 100 ! ! ! ! ! interface FastEthernet0/1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/2 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/3 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/4 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/5 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/6 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/7 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/8 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/9 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/10 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/11 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/12 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/13 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/14 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/15 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/16 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/17 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/18 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/19 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/20 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/21 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/22 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/23 switchport access vlan 2 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/24 switchport access vlan 100 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface GigabitEthernet0/1 ! interface GigabitEthernet0/2 ! interface Vlan1 no ip address no ip route-cache shutdown ! interface Vlan100 ip address 192.168.100.12 255.255.255.0 no ip route-cache ! ip http server ! line con 0 line vty 0 4 password cisco login line vty 5 15 password cisco login ! ! end
Lokale 3
Building configuration... Current configuration : 4981 bytes ! version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Lokale3 ! enable secret 5 $1$LOyI$LS5WuzEu24t1OzAwUJP6/. enable password cisco ! ip subnet-zero ! ip dhcp snooping vlan 1 100 ip dhcp snooping ip ssh time-out 120 ip ssh authentication-retries 3 ! ! spanning-tree mode mst spanning-tree portfast bpduguard default no spanning-tree optimize bpdu transmission spanning-tree extend system-id ! spanning-tree mst configuration name REGION1 revision 1 instance 1 vlan 1-2 instance 2 vlan 3, 100 ! ! ! ! ! interface FastEthernet0/1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/2 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/3 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/4 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/5 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/6 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/7 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/8 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/9 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/10 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/11 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/12 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/13 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/14 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/15 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/16 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/17 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/18 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/19 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/20 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/21 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/22 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/23 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface FastEthernet0/24 description Management vlan 100 switchport access vlan 100 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security aging time 60 spanning-tree portfast ! interface Vlan1 no ip address no ip route-cache shutdown ! interface Vlan100 ip address 192.168.100.13 255.255.255.0 no ip route-cache ! ip http server ! line con 0 line vty 0 4 password cisco login line vty 5 15 password cisco login ! ! end
Lokale 4
Lokale 5
Lokale 6
Distribution Layer
Distribution 1
Distribution 2
Distribution 3
Distribution 4
Core Layer
Core 1
Core 2
Gateways
Gateway 1
Building configuration... Current configuration : 2317 bytes ! ! Last configuration change at 09:09:32 UTC Mon Dec 14 2009 ! NVRAM config last updated at 13:00:01 UTC Fri Dec 11 2009 ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Gateway1 ! boot-start-marker boot-end-marker ! enable secret 5 $1$SVTy$kFFE8ZQHYNjdhokEH84Gn0 enable password cisco ! no aaa new-model ! resource policy ! ip cef ! ! ! ! no ip domain lookup ip host dist3 10.0.0.26 ip host dist2 10.0.0.50 ip host core1 10.0.0.1 ip host core2 10.0.0.29 ip host dist1 10.0.0.2 ip host ac3 192.168.100.13 ip host ac2 192.168.100.12 ip host dist4 10.0.0.38 ip host ac6 192.168.101.16 ip host ac5 192.168.101.15 ip host ac4 192.168.101.14 ip host gw1 10.0.0.10 ip host gw2 10.0.0.18 ip host ac1 192.168.100.11 ! ! ! voice-card 0 ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 10.254.0.1 255.255.255.255 ! interface FastEthernet0/0 ip address 10.0.0.10 255.255.255.252 ip nat inside ip virtual-reassembly speed auto full-duplex no mop enabled ! interface FastEthernet0/1 ip address 10.0.0.30 255.255.255.252 ip nat inside ip virtual-reassembly duplex auto speed auto ! interface FastEthernet0/1/0 switchport access vlan 20 ! interface FastEthernet0/1/1 shutdown ! interface FastEthernet0/1/2 shutdown ! interface FastEthernet0/1/3 shutdown ! interface Serial0/2/0 no ip address shutdown no fair-queue clock rate 2000000 ! interface Vlan1 no ip address shutdown ! interface Vlan20 ip address dhcp ip nat outside ip virtual-reassembly ! router ospf 1 log-adjacency-changes network 10.0.0.8 0.0.0.3 area 30 network 10.0.0.28 0.0.0.3 area 30 default-information originate ! ip route 0.0.0.0 0.0.0.0 dhcp ! ! ip http server no ip http secure-server ip nat inside source list Internet interface Vlan20 overload ip nat inside source static tcp 10.254.0.1 23 interface Vlan20 23 ! ip access-list extended Internet permit ip 10.0.0.0 0.0.0.255 any permit ip 192.168.0.0 0.7.255.255 any permit ip 192.168.100.0 0.0.0.255 any permit ip 192.168.101.0 0.0.0.255 any ! ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 exec-timeout 0 0 password cisco login line vty 5 15 exec-timeout 0 0 password cisco login ! scheduler allocate 20000 1000 end Gateway1#
Gateway 2
Building configuration... Current configuration : 2228 bytes ! ! No configuration change since last restart ! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Gateway2 ! boot-start-marker boot-end-marker ! enable secret 5 $1$vuPD$gxv5UIIr85nInRV.U0A4y/ enable password cisco ! no aaa new-model ! resource policy ! ip cef ! ! ! ! ip host ac4 192.168.101.14 ip host gw1 10.0.0.10 ip host gw2 10.0.0.18 ip host core1 10.0.0.1 ip host core2 10.0.0.29 ip host dist1 10.0.0.2 ip host dist2 10.0.0.50 ip host dist3 10.0.0.26 ip host dist4 10.0.0.38 ip host ac1 192.168.100.11 ip host ac2 192.168.100.12 ip host ac3 192.168.100.13 ip host ac5 192.168.101.15 ip host ac6 192.168.101.16 ! ! ! voice-card 0 ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 10.254.0.2 255.255.255.255 ! interface FastEthernet0/0 ip address 10.0.0.34 255.255.255.252 ip nat inside ip virtual-reassembly duplex auto speed auto no mop enabled ! interface FastEthernet0/1 ip address 10.0.0.18 255.255.255.252 ip nat inside ip virtual-reassembly duplex auto speed auto ! interface FastEthernet0/3/0 switchport access vlan 10 ! interface FastEthernet0/3/1 shutdown ! interface FastEthernet0/3/2 shutdown ! interface FastEthernet0/3/3 shutdown ! interface Serial0/1/0 no ip address shutdown no fair-queue clock rate 2000000 ! interface Serial0/1/1 no ip address shutdown clock rate 2000000 ! interface Vlan1 no ip address shutdown ! interface Vlan10 ip address dhcp ip nat outside ip virtual-reassembly ! router ospf 1 log-adjacency-changes network 10.0.0.16 0.0.0.3 area 30 network 10.0.0.32 0.0.0.3 area 30 default-information originate ! ip route 0.0.0.0 0.0.0.0 192.168.138.1 ! ! ip http server no ip http secure-server ip nat inside source list Internet interface Vlan10 overload ip nat inside source static tcp 10.254.0.2 23 interface Vlan10 23 ! ip access-list extended Internet permit ip 10.0.0.0 0.0.0.255 any permit ip 192.168.0.0 0.7.255.255 any permit ip 192.168.100.0 0.0.0.255 any permit ip 192.168.101.0 0.0.0.255 any ! ! ! ! ! ! ! control-plane ! ! ! ! ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 password cisco login ! scheduler allocate 20000 1000 end Gateway2#