Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
25 views3 pages

Configuration OSPF

Uploaded by

2023379679
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
25 views3 pages

Configuration OSPF

Uploaded by

2023379679
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 3

Configure OSPF

(ROUTER 1)
enable
configure terminal
hostname Router1

interface GigabitEthernet0/0
ip address 10.0.0.1 255.192.0.0
no shutdown

interface GigabitEthernet0/1
ip address 10.64.0.1 255.192.0.0
no shutdown

interface GigabitEthernet0/2
ip address 192.168.10.1 255.255.255.0
no shutdown

router ospf 1
network 10.0.0.0 0.63.255.255 area 0
network 10.64.0.0 0.63.255.255 area 0
network 192.168.10.0 0.0.0.255 area 0

exit

(ROUTER 2)
enable
configure terminal
hostname Router2

interface GigabitEthernet0/0
ip address 10.0.0.2 255.192.0.0
no shutdown

interface GigabitEthernet0/1
ip address 10.192.0.1 255.192.0.0
no shutdown

interface GigabitEthernet0/2
ip address 192.168.15.1 255.255.255.0
no shutdown

router ospf 1
network 10.0.0.0 0.63.255.255 area 0
network 10.192.0.0 0.63.255.255 area 0
network 192.168.15.0 0.0.0.255 area 0

exit

(ROUTER 3)
enable
configure terminal
hostname Router3

interface GigabitEthernet0/0
ip address 10.128.0.1 255.192.0.0
no shutdown
interface GigabitEthernet0/1
ip address 10.64.0.2 255.192.0.0
no shutdown

interface GigabitEthernet0/2
ip address 192.168.20.1 255.255.255.0
no shutdown

router ospf 1
network 10.128.0.0 0.63.255.255 area 0
network 10.64.0.0 0.63.255.255 area 0
network 192.168.20.0 0.0.0.255 area 0

exit

(ROUTER 4)
enable
configure terminal
hostname Router4

interface GigabitEthernet0/0
ip address 10.128.0.2 255.192.0.0
no shutdown

interface GigabitEthernet0/1
ip address 10.192.0.2 255.192.0.0
no shutdown

interface GigabitEthernet0/2
ip address 192.168.25.1 255.255.255.0
no shutdown

router ospf 1
network 10.128.0.0 0.63.255.255 area 0
network 10.192.0.0 0.63.255.255 area 0
network 192.168.25.0 0.0.0.255 area 0

exit

(SWITCH) kena apply for all switch and tukar dkt ip and gateway

enable
configure terminal
interface vlan 1
ip address <Switch_IP_Address> 255.255.255.0
no shutdown

ip default-gateway <Router_G0/2_IP_Address>

exit

EXTENDED ACL

(prevent http traffic)


enable
configure terminal

access-list 101 deny tcp 192.168.10.2 0.0.0.0 192.168.20.20 0.0.0.0 eq 80


access-list 101 deny tcp 192.168.25.2 0.0.0.0 192.168.20.20 0.0.0.0 eq 80
access-list 101 permit ip any any

interface GigabitEthernet0/2
ip access-group 101 out

exit

(allow DNS traffic)


enable
configure terminal

access-list 102 permit udp 192.168.20.2 0.0.0.0 192.168.15.20 0.0.0.0 eq 53


access-list 102 permit udp 192.168.25.2 0.0.0.0 192.168.15.20 0.0.0.0 eq 53
access-list 102 deny ip any any

interface GigabitEthernet0/2
ip access-group 102 out

exit

Configure NAT
(DYNAMIC NAT ROUTER 1)
enable
configure terminal

ip nat pool NAT_POOL 201.58.15.1 201.58.15.3 netmask 255.255.255.0


access-list 1 permit 192.168.10.0 0.0.0.255
ip nat inside source list 1 pool NAT_POOL overload

interface GigabitEthernet0/0
ip nat outside

interface GigabitEthernet0/2
ip nat inside

exit

(PAT ROUTER 3)
enable
configure terminal

access-list 1 permit 192.168.20.0 0.0.0.255


ip nat inside source list 1 interface GigabitEthernet0/0 overload

interface GigabitEthernet0/0
ip nat outside

interface GigabitEthernet0/2
ip nat inside

exit

You might also like