- Equipment List
- General Guidelines
- Setting Up the Lab
- Practice Lab 1 Exercises Section 1.0: Basic Configuration (10 points)
- Section 2.0: Routing Configuration (25 points)
- Section 3.0: ISDN Configuration (8 points)
- Section 4.0: PIX Configuration (5 points)
- Section 5.0: IPSec/GRE Configuration (10 points)
- Section 6.0: IOS Firewall + IOS IDS Configuration(10 points)
- Section 7.0: AAA (7 points)
- Section 8.0: Advanced Security (10 points)
- Section 9.0: IP Services and Protocol-Independent Features (10 points)
- Section 10.0: Security Violations (5 points)
- Verification, Hints, and Troubleshooting Tips
- Section 1.0: Basic Configuration
- Section 2.0: Routing Configuration
- Section 3.0: ISDN Configuration
- Section 4.0: PIX Configuration
- Section 5.0: IPSec/GRE Configuration
- Section 6.0: IOS Firewall Configuration
- Section 7.0: AAA
- Section 8.0: Advanced Security
- Section 9.0: IP Services and Protocol-Independent Features
- Section 10.0: Security Violations
Setting Up the Lab
You can use any combination of routers as long as you fulfill the topology diagram outlined in Figure 1-1. It is not compulsory to use the same model of routers.
Frame Relay DLCI Information
Only DLCIs indicated in Figure 1-2 should be mapped on the routers.
Figure 1-2 Frame Relay DLCI Diagram
Routing Protocol Information
Use Figure 1-3 to configure routing protocols for the exercises to follow.
Figure 1-3 Routing Protocol Information
BGP Information
Use Figure 1-4 to configure BGP.
Cabling Instructions
Use Tables 1-1 and 1-2 for cabling all devices in your topology. It is not a must to use same type or sequence of interface. You may use any combination of interface(s) as long as you fulfill the requirement.
Figure 1-4 BGP Information
Table 1-1 Cabling Instructions (Ethernet)
Ethernet Cabling |
Switch1 |
R2-ethernet0/0 |
Port 1 |
R3-fastethernet0/0 |
Port 2 |
R4-fastethernet2/0 |
Port 3 |
R5-ethernet0 |
Port 4 |
R6-ethernet0/0 to VLAN6 |
Port 5 |
R6-ethernet0/1 to pix |
Port 6 |
Pix-inside-ethernet1 |
Port 7 |
Pix-outside-ethernet0 |
Port 8 |
continues |
|
IDS-control-interface |
Port 9 |
IDS-sniffing-interface |
Port 10 |
AAA server |
Port 11 |
Table 1-2 Cabling Instructions (Serial)
Back-to-Back Cabling |
DTE-End |
DCE-End |
R1-to-frsw* (to R2/R3) |
R1-serial2/0 |
R6-serial1/0 |
R1-to-frsw* (to R5) |
R1-serial2/1 |
R6-serial1/1 |
R1-to-R4 |
R1-serial2/2 |
R4-serial3/0 |
R2-to-frsw* (to R1/R3) |
R2-serial1/0 |
R6-serial1/2 |
R3-to-frsw* (to R1/R2) |
R3-serial1/0 |
R6-serial1/3 |
R5-to-frsw* (to R1) |
R5-serial0 |
R6-serial1/4 |
*frsw = Frame Relay Switch R6 |
|
|