INFO8490 Lab 3 – Dynamic Routing INFO8490 Lab 3 – Dynamic Routing. Overview This Lab will be recorded in your lab book and is similar to Labs 1 and 2. However, there will be some changes in hardware and IP addressing requirements (be sure that you fully read this document) This Lab requires you to deploy dynamically routed network topologies using RIP and OSPF routing protocols and Variable Length Subnet Masks with a single IP address for all of your required networks. You will be required to document each of the steps involved in this deployment as well as provide a number of screen captures as evidence. You will gain practical experience configuring and documenting the deployment of a dynamically routed network topology using a classless VLSM. Read through the entire lab first so that you completely understand what you are trying to achieve and create a basic plan. This will likely save you problems and having to repeat work later on. Also, be sure to fully review the rubric for this lab. Please note that this Lab is an individual activity you will not be sharing your network devices or work. Preparation You will need: • 1 x Cisco 2960 Switch • 3 x Cisco 2811 Routers • 2 x PC PT Objects • 2 x PT Server (web services enabled) • 1 x PT Laptop • All passwords must be Secret55 • Use Network assigned in Subnet file in the assessment portal Feel free to migrate any of the configurations that you saved from Lab 1 & 2. Remember you should be using either ssh or local console to be connecting to your network devices. Do not use the gui to configure the devices, always use the command line. ITNS Network Security I Lab 3 – Dynamic Routing, 09-2020 v-4.0 |1 INFO8490 Lab 3 – Dynamic Routing Lab Schematic (this is only an example) Figure 1-1 Dynamic Routing Topology using RIP Description This lab expects that you have fully completed the requirements for Lab 1 and 2. In Lab 3 you will be expanding on the topology found in Lab 2. You will build a topology using the schematic in Figure 1-1 as a guideline. Using the objects listed above you will deploy a hub and spoke network. Add an additional Cisco 2811 router as your hub Network devices. This Topology will also include a switch, 2 Workstations and 2 Web Servers. You will configure the networking devices and hosts as per the following instructions. In your own words, provide a description of the expected goals and results as you understand them to be. Part 1 – Building and Configuring the Topology You will initially build out and configure your network topology as per lab 3 network schematic (Figure 1-1). Completing this section will result in a topology that will be ready to configure for dynamic routing. Make sure that the schematic that you include in your lab book reflects your assigned IP’s and required naming conventions. Start by configuring the network devices as per steps 2 through 5 in Lab 2. In the next steps, you will configure and test your initial IP configuration. Using your subnetted IP address (Appendix A): 1. 2. 3. 4. Set the IP on the Server Objects. Set the IP addresses on the Workstation Objects Set the IP configuration on the routers Set the Management IP on the Switch. ITNS Network Security I Lab 3 – Dynamic Routing, 09-2020 v-4.0 |2 INFO8490 Lab 3 – Dynamic Routing Test your initial configuration: 1. 2. 3. 4. 5. Ensure both workstations can ping both sides of their router and the Server Object Ensure the Server Objects can ping both sides of their respective routers Ensure both workstations can open a customized web site being hosted on the Server Object Ensure both workstations can ssh to their switch and router Ensure the Server Objects can ssh into their respective routers. Test your initial configuration: 1. Ensure each workstation/Server can ping its default gateway 2. Ensure each workstationServer can ping the IP address on the other interface of their site router 3. Ensure each network device can be accessed using ssh from a workstation/server on their LAN. 4. Ensure each workstation/Server cannot ping beyond their site router **NOTE: if the ping tests do not work as described, fix the problem prior to proceeding** The topology is now ready to configure for RIP. Be sure to save your running-configs and your packet tracer file(s). Screenshots No screenshots are required for this part. However, you are required to complete and will be marked on Part 1. Your running-config and packet tracer files will be used as evidence that this part was completed. Part 2 – Configure and Test Routing using RIP Using the topology above to configure and test RIP routing on each device that is being used as a Router: 1. Enable RIP ▪ Set Rip Version to Version 2 ▪ Set the Network address for each network that you wish advertise RIP packets to ▪ Disable Auto-summary ▪ Set each internal (LAN) interface as a passive interface. 2. Verify that RIP is enabled ▪ List routing protocols ▪ Show routing database ▪ Show RIP routing information ▪ Show RIP events using debug mode 3. Test RIP Routing ▪ From Waterloo_PC1 make sure that you can access the website on the Kitchener Server and on the Stratford_Webserver ▪ From Kitchener Server make sure you can ping Stratford Server and Waterloo_PC2 ▪ Show RIP events using debug mode Screenshots Include screenshots with descriptions for each item in steps 1 through 3 as per above: ITNS Network Security I Lab 3 – Dynamic Routing, 09-2020 v-4.0 |3 INFO8490 Lab 3 – Dynamic Routing Observations Record your observations including details on any problems encountered or solved. Reflection Record your reflections including details on any problems encountered or solved. Write a reflection the merits of why and when you would implement RIP routing over Static routing. Also write a reflection and discuss things like: the path the routing information takes from the Guelph router to the Stratford router, at what point are the routing updates transferred. Record any additional observations or solutions to problems you encountered. Wrap Up Remember you will need save and upload your packet tracer files and your running-configs for each of the network devices with your portfolio. Part 3 – Configure and Test Routing using OSPF Using the topology above to configure and test OSPF routing on each Router: 1. Disable RIP on each router 2. Enable OSFP ▪ Set the Network address for each network that you wish to advertise OSPF packets to ▪ Disable Auto-summary ▪ Set the interfaces that you do not wish to advertise OSPF packets on to passive 3. Verify that OSPF is enabled ▪ List routing protocols ▪ Show routing database ▪ Show OSPF routing information ▪ Show OSPF events using debug mode 4. Test OSPF Routing ▪ From Waterloo_PC1 make sure that you can access the website on the Kitchener Server and on the Stratford Server ▪ From the Kitchener Server make sure you can ping Stratford Server and Waterloo_PC2 ▪ Show OSPF events using debug mode 5. Configure OSPF Authentication using MD5 ▪ Configure md5 authentication within the OSPF router process ▪ Set md5 authentication on each interface that will receive OSPF updates ▪ Show RIP events using debug mode 6. Test OSPF Routing with md5 Authentication ▪ From Waterloo_PC1 make sure that you can access the website on the Kitchener Server and on the Stratford Server ▪ From the Kitchener Server make sure you can ping Stratford Server and Waterloo_PC2 Screenshots Include screenshots with descriptions for each item in steps 1 through 5 as per above: Remember that you must explain what is happening in each step for each screenshot. ITNS Network Security I Lab 3 – Dynamic Routing, 09-2020 v-4.0 |4 INFO8490 Lab 3 – Dynamic Routing Observations Record your observations including details on any problems encountered or solved. Reflection Record your reflections including details on any problems encountered or solved. Write a reflection the merits of why and when you would implement RIP versus OSPF or OSPF versus RIP. Also write a reflection and discuss things like: the path the routing information takes from the Guelph router to the Stratford router, at what point are the routing updates transferred. Record any additional observations or solutions to problems you encountered. Wrap Up Remember you will need save and upload your packet tracer files and your running-configs for each of the network devices with your portfolio. ITNS Network Security I Lab 3 – Dynamic Routing, 09-2020 v-4.0 |5
