TE1 NT2 S T NT1 U S TE2 TA R US EU Mask CIDR Net Host Rng 252 /30 6 2 4 248 /29 5 3 8 240 /28 4 4 16 224 /27 3 5 32 192 /26 2 6 64 128 /25 1 7 128 0 /24 0 8 0 Ports Protocol 21 22 23 25 53 69 110 119 161 FTP SSH Telnet SMTP DNS TFTP POP3 NNTP SNMP 80: HTTP 443: HTTPS TCP TCP Both! UDP Protocol Type EIGRP Hybrid Admin Dist 90 Metrics Notes Multiple 32-bit composite IGRP DistVector 100 Bandwidth, Delay OSPF Linkstate DistVector 110 Bandwidth Classless, VLSM, DUAL, RTP, PDMs (1x table set per prot), multiple AS#s, mult L3 prots, summarization Cisco prop, 255 max-hop-ct (100 default), AS#, updates @90 sec, invalid @270 sec, hold-down 280 secs, flush 630 secs, classless, VLSM Dijkstra alg, classless (VLSM), wildcard mask 120 Hop count RIPv1 7 6 5 4 3 2 1 OSI Layer Application Presentation Session Transport Network Data Link Physical IP Classes A 1 – 126 B 128 – 191 C 192 – 223 PDU Data Data Data Segment Packet Frame Bits classful, 30 sec updates,180 sec route invalid,240 sec route flush, max. 15 hops (Bellman-Ford alg), round-robin load balancing (max. 6 links) Internet Layer 4 Application Internet layer Protocols SNMP, Telnet, FTP, TFTP 3 Transport 2 Internetwork 1 Network Interface TCP, UDP IP, OSPF, RIP, ICMP lower-layer protocol standards Private IPs 10.0.0.0 – 10.255.255.255 172.16.0.0 – 172.31.255.255 192.168.0.0 – 192.168.255.255 Dialer map steps: 1. dialer 2. map 3. <protocol> 4. <next-hop-address> 5. dial-string Blocking Listening Learning Forwarding DDR dialing sequence: 1. route determination 2. ID interesting traffic 3. Dialer info lookup 4. Traffic txn 5. Call terminated/timed out Standard ACL: Cisco(config)#access-list <1-99> <deny|permit> <source IP> <WC mask> Cisco(config)#access-list <1-99> permit any Extended ACL: Cisco(config)#access-list <100-199> <deny|permit> <protocol> <source IP> <WC mask> <dest IP> <WC mask> eq <port> Cisco(config)#access-list <100-199> permit any any To apply ACL: Cisco(config-if)#ip access-group <#> <in|out> Applying IP address to 2950 switch: (config)#interface vlan1 ip address <ip address> <mask> no shut Configure a new switch SW2#Vlan database SW2#vtp domain fred SW2#exit set-up Client Trunking SW2(conf)#int fa0/11 SW2(conf-if)#switch mode dynamic auto SW2(conf-if)#^Z SW2# Trouble Shooting Domain name must be the same One switch must be server (switch mode dynamic desirable) The others must be clients (switch mode dynamic auto) STP States Preventing use of looped paths Prep to forward w/o populating MAC table Populate MAC table, not forwarding Sending/rcving data frames DDR Configuration BRI (min config, switch-type and spid) RT#isdn switch-type basic-ni1 Defining Interesting Traffic RT1#access-list 101 permit tcp any host 172.16.3.1 eq 80 ! RT1#dialer-list 1 protocol ip permit ! RT#dialer-list 2 protocol ip list 101 RT#int bri 0 RT#(conf-if)encap ppp RT#(conf-if)ip address 172.16.2.2 255.255.255.0 RT#(conf-if)isdn spid1 555555522222202 (if required) !use this one if all IP is considered interesting RT#(conf-if)dialer-group 1 !or use next statement to trigger web to RT#(conf-if)dialer-group 2 NOTE: only one dialer group per interface!! Dailing: RT#(conf-if)dialer string 17067924567 !or if using broadcast names/ip map RT#(conf-if)dialer map ip 172.16.2.2 broadcast name LA 17212345555 DDR Configuration PRI Must configure: switch-type, DSO channels, encoding & framing, Configure a Default Route ip route 0.0.0.0 0.0.0.0 192.1.1.6 ip route default-network 10.0.0.0 (used to reach another Class A,B, or C network by default) Frame-Relay Static Mapping no frame-relay inverse-arp frame-relay map ip 199.1.1.2 570 broadcast frame-relay map ip 199.1.1.3 571 broadcast Dynamic frame-relay interface-dlci 570 [lim type] Simulation Tips 1. Id Problem/Understand Topology 2. Watch the time 3. Use organized Troubleshooting 4. Things to look for: - Network Statements - IP addressing/Mask - VTY Passwords Point-to-Point (inverse ARP not needed) interface serial 0.3 point-to-point ip address 123.45.6.7 255.255.0.0 frame-relay interface-dlci 570