Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Topology
Assessment Objectives
Part 1: Initialize Devices (8 points, 5 minutes)
Part 2: Configure Device Basic Settings (28 points, 30 minutes)
Part 3: Configure Switch Security, VLANs, and Inter-VLAN Routing (14 points, 15 minutes)
Part 4: Configure OSPFv2 Dynamic Routing Protocol (24 points, 25 minutes)
Part 5: Implement DHCP and NAT (13 points, 25 minutes)
Part 6: Configure and Verify Access Control Lists (ACLs) (13 points, 25 minutes)
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 20
CCNA: Routing and Switching Essentials SA Exam
Scenario
In this Skills Assessment (SA) you will configure a small network. You will configure routers, switches, and
PCs to support IPv4 connectivity, switch security, and inter VLAN routing. You will then configure the devices
with OSPFv2, DHCP, and dynamic and static NAT. Access control lists (ACLs) will be applied for added
security. You will test and document the network using common CLI commands throughout the assessment.
Required Resources
3 Routers (Cisco 1941 with Cisco IOS Release 15.2(4)M3 universal image or comparable)
2 Switches (Cisco 2960 with Cisco IOS Release 15.0(2) lanbasek9 image or comparable)
3 PCs (Windows 7, Vista, or XP with terminal emulation program, such as Tera Term)
Console cable to configure the Cisco IOS devices via the console ports
Ethernet and Serial cables as shown in the topology
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 2 of 20
CCNA: Routing and Switching Essentials SA Exam
Note: It may be necessary to disable the PC firewall for pings to be successful later in this lab.
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 3 of 20
CCNA: Routing and Switching Essentials SA Exam
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 4 of 20
CCNA: Routing and Switching Essentials SA Exam
Step 6: Configure S3
Configuration tasks for S3 include the following:
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 5 of 20
CCNA: Routing and Switching Essentials SA Exam
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 6 of 20
CCNA: Routing and Switching Essentials SA Exam
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
172.16.12.2, timeout
is 2 seconds:
!!!!!
Success rate is 100
percent (5/5), round-
trip min/avg/max =
1/6/19 ms
R1#
R2 R3, S0/0/1 172.16.23.2 R2#ping 172.16.23.2 (1/2 point)
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
172.16.23.2, timeout
is 2 seconds:
!!!!!
Success rate is 100
percent (5/5), round-
trip min/avg/max =
1/2/9 ms
R2#
Internet PC Default Gateway 209.165.200.225 PC>ping (1/2 point)
209.165.200.225
Pinging
209.165.200.225
with 32 bytes of
data:
Reply from
209.165.200.225:
bytes=32 time=0ms
TTL=255
Reply from
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 7 of 20
CCNA: Routing and Switching Essentials SA Exam
209.165.200.225:
bytes=32 time=1ms
TTL=255
Reply from
209.165.200.225:
bytes=32 time=1ms
TTL=255
Reply from
209.165.200.225:
bytes=32 time=0ms
TTL=255
PC>
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 8 of 20
CCNA: Routing and Switching Essentials SA Exam
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 9 of 20
CCNA: Routing and Switching Essentials SA Exam
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 10 of 20
CCNA: Routing and Switching Essentials SA Exam
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
192.168.99.1,
timeout is 2 seconds:
!!!!!
Success rate is 100
percent (5/5), round-
trip min/avg/max =
0/0/1 ms
S1#
S3 R1, VLAN 99 address 192.168.99.1 S3#ping (1/2 point)
192.168.99.1
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
192.168.99.1,
timeout is 2 seconds:
!!!!!
Success rate is 100
percent (5/5), round-
trip min/avg/max =
0/0/1 ms
S3#
S1 R1, VLAN 31 address 192.168.31.1 S1#ping (1/2 point)
192.168.31.1
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
192.168.31.1,
timeout is 2 seconds:
!!!!!
Success rate is 100
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 11 of 20
CCNA: Routing and Switching Essentials SA Exam
S1#
S3 R1, VLAN 33 address 192.168.33.1 S3#ping (1/2 point)
192.168.33.1
Type escape
sequence to abort.
Sending 5, 100-byte
ICMP Echos to
192.168.33.1,
timeout is 2 seconds:
!!!!!
Success rate is 100
percent (5/5), round-
trip min/avg/max =
0/0/1 ms
S3#
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 12 of 20
CCNA: Routing and Switching Essentials SA Exam
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 13 of 20
CCNA: Routing and Switching Essentials SA Exam
What command will display all connected OSPFv2 routers? Show ip ospf neighbor (1 point)
What command displays a summary list of OSPF interfaces Show ip ospf interface brief (1 point)
that includes a column for the cost of each interface?
What command displays the OSPF Process ID, Router ID, Show ip protocols (1 point)
Address summarizations, Routing Networks, and passive
interfaces configured on a router?
What command displays only OSPF routes? Show ip route ospf (1 point)
What command displays detail information about the OSPF Show ip neighbor detail (1 point)
interfaces, including the authentication method?
What command displays the OSPF section of the running- show running-config ospf (1 point)
configuration?
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 14 of 20
CCNA: Routing and Switching Essentials SA Exam
Username: webuser
Create a local database with 1 user
Password: cisco12345 (1 point)
account
Privilege level: 15
Enable HTTP server service (1/2 point)
Configure the HTTP server to use the
(1/2 point)
local database for authentication
Inside Global Address: 209.165.200.229
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 15 of 20
CCNA: Routing and Switching Essentials SA Exam
interface Serial0/0/0
ip nat inside
interface Serial0/0/0
Define the dynamic NAT translation ip nat inside (1 point)
interface GigabitEthernet0/0
ip nat outside
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 16 of 20
CCNA: Routing and Switching Essentials SA Exam
PC>
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 17 of 20
CCNA: Routing and Switching Essentials SA Exam
(1 point)
User Access Verification
Password:
R2>ena
Password:
Verify ACL is working as expected, R2#
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 18 of 20
CCNA: Routing and Switching Essentials SA Exam
R2(config)#interface g0/0
R2(config-if)#ip access-group 101
out
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 19 of 20
CCNA: Routing and Switching Essentials SA Exam
Step 3: Enter the appropriate CLI command needed to display the following:
(1 point)
Note: The translations for PC-A and PC-C were added to
the table when the Internet PC attempted to ping these
PCs in Step 2. Pinging the Internet PC from PC-A or PC-
What command displays the NAT C will not add the translations to the table because of the
translations? way the Internet is being simulated on the network.
show ip nat translation
What command is used to clear (1 point)
dynamic NAT translations?
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 20 of 20