Caso de Uso CCNA 02

PROYECTO: CASO DE ESTUDIO CCNA 02 Ing. Jorge Justiniano Tapia BO: 5952805

Santa Cruz Bolivia Julio de 2007

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

Descripcin del problema.Una empresa tiene un grupo de personas a cargo del mantenimiento de las diversas secciones de la infraestructura de redes. Varios tcnicos han hecho un excelente trabajo dentro de las pequeas secciones de la red de la cuales son responsables. Uno de los responsables de una seccin ms amplia de la infraestructura renuncia repentinamente a la empresa. Esto deja a mitad de camino el rediseo y la puesta en marcha de dicha seccin de la red. Se le asigna a un tcnico la tarea de finalizar el diseo y la puesta en marcha que quedaron inconclusas. Objetivos generales.Los siguientes objetivos que se mencionan a continuacin se obtubieron de realizar el estudio de los requerimientos que la corporacin necesita para con el desarrollo de la implementacin de una red informtica. Objetivos Especficos.1. Establecer la configuracin fsica de la red, de acuerdo al diagrama y la descripcin correspondiente. 2. Efectuar correctamente una configuracin bsica de los routers 3. Crear y activar listas de control de acceso en los routers e interfaces apropiadas. 4. Diagnosticar fallas y comprobar todas las interconexiones y listas de control de acceso. 5. Proveer de documentacin detallada, tanto del diseo como de las configuraciones de los equipos. Marco Terico.Cableado estructurado El Cableado Estructurado es una tcnica o un sistema de cableado de redes dentro del contexto de la capa 1 del modelo OSI, y que sigue una serie de normativas de manera modular a efecto de proporcionar una obra fsica apropiada
Ing. Jorge Justiniano T. 2

Caso de Uso CCNA 02

para el usuario desde el punto de vista de la necesidad de telecomunicaciones presente y futura, ya que el seguir con los estndares para el cableado horizontal, vertical, rea de trabajo, cuarto de telecomunicaciones, cuarto de equipo y entradas de servicios, regulados principalmente por los estndares EIA/TIA 569-A, 569, ANSI TIA/EIA-T568-B, ISO/IEC 11801 e IEEE 802.x. y las reglas de administracin de la infraestructura de red del estndar EIA/TIA 606, las cuales deben ser proyectados a largo plazo, como de al menos 10 aos. CISCO ACADEMY CASO DE ESTUDIO PARA REDES En el presente proyecto la norma que se utilizar para el cableado estructurado ser la ANSI/TIA/EIA-606 Administrations Standard for Telecommunication Infrastructure of Commercial Buildings, (February 1993). Esta norma Regula y sugiere los mtodos para la administracin de los sistemas de telecomunicaciones en infraestructuras de edificios comerciales. Donde la administracin se refiere a establecer una nomenclatura de documentacin para la instalacin del cableado estructurado, todos los cables paneles y salidas deben de estar documentados tanto a simple vista como en su interior. Deben mantenerse planos y/o diagramas de las instalaciones. Dentro del cableado estructurado se definen los siguientes elementos: 1. reas de trabajo donde estn ubicadas las estaciones de trabajo 2. POP (point of presence) lugar donde la operadora de telecomunicaciones instala su punto de acceso. 3. IDF/MDF (intermediate/Main distribution facility) Son los lugares donde se sitan los equipos: como ser paneles de distribucin, concentradores, conmutadores, enrutadores, servidores. 1 IDF por cada 1000 metros cuadrados, de rea de trabajo El MDF es el ms cercano al POP 4. Cableado Horizontal y vertical, de 100 m de cable UTP

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

El cableado horizontal es aquel que va horizontalmente desde las estaciones de trabajo a los armarios de conexiones (patch panel) intermedios situados en habitaciones de comunicaciones intermedios IDFs. 5. El cableado vertical o backbone, es aquel que va desde los armarios de conexiones intermedias hacia los armarios de comunicaciones Principales, en la habitacin de comunicacin principal MDF. 6. Armarios de telecomunicaciones (Salas de telecomunicaciones), sirve como punto de unin central para el cableado y el equipo de cableado que se usa para conectar dispositivos en una LAN. Puede ser una habitacin diseada especialmente, por lo general incluye: Paneles de interconexin Concentradores o HUBs Puentes o Bridges Switches Routers

El bastidor de distribucin es un marco de esqueleto simple que contiene equipos como los mencionados anteriormente. Su altura vara entre 1 a 1.9 metros. Ingieneria del proyecto. Diseo de topologa de red.Se debe escribir una descripcin completa del proyecto, mediante un procesador de palabras. Dado que la descripcin de las funciones de la red se divide en varias partes, sea cuidadoso a la hora de describir todas y cada una de las funciones, a fin de que hasta los que no son especialistas puedan entenderlas. Se puede utilizar Microsoft Excel o cualquier otro programa de planilla de clculos para facilitar la elaboracin de la lista de equipos y sus nmeros de serie. Se puede utilizar Cisco Network Designer (CND), Microsoft Visio o cualquier otro programa de dibujo para hacer un croquis de la red.

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

Entregue documentacin que especifique el procedimiento usado para probar la seguridad. Tambin se deber incluir un plan de monitoreo de la red.

Planteamiento del proyecto A continuacin se especifica el siguiente planteamiento para especificar todas las caractersticas generales que tendr el proyecto. Se plantea crear dos rdenes de red una de direcciones pares y otra de direcciones impares, para dar limitaciones y accesos a los equipos que se configuren en ese rango de direcciones. Pliticas de Seguridad.Las redes de orden impares: Podrn acceder al servidor para aprovechar recursos que se le administren desde el mismo. No gozarn del servicio de Internet tampoco podrn utilizarse como monitor para hacer mantenimiento de la red o de equipos de red. Las redes pares. Estas tendrn el beneficio de tener el servicio de Internet y utilizar los perifricos del orden de esa red, como ser impresoras, escaner etc. Como tambin podrn usar los recursos del servidor que se les administren desde el mismo. Estos tambin servirn de monitor para la configuracin y mantenimiento de los equipos de redes. Equipo de Administracin de red.El monitor de administrador tendr los permisos necesarios para administrar todas las estaciones de trabajo como tambin los perifricos, hasta el servidor. Croquis del diseo de la topologa de red.Ing. Jorge Justiniano T. 5

Caso de Uso CCNA 02

Este diagrama representa el nuevo diseo de la red y las subredes. Muestra los routers, concentradores y switches, los circuitos y las estaciones de trabajo y los servidores planificados para cada lugar. El servidor en el lugar llamado 'Center' es un servidor de archivos al cual tienen acceso slo las estaciones de trabajo de la subred local. Todos los routers de la red se administran desde una estacin de trabajo en Center. El siguiente diseo de topologa de red esta diseado en packet tracer 4.1 dando a conocer las especificaciones tcnicas de cableado, configuracin y ordenamiento de equipos.

mbito de direcciones de red.- Clase C Cantidad requerida de subredes.- 8 Protocolo de enrutamiento.- Eigrp 100 Direccin de red.- 198.160.10.0 Mascara de red.- 255.255.255.240 Bits usados.- 28bits Polticas de Seguridad:

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

Las maquinas impares pueden llegar al SERVIDOR mediante ICMP y PING. Las maquinas pares pueden realizar TELNET y PING a su Puerta de Enlace. La Printer LASER 02 puede responder a los ping de Cliente 02. La Printer LASER 03 puede responder a los ping de Cliente 04. La Printer LASER 01 puede responder a los ping de Monitor. El equipo MONITOR puede administrar y verificar todos los Routers mediante TELNET e ICMP. El equipo MONITOR puede llegar con PING y http al SERVIDOR.

Direccionamiento de red.Nro SubNets 1 2 3 198.160.10.16 198.160.10.32 198.160.10.48 198.160.10.17 - 198.160.10.30 198.160.10.33 - 198.160.10.46 198.160.10.49 - 198.160.10.62 198.160.10.17 198.160.10.18 198.160.10.33 198.160.10.34 198.160.10.49 198.160.10.50 198.160.10.51 4 5 198.160.10.64 198.160.10.80 198.160.10.65 - 198.160.10.78 198.160.10.81 - 198.160.10.94 198.160.10.52 198.160.10.65 198.160.10.66 198.160.10.81 198.160.10.82 6 7 198.160.10.96 198.160.10.112 198.160.10.97 - 198.160.10.110 198.160.10.113 198.160.10.126 198.160.10.83 198.160.10.97 198.160.10.98 198.160.10.113 198.160.10.114 8 198.160.10.128 198.160.10.129 198.160.10.142 198.160.10.115 198.160.10.129 198.160.10.130 198.160.10.143 198.160.10.111 198.160.10.127 198.160.10.79 198.160.10.95 198.160.10.31 198.160.10.47 198.160.10.63 Direcciones de red Rango de host usables Direcciones usadas en hosts Direccin de broadcast

Configuracin bsica de los router y host.Descripcin Hostname Console Password Boaz Boaz Cisco Center Center Cisco Eva Eva cisco

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

Secret Password VTY Password Serial 0/0 IP address Serial 0/1 IP address *Serial 0/0 Clock Rate *Serial 0/1 Clock Rate Fa 0/0 IP address Fa 0/1 IP address Interfaces habilitadas (up) No shutdown Add Routing Protocols Add Network Statements *Host Table-contains all routers and servers Message of the Day Serial 0/0 description Serial 0/1 description Fa 0/0 description
Fa 0/1 description

Class Cisco 198.160.10.18

class Cisco 198.160.10.17 198.160.10.33 125000 125000 198.160.10.49 198.160.10.129 Fa 0/0 Serial 0/0 Serial 0/1 IGRP 198.160.10.0 Boaz Eva

class cisco 198.160.10.34

198.160.10.81 198.160.10.65 Fa 0/0 Serial 0/1 IGRP 198.160.10.0 Center Eva

198.160.10.97 198.160.10.113 Fa 0/0 Serial 0/0 IGRP 198.160.10.0 Boaz Center

Equipo Cliente 1 Cliente 1 Cliente 2 Cliente 2 Cliente 2 Cliente 3 Cliente 3 Cliente 4 Cliente 4 Monitor Monitor Monitor Monitor Monitor Monitor User User User

Comando Ping 198.160.10.81 Ping 198.160.10.52 Ping 198.160.10.81 telnet 198.160.10.81 ping 198.160.10.66 Ping 198.160.10.113 Ping 198.160.10.52 Ping 198.160.10.98 telnet 198.160.10.113 Ping 198.160.10.98 Ping 198.160.10.66 telnet 198.160.10.18 telnet 198.160.10.34 telnet 198.160.10.49 Ping 198.160.10.130 Ping 198.160.10.51 Ping 198.160.10.130 Ping 198.160.10.52

Resultado Bloqueado Exito xito xito xito Bloqueado exito Exito xito xito xito xito xito xito xito xito Bloqueado exito

Configuraciones de perifricos.Esta es una muestra de la configuracin guardada en la nvran de cada router y de los host. Configuracin Router Boaz.SHOW STARTUP-CONFIG
Building configuration... Current configuration : 1025 bytes version 12.2 no service password-encryption hostname Boaz

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

enable password cisco interface FastEthernet0/0 ip address 198.160.10.81 255.255.255.240 ip access-group 101 in duplex auto speed auto interface FastEthernet1/0 ip address 198.160.10.65 255.255.255.240 duplex auto speed auto interface Serial2/0 no ip address shutdown interface Serial3/0 ip address 198.160.10.18 255.255.255.240 interface FastEthernet4/0 no ip address shutdown interface FastEthernet5/0 no ip address shutdown router eigrp 100 network 198.160.10.0 auto-summary ip classless access-list 101 permit icmp host 198.160.10.83 host 198.160.10.81 access-list 101 permit tcp host 198.160.10.83 host 198.160.10.81 eq telnet access-list 101 permit icmp host 198.160.10.83 host 198.160.10.66 access-list 101 permit icmp host 198.160.10.82 host 198.160.10.52 access-list 101 permit tcp host 198.160.10.82 host 198.160.10.52 eq www line con 0 password class login line vty 0 4 password cisco login end

Configuracin router Center SHOW STARTUP-CONFIG

Building configuration... Current configuration : 1914 bytes version 12.2 no service password-encryption hostname Center

Ing. Jorge Justiniano T.

Caso de Uso CCNA 02

enable secret 5 $1$c/rD$blDUFPuoQTK/8BsMofNmE1 enable password cisco interface FastEthernet0/0 ip address 198.160.10.49 255.255.255.240 ip access-group 103 in duplex auto speed auto interface FastEthernet1/0 ip address 198.160.10.129 255.255.255.240 duplex auto speed auto interface Serial2/0 ip address 198.160.10.17 255.255.255.240 clock rate 125000 interface Serial3/0 ip address 198.160.10.33 255.255.255.240 clock rate 125000 interface FastEthernet4/0 no ip address shutdown interface FastEthernet5/0 no ip address shutdown router eigrp 100 network 198.160.10.0 auto-summary ip classless access-list 103 remark accede a todos los routers access-list 103 permit tcp host 198.160.10.51 host 198.160.10.49 eq telnet access-list 103 permit tcp host 198.160.10.51 host 198.160.10.34 eq telnet access-list 103 permit tcp host 198.160.10.51 host 198.160.10.18 eq telnet access-list 103 remark accede al server mediante http access-list 103 permit tcp host 198.160.10.51 host 198.160.10.52 eq www access-list 103 remark accede a todas las impresoras laser access-list 103 permit icmp host 198.160.10.51 host 198.160.10.130 access-list 103 permit icmp host 198.160.10.51 host 198.160.10.66 access-list 103 permit icmp host 198.160.10.51 host 198.160.10.98 access-list 103 remark accede a todos los router mediante ping access-list 103 permit icmp host 198.160.10.51 host 198.160.10.34 access-list 103 permit icmp host 198.160.10.51 host 198.160.10.18 access-list 103 remark accede a los host mediante ping access-list 103 permit icmp host 198.160.10.51 host 198.160.10.49 access-list 103 permit icmp host 198.160.10.51 host 198.160.10.52 access-list 103 remark accede a todo los puertos tcp access-list 103 permit tcp any any line con 0

Ing. Jorge Justiniano T.

10

Caso de Uso CCNA 02

password cisco login line vty 0 4 password cisco login end

Configuracin Router EVA.SHOW STARTUP-CONFIG

Building configuration... Current configuration : 1079 bytes version 12.2 no service password-encryption hostname Eva enable secret 5 $1$YQyI$MsuKFC1IA3KHrIqiyunk1. enable password cisco interface FastEthernet0/0 ip address 198.160.10.113 255.255.255.240 ip access-group 102 in duplex auto speed auto interface FastEthernet1/0 ip address 198.160.10.97 255.255.255.240 duplex auto speed auto interface Serial2/0 ip address 198.160.10.34 255.255.255.240 interface Serial3/0 no ip address shutdown interface FastEthernet4/0 no ip address shutdown interface FastEthernet5/0 no ip address shutdown router eigrp 100 network 198.160.10.0 auto-summary ip classless access-list 102 permit icmp host 198.160.10.115 host 198.160.10.113 access-list 102 permit tcp host 198.160.10.115 host 198.160.10.113 eq telnet access-list 102 permit icmp host 198.160.10.115 host 198.160.10.98 access-list 102 permit tcp host 198.160.10.114 host 198.160.10.52 eq www access-list 102 permit icmp host 198.160.10.114 host 198.160.10.52

Ing. Jorge Justiniano T.

11

Caso de Uso CCNA 02

line con 0 password cisco login line vty 0 4 password cisco login end

Show CDP NEIGHBORS en la configuracin del router BOAZ

Boaz#show cdp neighbors Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone Device ID Center Switch Local Intrfce Holdtme Ser 0 Fas 0/0 166 166 R S Capability Platform PT1000 PT3000 Ser 0 Fas 0/1 Port ID

Show CDP NEIGHBORS en la configuracin del router CENTER

Center#SHOW CDP NEIGHBORS Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone Device ID Boaz Eva Switch Local Intrfce Holdtme Ser 0 Ser 0 Fas 0/0 129 159 129 R R S Capability Platform PT1000 PT1000 PT3000 Ser 0 Ser 0 Fas 1 Port ID

Show CDP NEIGHBORS en la configuracin del router EVA

Eva#show CDP NEIGHBORS Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone Device ID Center Switch Local Intrfce Holdtme Ser 0 Fas 0/0 120 119 R S Capability Platform PT1000 PT3000 Ser 0 Fas 0/1 Port ID

Show IP ROUTE en la configuracin del router EVA

Boaz#SHOW IP ROUTE Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set 198.160.10.0/28 is subnetted, 8 subnets

Ing. Jorge Justiniano T.

12

Caso de Uso CCNA 02

C D D C C D D D 198.160.10.16 is directly connected, Serial3/0 198.160.10.32 [90/21024000] via 198.160.10.17, 00:11:35, Serial3/0 198.160.10.48 [90/20514560] via 198.160.10.17, 00:11:35, Serial3/0 198.160.10.64 is directly connected, FastEthernet1/0 198.160.10.80 is directly connected, FastEthernet0/0 198.160.10.96 [90/21026560] via 198.160.10.17, 00:11:35, Serial3/0 198.160.10.112 [90/21026560] via 198.160.10.17, 00:11:35, Serial3/0 198.160.10.128 [90/20514560] via 198.160.10.17, 00:11:35, Serial3/0

Show IP ROUTE en la configuracin del router CENTER

Center#SHOW IP ROUTE Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set 198.160.10.0/28 is subnetted, 8 subnets C C C D D D D C 198.160.10.16 is directly connected, Serial2/0 198.160.10.32 is directly connected, Serial3/0 198.160.10.48 is directly connected, FastEthernet0/0 198.160.10.64 [90/20514560] via 198.160.10.18, 00:12:03, Serial2/0 198.160.10.80 [90/20514560] via 198.160.10.18, 00:12:03, Serial2/0 198.160.10.96 [90/20514560] via 198.160.10.34, 00:10:29, Serial3/0 198.160.10.112 [90/20514560] via 198.160.10.34, 00:10:29, Serial3/0 198.160.10.128 is directly connected, FastEthernet1/0

Show IP ROUTE en la configuracin del router EVA

Eva#show IP ROUTE Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set 198.160.10.0/28 is subnetted, 8 subnets D 198.160.10.16 [90/21024000] via 198.160.10.33, 00:10:44, Serial2/0

Ing. Jorge Justiniano T.

13

Caso de Uso CCNA 02

C D D D C C D 198.160.10.32 is directly connected, Serial2/0 198.160.10.48 [90/20514560] via 198.160.10.33, 00:10:44, Serial2/0 198.160.10.64 [90/21026560] via 198.160.10.33, 00:10:44, Serial2/0 198.160.10.80 [90/21026560] via 198.160.10.33, 00:10:44, Serial2/0 198.160.10.96 is directly connected, FastEthernet1/0 198.160.10.112 is directly connected, FastEthernet0/0 198.160.10.128 [90/20514560] via 198.160.10.33, 00:10:44, Serial2/0

Show IP PROTOCOL en la configuracin del router BOAZ

Boaz#SHOW IP protocol Routing Protocol is "eigrp 100 " Outgoing update filter list for all interfaces is not set Incoming update filter list for all interfaces is not set Default networks flagged in outgoing updates Default networks accepted from incoming updates EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0 EIGRP maximum hopcount 100 EIGRP maximum metric variance 1 Redistributing: eigrp 100 Automatic network summarization is in effect Automatic address summarization: Maximum path: 4 Routing for Networks: 198.160.10.0 Routing Information Sources: Gateway Distance Last Update 23 198.160.10.17 90

Distance: internal 90 external 170

Show IP PROTOCOL en la configuracin del router CENTER

Center#SHOW IP PROTOCOL Routing Protocol is "eigrp 100 " Outgoing update filter list for all interfaces is not set Incoming update filter list for all interfaces is not set Default networks flagged in outgoing updates Default networks accepted from incoming updates EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0 EIGRP maximum hopcount 100 EIGRP maximum metric variance 1 Redistributing: eigrp 100 Automatic network summarization is in effect Automatic address summarization: Maximum path: 4

Ing. Jorge Justiniano T.

14

Caso de Uso CCNA 02

Routing for Networks: 198.160.10.0 Routing Information Sources: Gateway Distance Last Update 5 6 198.160.10.18 90 198.160.10.34 90

Distance: internal 90 external 170

Show IP PROTOCOL en la configuracin del router CENTER

Eva#show IP PROTOCOL Routing Protocol is "eigrp 100 " Outgoing update filter list for all interfaces is not set Incoming update filter list for all interfaces is not set Default networks flagged in outgoing updates Default networks accepted from incoming updates EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0 EIGRP maximum hopcount 100 EIGRP maximum metric variance 1 Redistributing: eigrp 100 Automatic network summarization is in effect Automatic address summarization: Maximum path: 4 Routing for Networks: 198.160.10.0 Routing Information Sources: Gateway Distance Last Update 93067 198.160.10.33 90

Distance: internal 90 external 170

Show IP INTERFACE BRIEF en la configuracin del router BOAZ

Boaz#show ip interface brief Interface FastEthernet0/0 FastEthernet1/0 Serial2/0 Serial3/0 FastEthernet4/0 FastEthernet5/0 IP-Address OK? Method Status Protocol up up up 198.160.10.81 YES manual up 198.160.10.65 YES manual up unassigned unassigned unassigned 198.160.10.18 YES manual up

YES manual administratively down down YES manual administratively down down YES manual administratively down down

Show IP INTERFACE BRIEF en la configuracin del router CENTER

Center#SHOW IP INTERFACE BRIEF Interface FastEthernet0/0 IP-Address OK? Method Status Protocol up 198.160.10.49 YES manual up

Ing. Jorge Justiniano T.

15

Caso de Uso CCNA 02

FastEthernet1/0 Serial2/0 Serial3/0 FastEthernet4/0 FastEthernet5/0 198.160.10.129 YES manual up 198.160.10.17 YES manual up 198.160.10.33 YES manual up unassigned unassigned up up up

YES manual administratively down down YES manual administratively down down

Show IP INTERFACE BRIEF en la configuracin del router EVA

Eva#show IP INTERFACE BRIEF Interface FastEthernet0/0 FastEthernet1/0 Serial2/0 Serial3/0 FastEthernet4/0 FastEthernet5/0 IP-Address OK? Method Status Protocol up up up 198.160.10.113 YES manual up 198.160.10.97 YES manual up 198.160.10.34 YES manual up unassigned unassigned unassigned

YES manual administratively down down YES manual administratively down down YES manual administratively down down

Show VERSION a la configuracin del router BOAZ

Boaz#show VERSION Cisco Internetwork Operating System Software IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2005 by cisco Systems, Inc. Compiled Wed 27-Apr-04 19:01 by miwang Image text-base: 0x8000808C, data-base: 0x80A1FECC ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1) Copyright (c) 2000 by cisco Systems, Inc. ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5) System returned to ROM by reload System image file is "flash:pt1000-i-mz.122-28.bin" PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory Processor board ID PT0123 (0123) PT2005 processor: part number 0, mask 01 Bridging software. X.25 software, Version 3.0.0. 4 FastEthernet/IEEE 802.3 interface(s) 2 Low-speed serial(sync/async) network interface(s) 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read/Write) Configuration register is 0x2102

Show VERSION a la configuracin del router CENTER

Center#SHOW version Cisco Internetwork Operating System Software IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5)

Ing. Jorge Justiniano T.

16

Caso de Uso CCNA 02

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2005 by cisco Systems, Inc. Compiled Wed 27-Apr-04 19:01 by miwang Image text-base: 0x8000808C, data-base: 0x80A1FECC ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1) Copyright (c) 2000 by cisco Systems, Inc. ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5) System returned to ROM by reload System image file is "flash:pt1000-i-mz.122-28.bin" PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory Processor board ID PT0123 (0123) PT2005 processor: part number 0, mask 01 Bridging software. X.25 software, Version 3.0.0. 4 FastEthernet/IEEE 802.3 interface(s) 2 Low-speed serial(sync/async) network interface(s) 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read/Write) Configuration register is 0x2102

Show VERSION a la configuracin del router EVA

Eva#show version Cisco Internetwork Operating System Software IOS (tm) PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2005 by cisco Systems, Inc. Compiled Wed 27-Apr-04 19:01 by miwang Image text-base: 0x8000808C, data-base: 0x80A1FECC ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1) Copyright (c) 2000 by cisco Systems, Inc. ROM: PT1000 Software (PT1000-I-M), Version 12.2(28), RELEASE SOFTWARE (fc5) System returned to ROM by reload System image file is "flash:pt1000-i-mz.122-28.bin" PT 1001 (PTSC2005) processor (revision 0x200) with 60416K/5120K bytes of memory Processor board ID PT0123 (0123) PT2005 processor: part number 0, mask 01 Bridging software. X.25 software, Version 3.0.0. 4 FastEthernet/IEEE 802.3 interface(s) 2 Low-speed serial(sync/async) network interface(s) 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read/Write) Configuration register is 0x2102

Show HOSTS a la configuracin del router BOAZ

Ing. Jorge Justiniano T.

17

Caso de Uso CCNA 02

Boaz#show HOSTS Default Domain is not set Name/address lookup uses domain service Name servers are 255.255.255.255 Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate temp - temporary, perm - permanent NA - Not Applicable None - Not defined Host Port Flags Age Type Address(es)

Show HOSTS a la configuracin del router CENTER

Center#SHOW HOSTS Default Domain is not set Name/address lookup uses domain service Name servers are 255.255.255.255 Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate temp - temporary, perm - permanent NA - Not Applicable None - Not defined Host Port Flags Age Type Address(es)

Show HOSTS a la configuracin del router EVA

Eva#show HOST Default Domain is not set Name/address lookup uses domain service Name servers are 255.255.255.255 Codes: UN - unknown, EX - expired, OK - OK, ?? - revalidate temp - temporary, perm - permanent NA - Not Applicable None - Not defined Host Port Flags Age Type Address(es)

CONFIGURACION DE SEGURIDAD Show IP INTERFACE a la configuracin del router BOAZ

Boaz#show ip interface FastEthernet0/0 is up, line protocol is up (connected) Internet address is 198.160.10.81/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is 101 Proxy ARP is enabled

Ing. Jorge Justiniano T.

18

Caso de Uso CCNA 02

Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled FastEthernet1/0 is up, line protocol is up (connected) Internet address is 198.160.10.65/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled

Ing. Jorge Justiniano T.

19

Caso de Uso CCNA 02

TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled Serial2/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled Serial3/0 is up, line protocol is up (connected) Internet address is 198.160.10.18/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled FastEthernet4/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled FastEthernet5/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled

Ing. Jorge Justiniano T.

20

Caso de Uso CCNA 02

Show IP INTERFACE a la configuracin del router VENTER

Center#show ip interface FastEthernet0/0 is up, line protocol is up (connected) Internet address is 198.160.10.49/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is 103 Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled FastEthernet1/0 is up, line protocol is up (connected) Internet address is 198.160.10.129/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default

Ing. Jorge Justiniano T.

21

Caso de Uso CCNA 02

Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled Serial2/0 is up, line protocol is up (connected) Internet address is 198.160.10.17/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled

Ing. Jorge Justiniano T.

22

Caso de Uso CCNA 02

RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled Serial3/0 is up, line protocol is up (connected) Internet address is 198.160.10.33/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled FastEthernet4/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled FastEthernet5/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled

Show IP INTERFACE a la configuracin del router EVA

Eva#show ip interface

Ing. Jorge Justiniano T.

23

Caso de Uso CCNA 02

FastEthernet0/0 is up, line protocol is up (connected) Internet address is 198.160.10.113/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is 102 Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled FastEthernet1/0 is up, line protocol is up (connected) Internet address is 198.160.10.97/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent

Ing. Jorge Justiniano T.

24

Caso de Uso CCNA 02

ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled Serial2/0 is up, line protocol is up (connected) Internet address is 198.160.10.34/28 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 bytes Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is not set Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled

Ing. Jorge Justiniano T.

25

Caso de Uso CCNA 02

Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled Serial3/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled FastEthernet4/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled FastEthernet5/0 is administratively down, line protocol is down (disabled) Internet protocol processing disabled

Show IP ACCESS LIST a la configuracin del router BOAZ

Boaz#SHOW IP ACCess-lists Extended IP access list 101 permit icmp host 198.160.10.83 host 198.160.10.81 permit tcp host 198.160.10.83 host 198.160.10.81 eq telnet permit icmp host 198.160.10.83 host 198.160.10.66 permit icmp host 198.160.10.82 host 198.160.10.52 permit tcp host 198.160.10.82 host 198.160.10.52 eq www

Show IP ACCESS LIST a la configuracin del router CENTER

Center#SHOW IP ACCess-lists Extended IP access list 103 permit tcp host 198.160.10.51 host 198.160.10.49 eq telnet permit tcp host 198.160.10.51 host 198.160.10.34 eq telnet permit tcp host 198.160.10.51 host 198.160.10.18 eq telnet permit tcp host 198.160.10.51 host 198.160.10.52 eq www permit icmp host 198.160.10.51 host 198.160.10.130 permit icmp host 198.160.10.51 host 198.160.10.66 permit icmp host 198.160.10.51 host 198.160.10.98 permit icmp host 198.160.10.51 host 198.160.10.34 permit icmp host 198.160.10.51 host 198.160.10.18 permit icmp host 198.160.10.51 host 198.160.10.49 permit icmp host 198.160.10.51 host 198.160.10.52 permit tcp any any<

Show IP ACCESS LIST a la configuracin del router EVA

Eva#SHOW IP ACCess-lists Extended IP access list 102 permit icmp host 198.160.10.115 host 198.160.10.113 permit tcp host 198.160.10.115 host 198.160.10.113 eq telnet permit icmp host 198.160.10.115 host 198.160.10.98 permit tcp host 198.160.10.114 host 198.160.10.52 eq www permit icmp host 198.160.10.114 host 198.160.10.52

Ing. Jorge Justiniano T.

26

Caso de Uso CCNA 02

CONCLUSIONES

Ing. Jorge Justiniano T.

27

Caso de Uso CCNA 02

1. Se realiz el montaje de la red segn las especificaciones del proyecto con resultados exitosos. 2. para dar un respaldo de la configuracin realizada en los equipos de la red se especifica en el documento cada una de las consulta a los mismos equipos y los resultados que arrojaron. 3. Se configuraron listas de control de acceso en capa superior de los equipos para dar una seguridad eficiente en el acceso de los equipos. 4. se comprob uno a uno los equipos configurados con el objetivo de comprobar la funcionalidad de la red, con los resultados exitosos. 5. Finalmente se crea un documento del proyecto detallando el mismo paso a paso segn el avance del proyecto.

Ing. Jorge Justiniano T.

28