10/20/2020 – Progress on lab network. So far DHCP has been setup in the packet tracer lab. I’ll be attempting to replicate the network below into actual hardware. The serial link hasn’t been setup yet and the firewall hasn’t been connected to the internet/cable modem yet. The packet tracer lab is different from the physical network so there will need to be some adjustments made to the configurations.
Firewall: https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/Firewall.txt
Access Switch 1: https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/access+switch+1.txt
Access Switch 2: https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/access+switch+2.txt
Distribution Switch 1: https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/distribution+switch+1.txt
Distribution Switch2: https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/distribution+switch+2.txt
Router 1:
https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/router1.txt
Router 2:
https://ntek1useast1bucket1.s3.amazonaws.com/configuration+files/router2.txt
Firewall 1
p, li { white-space: pre-wrap; }
ciscoasa#sh run
: Saved
:
ASA Version 9.6(1)
!
hostname ciscoasa
names
!
interface GigabitEthernet1/1
nameif inside
security-level 100
ip address 192.168.6.2 255.255.255.252
!
interface GigabitEthernet1/2
nameif outside
security-level 0
ip address dhcp
!
interface GigabitEthernet1/3
nameif inside2
security-level 100
ip address 192.168.6.6 255.255.255.252
!
interface GigabitEthernet1/4
no nameif
no security-level
no ip address
shutdown
!
interface GigabitEthernet1/5
no nameif
no security-level
no ip address
shutdown
!
interface GigabitEthernet1/6
no nameif
no security-level
no ip address
shutdown
!
interface GigabitEthernet1/7
no nameif
no security-level
no ip address
shutdown
!
interface GigabitEthernet1/8
no nameif
no security-level
no ip address
shutdown
!
interface Management1/1
management-only
no nameif
no security-level
no ip address
!
telnet timeout 5
ssh timeout 5
router ospf 1
log-adjacency-changes
network 192.168.5.0 255.255.255.240 area 0
network 0.0.0.0 0.0.0.0 area 0
!
ciscoasa#Router 1
p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 955 bytes
!
version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname Router
!
ip cef
no ipv6 cef
!
no ip domain-lookup
!
spanning-tree mode pvst
!
interface FastEthernet0/0
ip address 192.168.5.2 255.255.255.240
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 192.168.6.1 255.255.255.252
duplex auto
speed auto
!
interface Serial0/3/0
no ip address
clock rate 2000000
shutdown
!
interface FastEthernet1/0
ip address 192.168.8.1 255.255.255.252
duplex auto
speed auto
!
interface Vlan1
no ip address
shutdown
!
router ospf 1
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
network 192.168.5.0 0.0.0.15 area 0
network 192.168.6.0 0.0.0.3 area 0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.6.2
!
ip flow-export version 9
!
line con 0
!
line aux 0
!
line vty 0 4
login
!
end
Router#Router 2
p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 938 bytes
!
version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname Router
!
no ip cef
no ipv6 cef
!
spanning-tree mode pvst
!
interface FastEthernet0/0
ip address 192.168.5.4 255.255.255.240
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 192.168.6.5 255.255.255.252
duplex auto
speed auto
!
interface Serial0/3/0
ip address 192.168.4.1 255.255.255.0
clock rate 2000000
shutdown
!
interface FastEthernet1/0
ip address 192.168.8.2 255.255.255.252
duplex auto
speed auto
!
interface Vlan1
no ip address
shutdown
!
router ospf 1
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.6.6
ip route 192.168.5.0 255.255.255.240 192.168.8.1
!
ip flow-export version 9
!
line con 0
!
line aux 0
!
line vty 0 4
login
end
Router(config)#p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 3017 bytes
!
version 12.2(37)SE1
no service timestamps log datetime msec
no service timestamps debug datetime msec
service password-encryption
!
hostname Distribution_Switch_1
!
!
!
!
!
!
ip routing
!
!
!
!
username Jason password 7 0822455D0A16
!
!
!
!
!
!
!
!
!
!
no ip domain-lookup
ip domain-name ntek1.com
!
!
spanning-tree mode pvst
!
!
!
!
!
!
interface FastEthernet0/1
description Access Switch 1
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface FastEthernet0/2
description Access Switch 2
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface FastEthernet0/3
description Failover Link
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/4
description Domain Controller
switchport trunk native vlan 999
!
interface FastEthernet0/5
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/6
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/7
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/8
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/9
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/10
no switchport
no ip address
duplex auto
speed auto
!
interface FastEthernet0/11
!
interface FastEthernet0/12
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
!
interface FastEthernet0/23
!
interface FastEthernet0/24
switchport access vlan 30
switchport mode access
switchport nonegotiate
!
interface GigabitEthernet0/1
description Router 1
no switchport
ip address 192.168.5.1 255.255.255.240
duplex auto
speed auto
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan10
mac-address 0060.2fac.cb01
ip address 192.168.1.253 255.255.255.0
ip helper-address 192.168.3.100
standby 1 ip 192.168.1.10
!
interface Vlan20
mac-address 0060.2fac.cb02
ip address 192.168.2.253 255.255.255.0
ip helper-address 192.168.3.100
standby 2 ip 192.168.2.10
!
interface Vlan30
mac-address 0060.2fac.cb03
ip address 192.168.3.253 255.255.255.0
standby 3 ip 192.168.3.10
!
interface Vlan50
mac-address 0060.2fac.cb04
no ip address
!
interface Vlan99
mac-address 0060.2fac.cb05
ip address 192.168.0.3 255.255.255.0
standby 99 ip 192.168.0.10
!
router ospf 1
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.5.2
!
ip flow-export version 9
!
!
!
no cdp run
!
!
!
!
!
!
line con 0
logging synchronous
!
line aux 0
!
line vty 0 4
logging synchronous
login local
transport input ssh
!
!
!
!
end
Distribution_Switch_1#p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 2340 bytes
!
version 12.2(37)SE1
no service timestamps log datetime msec
no service timestamps debug datetime msec
service password-encryption
!
hostname Distribution_Switch_2
!
!
!
!
!
!
ip routing
!
!
!
!
username Jason password 7 0822455D0A16
!
!
!
!
!
!
!
!
!
!
no ip domain-lookup
ip domain-name ntek1.com
!
!
spanning-tree mode pvst
!
!
!
!
!
!
interface FastEthernet0/1
description Accessswitch_2
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface FastEthernet0/2
description Accessswitch_1
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface FastEthernet0/3
description Failover
!
interface FastEthernet0/4
description Wireless
!
interface FastEthernet0/5
!
interface FastEthernet0/6
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
!
interface FastEthernet0/12
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
!
interface FastEthernet0/23
!
interface FastEthernet0/24
!
interface GigabitEthernet0/1
description Router2
no switchport
ip address 192.168.5.5 255.255.255.240
duplex auto
speed auto
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan10
mac-address 0004.9a20.2901
ip address 192.168.1.254 255.255.255.0
standby 1 ip 192.168.1.10
!
interface Vlan20
mac-address 0004.9a20.2902
ip address 192.168.2.254 255.255.255.0
standby 2 ip 192.168.2.10
!
interface Vlan30
mac-address 0004.9a20.2903
ip address 192.168.3.254 255.255.255.0
standby 3 ip 192.168.3.10
!
interface Vlan99
mac-address 0004.9a20.2904
ip address 192.168.0.4 255.255.255.0
standby 99 ip 192.168.0.10
!
router ospf 1
log-adjacency-changes
network 0.0.0.0 255.255.255.255 area 0
!
ip classless
!
ip flow-export version 9
!
!
!
no cdp run
!
!
!
!
!
!
line con 0
logging synchronous
!
line aux 0
!
line vty 0 4
logging synchronous
login local
transport input ssh
!
!
!
!
end
Distribution_Switch_2(config)#p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 3879 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
service password-encryption
!
hostname Access_Switch_1
!
!
!
no ip domain-lookup
ip domain-name ntek1.com
!
username Jason privilege 1 password 7 0822455D0A16
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
interface FastEthernet0/1
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport mode trunk
switchport port-security mac-address sticky
!
interface FastEthernet0/2
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport mode trunk
!
interface FastEthernet0/3
!
interface FastEthernet0/4
!
interface FastEthernet0/5
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/6
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/7
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/8
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/9
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/10
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/11
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/12
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/13
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/14
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/15
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/16
switchport access vlan 20
switchport mode access
!
interface FastEthernet0/17
switchport access vlan 20
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/18
switchport access vlan 20
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/19
switchport access vlan 20
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/20
switchport access vlan 20
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/21
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/22
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/23
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/24
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan10
mac-address 0006.2a6b.c101
no ip address
!
interface Vlan99
mac-address 0006.2a6b.c102
ip address 192.168.0.1 255.255.255.0
!
!
!
!
line con 0
logging synchronous
!
line vty 0 4
login local
transport input ssh
line vty 5 15
login
!
!
!
!
end
Access_Switch_1#p, li { white-space: pre-wrap; }
Building configuration...
Current configuration : 3958 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
service password-encryption
!
hostname Access_Switch_2
!
!
!
no ip domain-lookup
ip domain-name ntek1.com
!
username Jason privilege 1 password 7 0822455D0A16
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
interface FastEthernet0/1
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport mode trunk
!
interface FastEthernet0/2
switchport trunk native vlan 999
switchport trunk allowed vlan 10,20,30,99
switchport mode trunk
!
interface FastEthernet0/3
!
interface FastEthernet0/4
!
interface FastEthernet0/5
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/6
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/7
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/8
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/9
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/10
switchport access vlan 99
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/11
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/12
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/13
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/14
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/15
switchport access vlan 10
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/16
switchport access vlan 20
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/17
switchport access vlan 20
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/18
switchport access vlan 20
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/19
switchport access vlan 20
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/20
switchport access vlan 20
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/21
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/22
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/23
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface FastEthernet0/24
switchport access vlan 30
switchport mode access
switchport port-security mac-address sticky
spanning-tree portfast
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan99
mac-address 0050.0f46.1201
ip address 192.168.0.2 255.255.255.0
!
!
!
!
line con 0
logging synchronous
!
line vty 0 4
logging synchronous
login local
transport input ssh
line vty 5 15
login
!
!
!
!
end
Access_Switch_2(config)#
NTEK1 