-
Notifications
You must be signed in to change notification settings - Fork 0
selfConf
noel junior yando edited this page Jun 7, 2024
·
2 revisions
- Passer en mode de configuration globale.
- Configurer le nom d'hôte.
- Définir un nom de domaine.
- Générer des clés RSA.
- Configurer un utilisateur administrateur.
- Activer les interfaces.
enable
configure terminal
hostname S1-CSW-01
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface range fa0/1-5
no shutdown
exit
enable
configure terminal
hostname S2-CSW-01
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface range fa0/1-3
no shutdown
exit
enable
configure terminal
hostname S3-CSW-01
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface range fa0/1-3
no shutdown
exit
enable
configure terminal
hostname S1-L3
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface range gi0/0-2
no shutdown
exit
enable
configure terminal
hostname S2-L3
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface range gi0/0-2
no shutdown
exit
enable
configure terminal
hostname R1
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface g0/0
description Connection to S1-L3
ip address 192.168.10.1 255.255.255.0
ipv6 address 2001:db8:10::1/64
no shutdown
exit
interface g0/1
description Connection to ISP
ip address 203.0.113.1 255.255.255.252
ipv6 address 2001:db8:1::1/64
no shutdown
exit
enable
configure terminal
hostname R2
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface g0/0
description Connection to S1-L3
ip address 192.168.10.2 255.255.255.0
ipv6 address 2001:db8:10::2/64
no shutdown
exit
interface g0/1
description Connection to ISP
ip address 203.0.113.5 255.255.255.252
ipv6 address 2001:db8:1::5/64
no shutdown
exit
enable
configure terminal
hostname R3
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface g0/0
description Connection to S2-L3
ip address 192.168.20.1 255.255.255.0
ipv6 address 2001:db8:20::1/64
no shutdown
exit
enable
configure terminal
hostname ISP
ip domain-name formation.lab
crypto key generate rsa
1024
username admin privilege 15 secret adminpassword
interface g0/0
description Connection to R1
ip address 203.0.113.2 255.255.255.252
ipv6 address 2001:db8:1::2/64
no shutdown
exit
interface g0/1
description Connection to R2
ip address 203.0.113.6 255.255.255.252
ipv6 address 2001:db8:1::6/64
no shutdown
exit
Configurer PC4 avec une adresse IP statique:
- IPv4: 198.51.100.2/24
- Passerelle IPv4: 198.51.100.1
- IPv6: 2001:db8:100::2/64
- Passerelle IPv6: 2001:db8:100::1
- Créer des VLANs.
- Configurer les ports trunk.
- Configurer VTP.
vlan 10
name Servers
vlan 20
name Production
vlan 30
name IT
exit
interface range fa0/1-2, fa0/13-14
switchport mode trunk
switchport trunk allowed vlan 10,20,30
no shutdown
exit
vtp domain formation
vtp password cisco
vtp mode server
exit
- Créer des VLANs.
- Configurer les ports trunk.
- Configurer VTP.
vlan 10
name Servers
vlan 20
name Production
vlan 30
name IT
exit
interface range fa0/1-2, fa0/13-14
switchport mode trunk
switchport trunk allowed vlan 10,20,30
no shutdown
exit
vtp domain formation
vtp password cisco
vtp mode client
exit
- Configurer EtherChannel.
interface range fa0/13-14
switchport mode trunk
channel-group 1 mode active
no shutdown
exit
interface port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10,20,30
no shutdown
exit
Répéter pour S2-CSW-01 et S3-CSW-01.
- Configurer EIGRP pour IPv4 et IPv6.
router eigrp 1
network 192.168.10.0 0.0.0.255
network 203.0.113.0 0.0.0.3
exit
ipv6 router eigrp 1
exit
interface g0/0
ipv6 eigrp 1
exit
interface g0/1
ipv6 eigrp 1
exit
Répéter pour R2 et R3 avec les adresses IP appropriées.
- Configurer NAT.
interface g0/0
ip nat inside
exit
interface g0/1
ip nat outside
exit
ip nat inside source list 1 interface g0/1 overload
access-list 1 permit 192.168.10.0 0.0.0.255
Répéter pour les autres routeurs en ajustant les interfaces.
- Configurer HSRP.
interface g0/0
standby 1 ip 192.168.10.254
standby 1 priority 110
standby 1 preempt
standby 1 track 1 decrement 20
exit
Répéter pour R2.
- Configurer SNMP et Syslog.
snmp-server community public RO
snmp-server community private RW
logging 192.168.10.1
Répéter pour les autres équipements.
- Configurer AAA.
aaa new-model
aaa authentication login default local
aaa authorization exec default local
username admin secret adminpassword
Répéter pour les autres équipements.
- Configurer le WIFI.
Configurer les paramètres WIFI de base via l'interface web du WRT300N.
- Configurer les tunnels IPv6. Pour la configuration des tunnels IPv6 entre les switches L3 (S1-L3 et S2-L3), nous allons utiliser des adresses IP privées logiques pour les tunnels. Voici la configuration avec les adresses IP de destination proposées :
-
Tunnel IPv4 entre S1-L3 et S2-L3
- Source (S1-L3): 192.168.3.1
- Destination (S2-L3): 192.168.3.2
-
Tunnel IPv6 entre S1-L3 et S2-L3
- Source (S1-L3): 2001:db8:3::1/64
- Destination (S2-L3): 2001:db8:3::2/64
- Configurer le tunnel IPv6:
enable
configure terminal
interface tunnel 0
ip address 192.168.3.1 255.255.255.0
ipv6 address 2001:db8:3::1/64
tunnel source gi0/1
tunnel mode ipv6ip
tunnel destination 192.168.3.2
no shutdown
exit
- Configurer le tunnel IPv6:
enable
configure terminal
interface tunnel 0
ip address 192.168.3.2 255.255.255.0
ipv6 address 2001:db8:3::2/64
tunnel source gi0/1
tunnel mode ipv6ip
tunnel destination 192.168.3.1
no shutdown
exit