The solve of the Cisco course's final exam

Study the scheme. Split the network into subnets, addressing 5.87.0.0/24. Each PC is on a separate network. Perform basic configuration of all network devices. Raise only SSH protocol for management. Configure a separate VLAN for each PC on the switches and forward them to the router. Enable Port Fast BPDU Guard on internal interfaces. Enable Rapid PVST. Configure the OSPF protocol for routers, not including networks on internal interfaces. Raise a floating static route for OSPF protocol redundancy. Configure the GRE 1 protocol for the R1 - R2 - R4 route, GRE 2 for the R1 – R3 - R4 route, the routing method for connecting GRE and LAN is OSPF Configure the ACL to manage all devices only with MGT1 PC (SSH). Configure all devices time and data transfer to Syslog server (Server0). Transfer the image and start-up configuration to TFTP Server0. Configure backup downloading from TFTP images on routers. Check the network operability in case of failure of the OSPF protocol. Answer Key Cisco Packet Tracer project R1 startup configure file R2 startup configure file R3 startup configure file R4 startup configure file S1 startup configure file S1 startup configure file

<span title='2022-03-23 00:00:00 +0000 UTC'>March 23, 2022</span>

The first acquaintance with the Cisco DevNet Sandbox

Cisco allows you to perform laboratory work or test the APIs in sandbox. It is completely free. All the necessary devices are available in the sandbox permanently or by reservation. Here’s what Cisco writes about it: DevNet Sandbox makes Cisco’s free spread of technology available to developers and engineers by providing packaged labs we call Sandboxes. That’s right, totally free! There are two types of sandboxes, Always-On and Reservation. Each sandbox typically highlight one Cisco product (think, CallManager, APIC, etc). Sandboxes can be used for development, testing APIs, learning how to configure a product, training, hack-a-thons, and much more! ...

<span title='2021-07-25 00:00:00 +0000 UTC'>July 25, 2021</span>

Запуск CSR1000v в VirtualBox и VMware

В прошлой статье я рассказал как подготовить и запустить любую версию виртуального маршрутизатора Cisco - Cloud Services Router (СSR1000v) в VirtualBox под Windows. С версии Cisco IOS XE 3.13S можно обойтись без настройки последовательного интерфейса. Запускать будем всё тот же релиз 3.15.0S. С официального сайта нужно скачать файлы csr1000v-universalk9.03.15.00.S.155-2.S-std.iso и csr1000v-universalk9.03.15.00.S.155-2.S-std.ova По-моему, сейчас это самая поздняя версия CSR, доступная с аккаунтом Cisco, версии новее требуют различные партнерские отношения с Cisco. Зарегистрироваться можно по адресу. ...

<span title='2021-07-20 00:00:00 +0000 UTC'>July 20, 2021</span>

Запуск CSR1000v в VirtualBox (Windows) с эмуляцией serial port

Я расскажу как подготовить и запустить виртуальный маршрутизатор Cisco - Cloud Services Router (СSR1000v) в VirtualBox под Windows с эмуляцией serial port, настроить доступ по telnet, ssh и написать скрипт на python для автоматизации конфигурирования. Необходимый софт С официального сайта нужно скачать файлы csr1000v-universalk9.03.15.00.S.155-2.S-std.iso и csr1000v-universalk9.03.15.00.S.155-2.S-std.ova. По-моему, сейчас это самая поздняя версия CSR, доступная с аккаунтом Cisco, версии новее требуют различные партнерские отношения с Cisco. Зарегистрироваться можно по адресу. Если еще не установлен VirtualBox, скачайте и установите. ...

<span title='2021-07-19 00:00:00 +0000 UTC'>July 19, 2021</span>

Setup Cisco CSR1000V in Yandex.Cloud

In Yandex.Cloud, you can deploy a Cisco Cloud Services Router (CSR) 1000v virtual router from a ready-made virtual machine image. There is an awesome manual at this link to Yandex docs. For my experiments, I ran two instances of CSR1000v. I have configured a connection to one of them using SSH. Both of them are interconnected by a local network. This is one of the possible ways to study the training courses of the Cisco Network Academy. ...

<span title='2021-07-17 00:00:00 +0000 UTC'>July 17, 2021</span>

The backup connection between the two branches

A tunnel is organized between the two branches via the ISP. For redundancy, a second tunnel is organized over the network of another ISP. Scheme with IP-addresses: Switching to the backup route is performed when OSPF connectivity is lost through the tunnel over the network of the ISP “A”. BFD is used to quickly evaluate connectivity. The settings for routers: Router WEST hostname WEST no ip domain lookup interface Loopback0 no shutdown description PC_A ip address 172.16.1.1 255.255.255.0 interface Tunnel0 no shutdown ip address 172.16.12.1 255.255.255.252 bfd interval 50 min_rx 50 multiplier 3 tunnel source 10.1.1.1 tunnel destination 10.2.2.1 interface Tunnel1 no shutdown description RESERV ip address 172.16.21.1 255.255.255.252 ip ospf cost 1500 bfd interval 50 min_rx 50 multiplier 3 tunnel source 10.3.3.1 tunnel destination 10.4.4.1 interface GigabitEthernet0/0 no shutdown description to_ISP_A ip address 10.1.1.1 255.255.255.252 duplex auto speed auto media-type rj45 interface GigabitEthernet0/1 no shutdown description to_ISP_B ip address 10.3.3.1 255.255.255.252 duplex auto speed auto media-type rj45 router ospf 1 log-adjacency-changes detail network 172.16.1.0 0.0.0.255 area 0 network 172.16.12.0 0.0.0.3 area 0 network 172.16.21.0 0.0.0.3 area 0 bfd all-interfaces ip route 10.2.2.0 255.255.255.252 10.1.1.2 ip route 10.4.4.0 255.255.255.252 10.3.3.2 line con 0 exec-timeout 0 0 logging synchronous Router EAST ...

<span title='2021-02-14 00:00:00 +0000 UTC'>February 14, 2021</span>

Cisco command 'history'

Starting from IOS 15.1 cisco command history is appeared. It outputs a pretty nice ASCII diagram of interfaces loading. For enable: (config)# interface GigabitEthernet 0/1 (config-if)# history bps Now you can see the result using the command: # show interface GigabitEthernet 0/1 history 60sec input The different periods (60sec, 60min, 72hour) and different traffic directions (input, output, both) are available.

<span title='2020-09-24 00:00:00 +0000 UTC'>September 24, 2020</span>

Message 'Native VLAN mismatch discovered'

Do you need to mix traffic between different VLANs without any limits and configuration settings? The best way is to inject a hub between access ports on switch and customers. This is actually a joke. But, unfortunately, this is possible, and there is no way to hope for the STP. The first thing that should alert you is the repeated messages "%CDP-4-NATIVE_VLAN_MISMATCH: Native VLAN mismatch discovered on…" if CDP is enabled. A hundred percent confirmation is the duplication of mac addresses for all VLAN interfaces. ...

<span title='2020-09-23 00:00:00 +0000 UTC'>September 23, 2020</span>

Visualizing network topologies with Golang

This day is inspired by the article “Визуализация сетевых топологий, или зачем еще сетевому инженеру Python #2”. I wrote Golang program that analyzes the output of the cisco sh int, sh mac-address-table (for switches) or sh ip arp (for routers) commands and vizualizes network topology from mac address tables. I only used mac address information, not LLDP (CDP). NeXt Ui (Github) is used for visualization. For example, I received an output with self-made telnet client on Golang from a network of this topology: ...

<span title='2020-08-23 00:00:00 +0000 UTC'>August 23, 2020</span>

Начальное конфигурирование роутера Cisco

Если осталась старая конфигурация, удалить и перезапустить Cisco>enable Cisco#erase startup-config Cisco#reload Cisco>enable Новая конфигурация Cisco#configure terminal Назвать роутер Cisco(config)#hostname R1 Хранить пароли в файле конфигурации в зашифрованном виде R1(config)#service password-encryption Отключить управление по http, https, CDP R1(config)#no ip http server R1(config)#no ip http secure-server R1(config)#no cdp run Отключить интерпретацию неправильно введенных команд как DNS-запрос R1(config)#no ip domain lookup Пароль на подключение по консольному порту R1(config)#line console 0 R1(config-line)#password cisco R1(config-line)#login local R1(config-line)#exit ...

<span title='2020-04-09 00:00:00 +0000 UTC'>April 9, 2020</span>