|
|
发表于 2017-10-20 22:34:20
|
显示全部楼层
[First topo here] [thanks to the guys who shared this image from ccie 4 career dot com]
. u9 T9 Z& c" Q; n& d1 K# s G/ n& L9 H. s8 e- m, P+ q
Question 1: Layer 2+ B( C" P4 C; [2 c6 ^! q% ]# K
7 G1 i) e8 n' w0 m0 Q% ]1 d
- VLAN 12 is missing; o5 S/ D: |# }- F7 @4 B
- vlan 12 not ALLOWED over the trunk on SW2
( V' V& z( z/ j8 Z: C0 ?- Access vlan 100 to interface connect to PC 101.
& w7 `3 c3 p7 f' L- K# P: N' J& a- Passive-int in OSPF
! U, b4 q B' V0 Y& \7 m9 o: Y- ACL on SW2 (?)
5 J4 R# U) e. F+ A/ {5 \! ], C* M$ T" @, J6 [$ k( _8 @
Question 2: PPP
+ i# |4 ?8 X0 X4 ^1 G1 z: o x' `, h# S% `8 t2 z! q- @" k
- Add command: peer default ip address pool in R12
- f( D5 K2 O! r: {# m" w1 l2 i- Remove ppp auth chap call out on R17 (WAN)
' g+ e- i% n+ X/ r- Username was ..spoke1 on R12 but spoke1 on R174 ?' R1 l& u, y, W# B% B
- Wrong password on R17
- W f7 K0 U, q k/ m5 t4 l8 D5 i2 H- R12 did not advertised the net in EIGRP
; j9 N! a# @. |. v; ~& N5 G/ @' C+ H" k0 j
Question 3: OSPF& X7 D9 k$ U3 a5 [) f: ?- c
$ `+ U" n! r& ]) q- Correct IP address in R22 and remove max-metric router-lsa in R5.
. h: i. D6 g7 D- Remove cost on R1 (OSPF)
( d/ U; ]4 Y) {3 U) Y( j( t- passive-interface default on R22 and R21 was configured( y9 f. r# F# @ `7 j% e
- R22 : Wrong router-id4 i- h4 f4 t5 O& j. c
$ { v% g3 {( @Question 4: EIGRP2 r* V: {$ S7 U( T9 Y
- G3 N3 [. s4 ?& Q8 D V* H
- Modify access-list in R13.+ f9 d' U7 A5 V
- Remove delay on R13 and Set Metric (EIGRP)1 d5 _# F) ~( ?9 X1 E2 S, w. N
- Metric weight of 0 1 1 1 1 was missing: ~/ F E+ k2 l5 {; D" |
- Offset-list on R12 permitting any. Need to deny ip 145.15.15.15 above that.& | o6 e, L6 \. |. Q, U
- Passive Int on R14; k1 i- A! c% ^8 |) |
6 _1 `: p! o3 k; S' j
Question 5: BGP7 V r& f" f0 Z, ?; ^0 [
2 U9 r% c8 I2 ~
- Set metric in R4
( U1 E; f G4 p! P6 H- Active neighborship between R4 & R5.
, @4 J6 n% Z" H) C9 q( B7 R0 I0 W0 {# A- set lower prefix to 123.XXXX on R4 and 134.xxx on R6* S M5 T+ Z2 y- M& P% w
- Set max-path on R12 (BGP)0 d" {9 y) d; L; Z* q
- R21 : Wrong ip prefix-list 194
& R/ a% g/ D. B, t/ ]
J: X: R2 ]; |Question 6: IPv6
$ J3 f" {; m2 ? J A# f A- r: P: {6 d
$ O5 W$ ^0 P! E. \- Correct advertise network in R25 (2525::25/64 instead of 25::/64), t) f. H/ v' K2 w- f3 i5 h5 K4 |
- Wrong next hop in R22 route-map (IPv6)2 N% A+ m! z' ~# U: q; h
( B2 d# b+ Z L/ T& nQuestion 7: DMVPN: U9 s; b9 B U% h" V& h$ Z3 Y
/ z; _4 m# T% \
- ACL was denying ESP traffic in R19.
$ }' x( v. p4 j' c! g: B- Wrong NHRP config on R18/R19 (DMVPN). Y. ~+ @, q. e/ ]" c
- R17 missing nhrp multicast
) @! ]6 y0 O* A- no ip next-hop-self eigrp 200 in R15
& e/ M" Z) t# G( s- NEW : ONLY 2 CORRECTIONS PERMITTED (Needs confirmation)
; G% }3 I' w2 K/ H% P! B# A- }* }. ]3 c4 w
Question 8: MPLS VPN
; ]' ~# ]5 d2 C' P' ]; B9 I5 v- y/ [% Z ~- ?0 a, f' }8 _
- Add R8's eth0/0.123 ip nat inside
4 M- n6 O1 K; m; i' K( r- Advertise default-route in BGP on R7/8.* S" p! T8 [- j. y4 e; R
- R6: add import and export Route-target.! M1 c; e- w8 f- S
- VRF import on R3/4: Y% ?/ y t, H9 h' N
- R3 : advertise .125 network: p1 ^+ q5 L2 t' m: J3 M6 ]
- R4's and R6's e2/0 ip ospf cost 200 (backup path)
! u# M e' Y" P- DHCP issues on R9/SW36 d7 m" v: | x3 s) u- }# L1 L
- NEW : ONLY 2 CORRECTIONS PERMITTED (Needs confirmation)4 ?( C5 w- v6 h
3 }# E+ j j2 n- W/ u
Question 9: DMVPN NAT
8 l" t; G, a# d6 q; N+ ^) Z: E) w+ ?. f- u6 @$ \
- Correct transform-set and mode in R24.) |4 i7 q3 ^* g% u3 z" J" A: O
- Wrong crypto isakmp Address was configured on R7
1 T# a/ K, L: l- f3 v- Wrong tunnel source on R7* X* [" L( W \* @& D% Z, J
- Wrong tunnel source on R24
) [; u- s9 u/ ^1 U) }$ N5 |- R23 : no crypto udp transformation) p* P, z; |. a; C
3 K& r& X5 t9 {; L$ R! V
Question 10: NAT
$ |+ C) C1 y& J9 I# F; q1 S- e% G
. J# W# z3 u( f9 N4 j8 ?( U0 B* H8 t- Modify NAT command in R23
& f: Z0 l% C3 ]' _0 |$ x+ q- Add command: ip domain lookup in R21.
. O& g6 K& \2 F- Add NAS mac add on R23 dhcp pool
' a7 `: s8 ]! ~- IP domain lookup and ip name-server was missing on both R23 and NAS; l5 r, f9 I4 O2 u( K& W
- NAS has no ip assigned (not even DHCP)8 E' k& d+ ?& X
|
19#
2017-10-20 22:34:20
回复(0)
收起回复
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
