|
|
楼主 |
发表于 2019-11-25 19:30:47
|
显示全部楼层
本帖最后由 Lapot16 于 2019-11-25 20:17 编辑
: [, `, s. W0 ~+ }8 D! n; V, \: F& V/ Vjustin215 发表于 2019-11-25 11:575 i- l) ]7 C1 {: }; |
Thanks!!
: G1 D' @1 x5 J2 T3 q! g8 _The next thing is to download a lab before Exam.
( ?' D5 k/ p, ]+ |2 c z- ZBy the way:
' t" Q* g- Y3 I% O9 m3 PIf not ping 209.65.200.225 it`s problem in ACL security
( Y: M# b/ k7 c3 XPings in second column is debug info for me , if I stuck in any TT. @9 }! Z9 X9 V3 q+ L& U h- F
I recommended do the ping too for better understanding how labs work.' A' ?& Q; l* ?: Z2 P) ]3 U8 k! _
It`s help me in TT portchannel .! K" }+ _' { A. I- i
I liitle confused, when in TT portchannel don`t work command show port-channel.
]. H7 N y5 V$ J. [& D g7 P$ `8 qThen ping from DSW2 => DSW1(10.2.1.1) not pass. % T) m) @3 Q' I0 p7 h2 b! y
Show interface trunk=> NONE.; [4 _- d( J% j k" n! \, M
show run
" d# w3 b% I" J1 jI recommended do the ping too for better understanding how lab operates.
$ u$ v2 ]! b/ t6 V) c* U& e
U+ @: \) Q8 B0 k- O N8 c0 NI try explain tickets NAT ; L o0 {, Y3 k8 `2 I: w
ping 209.65.200.241 -no pass' f9 S2 I' `: B3 t
ping 10.1.1.10 - pass
7 `# m/ L: U9 x+ Aping 10.1.1.1 -pass4 y% r0 o, f. d; w
So problem is on R1( v' K/ y: }7 e; N: s
2 {. q) n$ o9 Q
8 `- U# S! A6 @# t& fR1>show ip route" X. d6 a5 B- v2 M7 H) K" l
Gateway of last resort is 209.65.200.226 to network 0.0.0.0
; ~7 |# X: Q6 G. A. {. i% |/ c9 O1 u( d& }5 G' D, }9 f4 u$ _' t
N1 p. f/ a" U5 D! C: Y
B* 0.0.0.0/0 [20/0] via 209.65.200.226, 00:00:013 j! U2 k: T& v( D; h% w; ?; A
1.0.0.0/32 is subnetted, 1 subnets
" i* h2 }3 y( z/ L' rC 1.1.1.1 is directly connected, Loopback0
6 s0 A& d2 x. _# ]+ d 2.0.0.0/32 is subnetted, 1 subnets
- V* Z2 u5 D/ N5 O9 W" _8 S0 pO IA 2.2.2.2 [110/65] via 10.1.1.2, 00:00:34, Serial1/0.124 Y4 q% ~7 d$ O, E ^ s) f# }
If BGP route consist in route table -problem not BGP or ACL security: C+ I4 n! b1 `, W
( `9 o: |& D- U) S* I( m1 ` problem probably NAT) F- m- p/ C0 z' o
: \7 y. U: c7 f
R1>sh ip nat stat- t' N! P/ l9 o% \7 m6 L
Total active translations: 0 (0 static, 0 dynamic; 0 extended)
' H9 j+ e1 }' W/ X; A( sPeak translations: 0
& P7 k! i, n3 p- g: `7 P. c' g! a' tOutside interfaces:
& E7 a% s' V( J' g8 NInside interfaces:
) H _( H3 z+ e Serial1/0.12, Serial1/1
9 ~7 v+ t- g- G2 B7 D" z0 oHits: 0 Misses: 0$ S! J. ]3 {) z; [( m* u
0 L6 F4 H3 `# a. UIf TT is NAT-ACL contunue our trip
# E& g+ G$ g0 j2 c" [Unfortunately, commands show access-list is absent.
8 r0 o& ~) A8 o, E% x$ O5 r# H8 z0 s6 @# V
going to config# ?6 z9 Z, U# _8 E M! Y. T, X
ip access-list extended acl.nat b! P2 p0 \& P# s/ K" G
permit ip 10.1.0.0 0.0.255.255 any
5 S9 b) T( E* d! apermit ip 192.168.0.0 0.0.255.255 any
w4 O' f8 I3 a% F2 T |
18#
2019-11-25 19:30:47
回复(0)
收起回复
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2019-11-25 13:55:36
