300-135 NOV 23 1000 PASS + New FLOW CHART

lwq0229

congratulations!  thanks for your reviews!

vesim1

Lapot16

justin215 发表于 2019-11-25 11:57
) H6 @8 W! k" u% U% J/ y& nThanks!!
/ H: {. w- a8 p* xThe next thing is to download a lab before Exam.
- g  Q9 [1 s) d& ^; [By the way:

If not ping 209.65.200.225 it`s problem in ACL security
Pings in second column is debug info for me , if I stuck in any TT
2 d5 s; z$ G7 W3 ~. j; NI recommended do the ping too for better understanding how labs work.
2 k9 i1 k" C6 c% w( n! A7 ]2 @It`s help me  in TT portchannel .
I liitle confused, when in TT portchannel don`t work command show port-channel.
6 s: m8 Y: ^1 l+ r1 MThen  ping from DSW2 => DSW1(10.2.1.1) not pass.
Show interface trunk=> NONE.
2 a" H8 p5 ]  D+ D" f# V, D. a7 o$ ?show run
I recommended do the ping too for better understanding how lab operates.
+ i# n# d1 C7 C9 e! I+ P4 P# A5 d; e
I try explain tickets NAT
ping 209.65.200.241 -no pass
ping 10.1.1.10 - pass
/ J; R7 b* p% T% `- {# ~! fping 10.1.1.1 -pass
: k/ @; p  X( P5 TSo problem is  on  R1
% w! t& U0 W  P. }7 r8 T0 d
+ b4 V/ R. s7 x# G3 m
2 i1 o# w7 ?" ?5 cR1>show ip route
( ]' _6 t5 R, ?5 |5 F: c- oGateway of last resort is 209.65.200.226 to network 0.0.0.0

% `' n: H9 ?  k! V3 N1 ^
B*    0.0.0.0/0 [20/0] via 209.65.200.226, 00:00:01
! ~% Z  r+ u3 e& h      1.0.0.0/32 is subnetted, 1 subnets
C        1.1.1.1 is directly connected, Loopback0
      2.0.0.0/32 is subnetted, 1 subnets
$ a/ ]  s% v9 ], {+ gO IA     2.2.2.2 [110/65] via 10.1.1.2, 00:00:34, Serial1/0.12
+ O5 }, m5 _" V8 i- H/ c+ X  If BGP route consist in route table -problem not  BGP or ACL security
  
  problem probably NAT

R1>sh ip nat stat
* o) o+ E! Q! |, e/ fTotal active translations: 0 (0 static, 0 dynamic; 0 extended)
Peak translations: 0
4 p" v6 K+ A1 k, \Outside interfaces:
5 l! W3 O' o5 n' Y0 C1 l: Z0 }Inside interfaces:
4 ~* y" r( @/ ~& T  Serial1/0.12, Serial1/1
Hits: 0  Misses: 0

If TT is NAT-ACL contunue our trip
Unfortunately, commands show  access-list is absent.

going to config
ip access-list extended acl.nat
$ O) f1 ^$ y% ^3 b) E. A% E' a0 }permit ip 10.1.0.0 0.0.255.255 any
permit ip 192.168.0.0 0.0.255.255 any
7 y! t; o: X5 c! C; {

Lapot16

$ V+ z2 r6 f) t) t  P: p
0 {) a+ i; b4 K; c/ s5 {1 S Troubleshoot R4
6 O/ e: ?: C# }8 UPing 209.65.200.241 -no pass
Ping 10.1.1.10 - no pass
Ping 10.2.1.254 -pass
4 [9 w5 Q8 r+ [
( M2 k: s2 ?2 m4 MR4>sh ip eigrp nei
EIGRP-IPv4 Neighbors for AS(10)
H Address Interface Hold Uptime SRTT RTO Q Seq
                                                   (sec) (ms) Cnt Num
1 10.1.4.10 Et0/2 11 00:00:17 4 100 0 8
0 10.1.4.6 Et0/1 11 00:00:17 2 100 0 8
If not have neighbors - problem with passive interface or old deprecated TT with wrong AS

( X' l+ o# ~# A. f9 T
7 d& B* `+ |' \" g" N$ ^Going to DSW1
DSW1>sh ip route


4 T* z, k/ F3 X8 Z0 m5 j, H1 e3 qGateway of last resort is 10.1.4.5 to network 0.0.0.0
! ?# d; A  ?( ?5 z2 A" s9 J

; h( K- q8 r% l1 j! I( u6 XD*EX 0.0.0.0/0 [170/53760] via 10.1.4.5, 00:00:48, Ethernet1/0
      4.0.0.0/32 is subnetted, 1 subnets
D EX 4.4.4.4 [170/53760] via 10.1.4.5, 00:01:03, Ethernet1/0
      10.0.0.0/8 is variably subnetted, 11 subnets, 4 masks
D EX 10.1.1.8/30 [170/53760] via 10.1.4.5, 00:01:03, Ethernet1/0
C 10.1.4.4/30 is directly connected, Ethernet1/0
2 V# [% W' M7 Z# F. E) r5 H
5 v1 E% F9 \$ m; b8 p. V" {
0 C7 \1 u( R% R- S1 q/ x1 uIf not have D EX route- problem with redistribtion
% F  Z' ?- y8 k
Go config
! E# @& Z! L) u/ q3 n

6 d7 h0 R- i0 V6 ]+ _1 |( Y

dandelion301

7 ?' g2 Q$ O. b- Lcongratulations!

thanks for your reviews!

shadowswater

congratulations!

5 {( _8 t. I# @% N$ ^* j; P; c; wthanks for your reviews!

weiloveu5j0

lok7120

thank you for sharing

2363523913

棒棒棒棒棒棒棒棒棒棒棒棒棒棒棒棒棒

lwq0229

都好厉害啊，不知道我能不能行呢

youhow77

. T2 u7 J' R4 c! icongratulations!  thanks for your reviews!

zqkhzczx

ok，谢谢分享

alvis1450

恭喜

buishithahaha

Congratulations!!