|
|
楼主 |
发表于 2023-3-9 23:00:15
|
显示全部楼层
0 L8 q( u/ ^ D/ p, l: G* ~) X1 C% EQ77,A company is connected to an ISP and some of the networks between the ISP and the company are not reachable.
! `; J8 ?; D! r7 ]/ S; D( n$ dTroubleshoot and resolye the issues to achieve these goals:& X9 }) j7 _3 p# q8 v4 G7 V( ]
1. A single 16 is advertised for all infrastructure-connected interfaces that belong to the 10.20.x.x network using BGP network commands from border routers connected to the ISP. Configuration modification is allowed in R4 and R5 to achieve the results. Do not use the BGP aggregate command.
! k+ F8 O. k& z! T* ?2. R6 receives the ISP R2 Loopback2 from R4 and receives a summary address for both Loopbacks of ISP R2 from R4 or R5. Use BGP attribute local-preference, add <default value + router number>, for example, for R6, use "default+6 = value to be used". Use the existing prefix lists or route maps with the sequence numbering starting at 10 and added in increments of 10
3 Z/ E- _( U5 ^7 A1 Q C3. R6 receives the ISP R2 Loopback1 from R5 and receives a summary address for both Loopbacks of ISP R2 from R4 or R5 using the same guidelines.# E( W1 Z: G( b; P) A0 k$ F3 @7 Y
4. R6 advertises its Loopback1 /24 address through BGP.# d. \2 V$ F( \3 D* w
Q78,Tasks:7 G/ a* [; y+ C. ]8 F3 o
Configure individual VRFS for cach customer according to the topology to achieve these goals:1 X0 z. v& G2 x
1. VRF "cu-red" has interfaces on routers R1 and R2. Both routers are preconfigured with IP addressing, VRFS, and BGP. Do not use the BGP network statement for advertisement.! |5 i/ R, d1 l7 O0 N$ Y, @
2. VRF "cu-green" has interfaces on routers R1 and R2.( T! p: C' B2 Q7 j, u X
3. BGP on router R1 populates VRF routes between router R1 and R2.( e( B+ }+ j5 A% Y
4. BGP on router R2 populates VRF routes between router R1 and R2.
' x. k- b% {! Y" G5. LAN to LAN is reachable between SW1 and SW3 for VRF "cu-red" and between SW2 and SW4 for VRF "cu-green". All switches are preconfigured.! w3 ?, m& m* ]+ s
Q79,A network is configured with CoPP to protect the CORE router route processor for stability and DDoS protection. As a company policy, a class named class- default is preconfigured and must not be modified or deleted. Troubleshoot CoPP to resolve the issues introduced during the maintenance window to ensure that: 1. Dynamic routing policies are under CoPP-CRITICAL and are allowed only from the 10.10.x.x range. .
* a7 `/ n% {) k% b: d% Y5 L2. Telnet, SSH, and ping are under CoPP-IMPORTANT and are allowed strictly to/from 10.10.x.x to the CORE router (Hint: you can verify using Loopback1).' G0 n4 @6 h3 h
3. All devices ping (UDP) any CORE router interface successfully to/from the 10.10.x.x range and do not allow any other IP address.
6 C/ ^# r' L6 s4. All devices run a successful traceroute (UDP) to any interface on the CORE router to/from the 10.10.x.x range, are under CoP( W6 [8 o' b% ^& p
背了三题,基本上就稳了 |
7#
2023-3-9 23:00:15
回复(1)
收起回复
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2023-3-8 13:56:21
置顶卡
喧嚣卡
变色卡
千斤顶
成长值: 19720
