CCNA VLAN Exam Sim Troubleshooting Lab

CCNA VLAN Exam Sim Troubleshooting Lab

This practice Lab is related to "CCNA VLAN Exam Sim". In this lab you have three Cisco Switches with different VLAN configured on these. Your task will be to troubleshoot and find the missing or bad configuration so that the communication between all these switches are possible in required way.

Vlan Lab Question:

A network engineer has built a Layer-2 switched network in a Healthcare IT company. But these are some misconfigurations. You are directed to verify these configurations and fix all the issues  as per company's requirements.

Following are the company's  requirements:

• Your first task is to verify and confirm that all switch ports are assigned with correct VLANs as shown in figure. You need to fix all  misconfiguration in these three Cisco switches
• You need to check the trunk-links between these operational switches & the trunk-encapsulation method IEEE-802.1Q is used. You second task is complete all the trunk configurations and make sure all ports  between switches are configured as trunk-ports

In Exam when you will analyze the configurations you may find the following faults or misconfigurations. 

1. You need to check the Native VLAN configurations, there may be a native-vlan mismatch between SwitCH1 AND Switch3. You need to fix this fault with following configurations

Sw3(config-if)#switchport trunk native vlan 1

You need to match the native-VLAN onboth end, you can use “show int trunk” command on Switch1 to check its native-VLAN.

2. Different Switchport mode on Switches: For making sure the correct trunk configuration you need to check that trunk port on both switch must be configured as trunk. For example first you can check that the E0/0 on SW3 and E0/1 on SW2 must be configured as trunk port. 

SW3, SW2:
interface e0/0
 switchport mode trunk

interface e0/1
 switchport mode trunk

3. Check Access Side with Vlan configurations: You may find 1 port in VLAN 500 while other port in VLAN 600 on SWI and SW2 

SW1, SW2:
interface e0/2
 switchport mode access
 switchport access vlan 500
interface e0/3
 switchport mode access
 switchport access vlan 600

3. Check trunk-encapsulation IEEE-802.1Q configurations: You need to confirm the following correct configurations on SW3:

SW3:
interface e0/0
 switchport trunk encapsulation dot1q
 switchport mode trunk

Learn About New VLANs Virtual Extensible LAN

CCNA EIGRP Exam Lab AS Configuration

CCNA EIGRP Exam Lab AS Configuration 

Question

CCNA EIGRP AS Configuration Exam Lab: Your office has added a new router Router3 to current network. But there is some configuration issue between Router3 and the network, because currently no router is receiving the routing-updates from Router3. All other connectivity like ISP Internet is working fine.

Your task is to recognize the faults in configuration and correct them in a way you get full connectivity between the all networks. All routers have the default password cisco. IP configurations of all devices are as under:

RouteRouter1
S0/0: 192.168.36.13

S1/0: 198.0.18.6
S0/1: 192.168.60.25

Fa0/0: 192.168.77.33

Router2
S0/0: 192.168.36.14

Fa0/0: 192.168.60.97
Fa0/1: 192.168.60.113

Router3
Fa0/1: 192.168.60.65
Fa1/0: 192.168.60.81

Fa0/0: 192.168.77.34

Router4
S0/1: 192.168.60.26

Fa0/0: 192.168.60.129
Fa0/1: 192.168.60.145

Solution and explanation

For troubleshooting the lab you need to check out the configuration on newly added router that is router3. Run the command show RUN on router3. From the output of router3, we find that it is wrongly configured with an autonomous number of 22. If the AS numbers among the connected routers are different then no adjacency will be formed. You also need to make sure that you have the same AS on the entire router in the network.

To correct the configurations, you simply need to re-configure router3 with the correct AS following configurations:

ROUTER3#configure terminal

ROUTER3(config)#no router eigrp 22

ROUTER3(config)#router eigrp 212

ROUTER3(config-router)#network 192.168.60.0

ROUTER3(config-router)#network 192.168.77.0

ROUTER3(config-router)#no auto-summary

ROUTER3(config-router)#end

ROUTER3#copy running-config startup-config

Check configuration on Router1:

You will notice that there is missing network of Router3. Therefore we have to advertise here so that it can accessible on Router3

ROUTER1>enable 

ROUTER1#configure terminal

ROUTER1(config)#router eigrp 212

ROUTER1(config-router)#network 192.168.77.0

ROUTER1(config-router)#end

ROUTER1#copy running-config startup-config

Verification:

After the above configuration you will have the full connectivity. You should check again with ping command from router3 to other routers!

Some new updates in EIRGP lab:

In the above simulation’s configuration if you find the passive-interface configuration in ROUTER1 configuration. If the link between ROUTER1 to Router2 or ROUTER1 to Router3 have the passive interface then we need to remove it. You can use the no passive-interface command because it prevents EIGRP routing updates from being sent on these interfaces. But if the “passive interface” is applied to the link between ROUTER1 and ISP-router in following way:

ROUTER1:

!

.
router eigrp 212
passive-interface s1/0
.

.

Then we don’t need to change anything on ROUTER1 because the link between ROUTER1 & ISP doesn’t need EIGRP to run on it.

There is a static router command ip default-network command in ROUTER1, this is correct so that all the routers can access the Internet.

That all, thank you for reading. Share your comments and CCNA exam experience. Visit some other practice labs for CCNA.

CCNA access list Exam Lab with GNS3 Downloadable Configuration files

CCNA ACL Exam Lab with GNS3:

If you are preparing to attempt the CCNA (200-120) Exam, then you must prepare for access-list, because in every exam there is a lab related to assess-list where you have to complete the configuration in order to make the access-list working. I have created the similar lab in GNS3 so that you can practice it before going into the real Exam.

Lab Question:

A network-Engineer is making the security configuration of the Corp1 router. You have to perform the following task for completing these configurations:

1. The user on host C must be able to use a web browser to access financial information from the Finance Web Server.
2. No other hosts from the LAN nor the Core should be able to use a web browser to access this server.
3. YOU ARE required to apply an access-list with no more than three statements that will allow ONLY host C web access to the Finance Web Server. No other hosts will have web from Finance Web Server.
4. All other traffic is permitted.

Other Information:

The Core user have the IP-address of 198.18.196.65.

LAN PCs have been assigned with IP addresses range from 192.168.33.1 - 192.168.33.254.

The servers in the Server LAN have been assigned addresses of 172.22.242.17 - 172.22.242.30.

The Finance Web-Server has been assigned with IP address of 172.22.242.23.

Image Courtesy: actualtests.com 

Solution / Required Configurations

You can achieve these required task by following /configuration / commands on router Crop1:

Corp1>enable

Corp1#configure terminal

Corp1(config)#access-list 100 permit tcp host 192.168.33.3 host 172.22.242.23 eq 80

This command will allow the web traffic to finance web server, Where 192.168.33.3 is the IP address of host C.

Corp1(config)#access-list 100 deny tcp any host 172.22.242.23 eq 80

This command will block the web access of any other host to finance web server

Corp1(config)#access-list 100 permit ip any host 172.22.242.23

Above command will allow the any other traffic.

.

Apply the ACL to interface near to destination:

Corp1(config)#interface fa 0/1

Corp1(config-if)#ip access-group 100 out

Corp1(config-if)#end

Corp1#copy running-config startup-config

Verification of Configuration:

You can access the web only from 192.168.33.3 to Finance Web Server.

CCNA Access-list Exam lab In GNS3:

If you have some extra time you can configure this lab in GNS3… J You can also configure it with packet-tracer which is easy as compare to GNs3 But I have configured the same lab in Gns3, you can download these configuration files from here and can complete it with above configurations. Simply download the files (link are given at the end of post), create the topology same like shown in the figure and then upload these files on every router one by one. This will provide the initial practice before going into the real exam.

IN GNS3 For making the communications between Corp1, Lan Hosts (A,B,C,D) and finance servers I have configured the EIGRP AS 100, while in the real lab you have the by default communication between these devices.

For host-C and finance web server and other servers I have used the VMs of VirtualBox. I have used internet NIC with them With following IP configurations:

Host-C

192.168.33.3\24

Gateway=192.168.33.254

Host-B

192.168.33.2\24

Gateway=192.168.33.254

Finance-web-server

172.22.242.23\24

Gateway=172.22.242.30

For creating the web service on finance server I simply install the IIS and hosted a web-page named index.html. You can install the IIS on windows XP from control panel\add & remove feautures\add&remove windows components and the select the IIS and click on next and complete the wizard.

I have created a web-page (index.html) for test and place it on c:\inetpub\wwwroot of finance web-server. After completing the above configuration you can test the configuration with the followiway.

1. open the internet explorer and access the shared web page with URL “172.22.242.23\index.html”, it will be successful from host-c as shown in figure.

• Now try the same from Host-b page will be inaccessible.

CCNA EIGRP Exam Lab | Addition of new Router in EIGRP Process

Practice EIGRP LAB for CCNA:

Burtaqtech has a small network running with EIGRP as IGP protocol. EIGRP  has the AS number of 12 on all routers. Router MGT is also running static routing to the ISP. Burtaqtech has recently added the ENG router, currently which do ‘not have connectivity to the ISP-router. You have to perform the following tasks for completing the configurations:

Find the faults and correct the router configurations to provide full connectivity between the routers.

Following are the IP-address schemes of all the routers in the following network.

MGT

Fa0/0 – 192.168.77.33

S1/0 – 198.0.18.6

S0/0 – 192.168.27.9

S0/1 – 192.168.50.21

Parts2

Fa0/0 – 192.168.12.65

Fa0/1 – 192.168.12.81

S0/1 – 192.168.50.22

Parts1

Fa0/0 – 192.168.12.33

Fa0/1 – 192.168.12.49

S0/0 – 192.168.27.10

ENG

Fa0/0 – 192.168.77.34

Fa1/0 – 192.168.12.17

Fa0/1 – 192.168.12.1

Image Courtesy: actualtests.com 

Solution:

This the very simple Lab to configure in the CCNA Exam, all you have to do to advertise the EIGRP network of new added router “ENG” on MGT router. As MGT is the main router which is connecting all the routers to ISP. In our scenario on ENG the interface which is connected to MGT have the IP address of 192.168.77.x, so we will advertise this network on MGT router in EIGRP 12.

So you are required the following configuration for compleing the above EIGRP lab.

On the MGT Router:

Config t

Router eigrp 12

Network 192.168.77.0

GNS3 Tutorials for beginners | How to getting start with GNS3

GNS3 is one of the famous software for simulating the network devices. It is important for a networks Engineer or networks profession that he can create and simulate different network scenarios using GNS3.

This article is divided into different sections and design for both beginners and advance level GNS3 users.

GNS3 Tutorial for begginers:

If you are newer to GNS3 you can start working on GNS3 with the following tutorials:

Gns3 Installation on Windows 8 

How to install GNS3 on Windows 7

How to install GNS3 on LINux 

How to add IOS in GNS3 

Add GNS3 IOS in UBUNTU 

Download IOS for GNS3 

How to use gns3 simulator 

Access Gns3 router with SDM 

GNS3 Labs & Tutorials

Following are some network labs that you can create with GNS3.

Cisco Route filtering

How to enable SSH on router Switch on GNS3

How to configure EIGRP

Backup, Load n restore Router Configuration in Text file via TFTP on GNS3

How to find MAC address on Cisco

Use Juniper on GNS3

GNS3 Tutorials for CCNA:

Following are some gns3 labs which are useful for CCNA preparation.

VTP on GNS3

GNS3 NAT Lab 

Basic OSPF configruations

RIP v2 on GNS3

GNS3 video tutorials

Create Vlan with GNS3



Gns3 installation on ubuntu 

CCDA Intro freeTraining and tutorials 

GNS3 Gerneral issue and troubleshooting:

GNS3 Console issue 

Gns3 Error Failed to determine version of Dynamips 

GNS3 vlan configuration is not saving

GNS3 Baseconfig file issue

GNS3 Juniper router error

ICND2 VTP GNS3 Configuration LAB

How to configure Vlan Trunking Protocol on Gns3

Question

This GNS3 lab is related to VLAN Trunk Protocol, in which you have two switches Switch-1 and Switch-2 and you need to configure the Switch-2 according to following requirement:

1. Determine and configure the gateway and last IP address on vlan-interface from subnet 192.168.33.32\27
2. Find and configure the same VTP domain on switch-2 as on Switch-1. (Switch-1 has the domain “City-Campus”)
3. Configure Switch-2 as VTP Client

Solution: how to configure this Lab:

You can configure this on GNS3 very easily, according to question Router and Switch-1 are already configured. You can complete this lab by creating the above topology in GNS3 and then you can download router and switch-1configurations from here, paste them on router and switch-1 respectively and complete it with following configurations:

GNS3 version: 0.8

Switch IOS: C3725-AD.BIN download from here

Determine and configure the gateway and last IP address from subnet 192.168.33.32\27:

For finding the gateway and vlan IP address on Switch-1 you can use the command “show run”

Switch-1#show running-config

From above out-put you can see that vlan-subnet on switch-1 is 192.168.33.50\27 and from subnetting you can find the valid IP addresses for this subnet:

Subnetting for Class C address
Bit# in 4th octet	25	26	27	28	29	30	31	32
IP ranges/ increment	128	64	32	16	8	4	2	1

From above table we have the following details:

Subnet ID= 192.168.33.32

Broadcast Address=192.168.33.63

Valid IPs= 192.168.33.33 to 192.168.33.62

So we have 192.168.33.62 the last IP address for given subnet.

Switch-2#config t

Switch-2(config)#int Vlan1
Switch-2(config-if)#ip address 192.168.22.62 255.255.255.224
Switch-2(config-if)#no shut

Switch-2(config-if)#exit
Switch-2(config)#ip default-gateway 192.168.22.35

Find and configure the same VTP domain on switch-2

For VTP domain of switch-1, you can use the “show vtp status” command on Switch-1.

switch-1# show vtp status

We have find that VTP-domain of switch-1 is “City-Campus”. For configuring the same domain you can use the following commands:

Switch-2#config t

Switch-2(config)#vtp domain City-Campus

Configure Switch-2 as VTP Client

You can set Switch02 as VTP client by using command: “vtp mode client” or "vtp client"

Real Switch Configurations	if you are configuring it on GNS3
Switch-2#config t Switch-2(config)#vtp mode client Switch-2(config)#vtp domain City-Campu	Switch2#vlan database Switch2(vlan)#vtp client Switch2(vlan)#vtp domain City-Campus

How to Test or Confirm lab configurations on GNs3:

Create some vlan on switch1, if your configurations are complete then it will automatically create that vlan on Switch2 as well. (Switch2 is VTP client therefore it will sync its vlan database from switch1 which is VTP server)

Switch1#vlan database

Switch1(vlan)#vlan 11

After creating vlan 11 on switch1, Show vlan-switch on switch2 should have following configurations:

If you have some issue with your lab then you can download Switch2 configuration from here and can compare with your for troubleshooting.

CCNA Nat Sim Exam lab on GNS3 | ICND2 Lab

CCNA Nat Sim Exam lab on GNS3 | ICND2 Lab 

Question

Your company has 14 PCs those need to access the internet simultaneously. All the computers in the local area network are using the private IP addresses from 192.168.2.1 to 192.168.2.14.

• Configure serial s0/0 as NAT outside
• Configure serial f0/0 as NAT inside
• You need to configure NAT (network address translation) on PE-router with 4 public IP addresses from 192.168.1.107 to 192.168.1.110 so that all the hosts can use internet at the same time.

Note: Since we are creating this lab on GNS3 therefore we are using private IP addresses i.e. 192.168.1.X for NAT translation instead of real Public IPs. Please keep in mind that in real scenario you must use Public IP addresses. 

For configuring this lab on GNS3 1.1 i have used the following devices:

Router: 
IOS: c7200-jk9s-mz.124-13b.image
Router full configuration: PE-Router configuration

Cloud:

I have used cloud for internet connectivity with my laptop Ethernet interface, i also recommend you to use physical local area connection of your PC with gns3-cloud instead of wifi-adapter, you learn how to use cloud in GNS3 from here.

VPCS (Virtual-Host):

IP adress=192.168.2.1
Gatway= 192.168.2.2
You can learn how to configure IP address and Gateway of VPCS on gns3 from here.

Solution:

1.Configure serial f0/0 as NAT inside 

Router>enable 
Router#config t

Router(config)#hostname PE-router

PE-router(config)#interface fa0/0 

PE-router(config-if)#ip nat inside 
PE-router(config-if)#exit 

2.Configure serial s0/0 as NAT outside

PE-router(config)#interface s0/0 
PE-router(config-if)#ip nat outside 
PE-router(config-if)#end

3.Configure NAT ON Router:

In second step you need to configure pool of Public IP addresses, you can do it by using following commands:

PE-router(config)# ip nat pool LIVEIP-POOL 192.168.1.107 192.168.1.110 netmask 255.255.255.248

Now create an access-list for private IP addresses and permit all hosts.

PE-router(config)#access-list 1 permit 192.168.2.0 0.0.0.15

Now apply this access-list with NAT, following command will pick up IP address from 192.168.2.1 to 192.168.2.14 and with map it to LIVEIP-POOL (200.200.200.105 to 200.200.200.110)

“Overload” keyword allows to map multiple IP addresses to a single registered IP address by using different ports.

PE-router(config)#ip nat inside source list 1 pool LIVEIP-POOL overload

Save all configurations;

PE-router#copy run start

Testing:

 Ping 192.168.1.1 or some internet address like 4.2.2.2 and then see the nat translations using "show ip nat translations"

PE-router# show ip nat tran

New OSPF sim for ICND1 on GNS3 | 100-101 Practice Lab

OSPF Lab on GNS3 for ICND1: 

In network diagram you can find the three router R1, R2 and R3. R1 and R2 are already configured with IP addresses and OSPF area 0. You need to perform the following tasks and configurations:

1. Configure last available IP address of f0/0 of R3 with first usable subnet 192.168.224.0/28
2. Configure first available IP address for S1/0 with second usable subnet from the network 192.168.224.0/28.
3. Configure OSPF with area 0 on R3 so that R3 can properly communicate with R1 and R2 

Solution:

You can practice this LAB on GNS3 by downloading R1 and R2 configuration other necessary detail for GNS3 configuration are as under:

Router IOS= 7200 series (you can download it from here)

GNS3 version= GNS3 1.0 beta2

Router module/slot used: slot1=c7200-IO-2FE, slot2=PA-8T

(Note: for quick configuration you can download these text files and can copy paste these configuration into your GNS3 router)

Download R1 Configuration

Download R2 Configuration

Configure f0/0 with first useable subnet from 192.168.224.0/28:

For finding the first useable subnet you can consider the following table:

Subnetting for 192.168.224.0/28
Bit# in 4th octet	25	26	27	28	29	30	31	32
IP ranges/ increment	128	64	32	16	8	4	2	1

From above table you can find following subnets with the increment of 16 for 192.168.224.0/28.

Subnet1= 192.168.224.0 to 192.168.224.15               (Subnet ID=192.168.224.0)

Subnet2= 192.168.224.16 to 192.168.224.31             (Subnet ID=192.168.224.16)

Subnet3= 192.168.224.32 to 192.168.224.47             (Subnet ID=192.168.224.32)

.

.

.

Since we need to assign last available IP address from subnet1, therefore we have the last IP address= 192.168.224.14

R3> enable

R3# config t

R3(config)# int f0/0

R3(config-if)# ip address 192.168.224.14 255.255.255.240

R3(config-if)# no shut

2. Configure first available IP address to S1/0 with second usable subnet from the network 192.168.224.0/28:

For above table we have already find that second subnet is 192.168.224.16 to 192.168.224.31 with first IP address=192.168.224.17

R3(config)# int S1/0

R3(config-if)# ip address 192.168.224.17 255.255.255.240

R3(config-if)# no shut

3. Advertise both interface of R3 in OSPF:

You can advertise these two subnet on R3 using Subnet-IDs by following commads:

R3(config)#Router OSPF 1

R3(config-router)#network 192.168.224.0 0.0.0.15 area 0

R3(config-router)#network 192.168.224.16 0.0.0.15 area 0

Results and testing:

After the correct configuration you should have the following output for “show IP route” command:

After the configuration you should have successful ping to 192.168.200.1

If you have any trouble/issue with R3 configuration you can also download R3 configuration from here and can compare it to your configuration.

Test you ICND1 skills by taking ICND1 Quiz Questions and Answers