1
because I want some helps
A few things to keep in mind while completing this activity:
- Do not use the browser Back button or close or reload any exam windows during the exam.
- Do not close Packet Tracer when you are done. It will close automatically.
- Click the Submit Assessment button to submit your work.
In this practice Packet Tracer Skills Exam, you will do as follows:
· finish the configuration of a partially configured network
· establish connectivity within the enterprise and to the Internet
· implement access control lists based on a set of security policies
Addressing Table
Device
Interface
Address
Subnet Mask
Default Gateway
Main
Fa0/0
10.10.10.193
255.255.255.224
n/a
S0/0/0
10.10.10.249
255.255.255.252
n/a
S0/1/0
10.10.10.253
255.255.255.252
n/a
S0/0/1
198.133.219.18
255.255.255.252
n/a
Lo0
192.168.1.3
255.255.255.255
n/a
Admin
Fa0/0
10.10.10.129
255.255.255.192
n/a
Fa0/1
10.10.10.225
255.255.255.240
n/a
S0/0/0
10.10.10.250
255.255.255.252
n/a
Lo0
192.168.1.1
255.255.255.255
n/a
BldgA
Fa0/0
10.10.10.1
255.255.255.128
n/a
Fa0/1
n/a
S0/0/0
10.10.10.253
255.255.255.252
n/a
Lo0
192.168.1.2
255.255.255.255
n/a
Teacher
NIC
10.10.10.4
255.255.255.128
10.10.10.1
Student
NIC
10.10.10.5
255.255.255.128
10.10.10.1
Staff
NIC
XYZ Uni Server
NIC
10.10.10.200
192.31.7.53
255.255.255.224
10.10.10.193
NOTE: The password for user EXEC mode is cisco. The password for privileged EXEC mode is class.
Step 1: Configure the Device Basics.
Use the IP addresses in the Addressing Table and your subnetting skills to determine the missing IP addresses according to the following guidelines:
a. Configure Fa0/1 interface on BldgA with the highest (last) host IP address in the subnet.
b. Configure Staff with the highest (last) host IP address in the subnet
c. Verify connectivity.
Step 2: Configure OSPF.
a. Use the following requirements to configure OSPF on Main, Admin, and BldgA.
· Use the process ID 5.
· Advertise each subnet individually in area 0 with its corresponding wildcard mask. (Main should not advertise the link to the Internet.)
· Verify OSPF convergence.
b. Configure OSPF authentication on the links between BldgA and Admin, Admin and Main, and Main and BldgA.· Encrypt the updates using MD5 authentication. Authentication should be enabled for the entire area 0.
· On the appropriate interfaces, use a key ID of 10 and the password xyzunipass.
· Verify OSPF convergence.
c. Modify the OSPF configuration.· Modify both sides of the link between Main and BldgA to reflect the actual bandwidth of 768 Kb/s.
· Change the priority on Admin so that it is the preferred DR for the LAN it shares with BldgA.
d. Propagate a default route in the OSPF updates.· Configure a default route on Main and point it to the Internet. Use the outbound interface argument.
· Configure OSPF to advertise the default route to neighbors.
e. Verify connectivity.Step 3: Configure Access Control Lists.
a. Filter inbound traffic from the Internet. Configure and apply a single ACL numbered 150 on the correct router that will implement the following policy in order:
· Allow only HTTP access to the XYZ Uni Server at its public address 192.31.7.53.
· Allow all established TCP connections.
· Allow all ICMP replies and unreachable messages.
b. Verify that the policy is successfully implemented.c. Filter traffic from the BldgA LAN. Configure and apply on the router a single ACL numbered 175 that will limit network traffic and will implement the following policy:
· Hosts from the LAN connected to the Fa0/0 interface of BldgA are blocked from accessing hosts on the Admin Staff LAN.
· All other traffic is allowed anywhere.
d. Verify that the policy is successfully implemented.Step 4: Verify Connectivity.
Using tools such as ping and show commands, verify connectivity in the network.
Version 1.0
Created in Packet Tracer 5.3.2.0027 and Marvel 1.0.1
All contents are Copyright © 1992 - 2011 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
file:///C:/Users/ADMINI%7E1.WEA/AppData/Local/Temp/msohtmlclip1/01/clip_image001.png
