Download - Cavell Group

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
Document related concepts
no text concepts found
Transcript 
Juniper Networks Certified Internet
Specialist Enterprise
LAB DIAGRAMS: POD - A
Management Network Diagram
gege-0/0/0 (on all SRX devices)
srxAsrxA-1
Terminal
Server
Serial Console
Connections
srxA
srxA-2
Management
Network
Student
Workstations
10.210.14.128/27
10.210.8.160/28
Management Addressing
exA
exA-1
exA
exA-2
Management interface
srxAsrxA-1
srxAsrxA-2
vrvr-device
exAexA-1
exAexA-2
telnet 10.210.14.131
telnet 10.210.14.132
telnet 10.210.14.139
telnet 10.210.8.161
telnet 10.210.8.162
Console Access
me0 (on all EX devices)
srxAsrxA-1
srxAsrxA-2
exAexA-1
exAexA-2
telnet 192.168.2.11 7001
telnet 192.168.2.11 7002
telnet 10.1.1.253 7011
telnet 10.1.1.253 7012
Username/password
username:
password:
lab
lab123
Cavell JNCIS-ENT Lab Access Procedure POD A
ssh js2.lab2.cavellgroup.com using port 7037 takes you to our Jump Server.
• From Jump Server prompt run telnet to your SRX’s ge-0/0/0 interface using the OoB network IP address (10.210.14.128/27).
- Use either the IP address provided here below or SRX name: srxA-1 and srxA-2
• From Jump Server prompt run Telnet to 192.168.2.11 and selected port number for each SRX’s Console port.
• End your session with CTRL + ]. If not the session might hang preventing you to re-establish a console session again.
•From Jump Server prompt run telnet to your Switch’s me0 interface using the OoB network IP address (10.210.8.160/28).
• Use either the IP address provided here below or router name: exA-1 and exA-2
• From Jump Server prompt run Telnet to 10.1.1.253 and selected port number for each Switch’s Console port.
• End your session with CTRL + ]. If not the session might hang preventing you to re-establish a console session again.
JUNOS Security Device
srxA-1
srxA-2
exA-1
exA-2
vr-device J2350
Telnet via Terminal Server to SRX Console
port. Don't forget to log out, otherwise the
session will hang!!!
ssh to js2.lab2.cavellgroup.com port 7037
OoB network, ge-0/0/0 or me0 via
Jumpserver
Authentication in Jumpserver
Login as user: & passwd:
Provided by Cavell
Authentication in Jumpserver
Login as user: & passwd:
Provided by Cavell
Login to SRX as user: lab
password: lab123
Quit session with: CTRL + ¨
192.168.2.11 port 7001
192.168.2.11 port 7002
10.1.1.253 port 7011
10.1.1.253 port 7012
telnet to OoB IP address as below
Login to SRX as user: lab
password: lab123
telnet 10.210.14.131
telnet 10.210.14.132
telnet 10.210.8.161
telnet 10.210.8.162
telnet 10.210.14.139
ssh to js2.lab2.cavellgroup.com port 7037
Lab 1: Protocol Independent Routing
VLAN Assignments
Hostname
VLANVLAN-ID
srxA-1
111
srxA-2
112
Internet Host
Internet
(.1
(.2
)
)
(.1
)
30
/
.0
.1
8
1
2.
7
1
172.31.15.1
17
2.
18
.2
.0
/3
0
(.2
)
ge
-0
/0
/3
3
0/
/
-0
ge
gege-0/0/2 (.1)
172.20.66.0/30
(.2) gege-0/0/2
ge-0/0/1 (.1)
lo0: 192.168.1.1 ge-
172.20.77.0/30
(.2) gege-0/0/1 lo0: 192.168.2.1
srxA
srxA-1
(.1) gege-0/0/4.111
172.20.111.0/24
(.10)
vr111
lo0: 192.168.1.2
Tagged Interface
Note: v = remainder of VLAN-ID.
See table for details.
Virtual Routers
srxA
srxA-2
gege-0/0/4.112 (.1)
172.20.112.0/24
(.10)
vr112
lo0: 192.168.2.2
Lab 2: OSPF Multi-area
VLAN Assignments
Hostname
VLANVLAN-ID
srxA-1
111
srxA-2
112
Internet Host
Internet
(.1
(.2
)
172.31.15.1
(.1
)
)
17
2.
18
.2
.0
/3
0
30
/
0
1.
.
8
.1
2
17
(.2
)
ge
-0
/0
/3
/3
0
/
-0
e
g
srxAsrxA-1
lo0: 192.168.1.1
gege-0/0/2 (.1)
172.20.66.0/30
(.2) gege-0/0/2
gege-0/0/1 (.1)
172.20.77.0/30
(.2) gege-0/0/1 lo0: 192.168.2.1
srxAsrxA-2
gege-0/0/4.112 (.1)
(.1) gege-0/0/4.111
OSPF Area 0.0.0.0
OSPF Area
0.0.0.1
172.20.112.0/24
172.20.111.0/24
(.10)
vr111
lo0: 192.168.1.2
Note: v = remainder of VLAN-ID.
See table for details.
(.10)
vr112
lo0: 192.168.2.2
OSPF Area
0.0.0.2
Lab 2 part 4: IS-IS
VLAN Assignments
Hostname
VLANVLAN-ID
srxA-1
111
srxA-2
112
Internet Host
Internet
)
(.1
(.2
L1/L2 Router
IS-IS Area
17
2.
18
.2
.0
/3
0
(.2
)
ge
3
/
-0
/0
/0
0
49.0002.1921.6800.2001.00
/3
- 49.0001.1921.6800.1001.00
e
g
172.20.66.0/30
gege-0/0/2 (.1)
(.2) gege-0/0/2
srxAsrxA-2
srxAsrxA-1
(.2) gege-0/0/1 lo0: 192.168.2.1
ge-0/0/1 (.1)
172.20.77.0/30
lo0: 192.168.1.1 ge-
ge-0/0/4.111
(.1) ge-
gege-0/0/4.112 (.1)
172.20.112.0/24
172.20.111.0/24
49.0001
(.10)
L1 Router
)
30
/
.0
.1
8
1
2.
7
1
172.31.15.1
(.1
)
vr111
lo0: 192.168.1.2
Note: v = remainder of VLAN-ID.
See table for details.
L1/L2 Router
IS-IS Area
49.0002
(.10)
vr112
lo0: 192.168.2.2
L1 Router
Lab 3: BGP
VLAN Assignments
112
ISP X
ISP Z
AS 65510
AS 65520
0
.0/3
.18.2
172
(.1)
(.2)
(.1)
srxA-2
AS 65515
/30
111
.18
.1.0
srxA-1
ISP Y
172
VLANVLAN-ID
(. 2 )
Hostname
gege-0/0/3
gege-0/0/3
gege-0/0/2 (.1)
172.20.66.0/30
ge-0/0/1 (.1)
lo0: 192.168.1.1 ge-
172.20.77.0/30
srxAsrxA-1
AS 64700
lo0: 192.168.1.2
172.20.112.0/24
(.10)
(.10)
vr111
srxAsrxA-2
(.2) gege-0/0/1 lo0: 192.168.2.1
gege-0/0/4.112 (.1)
(.1) gege-0/0/4.111
172.20.111.0/24
(.2) gege-0/0/2
Note: v = remainder of VLAN-ID.
See table for details.
vr112
lo0: 192.168.2.2
Lab 4 Part 1: Implementing Layer 2 Switching
MAC: 00:26:88:02:74:88
srxAsrxA-1
172.23.12.10/24
ge-0/0/8
172.23.11.10/24
vr11
MAC: 00:26:88:02:74:86
7
172.23.11.100/24
0/
- 0/
ge
ge
-0 /
0/
6
exAexA-1
172.23.12.100/24
vr12
Virtual Routers
MAC: 00:26:88:02:74:87
Lab 4 part 5: Implementing Virtual Networks
MAC: 00:26:88:02:74:90
VLAN Tag Assignments
VLAN: v11
172.23.11.10/24
VLAN Name
VLANVLAN-ID
v11
11
v12
12
srxAsrxA-1
VLAN: v12
ge-0/0/8
172.23.12.10/24
Trunk Ports
vlan.11: 172.23.11.1/24
exAexA-1
172.23.11.100/24
vr11
MAC: 00:26:88:02:74:86
VLAN: v12
7
VLAN: v11
Access Ports
0/
-0 /
ge
ge
-0 /
0/
6
vlan.12: 172.23.12.1/24
172.23.12.100/24
vr12
Virtual Routers
MAC: 00:26:88:02:74:87
Lab 5: Implementing Spanning Tree
Bridge Priority: 4K
172.23.21.10/24
srxAsrxA-2
srxAsrxA-1
172.23.22.10/24
ge-0/0/2
ge-0/0/8
172.23.12.10/24
ge-0/0/1
0
ge-
0
/1
/0
ge0/
ge-0/0/8
172.23.11.10/24
Bridge Priority: 8K
0/
10
Bridge Priority: 32K
(default)
Bridge Priority: 32K
(default)
ge
-0 /
0/
6
ge
-0 /
0/
6
172.23.12.100/24
172.23.21.100/24
vr12
Virtual Routers
vr21
VLAN: v22
7
VLAN: v21
ge-0/0/9
0/
-0 /
ge
vr11
VLAN: v12
7
172.23.11.100/24
0/
-0 /
ge
VLAN: v11
exAexA-2
exAexA-1
ge-0/0/9
172.23.22.100/24
vr22
Lab 6: MAC Limiting, Storm Control and LAG
MAC: 00:26:88:02:74:90
VLAN: v11
172.23.11.10/24
VLAN: v12
srxAsrxA-1
ge-0/0/9
ae0
ge-0/0/8
172.23.12.10/24
172.23.11.100/24
vr11
MAC: 00:26:88:02:74:86
VLAN: v12
7
VLAN: v11
0/
-0 /
ge
ge
-0 /
0/
6
exAexA-1
172.23.12.100/24
vr12
Virtual Routers
MAC: 00:26:88:02:74:87
Related documents