Section 53 Tasks
- Take the exam below
- Complete the challenge lab
- Review the subject of your choice
- Read the ICND2 cram guide (and the ICND1 cram guide, if taking the CCNA exam)
- Spend 15 minutes on the subnetting.org website
Section 53 Exam
- Write out the syntax for standard, extended, and named ACLs, and how to apply them to interfaces and the VTY line.
- OSPF operates over IP protocol _______.
- OSPF does NOT support VLSM. True or false?
- Any router which connects to Area 0 and another area is referred to as an _______ _______ router or _______.
- If you have a DR, you must always have a BDR. True or false?
- The DR/BDR election is based upon which two factors?
- By default, all routers have a default priority value of _______. This value can be adjusted using the _______ _______ _______ <0-255> interface configuration command.
- When determining the OSPF router ID, Cisco IOS selects the highest IP address of configured Loopback interfaces. True or false?
- What roles do the DR and the BDR carry out?
- Which command would put network 10.0.0.0/8 into Area 0 on a router?
Section 53 Answers
- Standard ACL: access-list x permit host y.y.y.y or access-list x permit x.x.x.x x.x.x.x
Exnteded ACL: access-list x permit/deny {service/protocol} {source network/IP} {destination network/IP} {port#}
Named ACL:
Ip access-list extended NAME
Permit x.x.x.x x.x.x.x
Deny x.x.x.x x.x.x.x
Apply ACLs: ip access-group x inside/outside on interface, access-class class x in/out on vty line - 89.
- False.
- Area Border or ABR.
- False.
- The highest router priority and the highest router ID.
- 1, ip ospf priority.
- True.
- To reduce the number of adjacencies required on the segment, to advertise the routers on the Multi-Access segment, and to ensure that updates are sent to all routers on the segment.
- The network 10.0.0.0 0.255.255.255 area 0 command.
Section 53 Lab – EIGRP and ACL
Topology
Instructions
Connect three routers together with a serial or crossover cable:
- Add IP addresses to the routers and Loopback interfaces on Routers A, B, and C, according to the diagram
- Ping between Routers A and B and between Routers B and C to test the serial lines (remember clock rates)
- Now set the serial lines to use PPP with CHAP (also set usernames and passwords)
- Configure EIGRP 40 on all routers
- Check the routing tables and make sure that you include both of the 192.168.1.x networks
- Set an ACL to Router A; Telnet should be permitted from the Router C Serial address, but not from Router B; permit Telnet on Router A first, of course
Solution Hints and Commands
- router eigrp 40
- Use the network command to advertise the network in EIGRP
- Use the access-class command on VTY lines to filter traffic
- NOTE: The two networks on Router B are 192.168.1.12/30 and 192.168.1.16/30