top of page
This site was designed with the
.com
website builder. Create your website today.Start Now

 

Summary:

 

1.  Enable and configure RIPv2 on all routers

2. Disable RIPv2 automatic summarization on all routers
3. Ensure you do not run RIPv2 on the R1 interface connected to the ISP.
4. Ensure RIP advertisements are never sent from R3 to any device on the Branch Office LAN (however,still advertise the  

    10.23.1.0/24 to other RIP routers) for security reasons.
5. Switches should use R1 as their default gateway.

 

 

1.  Enable RIP2 on all routers

2. Disable RIPv2 automatic summarization on all routers
3. Ensure you do not run RIPv2 on the R1 interface connected to the ISP.

 


R1.

router rip
 version 2
 no auto-summary
 network 10.0.0.0

! sh ip protocols

! sh ip route

R2.

router rip
 version 2
 no auto-summary
 network 10.0.0.0

! sh ip protocols

! sh ip route

4. Ensure RIP advertisements are never sent from R3 to any device on the Branch Office LAN (however,still advertise the  

      10.23.1.0/24 to other RIP routers) for security reasons.

 

R3.

router rip
 version 2
 no auto-summary
 network 10.0.0.0
 passive-interface fa0/0 !----------- don't actively advertise this interface
 
 !OR!
 passive-interface default !--------- turn off advertisement on all interfaces  
 no passive-interface s1/0 !--------- do not turn off serial interface

 

! sh ip protocols

! sh ip route

#Test:

R3(config-router)#do sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

     10.0.0.0/8 is variably subnetted, 3 subnets, 2 masks
C       10.15.1.12/30 is directly connected, Serial1/0
R       10.24.0.0/24 [120/1] via 10.15.1.13, 00:00:13, Serial1/0
C       10.23.1.0/24 is directly connected, FastEthernet0/0
R3(config-router)#do ping 10.24.0.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.24.0.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 92/98/120 ms
R3(config-router)#

 

5. Switches should use R1 as their default gateway.

 

S1.

ip default-gateway 10.24.0.1

no ip routing !------------------------------- since we use router for switch, we have to turn off the routing on the "switch"

S2.

ip default-gateway 10.24.0.1

no ip routing !------------------------------- since we use router for switch, we have to turn off the routing on the "switch"

S3.

ip default-gateway 10.24.0.1

no ip routing !------------------------------- since we use router for switch, we have to turn off the routing on the "switch"

#Test:

S3(config)#do ping 10.15.1.13

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.15.1.13, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 48/462/1088 ms

 

S1(config)#do ping 10.15.1.14

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.15.1.14, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 92/488/1084 ms
S1(config)#

S1(config)#do ping 10.23.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.23.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 64/88/188 ms
S1(config)#

S1#telnet 10.23.1.1
Trying 10.23.1.1 ... Open




*************************************
DO NOT LOG IN
*************************************

HELLO BAM!!



User Access Verification

Password:
R3>
 

 

 

 

 

 

 

 

 

 

 

 

-Yu

 

 

 

bottom of page