1.1 VTP

1.1 VTP

Configure the ACME Headquarters network (AS 12345) as per the following requirements

• • the vtp domain must be set to CCIE

  • use vtp ver 2

  • sw1 must be the vtp server and sw2 must be the vtp client

  • secure all vtp updates with an MD5 digest of the ASCII string CCIErocks$

  • in order to avoid as much as possible unknown unicast flooding in all vlans the administrator requires that any dynamic entries learned by other sw1 and sw2 must be retained for 2 hours before being refreshed.

SW1

====

vtp domain CCIE

vtp version 2

vtp mode server

vtp password CCIErocks$

arp interval 7200

SW1

====

vtp domain CCIE

vtp version 2

vtp mode server

vtp password CCIErocks$

arp interval 7200

Configure the network of the new york office (AS 34567) as per the following requirements

• • the vtp domain must be set to CCIE

  • use vtp ver 2

  • sw3 and sw4 must not advertise their vlan config but must forward vtp advertisement that they receive out their trunk ports

  • secure all vtp updates with an MD5 digest of the ASCII stringa CCIErocks$

SW3

====

vtp domain CCIE

vtp version 2

vtp mode transparent

Vtp password CCIErocks$

SW4

====

vtp domain CCIE

vtp version 2

vtp mode transparent

Vtp password CCIErocks$

1.2 – Layer 2 Ports

Configure your network as per the following requirements

• • Complete the config of all vlans so that all routers that are located in ACME's headquarters (AS12345) and newyork office (AS 34567) can ping their directly connected neighbours

  • all four switches (sw1-sw4) must have dot1q trunks that do not rely on negotiation do not configure any etherchannel

  • ensure that the following unused ports on all four switches are shutdown and configured

  • as access ports in vlan 999

    • • e3/0-e3/3 are unused on sw1 and sw2

      • e1/0-e1/3 are unused on sw3 and sw4

      • e3/0-e3/3 are unused on sw3 and sw4

SW1

=====

Int range e2/0-3

Sw trunk encap dot1q

Sw mode trunk

Sw nonegotiate

Int range e3/0-3

Sw acc vlan 999

shutdown

SW2

=====

Int range e2/0-3

Sw trunk encap dot1q

Sw mode trunk

Sw nonegotiate

Int range e3/0-3

Sw acc vlan 999

shutdown

SW3

=====

Int range e2/0-3

Sw trunk encap dot1q

Sw mode trunk

Sw nonegotiate

Int range e3/0-3

Sw acc vlan 999

shutdown

SW4

=====

Int range e2/0-3

Sw trunk encap dot1q

Sw mode trunk

Sw nonegotiate

Int range e3/0-3

Sw acc vlan 999

shutdown

1.3 – Spanning Tree

configure the ACME network as per the following requirements

• • sw1 must be the root switch for all odd vlans and must be the backup for all even vlans

  • sw2 must be the root switch for all even vlans and must be the backup for all odd vlans

  • sw3 must be the root switch for all odd vlans and must be the backup for all even vlans

  • sw4 must be the root switch for all even vlans and must be the backup for all odd vlans

  • explicitly configure the root and backup roles, assuming that other switches with default configuration may eventually be added in the network in the future

  • All switches must maintain one stp instance per vlan

  • use the stp mode that has only three possible states

  • all access ports must immediately transation to the forwarding state upon link up and they must still participate in stp. use single command per switch to enable this

  • Access ports must automatically shut down if they receive any bpdu and an administrator must still manually re-enable the port. use a single command per switch to enable this feature.

SW1

=====

spanning-tree mode rapid-pvst

spanning-tree portfast bpduguard default

spanning tree portfast default

spanning-tree vlan 15 priority 0

spanning-tree vlan 23 priority 0

spanning-tree vlan 35 priority 0

spanning-tree vlan 57 priority 0

spanning-tree vlan 67 priority 0

spanning-tree vlan 999 priority 0

spanning-tree vlan 14 priority 4096

spanning-tree vlan 24 priority 4096

spanning-tree vlan 46 priority 4096

SW2

=====

spanning-tree mode rapid-pvst

spanning-tree portfast bpduguard default

spanning tree portfast default

spanning-tree vlan 15 priority 4096

spanning-tree vlan 23 priority 4096

spanning-tree vlan 35 priority 4096

spanning-tree vlan 57 priority 4096

spanning-tree vlan 67 priority 4096

spanning-tree vlan 999 priority 4096

spanning-tree vlan 14 priority 0

spanning-tree vlan 24 priority 0

spanning-tree vlan 46 priority 0

SW3

====

spanning-tree mode rapid-pvst

spanning-tree portfast bpduguard default

spanning tree portfast default

spanning-tree vlan 49 priority 0

spanning-tree vlan 89 priority 0

spanning-tree vlan 111 priority 0

spanning-tree vlan 411 priority 0

spanning-tree vlan 38 priority 4096

spanning-tree vlan 310 priority 4096

SW4

=====

spanning-tree mode rapid-pvst

spanning-tree portfast bpduguard default

spanning tree portfast default

spanning-tree vlan 49 priority 4096

spanning-tree vlan 89 priority 4096

spanning-tree vlan 111 priority 4096

spanning-tree vlan 411 priority 4096

spanning-tree vlan 38 priority 0

spanning-tree vlan 310 priority 0

1.4 – WAN Switching

• • The WAN links must rely on a layer 2 protocol that supports link negotiation and authentication.

  • The Service provider expects both R18 and r19 to complete three way hand shake by providing the expected response of a challange that is sent by R63

  • R18 must use the username ACME-R18 and password CCIE

  • R19 must use the username ACME-R19 and password CCIE

R18

====

int s1/0

spanning tree portfast default

ppp chap hostname ACME-R18

ppp chap password CCIE

R19

====

int s1/0

spanning tree portfast default

ppp chap hostname ACME-R19

ppp chap password CCIE