1.1 VTP
Configure the ACME Headquarters network (AS 12345) as per the following requirements
the vtp domain must be set to CCIE
use vtp ver 2
sw1 must be the vtp server and sw2 must be the vtp client
secure all vtp updates with an MD5 digest of the ASCII string CCIErocks$
in order to avoid as much as possible unknown unicast flooding in all vlans the administrator requires that any dynamic entries learned by other sw1 and sw2 must be retained for 2 hours before being refreshed.
SW1
====
vtp domain CCIE
vtp version 2
vtp mode server
vtp password CCIErocks$
arp interval 7200
SW1
====
vtp domain CCIE
vtp version 2
vtp mode server
vtp password CCIErocks$
arp interval 7200
Configure the network of the new york office (AS 34567) as per the following requirements
the vtp domain must be set to CCIE
use vtp ver 2
sw3 and sw4 must not advertise their vlan config but must forward vtp advertisement that they receive out their trunk ports
secure all vtp updates with an MD5 digest of the ASCII stringa CCIErocks$
SW3
====
vtp domain CCIE
vtp version 2
vtp mode transparent
Vtp password CCIErocks$
SW4
====
vtp domain CCIE
vtp version 2
vtp mode transparent
Vtp password CCIErocks$
1.2 – Layer 2 Ports
Configure your network as per the following requirements
Complete the config of all vlans so that all routers that are located in ACME's headquarters (AS12345) and newyork office (AS 34567) can ping their directly connected neighbours
all four switches (sw1-sw4) must have dot1q trunks that do not rely on negotiation do not configure any etherchannel
ensure that the following unused ports on all four switches are shutdown and configured
as access ports in vlan 999
e3/0-e3/3 are unused on sw1 and sw2
e1/0-e1/3 are unused on sw3 and sw4
e3/0-e3/3 are unused on sw3 and sw4
SW1
=====
Int range e2/0-3
Sw trunk encap dot1q
Sw mode trunk
Sw nonegotiate
Int range e3/0-3
Sw acc vlan 999
shutdown
SW2
=====
Int range e2/0-3
Sw trunk encap dot1q
Sw mode trunk
Sw nonegotiate
Int range e3/0-3
Sw acc vlan 999
shutdown
SW3
=====
Int range e2/0-3
Sw trunk encap dot1q
Sw mode trunk
Sw nonegotiate
Int range e3/0-3
Sw acc vlan 999
shutdown
SW4
=====
Int range e2/0-3
Sw trunk encap dot1q
Sw mode trunk
Sw nonegotiate
Int range e3/0-3
Sw acc vlan 999
shutdown
1.3 – Spanning Tree
configure the ACME network as per the following requirements
sw1 must be the root switch for all odd vlans and must be the backup for all even vlans
sw2 must be the root switch for all even vlans and must be the backup for all odd vlans
sw3 must be the root switch for all odd vlans and must be the backup for all even vlans
sw4 must be the root switch for all even vlans and must be the backup for all odd vlans
explicitly configure the root and backup roles, assuming that other switches with default configuration may eventually be added in the network in the future
All switches must maintain one stp instance per vlan
use the stp mode that has only three possible states
all access ports must immediately transation to the forwarding state upon link up and they must still participate in stp. use single command per switch to enable this
Access ports must automatically shut down if they receive any bpdu and an administrator must still manually re-enable the port. use a single command per switch to enable this feature.
SW1
=====
spanning-tree mode rapid-pvst
spanning-tree portfast bpduguard default
spanning tree portfast default
spanning-tree vlan 15 priority 0
spanning-tree vlan 23 priority 0
spanning-tree vlan 35 priority 0
spanning-tree vlan 57 priority 0
spanning-tree vlan 67 priority 0
spanning-tree vlan 999 priority 0
spanning-tree vlan 14 priority 4096
spanning-tree vlan 24 priority 4096
spanning-tree vlan 46 priority 4096
SW2
=====
spanning-tree mode rapid-pvst
spanning-tree portfast bpduguard default
spanning tree portfast default
spanning-tree vlan 15 priority 4096
spanning-tree vlan 23 priority 4096
spanning-tree vlan 35 priority 4096
spanning-tree vlan 57 priority 4096
spanning-tree vlan 67 priority 4096
spanning-tree vlan 999 priority 4096
spanning-tree vlan 14 priority 0
spanning-tree vlan 24 priority 0
spanning-tree vlan 46 priority 0
SW3
====
spanning-tree mode rapid-pvst
spanning-tree portfast bpduguard default
spanning tree portfast default
spanning-tree vlan 49 priority 0
spanning-tree vlan 89 priority 0
spanning-tree vlan 111 priority 0
spanning-tree vlan 411 priority 0
spanning-tree vlan 38 priority 4096
spanning-tree vlan 310 priority 4096
SW4
=====
spanning-tree mode rapid-pvst
spanning-tree portfast bpduguard default
spanning tree portfast default
spanning-tree vlan 49 priority 4096
spanning-tree vlan 89 priority 4096
spanning-tree vlan 111 priority 4096
spanning-tree vlan 411 priority 4096
spanning-tree vlan 38 priority 0
spanning-tree vlan 310 priority 0
1.4 – WAN Switching
The WAN links must rely on a layer 2 protocol that supports link negotiation and authentication.
The Service provider expects both R18 and r19 to complete three way hand shake by providing the expected response of a challange that is sent by R63
R18 must use the username ACME-R18 and password CCIE
R19 must use the username ACME-R19 and password CCIE
R18
====
int s1/0
spanning tree portfast default
ppp chap hostname ACME-R18
ppp chap password CCIE
R19
====
int s1/0
spanning tree portfast default
ppp chap hostname ACME-R19
ppp chap password CCIE