Configurations
Configuration OSPF
ROUTEUR DU SIEGE RECTORAT:
Router>enable
Router#configure terminal
Router(config)#hostname Siege
Siege(config)#interface Serial1/0
Siege(config-if)#ip address 10.8.12.9 255.255.255.252
Siege(config-if)#no shutdown
Siege(config-if)#clock rate 56000
Siege(config-if)#end
Siege#ping 10.8.12.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Siege10.8.12.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/4/5 ms
Siege#configure terminal
Siege(config)#interface Serial2/0
Siege(config-if)#no shutdown
Siege(config-if)#clock rate 56000
Siege(config-if)#ip address 10.8.12.1 255.255.255.252
Siege(config-if)#exit
Siege(config)#
Siege(config)#router ospf 1
Siege(config-router)#network 10.8.12.0 0.0.0.3 area 0
Siege(config-router)#network Siege10.8.12.0 0.0.0.3 area 0
Siege(config-router)#end
Siege#ping 10.8.12.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Siege10.8.12.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/4/9 ms
ROUTEUR CENTRE SERVICES:
Router>enable
Router#configure terminal
Router(config)#hostname Services
Services(config)#interface Serial1/0
Services(config-if)#ip address 10.8.12.10 255.255.255.252
Services(config-if)#no shutdown
Services(config-if)#clock rate 56000
Services(config-if)#end
Services#ping 10.8.12.9
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Services10.8.12.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/4/5 ms
Services#configure terminal
Services(config)#interface Serial2/0
Services(config-if)#no shutdown
Services(config-if)#clock rate 56000
Services(config-if)#ip address 10.8.12.6 255.255.255.252
Services(config-if)#exit
Services(config)#
Services(config)#router ospf 1
Services(config-router)#network 10.8.12. 4.0.0.3 area 0
Services(config-router)#network 10.8.12.8 0.0.0.3 area 0
Services(config-router)#end
Services#ping 10.8.12.5
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Services10.8.12.5, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/4/9 ms
ROUTEUR MICHELET :
Router>enable
Router#configure terminal
Router(config)#hostname Michelet
Michelet(config)#interface Serial1/0
Michelet(config-if)#ip address 10.8.12.2 255.255.255.252
Michelet(config-if)#no shutdown
Michelet(config-if)#clock rate 56000
Michelet(config-if)#end
Michelet#ping 10.8.12.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Michelet10.8.12.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/4/5 ms
Michelet#configure terminal
Michelet(config)#interface Serial2/0
Michelet(config-if)#no shutdown
Michelet(config-if)#clock rate 56000
Michelet(config-if)#ip address 10.8.12.5 255.255.255.252
Michelet(config-if)#exit
Michelet(config)#
Michelet(config)#router ospf 1
Michelet(config-router)#network 10.8.12.0 0.0.0.3 area 0
Michelet(config-router)#network 10.8.12.4 0.0.0.3 area 0
Michelet(config-router)#end
Michelet#ping 10.8.12.6
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to Michelet10.8.12.6, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 3/4/9 ms
• Configuration Frame Relay :
Siège
1)Avec ses sites distants
Siege>enable
Siege#configure terminal
Siege(config)#frame-relay switching
Siege(config)#interface serial 3/0
Siege(config-if)#encapsulation frame-relay
Siege(config-if)#frame-relay lmi-type ansi
Siege(config-if)#no frame-relay inverse ARP
Siege(config-if)#frame-relay intf-type DLE
Siege(config-if)#frame-relay route 511 interface serial 3/0 115
Siege(config-if)#frame-relay route 512 interface serial 3/0 215
Siege(config-if)#frame-relay route 513 interface serial 3/0 315
Siege(config-if)#frame-relay route 514 interface serial 3/0 415
Siege(config-if)#frame-relay route 515 interface serial 3/0 615
Siege(config-if)#frame-relay route 516 interface serial 3/0 715
Siege(config-if)#frame-relay route 517 interface serial 3/0 815
Siege(config-if)#frame-relay route 518 interface serial 3/0 915
Siege(config-if)#frame-relay route 519 interface serial 3/0 1015
Siege(config-if)#frame-relay route 520 interface serial 3/0 1115
Siege(config-if)#frame-relay route 521 interface serial 3/0 1215
Siege(config-if)#frame-relay map ip 10.8.9.18 511 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.19 512 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.20 513 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.21 514 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.22 515 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.23 516 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.24 517 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.25 518 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.26 519 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.27 520 broadcast
Siege(config-if)#frame-relay map ip 10.8.9.28 521 broadcast
Siege#exit
Services et sites distants
Services(config)#interface serial 3/0
Services(config-if)#encapsulation frame-relay
Services(config-if)#frame-relay lmi-type ansi
Services(config-if)#no frame-relay inverse ARP
Services(config-if)#frame-relay intf-type DLE
Services(config-if)#frame-relay route 511 interface serial 3/0 115
Services(config-if)#frame-relay route 512 interface serial 3/0 215
Services(config-if)#frame-relay route 513 interface serial 3/0 315
Services(config-if)#frame-relay route 514 interface serial 3/0 415
Services(config-if)#frame-relay route 515 interface serial 3/0 615
Services(config-if)#frame-relay route 516 interface serial 3/0 715
Services(config-if)#frame-relay route 517 interface serial 3/0 815
Services(config-if)#frame-relay route 518 interface serial 3/0 915
Services(config-if)#frame-relay route 519 interface serial 3/0 1015
Services(config-if)#frame-relay route 520 interface serial 3/0 1115
Services(config-if)#frame-relay route 521 interface serial 3/0 1215
Services(config-if)#frame-relay map ip 10.8.10.18 511 broadcast
Services(config-if)#frame-relay map ip 10.8.10.19 512 broadcast
Services(config-if)#frame-relay map ip 10.8.10.20 513 broadcast
Services(config-if)#frame-relay map ip 10.8.10.21 514 broadcast
Services(config-if)#frame-relay map ip 10.8.10.22 515 broadcast
Services(config-if)#frame-relay map ip 10.8.10.23 516 broadcast
Services(config-if)#frame-relay map ip 10.8.10.24 517 broadcast
Services(config-if)#frame-relay map ip 10.8.10.25 518 broadcast
Services(config-if)#frame-relay map ip 10.8.10.26 519 broadcast
Services(config-if)#frame-relay map ip 10.8.10.27 520 broadcast
Services(config-if)#frame-relay map ip 10.8.10.28 521 broadcast
Services#exit
Michelet et sites distants
Michelet(config-if)#encapsulation frame-relay
Michelet(config-if)#frame-relay lmi-type ansi
Michelet(config-if)#no frame-relay inverse ARP
Michelet(config-if)#frame-relay intf-type DLE
Michelet(config-if)#frame-relay route 511 interface serial 3/0 115
Michelet(config-if)#frame-relay route 512 interface serial 3/0 215
Michelet(config-if)#frame-relay route 513 interface serial 3/0 315
Michelet(config-if)#frame-relay route 514 interface serial 3/0 415
Michelet(config-if)#frame-relay route 515 interface serial 3/0 615
Michelet(config-if)#frame-relay route 516 interface serial 3/0 715
Michelet(config-if)#frame-relay route 517 interface serial 3/0 815
Michelet(config-if)#frame-relay route 518 interface serial 3/0 915
Michelet(config-if)#frame-relay route 519 interface serial 3/0 1015
Michelet(config-if)#frame-relay route 520 interface serial 3/0 1115
Michelet(config-if)#frame-relay route 521 interface serial 3/0 1215
Michelet(config-if)#frame-relay map ip 10.8.11.18 511 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.19 512 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.20 513 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.21 514 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.22 515 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.23 516 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.24 517 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.25 518 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.26 519 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.27 520 broadcast
Michelet(config-if)#frame-relay map ip 10.8.11.28 521 broadcast
Michelet(config-if)#exit
•Configuration HSRP
Siège
Sur le 1er routeur nominal on configure:
Siege1>enable
Siege1#
Siege1#conf t
Siege1#int GigabitEthernet1/0
Siege1#(config-if)#standby 1 ip 10.8.9.17
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1(config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1#int GigabitEthernet2/0
Siege1#(config-if)#standby 1 ip 10.8.13.1
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1(config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1#int GigabitEthernet3/0
Siege1#(config-if)#standby 1 ip 10.8.13.5
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1#int GigabitEthernet4/0
Siege1#(config-if)#standby 1 ip 10.8.13.9
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1(config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1#int GigabitEthernet5/0
Siege1#(config-if)#standby 1 ip 10.8.12.1
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1(config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1#int GigabitEthernet6/0
Siege1#(config-if)#standby 1 ip 10.8.12.9
Siege1#(config-if)#standby 1 timers 1 3
Siege1(config-if)#standby 1 priority 110
Siege1(config-if)#standby 1 preemt delay minimum 1800
Siege1(config-if)#standby 1 authentification PASSWORD
Siege1(config-if)#exit
Sur le second routeur de backup, on configure:
Siege2>enable
Siege2#
Siege2#conf t
Siege2#int GigabitEthernet1/0
Siege2#(config-if)#standby 1 ip 10.8.9.17
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2#int GigabitEthernet2/0
Siege2#(config-if)#standby 1 ip 10.8.13.1
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2#int GigabitEthernet3/0
Siege2#(config-if)#standby 1 ip 10.8.13.5
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2#int GigabitEthernet4/0
Siege2#(config-if)#standby 1 ip 10.8.13.9
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2#int GigabitEthernet5/0
Siege2#(config-if)#standby 1 ip 10.8.12.1
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2#int GigabitEthernet6/0
Siege2#(config-if)#standby 1 ip 10.8.12.9
Siege2#(config-if)#standby 1 timers 1 3
Siege2(config-if)#standby 1 authentification PASSWORD
Siege2(config-if)#exit
Configuration NAT
Commandes à configurer sur les 2 routeurs (nominal et backup)
Siege>enable
Siege#
Siege#conf t
Siege(config)#interface FastEthernet7
Siege(config-if)#ip address 10.8.0.0 255.255.0.0
Siege(config-if)#ip nat inside
Siege(config-if)#interface gigaEthernet8
Siege(config-if)#ip address ???
Siege(config-if)#ip nat outside
On filtre les demandes de connexion par ports, seules les connexions aux ports suivant seront acceptées:
-53 (DNS)
-80 (HTTP)
-110 (POP3)
-25 (SMTP)
Pour cela, il faut rentrer la configuration suivante :
Siege(config)# access-list 101 permit tcp 10.2.0.0.0 0.0.0.255 any eq 25
Siege(config)# access-list 101 permit tcp 10.1.0.0.0 0.0.0.255 any eq 53
Siege(config)# access-list 101 permit tcp 10.1.0.0.0 0.0.0.255 any eq 80
Siege(config)# access-list 101 permit tcp 10.2.0.0.0 0.0.0.255 any eq 110
Siege(config)# access-list 102 permit tcp 10.2.0.0.0 0.0.0.255 any eq 25
Siege(config)# access-list 102 permit tcp 10.1.0.0.0 0.0.0.255 any eq 53
Siege(config)# access-list 102 permit tcp 10.1.0.0.0 0.0.0.255 any eq 80
Siege(config)# access-list 102 permit tcp 10.2.0.0.0 0.0.0.255 any eq 110