Wednesday, November 7, 2012

Belajar ACL yuukk....!!


EDMONTON

   --- System Configuration Dialog ---

 Continue with configuration dialog? [yes/no]: no
Press RETURN to get started!
Router>ena
Router#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#hostname Edmonton
Edmonton(config)#int fa0/0
Edmonton(config-if)#ip add 172.16.10.1 255.255.255.0
Edmonton(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

 Edmonton(config-if)#exit
Edmonton(config)#int fa1/0
Edmonton(config-if)#ip add 172.16.20.1 255.255.255.0
Edmonton(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet1/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0, changed state to up

 Edmonton(config-if)#exit
Edmonton(config)#int se2/0
Edmonton(config-if)#ip add 172.16.30.1 255.255.255.0
Edmonton(config-if)#no shut

 %LINK-5-CHANGED: Interface Serial2/0, changed state to down
Edmonton(config-if)#exit
Edmonton(config)#router eigrp 10
Edmonton(config-router)#network 172.16.10.0 0.0.0.255
Edmonton(config-router)#network 172.16.20.0 0.0.0.255
Edmonton(config-router)#network 172.16.30.0 0.0.0.255
Edmonton(config-router)#exit
Edmonton(config)#exit

 %SYS-5-CONFIG_I: Configured from console by console
Edmonton#


 RED DEER

          --- System Configuration Dialog ---

 Continue with configuration dialog? [yes/no]: no

 Press RETURN to get started!

 Router>ena
Router#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#hostname Red_Deer
Red_Deer(config)#int fa0/0
Red_Deer(config-if)#ip add 172.16.40.1 255.255.255.0
Red_Deer(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

 Red_Deer(config-if)#exit
Red_Deer(config)#int fa1/0
Red_Deer(config-if)#ip add 172.16.50.1 255.255.255.0
Red_Deer(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet1/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0, changed state to up

 Red_Deer(config-if)#exit
Red_Deer(config)#int se2/0
Red_Deer(config-if)#ip add 172.16.30.2 255.255.255.0
Red_Deer(config-if)#clock rate 64000
Red_Deer(config-if)#no shut

 %LINK-5-CHANGED: Interface Serial2/0, changed state to up

 Red_Deer(config-if)#exit
Red_Deer(config)#int se3/0
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/0, changed state to up
Red_Deer(config-if)#ip add 172.16.60.1 255.255.255.0
Red_Deer(config-if)#clock rate 64000
Red_Deer(config-if)#no shut

 %LINK-5-CHANGED: Interface Serial3/0, changed state to down
Red_Deer(config-if)#exit
Red_Deer(config)#router eigrp 10
Red_Deer(config-router)#network 172.16.40.0 0.0.0.255
Red_Deer(config-router)#network 172.16.50.0 0.0.0.255
Red_Deer(config-router)#network 172.16.30.0 0.0.0.255
Red_Deer(config-router)#
%DUAL-5-NBRCHANGE: IP-EIGRP 10: Neighbor 172.16.30.1 (Serial2/0) is up: new adjacency

 Red_Deer(config-router)#network 172.16.60.0 0.0.0.255
Red_Deer(config-router)#exit
Red_Deer(config)#exit

 %SYS-5-CONFIG_I: Configured from console by console
Red_Deer#
CALGARY

 --- System Configuration Dialog ---

 Continue with configuration dialog? [yes/no]: no
Press RETURN to get started!

Router>ena
Router#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#hostname Calgary
Calgary(config)#int fa0/0
Calgary(config-if)#ip add 172.16.70.1 255.255.255.0
Calgary(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

 Calgary(config-if)#exit
Calgary(config)#int fa1/0
Calgary(config-if)#ip add 172.16.80.1 255.255.255.0
Calgary(config-if)#no shut

 %LINK-5-CHANGED: Interface FastEthernet1/0, changed state to up

 %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1/0, changed state to up

 Calgary(config-if)#exit
Calgary(config)#int se2/0
Calgary(config-if)#ip add 172.16.60.2 255.255.255.0
Calgary(config-if)#no shut

 %LINK-5-CHANGED: Interface Serial2/0, changed state to up

 Calgary(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/0, changed state to up

 Calgary(config-if)#exit
Calgary(config)#router eigrp 10
Calgary(config-router)#network 172.16.70.0 0.0.0.255
Calgary(config-router)#network 172.16.80.0 0.0.0.255
Calgary(config-router)#network 172.16.60.0 0.0.0.255
Calgary(config-router)#
%DUAL-5-NBRCHANGE: IP-EIGRP 10: Neighbor 172.16.60.1 (Serial2/0) is up: new adjacency
Calgary(config-router)#exit
Calgary(config)#exit

 %SYS-5-CONFIG_I: Configured from console by console
Calgary#
 Setting ACL dengan ketentuan sbb:

 1. 10.0 tidak boleh di akses oleh 40.0

 Edmonton#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Edmonton(config)#access-list 10 deny 172.16.40.0 0.0.0.255
Edmonton(config)#access-list 10 permit any
Edmonton(config)#int fa0/0
Edmonton(config-if)#ip access-group 10 out
Edmonton(config-if)#end

 %SYS-5-CONFIG_I: Configured from console by console
Edmonton#
2. 10.7 tidak boleh di akses oleh 10.5

 Red_Deer#ena
Red_Deer#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Red_Deer(config)#access-list 110 deny ip host 172.16.10.5 host 172.16.50.7
Red_Deer(config)#access-list 110 permit ip any any
Red_Deer(config)#int fa1/0
Red_Deer(config-if)#ip access-group 110 out
Red_Deer(config-if)#end

 %SYS-5-CONFIG_I: Configured from console by console
Red_Deer#
3. 10.5 boleh mengakses Red Deer meggunakan telnel
Red_Deer#ena
Red_Deer#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
Red_Deer(config)#access-list 20 permit host 172.16.10.5
Red_Deer(config)#line vty 0 4
Red_Deer(config-line)#access-class 20 in
Red_Deer(config-line)#end
Red_Deer#
%SYS-5-CONFIG_I: Configured from console by console
Diposkan oleh di Tidak ada komentar:

Konfigurasi EIGRP


Berikut langkah-langkahnya:
Masukan IP Address pada Masing-masing Interface
Router 1
R1(config)#int fa0/0
R1(config-if)#ip add 172.16.10.1 255.255.255.0
R1(config-if)#no shut
R1(config-if)#exit
R1(config)#int ser2/0
R1(config-if)#ip add 172.16.20.1 255.255.255.0
R1(config-if)#clock rate 64000
R1(config-if)#no shut R1(config-if)#exit
Router 2 
R2(config)#int fa0/0
R2(config-if)#ip add 172.16.30.1 255.255.255.0
R2(config-if)#no shut
R2(config-if)#exit
R2(config)#int ser2/0
R2(config-if)#ip add 172.16.20.2 255.255.255.0
R2(config-if)#no shut
R2(config-if)#exit

 Setting IP address pada PC
PC 0

PC 1
 Mengkonfigurasikan EIGRP dengan router yang ada
Router 1
R1(config)#router eigrp 100
R1(config-router)# network  172.16.0.0 0.0.0.255
R1(config-router)#  network 172.16.20.0 0.0.0.255
R1(config-router)#  network 172.16.10.0 0.0.0.255
R1(config-router)#no auto-summary
R1(config-router)#variance 1
R1(config-router)#^z
R1#
Router 2 
R2(config)#router eigrp 100
R2(config-router)# network 172.16.0.0 0.0.0.255
R2(config-router)#  network 172.16.20.0 0.0.0.255  R2(config-router)# network 172.16.30.0 0.0.0.255
R2(config-router)#no auto-summary
R2(config-router)#variance 1
R2(config-router)#^z
R2# 
Proses Authentication
Konfigurasi Router 1
R1#conf t
R1(config)#key chain jarkom
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string cisco
R1(config-keychain-key)#exit
R1(config-keychain)#exit
R1(config)#interface s2/0
R1(config-if)#ip authentication mode eigrp 100 md5
R1(config-if)#ip authentication key-string eigrp 100 jarkom
R1(config-if)#^z 
R1#
Konfigurasi Router 2
R2#conf t
R2(config)#key chain jarkom
R2(config-keychain)#key 1
R2(config-keychain-key)#key-string cisco
R2(config-keychain-key)#exit
R2(config-keychain)#exit
R2(config)#interface s2/0
R2(config-if)#ip authentication mode eigrp 100 md5
R2(config-if)#ip authentication key-string eigrp 100 jarkom R2(config-if)#^z

 Memeriksa Koneksi dengan Perintah  show ip route
Router 1
Router#sh ip route
Codes:
       C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

 Gateway of last resort is not set

      172.16.0.0/24 is subnetted, 3 subnets
C       172.16.10.0 is directly connected, FastEthernet0/0
C       172.16.20.0 is directly connected, Serial2/0
D       172.16.30.0 [90/20514560] via 172.16.20.2, 00:07:52, Serial2/0

 Router 2
Router# sh ip route
Codes:
       C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

 Gateway of last resort is not set

      172.16.0.0/24 is subnetted, 3 subnets
D       172.16.10.0 [90/20514560] via 172.16.20.1, 00:09:19, Serial2/0
C       172.16.20.0 is directly connected, Serial2/0
C       172.16.30.0 is directly connected, FastEthernet0/0
Memeriksa Koneksi Dengan Perintah Ping
  PC 1

 PC 2
 



sumber : 
mas anung : http://gre3nij0.blogspot.com/
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)