#EIGRP AUTHENTICATION SUNDAY DEC 28 2008#  

Monday, December 29, 2008

By far my worst experience of all . The authentication part .. it took me 4 hrs to complete a silly task to config authentication .. not that i dont know topic due to careless ness and lack of bloody concentration ... in fact so many time after repeating the same mistake , i still configured and got used to autonomous system 1 and this made me mad and configured the , but the required was for autonomous 100 i still feel ashamed to configure that badly .. so when you do please be careful about the autonomous system number



#EIGRP AUTHENTICATION SUNDAY DEC 28 2008#

IP AUTHENTICATION KEY-CHAIN EIGRP:

To enable authentication of EIGRP packets, use the
"ip authentication key-chain eigrp" in interface
config mode

"ip authentication key-chain eigrp as-number key-chain"

IP AUTHENTICATION MODE EIGRP:

To specify type of authentication used in EIGRP
packets, use the "authentication mode eigrp" in
interface config mode

CONFIGURE:

Configure authentication to prevent unapproved
sources from introducing authorized or false
routing messages

When authentication is configured , an MD5 keyed
is added to each EIGRP packet in the specified
Autonomous system


accept-lifetime --- sets the time period during which the
authentication key on a key chain is
received as valid

ip authentication key-chain eigrp

key --- identifies authenticaion key on a key chain

key chain --- enables authentication of routing protocols

key-string --- specifies the authentication string of key

send-lifetime --- sets the time period during which an
authentication key on a key chain is
valid to be sent

#IP-HELLO INTERVAL EIGRP IE VOL 4.10#  

#IP-HELLO INTERVAL EIGRP IE VOL 4.10#

IP-HELLO INTERVAL EIGRP :

To configure the hello interval for EIGRP routing process designated by a AS
number , use the "ip hello-interval eigrp" command in interface config mode

"ip hello-interval eigrp as-number seconds"


Defaults:

For low-speed , NBMA network 60 seconds
For all other network , 5 seconds


Usage Guidelines:

The default of 60 seconds applies only to low-speed , NBMA media

Low speed is considered to be a rate of T1 or slower, as specified with the
"bandwidth" interface config command.

Note that for the purposes of EIGRP, Frame relay , and Switched Multimedia Data
Service (SMDS) networks may be considered to be NBMA.

These networks are considered NBMA if the interface has not been configured to
use physical multicastion, otherwise , they are considered to be NBMA

#IP HOLD-TIME EIGRP#:

IP HOLD-TIME:

To configure the hold time for a particular EIGRP routing process designated
by the AS number , use the "ip hold-time eigrp" command in interface
config mode

"ip hold-time eigrp as-number seconds"

DEFAULTS:

For low speed , nonbroadcast multiaccess (NBMA) networks : 180 seconds
For all other networks : 15 seconds


Usage Guidelines:

On every congested and large networks , the default hold time might not be sufficient
time for all routers and access to servers to recieve hello packets from their
neighbors.

In this case , you may want to increase the hold time

We recommend that hold the hold time be at least three times the hello interval
if a router does not recieve a hello packet within the specified hold time,
routes through this router are considered unavailable

Increasing the hold time delays route convergence accross the network

The default of 180 seconds hold time and 60 seconds hello interval apply only to
low-speed, NBMA media.









#IP-HELLO INTERVAL EIGRP IE VOL 4.10#

IP-HELLO INTERVAL EIGRP :

To configure the hello interval for EIGRP routing process designated by a AS
number , use the "ip hello-interval eigrp" command in interface config mode

"ip hello-interval eigrp as-number seconds"


Defaults:

For low-speed , NBMA network 60 seconds
For all other network , 5 seconds


Usage Guidelines:

The default of 60 seconds applies only to low-speed , NBMA media

Low speed is considered to be a rate of T1 or slower, as specified with the
"bandwidth" interface config command.

Note that for the purposes of EIGRP, Frame relay , and Switched Multimedia Data
Service (SMDS) networks may be considered to be NBMA.

These networks are considered NBMA if the interface has not been configured to
use physical multicastion, otherwise , they are considered to be NBMA

#IP HOLD-TIME EIGRP#:

IP HOLD-TIME:

To configure the hold time for a particular EIGRP routing process designated
by the AS number , use the "ip hold-time eigrp" command in interface
config mode

"ip hold-time eigrp as-number seconds"

DEFAULTS:

For low speed , nonbroadcast multiaccess (NBMA) networks : 180 seconds
For all other networks : 15 seconds


Usage Guidelines:

On every congested and large networks , the default hold time might not be sufficient
time for all routers and access to servers to recieve hello packets from their
neighbors.

In this case , you may want to increase the hold time

We recommend that hold the hold time be at least three times the hello interval
if a router does not recieve a hello packet within the specified hold time,
routes through this router are considered unavailable

Increasing the hold time delays route convergence accross the network

The default of 180 seconds hold time and 60 seconds hello interval apply only to
low-speed, NBMA media.

# EIGRP VARIANCE_DOC USAGE AND IE LAB VOL 4.10 MODULE SAT DEC 27 2K8#  

# EIGRP VARIANCE_DOC USAGE AND IE LAB VOL 4.10 MODULE SAT DEC 27 2K8#



VARIANCE (EIGRP):

To control load balancing in an internetwork based on
the EIGRP , use the variance command in router
config mode.

USAGE GUIDELINES:

Setting a variance value enables EIGRP to install
multiple loop-free routes without unequal cost in a
local routing table.

A route learned through EIGRP must meet two criteria
to be installed in the local routing table

The route must be loop-free. This condition
is satisfied when the reported distance is
less than the total distance or when the
route is fs.

The metric of the route must be lower than
the metric of the best route multiplied by
the variance configured on the router

NOTE:
EIGRP does not load-share between multiple route;
it only installs the routes in the local routing
table.

Then, the local routing table enables switching
hardware or software to load-share between the
multiple paths





CODE
r4#sir 155.0.5.0
Routing entry for 155.0.5.0/24
Known via "eigrp 100", distance 90, metric 10639872, type internal
Redistributing via eigrp 100
Last update from 155.0.45.5 on Serial0/1, 00:02:34 ago
Routing Descriptor Blocks:
155.0.45.5, from 155.0.45.5, 00:02:34 ago, via Serial0/1

Route metric is 40640000, traffic share count is 21------------->$$$$$$$$$

Total delay is 25000 microseconds, minimum bandwidth is 64 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1
* 155.0.0.5, from 155.0.0.5, 00:02:34 ago, via Serial0/0

Route metric is 10639872, traffic share count is 80--------------->$$$$$$$$$

Total delay is 25000 microseconds, minimum bandwidth is 256 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1


FORGOT to mention there were instances where i played with "TRAFFIC SHARE MIN" and "traffic share balanced" commands ..

#EIGRP NEIGHBOR COMMAND FRI DEC 26 IE VOL 1 VER 4.10#  

#EIGRP NEIGHBOR COMMAND FRI DEC 26 IE VOL 1 VER 4.10#

NEIGHBOR (EIGRP):

To define a neighboring router with which to exchange routing information on a router
that is running EIGRP , use the neighbor command in router config mode


Usage Guidelines:
Multiple neighbor statements can be used to establish peering sessions with
specific EIGRP neighbors

The interface through which EIGRP will exchange routing updates must be specified
in the neighbor statement.

The interfaces through which two EIGRP neighbors exchange routing updates must
be configured with IP addresses for the same network

Configuring the "passive-interface" command suppresses all incoming and outgoing
updates and hello messages.

EIGRP neighbor adjacencies cannot be established or maintained over an
interface that is configured as passive

#IP-HELLO INTERVAL EIGRP IE VOL 4.10#  

these are my doc cd references as topologies are very minor and easy to catch up

#IP-HELLO INTERVAL EIGRP IE VOL 4.10#

IP-HELLO INTERVAL EIGRP :

To configure the hello interval for EIGRP routing process designated by a AS
number , use the "ip hello-interval eigrp" command in interface config mode

"ip hello-interval eigrp as-number seconds"


Defaults:

For low-speed , NBMA network 60 seconds
For all other network , 5 seconds


Usage Guidelines:

The default of 60 seconds applies only to low-speed , NBMA media

Low speed is considered to be a rate of T1 or slower, as specified with the
"bandwidth" interface config command.

Note that for the purposes of EIGRP, Frame relay , and Switched Multimedia Data
Service (SMDS) networks may be considered to be NBMA.

These networks are considered NBMA if the interface has not been configured to
use physical multicastion, otherwise , they are considered to be NBMA

#IP HOLD-TIME EIGRP#:

IP HOLD-TIME:

To configure the hold time for a particular EIGRP routing process designated
by the AS number , use the "ip hold-time eigrp" command in interface
config mode

"ip hold-time eigrp as-number seconds"

DEFAULTS:

For low speed , nonbroadcast multiaccess (NBMA) networks : 180 seconds
For all other networks : 15 seconds


Usage Guidelines:

On every congested and large networks , the default hold time might not be sufficient
time for all routers and access to servers to recieve hello packets from their
neighbors.

In this case , you may want to increase the hold time

We recommend that hold the hold time be at least three times the hello interval
if a router does not recieve a hello packet within the specified hold time,
routes through this router are considered unavailable

Increasing the hold time delays route convergence accross the network

The default of 180 seconds hold time and 60 seconds hello interval apply only to
low-speed, NBMA media.



#IP-HELLO INTERVAL EIGRP IE VOL 4.10#

IP-HELLO INTERVAL EIGRP :

To configure the hello interval for EIGRP routing process designated by a AS
number , use the "ip hello-interval eigrp" command in interface config mode

"ip hello-interval eigrp as-number seconds"


Defaults:

For low-speed , NBMA network 60 seconds
For all other network , 5 seconds


Usage Guidelines:

The default of 60 seconds applies only to low-speed , NBMA media

Low speed is considered to be a rate of T1 or slower, as specified with the
"bandwidth" interface config command.

Note that for the purposes of EIGRP, Frame relay , and Switched Multimedia Data
Service (SMDS) networks may be considered to be NBMA.

These networks are considered NBMA if the interface has not been configured to
use physical multicastion, otherwise , they are considered to be NBMA

#IP HOLD-TIME EIGRP#:

IP HOLD-TIME:

To configure the hold time for a particular EIGRP routing process designated
by the AS number , use the "ip hold-time eigrp" command in interface
config mode

"ip hold-time eigrp as-number seconds"

DEFAULTS:

For low speed , nonbroadcast multiaccess (NBMA) networks : 180 seconds
For all other networks : 15 seconds







Usage Guidelines:

On every congested and large networks , the default hold time might not be sufficient
time for all routers and access to servers to recieve hello packets from their
neighbors.

In this case , you may want to increase the hold time

We recommend that hold the hold time be at least three times the hello interval
if a router does not recieve a hello packet within the specified hold time,
routes through this router are considered unavailable

Increasing the hold time delays route convergence accross the network

The default of 180 seconds hold time and 60 seconds hello interval apply only to
low-speed, NBMA media.

TROUBLE WITH FRAME-RELAY INITIAL CONFIGS  

Thursday, December 25, 2008

I WAS FACING TROUBLE WITH FRAME-RELAY CONFIGURATION AND COULDNT RECOLLECT IT .. I HAVE MADE A SMALL EFFORT TO REMEMBER SOME CORE CONCEPTS .. ENJOY IF ITS INTERESTING , ENJOY EVEN IF IT IS BORING wink.gif !.!.! 3 PACKET SUCCESS

#CONFIGURING FRAME-RELAY START(FRS) AND END POINTS

Configuration:

let us take this present situation where in we have 3 interfaces
s0/0 s0/1 s0/2 for frs and connected to other routers respectively

first we will go about configuring the framerelay switch or in our case making router as a frs

first , imagine that you are literally sitting on the interface s0/1 which connects to routers s0/0 and has dlci's 104 and 105

That router will be the hub and other two will be spokes with dlcis 501 and 401 for s0/2 and s0/0 interfaces respectively

Now imagine that you are on s0/1 of the frs and router a has thrown a packet for dlci 501 . as you are a frs you need to route that particular packet to that dlci

The first thing we will look after accepting packet for routing is
to route the packet or throw the packet to an interface which has
nearest target address

Next as we are on a frame-relay network we need to also see the
incoming dlci and also outgoing dlci by sitting on the router
interface .. its so much fun to sit on the network card and route
packets ....! (oops 4 packets missed) wink.gif

So , we see that packet is coming from a dlci 105 which needs to
be routed to 501 and it has a nearest interface of s0/2 that this frs connects to.

That's it you are done configuring it ... just remember these things

1. INCOMING DLCI
2. OUTGOING DLCI
3. NEAREST INTERFACE


interface Serial0/1
no ip address
encapsulation frame-relay
clock rate 2000000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 104 interface Serial0/0 401
frame-relay route 105 interface Serial0/2 501
!

now see here we are sitting on serial0/1 and a packet came begging.. we have considered it and accepted to route the packet to destination dlci 501 . the packet came from 105 dlci . after calculations or analysations we knew that s0/2 was very much near to the r5 or 501 dlci


Now similarly ,

how did router at hub knew that it should foreward packet to 501 dlci and to that particular ip ????

sit on router1 which is a hub and has two dlcis as it sees , 104 and 105

how could it see two dlci's .. or how could we see two dlcis from router 1 or hub .... sadistic laugh .. we have already configured
it ..!.. (oops middle packet was successful)

we need to map some of the dlci's to the ip addresses of the
remote routers . simple then whenever we want any thing to be forewarded to a ip we will foreward it to dlci and then dlci will take care . just and imagination

so , keep in mind route is word which is confined to frs and map is a word which is confined to the end points

interface Serial0/0
ip address 10.0.0.1 255.0.0.0
encapsulation frame-relay
no ip split-horizon eigrp 1
clock rate 2000000
frame-relay map ip 10.0.0.1 104
frame-relay map ip 10.0.0.4 104 broadcast
frame-relay map ip 10.0.0.5 105 broadcast
no frame-relay inverse-arp
!

as you can see whenever we want anything sent for 10.0.0.5 we want it go to dlci 105 which will then be converted by our frs .. a similar config should be done at r5 and bingo we can establish connectivity

I was confused with fr so though of putting it some or the other way .. though it needs some of the other configs these are the base level configs and should help you to reach to max without much of the confusion

VERIFY  

#MODULE 3 EIGRP : SPLIT HORIZON THU DEC 25#

SPLIT HORIZON IN EIGRP:

1.To enable EIGRP split horizon, use ip split-horizon eigrp as-no

2. For networks that include x.25 and psn PACKET SWITCHED NETWORKS,you can use neighbor router configuration
to defeat split horizon

3. As an alternative, you can explicitly specify the "no ip split-horizon eigrp" command in the config

CODE
r1#show ip int s0/0 | i Split
Split horizon is disabled



r5#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

D 1.0.0.0/8 [90/2195456] via 10.0.0.1, 00:46:06, Serial0/0
D 4.0.0.0/8 [90/2707456] via 10.0.0.1, 00:41:54, Serial0/0
C 5.0.0.0/8 is directly connected, FastEthernet0/0
C 10.0.0.0/8 is directly connected, Serial0/0
r5#ping 4.0.0.4

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 4.0.0.4, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/20/28 ms
r5#ping 1.0.0.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 1.0.0.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 12/15/24 ms
r5#

EIGRP SPLIT HORIZON  


















configure such that you should ping 1.0.0.0 , 4.0.0.0 , 5.0.0.0 networks


router configs

CODE
frs#show run
Building configuration...

Current configuration : 1604 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname frs
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
frame-relay switching
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0
no ip address
encapsulation frame-relay
clock rate 2000000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 401 interface Serial0/1 104
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
encapsulation frame-relay
clock rate 2000000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 104 interface Serial0/0 401
frame-relay route 105 interface Serial0/2 501
!
interface Serial0/2
no ip address
encapsulation frame-relay
clock rate 2000000
frame-relay lmi-type cisco
frame-relay intf-type dce
frame-relay route 501 interface Serial0/1 105
!
interface Serial0/3
no ip address
shutdown
clock rate 2000000
!
interface Serial0/4
no ip address
shutdown
clock rate 2000000
!
interface Serial0/5
no ip address
shutdown
clock rate 2000000
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end


CODE
r1 config

r1#show run
Building configuration...

Current configuration : 1195 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 1.0.0.1 255.0.0.0
duplex auto
speed auto
!
interface Serial0/0
ip address 10.0.0.1 255.0.0.0
encapsulation frame-relay
no ip split-horizon eigrp 1
clock rate 2000000
frame-relay map ip 10.0.0.1 104
frame-relay map ip 10.0.0.4 104 broadcast
frame-relay map ip 10.0.0.5 105 broadcast
no frame-relay inverse-arp
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
clock rate 2000000
!
router eigrp 1
network 1.0.0.1 0.0.0.0
network 10.0.0.1 0.0.0.0
auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r1#

CODE
r4 config


r4#show run
Building configuration...

Current configuration : 1204 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r4
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 4.0.0.4 255.0.0.0
duplex auto
speed auto
!
interface Serial0/0
ip address 10.0.0.4 255.0.0.0
encapsulation frame-relay
clock rate 2000000
frame-relay map ip 10.0.0.4 401
frame-relay map ip 10.0.0.5 401 broadcast
frame-relay map ip 10.0.0.1 401 broadcast
no frame-relay inverse-arp
frame-relay lmi-type cisco
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
router eigrp 1
network 4.0.0.4 0.0.0.0
network 10.0.0.4 0.0.0.0
auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r4#


CODE
r5 config


r5#show run
Building configuration...

Current configuration : 1204 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r5
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 5.0.0.5 255.0.0.0
duplex auto
speed auto
!
interface Serial0/0
ip address 10.0.0.5 255.0.0.0
encapsulation frame-relay
clock rate 2000000
frame-relay map ip 10.0.0.5 501
frame-relay map ip 10.0.0.4 501 broadcast
frame-relay map ip 10.0.0.1 501 broadcast
no frame-relay inverse-arp
frame-relay lmi-type cisco
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
router eigrp 1
network 5.0.0.5 0.0.0.0
network 10.0.0.5 0.0.0.0
auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r5#

EIGRP AUTO SUMMARY INFO FORM DOC  

#AUTO SUMMARY EIGRP MODULE 2 IE 4.10 THUR DEC 25 #

AUTO SUMMARY : EIGRP

1. To allow automatic summaraisation of subnet routes into network-level routes, use the auto-summary
command in boundaries in router config mode

2. To disable this function and send subprefix routing information
accross classful network boundaries , use the no form of this
command


USAGE GUIDELINES

1. Route summaraisation reduces the amount of routing info in the
routing tables

2. By default BGP does not accept subnets redistributed from and IGP

3. To allow the software to create summary subprefixes to the classful network boundary ,
use auto-summary command

4. To advertise and carry subnet routes in BGP, use an explicit
network comamnd because automatic summary is disabled by default

5. If you have not enetered a network command, you will not
advertise network routes for networks with subnet routes
unless they contain a summary route

6. EIGRP summary routes are given an AD of 5

7. RIP V1 uses automatic summaraisation . If you are using RIPV2 ,you can turn off auto summary by specifying the no
auto-summ

8. Disable automatic summaraisation if you mutst perform routing
between disconnected subnets. When automatic summaraisatin is
off , subnets are advertised

Network Command  

a little on network command

#EIGRP LAB_1 THUR DEC 25 NETWORK_COMMAND #

module 1

EIGRP NETWORK COMMAND :

1. When the network command is configured for an EIGRP routing
process the router matches one or more local interfaces

2. The network command will match only local interfaces that are
configured with addresses that are within the same subnet as the
addresses that has been configured with the network command

3. The router will then establish the neighbors through the matched
interfaces.

4. There is no limit to the number of network statements that can be
configured on a router

verify whether the interfaces condition is met or not

CODE
r2#show ip eigrp int
IP-EIGRP interfaces for process 1

Xmit Queue Mean Pacing Time Multicast Pending
Interface Peers Un/Reliable SRTT Un/Reliable Flow Timer Routes
Fa0/0 1 0/0 1012 0/2 5040 0
Lo24 0 0/0 0 0/1 0 0
Lo25 0 0/0 0 0/1 0 0
Lo26 0 0/0 0 0/1 0 0
Lo27 0 0/0 0 0/1 0 0
Lo28 0 0/0 0 0/1 0 0
Lo29 0 0/0 0 0/1 0 0
Lo30 0 0/0 0 0/1 0 0
Lo31 0 0/0 0 0/1 0 0
r2#

*********************************************


r1#show ip eigrp int
IP-EIGRP interfaces for process 1

Xmit Queue Mean Pacing Time Multicast Pending
Interface Peers Un/Reliable SRTT Un/Reliable Flow Timer Routes
Fa0/0 1 0/0 25 0/2 50 0
Lo0 0 0/0 0 0/1 0 0
Lo1 0 0/0 0 0/1 0 0
Lo2 0 0/0 0 0/1 0 0
Lo3 0 0/0 0 0/1 0 0
r1#

Configs  

these are the running configs

CODE
r1#show run
Building configuration...

Current configuration : 1176 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
logging buffered 10000
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface Loopback0
ip address 1.1.1.0 255.255.255.255
!
interface Loopback1
ip address 1.1.1.1 255.255.255.255
!
interface Loopback2
ip address 1.1.1.2 255.255.255.255
!
interface Loopback3
ip address 1.1.1.3 255.255.255.255
!
interface Loopback4
ip address 1.1.1.4 255.255.255.255
!
interface FastEthernet0/0
ip address 12.0.0.1 255.0.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
router eigrp 1
network 1.1.1.0 0.0.0.3
network 12.0.0.1 0.0.0.0
auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r1#


CODE
r2#show run
Building configuration...

Current configuration : 1515 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r2
!
boot-start-marker
boot-end-marker
!
logging buffered 10000
no logging console
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface Loopback24
ip address 2.2.2.24 255.255.255.255
!
interface Loopback25
ip address 2.2.2.25 255.255.255.255
!
interface Loopback26
ip address 2.2.2.26 255.255.255.255
!
interface Loopback27
ip address 2.2.2.27 255.255.255.255
!
interface Loopback28
ip address 2.2.2.28 255.255.255.255
!
interface Loopback29
ip address 2.2.2.29 255.255.255.255
!
interface Loopback30
ip address 2.2.2.30 255.255.255.255
!
interface Loopback31
ip address 2.2.2.31 255.255.255.255
!
interface Loopback32
ip address 2.2.2.32 255.255.255.255
!
interface FastEthernet0/0
description subnet of 8 connecting to router a
ip address 12.0.0.2 255.0.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
router eigrp 1
network 2.2.2.24 0.0.0.7
network 12.0.0.2 0.0.0.0
auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r2#

Update and Revision part 1  

hai all .. its been a while .. and has a good reason for that .. iam planning to join a ccnp course at a local institute for one month ... iam doing this as i could get equipment for 5 more months after the completion of course in which case i could have some hands on on a real equip and could regain or maintain the switching itching ..!!! (two packets dropped wink.gif) .. so in order to have some knowledge from my point of view and for familiarity sake i have started things with switching from nugget.cbt and will do also form traing signal .. though wont be an indepth practice .. so was busy in doing this .. my plan was to revise for the igp and routing part but i think it will slow down a bit .. i have started labbing with eigrp


















EIGRP should be configured on both ends and should exclude the lo4 and lo32 and also it should include all other interfaces with two network commands on each side

Revision updates  

Sunday, December 21, 2008

today will be starting off with the revision part .... was thinking about a hardware set up ... any ways more on that later .. i would start of with eigrp from netmaster igp cods and slowly try to solve the labs from netmetric after the completion of vod .. i was having a problem setting up doc cd and accessing it in ubuntu and for that reason i have installed vmware and installed winxp to set the doc dvd alone ... i have a desktop which has complete data back up and much of the cisco stuff and media .. i was going through it and suddenly a spark went through my head .. i quickly read about establishing remote desktop and bingo i could connect to my desk top .. issues i faced were

1.whenever you want to set up a remote desktop connection make sure your account is pass protected or have a password .. this is not for a security reason , of course it is but winxp would only allow you to remotely login if and only if you have a password ..

2.connecting to remote desktop involves setting up ip address and using rdesktop or terminal services clients .. this is how you give a ip address in bash

CODE
#sudo fconfig eth0 11.0.0.1/24

this is my eth0 address now conncet to rdesktop which is at 11.0.0.2

#sudo rdesktop 11.0.0.2 -r local:audio

this is to even have remote audio play on your computer .. thats it you are done


this helps in not setting up a vm instance which eats up ram as rdesktop utilizes minimum of ram and no network because its a direct connection in most cases

these are few of the points ...

regards
rakesh

6to4 tunnel  

here is a brief config on ipv6 6to4 tunnels ...

CODE
r2#config t
Enter configuration commands, one per line. End with CNTL/Z.
r2(config)#int tunnel20
r2(config-if)#tunnel mode ipv6ip ?
6to4 IPv6 automatic tunnelling using 6to4
auto-tunnel IPv6 automatic tunnelling using IPv4 compatible addresses
isatap IPv6 automatic tunnelling using ISATAP


r2(config-if)#tunnel mode ipv6ip 6to4
r2(config-if)#ipv6 address 2002:AC10:0C01:1::1/64
r2(config-if)#tunnel source serial 0/0
r2(config-if)#
*Mar 1 00:42:49.183: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel20, changed state to up
r2(config-if)#exit
r2(config)#ipv6 route 2002::/64 ?
Async Async interface
BVI Bridge-Group Virtual Interface
CDMA-Ix CDMA Ix interface
CTunnel CTunnel interface
Dialer Dialer interface
FastEthernet FastEthernet IEEE 802.3
Lex Lex interface
Loopback Loopback interface
MFR Multilink Frame Relay bundle interface
Multilink Multilink-group interface
Null Null interface
Port-channel Ethernet Channel of interfaces
Serial Serial
Tunnel Tunnel interface
Vif PGM Multicast Host interface
Virtual-PPP Virtual PPP interface
Virtual-Template Virtual Template interface
Virtual-TokenRing Virtual TokenRing
X:X:X:X::X IPv6 address of next-hop
XTagATM Extended Tag ATM interface
vmi Virtual Multipoint Interface

r2(config)#ipv6 route 2002::/64 tunnel0
^
% Invalid input detected at '^' marker.

r2(config)#ipv6 route 2002::/64 tunnel20
r2(config)#


you need to convert the decimal address to hex .. and paste it under the config as simple as that ..


guday

Update on ipv6 labs  

ipv6 labs are done.. there were few new concepts apart from ts and cbt ..the tunnels .. neverthless attempted and these labs are not like the usual one .. its as simple as configuring the ipv4 address .. so there is nothing to explain nor to post configs .. here are few important concepts on tunnels ..

1.MANUALLY CONFIGURING THE IPV6 TUNNEL INTERFACE

CODE
r1#config t
Enter configuration commands, one per line. End with CNTL/Z.
r1(config)#ipv6 multicast-routing
r1(config)#int tunnel10
r1(config-if)#tunnel mode
*Mar 1 00:26:46.847: %LINEPROTO-5-UPDOWN: Line protocol on Interface Tunnel10, changed state to down
r1(config-if)#tunnel mode ?
aurp AURP TunnelTalk AppleTalk encapsulation
cayman Cayman TunnelTalk AppleTalk encapsulation
dvmrp DVMRP multicast tunnel
eon EON compatible CLNS tunnel
gre generic route encapsulation protocol
ipip IP over IP encapsulation
ipsec IPSec tunnel encapsulation
iptalk Apple IPTalk encapsulation
ipv6 Generic packet tunneling in IPv6
ipv6ip IPv6 over IP encapsulation
mpls MPLS encapsulations
nos IP over IP encapsulation (KA9Q/NOS compatible)
rbscp RBSCP in IP tunnel

r1(config-if)#tunnel mode ipv6ip
r1(config-if)#tunnel source ?
A.B.C.D ip address
Async Async interface
BVI Bridge-Group Virtual Interface
CDMA-Ix CDMA Ix interface
CTunnel CTunnel interface
Dialer Dialer interface
FastEthernet FastEthernet IEEE 802.3
Lex Lex interface
Loopback Loopback interface
MFR Multilink Frame Relay bundle interface
Multilink Multilink-group interface
Null Null interface
Port-channel Ethernet Channel of interfaces
Serial Serial
Tunnel Tunnel interface
Vif PGM Multicast Host interface
Virtual-PPP Virtual PPP interface
Virtual-Template Virtual Template interface
Virtual-TokenRing Virtual TokenRing
X:X:X:X::X IPv6 address
XTagATM Extended Tag ATM interface
vmi Virtual Multipoint Interface

r1(config-if)#tunnel source serial0/0 ?


r1(config-if)#tunnel source serial0/0
r1(config-if)#tunnel destination 172.16.23.3 ?


r1(config-if)#tunnel destination 172.16.23.3
r1(config-if)#ipv6 addr fec0::12:2/112
r1(config-if)#


do it on the other side of the router you should see the connectivity .. iam going into a comparison which is right or wrong .. but these are very much similar to ospf virtual links ... you can have connectivity without connectivity .. did i say anything ????

any ways author of the lab guide compare them to loopbacks .... so all in all its simple .. configure a tunnel , include source and destication and bingo ..
and never ever forget the ipv6 unicast-routing ..its damn horrible and you will go nuts like me .!!!! missed one packet .... hehe


--------------------

Wednesday, December 17, 2008

not much to talk with the ip helper address command .. you can foreward specified ports and also mention whether tcp / udp as configuring ip helper-address will not only query for dhcp but also ton of other services you can redirect , open or reserver a port with protocol forwarding feature

CODE
r1#config t
Enter configuration commands, one per line. End with CNTL/Z.
r1(config)#int loopback1
r1(config-if)#ip helper-address ?
A.B.C.D IP destination address
global Helper-address is global
vrf VRF name for helper-address (if different from interface VRF)

r1(config-if)#ip helper-address 172.16.2.1
r1(config-if)#end
r1#show ip
*Mar 1 01:21:16.907: %SYS-5-CONFIG_I: Configured from console by console
r1#show ip help
r1#show ip helper-address
Interface Helper-Address VPN VRG Name VRG State
Loopback1 172.16.2.1 0 None Unknown
r1#config t
Enter configuration commands, one per line. End with CNTL/Z.
r1(config)#ip for
r1(config)#ip forward-protocol ?
nd Sun's Network Disk protocol
sdns Network Security Protocol
spanning-tree Use transparent bridging to flood UDP broadcasts
turbo-flood Fast flooding of UDP broadcasts
udp Packets to a specific UDP port

r1(config)#ip forward-protocol udp 50000
r1(config)#end


and for example as mentioned if you wanted to foreward any other service you search for protocol port number and find it and forward it

CODE
r1#show ip port-map | i smtp
Default mapping: smtp tcp port 25 system defined

r1#show ip port-map | i bittor
Default mapping: bittorrent tcp port 6881...6884 system defined
Default mapping: bittorrent tcp port 6885...6888 system defined
Default mapping: bittorrent tcp port 6889 system defined
r1#


these are some of the details covering the dhcp services ... next on to ipv6

guday

without going into debug output details lets again reup the interface and also lets check the current index so as we are getting the same ip or not

CODE
r2#show ip dhcp pool

Pool rakesh_r3 :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 0
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased addresses
172.16.23.102 172.16.23.1 - 172.16.23.254 0
r2#




r3(config-if)#no shut
r3(config-if)#
*Mar 1 01:15:30.903: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
*Mar 1 01:15:31.903: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
r3(config-if)#
*Mar 1 01:15:34.055: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0/0 assigned DHCP address 172.16.23.102, mask 255.255.255.0, hostname r3

r3(config-if)#do siib
Interface IP-Address OK? Method Status Protocol
FastEthernet0/0 172.16.23.102 YES DHCP up up
Serial0/0 unassigned YES unset administratively down down
FastEthernet0/1 unassigned YES unset administratively down down
Serial0/1 unassigned YES unset administratively down down
r3(config-if)#


alternatively you can also do this to renew and release a ip addr

CODE
r3#release ?
dhcp Release a dhcp lease

r3#release dhcp ?
Async Async interface
BVI Bridge-Group Virtual Interface
CDMA-Ix CDMA Ix interface
CTunnel CTunnel interface
Dialer Dialer interface
FastEthernet FastEthernet IEEE 802.3
Lex Lex interface
Loopback Loopback interface
MFR Multilink Frame Relay bundle interface
Multilink Multilink-group interface
Null Null interface
Port-channel Ethernet Channel of interfaces
Serial Serial
Tunnel Tunnel interface
Vif PGM Multicast Host interface
Virtual-PPP Virtual PPP interface
Virtual-Template Virtual Template interface
Virtual-TokenRing Virtual TokenRing
XTagATM Extended Tag ATM interface
vmi Virtual Multipoint Interface

r3#release dhcp fa0/0
r3#renew dhcp fa0/0
Not in Bound state.
r3#
*Mar 1 01:17:49.983: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0/0 assigned DHCP address 172.16.23.103, mask 255.255.255.0, hostname r3

r3#

let us check what address we got .. although it can be seen in the debug output ..

CODE
r3#siib
Interface IP-Address OK? Method Status Protocol
FastEthernet0/0 172.16.23.101 YES DHCP up up
Serial0/0 unassigned YES unset administratively down down
FastEthernet0/1 unassigned YES unset administratively down down
Serial0/1 unassigned YES unset administratively down down
r3#
*Mar 1 01:07:23.191: DHCPD: checking for expired leases.
r3#



r2#show ip dhcp ?
binding DHCP address bindings
conflict DHCP address conflicts
database DHCP database agents
import Show Imported Parameters
pool DHCP pools information
relay Miscellaneous DHCP relay information
server Miscellaneous DHCP server information

r2#show ip dhcp binding
Bindings from all pools not associated with VRF:
IP address Client-ID/ Lease expiration Type
Hardware address/
User name
172.16.23.101 0063.6973.636f.2d63. Mar 02 2002 01:03 AM Automatic
3230.332e.3234.3731.
2e30.3030.302d.4661.
302f.30
r2#show ip dhcp pool

Pool rakesh_r3 :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 1
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased addresses
172.16.23.102 172.16.23.1 - 172.16.23.254 1
r2#


see the current index .. that is the next address which will be assigned to any one requesting .. also we can configure lease times and many other options with dhcp


now lets shutdown the interface and view the debug output

CODE
r3#config t
Enter configuration commands, one per line. End with CNTL/Z.
r3(config)#int fa0/0
r3(config-if)#shut
r3(config-if)#
*Mar 1 01:12:48.207: %LINK-5-CHANGED: Interface FastEthernet0/0, changed state to administratively down
*Mar 1 01:12:49.207: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to down
r3(config-if)#do siib
Interface IP-Address OK? Method Status Protocol
FastEthernet0/0 unassigned YES DHCP administratively down down
Serial0/0 unassigned YES unset administratively down down
FastEthernet0/1 unassigned YES unset administratively down down
Serial0/1 unassigned YES unset administratively down down
r3(config-if)#



r2#debug ip dhcp server events
r2#debug ip dhcp server packet
r2#debug ip packet detail
IP packet debugging is on (detailed)
r2#
*Mar 1 01:12:32.291: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:12:34.803: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:35.527: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:35.531: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:35.787: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:12:36.719: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:12:39.387: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:40.071: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:40.075: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:40.379: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:12:41.127: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:41.971: IP: tableid=0, s=172.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), routed via RIB
*Mar 1 01:12:41.971: IP: s=172.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), len 604, rcvd 3
*Mar 1 01:12:41.971: UDP src=68, dst=67
*Mar 1 01:12:41.975: DHCPD: DHCPRELEASE message received from client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 (172.16.23.101).
*Mar 1 01:12:41.979: DHCPD: Sending notification of TERMINATION:
*Mar 1 01:12:41.979: DHCPD: address 172.16.23.101 mask 255.255.255.0
*Mar 1 01:12:41.979: DHCPD: reason flags: RELEASE
*Mar 1 01:12:41.979: DHCPD: htype 1 chaddr c203.2471.0000
*Mar 1 01:12:41.979: DHCPD: lease time remaining (secs) = 85827
*Mar 1 01:12:41.983: DHCPD: returned 172.16.23.101 to address pool rakesh_r3.
*Mar 1 01:12:42.447: IP: tableid=0, s=172
r2#.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), routed via RIB
*Mar 1 01:12:42.447: IP: s=172.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), len 604, rcvd 3
*Mar 1 01:12:42.451: UDP src=68, dst=67
*Mar 1 01:12:42.451: DHCPD: DHCPRELEASE message received from client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 (172.16.23.101).
*Mar 1 01:12:42.455: DHCPD: Finding a relay for client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 on interface FastEthernet0/0.
*Mar 1 01:12:42.455: DHCPD: Seeing if there is an internally specified pool class:
*Mar 1 01:12:42.455: DHCPD: htype 1 chaddr c203.2471.0000
*Mar 1 01:12:42.459: DHCPD: remote id 020a0000ac10170200000000
*Mar 1 01:12:42.459: DHCPD: circuit id 00000000
r2#
*Mar 1 01:12:44.263: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:44.367: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:44.371: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:44.439: IP: tableid=0, s=172.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), routed via RIB
*Mar 1 01:12:44.439: IP: s=172.16.23.101 (FastEthernet0/0), d=172.16.23.2 (FastEthernet0/0), len 604, rcvd 3
*Mar 1 01:12:44.443: UDP src=68, dst=67
r2#
*Mar 1 01:12:44.443: DHCPD: DHCPRELEASE message received from client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 (172.16.23.101).
*Mar 1 01:12:44.443: DHCPD: Finding a relay for client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 on interface FastEthernet0/0.
*Mar 1 01:12:44.443: DHCPD: Seeing if there is an internally specified pool class:
*Mar 1 01:12:44.443: DHCPD: htype 1 chaddr c203.2471.0000
*Mar 1 01:12:44.447: DHCPD: remote id 020a0000ac10170200000000
*Mar 1 01:12:44.447: DHCPD: circuit id 00000000
*Mar 1 01:12:44.907: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0)
r2#, len 60, sending broad/multicast, proto=88
*Mar 1 01:12:45.487: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:12:48.543: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:12:49.223: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:49.227: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#
*Mar 1 01:12:49.739: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:12:50.247: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
r2#u all
All possible debugging has been turned off
r2#
*Mar 1 01:12:52.911: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#



as you can see there has been not one but several requests from client to ensure that it no longer requires dhcp services

now . configure the debug statements on either sides and also disable ip routing on r3 .

CODE
2#debug ip dhcp server events
r2#debug ip dhcp server packet
r2#debug ip packet detail
IP packet debugging is on (detailed)
r2#

------------------------------------------------------------

r3#d
*Mar 1 01:00:36.611: %SYS-5-CONFIG_I: Configured from console by console
r3#debug ip dhcp ?
server DHCP server activity

r3#debug ip dhcp server events
r3#debug ip dhcp server packet
r3#debug ip packet detail
IP packet debugging is on (detailed)
r3#config t
Enter configuration commands, one per line. End with CNTL/Z.
r3(config)#no ip routing
r3(config)#
*Mar 1 01:01:23.191: DHCPD: checking for expired leases.
r3(config)#

here is the debug output from r2 and r3

CODE
*Mar 1 01:03:06.335: DHCPD: Sending notification of DISCOVER:----------------[color="#FF8C00"]--step 1[/color]
*Mar 1 01:03:06.335: DHCPD: htype 1 chaddr c203.2471.0000
*Mar 1 01:03:06.335: DHCPD: remote id 020a0000ac10170200000000
*Mar 1 01:03:06.335: DHCPD: circuit id 00000000
*Mar 1 01:03:06.335: DHCPD: DHCPDISCOVER received from client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 on interface FastEthernet0/0.
*Mar 1 01:03:06.339: DHCPD: Seeing if there is an internally specified pool class:
*Mar 1 01:03:06.339: DHCPD: htype 1 chaddr c203.2471.0000
r2#
*Mar 1 01:03:06.339: DHCPD: remote id 020a0000ac10170200000000
*Mar 1 01:03:06.339: DHCPD: circuit id 00000000
*Mar 1 01:03:06.339: DHCPD: Allocate an address without class information (172.16.23.0)
*Mar 1 01:03:06.343: IP: tableid=0, s=172.16.23.2 (local), d=172.16.23.101 (FastEthernet0/0), routed via FIB
*Mar 1 01:03:06.343: IP: s=172.16.23.2 (local), d=172.16.23.101 (FastEthernet0/0), len 56, sending
*Mar 1 01:03:06.347: ICMP type=8, code=0
*Mar 1 01:03:06.531: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:06.651: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2)
r2#, len 60, sending broad/multicast, proto=88
*Mar 1 01:03:06.655: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:03:07.843: IP: tableid=0, s=172.16.23.2 (local), d=172.16.23.101 (FastEthernet0/0), routed via FIB
*Mar 1 01:03:07.843: IP: s=172.16.23.2 (local), d=172.16.23.101 (FastEthernet0/0), len 56, sending
*Mar 1 01:03:07.843: ICMP type=8, code=0
*Mar 1 01:03:08.343: DHCPD: Adding binding to radix tree (172.16.23.101)
*Mar 1 01:03:08.343: DHCPD: Adding binding to hash tree
*Mar 1 01:03:08.343: DHCPD: assigned IP address 172.16.23.101 to client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30.
*Mar 1 01:03:08.343: DHCPD: Sending DHCPOFFER to client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30(172.16.23.101).[color="#8B0000"]---step 2 [/color]
*Mar 1 01:03:08.347: DHCPD: broadcasting BOOTREPLY to client c203.2471.0000.
*Mar 1 01:03:08.347: IP: s=172.16.23.2 (local), d=255.255.255.255 (FastEthernet0/0), len 328, sending br
r2#oad/multicast
*Mar 1 01:03:08.347: UDP src=67, dst=68
*Mar 1 01:03:08.379: IP: s=0.0.0.0 (FastEthernet0/0), d=255.255.255.255, len 604, rcvd 2
*Mar 1 01:03:08.379: UDP src=68, dst=67
*Mar 1 01:03:08.383: DHCPD: DHCPREQUEST received from client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30.--[color="#8B0000"]-step 3[/color]
*Mar 1 01:03:08.383: DHCPD: Sending notification of ASSIGNMENT:
*Mar 1 01:03:08.387: DHCPD: address 172.16.23.101 mask 255.255.255.0
*Mar 1 01:03:08.387: DHCPD: htype 1 chaddr c203.2471.0000
*Mar 1 01:03:08.387: DHCPD: lease time remaining (secs) = 86400
*Mar 1 01:03:08.387: DHCPD: No default domain to append - abort update
*Mar 1 01:03:08.387: DHCPD: Sending DHCPACK to client 0063.6973.636f.2d63.3230.332e.3234.3731.2e30.3030.302d.4661.302f.30 (172.16.23.101).--[color="#8B0000"]step 4[/color]
*Mar 1 01:03:08.391: DHCPD: broadcasting BOOTREPLY to client c203.2471.0000.
*Mar 1 01:03:08.391: IP: s=172.16.23.2 (local), d=255.255.255.255 (FastEthernet0/0), len 328, sending broad
r2#/multicast
*Mar 1 01:03:08.391: UDP src=67, dst=68
*Mar 1 01:03:08.783: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:09.283: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#
*Mar 1 01:03:11.143: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:11.231: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:11.235: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#
*Mar 1 01:03:13.119: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
r2#
*Mar 1 01:03:14.195: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#
*Mar 1 01:03:15.751: IP: s=172.16.2.1 (local), d=224.0.0.10 (Loopback2), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:15.755: IP: s=172.16.2.1 (Loopback2), d=224.0.0.10, len 60, rcvd 2, proto=88
*Mar 1 01:03:15.835: IP: s=172.16.23.2 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88
r2#u al
*Mar 1 01:03:17.503: IP: s=172.16.12.2 (local), d=224.0.0.10 (Serial0/0), len 60, sending broad/multicast, proto=88
*Mar 1 01:03:18.483: IP: s=172.16.12.1 (Serial0/0), d=224.0.0.10, len 60, rcvd 2, proto=88
r2#u all
All possible debugging has been turned off
r2#

------------------------------------------------------

r3(config)#int fa0/0
r3(config-if)#no shut
r3(config-if)#
*Mar 1 01:03:05.987: DHCPD: IP address change on interface FastEthernet0/0
*Mar 1 01:03:05.995: DHCPD: IP address change on interface FastEthernet0/0
*Mar 1 01:03:05.999: IP: s=0.0.0.0 (local), d=255.255.255.255 (FastEthernet0/0), len 604, sending broad/multicast
*Mar 1 01:03:05.999: UDP src=68, dst=67
r3(config-if)#
*Mar 1 01:03:07.963: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up
r3(config-if)#
*Mar 1 01:03:08.051: IP: s=172.16.23.2 (FastEthernet0/0), d=255.255.255.255, len 328, rcvd 1
*Mar 1 01:03:08.051: UDP src=67, dst=68
*Mar 1 01:03:08.055: IP: s=0.0.0.0 (local), d=255.255.255.255 (FastEthernet0/0), len 604, sending broad/multicast
*Mar 1 01:03:08.059: UDP src=68, dst=67
*Mar 1 01:03:08.091: IP: s=172.16.23.2 (FastEthernet0/0), d=255.255.255.255, len 328, rcvd 1
*Mar 1 01:03:08.091: UDP src=67, dst=68
r3(config-if)#
*Mar 1 01:03:08.963: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
r3(config-if)#
*Mar 1 01:03:11.095: DHCPD: IP address change on interface FastEthernet0/0
r3(config-if)#
*Mar 1 01:03:11.119: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0/0 assigned DHCP address 172.16.23.101, mask 255.255.255.0, hostname r3

r3(config-if)#
*Mar 1 01:03:23.191: DHCPD: checking for expired leases.
r3(config-if)#

set up dhcp service on router 2

first remove all of the wanted address by mentioning the excluded range .. this includes specifying the router i addresses

CODE
r2#config t
Enter configuration commands, one per line. End with CNTL/Z.
r2(config)#ip dhcp ?
aaa Configure aaa attributes
binding DHCP address bindings
bootp BOOTP specific configuration
class Configure DHCP classes
conflict DHCP address conflict parameters
database Configure DHCP database agents
excluded-address Prevent DHCP from assigning certain addresses
limit Limit DHCP Lease
limited-broadcast-address Use all 1's broadcast address
ping Specify ping parameters used by DHCP
pool Configure DHCP address pools
relay DHCP relay agent parameters
smart-relay Enable Smart Relay feature
update Configure dynamic updates
use Configure use of certain parameters during
allocation

r2(config)#ip dhcp exclu
r2(config)#ip dhcp excluded-address 172.16.23.1 ?
A.B.C.D High IP address


r2(config)#ip dhcp excluded-address 172.16.23.1 172.16.23.100 ?


r2(config)#ip dhcp excluded-address 172.16.23.1 172.16.23.100
r2(config)#ip dhcp pool ?
WORD Pool name

r2(config)#ip dhcp pool rakesh_r3 ?


r2(config)#ip dhcp pool rakesh_r3
r2(dhcp-config)#network ?
A.B.C.D Network number in dotted-decimal notation

r2(dhcp-config)#network 172.16.23.0 ?
/nn or A.B.C.D Network mask or prefix length


r2(dhcp-config)#network 172.16.23.0 /24 ?
secondary Configure as secondary subnet


r2(dhcp-config)#network 172.16.23.0 /24
r2(dhcp-config)#default-
r2(dhcp-config)#default-router 172.16.23.2 ?
Hostname or A.B.C.D Router's name or IP address


r2(dhcp-config)#default-router 172.16.23.2
r2(dhcp-config)#end
r2#
*Mar 1 00:57:44.147: %SYS-5-CONFIG_I: Configured from console by console
r2#show ip dchp pool
^
% Invalid input detected at '^' marker.

r2#show ip dhcp pool

Pool rakesh_r3 :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 0
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased addresses
172.16.23.1 172.16.23.1 - 172.16.23.254 0
r2#

we need to configure eigrp between r1 and r2 .. these are the outputs

CODE
r1#show ip eigrp nei
IP-EIGRP neighbors for process 1
H Address Interface Hold Uptime SRTT RTO Q Seq
(sec) (ms) Cnt Num
0 172.16.12.2 Se0/0 12 00:41:25 12 200 0 3
r1#show ip eigrp topo
IP-EIGRP Topology Table for AS(1)/ID(172.16.1.1)

Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status

P 172.16.23.0/24, 1 successors, FD is 2195456
via 172.16.12.2 (2195456/281600), Serial0/0
P 172.16.12.0/24, 1 successors, FD is 2169856
via Connected, Serial0/0
P 172.16.1.0/24, 1 successors, FD is 128256
via Connected, Loopback1
P 172.16.2.0/24, 1 successors, FD is 2297856
via 172.16.12.2 (2297856/128256), Serial0/0
r1#show ip route | i D
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
o - ODR, P - periodic downloaded static route
D 172.16.23.0 [90/2195456] via 172.16.12.2, 00:41:39, Serial0/0
D 172.16.2.0 [90/2297856] via 172.16.12.2, 00:41:39, Serial0/0
r1#

***************************************************************


r2#show ip eigrp neig
IP-EIGRP neighbors for process 1
H Address Interface Hold Uptime SRTT RTO Q Seq
(sec) (ms) Cnt Num
0 172.16.12.1 Se0/0 13 00:41:49 12 200 0 3
r2#show ip eigrp topo
IP-EIGRP Topology Table for AS(1)/ID(172.16.2.1)

Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status

P 172.16.23.0/24, 1 successors, FD is 281600
via Connected, FastEthernet0/0
P 172.16.12.0/24, 1 successors, FD is 2169856
via Connected, Serial0/0
P 172.16.1.0/24, 1 successors, FD is 2297856
via 172.16.12.1 (2297856/128256), Serial0/0
P 172.16.2.0/24, 1 successors, FD is 128256
via Connected, Loopback2
r2#show ip route | i D
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
o - ODR, P - periodic downloaded static route
D 172.16.1.0 [90/2297856] via 172.16.12.1, 00:41:57, Serial0/0
r2#

Running configs  

as usaul these are the final configs ...

config for r1


r1#show run
Building configuration...

Current configuration : 1207 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3

r1#show run
Building configuration...

Current configuration : 1207 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface Loopback1
ip address 172.16.1.1 255.255.255.0
ip helper-address 172.16.2.1
!
interface FastEthernet0/0
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0
ip address 172.16.12.1 255.255.255.0
clock rate 2000000
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
router eigrp 1
network 172.16.0.0
no auto-summary
!
ip forward-protocol nd
ip forward-protocol udp 50000
ip forward-protocol udp 3306
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
alias exec siib show ip int brief
alias exec sir show ip route
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

******************************

config for r2

r2#sho run
Building configuration...

Current configuration : 1476 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp binding cleanup interval 600
ip dhcp excluded-address 172.16.23.1 172.16.23.100
!
ip dhcp pool rakesh_r3
network 172.16.23.0 255.255.255.0
default-router 172.16.23.2
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface Loopback2
ip address 172.16.2.1 255.255.255.0
!
interface FastEthernet0/0
ip address 172.16.23.2 255.255.255.0
duplex auto
speed auto
!
interface Serial0/0
ip address 172.16.12.2 255.255.255.0
clock rate 2000000
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
interface Serial0/2
no ip address
shutdown
clock rate 2000000
!
interface Serial0/3
no ip address
shutdown
clock rate 2000000
!
router eigrp 1
network 172.16.0.0
no auto-summary
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
alias exec siib show ip int brief
alias exec sir show ip route
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r2#

*****************************

config for r3

r3#show run
Building configuration...

Current configuration : 1057 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname r3
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
no ip routing
no ip cef
!
!
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address dhcp
no ip route-cache
duplex auto
speed auto
!
interface Serial0/0
no ip address
no ip route-cache
shutdown
clock rate 2000000
!
interface FastEthernet0/1
no ip address
no ip route-cache
shutdown
duplex auto
speed auto
!
interface Serial0/1
no ip address
no ip route-cache
shutdown
clock rate 2000000
!
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
alias exec siib show ip int brief
alias exec sir show ip route
!
line con 0
exec-timeout 0 0
logging synchronous
line aux 0
line vty 0 4
!
!
end

r3#

Design by Blogger Buster | Distributed by Blogging Tips