8/3/2019 No Service Password

1/9

no service password-encryption!hostname R1!boot-start-markerboot-end-marker!

security passwords min-length 6enable secret 5 ciscoccna!ip cef!ip dhcp pool Access1network 192.168.10.0 255.255.255.0default-router 192.168.10.1!no ip domain lookup!username R3 password 0 ciscoccnausername ccna password 0 ciscoccna

!interface FastEthernet0/0ip address 192.168.10.1 255.255.255.0ip rip authentication mode md5ip rip authentication key-chain RIP_KEYno shutdown!interface FastEthernet0/1ip address 192.168.11.1 255.255.255.0ip rip authentication mode md5ip rip authentication key-chain RIP_KEYno shutdown!interface Serial0/0/0

ip address 10.1.1.1 255.255.255.252ip rip authentication mode md5ip rip authentication key-chain RIP_KEYencapsulation frame-relayclockrate 128000frame-relay map ip 10.1.1.1 201frame-relay map ip 10.1.1.2 201 broadcastno frame-relay inverse-arpno shutdown!interface Serial0/0/1

ip address 10.3.3.1 255.255.255.252ip rip authentication mode md5ip rip authentication key-chain RIP_KEYencapsulation pppppp authentication chapno shutdown!!router ripversion 2

8/3/2019 No Service Password

2/9

passive-interface defaultnetwork 192.168.10.0network 192.168.11.0no auto-summary!ip classless!

no ip http server!ip access-list standard Anti-spoofingpermit 192.168.10.0 0.0.0.255deny anyip access-list standard VTYpermit 10.0.0.0 0.255.255.255permit 192.168.10.0 0.0.0.255permit 192.168.11.0 0.0.0.255permit 192.168.20.0 0.0.0.255permit 192.168.30.0 0.0.0.255!line con 0

exec-timeout 0 0logging synchronousline aux 0line vty 0 4access-class VTY inlogin local!end!------------------------------------------! R2!------------------------------------------no service password-encryption!hostname R2

!

security passwords min-length 6enable secret ciscoccna!aaa new-model!aaa authentication login LOCAL_AUTH localaaa session-id common!ip cef!no ip domain lookup

!key chain RIP_KEYkey 1key-string ciscousername ccna password 0 ciscoccna!interface Loopback0description Simulated ISP Connectionip address 209.165.200.245 255.255.255.224!

8/3/2019 No Service Password

3/9

interface FastEthernet0/0no ip addressshutdownduplex autospeed auto!interface FastEthernet0/1

ip address 192.168.20.1 255.255.255.0ip access-group TFTP outip access-group Anti-spoofing inip nat outsideduplex autospeed auto!!interface Serial0/0/0ip address 10.1.1.2 255.255.255.0ip nat insideencapsulation frame-relayno keepalive

frame-relay map ip 10.1.1.1 201 broadcastno frame-relay inverse-arp!interface Serial0/0/1ip address 10.2.2.1 255.255.255.0ip access-group R3-telnet inip nat insideip rip authentication mode md5ip rip authentication key-chain RIP_KEYclockrate 128000!!router ripversion 2

passive-interface default

no passive-interface Serial0/0/0no passive-interface Serial0/0/1network 10.0.0.0network 192.168.20.0default-information originateno auto-summary!ip classlessip route 0.0.0.0 0.0.0.0 209.165.200.226!no ip http server

ip nat inside source list NAT interface FastEthernet0/0 overload!ip access-list standard Anti-spoofingpermit 192.168.20.0 0.0.0.255deny anyip access-list standard NATpermit 10.0.0.0 0.255.255.255permit 192.168.0.0 0.0.255.255!ip access-list extended R3-telnet

8/3/2019 No Service Password

4/9

deny tcp host 10.2.2.2 host 10.2.2.1 eq telnetdeny tcp host 10.3.3.2 host 10.2.2.1 eq telnetdeny tcp host 192.168.11.3 host 10.2.2.1 eq telnetdeny tcp host 192.168.30.1 host 10.2.2.1 eq telnetpermit ip any any!ip access-list standard TFTP

permit 192.168.20.0 0.0.0.255!control-plane!line con 0exec-timeout 0 0logging synchronousline aux 0exec-timeout 15 0logging synchronouslogin authentication local_authtransport output telnetline vty 0 4

exec-timeout 15 0logging synchronouslogin authentication local_authtransport input telnet!end!------------------------------------------! R3!------------------------------------------no service password-encryption!hostname R3!security passwords min-length 6

enable secret ciscoccna

!no aaa new-model!ip cef!no ip domain lookup!key chain RIP_KEYkey 1key-string cisco

username R1 password 0 ciscoccnausername ccna password 0 ciscoccna!interface FastEthernet0/1no shutdown!interface FastEthernet0/1.11encapsulation dot1Q 11ip address 192.168.11.3 255.255.255.0no snmp trap link-status

8/3/2019 No Service Password

5/9

!interface FastEthernet0/1.30encapsulation dot1Q 30ip address 192.168.30.1 255.255.255.0ip access-group Anti-spoofing inno snmp trap link-status!

!interface Serial0/0/0ip address 10.3.3.2 255.255.255.252encapsulation pppclockrate 125000ppp authentication chap!interface Serial0/0/1ip address 10.2.2.2 255.255.255.252!router ripversion 2passive-interface default

no passive-interface FastEthernet0/1.11no passive-interface FastEthernet0/1.30no passive-interface Serial0/0/0no passive-interface Serial0/0/1network 10.0.0.0network 192.168.11.0network 192.168.30.0no auto-summary!ip classless!ip http server!ip access-list standard Anti-spoofing

permit 192.168.30.0 0.0.0.255deny any

ip access-list standard VTYpermit 10.0.0.0 0.255.255.255permit 192.168.10.0 0.0.0.255permit 192.168.11.0 0.0.0.255permit 192.168.20.0 0.0.0.255permit 192.168.30.0 0.0.0.255!control-plane!

line con 0exec-timeout 0 0logging synchronousline aux 0exec-timeout 15 0logging synchronousline vty 0 4access-class VTY inexec-timeout 15 0logging synchronous

8/3/2019 No Service Password

6/9

login local!end!-----------------------------------------! S1!-----------------------------------------no service password-encryption

!hostname S1!security passwords min-length 6enable secret ciscoccna!no aaa new-modelvtp domain CCNA_Troubleshootingvtp mode transparentvtp password ciscoccnaip subnet-zero!no ip domain-lookup

!no file verify autospanning-tree mode pvstspanning-tree extend system-id!vlan internal allocation policy ascending!vlan 10!interface FastEthernet0/1switchport access vlan 10switchport mode access!interface FastEthernet0/2

switchport access vlan 10switchport mode access!

interface range FastEthernet0/3-24!interface GigabitEthernet0/1shutdown!interface GigabitEthernet0/2shutdown!interface Vlan1

no ip addressno ip route-cache!interface Vlan10ip address dhcpno ip route-cache!ip default-gateway 192.168.10.1ip http server!

8/3/2019 No Service Password

7/9

control-plane!line con 0exec-timeout 0 0logging synchronousline vty 0 4password ciscoccna

loginline vty 5 15no login!end!-----------------------------------------! S2!-----------------------------------------no service password-encryption!hostname S2!security passwords min-length 6

enable secret ciscoccna!no aaa new-modelvtp domain CCNA_Troubleshootingvtp mode transparentvtp mode clientvtp password ciscoccnaip subnet-zero!no ip domain-lookup!no file verify auto!spanning-tree mode rapid-pvstspanning-tree extend system-id

spanning-tree vlan 11 priority 24576spanning-tree vlan 30 priority 28672!

vlan internal allocation policy ascending!interface FastEthernet0/1switchport access vlan 11switchport mode access!interface FastEthernet0/2switchport access vlan 11switchport mode access

!interface FastEthernet0/3switchport trunk native vlan 99switchport trunk allowed vlan 11,30switchport mode trunk!interface FastEthernet0/4switchport trunk native vlan 99switchport trunk allowed vlan 11,30switchport mode trunk

8/3/2019 No Service Password

8/9

!interface range FastEthernet0/5-24shutdown!interface GigabitEthernet0/1shutdown!

interface GigabitEthernet0/2shutdown!interface Vlan1no ip addressno ip route-cache!interface Vlan11ip address 192.168.11.2 255.255.255.0no ip route-cache!ip http server!

control-plane!line con 0exec-timeout 0 0logging synchronousline vty 0 4password ciscoccnaloginline vty 5 15no login!end!-----------------------------------------! S3

!-----------------------------------------no service password-encryption!

hostname S3!security passwords min-length 6enable secret ciscoccna!no aaa new-modelvtp domain CCNA_troubleshootingvtp mode servervtp password ciscoccna

ip subnet-zero!no ip domain-lookup!no file verify auto!spanning-tree mode rapid-pvstspanning-tree extend system-idspanning-tree vlan 11 priority 28672spanning-tree vlan 30 priority 24576

8/3/2019 No Service Password

9/9

!vlan internal allocation policy ascending!!interface FastEthernet0/1switchport trunk allowed vlan 30switchport mode trunk

!interface FastEthernet0/2switchport access vlan 30switchport mode access!interface FastEthernet0/3switchport trunk native vlan 99switchport trunk allowed vlan 11,30switchport mode trunk!interface FastEthernet0/4switchport trunk native vlan 99switchport trunk allowed vlan 11,30

switchport mode trunk!interface range FastEthernet0/5-24shutdown!interface GigabitEthernet0/1shutdown!interface GigabitEthernet0/2shutdown!interface Vlan1no ip addressno ip route-cache

!interface Vlan30ip address 192.168.30.2 255.255.255.0

no ip route-cache!ip default-gateway 192.168.30.1ip http server!control-plane!line con 0exec-timeout 5 0

logging synchronousline vty 0 4password ciscoccnaloginline vty 5 15no login!end