Академический Документы
Профессиональный Документы
Культура Документы
Brian Dennis, CCIE # 2210 (R&S / ISP Dial / Security / Service Provider)
Brian McGahan, CCIE# 8583 (R&S / Service Provider)
y
CCIE R&S Advanced Technologies Labs NAT
Copyright Information
Copyright © 2003 - 2007 Internetwork Expert, Inc. All rights reserved.
The following publication, CCIE Routing and Switching Lab Workbook, was
developed by Internetwork Expert, Inc. All rights reserved. No part of this publication may
be reproduced or distributed in any form or by any means without the prior written
permission of Internetwork Expert, Inc.
Cisco®, Cisco® Systems, CCIE, and Cisco Certified Internetwork Expert, are registered
trademarks of Cisco® Systems, Inc. and/or its affiliates in the U.S. and certain countries.
All other products and company names are the trademarks, registered trademarks, and
service marks of the respective owners. Throughout this manual, Internetwork Expert,
Inc. has used its best efforts to distinguish proprietary trademarks from descriptive
names by following the capitalization styles used by the manufacturer.
Disclaimer
The following publication, CCIE Routing and Switching Lab Workbook, is designed to
assist candidates in the preparation for Cisco Systems’ CCIE Routing & Switching Lab
exam. While every effort has been made to ensure that all material is as complete and
accurate as possible, the enclosed material is presented on an “as is” basis. Neither the
authors nor Internetwork Expert, Inc. assume any liability or responsibility to any person
or entity with respect to loss or damages incurred from the information contained in this
workbook.
This workbook was developed by Internetwork Expert, Inc. and is an original work of the
aforementioned authors. Any similarities between material presented in this workbook
and actual CCIE lab material is completely coincidental.
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- ii -
CCIE R&S Advanced Technologies Labs NAT
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- iii -
CC dvanced Technologies Labs NAT
Common Configuration
Directions
• Create VLAN 146 on SW1 and SW2, and configure the respective
switchports in this VLAN (SW1: Fa 0/1, SW2: Fa 0/4 and Fa 0/6)
• Configure interface Fa 0/13 on both SW1 and SW2 as 802.1q trunk
• Configure IP addressing on VLAN146 interfaces as per diagram
• Configure static default route to 10.0.0.4 on R1 and R6
• Configure Frame-Relay and Serial interfaces. Use HDLC for Serial link
encapsulation. Use Point-to-Point Frame-Relay subinterfaces and DLCIs
depicted on the diagram
• Configure Addressing on FR and Serial interfaces as per diagram
• Create Loopback0 interfaces on R4 and R5 with IP addresses
150.X.4.4/24 and 150.X.5.5/24 respectively. Configure this interface as
OSPF point-to-point links in order to advertise full /24 prefix
• Configure OSPF Area 0 on FR and Serial interfaces. Advertise Loopback0
interfaces on R4 and R5 into OSPF
• Configure BGP AS1 on R4 and BGP AS2 on R5. Peer R5 and R4 over
BGP. Use Loopback0 as eBGP source interfaces
• R5 should advertise default route to R4 via BGP
Final Configuration
SW1:
vlan 146
interface Fa 0/1
switchport host
switchport access vlan 146
!
interface fastEthernet 0/13
switchport trunk encaps dot1q
switchport mode trunk
SW2:
vlan 146
interface range Fa 0/4 , Fa 0/6
switchport host
switchport access vlan 146
!
interface fastEthernet 0/13
switchport trunk encaps dot1q
switchport mode trunk
R1:
inter fa 0/0
ip address 10.0.0.1 255.255.255.0
no shut
!
ip route 0.0.0.0 0.0.0.0 10.0.0.4
R4:
inter ethernet 0/0
ip address 10.0.0.4 255.255.255.0
no shut
!
inter Loopback0
ip add 150.1.4.4 255.255.255.0
ip ospf network point-to-point
!
interface Serial 0/0
encaps frame-relay
no shutdown
!
interface Serial 0/0.1 point-to-point
ip address 155.1.0.4 255.255.255.0
frame-relay interface-dlci 405
!
interface Serial 0/1
no shutdown
ip address 155.1.45.4 255.255.255.0
!
router ospf 1
router-id 150.1.4.4
network 155.1.0.4 0.0.0.0 area 0
network 155.1.45.4 0.0.0.0 area 0
network 150.1.4.4 0.0.0.0 area 0
!
router bgp 1
bgp router-id 150.1.4.4
neighbor 150.1.5.5 remote-as 2
neighbor 150.1.5.5 update-source Loopback0
neighbor 150.1.5.5 ebgp-multihop
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-2-
CCIE R&S Advanced Technologies Labs NAT
R5:
interface Loopback0
ip address 150.1.5.5 255.255.255.0
ip ospf network point-to-point
!
interface Serial 0/0
encapsulation frame-relay
no shut
!
interface Serial 0/0.1 point-to-point
ip address 155.1.0.5 255.255.255.0
frame-relay interface-dlci 504
!
interface Serial 0/1
no shutdown
clockrate 64000
ip address 155.1.45.5 255.255.255.0
!
router ospf 1
router-id 150.1.5.5
network 155.1.0.5 0.0.0.0 area 0
network 155.1.45.5 0.0.0.0 area 0
network 150.1.5.5 0.0.0.0 area 0
!
router bgp 2
bgp router-id 150.1.5.5
neighbor 150.1.4.4 remote-as 1
neighbor 150.1.4.4 update-source Loopback0
neighbor 150.1.4.4 ebgp-multihop
neighbor 150.1.4.4 default-originate
R6:
inter gig 0/0
ip address 10.0.0.6 255.255.255.0
no shut
!
ip route 0.0.0.0 0.0.0.0 10.0.0.4
Verification
R4#ping 10.0.0.6
R4#ping 10.0.0.1
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-3-
CCIE R&S Advanced Technologies Labs NAT
R4#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-4-
CCIE R&S Advanced Technologies Labs NAT
Directions
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-5-
CCIE R&S Advanced Technologies Labs NAT
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip nat pool NAT_POOL 150.1.4.100 150.1.4.254 prefix 24
ip access-list standard INSIDE_NETWORK
permit 10.0.0.0 0.0.0.255
!
ip nat inside source list INSIDE_NETWORK pool NAT_POOL
Verification
R1#ping 150.1.5.5
R4#
NAT*: i: icmp (10.0.0.1, 6) -> (150.1.5.5, 6) [125]
NAT*: i: icmp (10.0.0.1, 6) -> (150.1.5.5, 6) [125]
NAT*: s=10.0.0.1->150.1.4.101, d=150.1.5.5 [125]
NAT: installing alias for address 150.1.4.101
NAT*: o: icmp (150.1.5.5, 6) -> (150.1.4.101, 6) [125]
NAT*: s=150.1.5.5, d=150.1.4.101->10.0.0.1 [125]
NAT*: i: icmp (10.0.0.1, 6) -> (150.1.5.5, 6) [126]
NAT*: s=10.0.0.1->150.1.4.101, d=150.1.5.5 [126]
NAT*: o: icmp (150.1.5.5, 6) -> (150.1.4.101, 6) [126]
NAT*: s=150.1.5.5, d=150.1.4.101->10.0.0.1 [126]
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-6-
CCIE R&S Advanced Technologies Labs NAT
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-7-
CCIE R&S Advanced Technologies Labs NAT
Objective: Configure NAT to use single global IP address to translate all inside
addresses
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip access-list standard INSIDE_NETWORK
permit 10.0.0.0 0.0.0.255
!
ip nat inside source list INSIDE_NETWORK interface Loop0 overload
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-8-
CCIE R&S Advanced Technologies Labs NAT
Verification
R1#ping 150.1.5.5
R1#telnet 150.1.5.5
Trying 150.1.5.5 ... Open
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
-9-
CCIE R&S Advanced Technologies Labs NAT
Objective: Configure router to use active outside interface for outgoing packets
translation
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 10 -
CCIE R&S Advanced Technologies Labs NAT
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip access-list standard INSIDE_NETWORK
permit 10.0.0.0 0.0.0.255
!
route-map FR_INTERFACE
match interface Serial 0/0.1
match ip address INSIDE_NETWORK
!
route-map SERIAL_INTERFACE
match interface Serial 0/1
match ip address INSIDE_NETWORK
!
ip nat inside source route-map FR_INTERFACE int Serial 0/0.1 overload
ip nat inside source route-map SERIAL_INTERFACE int Serial 0/1 overload
Verification
R1#ping 150.1.5.5
R4#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R4(config)#int se 0/0
R4(config-if)#shut
R4(config-if)#^Z
R4#
R1#ping 150.1.5.5
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 11 -
CCIE R&S Advanced Technologies Labs NAT
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 12 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 13 -
CCIE R&S Advanced Technologies Labs NAT
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip access-list ext INSIDE_TELNET
permit tcp 10.0.0.0 0.0.0.255 any eq 23
!
ip access-list ext INSIDE_OTHER
deny tcp 10.0.0.0 0.0.0.255 any eq 23
permit ip 10.0.0.0 0.0.0.255 any
!
route-map FR_INTERFACE
set interface Serial 0/0.1
match ip address INSIDE_TELNET
!
route-map SERIAL_INTERFACE
set interface Serial 0/1
match ip address INSIDE_OTHER
!
ip nat inside source route-map FR_INTERFACE int Serial 0/0.1 overload
ip nat inside source route-map SERIAL_INTERFACE int Serial 0/1 overload
Verification
R4#debug ip nat detailed
IP NAT detailed debugging is on
R1#ping 150.1.5.5
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 14 -
CCIE R&S Advanced Technologies Labs NAT
R1#telnet 150.1.5.5
Trying 150.1.5.5 ... Open
R4#
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 15 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip nat inside source static 10.0.0.1 150.1.4.1
ip nat inside source static 10.0.0.6 150.1.4.6
Verification
R1#debug ip icmp
ICMP packet debugging is on
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 16 -
CCIE R&S Advanced Technologies Labs NAT
R6#debug ip icmp
ICMP packet debugging is on
R5#ping 150.1.4.1
R5#ping 150.1.4.6
R6#
*Nov 13 11:21:21.182: ICMP: echo reply sent, src 10.0.0.6, dst 155.1.45.5
*Nov 13 11:21:21.226: ICMP: echo reply sent, src 10.0.0.6, dst 155.1.45.5
*Nov 13 11:21:21.274: ICMP: echo reply sent, src 10.0.0.6, dst 155.1.45.5
*Nov 13 11:21:21.318: ICMP: echo reply sent, src 10.0.0.6, dst 155.1.45.5
*Nov 13 11:21:21.362: ICMP: echo reply sent, src 10.0.0.6, dst 155.1.45.5
R1#
*Mar 1 04:46:42.347: ICMP: echo reply sent, src 10.0.0.1, dst 155.1.45.5
*Mar 1 04:46:42.395: ICMP: echo reply sent, src 10.0.0.1, dst 155.1.45.5
*Mar 1 04:46:42.439: ICMP: echo reply sent, src 10.0.0.1, dst 155.1.45.5
*Mar 1 04:46:42.487: ICMP: echo reply sent, src 10.0.0.1, dst 155.1.45.5
*Mar 1 04:46:42.531: ICMP: echo reply sent, src 10.0.0.1, dst 155.1.45.5
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 17 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip nat inside source static tcp 10.0.0.1 23 interf Loopback0 1023
ip nat inside source static tcp 10.0.0.6 23 interf Loopback0 6023
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 18 -
CCIE R&S Advanced Technologies Labs NAT
Verification
R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#line vty 0 4
R1(config-line)#no login
R6#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R6(config)#line vty 0 4
R6(config-line)#no login
R1>exit
R6>exit
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 19 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 20 -
CCIE R&S Advanced Technologies Labs NAT
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip access-list extended TO_LOOPBACK0
permit ip 10.0.0.0 0.0.0.255 150.1.5.0 0.0.0.255
!
ip access-list extended TO_LOOPBACK1
permit ip 10.0.0.0 0.0.0.255 150.1.55.0 0.0.0.255
!
route-map DIVERT permit 10
match ip address TO_LOOPBACK0
set ip next-hop 155.1.0.5
!
route-map DIVERT permit 20
match ip address TO_LOOPBACK1
set ip next-hop 155.1.45.5
!
ip nat inside source static 10.0.0.1 150.1.4.1 route-map DIVERT
!
interface Loopback0
ip ospf network point-to-point
R5:
interface Loopback1
ip address 150.1.55.55 255.255.255.0
!
router ospf 1
network 150.1.55.55 0.0.0.0 area 0
Verification
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 21 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 22 -
CCIE R&S Advanced Technologies Labs NAT
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip route 55.55.55.0 255.255.255.0 150.1.5.5
!
ip nat inside source static network 10.0.0.0 44.44.44.0 /24
ip nat outside source static network 10.0.0.0 55.55.55.0 /24
R5:
ip route 44.44.44.0 255.255.255.0 150.1.4.4
!
interface Loopback10
ip address 10.0.0.5 255.255.255.0
Verification
R5#debug ip icmp
ICMP packet debugging is on
R4#
NAT*: i: icmp (10.0.0.1, 16) -> (55.55.55.5, 16) [358]
NAT*: s=10.0.0.1->44.44.44.1, d=55.55.55.5 [358]
NAT*: s=44.44.44.1, d=55.55.55.5->10.0.0.5 [358]
NAT*: o: icmp (10.0.0.5, 16) -> (44.44.44.1, 16) [358]
NAT*: s=10.0.0.5->55.55.55.5, d=44.44.44.1 [358]
NAT*: s=55.55.55.5, d=44.44.44.1->10.0.0.1 [358]
NAT*: i: icmp (10.0.0.1, 16) -> (55.55.55.5, 16) [359]
NAT*: s=10.0.0.1->44.44.44.1, d=55.55.55.5 [359]
NAT*: s=44.44.44.1, d=55.55.55.5->10.0.0.5 [359]
NAT*: o: icmp (10.0.0.5, 16) -> (44.44.44.1, 16) [359]
NAT*: s=10.0.0.5->55.55.55.5, d=44.44.44.1 [359]
NAT*: s=55.55.55.5, d=44.44.44.1->10.0.0.1 [359]
NAT*: i: icmp (10.0.0.1, 16) -> (55.55.55.5, 16) [360]
NAT*: s=10.0.0.1->44.44.44.1, d=55.55.55.5 [360]
NAT*: s=44.44.44.1, d=55.55.55.5->10.0.0.5 [360]
NAT*: o: icmp (10.0.0.5, 16) -> (44.44.44.1, 16) [360]
R5#
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 23 -
CCIE R&S Advanced Technologies Labs NAT
*Mar 18 22:04:41.426: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.458: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.494: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.530: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.562: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.602: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.634: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.670: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.706: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
*Mar 18 22:04:41.738: ICMP: echo reply sent, src 10.0.0.5, dst 44.44.44.1
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 24 -
CCIE R&S Advanced Technologies Labs NAT
Directions
Final Configuration
R4:
interface Ethernet 0/0
ip nat inside
!
interface Serial 0/1
ip nat outside
!
interface Serial 0/0.1
ip nat outside
!
ip nat pool SERVERS prefix-length 24 type rotary
address 10.0.0.1 10.0.0.1
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 25 -
CCIE R&S Advanced Technologies Labs NAT
Verification
R5#telnet 150.1.4.4
Trying 150.1.4.4 ... Open
R1>exit
R5#telnet 150.1.4.4
Trying 150.1.4.4 ... Open
R6>exit
R5#
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 26 -
CCIE R&S Advanced Technologies Labs NAT
Directions
• Create NAT pool POOL on R4 and R5. This pool should cover address
range 155.X.45.1-254
• Configure Ethernet interfaces on R4 and R5 to be NAT inside, and FR
interfaces to be NAT outside
• Create access-list 100 on R1 and R4 and permit traffic from VLAN456
with it
• Create stateful NAT entry with ID 1 on R4 and R5, and associate it with
HSRP group named GROUP1. Use Mapping-Id value 100 on both routers
• Create NAT rules on R4 and R5 to translate everything that matches
access-list 100 using previously created NAT pool POOL. The redundancy
for this pool should be provided by stateful NAT with Mapping ID 100
Final Configuration
SW1-SW4:
vlan 456
SW1:
interface Fa 0/5
switchport host
switchport access vlan 456
SW2:
interface Fa 0/6
switchport host
switchport access vlan 456
SW4:
interface Fa 0/4
switchport host
switchport access vlan 456
R1:
interface Serial 0/0
encapsulation frame-relay
no frame-relay inverse-arp
ip address 155.1.0.1 255.255.255.0
frame-relay map ip 155.1.0.5 105 broadcast
frame-relay map ip 155.1.0.4 104 broadcast
ip ospf network broadcast
no shutdown
!
router ospf 1
router-id 150.1.1.1
network 155.1.0.1 0.0.0.0 area 0
R4:
interface Eth 0/1
ip address 155.1.100.4 255.255.255.0
standby 1 name GROUP1
standby 1 ip 155.1.100.254
standby 1 preempt
standby 1 priority 110
standby 1 track Serial 0/0 20
no shutdown
!
interface Serial 0/0
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 28 -
CCIE R&S Advanced Technologies Labs NAT
encapsulation frame-relay
no frame-relay inverse-arp
ip address 155.1.0.4 255.255.255.0
frame-relay map ip 155.1.0.5 401 broadcast
frame-relay map ip 155.1.0.1 401
ip ospf priority 0
ip ospf network broadcast
no shutdown
!
interface Loopback0
ip address 150.1.45.4 255.255.255.0
!
router ospf 1
router-id 150.1.4.4
redistribute connected subnets metric 400
network 155.1.0.4 0.0.0.0 area 0
R5:
interface Ethernet 0/0
ip address 155.1.100.5 255.255.255.0
standby 1 name GROUP1
standby 1 ip 155.1.100.254
standby 1 preempt
standby 1 priority 100
no shut
!
interface Serial 0/0
encapsulation frame-relay
no frame-relay inverse-arp
ip address 155.1.0.5 255.255.255.0
frame-relay map ip 155.1.0.1 501 broadcast
frame-relay map ip 155.1.0.4 501
ip ospf network broadcast
ip ospf priority 0
no shutdown
!
interface Loopback0
ip address 150.1.45.5 255.255.255.0
!
router ospf 1
router-id 150.1.5.5
network 155.1.0.5 0.0.0.0 area 0
redistribute connected subnets metric 500
R6:
interface Gig 0/0
ip address 155.1.100.6 255.255.255.0
no shutdown
!
ip route 0.0.0.0 0.0.0.0 155.1.100.254
NAT Configuration
R5:
interface Eth 0/0
ip nat inside
!
interface Serial 0/0
ip nat outside
!
access-list 100 permit ip 155.1.100.0 0.0.0.255 any
!
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 29 -
CCIE R&S Advanced Technologies Labs NAT
R4:
interface Ethernet 0/1
ip nat inside
!
interface Serial 0/0
ip nat outside
!
access-list 100 permit ip 155.1.100.0 0.0.0.255 any
!
ip nat pool POOL 150.1.45.1 150.1.45.254 prefix 24
!
ip nat stateful id 1
redundancy GROUP1
mapping-id 100
!
ip nat inside source list 100 pool POOL mapping-id 100
Verification
R6#telnet 155.1.0.1
Trying 155.1.0.1 ... Open
R1>
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 30 -
CCIE R&S Advanced Technologies Labs NAT
R4#conf t
Enter configuration commands, one per line. End with CNTL/Z.
R4(config)#interface serial 0/0
R4(config-if)#shutdown
R5#show standby
Ethernet0/0 - Group 1
State is Active
2 state changes, last state change 00:00:26
Virtual IP address is 155.1.100.254
Active virtual MAC address is 0000.0c07.ac01
Local virtual MAC address is 0000.0c07.ac01 (v1 default)
Hello time 3 sec, hold time 10 sec
Next hello sent in 0.024 secs
Preemption enabled
Active router is local
Standby router is 155.1.100.4, priority 90 (expires in 8.020 sec)
Priority 100 (default 100)
IP redundancy name is "GROUP1" (cfgd)
Rack1AS>6
[Resuming connection 6 to r6 ... ]
R1>
R1>
R1>
Copyright © 2007
y Internetwork Expert www.InternetworkExpert.com
- 31 -