+++

R2
+++

ena
config t

ipv6 unicast-routing
FHRP version vrrp v3

router ospf 0
router-id 2.2.2.2
network 192.168.23.0 0.0.0.255 area 0
network 172.16.10.0 0.0.0.255 area 0
network 172.16.20.0 0.0.0.255 area 0
network 172.16.50.0 0.0.0.255 area 0
exit

ipv6 router ospf 0

router-id 22.22.22.22
exit

Interface e0/2.10
Encapsulation dot1q 10
IP address 172.16.10.2 255.255.255.0
Ipv6 address 2018:acad:acad:10::2/64
No shut
vrrp 1 address-family ipv4
address 172.16.10.1
preempt
priority 100
timers advertise 3000
track 2 decrement 25
Exit
vrrp 1 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:10::1/64
priority 110
timers advertise 3000
preempt
track 2 decrement 25
exit
Exit

Interface e0/2.20
Encapsulation dot1q 20
IP address 172.16.20.2 255.255.255.0
Ipv6 address 2018:acad:acad:20::2/64
No shut
vrrp 2 address-family ipv4
address 172.16.20.1
preempt
priority 100
timers advertise 3000
track 2 decrement 25
Exit
vrrp 2 address-family ipv6
address FE80::20:1 primary
address 2018:DB8:ACAD:20::1/64
priority 120
timers advertise 3000
preempt
track 2 decrement 25
exit
Exit

Interface e0/1.50
Encapsulation dot1q 50
IP address 172.16.50.2 255.255.255.0
Ipv6 address 2018:acad:acad:50::2/64
No shut
vrrp 5 address-family ipv4
address 172.16.50.1
preempt
priority 100
timers advertise 3000
track 2 decrement 25
Exit
vrrp 5 address-family ipv6
address FE80::50:1 primary
address 2018:DB8:ACAD:50::1/64
priority 110
preempt
timers advertise 3000
track 2 decrement 25
exit
Exit

Interface e0/3
IP address 192.168.23.1 255.255.255.0
Ipv6 address 2018:acad:acad:23::1/112
No shut
Exit

ip dhcp pool VLAN10

network 172.16.10.0 255.255.255.0
default-router 172.16.10.2
dns-server 8.8.4.4
exit

ip dhcp pool VLAN20

network 172.16.20.0 255.255.255.0
default-router 172.16.20.2
dns-server 8.8.4.4
exit
ip dhcp excluded-address 172.16.10.1 172.16.10.2

ip dhcp excluded-address 172.16.20.1 172.16.20.2

track 2 interface e0/3 line-protocol

———————
R1
———————
ena
config t

ipv6 unicast-routing
FHRP version vrrp v3

router ospf 0
router-id 1.1.1.1
network 192.168.13.0 0.0.0.255 area 0
network 172.16.30.0 0.0.0.255 area 0
network 172.16.40.0 0.0.0.255 area 0
exit

ipv6 router ospf 0

router-id 11.11.11.11
exit

Interface e0/3.30
Encapsulation dot1q 30
IP address 172.16.30.2 255.255.255.0
Ipv6 address 2018:acad:acad:30::2/64
No shut
vrrp 3 address-family ipv4
address 172.16.30.1
preempt
priority 120
timers advertise 3000
track 1 decrement 25
Exit
vrrp 3 address-family ipv6
address FE80::30:1 primary
address 2018:DB8:ACAD:30::1/64
priority 100
timers advertise 3000
preempt
track 1 decrement 25
exit
Exit

Interface e0/3.40
Encapsulation dot1q 40
IP address 172.16.40.2 255.255.255.0
Ipv6 address 2018:acad:acad:40::2/64
No shut
vrrp 4 address-family ipv4
address 172.16.40.1
preempt
priority 120
timers advertise 3000
track 1 decrement 25
Exit
vrrp 4 address-family ipv6
address FE80::40:1 primary
address 2018:DB8:ACAD:40::1/64
priority 100
preempt
timers advertise 3000
track 1 decrement 25
exit
Exit

Interface e0/2
IP address 192.168.13.1 255.255.255.0
Ipv6 address 2018:acad:acad:13::1/112
No shut
Exit

ip dhcp pool VLAN30

network 172.16.30.0 255.255.255.0
default-router 172.16.30.3
dns-server 8.8.4.4
exit

ip dhcp pool VLAN40

network 172.16.40.0 255.255.255.0
default-router 172.16.40.3
dns-server 8.8.4.4
exit

ipv6 dhcp pool VLAN30-IPV6

address prefix 2018:ACAD:ACAD:30::/64
dns-server 2018:ACAD:ACAD:8::4
exit
ip dhcp excluded-address 172.16.30.1 172.16.30.3

ip dhcp excluded-address 172.16.40.1 172.16.40.3

ip sla 10
icmp-echo 8.8.4.4
frequency 5
ip sla schedule 10 life forever start-time now
track 1 ip sla 10
Exit

————————————————
R3
—————————
ena
config t

ipv6 unicast-routing

Interface e0/3
IP address 192.168.23.2 255.255.255.0
Ipv6 address 2018:acad:acad:23::2/112
No shut
Exit

Interface e0/2
IP address 192.168.13.2 255.255.255.0
Ipv6 address 2018:acad:acad:13::2/112
No shut
Exit

Interface e0/1
IP address 219.50.0.1 255.255.255.252
Ipv6 address 2018:acad:acad:219::1/112
No shut
Exit

router ospf 0
router-id 3.3.3.3
network 192.168.13.0 0.0.0.255 area 0
network 192.168.23.0 0.0.0.255 area 0
network 219.50.0.0 0.0.0.3 area 0
exit

ipv6 router ospf 0

router-id 33.33.33.33
exit

access-list 10 permit 172.16.0.0 0.0.255.255

ip nat inside source list 10 interface ethernet 0/1 overload

interface range ethernet 0/1

ip nat inside
exit

interface ethernet 0/2

ip nat outside
exit
ipv6 dhcp pool VLAN70-IPV6
address prefix 2018:ACAD:ACAD:70::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN80-IPV6

address prefix 2018:ACAD:ACAD:80::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN90-IPV6

address prefix 2018:ACAD:ACAD:90::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN100-IPV6

address prefix 2018:ACAD:ACAD:100::/64
dns-server 2018:ACAD:ACAD:4::4
exit

--------------------------------------
+++
R2
+++

ena

config t

ipv6 unicast-routing

router ospf 1

router-id 2.2.2.2
default-information originate

network 171.16.23.0 0.0.0.255 area 0

redistribute eigrp 1 metric-type 2 subnets

exit

ipv6 router ospf 1

router-id 22.22.22.22
redistribute eigrp 1 metric-type 2

exit

router eigrp ABARCA

address-family ipv4 autonomous-system 1
network 172.16.12.0 0.0.0.255
network 172.16.70.0 0.0.0.255
network 172.16.80.0 0.0.0.255
network 172.16.90.0 0.0.0.255
network 172.16.100.0 0.0.0.255
topology base
redistribute ospf 1 metric 512 2000 255 1 1500
exit
address-family ipv6 autonomous-system 1
topology base
redistribute ospf 1 metric 512 2000 255 1 1500
exit

ip dhcp excluded-address 172.16.80.1 172.16.80.3

ip dhcp excluded-address 172.16.90.1 172.16.90.3

ip dhcp excluded-address 172.16.100.1 172.16.100.3

ip dhcp pool VLAN80

network 172.16.80.0 255.255.255.0

default-router 172.16.80.1

dns-server 4.4.4.4

exit

ip dhcp pool VLAN90

network 172.16.90.0 255.255.255.0

default-router 172.16.90.1

dns-server 4.4.4.4

exit

ip dhcp pool VLAN100

network 172.16.100.0 255.255.255.0

default-router 172.16.100.1

dns-server 4.4.4.4

exit

----------------------------------------------
++++
MLS1
++++

ena
config t

vtp mode transparent

ip routing
ipv6 unicast-routing

router eigrp ABARCA

address-family ipv4 autonomous-system 1
network 172.16.12.0 0.0.0.255
network 172.16.70.0 0.0.0.255
network 172.16.80.0 0.0.0.255
network 172.16.90.0 0.0.0.255
network 172.16.100.0 0.0.0.255
topology base
exit
address-family ipv6 autonomous-system 1
topology base
exit

vlan 70
private-vlan primary
private-vlan association 2,3
exit

vlan 2
private-vlan isolated
exit

vlan 3
private-vlan community
exit

int e0/3
sw mode private-vlan host
spanning-tree portfast
sw private-vlan association host 70 2
exit

int e1/2
sw mode private-vlan host
spanning-tree portfast
sw private-vlan association host 70 2
exit

int range e1/3

sw mode private-vlan host
spanning-tree portfast
sw private-vlan association host 70 3
exit

int e0/0
no switchport
no sh
exit

interface vlan 70
ip add 172.16.70.1 255.255.255.0
ipv6 add 2018.ACAD:ACAD:70::1/64
no sh
exit

interface vlan 80
ip add 172.16.80.1 255.255.255.0
ipv6 add 2018.ACAD:ACAD:80::1/64
ip helper-address 172.16.12.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:12::2
ipv6 enable
no sh
exit

interface vlan 90
ip add 172.16.90.1 255.255.255.0
ipv6 add 2018.ACAD:ACAD:90::1/64
ip helper-address 172.16.12.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:12::2
ipv6 enable
no sh
exit

interface vlan 100

ip add 172.16.100.1 255.255.255.0
ipv6 add 2018.ACAD:ACAD:100::1/64
ip helper-address 172.16.12.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:12::2
ipv6 enable
no sh
exit

int e0/0
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
exit

interface vlan 70
ip address 172.16.70.1 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT

VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface range ethernet 0/1-2, e1/0-1

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e0/1-2

channel-group 1 mode desirable
exit

interface range e1/0-1

channel-group 2 mode active
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 1
spanning-tree link-type point-to-point
exit

interface port-channel 2
spanning-tree link-type point-to-point
exit

spanning-tree mode rapid-pvst

--------------------------------------
+++
SWA
+++

ena
config t

interface vlan 70
ip address 172.16.70.2 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT
VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface range ethernet 0/1-2, e1/0-1, e1/2-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e0/1-2

channel-group 1 mode desirable
exit

interface range e1/0-1

channel-group 4 mode active
exit

interface range e1/2-3

channel-group 3 mode on
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 1
spanning-tree link-type point-to-point
exit
interface port-channel 3
spanning-tree link-type point-to-point
exit

interface port-channel 4
spanning-tree link-type point-to-point
exit

spanning-tree mode rapid-pvst

---------------------------------------

+++
SWB
+++

ena
config t

interface vlan 70
ip address 172.16.70.3 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT

VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface range ethernet 0/1-2, e1/0-1, e1/2-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e0/1-2

channel-group 6 mode desirable
exit

interface range e1/0-1

channel-group 2 mode active
exit

interface range e1/2-3

channel-group 5 mode on
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 2
spanning-tree link-type point-to-point
exit

interface port-channel 5
spanning-tree link-type point-to-point
exit

interface port-channel 6
spanning-tree link-type point-to-point
exit

spanning-tree mode rapid-pvst

---------------------------------
+++
SWC
+++
ena
config t

interface vlan 70
ip address 172.16.70.3 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT

VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface ethernet e1/2-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e1/2-3

channel-group 3 mode on
exit

mac access-list extended BLOCK_VLAN80

deny host aabb.cc00.0a30 any any

int e0/3
mac access-group BLOCK_VLAN80 in
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 3
ip dhcp snooping trust
spanning-tree link-type point-to-point
exit

interface e0/3
switchport mode access
switchport access vlan 80
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

spanning-tree mode rapid-pvst

ip dhcp snooping
ip dhcp snooping vlan 80

no ip dhcp snooping information option

errdisable recovery interval 30
--------------------------------------

+++
SWD
+++

ena
config t

interface vlan 70
ip address 172.16.70.5 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT

VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface range ethernet e1/0-1, e1/2-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e1/0-1

channel-group 4 mode active
exit

interface range e1/2-3

channel-group 5 mode on
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 4
ip dhcp snooping trust
spanning-tree link-type point-to-point
exit

interface port-channel 5
ip dhcp snooping trust
spanning-tree link-type point-to-point
exit

interface e0/3
switchport mode access
switchport access vlan 90
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

spanning-tree mode rapid-pvst

access-list 101 deny ip host 172.16.90.5 any

int e0/3
ip access-group 101
exit

mac access-list extended VACL_90

deny host aabb.cc00.0b30 any
exit

access-list extended VACLIP_90

deny ip host 172.16.90.5 any
exit

vlan access-map VACL-MAP

match ip address VACLIP_90
match mac address VACL_90
action drop
exit

vlan access-map VACL-MAP 20

action forward
exit

vlan filter VACL-MAP vlan-list 90

ip dhcp snooping
ip dhcp snooping vlan 90

no ip dhcp snooping information option

errdisable recovery interval 30
------------------------------------------

+++
SWE
+++

ena
config t

interface vlan 70
ip address 172.16.70.6 255.255.255.0
no shutdown
exit

VLAN 70
NAME ADM
EXIT

VLAN 80
NAME RRHH
EXIT

VLAN 90
NAME VENTAS
EXIT

VLAN 100
NAME VENTAS
EXIT

interface ethernet e1/1-2

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 70,80,90,100
switchport nonegotiate
exit

interface range e0/1-2

channel-group 6 mode desirable
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 6
ip dhcp snooping trust
spanning-tree link-type point-to-point
exit

interface e0/3
switchport mode access
switchport access vlan 100
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

spanning-tree mode rapid-pvst

access-list 102 deny ip host 172.16.100.5 any

int e0/3
ip access-group 102
exit

mac access-list extended VACL_100

deny host aabb.cc00.0c30 any
exit

access-list extended VACLIP_100

deny ip host 172.16.100.5 any
exit

vlan access-map VACL-MAP

match ip address VACLIP_100
match mac address VACL_100
action drop
exit

vlan access-map VACL-MAP 20

action forward
exit

vlan filter VACL-MAP vlan-list 100

ip dhcp snooping
ip dhcp snooping vlan 100

no ip dhcp snooping information option

errdisable recovery interval 30

++++++++++++++++++++++++++++++++++++++++++++++++++++++++

ISP
ena
config t

ip route 0.0.0.0 0.0.0.0 219.50.0.1

*****
BORDE
*****

ena
config t

ipv6 unicast-routing

router eigrp AS50

address-family ipv4 autonomous-system 50
network 192.168.33.0 0.0.0.255
network 192.168.22.0 0.0.0.255
topology base
redistribute static metric 10000 100 255 1 1500
exit
address-family ipv6 autonomous-system 50
exit

access-list 10 permit 172.16.0.0 0.0.255.255

access-list 10 permit 192.168.0.0 0.0.255.255
ip nat inside source list 10 interface ethernet 0/1 overload

interface range ethernet 0/2-3

ip nat inside
exit

interface ethernet 0/1

ip nat outside
exit

ip dhcp excluded-address 172.16.5.1 172.16.5.3

ip dhcp excluded-address 172.16.6.1 172.16.6.3
ip dhcp excluded-address 172.16.7.1 172.16.7.3
ip dhcp excluded-address 172.16.8.1 172.16.8.3

ip dhcp pool VLAN2

network 172.16.5.0 255.255.255.0
default-router 172.16.5.1
dns-server 4.4.4.4
exit

ip dhcp pool VLAN3

network 192.168.6.0 255.255.255.0
default-router 172.16.6.1
dns-server 4.4.4.4
exit

ip dhcp pool VLAN4

network 172.16.7.0 255.255.255.0
default-router 172.16.7.1
dns-server 4.4.4.4
exit

ip dhcp pool VLAN5

network 172.16.8.0 255.255.255.0
default-router 172.16.8.1
dns-server 4.4.4.4
exit

ipv6 dhcp pool VLAN2-IPV6

address prefix 2018:DB8:ACAD:A::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN3-IPV6

address prefix 2018:DB8:ACAD:B::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN4-IPV6

address prefix 2018:DB8:ACAD:C::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ipv6 dhcp pool VLAN5-IPV6

address prefix 2018:DB8:ACAD:D::/64
dns-server 2018:ACAD:ACAD:4::4
exit

ip route 0.0.0.0 0.0.0.0 219.50.0.2

-----------------------------------
***
R3
***

ena
config t

ipv6 unicast-routing

int e0/2
no sh
exit

router eigrp AS50

address-family ipv4 autonomous-system 50

af-interface e0/2.2
passive-interface
exit

af-interface e0/2.3
passive-interface
exit

af-interface e0/2.4
passive-interface
exit

af-interface e0/2.5
passive-interface
exit
network 192.168.33.0 0.0.0.255
network 172.16.5.0 0.0.0.255
network 172.16.6.0 0.0.0.255
network 172.16.7.0 0.0.0.255
network 172.16.8.0 0.0.0.255

address-family ipv6 autonomous-system 50

af-interface e0/2.2
passive-interface
exit

af-interface e0/2.3
passive-interface
exit

af-interface e0/2.4
passive-interface
exit

af-interface e0/2.5
passive-interface
exit

af-interface e0/2
summary-address 2018:DB8::/42
exit
exit

**************************************
DHCP help apuntando al router de borde
**************************************

interface ethernet 0/2.2

ip helper-address 192.168.33.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:33::2
ipv6 enable6y
exit
interface ethernet 0/2.3
ip helper-address 192.168.33.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:33::2
ipv6 enable
exit

interface ethernet 0/2.4

ip helper-address 192.168.33.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:33::2
ipv6 enable
exit

interface ethernet 0/2.5

ip helper-address 192.168.33.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:33::2
ipv6 enable
exit

**************************************
Creación de subinterfaces en router RA
por la puerta de enlace E0/2
**************************************

interface ethernet 0/2.2

encapsulation dot1q 2
ip address 172.16.5.3 255.255.255.0
ipv6 address 2018:DB8:ACAD:A::3/64
exit

interface ethernet 0/2.3

encapsulation dot1q 3
ip address 172.16.6.3 255.255.255.0
ipv6 address 2018:DB8:ACAD:B::3/64
exit

interface ethernet 0/2.4

encapsulation dot1q 4
ip address 172.16.7.3 255.255.255.0
ipv6 address 2018:DB8:ACAD:C::3/64
exit

interface ethernet 0/2.5

encapsulation dot1q 5
ip address 172.16.8.3 255.255.255.0
ipv6 address 2018:DB8:ACAD:D::3/64
exit

*********************************************************
Configuracion de HSRP como primario en RA para el trafico
en ipv4 y vrrp para el trafico secundario ipv6
*********************************************************

FHRP version vrrp v3

interface e0/2.2
vrrp 20 address-family ipv4
address 172.16.5.1
preempt
priority 110
Exit
vrrp 20 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:A::1/64
priority 100
preempt
exit

interface e0/2.3
vrrp 30 address-family ipv4
address 172.16.6.1
preempt
priority 110
vrrp 30 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:B::1/64
priority 100
preempt
exit

interface e0/2.4
vrrp 40 address-family ipv4
address 172.16.7.1
preempt
priority 110
vrrp 40 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:C::1/64
priority 100
preempt
exit

interface e0/2.5
vrrp 50 address-family ipv4
address 172.16.8.1
preempt
priority 110
vrrp 50 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:D::1/64
priority 100
preempt
exit
*********************************************************
Timers cruzados HSRP Y VRRP // TRACK con ip sla para hsrp
y para vrrp monitoreo de interface
*********************************************************

interface e0/2.2
vrrp 20 address-family ipv4
track 1 decrement 25
vrrp 20 address-family ipv6
timers advertise 3000
exit

interface e0/2.3
vrrp 30 address-family ipv4
track 1 decrement 25
vrrp 30 address-family ipv6
timers advertise 3000
exit

interface e0/2.4
vrrp 40 address-family ipv4
track 1 decrement 25
vrrp 40 address-family ipv6
timers advertise 3000
exit
interface e0/2.5
vrrp 50 address-family ipv4
track 1 decrement 25
vrrp 50 address-family ipv6
timers advertise 3000
exit

ip sla 10
icmp-echo 4.4.4.4
frequency 5
ip sla schedule 10 life forever start-time now
track 1 ip sla 10

---------------------------------

R2

ena
config t

ipv6 unicast-routing

int e0/3
no sh
exit
router eigrp AS50
address-family ipv4 autonomous-system 50

af-interface e0/3.2
passive-interface
exit

af-interface e0/3.3
passive-interface
exit

af-interface e0/3.4
passive-interface
exit

af-interface e0/3.5
passive-interface
exit
network 192.168.22.0 0.0.0.255
network 172.16.5.0 0.0.0.255
network 172.16.6.0 0.0.0.255
network 172.16.7.0 0.0.0.255
network 172.16.8.0 0.0.0.255

address-family ipv6 autonomous-system 50

af-interface e0/3.2
passive-interface
exit

af-interface e0/3.3
passive-interface
exit

af-interface e0/3.4
passive-interface
exit

af-interface e0/3.5
passive-interface
exit

af-interface e0/3
summary-address 2018:DB8::/42
exit
exit

interface ethernet 0/3.2

ip helper-address 192.168.22.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:22::2
ipv6 enable
exit

interface ethernet 0/3.3

ip helper-address 192.168.22.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:22::2
ipv6 enable
exit

interface ethernet 0/3.4

ip helper-address 192.168.22.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:22::2
ipv6 enable
exit

interface ethernet 0/3.5

ip helper-address 192.168.22.2
ipv6 dhcp relay destination 2018:ACAD:ACAD:22::2
ipv6 enable
exit

interface ethernet 0/3.2

encapsulation dot1q 2
ip address 172.16.5.2 255.255.255.0
ipv6 address 2018:DB8:ACAD:A::2/64
exit
interface ethernet 0/3.3
encapsulation dot1q 3
ip address 172.16.6.2 255.255.255.0
ipv6 address 2018:DB8:ACAD:B::2/64
exit

interface ethernet 0/3.4

encapsulation dot1q 4
ip address 172.16.7.2 255.255.255.0
ipv6 address 2018:DB8:ACAD:C::2/64
exit

interface ethernet 0/3.5

encapsulation dot1q 5
ip address 172.16.8.2 255.255.255.0
ipv6 address 2018:DB8:ACAD:D::2/64
exit

*********************************************************
Configuracion de HSRP como secundario en RB para el trafico
en ipv4 y vrrp para el trafico primario ipv6
*********************************************************

FHRP version vrrp v3

interface e0/3.2
vrrp 20 address-family ipv4
address 172.16.5.1
preempt
priority 100
vrrp 20 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:A::1/64
priority 110
preempt
exit
interface e0/3.3
vrrp 30 address-family ipv4
address 172.16.6.1
preempt
priority 100
vrrp 30 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:B::1/64
priority 110
preempt
exit

interface e0/3.4
vrrp 40 address-family ipv4
address 172.16.7.1
preempt
priority 100
vrrp 40 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:C::1/64
priority 110
preempt
exit

interface e0/3.5
vrrp 50 address-family ipv4
address 172.16.8.1
preempt
priority 100
vrrp 50 address-family ipv6
address FE80::10:1 primary
address 2018:DB8:ACAD:D::1/64
priority 110
preempt
exit

*********************************************************
Timers cruzados HSRP Y VRRP // TRACK con ip sla para hsrp
y para vrrp monitoreo de interface
*********************************************************

interface e0/3.2
vrrp 20 address-family ipv6
track 2 decrement 25
timers advertise 3000
exit

interface e0/3.3
vrrp 30 address-family ipv6
track 2 decrement 25
timers advertise 3000
exit

interface e0/3.4
vrrp 40 address-family ipv6
track 2 decrement 25
timers advertise 3000
exit

interface e0/3.5
vrrp 50 address-family ipv6
track 2 decrement 25
timers advertise 3000
exit

ip sla 10
icmp-echo 8.8.4.4
frequency 5
ip sla schedule 10 life forever start-time now
track 1 ip sla 10
Exit

track 1 decrement 25

exit
-----------------------------------------------
****
MLS1
****

ena
config t

int e0/2
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
exit

interface vlan 5
ip address 172.16.5.5 255.255.255.0
no shutdown
exit

VLAN 2
NAME XD
EXIT

VLAN 3
NAME :)
EXIT

VLAN 4
NAME :D
EXIT

VLAN 5
NAME ADM
EXIT

interface range ethernet 0/0-1, ethernet 1/0-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
switchport nonegotiate
exit

interface range e0/0-1

channel-group 3 mode on
exit

interface range e1/0-1

channel-group 6 mode desirable
exit

interface range e1/2-3

channel-group 1 mode active
exit

spanning-tree mode mst

spanning-tree mst configuration
name REGIONC
revision 1
instance 2 vlan 2,3
instance 4 vlan 4,5
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 1
spanning-tree link-type point-to-point
exit

interface port-channel 3
spanning-tree link-type point-to-point
exit

interface port-channel 6
spanning-tree link-type point-to-point
exit

--------------------------------------
****
MLS2
****

ena
config t

int e0/3
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
exit

interface vlan 5
ip address 172.16.5.10 255.255.255.0
no shutdown
exit

VLAN 2
NAME XD
EXIT

VLAN 3
NAME :)
EXIT

VLAN 4
NAME :D
EXIT

VLAN 5
NAME ADM
EXIT

interface range ethernet 0/0-1, ethernet 1/0-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
switchport nonegotiate
exit

interface range e0/0-1

channel-group 3 mode on
exit

interface range e1/0-1

channel-group 5 mode active
exit

interface range e1/2-3

channel-group 2 mode desirable
exit

spanning-tree mode mst

spanning-tree mst configuration
name REGIONC
revision 1
instance 2 vlan 2,3
instance 4 vlan 4,5
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 72t

interface port-channel 2
spanning-tree link-type point-to-point
exit

interface port-channel 3
spanning-tree link-type point-to-point
exit

interface port-channel 5
spanning-tree link-type point-to-point
exit

--------------------------------------
****
ALS1
****
ena
config t

interface vlan 5
ip address 172.16.5.15 255.255.255.0
no shutdown
exit

VLAN 2
NAME XD
EXIT

VLAN 3
NAME :)
EXIT

VLAN 4
NAME :D
EXIT

VLAN 5
NAME ADM
EXIT

interface e0/2
switchport mode access
switchport access vlan 2
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

interface e0/3
switchport mode access
switchport access vlan 3
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

interface range e0/0-1, e1/0-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
switchport nonegotiate
exit

interface range e0/0-1

channel-group 4 mode on
exit

interface range e1/0-1

channel-group 6 mode desirable
exit

interface range e1/2-3

channel-group 2 mode desirable
exit

spanning-tree mode mst

spanning-tree mst configuration
name REGIONC
revision 1
instance 2 vlan 2,3
instance 4 vlan 4,5
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 2
spanning-tree link-type point-to-point
exit

interface port-channel 4
spanning-tree link-type point-to-point
exit

interface port-channel 6
spanning-tree link-type point-to-point
exit
--------------------------------------
****
ALS2
****

ena
conf t

interface vlan 5
ip address 172.16.5.20 255.255.255.0
no shutdown
exit

VLAN 2
NAME XD
EXIT

VLAN 3
NAME :)
EXIT

VLAN 4
NAME :D
EXIT

VLAN 5
NAME ADM
EXIT

interface e0/2
switchport mode access
switchport access vlan 4
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

interface e0/3
switchport mode access
switchport access vlan 5
switchport nonegotiate
switchport port-security
switchport port-security maximum 1
switchport port-security violation shutdown
spanning-tree portfast
spanning-tree bpduguard enable
exit

interface range e0/0-1, e1/0-3

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 2,3,4,5
switchport nonegotiate
exit
interface range e0/0-1
channel-group 4 mode on
exit

interface range e1/0-1

channel-group 5 mode active
exit

interface range e1/2-3

channel-group 1 mode active
exit

spanning-tree mode mst

spanning-tree mst configuration
name REGIONB
revision 1
instance 2 vlan 2,3
instance 4 vlan 4,5
exit

spanning-tree mst max-age 10

spanning-tree mst hello-time 1
spanning-tree mst forward-time 7

interface port-channel 1
spanning-tree link-type point-to-point
exit

interface port-channel 4
spanning-tree link-type point-to-point
exit

interface port-channel 5
spanning-tree link-type point-to-point
exit

***************************
#sh ip arp
#sh standby
#sh standby brief
#sh inter status
#sh run int po1
#sh etherchannel summary
#sh ip eigrp nei
#sh ip route
#sh ip int brief
#sh ip sla summary
#sh track 1
#sh ip dhcp pool
#sh ip dhcp binding
#sh ipv6 dhcp pool
#sh ipv6 dhcp binding
****************************