Академический Документы
Профессиональный Документы
Культура Документы
Overview
RIPv1 Limitations
Lab Topology
VLSM
Notice that the R1 and R3 routers contain VLSM networks and are sharing address space from the 172.30.0.0/16 major classful network.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 5
A loopback interface is a software-only interface that is used to emulate a physical interface. Like other interfaces, it can be assigned an IP address. Loopback interfaces are also used by other routing protocols, such as OSPF, for different purposes. Extra: Packets routed to the loopback interface are rerouted back to the router or access server and processed locally. IP packets routed out the loopback interface but not destined to the loopback interface are dropped. This means that the loopback interface serves as the Null 0 interface also.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com
Null interface
The address space represented by the static summary route 192.168.0.0/16 does not actually exist. In order to simulate this static route, we use a null interface as the exit interface. You do not need to enter any commands to create or configure the null interface. It is always up but does not forward or receive traffic. Traffic sent to the null interface is discarded. For our purposes, the null interface will serve as the exit interface for our static route. Extra: The Cisco IOS software supports a "null" interface. This pseudo-interface functions similarly to the null devices available on most operating systems. This interface is always up and can never forward or receive traffic; encapsulation always fails. The only interface configuration command that you can specify for the null interface is no ip unreachables. The null interface provides an alternative method of filtering traffic. You can avoid the overhead involved with using access lists by directing undesired network traffic to the null interface.
10
11
12
13
Use the Packet Tracer Activity to practice your router configuration skills, including RIPv1 configurations.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 14
RIPv1 is a classful routing protocol. It does not include the subnet masks in its routing updates. Therefore, RIPv1 cannot support discontiguous networks, VLSM, or Classless Inter-Domain Routing (CIDR) supernets.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 15
Because the subnet mask is not included in the update, RIPv1 and other classful routing protocols must summarize networks at major network boundaries.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 16
17
18
19
Because RIPv1 does not send the subnet mask in routing updates, it
cannot support VLSM. RIPv1 either summarizes the subnets to the classful boundary or uses the subnet mask of the outgoing interface to determine which subnets to advertise. H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 20
RIPv1 and other classful routing protocols cannot support CIDR routes
that are summarized routes with a smaller subnet mask than the classful mask of the route. RIPv1 ignores these supernets in the routing table and does not include them in updates to other routers.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 21
22
Use the Packet Tracer Activity in Simulation mode to see that updates are not sent across classful network boundaries with RIPv1. In RealTime mode, verify non-convergence with the show ip route ping debug ip rip.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 23
Configuring RIPv2
24
26
27
28
29
By default, RIPv2 automatically summarizes networks at major network boundaries, just like RIPv1.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 30
31
32
34
35
36
Use the Packet Tracer Activity to configure RIPv2, disable automatic summarization, and verify your configurations.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 37
RIPv2
Interface FastEthernet0/0 is configured to send and receive RIP v1 updates. FastEthernet0/1 is configured to send both version 1 and 2 updates. FastEthernet0/2 has no special configuration and therefore sends and receives version 2 by default.
ISP router rip redistribute static network 10.0.0.0 network 192.168.4.0 version 2 no auto-summary default-information originate ip route 207.0.0.0 255.0.0.0 null0 ip route 0.0.0.0 0.0.0.0 10.0.0.2 etherenet0
10.0.0.0/8
.1 .25 .1 e0
ISP
s0 s1 .21
192.168.4.24/30
192.168.4.20/30 172.30.200.32/28
Lo2
.26
s0
s0
.22
Lo1
172.30.200.16/28
172.30.2.0/24
Lo0 .1 SantaCruz1 .1 e0
SantaCruz2
.1 e0
Lo0 .1
172.30.110.0/24
172.30.1.0/24
172.30.100.0/24
39
40
41
One of the goals of Classless Inter-Domain Routing (CIDR) as stated by RFC 1519 is "to provide a mechanism for the aggregation of routing information." This goal includes the concept of supernetting. A supernet is a block of contiguous classful networks that is addressed as a single network.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 42
43
44
There are several ways to verify and troubleshoot RIPv2. Many of the same commands used for RIPv2 can be used to verify and troubleshoot other routing protocols. It is always best to begin with the basics: 1. Make sure all of the links (interfaces) are up and operational. 2. Check the cabling. 3. Check to make sure you have the correct IP address and subnet mask on each interface. 4. Remove any unnecessary configuration commands that are no longer necessary or have been replaced by other commands.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 45
Router#show ip route C C R R C C R C R R 172.30.0.0/16 is variably subnetted, 6 subnets, 2 masks 172.30.200.32/28 is directly connected, Loopback2 172.30.200.16/28 is directly connected, Loopback1 172.30.2.0/24 [120/2] via 192.168.4.21, 00:00:21, Serial0 172.30.1.0/24 [120/2] via 192.168.4.21, 00:00:21, Serial0 172.30.100.0/24 is directly connected, Ethernet0 172.30.110.0/24 is directly connected, Loopback0 192.168.4.0/30 is subnetted, 2 subnets 192.168.4.24 [120/1] via 192.168.4.21, 00:00:21, Serial0 192.168.4.20 is directly connected, Serial0 10.0.0.0/8 [120/1] via 192.168.4.21, 00:00:21, Serial0 207.0.0.0/8 [120/1] via 192.168.4.21, 00:00:21, Serial0
47
48
Router#debug ip rip RIP protocol debugging is on Router#01:23:34: RIP: received v2 update from 192.168.4.22 on Serial1 01:23:34: 172.30.100.0/24 -> 0.0.0.0 in 1 hops 01:23:34: 172.30.110.0/24 -> 0.0.0.0 in 1 hops Router# Includes mask 01:23:38: RIP: received v2 update from 192.168.4.26 on Serial0 01:23:38: 172.30.2.0/24 -> 0.0.0.0 in 1 hops multicast 01:23:38: 172.30.1.0/24 -> 0.0.0.0 in 1 hops Router# 01:24:31: RIP: sending v2 update to 224.0.0.9 via Ethernet0 (10.0.0.1) 01:24:31: 172.30.2.0/24 -> 0.0.0.0, metric 2, tag 0 01:24:31: 172.30.1.0/24 -> 0.0.0.0, metric 2, tag 0 01:24:31: 172.30.100.0/24 -> 0.0.0.0, metric 2, tag 0 01:24:31: 172.30.110.0/24 -> 0.0.0.0, metric 2, tag 0 01:24:31: 192.168.4.24/30 -> 0.0.0.0, metric 1, tag 0 01:24:31: 192.168.4.20/30 -> 0.0.0.0, metric 1, tag 0 <text omitted>
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com
49
50
51
The show ip rip database command to check summary address entries in the RIP database. These entries will appear in the database if there are only relevant child or specific routes being summarized. When the last child route for a summary address becomes invalid, the summary address is also removed from the routing table. Router#show ip rip database
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 52
The network statement does 2 things: 1. It enables the routing protocol to send and receive updates on any local interfaces that belong to that network. 2. It includes that network in its routing updates to its neighboring routers.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 53
Authentication
information transmitted between routers. RIPv2, EIGRP, OSPF, IS-IS, and BGP can be configured to authenticate routing information. This practice ensures routers will only accept routing information from other routers that have been configured with the same password or authentication information. Note: Authentication does not encrypt the routing table.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 54
Configuring authentication
Router(config)#key chain Romeo Router(config-keychain)#key 1 Router(config-keychain-key)#key-string Juliet The password must be the same on both routers (Juliet), but the name of the key (Romeo) can be different. Router(config)#interface fastethernet 0/0 Router(config-if)#ip rip authentication key-chain Romeo Router(config-if)#ip rip authentication mode md5 If the command ip rip authentication mode md5 is not added, the interface will use the default clear text authentication. Although clear text authentication may be necessary to communicate with some RIP v2 implementations, for security concerns use the more secure MD5 authentication whenever possible.
H c vi n m ng Cisco Bch Khoa - Website: www.ciscobachkhoa.com 55
Configuring authentication
56
57
MD5 Authentication
58
59
Summary
60