CCNP TSHOOT 300-135 Ticket 044
Previous Next
Download Lab: GNS3
Download Lab: GNS3
Prerequisites:
Cisco IOSv (vios-adventerprisek9-m.vmdk.SPA.156-2.T)
Cisco IOSvL2 (vios_l2-adventerprisek9-m.03.2017.qcow2)
GNS3 AAA Server Download
Note:
Since prerequisite for these labs are Cisco VIRL images, Frame Relay Cloud in original topology from the Cisco will be replaced by IOSvL2 switch and configured appropriately to imitate sub-interfaces for the point-to-point links. Access to the Cloud not available. All interfaces on the Cloud are configured as 802.1q Trunk, permitting VLAN 12,23,34.
Objectives:
New security policy states that users within the same subnet should not be able to communicate. Junior network technician attempted to implement this policy but fails to do so properly, she comes to you for assistance, she explains that in order to prevent clients from accessing each other laptops' resources, she used cisco feature called protected port, later when she tried to ping ip address of the client2 from the client1 it was successful. Please confirm the issue and implement the proper solution.
Topology:
Instruction:
Before you start troubleshooting make sure that Clients obtained IP information from DHCP server or investigate the cause of DHCP failure if it is the part of the problem-solving effort.
Determine the cause of the problem.
Implement a solution to resolve the problem.
Validation:
When Client1 will not ping Client2 then you solved the problem.
Cisco IOSv (vios-adventerprisek9-m.vmdk.SPA.156-2.T)
Cisco IOSvL2 (vios_l2-adventerprisek9-m.03.2017.qcow2)
GNS3 AAA Server Download
Note:
Since prerequisite for these labs are Cisco VIRL images, Frame Relay Cloud in original topology from the Cisco will be replaced by IOSvL2 switch and configured appropriately to imitate sub-interfaces for the point-to-point links. Access to the Cloud not available. All interfaces on the Cloud are configured as 802.1q Trunk, permitting VLAN 12,23,34.
Objectives:
New security policy states that users within the same subnet should not be able to communicate. Junior network technician attempted to implement this policy but fails to do so properly, she comes to you for assistance, she explains that in order to prevent clients from accessing each other laptops' resources, she used cisco feature called protected port, later when she tried to ping ip address of the client2 from the client1 it was successful. Please confirm the issue and implement the proper solution.
Topology:
Instruction:
Before you start troubleshooting make sure that Clients obtained IP information from DHCP server or investigate the cause of DHCP failure if it is the part of the problem-solving effort.
Determine the cause of the problem.
Implement a solution to resolve the problem.
Validation:
When Client1 will not ping Client2 then you solved the problem.
Comments
Post a Comment