CCNA EIGRP LAB Question
Question
After adding R3 router, no routing updates are being exchanged between R3 and the new location. All other inter connectivity and Internet access for the existing locations of the company are working properly.
The task is to identify the fault(s) and correct the router configuration to provide full connectivity between the routers.
Access to the router CLI can be gained by clicking on the appropriate host. All passwords on all routers are cisco.
IP addresses are listed in the chart below.
| R1 Fa0/0: 192.168.77.33 S1/0: 198.0.18.6 S0/1: 192.168.60.25 S0/0: 192.168.36.13 |
R2 Fa0/0: 192.168.60.97 Fa0/1: 192.168.60.113 S0/0: 192.168.36.14 |
| R3 Fa0/0: 192.168.77.34 Fa0/1: 192.168.60.65 Fa1/0: 192.168.60.81 |
R4 Fa0/0: 192.168.60.129 Fa0/1: 192.168.60.145 S0/1: 192.168.60.26 |
Answer and explanation
(Note: If you are not sure how EIGRP works, please read my EIGRP tutorial: http://www.9tut.com/eigrp-routing-protocol-tutorial. Note: You can download this sim to practice here: http://www.9tut.com/download/9tut.com_CCNA_EIGRP_sim_question.zip)
We should check the configuration of the new added router first because it does not function properly while others work well. From the command line interface of R3 router, enter the show running-config command
From the output above, we know that this router was wrongly configured with an autonomous number (AS) of 22. When the AS numbers among routers are mismatched, no adjacency is formed.
(You should check the AS numbers on other routers for sure)
To solve this problem, we simply re-configure router R3 with the following commands:
R3>enable (you have to enter cisco as its password here)
R3#configure terminal
R3(config)#no router eigrp 22
R3(config)#router eigrp 212
R3(config-router)#network 192.168.60.0
R3(config-router)#network 192.168.77.0
R3(config-router)#no auto-summary
R3(config-router)#end
R3#copy running-config startup-config
Check R1 router with the show running-config command:
Notice that it is missing a definition to the network R3. Therefore we have to add it so that it can recognize R3 router
R1>enable (you have to enter cisco as its password here)
R1#configure terminal
R1(config)#router eigrp 212
R1(config-router)#network 192.168.77.0
R1(config-router)#end
R1#copy running-config startup-config
Now the whole network will work well. You should check again with ping command from router R3 to other routers!
Modifications:
Maybe in this EIGRP Sim you will see the “passive-interface …” command somewhere in R1 configuration. If the link between R1 to R2; or R1 to R3; or R1 to R4) routers has the “passive interface” then we have to remove it with the “no passive-interface …” command because it prevents EIGRP update from being sent on that interface. But if the “passive interface” is applied to the link between R1 and ISP router like this:
R1:
!
router eigrp 212
passive-interface s1/0
!
then we just leave it. Don’t use the “no passive-interface s1/0″ on R1 because the link between R1 & ISP doesn’t need EIGRP to run on it. A static route from R1 to ISP & “ip default-network” command in R1 are correct so that all the routers (R1, R2, R3, R4) can access the Internet.
(Note: The “ip default-network” command in R1 will advertise the static route of R1 (to go to the Internet) to other routers (R2,R3,R4) so that they can access the Internet too). In the exam you will see these lines in R1 configuration:
!
ip default-network 198.0.18.0
ip route 0.0.0.0 0.0.0.0 198.0.18.5
!
If you want to learn more about “ip default-network” command please read: http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080094374.shtml
I read recent comments and realized that you will see the “passive-interface” in the link between R1 & ISP router so just leave it.
Note: Also some readers confuse about if we should use the wildcard masks on the “network” statements under EIGRP process or not. For example should we use:
router eigrp 212
network 192.168.77.0 0.0.0.3
The answer is: we can use wildcard masks or not, it does not matter. Not having a wildcard mask does not make the routes conflicting. The “network …” command in EIGRP (and OSPF, RIP) does not means “advertise this network” but means “If I has interface(s) belongs to this network please turn on EIGRP on that interface. Therefore when you don’t use wildcard mask EIGRP will turn on EIGRP on all interfaces that belongs to the network you specify in the “network …” command.
You should only use wildcard mask on EIGRP if you have 2 or more interfaces that belong to the same major networks but you don’t want to run EIGRP on all of them. For example if your router has 2 interfaces whose IP addresses are 192.168.30.1/28 and 192.168.30.17/28 but you only want to run EIGRP on the first interface, you can type “network 192.168.30.0 0.0.0.15″ under EIGRP process.
Other lab-sims on this site:
CCNA Configuration SIM Question (RIPv2 SIM)
Hi
anybody help me in solving Eigrp Sim.. i ping other router ,all are successful.but when i try to ping ISP ,failed .what is better way to solve it .
When i ping other router,what does mean of lines given below?
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.60.24, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/3/5 ms
@Hamid
!!!!! – means success
….. – failed
UUUU – untraceable
So you are fine with ping of router.
You do not get echo reply from IPS because you don’t have a default static route to it, and ISP do not have static routers back. Basically no routing connection between you and ISP. ISP is no participate in EIGRP at this case
Ta
Unreachable sorry iPhone autocorrect :)
Are you allowed to do “tab” and “?” for the commands during the labs? Do the routers allow shortcut commands and do they prompt you if there is an error in your command? Thank you
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/3/5 ms
What is meaning of this line
@Hamid
5/5 – means 5 packets sent and 5 received.
Round trip int time is the time required for a signal pulse or packet to travel from a specific source to a specific destination and back again. It took a maximum of 5ms. The minimum time was 2ms, with an average of 3ms.
ta
Hello guys i have an exam after 4 days if anyone have the question for simulation can u send to my email gabrielgundah@rocketmail.com thnx guys coz i always enjoy when i open 9tut. may God bless u all
Hi All,
can you tell me am I wrong, please?
Question 1 / drag na drop / top part of this page
http://www.9tut.com/ccna-drag-and-drop-4
Are you sure that IDS is matching “identifies malicious network traffic and alerts network personnel”? Is it really IDS description? I think it is IPS. In my opinion “ids” is only detecting malicious data but “ips” is detecting and alert.
Please correct me if I am wrong,please?
hello guys, i just want to know, does shift + ? works in the ccna exam?thanks a lot.
@Layer 13
Intrusion Detection System detects(and logs/alerts) traffic. This device is transparent for data flows anyway.
Intrusion Prevention System can also automatically block malicious packets due security issues.
tnx…for that one…!
anybody knows where to download packet tracer from … Cisco has hidden it as only academy student download … others are just trying to install cookie rather than providing the download … any reliable source … help is appreciated.
!ok … folks … just got the version 5.3.2 at
http://www.mediafire.com/?bl0b76swpbae2q8
unable to loacte 5.3.3 … the newest version …
help is appreciated!
Hi , did anyone applied exam twice ? will you get same labs in second exam ?
Hi, i have passed CCNA exam with 933 marks
EIGRP , VTP, ACL
thanks u 9tut.com
dumps from jehrico and bruce.
good luck to me ! :)
if you got statement “network x.x.x.x” and x.x.x.x is IP to ISP network then you should remove it with no network statement and add default route “ip route 0.0.0.0 0.0.0.0 y.y.y.y” and redistribute it.
y.y.y.y – next-hop to ISP.
x.x.x.x – network to ISP.
passed the exam with 894 points.made mistake in the access-list sim,instead of applying the access-list to Fa0/1 interface so that the access-list can filter traffic coming from both the LAN and the Core networks,i applied it to fa0/0 interface which resulted in me have 0%,so be careful especially in access-list questions
Access-list questions:The task is to create and apply a numberd access-list with no more than three statements that allow Host D should be able to use a web browser(HTTP)to access the Finance Web Server.
-Other types of access from host D to the Finance Web Server should be blocked
– All access from hosts in the Core or local LAN to the Finance Web Server should be blocked
-All hosts in the Core and local LAN should be able to access the Public Web Server
Solutions:
Router#configure terminal
Router(config)#access-list 100 permit tcp host x.x.x.x host x.x.x.x eq 80
-Other types of access from host D to the Finance Web Server should be blocked
– All access from hosts in the Core or local LAN to the Finance Web Server should be blocked
Router(config)#access-list 100 deny ip any host x.x.x.x
-All hosts in the Core and local LAN should be able to access the Public Web Server
Router(config)#access-list 100 permit ip any any
Apply this access-list to Fa0/1 interface (outbound direction)
Router(config)#interface fa0/1
Router(config-if)#ip access-group 100 out
Router(config-if)#end
Router#copy running-config startup-config
EIGRP Questions:the same as 9tut but they use home 1 and home 2
Home 2 just change the AS number from 22 to 122.nothing else
Home 1 just remove one network 192.168.96.0 and add a new network 192.168.88.0.The passive interface willnt be removed because because of link between home 1 and ISP.
VTP Questions
Remains the same as 9tut but small modifications like 1)using show mac address-table to find a port of a particular mac address
2)using show spanning-tree and show cdp neighbors to get the root bridge
3)Use of show vtp status.SWac3 revision no is higher than SwX so u have to replaced the vlan
4)Use of show vlan to get the default gateway of an interface
Try and go through examcollection.com especially 9tut,Jericho,Bruce and Collision
In the exam there is limited time so try and be fast so that time doesnt choke you,a sim may take you 30 minutes to resolve the issue like what happened to me in access-list today,i was just rushing the question because i was have 10 minutes left to 17 multiple choice questions and VTP sim
Goodluck in your exams
same figure of 9tut for eigrp
if i configure this in r1
ip default-network 198.0.18.0
ip route 0.0.0.0 0.0.0.0 198.0.18.5
then the 9tut says the other router r2 r3 r4 can access the internet too but when i ping from the router r2 r3 r4 to 198.0.18.5 the terminal connected to isp router i am not successful. I can see the default network n the ip route in only the main router R1 but this information is not seen in any of the other router. should i have to redisturbute it to other router r2 r3 r4 for access the internet. i am not able to ping if any want please help me writing this full configuration. my ex
am is on coming monday 30th july so please help me soon. please what should i do make me clear abt this. Thank you
help me out to solve eigrp
what up guys can i get command which are used for the adding redistribute to the route plzzzz
@Anonymous
apply the default route to R1 and the apply the eigrp to ISP the try ping from the router u will see
@z
What if optional passive interface statement exists for the interface to ISP?
Should I remove both passive interface and network statements from the config?
And then create default route to ISP and redistribute it with redistribute static statement.
So I have a question and will put below:
Router(config)#access-list 100 permit tcp host x.x.x.x host x.x.x.x eq 80 ( I need the host and IP of the Finance web server correct??
-Other types of access from host D to the Finance Web Server should be blocked
– All access from hosts in the Core or local LAN to the Finance Web Server should be blocked
Router(config)#access-list 100 deny ip any host x.x.x.x ( Is this the IP of the fincance web server??
-All hosts in the Core and local LAN should be able to access the Public Web Server
Router(config)#access-list 100 permit ip any any ( I dont need to put in IP of public web server here??
Apply this access-list to Fa0/1 interface (outbound direction) (Why do we do this?)
Router(config)#interface fa0/1
Router(config-if)#ip access-group 100 out
Router(config-if)#end
Router#copy running-config startup-config
Any help would be great! Thanks in advance.
how to know whether passive interface is there or not ?
@akshay londhe
typ the command show run to the router
By typing the command show ip protocols from the privillege exec mode
Hello all,
EIGRP sim….
in case where we have to take some network off of the R1 … can we use:
“no network [network address]”
OR
we have to delete all network first and add them again:
“no router eigrp 212″
“router eigrp 212″
“network ……..”
“network ……..”
Please help on that,
Thanks
@Layer13
Yes you can use no. Remember you can negate in all commands, just simply NO and command or statement
Cheers Mike!
I dont know have you noticed that but when you use packet tracer you can delete any of the networks on R1 by using “no network ….”. Dont know why. But if you add some network (just for training reason” you can delete it without any problem.
My day is tomorrow. Final countdown. Exam coming :)
mistake in writing …. use packet tracer you CAN’T delete any of the network on R1
@Layer13
Regarding Drag and Drop its still confusing (DS and IPS.) My native language is Ukrainian, im studying English only for 2,5 years, so hard to catch, but i think we have to use statement for IDS as
Its says “Not all functions are used” but we got 4 questions here, so must be 4 answers.
@Layer13
What ver of Packet Tracer you got? I can with no problem.
@Layer13
R1(config)#router eigrp 212
R1(config-router)#no networ
R1(config-router)#no network ?
A.B.C.D Network number
R1(config-router)#no network
Packet Tracer 5.3.0.0088
when I use:
no network ………
router is accepting that but after “show run” that network is still present in EIGRP 212
@Layer13
Strange. This is my output
R1(config-router)#no network 192.168.77.0
%DUAL-5-NBRCHANGE: IP-EIGRP 212: Neighbor 192.168.77.34 (FastEthernet0/0) is down: interface down
R1(config-router)#network 192.168.77.0
R1(config-router)#
%DUAL-5-NBRCHANGE: IP-EIGRP 212: Neighbor 192.168.77.34 (FastEthernet0/0) is up: new adjacency
When do you have your exam?
is it output when you have deleted network after you have finished EIGRP sim?
Try delete one of the networks before you start doing SIM.
My exam tomorrow :)
@Layer13
Still working. Make sure you typing right AS.
Exam well its big day:) Ready?>
Right, it’s working. Just realized on R1 there is 3 networks. Two of them starting on 192 and one 198. I taking 3rd one but instead of 198 I was using 192 :)
Never mind…this is only example of what concentration will need during exam :)
Am I ready? Well…. we will see tomorrow :)
@Layer13
For how long time did you preparing already?
Good luck to you, im taking my on 6th of August in London, will see. Dont forget to dive feedback))) you will be ok
Preparing did take me longer than normal (longer then people saying) because of my full time job. About 6 weeks in my case.
Just forgot to tell you….
Still not sure about that drag and drop question (IDS/IPS). I see many people had that question during their exams.
What is your suggestion? Leave IDS blank or stick IPS’s description to it?
@Layer13
You will be definitively fine. Good luck to you
This is the CCNA sim lab that I failed miserably last time! I managed to identify mismatch ASN in R3, but failed to realize missing network in R1 EIGRP config!!!!!!! I realized something was wrong as the show ip route command in R3 is missing the rest of the network. I had the wrong thinking that as the original network is fine before R3, I didn’t care to check R1 config. I ended up wasting a lot of time on that question and no need to say, failed the exam. I hope this question show up on tomorrow exam and I can make a glorious comeback.
Actually I remember now. One of R1 link to R2,3 or 4 do have the passive-interface command as mentioned above. Needless to say, I didn’t know I had to remove that line during last exam.
Hi all,
960/1000 today :)
All what you are saying here is true.
I had 3 sims: vtp, eigrp, acl.
EIGRP: passive interface only between R1 and ISP; one network not need and one missing; also wrong EIGRP 22 on R3.
ACL: standard
VTP: and there is suprise because the easiest SIM and I’ve lost points here. Why? Becasue I got confused on question from which switch SW3 received last update. Have used ”show vtp status” + ”show cdp neigbors detail” and I couldn’t find this IP address. After that I had problem on Q8 (see VTP sim). Well, I have used ”show mac address-table”+”show vlan”+”shoe interface trunk” and I have founded 3 interfaces but they asked me to give ONLY 2 answers. All three interfaces which I have founded was available in answers however they asked only for two. Strange but … passed :)
I had non drag-and-drop question (message for Mike: no IDS/IPS problem :) )
Good luck everybody!
Hi guys, I am enable to ping the s0/0 int on R2 from R3…. eventhough i completed the configurations…any advise?
correction “unable”