CCNA EIGRP LAB Question
Question
After adding R3 router, no routing updates are being exchanged between R3 and the new location. All other inter connectivity and Internet access for the existing locations of the company are working properly.
The task is to identify the fault(s) and correct the router configuration to provide full connectivity between the routers.
Access to the router CLI can be gained by clicking on the appropriate host. All passwords on all routers are cisco.
IP addresses are listed in the chart below.
| R1 Fa0/0: 192.168.77.33 S1/0: 198.0.18.6 S0/1: 192.168.60.25 S0/0: 192.168.36.13 |
R2 Fa0/0: 192.168.60.97 Fa0/1: 192.168.60.113 S0/0: 192.168.36.14 |
| R3 Fa0/0: 192.168.77.34 Fa0/1: 192.168.60.65 Fa1/0: 192.168.60.81 |
R4 Fa0/0: 192.168.60.129 Fa0/1: 192.168.60.145 S0/1: 192.168.60.26 |
Answer and explanation
(Note: If you are not sure how EIGRP works, please read my EIGRP tutorial: http://www.9tut.com/eigrp-routing-protocol-tutorial. Note: You can download this sim to practice here: http://www.9tut.com/download/9tut.com_CCNA_EIGRP_sim_question.zip)
We should check the configuration of the new added router first because it does not function properly while others work well. From the command line interface of R3 router, enter the show running-config command
From the output above, we know that this router was wrongly configured with an autonomous number (AS) of 22. When the AS numbers among routers are mismatched, no adjacency is formed.
(You should check the AS numbers on other routers for sure)
To solve this problem, we simply re-configure router R3 with the following commands:
R3>enable (you have to enter cisco as its password here)
R3#configure terminal
R3(config)#no router eigrp 22
R3(config)#router eigrp 212
R3(config-router)#network 192.168.60.0
R3(config-router)#network 192.168.77.0
R3(config-router)#no auto-summary
R3(config-router)#end
R3#copy running-config startup-config
Check R1 router with the show running-config command:
Notice that it is missing a definition to the network R3. Therefore we have to add it so that it can recognize R3 router
R1>enable (you have to enter cisco as its password here)
R1#configure terminal
R1(config)#router eigrp 212
R1(config-router)#network 192.168.77.0
R1(config-router)#end
R1#copy running-config startup-config
Now the whole network will work well. You should check again with ping command from router R3 to other routers!
Modifications:
Maybe in this EIGRP Sim you will see the “passive-interface …” command somewhere in R1 configuration. If the link between R1 to R2; or R1 to R3; or R1 to R4) routers has the “passive interface” then we have to remove it with the “no passive-interface …” command because it prevents EIGRP update from being sent on that interface. But if the “passive interface” is applied to the link between R1 and ISP router like this:
R1:
!
router eigrp 212
passive-interface s1/0
!
then we just leave it. Don’t use the “no passive-interface s1/0″ on R1 because the link between R1 & ISP doesn’t need EIGRP to run on it. A static route from R1 to ISP & “ip default-network” command in R1 are correct so that all the routers (R1, R2, R3, R4) can access the Internet.
(Note: The “ip default-network” command in R1 will advertise the static route of R1 (to go to the Internet) to other routers (R2,R3,R4) so that they can access the Internet too). In the exam you will see these lines in R1 configuration:
!
ip default-network 198.0.18.0
ip route 0.0.0.0 0.0.0.0 198.0.18.5
!
If you want to learn more about “ip default-network” command please read: http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080094374.shtml
I read recent comments and realized that you will see the “passive-interface” in the link between R1 & ISP router so just leave it.
Note: Also some readers confuse about if we should use the wildcard masks on the “network” statements under EIGRP process or not. For example should we use:
router eigrp 212
network 192.168.77.0 0.0.0.3
The answer is: we can use wildcard masks or not, it does not matter. Not having a wildcard mask does not make the routes conflicting. The “network …” command in EIGRP (and OSPF, RIP) does not means “advertise this network” but means “If I has interface(s) belongs to this network please turn on EIGRP on that interface. Therefore when you don’t use wildcard mask EIGRP will turn on EIGRP on all interfaces that belongs to the network you specify in the “network …” command.
You should only use wildcard mask on EIGRP if you have 2 or more interfaces that belong to the same major networks but you don’t want to run EIGRP on all of them. For example if your router has 2 interfaces whose IP addresses are 192.168.30.1/28 and 192.168.30.17/28 but you only want to run EIGRP on the first interface, you can type “network 192.168.30.0 0.0.0.15″ under EIGRP process.
Other lab-sims on this site:
CCNA Configuration SIM Question (RIPv2 SIM)
hi fox,, i got it in my exam today also,, and did it with this command
access-list 100 permit tcp host 192.168.186.3 host 172.22.243.23 eq 80
access-list 100 deny ip host 192.168.186.3 host 172.22.243.23
access-list 100 deny ip any host 172.22.243.23
access-list 100 permit ip any any
int f0/1
ip access-group 100 out
i guess this right way
hi guys this link http://www.9tut.com/download/9tut.com_CCNA_EIGRP_sim_question.zip does not work on packet tracer v 5.3.1, what to do ? any help please
hi faisal,, download packet tracer 6.. It will work perfectly or 5.3.3
for eigrp? do we need to ping all interfaces on all the routers or is it just ok to ping the interfaces from R1 to R3?
Having trouble removing the passive interface on the sim 2 for eigrp. I thought “no passive-interface s0/1″ would do the trick. Help is appreciated :)
NM, I guess that’s not the correct thing to do. When do I want to remove a passive interface and will I most likely need to on the exam?
Do I need these lines in the real exam?
!
ip default-network 198.0.18.0
ip route 0.0.0.0 0.0.0.0 198.0.18.5
!
helo im taking the exam again,i heard that if you re-writing you get a Nat lab instead of Acl,hw far true is that
download latest dumps from
9 t u t . w e e b l y . c o m
jimmy,, no you dont need it,, in exam you will saw it in the router connected with ISP when u do show running-config.. But dont worry just leave it,,
@wang,, for ur points,, ping the whole network to collect the full mark bro..thanks
@tinz,, no bro thats not true.. I took exam in 25/9,, some also took at 26/9 but lap were acl2, vtp, eigrp,, thats i knw
@waymond,,, you will see this passive-interface in s0/1 that connected to the ISP,,but its not problem,,if u see this passive in any interface between routers then u need to remove it,,but it its in interface btween router and isp just leave it,,be careful and ping all routers
guys focus in —> how networks work@ ip addressing @vlan @vtp also dnt forget the examcollection acme and karvin,, most questions from there @lap sim with modification and be careful for the tricks in questions,, thats all u need
Hi guys, am taking exam in 1 hour, just to say thanks for everything, i didnt study enough but you guys are awesome, if i dont pass, i ll try again in 15-20 days.
@predrag,, pray allah all u need bro :)
Passed today with 986. Got EIGRP, ACL2 and VTP sim again same as last month when I failed.
EIGRP sim needed R3 AS number changed to match others and new network added on R1
All four routers had console connections this time but could only get into configure mode on R1 and R3 which was a giveaway that no changes were reqd on R2 and R4. Once the network was added on R1 the eigrp adjacency came up and all routers pingable.
The ACL2 sim was permit HostD www access to Finance Web server, deny HostD other access to Finance web server, deny other core/LAN host access to Finance web server and then allow all other access to the public web server. Definitely permit ip any any works for last ACE entry.
VTP sim was as described here.
Thanks to 9TUT and Sekhar (exam collections for dumps) most questions were familiar.
@AD is this the correct ACL?
access-list 100 permit tcp host host eq 80
access-list 100 deny ip any host
access-list 100 permit ip any any
I am taking exam tomorrow gyáááááá
I just passed the CCNA exam 1 hour ago. 894/1000.
I read Sybex book and practiced on #ExamCollection dumps + 9tut labs.
Labs were VTP, ACL, EIGRP.
Thanks and all the best to everyone. :)
I just put it to bed with 1000/1000 a few hours ago,
Thank you JESUS
thanks to 9tut, examcollection.com, spike, sekhar, acme, todd lammle, CBTNuggets.
i had EIGRP, VTP, ACL 2,
I wanna lay down a few things concerning sims
EIGRP- the eigrp number was 122, so dont crame and also there was a passive interface and default route on R1 router to ISP , i tried to undo the passive cause i wasnt able to ping ISP from R3 ,but i couldnt so i left it like it is ,i guess i was right
VTP- there is a bug in show vtp status because the info”… last modified by x.x.x.x” is not displayed at first, so i wrote the command again and this second time the information of “last modified” is displayed on the output of the previous command.
ACL 2- it was a bit tricky cause they asked that,host D, not C as here, to be able to access the web of finance server, then all other access of host d to finance server denied, nobody should be able to access finance server meaning core and other hosts, and the last was core and the hosts can access public web server( and the ip address of public web server was given). it is tempting to use permit ip any host x.x.x.x for allowing all users to use the public web server cause ip addr is given but i used permit ip any any, and i was right
goodluck to you all
@omer Thank you for that information!
@Jimmy
I think its the correct ACL. I’m taking tommorow as well, so good luck everyone!
thanks to 9tut , i passed ccna exam with 960/1000 ….
Got EIGRP with same scenario but different IP addresses and damn yeah there was passive interface
passive interface s1/0 but it was with the ISP as S1/0 is connected to ISP.
So all I did with that is
on Interior
Interior>en
Password#cisco
Interior# conf t
Interior(config)#no router eigrp 22 (as it was having 22 while the eigrp given was 212)
Interior(config)#router eigrp 212
Interior(config)#network (provide the missing networks here as per the provided IP Addresses
Interior(config)#network
Interior(config)#end
then goto the console of perimeter do the same configurations you will find the definitions to networks of Interior missing add it and as soon as you add it KA-BOOM
you are good to go and then you must be able to ping the ISP. that’s all
what does that mean?
Access to the router CLI can be gained by clicking on the appropriate host
should i access to the router directly or to access the router via host?
please help
@ Faisal – On 9tut you click on the router you want to configure to get to the CLI – Command Line Interface (you cannot configure from the PCs on 9tut) – But in the real exam, you click on the host (PC) connected to the router you want to configure and you will get to the CLI.
I test tommorrow i need help with eigrp asap i understand just a little confused please email me so i can have a better understanding jasonbrowdy@yahoo.com
i have testing tommorrow can anybody please help me with eigrp i would appreciate it. Please text me 954-479-1158
Passed my 640-802 yesterday with passing score of 947/1000 used spike 662q and acme for my dumps and 9tut for lab. All are valid dumps and labs are almost all the same
Just some pointers:
In VTP my first show vtp status command did not show where vlan propagated upon issuing show vtp status again the the source of vlan have revealed itself on the first command that i have typed but still nowhere to be found on the new command that i have did.. So tip if this happen do type vtp status twice then check the first one again to show where vlan originated..
In EIGRP wrong AS on the new router ( it was called Perimeter router on my exam) was AS 22 correct AS is 221… All routers have host pc for console.. Only weird thing on my eigrp is that i need to input two Network on central router unlike in 9tut Lab.
First i need to delete old eigrp as number in the Perimiter router then input the correct AS number 221 then add the 2 network that should be present in the new router.. Upon doing that i also need to input TWO network in the central router because upon checking on central routers EIGRP routing it wasnt showing both network that i previously added on the new router..
Make sure ping all interface from all routers ex. Router 1 to 2 interfaces Router 1 to 3, Router 1 to the new Routers interfaces make sure all have successful ping then dont forget to save your configuration..
TAB did not work for when i needed it so might as well memorize all needed commands, or if your exam center provides you with a pen and scratch paper (sometimes whiteboard and pen) write down all the commands tha you remember on your scratch before you start your tutorial.
ACL is 100% the same as Labs here only tip i can get is practice all ACL2 scenarios. Final advice i can give is relax before you take your exam i was reading 9Gag few mins bef my exam just to calm my nerves heh Bring some candies or chewing gum to help get some sugar boost in your system chewing gum helps also by releasing some stress.. Just Relax exam is really easy if you have read 9tut and have a valid dump. Good luck exam takers!!
@ Jellowpy congrats. Does Central Router corresponds to R1 in 9tut and Perimeter corresponds to R3?
Direct access into the Router is disabled as you do in Packet Tracer.In the exams you can ONLY gain access to the Router by clicking on the PC/Host attached to it.
Goodluck.
Hope that helps
Also note that the “SPACE BAR” replaces your “TAB-KEY” in the real Exam.
If it doesn’t work for you; Sorry it did for me
Hello guys,
I went for CCNA exam today got ACL2 same to same as here apart from host C was host A; EIGRP lab was same to same make sure you do check on all PCs the web browser to both server and when done do the same. There is the passive interface but just ignore it and leave it as it is. for VTP lab I got the 5 questions out from here and where it asked to choose the root switch I just put switch 2 there lolll since everything was the same and even the IP address!!
I want to be very honest I did the CCNA completely in less than 1 month and on top I go to work.. At first I studied the CBT nuggets video for both ICND1 and ICND2 then went for the ACME dumps but didnt know anything so i took the time n studied the chapters where i was having issues in Todd book. Then went back for the dumps. In ACME dumps there are 10 exam papers i did all of them atleast three times. I studied the labs for NAT, VTP, EIGRP AND ACLS only (ONLY EIGRP ACLS2 AND VTP CAME OUT) one day before going for the exam. AND HERE I AM WITH 1000/1000.
TIP :- DO NOT LEARN WHERE THE ANSWERS ARE BUT INSTEAD TRY TO UNDERSTAND WHY ITS THE ANSWER. ALWAYS MAKE GOOD USE OF GOOGLE!!
CCNA PASSED >> GOING FOR CCNP
THANKS A LOT GOD, MY FAMILY , 9TUT, ACME, CBTNUGGETS AND TODD.
just completed the exam with 986.
in eigrp lab i was able to ping all routers but could not ping the wan ip.
default network and default route were set in the perimeter router. wan link was up. but still i couldnt ping the ISP. what could be the reason?
completed yesterday 894. Thanks to all.
Got eigrp sim… changed the AS number…after that eigrp neighbors established..but i couldnt ping isp end wan ip from new installed router. then tried ping from main router which connected with isp but still not.but ser1/0 interface connected with isp up.
@anonymous
Yes central ormain router same as R1 in 9tut and perimeter as the newly added router.. Dont forget to ping all network to make sure that all routers are received routing updates.. This is supposedly one of the easiest lab but if something changed fr. 9tuts lab example it might ratle ur nerves heh
I had passed with 947points.
LABS same as 9tut:
ACL2
access-list 100 permit tcp host 192.168.33.3 host 172.22.242.23 eq 80
access-list 100 deny ip any host 172.22.242.23
access-list 100 permit ip any any
VTP (fa0/4 in vlan33, write two times show vtp status)
EIGRP (ping ISP doesn’t work) but I have max point.
I get some new question. I can’t remember exactly but connect with dhcp ip problem and so on…
Thanks my family and girlfriend and 9tut and Spike!!
I has passed yesterday!!!! thanks 9tut, it helped a lot, but I recommend the topical study hard because some questions may be similar but not the same, is very important to understand the reason for the answers!! again thanks!!!
Congrats Guys.
Will be taking the CCNA in less than 30mins from now
Just passed my ccna! 50 questions in 90 mins? Is it same to everyone? My booking says 110 mins.
3 Labs – EIGRP, ACL2 and VT and questions from 9tut/sehkhar/todd lam book with slight changes.
ACL2:
1. Allow host C to access HTTP on Finance svr
2. Block Host C to access any other services on Finance Server
3. Block All other LAN and Core elements to connect F.Server
4. Allow full access to Public and other core services for All
Access-list 100 permit tcp host 192.168.33.3 host 172.22.149.19 eq www
Access-list 100 deny ip any host 172.22.149.19
Access-list 100 permit ip any any
int f0/1
ip access-group 100 out
EIGRP:
New router ‘central2’ connect to ‘cerntral1’ find fault and allow routing b/w all routers, ‘Central2’ hasn’t have access to ISP at this stage. (means your ping test to ISP will fail … so no issues )
Area: 112
First: sh run on Central2 -> remove incorrect area 22 -> now define eigrp with 112 and add networks
Second: add missing network onto Central1 to establish adjacency b/w central2 & central1 … cmd = router eigrp 112 -> network 192.168.33.0
Now test connectivity b/w rotuers using PING cmd
VTP Q:
1. in my case, swAC3 was root bridge for forwarding vtp info – local switch, the ip was 192.168.1.250
2. Tell modal of VLAN-R1 – 2620
3. asked to tell mac address for an ip, i used command show mac address-table instead of SHOW MAC-ADDRESS-TABLE, so carefull
4. what is default gateway IP for host connect to port fa0/4, it was VLAN 22 –Server, and IP is 192.168.22.254
Hi folks I passed the ccna-200120 in about 2hrs ago with 931/1000. Labs were Eigrp, ACL2, and ACL1. Everything same as has been said here. please prepare and prepare well and that’s it. I finished in about 40mins. Study every modification said here and you will be fine. Am taking the CCIE written in about 2wks time. Thanks y’all
I passed today 933/1000!!!! thanks 9tut,
@omer congrats about your exam , my exam in 30 so i wanna to ask about if the labs are the same acl2, vtp, eigrp or i must studing all labs cuz it’s not fixed to have the same labs in my exam ?!
@ayaa yes the lap is eigrp, acl2, vtp,, dnt worry many confirm it too after my exam :),, good luck
please read well and focus on how networks work, ip addressing, vlan, vtp and examcollection dumz (karvin and acme) good luck for all
thumbs up all, i am writing my exams in some hours from now, i believe and trust God to smash it.
Passed today with 1000/000 thanks 9tut!!!
Yesterday friday september 27. I got certified in CCNA. I think is my biggest accomplishment and I wanna thank 9tut for all its help. Got a 947! For you who wanna take it these last few day of 802 640. The exam is EASY. Labs were the same everyone talks about vtp eigrp acls2. All of you, study these labs and questions. You gonna pass for sure.
hi guys ! taking my exam tomorrow which one is correct ?
access-list 100 permit tcp host 192.168.33.3 host 172.22.224 23. eq80
access-list 100 deny tcp any host 172.22.224 23. eq80
or
access-list 100 permit ip host 192.168.33.3 host 172.22.224 23. eq80
access-list 100 deny ip any host 172.22.224 23. eq80
@ Jahon you cannot have a period after the end of the IP and must have a space between eq and 80. Also the last line is totally wrong. You must have TCP after deny/permit if it ends with eq {port#} And then again it all depends on what the question ask. This would work
access-list 100 permit tcp host 192.168.33.3 host 172.22.224 23 eq 80
access-list 100 deny ip any host 172.22.224 23
access-list 100 permit tcp host 192.168.33.3 host 172.22.224 23 eq 80
access-list 100 deny tcp any host 172.22.224 23 eq 80