diff --git a/INSTRUCTIONS.md b/INSTRUCTIONS.md index dbbb58b..ec971fb 100644 --- a/INSTRUCTIONS.md +++ b/INSTRUCTIONS.md @@ -14,12 +14,12 @@ r1.net.tjas ``` +! version 12.4 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! -! hostname r1.net.tjas ! boot-start-marker @@ -62,27 +62,35 @@ interface FastEthernet0/1.10 description "TINU - INTERNET" encapsulation dot1Q 10 ip address 192.168.1.1 255.255.255.224 + ip access-group 10 out ip helper-address 192.168.2.10 + ip nat inside no snmp trap link-status ! interface FastEthernet0/1.20 description "JUVA - INTRA" encapsulation dot1Q 20 ip address 192.168.2.1 255.255.255.224 + ip access-group 20 out ip helper-address 192.168.2.10 + ip nat inside no snmp trap link-status ! interface FastEthernet0/1.30 description "AITO - TOIMISTO" encapsulation dot1Q 30 ip address 192.168.3.1 255.255.255.224 + ip access-group 30 out ip helper-address 192.168.2.10 + ip nat inside no snmp trap link-status ! interface FastEthernet0/1.69 description "SIVE - HALLINTA" encapsulation dot1Q 69 ip address 192.168.69.1 255.255.255.192 + ip access-group 69 in + ip access-group 69 out ip helper-address 192.168.69.20 no snmp trap link-status ! @@ -94,10 +102,43 @@ interface GigabitEthernet0/0/0 ip classless ! ip http server +ip nat inside source list 1 interface FastEthernet0/0 overload ! +access-list 1 permit 192.168.1.0 0.0.0.31 +access-list 1 permit 192.168.2.0 0.0.0.31 +access-list 1 permit 192.168.3.0 0.0.0.31 +access-list 10 deny 192.168.0.0 0.0.255.255 +access-list 10 permit any +access-list 20 permit 192.168.2.0 0.0.0.31 +access-list 20 deny 192.168.0.0 0.0.255.255 +access-list 20 permit any +access-list 30 permit 192.168.2.10 +access-list 30 permit 192.168.3.0 0.0.0.31 +access-list 30 deny 192.168.0.0 0.0.255.255 +access-list 30 permit any +access-list 69 permit 192.168.69.0 0.0.0.63 ! control-plane ! +banner motd ^C + + + + .-') _ ('-. .-') + ( OO) ) ( OO ).-. ( OO ). + / '._ ,--. / . --. /(_)---\_) + |'--...__) .-')| ,| | \-. \ / _ | + '--. .--'( OO |(_|.-'-' | |\ :` `. + | | | `-'| | \| |_.' | '..`''.) + | | ,--. | | | .-. |.-._) \ + | | | '-' / | | | |\ / + `--' `-----' `--' `--' `-----' + + + PVJJK 1.VOS NIINISALO + r1.net.tjas + +^C ! line con 0 line aux 0 @@ -113,11 +154,13 @@ end s1.net.tjas ``` hostname "s1.net.tjas" +ip default-gateway 192.168.1.1 snmp-server community "public" Unrestricted vlan 1 name "DEFAULT_VLAN" - untagged 1-52 + untagged 4-52 ip address dhcp-bootp + no untagged 1-3 exit vlan 10 name "TINU" @@ -140,6 +183,24 @@ vlan 69 tagged 1-3 exit ip authorized-managers 192.168.69.20 255.255.255.255 +banner motd " + + + .-') _ ('-. .-') + ( OO) ) ( OO ).-. ( OO ). + / '._ ,--. / . --. /(_)---\_) + |'--...__) .-')| ,| | \-. \ / _ | + '--. .--'( OO |(_|.-'-' | |\ :` `. + | | | `-'| | \| |_.' | '..`''.) + | | ,--. | | | .-. |.-._) \ + | | | '-' / | | | |\ / + `--' `-----' `--' `--' `-----' + + + PVJJK 1.VOS NIINISALO + s1.net.tjas + +" ip ssh password manager ``` @@ -147,16 +208,83 @@ password manager s2.net.tjas ``` hostname "s2.net.tjas" +interface 3 + disable +exit +interface 4 + disable +exit +interface 5 + disable +exit +interface 6 + disable +exit +interface 7 + disable +exit +interface 8 + disable +exit +interface 9 + disable +exit +interface 10 + disable +exit +interface 11 + disable +exit +interface 12 + disable +exit +interface 13 + disable +exit +interface 14 + disable +exit +interface 15 + disable +exit +interface 16 + disable +exit +interface 17 + disable +exit +interface 18 + disable +exit +interface 19 + disable +exit +interface 20 + disable +exit +interface 21 + disable +exit +interface 22 + disable +exit +interface 23 + disable +exit +interface 24 + disable +exit +ip default-gateway 192.168.2.1 snmp-server community "public" Unrestricted vlan 1 name "DEFAULT_VLAN" - untagged 25-28 + untagged 3-28 ip address dhcp-bootp - no untagged 1-24 + no untagged 1-2 exit vlan 20 name "JUVA" - untagged 2-24 + untagged 3-24 ip address 192.168.2.2 255.255.255.224 tagged 1-2 exit @@ -165,7 +293,25 @@ vlan 69 ip address 192.168.69.12 255.255.255.192 tagged 1-2 exit -ip authorized-managers 192.168.69.20 255.255.255.255 +ip authorized-managers 192.168.69.20 +banner motd " + + + .-') _ ('-. .-') + ( OO) ) ( OO ).-. ( OO ). + / '._ ,--. / . --. /(_)---\_) + |'--...__) .-')| ,| | \-. \ / _ | + '--. .--'( OO |(_|.-'-' | |\ :` `. + | | | `-'| | \| |_.' | '..`''.) + | | ,--. | | | .-. |.-._) \ + | | | '-' / | | | |\ / + `--' `-----' `--' `--' `-----' + + + PVJJK 1.VOS NIINISALO + s2.net.tjas + +" ip ssh password manager ``` @@ -173,6 +319,40 @@ password manager s3.net.tjas ``` hostname "s3.net.tjas" +interface 2 + disable +exit +interface 3 + disable +exit +interface 4 + disable +exit +interface 5 + disable +exit +interface 6 + disable +exit +interface 7 + disable +exit +interface 8 + disable +exit +interface 9 + disable +exit +interface 10 + disable +exit +interface 11 + disable +exit +interface 12 + disable +exit +ip default-gateway 192.168.3.1 snmp-server community "public" Unrestricted vlan 1 name "DEFAULT_VLAN" @@ -182,9 +362,9 @@ vlan 1 exit vlan 30 name "AITO" + untagged 13-24 ip address 192.168.3.2 255.255.255.224 - tagged 1,13-24 - untagged + tagged 1 exit vlan 69 name "SIVE" @@ -192,7 +372,25 @@ vlan 69 ip address 192.168.69.13 255.255.255.192 tagged 1 exit -ip authorized-managers 192.168.69.20 255.255.255.255 +ip authorized-managers 192.168.69.20 +banner motd " + + + .-') _ ('-. .-') + ( OO) ) ( OO ).-. ( OO ). + / '._ ,--. / . --. /(_)---\_) + |'--...__) .-')| ,| | \-. \ / _ | + '--. .--'( OO |(_|.-'-' | |\ :` `. + | | | `-'| | \| |_.' | '..`''.) + | | ,--. | | | .-. |.-._) \ + | | | '-' / | | | |\ / + `--' `-----' `--' `--' `-----' + + + PVJJK 1.VOS NIINISALO + s3.net.tjas + +" ip ssh password manager ```