CCNAv3 Lab Guide Nixtrain-Agus Setiawan-PREVIEW

Daftar Isi
Lab 01. Basic - Navigasi Cisco IOS . ............................................................................................ 4

Lab 02. Basic - Cisco IOS Command Mode . ............................................................................... 9
Lab 03. Basic - Reset Cisco IOS Configuration . ........................................................................ 12
Lab 04. Basic - Configure Basic Cisco Router . .......................................................................... 15
Lab 05. Basic - Remote Access Telnet & SSH . ......................................................................... 19
Lab 06. Basic - Managing Configuration Files. ........................................................................... 24
Lab 07. Basic - Cisco Recovering Password . ............................................................................ 26
Lab 08. Basic - Cisco Discovery Protocol (CDP) . ...................................................................... 30
Lab 09. Basic - Link Layer Discovery Protocol (LLDP)............................................................... 33
Lab 10. Basic - Configure Loopback Interface & IPv4 Address .................................................. 37
Lab 11. Basic - Configure IPv6 Address on Cisco Router .......................................................... 40
Lab 12. Basic - Cisco IOS Scripting with TCL . ........................................................................... 44
Lab 13. Static Routing - Static Route . .............................................................................................
Lab 14. Static Routing - Default Route ...........................................................................................
Lab 15. Static Routing - Floating Static Route ................................................................................
Lab 16. Static Routing - Static Route for IPv6 .................................................................................
Lab 17. RIP - Basic Configuration. ..................................................................................................
Lab 18. RIP - Manual Summarization . ............................................................................................
Lab 19. RIP - Authentication . ..........................................................................................................
Lab 20. RIP - Passive Interface . .....................................................................................................
Lab 21. RIP - Static Neighbor . ........................................................................................................
Lab 22. RIP - Default-Information Originate ....................................................................................
Lab 23. RIP - RIPNG for IPv6 . ........................................................................................................
Lab 24. EIGRP - Basic Configuration . ............................................................................................
Lab 25. EIGRP - Neighbor, Topology & Routing Tables . ...............................................................
Lab 26. EIGRP - Manual Summarization ........................................................................................
Lab 27. EIGRP - Authentication . .....................................................................................................
Lab 28. EIGRP - Passive Interface . ................................................................................................
Lab 29. EIGRP - Static Neighbor . ...................................................................................................
Lab 30. EIGRP - IP Default Network. ..............................................................................................
Lab 31. EIGRP - Stub Area Network . .............................................................................................
Lab 32. EIGRP - Load Balancing Equal Cost Path . .......................................................................
Lab 33. EIGRP - Load Balancing Unequal Cost Path . ...................................................................
CCNA Lab Guide Nixtrain | 1

Lab 34. EIGRP - Manipulate Timers ...............................................................................................
Lab 35. EIGRP - Metric Calculation ................................................................................................
Lab 36. EIGRP - EIGRPv6 for IPv6 ................................................................................................
Lab 37. OSPF - Basic Configuration ...............................................................................................
Lab 38. OSPF - Neighbor, Database & Routing Tables . ................................................................
Lab 39. OSPF - Router-ID . .............................................................................................................
Lab 40. OSPF - Manual Summarization .........................................................................................
Lab 41. OSPF - Authentication . ......................................................................................................
Lab 42. OSPF - Passive Interface . .................................................................................................
Lab 43. OSPF - Static Neighbor . ....................................................................................................
Lab 44. OSPF - Default-Information Originate . ..............................................................................
Lab 45. OSPF - Multi Area. .............................................................................................................
Lab 46. OSPF - Router Type . .........................................................................................................
Lab 47. OSPF - LSA Type . .............................................................................................................
Lab 48. OSPF - Stub Area Network ................................................................................................
Lab 49. OSPF - Virtual Link . ...........................................................................................................
Lab 50. OSPF - Metric Calculation . ................................................................................................
Lab 51. OSPF - Manipulate Timers ................................................................................................
Lab 52. OSPF - OSPFv3 for IPv6 . ..................................................................................................
Lab 53. BGP - iBGP (Internal BGP) ................................................................................................
Lab 54. BGP - iBGP peering with Loopback Interface . ..................................................................
Lab 55. BGP - eBGP (External BGP) .............................................................................................
Lab 56. BGP - eBGP peering with Loopback Interface . .................................................................
Lab 57. BGP - Neighbor Adjacency States .....................................................................................
Lab 58. BGP - Weight Attribute . .....................................................................................................
Lab 59. BGP - Local Preference Attribute .......................................................................................
Lab 60. BGP - Route Reflector . ......................................................................................................
Lab 60. MPLS - Basic Configuration ...............................................................................................
Lab 61. MPLS - LDP Configuration.................................................................................................
Lab 62. MPLS - VPN - MP-BGP . ....................................................................................................
Lab 63. MPLS - VPN - VRF . ...........................................................................................................
Lab 64. MPLS - VPN - Route Redistribution ...................................................................................
Lab 65. DMVPN - Configure DMVPN .............................................................................................
Lab 66. DMVPN - Routing / Dynamic Mesh ....................................................................................
Lab 67. IP SLA Tracking - WAN Redundancy.................................................................................
Lab 68. DHCP - Configure DHCP Server .......................................................................................
Lab 69. DHCP - Configure DHCP Relay Agent. .............................................................................
Lab 70. DHCP - Configure DHCP Client .........................................................................................
Lab 71. ACL - ACL Standard . .........................................................................................................
Lab 72. ACL - ACL Standard (VTY Line) .......................................................................................
Lab 73. ACL - ACL Extended . .......................................................................................................
Lab 74. ACL - ACL Extended Troubleshooting . ............................................................................
Lab 75. NAT - NAT Static . ..............................................................................................................
Lab 76. NAT - NAT Dynamic . .........................................................................................................
Lab 77. NAT - Port Address Translation (PAT) . .............................................................................
Lab 78. NAT - PAT with Exit-Interface ............................................................................................
Lab 79. WAN - Frame Relay. ..........................................................................................................
Lab 80. WAN - Point-to-Point Protocol (PPP) .................................................................................
Lab 81. WAN - Point-to-Point Protocol over Ethernet (PPPoE)....
Lab 82. VPN - Generic Routing Encapsulation (GRE) Tunneling .
Lab 83. Basic - Switch Initialization. ................................................................................................
Lab 84. Basic - Switch Configuration ..............................................................................................
Lab 85. STP - Spanning Tree Protocol (STP) .................................................................................
Lab 86. STP - Port Cost . ................................................................................................................
Lab 87. STP - Bridge Priority . .........................................................................................................
Lab 88. STP - RSTP, PortFast, BPDU Guard .................................................................................
Lab 89. VLAN - Access . .................................................................................................................
Lab 90. VLAN - Trunking . ...............................................................................................................
Lab 91. VLAN - Dynamic Trunking Protocol (DTP) . .......................................................................
Lab 92. VLAN - VLAN Trunking Protocol (VTP) . ............................................................................
Lab 93. VLAN - InterVLAN Routing ................................................................................................
Lab 94. VLAN - InterVLAN Routing + EIGRP .................................................................................
Lab 95. EtherChannel. ....................................................................................................................
Lab 96. FHRP - Hot Standby Router Protocol (HSRP) . .................................................................
Lab 97. FHRP - Gateway Load Balancing Protocol (GLBP). ..........................................................
Lab 98. Port-Security - MAC Address Limitation . ...........................................................................
Lab 99. Port-Security - Sticky MAC Address ..................................................................................
Lab 100. Port-Security - Err-Disable Auto Recovery . .....................................................................
Lab 101. Network Management - Syslog ........................................................................................
Lab 102. Network Management - NTP ...........................................................................................
Lab 103. Network Management - SNMP ........................................................................................
Lab 104. Network Management - NetFlow......................................................................................
Lab 01. Basic - Navigasi Cisco IOS
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2
Device IP Address Subnet Mask Gateway

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Untuk memudahkan bekerja menggunakan CLI Cisco IOS, kita harus mengetahui berbagai
macam command "show" yang ada di Router maupun Switch.
show version
Menampilkan informasi hardware
NXT-R1#show version
Cisco IOS Software, C2600 Software (C2600-ADVIPSERVICESK9-M), Version
12.3(4)T4, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2004 by Cisco Systems, Inc.
Compiled Thu 11-Mar-04 19:57 by eaarmas
ROM: System Bootstrap, Version 12.2(8r) [cmong 8r], RELEASE SOFTWARE
(fc1)
NXT-R1 uptime is 20 minutes
System returned to ROM by power-on
System image file is "flash:c2600-advipservicesk9-mz.123-4.T4.bin"
This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are
unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be
found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email
to
export@cisco.com.
Cisco 2621XM (MPC860P) processor (revision 0x300) with 125952K/5120K
bytes of memory.
Processor board ID JAE081160XR (3618058385)
M860 processor: part number 5, mask 2
2 FastEthernet interfaces
1 Virtual Private Network (VPN) Module
32K bytes of NVRAM.
32768K bytes of processor board System flash (Read/Write)
Configuration register is 0x2102
Dari output show version bisa didapatkan informasi sebagai berikut :
 IOS version
 System uptime
 Image filename
 Type of processor
 Amount of RAM
 Number of ports
 Amount of flash memory
 Current configuration register
show run
Menampilkan konfigurasi router yang sedang running
NXT-R1#show run
Building configuration...
Current configuration : 577 bytes

!
version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname NXT-R1
!
ip cef
no ipv6 cef

!
spanning-tree mode pvst
!
interface FastEthernet0/0
ip address 192.168.1.1 255.255.255.0
duplex auto
speed auto
!
ip address 172.16.12.1 255.255.255.0
duplex auto
speed auto
!
interface Vlan1
no ip address
shutdown
!
ip classless
!
ip flow-export version 9
!
line con 0
!
line aux 0
!
line vty 0 4
login
!
!
!
end
NXT-R1#show run
...
hostname NXT-R1
!
ip cef
no ipv6 cef
!
spanning-tree mode pvst
!
!
!
!
!
!
ip address 172.16.1.1 255.255.255.0
duplex auto
speed auto
!

ip address 192.168.12.1 255.255.255.0
duplex auto
speed auto
!
interface Vlan1
no ip address
shutdown
!
ip classless
!
ip flow-export version 9
!
line con 0
!
line aux 0
!
line vty 0 4
login
!
!
!
end
show ip interface brief
Menampilkan informasi interface, status, ip address
NXT-R1#show ip interface brief

Interface IP-Address OK? Method Status
Protocol
FastEthernet0/0 172.16.1.1 YES manual up up
FastEthernet0/1 192.168.12.1 YES manual up up
Vlan1 unassigned YES unset administratively down down
show interface
Menampilkan informasi fisik interface
NXT-R1#show interface
FastEthernet0/0 is up, line protocol is up (connected)
Hardware is Lance, address is 0001.4327.3901 (bia 0001.4327.3901)
Internet address is 192.168.1.1/24
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
ARP type: ARPA, ARP Timeout 04:00:00,
Last input 00:00:08, output 00:00:05, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: fifo
Output queue :0/40 (size/max)

5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 input packets with dribble condition detected
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 1 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
FastEthernet0/1 is up, line protocol is up (connected)
Hardware is Lance, address is 0001.4327.3902 (bia 0001.4327.3902)
Internet address is 172.16.12.1/24
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
show clock
Menampilkan informasi clock
NXT-R1#show clock
*0:21:6.364 UTC Mon Mar 1 1993
show history
Menampilkan informasi command yang telah diinputkan
NXT-R1#show history
conf t
show version
show run
show ip interface brief
show interface
show logging
show clock
show history
show flash
Menampilkan konten flash
NXT-R1# show flash
System flash directory:

File Length Name/status
3 33591768 c1841-advipservicesk9-mz.124-15.T1.bin
2 28282 sigdef-category.xml
1 227537 sigdef-default.xml
[33847587 bytes used, 30168797 available, 64016384 total]

Lab 02. Basic - Cisco IOS Command Mode
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Router memiliki mode command diantaranya:

1. Setup mode
 Router masuk setup mode jika NVRAM kosong alias tidak memiliki konfigurasi.
Biasanya kondisi ini terjadi ketika kita mengaktifkan router baru atau setelah
melakukan reset konfigurasi.
2. User mode
 Hanya terdapat beberapa command untuk monitoring
 Command show terbatas, ping dan traceroute
 Ditandai dengan : Router>
3. Privilege mode
 Terdapat beberapa command monitoring dan troubleshooting
 Terdapat semua command show, ping, trace, copy, erase
 Ditandai dengan : Router#
4. Global Configuration mode
 Untuk mensetting keseluruhan router misalnya hostname, konfigurasi routing
 Semua konfigurasi yang kita inputkan berefek global di router

 Ditandai dengan : Router(config)#
5. Interface mode
 Untuk konfigurasi interface secara spesifik, misal Interface Fa0/0, Interface Fa0/1
6. Rommon mode
 Untuk recovery password
 Jika lupa password console dan telnet, atau lupa password enable maka gunakan
rommon mode untuk melakukan recovery password dengan mengubah nilai
confreg
Setelah menghidupkan power router, kemudian router akan melakukan booting, selanjutnya
akan muncul setup mode seperti berikut ini :
--- System Configuration Dialog ---
Continue with configuration dialog? [yes/no]:
Jika memilih "yes" maka router akan melakukan setup otomatis. Sedangkan pilihan "no", router
akan masuk prompt yang membutuhkan input command dari user. Ketikkan "no", maka akan
muncul prompt seperti dibawah ini :
Continue with configuration dialog? [yes/no]: no
Press RETURN to get started!
Lalu, tekan Enter.
Continue with configuration dialog? [yes/no]: no
Router>
Router masuk mode Router>, mode ini disebut mode user. Jika ingin keluar mode user,
ketikkan command exit.
Router>exit
Router con0 is now available
Press RETURN to get started.

Untuk masuk kembali ke mode user, tekan Enter.
Router con0 is now available
Press RETURN to get started.
Router>
Jika user ingin masuk ke mode privilege, ketikkan command enable. Router akan muncul
promt Router#.
Router>enable
Router#
Pada mode privilege, user bisa menjalankan semua command show. Mode privilege
memungkinkan user mengakses semua interface mode. Jika user ingin keluar dari mode
privilege, gunakan command exit atau disable.
Router>enable
Router#exit
Untuk melakukan konfigurasi interface router, routing protocol, dll gunakan mode global
configuration dengan mengetikkan command configure terminal. Maka akan masuk ke
mode Router(config)#
Router>enable
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#
Setelah masuk mode global, user bisa melakukan semua konfigurasi router dan bisa masuk ke
mode spesifik seperti interface, line, routing protocol
Router(config)#interface fa0/0
Router(config-if)#
Router(config-if)#line vty 0 4
Router(config-line)#
Router(config-line)#router rip
Router(config-router)#
Router(config-router)#interface fa0/0.10
Router(config-subif)#
Configuration Mode Prompt

Interface Router(config-if)#
Line Router(config-line)#
Router Router(config-router)#
Sub-interface Router(config-subif)#

Lab 03. Basic - Reset Cisco IOS Configuration
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Untuk memulai konfigurasi Cisco router/switch, kita gunakan kabel console untuk login console
router/switch. Router/switch secara default tidak memiliki konfigurasi sehingga untuk melakukan
konfigurasi secara remote harus dikonfigurasi basic router/switch terlebih dahulu seperti ip
address, telnet, enable secret/enable password. Apabila router/switch sudah memiliki
konfigurasi sebelumnya, maka kita lakukan reset konfigurasi.
Pertama-tama, siapkan dulu software putty untuk remote console/remote telnet. Anda dapat
mendownloadnya di website www.putty.org. Lakukan instalasi putty, tampilan putty setelah di
install bisa dilihat pada halaman berikutnya.
Pastikan kita memilih "Connection Type : Serial" dan setting "Speed : 9600". Langkah
berikutnya yaitu pasang kabel console dari Laptop ke Router, lalu install driver console di
Laptop. Untuk opsi "Serial line", isi sesuai dengan COM port yang terdaftar di Device Manager
bagian Port Console. Tiap USB port Laptop yang digunakan untuk memasang kabel "console to
USB" memiliki output COM port yang berbeda. Oleh karena itu, agar koneksi console berjalan
dengan lancar, maka perlu diperhatikan secara teliti COM port pada Device Manager dengan
Serial line di putty.

Setelah kabel console sudah dipasang dan putty dijalankan dengan klik Open, lalu nyalakan
router maka akan tampil pada screen putty output seperti dibawah ini:
Cisco CISCO1941W-E/K9 (revision 1.0) with 479232K/45056K bytes of

memory.
Processor board ID FCZ1626C4Z4
1 DSL controller
3 Gigabit Ethernet interfaces
4 terminal lines
2 Cellular interfaces
1 cisco Embedded AP (s)
DRAM configuration is 64 bits wide with parity disabled.
255K bytes of non-volatile configuration memory.
250880K bytes of ATA System CompactFlash 0 (Read/Write)
Output diatas merupakan salah satu contoh bagian output device Cisco 1941W-E. W untuk
wireless dan E untuk ETSI artinya kemampuan router wireless untuk Eropa. Router tersebut
memiliki 1 DSL controller, 3 Gigabit Ethernet interface, 2 Cellular interface (bisa 3G / 4G), dan 1
Embedded AP (Access Point).
Untuk router terbaru, sudah terinstall CCP (Cisco Configuration Professional) yaitu tampilan
GUI untuk konfigurasi router. Username dan password default login CCP: 'cisco'.
Reset konfigurasi router dengan command berikut ini:

Router#erase startup-config
Erasing the nvram filesystem will remove all configuration files!
Continue?
[confirm]
[OK]
Erase of nvram: complete
*May 15 09:28:59.863: %SYS-7-NV_BLOCK_INIT: Initialized the geometry
of
nvram reload
erase startup-config: command untuk menghapus konfigurasi router yang disimpan

didalam file startup-config. Untuk memastikan bahwa konfigurasi yang telah kita hapus tidak
aktif, maka lakukan restart router dengan command reload dan apabila ada pertanyaan ingin
menyimpan konfigurasi, ketikkan no.
Router#reload
System configuration has been modified. Save? [yes/no]: no
Tunggu beberapa detik, proses restart router memakan waktu yang tidak sedikit, sampai keluar
output seperti dibawah ini :

Would you like to enter the initial configuration dialog? [yes/no]:no
Ketikkan no, karena kita akan mengkonfigurasi router secara manual sehingga initial
config diabaikan. Untuk konfigurasi manual router, maka akan muncul prompt command
router seperti dibawah ini:
Router>

Lab 04. Basic - Configure Basic Cisco Router
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Untuk konfigurasi basic router NXT-R1 dan NXT-R2, gunakan remote console dari Laptop
menggunakan putty. Setelah itu, ketikkan command basic router dibawah ini di NXT-R1 dan
NXT-R2. Untuk IP address ikuti sesuai topologi addressing diatas.
a. Setelah login router ketikkan enable privilege EXEC mode.
Router>enable
Router#
b. Masuk global configuration mode.
Router(config)#
c. Memberikan nama device router.
Router(config)#hostname NXT-R1
NXT-R1#
d. Disable DNS lookup untuk mencegah router melakukan translasi command yang salah
ketik.
NXT-R1(config)#no ip domain-lookup
e. Setting password privilege dengan enkripsi: ciscosec

NXT-R1(config)#enable secret ciscosec
f. Setting password console: ciscocon. Aktifkan command exec-timeout sehingga jika
selama 5 menit 0 detik tidak ada aktifitas maka akan logout sendiri.
NXT-R1(config)#line console 0
NXT-R1(config-line)#password ciscocon
NXT-R1(config-line)#exec-timeout 5 0
NXT-R1(config-line)#login
g. Setting password vty: ciscovty. Aktifkan command exec-timeout sehingga jika
selama 5 menit 0 detik tidak ada aktifitas maka akan logout sendiri.
NXT-R1(config)#line vty 0 4
NXT-R1(config-line)#password ciscovty
h. Enable enkripsi password clear text
NXT-R1(config)#service password-encryption
i. Buat banner yang memberikan informasi kepada user, bagi yang tidak memiliki otorisasi
dilarang login router.
NXT-R1(config)#banner motd #Unauthorized access prohibited!#
j. Setting IP address dan interface description. Aktifkan interface router dengan sub-
command no-shutdown.
NXT-R1(config)#interface fa0/1
NXT-R1(config-if)#description Connection to NXT-R2
NXT-R1(config-if)#ip address 192.168.12.1 255.255.255.0
NXT-R1(config-if)#no shutdown
NXT-R1(config-if)#interface fa0/0
NXT-R1(config-if)#description Connection to LAN A
NXT-R1(config-if)#end
k. Setting clock di router; contoh seperti dibawah:
NXT-R1#clock set 10:00:00 15 Oct 2016
l. Simpan konfigurasi file running-configuration ke startup-configuration.
NXT-R1#copy running-config startup-config
Destination filename [startup-config]?
[OK]
Ketika kita mensetting router, maka konfigurasi akan disimpan sementara di file running-
configuration (RAM), oleh karena itu proses menyimpan penting untuk dilakukan agar
saat router reboot atau shutdown file konfigurasi router masih tetap disimpan di startup-
configuration (NVRAM).

Konfigurasi NXT-R2
Router>enable
NXT-R2(config)#no ip domain-lookup
NXT-R2(config)#enable secret ciscosec
NXT-R2(config)#line console 0
NXT-R2(config-line)#password ciscocon
NXT-R2(config-line)#line vty 0 4
NXT-R2(config-line)#password ciscovty
NXT-R2(config-line)#service password-encryption
NXT-R2(config)#banner motd #Unauthorized access prohibited!#
NXT-R2(config-if)#description Connection to NXT-R1
NXT-R2(config-if)#interface fa0/0
NXT-R2(config-if)#description Connection to LAN B
NXT-R2(config-if)#end
NXT-R2#clock set 10:00:00 15 Oct 2016
NXT-R2#copy running-config startup-config
[OK]
Verifikasi
Tampilkan informasi running-config NXT-R1 dan NXT-R2 untuk melihat konfigurasi yang
sudah di inputkan
Tampilkan interface router yang telah dikonfigurasi IP address

Protocol
FastEthernet0/0 172.16.1.1 YES manual up
up
up

Protocol
up
up

Verifikasi ping dari NXT-R1 ke NXT-R2
NXT-R1#ping 192.168.12.2
Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 192.168.12.2, timeout is 2 seconds:
.!!!!
Success rate is 80 percent (4/5), round-trip min/avg/max = 20/34/52 ms
NXT-R1#ping 192.168.12.2

!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/28/40
ms
NXT-R1#
Ulangi command ping sampai 100%.
Verifikasi ping dari Laptop-1 ke NXT-R1 dan Laptop-2 ke NXT-R2
LAPTOP-1>ping 172.16.1.1
Pinging 172.16.1.1 with 32 bytes of data:
Reply from 172.16.1.1: bytes=32 time=30ms TTL=255

Ping statistics for 172.16.1.1:

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 16ms, Maximum = 52ms, Average = 29ms
LAPTOP-2>ping 172.16.2.1
Pinging 172.16.2.1 with 32 bytes of data:

Ping statistics for 172.16.2.1:

Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 21ms, Average = 19ms
Ping dari Laptop ke router berhasil 100%. Ditandai dengan Packets: Sent = 4, Received
= 4, Lost = 0 (0% loss).

Lab 05. Basic - Remote Access Telnet & SSH
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Dari hasil Lab 04. Basic Router Configuration, telnet sudah dikonfigurasi. Pada lab ini, kita akan
mencoba login telnet dari Laptop-1 ke NXT-R1 menggunakan putty.

Klik Open, maka akan muncul prompt login telnet:
Ketikkan password telnet / line vty yang sudah dikonfigurasi sebelumnya: ciscovty lalu klik
Enter.
Kita sudah berhasil login telnet.

Untuk mengoperasikan router, ketikkan password enable secret: ciscosec.
Tampilkan informasi interface router NXT-R1.
Untuk konfigurasi router selanjutnya dapat dilakukan secara remote melalui telnet dari Laptop.
Tiga command penting yang perlu dikonfigurasi agar router bisa ditelnet :
1. IP Address interface router

2. line vty
3. enable secret
Konfigurasi SSH di NXT-R1
Tujuan mensetting SSH di router yaitu untuk meningkatkan keamanan akses router, karena
dengan SSH komunikasi antar Laptop dan router dienkripsi sehingga menyulitkan proses
sniffing password dengan menggunakan packet sniffer.
Langkah mengaktifkan SSH di router:
1. Setting domain router

2. Setting username dan password login
3. Setting transport input all di line vty
4. Generate crypto rsa key 1024
NXT-R1>enable
NXT-R1#configure terminal
NXT-R1(config)#ip domain-name NIXTRAIN.com
NXT-R1(config)#username admin secret ciscossh
NXT-R1(config)#line vty 0 4
NXT-R1(config-line)#transport input all

NXT-R1(config-line)#login local
NXT-R1(config-line)#exit
NXT-R1(config)#crypto key generate rsa
The name for the keys will be: NXT-R1.NIXTRAIN.com
Choose the size of the key modulus in the range of 360 to 2048 for your
General Purpose Keys. Choosing a key modulus greater than 512 may
take
a few minutes.
How many bits in the modulus [512]: 1024

% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]
R1(config)#exit
*Mar 3 2:27:58.564: %SSH-5-ENABLED: SSH 1.99 has been enabled
NXT-R1#
transport input all= agar Laptop1 dapat melakukan telnet dan SSH. Kalo hanya
memperbolehkan akses saja maka dikonfigurasi transport input ssh.
Verifikasi SSH untuk memastikan apakah sudah aktif atau belum di router
NXT-R1#show ip ssh
SSH Enabled - version 1.99
Authentication timeout: 120 secs; Authentication retries: 3
Login SSH dari Laptop-1 ke NXT-R1

Klik Open di putty. Kemudian akan muncul "Putty Security Alert" untuk konfirmasi ssh-rsa key
fingerprint, pilih Yes.
Setelah pilih Yes muncul prompt login SSH. Ketikkan "login as: admin" dan "password:
ciscossh" sesuai konfigurasi yang telah kita inputkan sebelumnya.
Apabila username dan password sudah diinputkan dengan benar, maka akan masuk command
prompt router.
Login SSH berhasil dari Laptop-1 ke NXT-R1. Kita bisa melakukan konfigurasi secara remote
melalui akses SSH.

Lab 06. Basic - Managing Configuration Files
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Proses backup penting untuk dilakukan, apabila terjadi error pada router/switch bisa langsung
di restore dari konfigurasi sebelumnya yang telah di backup. Untuk proses backup
membutuhkan server TFTP. Download Solarwind TFTP Server secara gratis di website official.
www.solarwinds.com/free-tools/free-tftp-server
Setelah download, lakukan instalasi Solarwind TFTP Server di Laptop. Jalankan TFTP Server,
disable Windows Firewall / Antivirus dan lakukan backup konfigurasi router sesuai command
berikut ini :
NXT-R1#copy startup-config tftp

Address or name of remote host []? 172.16.1.3
Destination filename [NXT-R1-confg]? NXT-R1-startup-config
Writing startup-config...!!
[OK - 553 bytes]
553 bytes copied in 0.001 secs (553000 bytes/sec)

NXT-R1#

Setelah berhasil backup konfigurasi, selanjutnya lakukan backup Cisco IOS:
NXT-R1#show flash
System flash directory:

File Length Name/status
3 33591768 c1841-advipservicesk9-mz.124-15.T1.bin
2 28282 sigdef-category.xml
1 227537 sigdef-default.xml
[33847587 bytes used, 30168797 available, 64016384 total]
NXT-R1#copy flash tftp

Source filename []? c1841-advipservicesk9-mz.124-15.T1.bin
Address or name of remote host []? 172.16.1.3
Destination filename [c1841-advipservicesk9-mz.124-15.T1.bin]?
Writing c1841-advipservicesk9-mz.124-
15.T1.bin...!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[OK - 33591768 bytes]

NXT-R1#
Proses backup Cisco IOS berhasil.
Hasil backup konfigurasi dan Cisco IOS bisa dilihat di Drive C folder TFTP-Root (apabila
menggunakan software Solarwind TFTP-Server).
Untuk melakukan proses restore konfigurasi router dan Cisco IOS gunakan command berikut
ini:
NXT-R1#copy tftp running-config

NXT-R1#copy tftp flash:
Pada saat proses backup, file konfigurasi dan Cisco IOS ditransfer dari router ke TFTP Server,
sedangkan proses restore kebalikannya, file konfigurasi dan Cisco IOS di transfer dari TFTP
Server ke router. Pastikan tidak ada kesalahan tulis nama file agar proses restore berhasil.

Lab 07. Basic - Cisco Recovering Password
Fa0/1 Fa0/1
NXT-R1 NXT-R2
Fa0/0 Fa0/0
Laptop-1 Laptop-2

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-R1 Fa0/1 192.168.12.1 255.255.255.0 -
NXT-R2 Fa0/0 172.16.2.1 255.255.255.0 -
NXT-R2 Fa0/1 192.168.12.2 255.255.255.0 -
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Laptop-2 172.16.2.3 255.255.255.0 172.16.2.1
Lupa password router Cisco? sehingga tidak bisa login telnet atau SSH.
Ingat password telnet atau SSH, tapi lupa password enable?
Apabila lupa password dan tidak bisa login, lakukan recovery password agar file konfigurasi
tidak hilang. Ikuti step-step berikut ini :
1. Matikan router terlebih dahulu

2. Lakukan akses console ke router menggunakan putty
3. Nyalakan router kembali dan tekan tombol Pause Break di laptop sehingga akan
menginterupsi router saat loading dan muncul rommon mode:
Initializing memory for ECC

..
c2811 processor with 524288 Kbytes of main memory
Main memory is configured to 64 bit mode with ECC enabled
Readonly ROMMON initialized
Self decompressing the image :

#####################
monitor: command "boot" aborted due to user interrupt

rommon 1 >
4. Ketikkan command confreg 0x2142

Command ini berfungsi agar router membypass NVRAM saat booting, artinya file
konfigurasi eksisting tidak dibaca oleh router. Sehingga file konfigurasi masih tetap ada
dan tidak terhapus.
rommon 1 >confreg 0x2142
5. Ketikkan command reset

Command ini berfungsi untuk merestart router
rommon 1 >confreg 0x2142

rommon 1 >reset
6. Ketikkan no saat setup mode router muncul
rommon 1 > confreg 0x2142

rommon 2 > reset
System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1)
..

######################################################################
#### [OK]
Restricted Rights Legend
...
Continue with configuration dialog? [yes/no]:no
Router>
7. Load file konfigurasi (startup-confing) kedalam memory / RAM (running-config)
Router>enable
Router#copy start run
Destination filename [running-config]?

NXT-R1#
%SYS-5-CONFIG_I: Configured from console by console
NXT-R1#
Perhatikan output command diatas, hostname Router telah berubah menjadi NXT-R1,
kemudian ada sebanyak 553 bytes file telah dicopy ke RAM (running-config). Dengan
command show run, file konfigurasi eksisting dapat dilihat secara keseluruhan.
Misalkan password enable lupa. Berarti hanya command bagian enable saja yang
diubah.
8. Ubah password enable dengan password yang baru
NXT-R1#configure terminal
NXT-R1(config)#enable secret newcisco
NXT-R1(config)#
Command enable secret newcisco akan mengganti password lama yang

hilang/lupa.
9. Kembalikan configuration-register sesuai defaultnya yaitu 0x2102, yang artinya router

akan membaca NVRAM pada saat booting. Lalu simpan perubahannya.
NXT-R1(config)#
NXT-R1(config)#config-register 0x2102
NXT-R1(config)#
NXT-R1(config)#do copy run start
[OK]
10. Verifikasi configuration-register
NXT-R1(config)#do show version

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version
Compiled Wed 18-Jul-07 04:52 by pt_team
...
Configuration register is 0x2142 (will be 0x2102 at next reload)
NXT-R1(config)#
Configuration-register akan diubah menjadi default ketika router direstart.

11. Lakukan restart router
NXT-R1(config)#do reload
Proceed with reload? [confirm]
System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1)
..

######################################################################
#### [OK]
Restricted Rights Legend
...
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Processor board ID FTX0947Z18E
M860 processor: part number 0, mask 49
2 FastEthernet/IEEE 802.3 interface(s)
191K bytes of NVRAM.
63488K bytes of ATA CompactFlash (Read/Write)
Proses recover password berhasil. Untuk memverifikasi lakukan telnet / SSH dan
inputkan password enable yang baru.
Tekan Enter untuk masuk console router.

Lab 08. Basic - Cisco Discovery Protocol (CDP)
Fa0/2 Fa0/1 Fa0/0
NXT-S1 NXT-R1
Laptop-1

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-S1 VLAN1 172.16.1.11 255.255.255.0 172.16.1.1
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Cisco Discovery Protocol (CDP) adalah protocol yang digunakan oleh Cisco device untuk
mempelajari dan share informasi sesama device Cisco. Misalnya, router, switch bisa
mempelajari device tetangganya dengan protocol CDP.
 By default sudah aktif disemua interface

 Hanya share informasi device yang terhubung langsung
 Hanya bekerja ketika koneksi layer 2 valid
Informasi yang bisa dipelajari oleh CDP:
 Cisco IOS version

 Hardware platform of devices
 IP addresses of interfaces on devices
 Locally connected devices advertising Cisco Discovery Protocol
 Interfaces active on Cisco devices, including encapsulation type
 Hostname
 Duplex setting
 VLAN Trunking Protocol (VTP) domain
 Native VLAN

Konfigurasi Router
Router>enable
Konfigurasi Switch
Switch>enable
Switch#configure terminal
Switch(config)#hostname NXT-S1
NXT-S1(config)#interface vlan 1
NXT-S1(config-if)#ip address 172.16.1.11 255.255.255.0
NXT-S1(config-if)#no shutdown
Ping dari switch ke router
NXT-S1(config-if)#do ping 172.16.1.1

!!!!!
Tampilkan informasi device tetangga Switch dengan CDP
NXT-S1#show cdp neighbors

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Device ID Local Intrfce Holdtme Capability Platform Port ID
NXT-R1 Fas 0/1 131 R C1841 Fas 0/0
NXT-S1 terhubung ke NXT-R1 melalui interface fa0/1 switch dan fa0/0 router.
Untuk mendapatkan informasi detail bisa gunakan sub-command detail.
NXT-S1#show cdp neighbors detail
Device ID: NXT-R1

Entry address(es):
IP address : 172.16.1.1
Platform: cisco C1841, Capabilities: Router
Interface: FastEthernet0/1, Port ID (outgoing port): FastEthernet0/0
Holdtime: 167
Version :

advertisement version: 2
Duplex: full
Jalankan CDP dari router
NXT-R1#show cdp
Global CDP information:
Sending CDP packets every 60 seconds
Sending a holdtime value of 180 seconds
Sending CDPv2 advertisements is enabled
By default CDP aktif di router maupun switch. Pengiriman packet dilakukan setiap 60 detik.
NXT-R1#show cdp neighbors

Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Device ID Local Intrfce Holdtme Capability Platform Port ID
NXT-S1 Fas 0/0 130 S 2960 Fas 0/1
NXT-R1#show cdp neighbors detail
Device ID: NXT-S1

Entry address(es):
IP address : 172.16.1.11
Platform: cisco 2960, Capabilities: Switch
Interface: FastEthernet0/0, Port ID (outgoing port): FastEthernet0/1
Holdtime: 150
Version :
Cisco IOS Software, C2960 Software (C2960-LANBASE-M), Version
12.2(25)FX, RELEASE SOFTWARE (fc1)
Compiled Wed 12-Oct-05 22:05 by pt_team
advertisement version: 2
Duplex: full

Lab 09. Basic - Link Layer Discovery Protocol (LLDP)
Fa0/2 Fa0/1 Fa0/0
NXT-S1 NXT-R1
Laptop-1

NXT-R1 Fa0/0 172.16.1.1 255.255.255.0 -
NXT-S1 VLAN1 172.16.1.11 255.255.255.0 172.16.1.1
Laptop-1 172.16.1.3 255.255.255.0 172.16.1.1
Tidak seperti CDP, Link Layer Discovery Protocol (LLDP) adalah protokol standard terbuka
IEEE 802.1AB Layer 2 yang digunakan oleh perangkat network untuk share informasi tentang
identitas dan fungsionalitas dengan elemen network lain.
LLDP mendukung beberapa atribut yang digunakan untuk mencari neighbor device. Atribut ini
mencakup type, length, dan value description yang sering disebut TLV. Jumlah TLV tiap
platform berbeda-beda, namun untuk TLV mandatory terdiri dari :
 Port description
 System name
 System description
 System capabilities
 Management IP
NB: VTP tidak disupport oleh LLDP
By default LLDP tidak aktif di router maupun switch.
NXT-S1#show lldp
% LLDP is not enabled
NXT-R1#show lldp
% LLDP is not enabled
Untuk mengaktifkan LLDP, ketikkan command berikut ini :
NXT-S1(config)#lldp run
NXT-R1(config)#lldp run

Verifikasi LLDP
NXT-S1#show lldp
Global LLDP Information:

Status: ACTIVE
LLDP advertisements are sent every 30 seconds
LLDP hold time advertised is 120 seconds
LLDP interface reinitialisation delay is 2 seconds
NXT-R1#show lldp
Global LLDP Information:

Status: ACTIVE
LLDP advertisements are sent every 30 seconds
LLDP hold time advertised is 120 seconds
LLDP interface reinitialisation delay is 2 seconds
NXT-S1#show lldp neighbors

Capability codes:
(R) Router, (B) Bridge, (T) Telephone, (C) DOCSIS Cable Device
(W) WLAN Access Point, (P) Repeater, (S) Station, (O) Other
Device ID Local Intf Hold-time Capability Port ID
NXT-R1 Fa0/1 120 R Fa0/0
Total entries displayed: 1
NXT-R1#show lldp neighbors

Capability codes:
(R) Router, (B) Bridge, (T) Telephone, (C) DOCSIS Cable Device
(W) WLAN Access Point, (P) Repeater, (S) Station, (O) Other
Device ID Local Intf Hold-time Capability Port ID
NXT-S1 Fa0/0 120 B Fa0/1
NXT-S1 Fa0/0 120 B Vlan
NXT-S1#show lldp neighbors detail

------------------------------------------------
Chassis id: 00E0.8F47.9701
Port id: Fa0/0
Port Description: FastEthernet0/0
System Name: NXT-R1
System Description:
Time remaining: 90 seconds

System Capabilities: R
Enabled Capabilities: R
Management Addresses - not advertised
Auto Negotiation - supported, enabled
Physical media capabilities:
100baseT(FD)
100baseT(HD)
Media Attachment Unit type: 10
Vlan ID: 1
NXT-R1#show lldp neighbors detail

------------------------------------------------
Chassis id: 0001.4219.C901
Port id: Fa0/1
Port Description: FastEthernet0/1
System Name: NXT-S1
System Description:
System Capabilities: B
Enabled Capabilities: B
100baseT(FD)
100baseT(HD)
1000baseT(HD)
Vlan ID: 1
------------------------------------------------
Chassis id: 0001.C9DC.5597
Port id: Vlan
Port Description: Vlan1
System Name: NXT-S1
System Description:
System Capabilities: B
Enabled Capabilities: B
100baseT(FD)
100baseT(HD)
1000baseT(HD)

Vlan ID: 1
LLDP sebagai protokol Layer Data Link bisa bekerja tanpa membutuhkan konfigurasi IP
address di network device. LLDP dapat di non-aktifkan secara global dengan menggunakan
command no lldp run.

Lab 10. Basic - Configure Loopback Interface & IPv4 Address
Loopback-1
NXT-R1
Fa0/0 Fa0/1
Fa0/0 Fa0/1
Loopback-2 Loopback-3
Fa0/1 Fa0/0
NXT-R2 NXT-R3

NXT-R1 Fa0/0 121.0.0.1 255.255.255.252 -
NXT-R1 Fa0/1 131.0.0.1 255.255.255.252 -
NXT-R2 Fa0/0 121.0.0.2 255.255.255.252 -
NXT-R2 Fa0/1 132.0.0.1 255.255.255.252 -
NXT-R3 Fa0/0 132.0.0.2 255.255.255.252 -
NXT-R3 Fa0/1 131.0.0.2 255.255.255.252 -
Loopback-1 1.1.1.1 255.255.255.255 -
Loopback-2 2.2.2.2 255.255.255.255 -
Loopback-3 3.3.3.3 255.255.255.255 -
Interface loopback by default di router tidak ada. Oleh karena itu, perlu ditambahkan manual.
Fungsi interface loopback sebagai logical interface internal router untuk merepresentasikan
sebuah subnet. Interface loopback tidak terhubung ke device lain dan tidak memiliki port fisik.
Manfaat lain interface loopback untuk testing internal proses routing dan emulasi network
dibelakang router. Jika memiliki keterbatasan resources untuk membuat LAN saat ngelab,
gunakan interface loopback sebagai interface LAN. Interface loopback sudah UP/UP secara
otomatis, sehingga tidak perlu memberikan sub-command no shutdown.
Multiple interface loopback bisa dikonfigurasi di router. Masing-masing interface loopback

menggunakan IP address yang unik dan belum dipakai oleh interface router yang lain.

Konfigurasi IPv4 Address di Router
NXT-R1(config)#int fa0/0
NXT-R1(config-if)#ip add 121.0.0.1 255.255.255.252
NXT-R1(config-if)#no shut
NXT-R1(config-if)#int fa0/1
NXT-R1(config-if)#ip addr 131.0.0.1 255.255.255.252
NXT-R1(config-if)#int loopback1
Verifikasi IPv4 Address

Protocol
up
up
Loopback1 1.1.1.1 YES manual up
up
NXT-R1#

Protocol
up
up
up
NXT-R2#

Protocol
up
up
up
NXT-R3#
Tes ping antar interface router
NXT-R1#ping 121.0.0.2

.!!!!
NXT-R1#ping 121.0.0.2

!!!!!
ms
NXT-R1#ping 131.0.0.2

.!!!!
NXT-R1#ping 131.0.0.2

!!!!!
ms
NXT-R1#
Ping dari NXT-R1 ke NXT-R2 dan NXT-R3 berhasil.
NXT-R2#ping 132.0.0.2

!!!!!
ms
Ping dari NXT-R2 ke NXT-R3 berhasil. Lakukan ping antar loopback router.
Apakah berhasil ping antar loopback router?

Lab 11. Basic - Configure IPv6 Address on Cisco Router
Loopback-1
NXT-R1
Fa0/0 Fa0/1
Fa0/0 Fa0/1
Loopback-2 Loopback-3
Fa0/1 Fa0/0
NXT-R2 NXT-R3
Device IP Address Prefix Gateway

NXT-R1 Fa0/0 2012::1 /64 -
NXT-R1 Fa0/1 2013::1 /64 -
NXT-R2 Fa0/0 2012::2 /64 -
NXT-R2 Fa0/1 2023::1 /64 -
NXT-R3 Fa0/0 2023::2 /64 -
NXT-R3 Fa0/1 2013::2 /64 -
Loopback-1 2001::1 /128 -
Loopback-2 2002::1 /128 -
Loopback-3 2003::1 /128 -
Pada Lab 11 melanjutkan konfigurasi lab sebelumnya. Output yang diharapkan adalah topologi
diatas dikonfigurasi IPv4 maupun IPv6 address. Masing-masing interface fisik maupun interface
loopback memiliki IPv4 dan IPv6 address.
Fitur IPv6
 Alokasi address secara geografis

 Route summarization menjadi efisien
 Tidak membutuhkan Network Address Translation (NAT) atau Port Address Translation
(PAT)
 Native Internet Protocol Security (IPsec)
 IPv6 sudah built in mendukung IPsec protocol
 Pengembangan header
 Built-in Quality of Service (QoS)
 Flow label

Overview IPv6 Address
 IPv6 terdiri dari 128 bit, seperti contoh dibawah ini

35BC:FA77:4898:DAFC:200C:FBBC:A007:8973
 Address terdiri dari 32 hexadecimal numbers, dikelompokkan menjadi 8 quartets

 Quartets dipisahkan oleh titik dua
 Masing-masing quartet direpresentasikan sebagai hexadecimal number antara 0 dan
FFFF. Masing-masing quartet merepresentasikan 16 bit data (FFFF = 1111 1111 1111
1111).
 Leading zeros bisa disingkat pada masing-masing section. Contoh, quartet 0284 bisa
direpresentasikan dengan 284.
 Addresses dengan nol berturut-turut dapat diringkas dengan menggantikan dua titik dua
untuk kelompok nol. Contoh:
FEC0:0:0:0:78CD:1283:F398:23AB
FEC0::78CD:1283:F398:23AB (bentuk yang ringkas)
 Jika address memiliki lebih dari satu lokasi berturut-turut di mana satu atau lebih lokasi
semuanya nol, maka hanya satu lokasi saja yang dapat disingkat. Contoh:
FEC2:0:0:0:78CA:0:0:23AB bisa disingkat menjadi:
FEC2::78CA:0:0:23AB atau
FEC2:0:0:0:78CA::23AB
FEC2::78CA::23AB (bentuk yang salah)
 128-bit address memiliki dua bagian:
o Prefix: 64 bit pertama. Prefix termasuk network dan subnet address. Karena
address dialokasikan berdasarkan lokasi fisik, prefix juga termasuk informasi
routing global. 64-bit prefix sering disebut sebagai global routing prefix.
o Interface: 64 bit terakhir. Disebut juga sebagai Interface ID. Address unik yang di
assign ke interface.
Address di assign ke interface (koneksi network), bukan ke host. Secara teknis,
interface ID bukan host address.
Konfigurasi IPv6 Address di Router
NXT-R1(config)#ipv6 unicast-routing
NXT-R1(config-if)#ipv6 add 2012::1/64
NXT-R1(config-if)#int lo1

Verifikasi IP address yang sudah dikonfigurasi
NXT-R1#show ipv6 interface brief

FastEthernet0/0 [up/up]
FE80::C200:1DFF:FEE4:0
2012::1
2017::12:1
2013::1
Loopback1 [up/up]
2001::1

2012::2
2023::1
Loopback2 [up/up]
2002::1

2023::2
2013::2
Loopback3 [up/up]
2003::1

Tes ping dari NXT-R1 ke NXT-R2 dan NXT-R3
NXT-R1#ping 2012::2

Sending 5, 100-byte ICMP Echos to 2012::2, timeout is 2 seconds:
!!!!!
ms
NXT-R1#ping 2013::2

!!!!!
ms
Ping IPv6 address berhasil.
Tes ping dari NXT-R2 ke NXT-R3
NXT-R2#ping 2023::2

!!!!!
ms
NXT-R2#
Ping IPv6 address dari NXT-R2 ke NXT-R3 berhasil.
Lakukan ping antar loopback router.
Apakah berhasil ping antar loopback router?
Ping antar loopback router gagal, karena router belum memiliki informasi network loopback
tujuan. Oleh karena itu, agar ping antar loopback router berhasil harus dikonfigurasi routing
protocol terlebih dahulu.

Lab 12. Basic - Cisco IOS Scripting with TCL
Salah satu cara paling simple untuk verifikasi konektivitas OSI Layer 3 antar dua router yaitu
menggunakan ICMP. ICMP memiliki beberapa tipe message, untuk IPv4 standardnya RFC 792
sedangkan untuk IPv6 menggunakan RFC 4443.
Salah satu implementasi ICMP adalah penggunaan ping dan traceroute.
Penggunaan ping dan traceroute akan sering dilakukan di lab guide ini untuk verifikasi koneksi.
Oleh karena itu, untuk mempermudah command yang sering diulang disarankan membuat TCL
Script untuk ping. Sediakan file kosong dan buatlah script TCL. Untuk verifikasi ping, kita hanya
copy paste dari file script yang sudah dibuat.
tclsh
foreach loopback {
1.1.1.1
2.2.2.2
3.3.3.3
} {
ping $loopback
}
Cara penggunaan TCL script
1. Inputkan command di mode privilege
NXT-R1#tclsh
2. Tentukan IP mana saja yang akan di ping
NXT-R1(tcl)#exit
NXT-R1#tclsh
NXT-R1(tcl)#foreach loopback {
+>1.1.1.1
+>2.2.2.2
+>3.3.3.3
+>} {
+>ping $loopback
+>}
3. Enter

Contoh penggunaan TCL Script
NXT-R1#tclsh
NXT-R1(tcl)#foreach loopback {
+>1.1.1.1
+>2.2.2.2
+>3.3.3.3
+>} {
+>ping $loopback
+>}

!!!!!
!!!!!
ms
!!!!!
ms
Untuk keluar dari TCL script, gunakan command exit.

CCNAv3 Lab Guide Nixtrain-Agus Setiawan-PREVIEW

Diunggah oleh

Informasi Dokumen

Hak Cipta

Format Tersedia

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Hak Cipta:

Format Tersedia

CCNAv3 Lab Guide Nixtrain-Agus Setiawan-PREVIEW

Diunggah oleh

Hak Cipta:

Format Tersedia

Daftar Isi

Lab 01. Basic - Navigasi Cisco IOS . ............................................................................................ 4

CCNA Lab Guide Nixtrain | 1

Device IP Address Subnet Mask Gateway

Menampilkan informasi hardware

CCNA Lab Guide Nixtrain | 4

Dari output show version bisa didapatkan informasi sebagai berikut :

Menampilkan konfigurasi router yang sedang running

Current configuration : 577 bytes

CCNA Lab Guide Nixtrain | 5

CCNA Lab Guide Nixtrain | 6

show ip interface brief

Menampilkan informasi interface, status, ip address

NXT-R1#show ip interface brief

FastEthernet0/0 172.16.1.1 YES manual up up

FastEthernet0/1 192.168.12.1 YES manual up up

Vlan1 unassigned YES unset administratively down down

Menampilkan informasi fisik interface

CCNA Lab Guide Nixtrain | 7

Menampilkan informasi clock

Menampilkan informasi command yang telah diinputkan

Menampilkan konten flash

NXT-R1# show flash

System flash directory:

CCNA Lab Guide Nixtrain | 8

Device IP Address Subnet Mask Gateway

Router memiliki mode command diantaranya:

CCNA Lab Guide Nixtrain | 9

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]:

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: no

Press RETURN to get started!

Lalu, tekan Enter.

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: no

Press RETURN to get started!

Router con0 is now available

Press RETURN to get started.

CCNA Lab Guide Nixtrain | 10

Router con0 is now available

Press RETURN to get started.

Configuration Mode Prompt

CCNA Lab Guide Nixtrain | 11

Device IP Address Subnet Mask Gateway

CCNA Lab Guide Nixtrain | 12

Cisco CISCO1941W-E/K9 (revision 1.0) with 479232K/45056K bytes of

Reset konfigurasi router dengan command berikut ini:

CCNA Lab Guide Nixtrain | 13

erase startup-config: command untuk menghapus konfigurasi router yang disimpan

--- System Configuration Dialog ---

CCNA Lab Guide Nixtrain | 14

Device IP Address Subnet Mask Gateway

CCNA Lab Guide Nixtrain | 15

CCNA Lab Guide Nixtrain | 16

Tampilkan interface router yang telah dikonfigurasi IP address

NXT-R1#show ip interface brief

NXT-R2#show ip interface brief

CCNA Lab Guide Nixtrain | 17

Type escape sequence to abort.

Type escape sequence to abort.

Ulangi command ping sampai 100%.

Verifikasi ping dari Laptop-1 ke NXT-R1 dan Laptop-2 ke NXT-R2

Pinging 172.16.1.1 with 32 bytes of data: