kenapa R19 tidak bisa ping ke Loopback R16, berikut konfigurasi dimasing-masing router
R19
ip cef
no ip domain lookup
no ip dhcp use vrf connected
ip dhcp excluded-address 172.14.12.1 172.14.12.254
!
ip dhcp pool r17r18
network 172.14.12.16 255.255.255.252
domain-name cisco.com
dns-server 172.14.12.19
default-router 172.14.12.19
key chain eigrp
key 1
key-string cisco
class-map match-all udp
match access-group 101
class-map match-all tcp
match access-group 102
policy-map copp
class tcp
police cir 8000
conform-action transmit
exceed-action drop
class udp
police cir 8000
conform-action drop
exceed-action transmit
interface Loopback0
ip address 10.1.1.19 255.255.255.255
!
interface Ethernet0/0
ip address 172.14.12.19 255.255.255.248
ip authentication mode eigrp 200 md5
ip authentication key-chain eigrp 200 eigrp
half-duplex
!
interface Ethernet0/1
ip address 192.168.14.1 255.255.255.252
half-duplex
router eigrp 200
network 10.1.1.19 0.0.0.0
network 172.14.12.16 0.0.0.7
network 192.168.14.0 0.0.0.3
no auto-summary
access-list 101 permit udp any any
access-list 102 permit tcp any any
control-plane
service-policy output copp
R18
ip cef
no ip domain lookup
key chain eigrp
key 1
key-string cisco
interface Loopback0
ip address 10.1.1.18 255.255.255.255
!
interface Ethernet0/0
ip address 172.14.12.11 255.255.255.248
ip authentication mode eigrp 200 md5
ip authentication key-chain eigrp 200 eigrp
half-duplex
!
interface Ethernet0/1
ip address dhcp
half-duplex
router eigrp 200
network 10.1.1.18 0.0.0.0
network 172.14.12.8 0.0.0.7
network 172.14.12.16 0.0.0.7
no auto-summary
R17
ip cef
no ip domain lookup
key chain eigrp
key 1
key-string cisco
interface Loopback0
ip address 10.1.1.17 255.255.255.255
!
interface Ethernet0/0
ip address 172.14.12.10 255.255.255.248
ip authentication mode eigrp 200 md5
ip authentication key-chain eigrp 200 eigrp
half-duplex
!
interface Ethernet0/1
ip address dhcp
half-duplex
router eigrp 200
network 10.1.1.17 0.0.0.0
network 172.14.12.8 0.0.0.7
network 172.14.12.16 0.0.0.7
no auto-summary
R16
ip cef
no ip domain lookup
key chain eigrp
key 1
key-string cisco
username R15 password 0 cisco
interface Loopback0
ip address 10.1.1.16 255.255.255.255
!
interface Serial0/0
ip address 172.14.12.1 255.255.255.252
encapsulation ppp
serial restart-delay 0
ppp authentication chap
ppp chap hostname ccie
!
interface Ethernet1/0
ip address 172.14.12.10 255.255.255.248
ip authentication mode eigrp 200 md5
ip authentication key-chain eigrp 200 eigrp
half-duplex
router eigrp 200
network 10.1.1.16 0.0.0.0
network 172.14.12.0 0.0.0.3
network 172.14.12.8 0.0.0.7
no auto-summary
cek :
Pada R16 dan R17 ada IP yang sama
R16(config-if)#ip
address 172.14.12.9 255.255.255.248
selanjutnya cek R19 :
ip dhcp pool dhcp
network 172.14.12.0 255.255.255.0
domain-name cisco.com
dns-server 172.14.12.19
default-router 172.14.12.19
karena DHCPnya salah, maka ada beberapa hal yang harus diperbaiki
beberapa yang perlu dibenahi
- network 172.14.12.0 255.255.255.0 à
IP network dirubah menjadi 172.14.12.16 dan netmasknya dirubah ke
255.255.255.248
- dhcp excluded-address dirubah menjadi
172.14.12.20 172.14.12.22 (rubah atau
hapus???)
- no drop pada class drop_udp
- rubah drop menjadi transmit
R19(config)#no ip dhcp excluded-address
172.14.12.16 172.14.12.22
R19(config)#ip dhcp excluded-address
172.14.12.20 172.14.12.22
R19(config)#ip
dhcp pool dhcp
R19(dhcp-config)# network 172.14.12.16 255.255.255.248
R19(dhcp-config)#policy-map copp
R19(config-pmap)# class drop_udp
R19(config-pmap-c)#no drop
R19(config-pmap-c)# class eigrp
R19(config-pmap-c)# no police 80000 conform-action drop exceed-action drop
R19(config-pmap-c)# police 80000 conform-action transmit exceed-action transmit
perhatikan juga konfigurasi EIGRP dimasing-masing router.
selanjutnya pastikan R19 loopback bisa ping ke R16 loopback
R16#ping 10.1.1.19 source 10.1.1.16
Sending 5, 100-byte ICMP Echos to 10.1.1.19,
timeout is 2 seconds:
Packet sent with a source address of
10.1.1.16
!!!!!
Success rate is 100 percent (5/5), round-trip
min/avg/max = 412/996/1560 ms
Tidak ada komentar:
Posting Komentar