IPExpert V3 Lab9

1.1 VTP pruning in transparent mode

A sh vtp status output show transparent mode with vtp pruning enabled.
Need to configure pruning in server then switch to transparent. Be careful if extended vlan are configured !

1.2 Load Balancing method over etherchannel

By default source mac.
The question was about being sure One host will not saturate one link. Load balancing source and destination IP was the key ( or the mac)

1.4 Layer 2 protection Task

The task asked about making part of the topology unknow to CE routers. Sould be implemented in 2 manners :
- 2 devices sould interconnect on 1 vlans that sould not be propagated on the network -> QinQ
A new vlan is attibuted to encapsulate the forbidden network on trunks links.
-R4 should be connected at Cat4 on vlan X, there is a switch between R4 & Cat4, the switch sould not know vlan X. Easy just with access ports:

R4 vlanX ------- vlan Y Cat vlanY ------ vlanX Cat4

1.7 Load-Sharing

By default equal-costIP load-balancing is done by CEF on a per-dest basis.
Could be configured per-packet

int C
ip load-sharing per-packet

2.7 BGP redistribution as-path

When redistributing local, if you want them appear from an as

st origin egrp as-path

3.3 L2VPN AToM

The purpose was about L2VPN over MPLS .
- Use xconnect with encapsulation mpls. The destination is the remote PE device and the circuit is identified by an identical id on boths sides.
- Needs LDP
- Could be done under subinterfaces.

4.0 Multicast VPN

Steps for multicast vpn :
-Configure provide network with PIM
-If pim-ssm is used the address-family mdt should be activated between PE to share PE source of the mdt tunnels.
-Configure multicast for each vrf : activate, and choose a unique mdt group adress for each multicast domain
-activate pim on the client side interface of the PE
-configure the multicast domain client side as usual.

The provider network is seen as a lan.

5.0 Parser view

- enable secret
- aaa new-model
- Go into enable view root
- Configure authentication login and authorization exec
- Configure the view
parser view XXX
commands exec include ping

6.3 VRF Aware NAT

Performing nat between a vrf and the global outside table is pretty the same as normal nat except :
- ip nat inside source ... should use the vrf keyword specifying vrf is inside
- A route leak should be configured from the vrf to the global routing table

ip route vrf VPNA 0.0.0.0 0.0.0.0 10.0.0.1 global.

Indicate inside the vrf that to goes out use 10.0.0.1 that is in the global RIB