OSPF

CONFIGURING SINGLE-AREA OSPF

Open:
CCNA GNS3 FILES/OSPF TOPOLOGY/SINGLE AREA OSPF/single area ospf lab.gns3
file.

1. Establish Suspended telnet sessions from R2

a. From R2, telnet R1
b. From R2, telnet R3
2. Verify telnet sessions
R2#show sessions

SYNTAX:
conf t
router ospf <process #>
network <d.conn.net.addr> <wildcard mask> area <area#>
exit

USE AREA NUMBER: 0

R1:
conf t
router ospf 100
network 192.168.10.0 0.0.0.255 area 0
network 192.168.12.0 0.0.0.255 area 0
network 192.168.13.0 0.0.0.255 area 0
network 192.168.14.0 0.0.0.255 area 0
exit

1|Page
VERIFY: #show ip route

#show ip protocols

R2:
conf t
router ospf 100
network 192.168.10.0 0.0.0.255 area 0
network 201.52.60.0 0.0.0.255 area 0
network 10.0.0.0 0.0.0.255 area 0
network 20.0.0.0 0.0.0.255 area 0
exit

VERIFY: #show ip route

#show ip protocols

R3:
conf t
router ospf 100
network 201.52.60.0 0.0.0.255 area 0
network 172.16.16.0 0.0.0.255 area 0
network 172.16.17.0 0.0.0.255 area 0
network 172.16.18.0 0.0.0.255 area 0
network 172.16.19.0 0.0.0.255 area 0
exit

VERIFY: #show ip route ospf

#show ip protocols

ROUTER-IDs
2|Page
VERIFY FIRST: #

R1: #show ip protocols

R1 – 1.1.1.1
R2 – 2.2.2.2
R3 – 3.3.3.3

R1:
conf t
router ospf 100
router-id 1.1.1.1
exit
#clear ip ospf process

VERIFY: #show ip protocols

R2:
conf t
router ospf 100
router-id 2.2.2.2
exit
#clear ip ospf process

VERIFY: #show Ip protocols

R3:
conf t
3|Page
router ospf 100
router-id 3.3.3.3
exit
#clear ip ospf process

VERIFY: #show Ip protocols

#show ip ospf neighbor

CONFIGURING OSPF SECURITY:

OSPF SECURITY: PASSIVE INTERFACES

PASSIVE INTERFACES  interfaces whose network is advertised but is not sending
out hellos. sending out of hellos are disabled.

R1:

VERIFY FIRST: #show ip ospf neighbor

#show ip protocols

R1:

4|Page
BEST PRACTICE: WE NEED TO MAKE ALL INTERFACES PASSIVE INTERFACES FIRST

R1:
conf t
router ospf 100
passive-interface default
exit

VERIFY: #show ip ospf neighbor

#show ip protocols

NEXT, WE NEED TO MAKE ALLINTERFACES WITH ROUTERS CONNECTED TO BE NOT

PASSIVE

ON R1, SERIAL 0/0 MAY NAKADIKIT NA ROUTER, SO DPAT HINDI YAN PASSIVE

R1:
conf t
router ospf 100
no passive-interface serial 0/0
exit

VERIFY: #show ip ospf neighbor

#show ip protocols

R2:

5|Page
VERIFY FIRST: #show ip ospf neighbor

#show ip protocols

R2:

BEST PRACTICE: WE NEED TO MAKE ALL INTERFACES PASSIVE FIRST

R2:
conf t
router ospf 100
passive-interface default
exit

VERIFY: #show ip ospf neighbor

#show ip protocols

NEXT, WE NEED TO MAKE ALL INTERFACES WITH ROUTERS CONNECTED TO BE

NOT PASSIVE

ON R2, SERIAL 0/0 AND SERIAL 0/1 MAY NAKADIKIT NA ROUTER, SO DPAT HINDI
YAN PASSIVE

R2:
conf t
router ospf 100
no passive-interface serial 0/0
no passive-interface serial 0/1
exit

VERIFY: #show ip ospf neighbor

6|Page
R3:
conf t
router ospf 100
passive-interface default
no passive-interface serial 0/1
exit

VERIFY: #show ip ospf neighbor

#show ip protocols

PASSWORD/KEY-STRING  mnetpass

STEP1: WE NEED TO ACTIVATE THE OSPF AUTHENTICATION ON ALL ROUTERS IN

AN AREA

conf t
router ospf 100
area <area#> authentication message-digest
exit

STEP2: WE NEED TO CONFIGURE THE PASSWORD INSIDE AN INTERFACE

conf t
interface serial 0/0
ip ospf message-digest-key 1 md5 <key-string>
exit

R1:

key-string  mnetpass

VERIFY: #show ip ospf neighbor

7|Page
R1:
conf t
router ospf 100
area 0 authentication message-digest
exit
!
interface serial 0/0
ip ospf message-digest-key 1 md5 mnetpass
exit

VERIFY: #show ip ospf neighbor

R2:

VERIFY FIRST: #show ip ospf neighbor

key-string  mnetpass

R2:
conf t
router ospf 100
area 0 authentication message-digest
exit
!
interface serial 0/0
ip ospf message-digest-key 1 md5 mnetpass
exit

VERIFY: #show ip ospf neighbor

KEY-string FOR R2 – R3 LINK  r2r3pass

R2:
conf t
8|Page
interface serial 0/1
ip ospf message-digest-key 1 md5 r2r3pass
exit

VERIFY: #show ip ospf neighbor

R3:
conf t
router ospf 100
area 0 authentication message-digest
exit
!
interface serial 0/1
ip ospf message-digest-key 1 md5 r2r3pass
exit

VERIFY: #show ip ospf neighbor

CONFIGURING MULTI-AREA OSPF::

Open:
CCNA GNS3 FILES/OSPF TOPOLOGY/MULTI-AREA OSPF/multi-area ospf lab.gns3 FILE

1. Configure General configurations on all routers

a. Hostname
b. Enable password
c. Line console & Line vty login, password & exec-timeout
d. Banner Login
NOTE: All passwords must be cisco, all banners must have the Router
hostname as part of the banner.
2. Configure Serial Interface and Fast Ethernet interface IP Addresses on all
routers. ( Clockrates on DCE interfaces are 128000 )
3. Configure Loopback IP Addresses on R1 and R4

9|Page
TESTING:

R2:
R2#ping 192.168.64.1

R2#ping 192.168.10.2

R2#ping 192.168.10.3

R3#ping 192.168.55.2

R4#show ip int brief

MULTI-AREA OSPF LAB::

R1:
conf t
router ospf 100
router-id 1.1.1.1
network 10.0.0.1 0.0.0.255 area 64
network 192.168.64.0 0.0.0.255 area 64
exit

VERIFY: #show ip route

#show ip protocols

R2:
conf t
router ospf 100

10 | P a g e
router-id 2.2.2.2
network 192.168.64.0 0.0.0.255 area 64
network 192.168.10.0 0.0.0.255 area 0
exit

VERIFY: #show ip route

#show ip protocols

R5:
conf t
router ospf 100
router-id 5.5.5.5
network 192.168.10.0 0.0.0.255 area 0
exit

VERIFY: #show ip route

R3:
conf t
router ospf 100
router-id 3.3.3.3
network 192.168.10.0 0.0.0.255 area 0
network 192.168.55.0 0.0.0.255 area 55
exit

VERIFY: #show ip route

#show ip protocols

DR -> R3
BDR -> R2
Drother -> R5
11 | P a g e
R3 -> 255
R2 -> 200
R5 -> 0

R2:

VERIFY FIRST: #show ip ospf interface

R2:
conf t
interface fa0/0
ip ospf priority 200
exit

VERIFY: #show ip ospf interface fa0/0

R3 -> 255
R2 -> 200
R5 -> 0

R5:
conf t
interface fa0/0
ip ospf priority 0
exit

VERIFY: #show ip ospf interface fa0/0

R3:
conf t
interface fa0/0
12 | P a g e
ip ospf priority 255
exit

--
R4:
conf t
router ospf 100
router-id 4.4.4.4
network 40.0.0.0 0.0.0.255 area 55
network 192.168.55.0 0.0.0.255 area 55
exit

VERIFY: #show ip route

#show ip protocols

--
CONFIGURE R5 TO BE AN ASBR

>> CONNECT SI R5 KUNYARI PAPUNTANG INTERNET

CONFIGURE A DEFAULT ROUTE

SYNTAX:
conf t
ip route 0.0.0.0 0.0.0.0 <exit int/next hop ip addr>

TEST ROUTES:
*CREATE A DISCARD ROUTE

R5:
conf t
ip route 0.0.0.0 0.0.0.0 null 0
13 | P a g e
exit

VERIFY: #show ip route

*DEFAULT INFORMATION ORIGINATE

 THE OSPF ROUTER THAT IS CONNECTED TO THE INTERNET WOULD ADVERTISE
A DEFUALT ROUTE TO ALL OSPF ROUTERS IN THE OSPF DOMAIN..

VERIFY: #
R5#show ip protocols

#show ip route

R4

#show ip route

R5:
conf t
router ospf 100
default-information originate
exit

R5#show ip route

#show ip protocols

R4 #show ip route

ON R5:

CREATE A LOOPBACK IP
14 | P a g e
LOOPBACK 88

R5:
conf t
interface loopback 88
ip address 88.1.1.1 255.255.255.0
no shut
exit

FROM R1
R1#ping 88.1.1.1

CONFIGURING MULTI-ACCESS OSPF

Open:
CCNA GNS3 FILES/OSPF TOPOLOGY/MULTI-ACCESS OSPF/multi-access ospf lab.gns3
FILE

1. Configure General Configurations on all routers:

a. Hostname
b. Enable password
c. Line console login and password, exec-timeout
d. Line vty login and password, exec-timeout
e. Banner logins
NOTE: All passwords must be cisco, all banners must have the Router hostname
as part of the banner.
2. Configure the FA 0/0 IP Addresses on all routers ( Verify connectivity by
pinging fast ethernet interface ip addresses on neighbor routers)
3. Configure loopback interfaces on all routers..
4. Establish Suspended telnet sessions from R1
 From R1, telnet R2
 From R1, telnet R2

15 | P a g e
  From R1, telnet R3
 From R1, telnet R4
5. Verify telnet sessions.

6. Confgiure OSPF on all routers, advertise directly connected networks. (USE

AREA 0)
7. CONFIGURE ROUTER-ID
R1 – 1.1.1.1
R2 – 2.2.2.2
R3 – 3.3.3.3
R4 – 4.4.4.4

R1
conf t
router ospf 100
router-id 1.1.1.1
network 172.16.10.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.255 area 0
exit

R2:
conf t
router ospf 100
router-id 2.2.2.2
network 172.16.20.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.255 area 0
exit

R3:
conf t
router ospf 100
16 | P a g e
router-id 3.3.3.3
network 172.16.30.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.255 area 0
exit

R4:
conf t
router ospf 100
router-id 4.4.4.4
network 172.16.40.0 0.0.0.255 area 0
network 192.168.10.0 0.0.0.255 area 0
exit

VERIFY ON R4: #show ip ospf neighbor

R1#show ip ospf interface fa0/0

DR  R1
BDR  R2
DROTHERS  R3 & R4

R1:

VERIFY FIRST: #show ip ospf interface fa0/0

17 | P a g e
R1:
conf t
interface fa0/0
ip ospf priority 255
exit

VERIFY: #show ip ospf interface fa0/0

R1  PRIORITY = 255
R2  PRIORITY = 200
R3 & R4  PRIORITY = 0

R2:

VERIFY FIRST: #show ip ospf interface fa0/0

R2:
conf t
interface fa0/0
ip ospf priority 200
exit

VERIFY: #show ip ospf interface fa0/0

R3:

VERIFY FIRST: #show ip ospf interface fa0/0

18 | P a g e
R3:
conf t
interface fa0/0
ip ospf priority 0
exit

VERIFY: #show ip ospf interface fa0/0

R4:

VERIFY FIRST: #show ip ospf interface fa0/0

R4:
conf t
interface fa0/0
ip ospf priority 0
exit

VERIFY: #show ip ospf interface fa0/0

DR  R1
BDR  R2
DROTHERS  R3 & R4

R4#show ip ospf neighbor

KUNG BALIKTAD UNG OUTPUT

R2#clear ip ospf process

R2#SHOW IP OSPF INTERFACE FA0/0

19 | P a g e
20 | P a g e
21 | P a g e
22 | P a g e
23 | P a g e
24 | P a g e