Professional Documents
Culture Documents
2 Superlab#2
2 Superlab#2
2 Superlab#2
TOPOLOGI
TUJUAN
1. VLAN
2. TRUNK
3. PORT-SECURITY
4. INTERVLAN ROUTING
5. EIGRP
6. DHCP
KONFIGURASI
NXT-S1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-S1(config)#vlan 10
NXT-S1(config-vlan)#name IT
NXT-S1(config-vlan)#vlan 20
NXT-S1(config-vlan)#name ADMIN
NXT-S1(config-vlan)#
NXT-S1(config-vlan)#interface range fa0/1 - 10
NXT-S1(config-if-range)#switchport mode access
NXT-S1(config-if-range)#switchport access vlan 10
NXT-S1(config-if-range)#
NXT-S1(config-if-range)#interface range fa0/11 - 20
NXT-S1(config-if-range)#switchport mode access
NXT-S1(config-if-range)#switchport access vlan 20
NXT-S1(config-if-range)#
NXT-S2#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-S2(config)#vlan 10
NXT-S2(config-vlan)#name IT
NXT-S2(config-vlan)#vlan 20
NXT-S2(config-vlan)#name ADMIN
NXT-S2(config-vlan)#
NXT-S2(config-vlan)#interface range fa0/1 - 10
NXT-S2(config-if-range)#switchport mode access
NXT-S2(config-if-range)#switchport access vlan 10
NXT-S2(config-if-range)#
NXT-S2(config-if-range)#interface range fa0/11 - 20
NXT-S2(config-if-range)#switchport mode access
NXT-S2(config-if-range)#switchport access vlan 20
NXT-S2(config-if-range)#
NXT-S2(config-if-range)#interface g0/1
NXT-S2(config-if)#switchport mode trunk
NXT-S2(config-if)#switchport trunk allowed vlan all
Untuk mencegah user illegal yang mencoba masuk ke port switch, aktifkan port-security di NXT-
S1 di port fa0/5 - fa0/15
NXT-S1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-S1(config)#interface range fa0/5 - 15
NXT-S1(config-if-range)#switchport port-security
NXT-S1(config-if-range)#switchport port-security mac-address sticky
NXT-S1(config-if-range)#switchport port-security maximum 1
NXT-S1(config-if-range)#switchport port-security violation shutdown
Ketika ada user illegal yang mencoba masuk ke port switch, maka port switch akan shutdown
otomatis. Port-security salah satu fitur security di Layer 2.
NXT-R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-R1(config)#interface g0/1.10
NXT-R1(config-subif)#encapsulation dot1q 10
NXT-R1(config-subif)#ip address 192.168.1.1 255.255.255.0
NXT-R1(config-subif)#
NXT-R1(config-subif)#interface g0/1.20
NXT-R1(config-subif)#encapsulation dot1q 20
NXT-R1(config-subif)#ip address 192.168.2.1 255.255.255.0
NXT-R4#conf t
NXT-R4(config)#interface g0/1.10
NXT-R4(config-subif)#encapsulation dot1q 10
NXT-R4(config-subif)#ip address 172.16.1.1 255.255.255.0
NXT-R4(config-subif)#
NXT-R4(config-subif)#interface g0/1.20
NXT-R4(config-subif)#encapsulation dot1q 20
NXT-R4(config-subif)#ip address 172.16.2.1 255.255.255.0
NXT-R4(config-subif)#
NXT-R4(config-subif)#interface g0/1
NXT-R4(config-if)#no shutdown
NXT-R1#conf t
NXT-R1(config)#router eigrp 100
NXT-R1(config-router)#no auto-summary
NXT-R1(config-router)#network 12.0.0.0
NXT-R1(config-router)#network 13.0.0.0
NXT-R1(config-router)#network 192.168.1.0
NXT-R1(config-router)#network 192.168.2.0
NXT-R2#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-R2(config)#router eigrp 100
NXT-R2(config-router)#no auto-summary
NXT-R2(config-router)#network 12.0.0.0
NXT-R2(config-router)#
%DUAL-5-NBRCHANGE: IP-EIGRP 100: Neighbor 12.12.12.1 (Serial0/0/0) is
up: new adjacency
NXT-R2(config-router)# network 24.24.24.0
NXT-R3#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-R3(config)#router eigrp 100
NXT-R3(config-router)#no auto-summary
NXT-R3(config-router)#network 13.0.0.0
NXT-R3(config-router)#
%DUAL-5-NBRCHANGE: IP-EIGRP 100: Neighbor 13.13.13.1 (Serial0/0/0) is
up: new adjacency
NXT-R3(config-router)#network 34.0.0.0
Semua router telah berhasil membentuk adjacency sehingga informasi update routing EIGRP
bisa saling terkirim antar router.
NXT-R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
NXT-R1(config)#ip dhcp pool VLAN10
NXT-R1(dhcp-config)#network 192.168.1.0 255.255.255.0
NXT-R1(dhcp-config)#default-router 192.168.1.1
NXT-R1(dhcp-config)#dns-server 8.8.8.8
NXT-R1(dhcp-config)#
NXT-R1(dhcp-config)#ip dhcp pool VLAN20
NXT-R1(dhcp-config)#network 192.168.2.0 255.255.255.0
NXT-R1(dhcp-config)#default-router 192.168.2.1
NXT-R1(dhcp-config)#dns-server 8.8.8.8
NXT-R1(dhcp-config)#
NXT-R1(dhcp-config)#exit
NXT-R1(config)#
NXT-R1(config)#ip dhcp excluded-address 192.168.1.1 192.168.1.10
NXT-R1(config)#ip dhcp excluded-address 192.168.2.1 192.168.2.10
C:\>ping 172.16.1.9
C:\>ping 172.16.2.9
Buka web browser di Laptop-1 dan akses web menuju Web Server 172.16.1.9