Kali ini kita mau Setting router dan switch cisco untuk layanan isp menggunakan ip public statik
dengan ketentuan sebagai berikut :
Interface arah PE Gi0/0/0
Interface arah Switch Gi0/0/1
IP Public : 36.66.66.66/29 gateway 36.66.66.65
Vlan 100 IP 10.100.100.0/24
Vlan 200 IP 10.200.200.0/24
Point2 Configurasi Router :
1.Hostname, password, IP
2.Banner MOTD
3.Intervlan router on stik vlan 100 & 200
4.Default route
5.DHCP
6. DNS
7. NAT
8. SSH
Point2 Configurasi Switch :
1. Hostname, Password,
2. IP managment
3. Vlan
4. Telnet
5. STP PortFast
6. Default Gateway
========ROUTER========
1. Hostname, password, IP
Router#config terminal
Router(config)#hostname Router-CCNA
Router-CCNA(config)#enable secret cisco (passwordnya cisco)
Router-CCNA(config)#int Gi0/0/0
Router-CCNA(config-if)#no shutdown (aktifkan interface dirouter, default status shutdown)
Router-CCNA(config-if)#ip address 36.66.66.66 255.255.255.248
Router#config terminal
Router(config)#hostname Router-CCNA
Router-CCNA(config)#enable secret cisco (passwordnya cisco)
2. Banner MOTD
Router(config)#banner motd z DILARANG MASUK KECUALI NETWORK ADMIN !! z
3. Intervlan router on stik vlan 100 & 200
Router-CCNA (config)#int Gi0/0/1
Router-CCNA (config-if)#no shut
Router-CCNA (config)# int Gi0/0/1.100
Router-CCNA (config-subif)#encapsulation dot1Q 100
Router-CCNA (config-subif)#ip address 10.100.100.1 255.255.255.0
Router_CCNA(config-subif)#description VLAN-CLIENT
Router-CCNA (config)# int Gi0/0/1.200
Router-CCNA (config-subif)#encapsulation dot1Q 200
Router-CCNA (config-subif)#ip address 10.200.200.1 255.255.255.0
Router_CCNA(config-subif)#description VLAN-MGT
4. Statik Route dengan Default route
Router-CCNA (config)#ip route 0.0.0.0 0.0.0.0 36.66.66.65
5. DHCP
Router-CCNA (config)# ip dhcp pool dhcp1 (dhcp1 penamaan pool nya, penamaan bebas)
Router-CCNA (config)# network 10.100.100.0 255.255.255.0
Router-CCNA (config)# dns-server 8.8.8.8
Router-CCNA (config)# default-router 10.100.100.1
6. DNS DI ROUTER
Router-CCNA (config)# ip name-server 8.8.8.8
Router-CCNA (config)# ip domain lookup
7. NAT
Router-CCNA (config)# access-list 1 permit 10.100.100.1 0.0.0.255
Router-CCNA (config)# ip nat inside source list 1 interface Gi0/0/0 overload
Router-CCNA (config)# int gi0/0/0
Router-CCNA (config-if)# ip nat outside
Router-CCNA (config)# int Gi0/0/1.100
Router-CCNA (config-if)# ip nat inside
8. SSH
Switch-CCNA (config)# line vty 0 4
Switch-CCNA (config -line)#login local
Switch-CCNA (config)#username admin password cisco
Switch-CCNA (config)#enable secret cisco123
Switch-CCNA (config)#ip domain name ferry.net
Switch-CCNA (config)#crypto key generate rsa 1024 (untuk aktifkan ssh versi 2, atleast 768 bit)
==========SWITCH==========
1. HOSTNAME, PASSWORD
Switch(config)#hostname Switch-CCNA
Switch-CCNA (config)#enable secret cisco
2. IP MANAGMENT
Switch-CCNA(config)# int vlan 200
Switch-CCNA(config-if)# ip address 10.200.200.2 255.255.255.0
3. VLAN
Router-CCNA (config)# vlan 100
Switch(config-vlan)#name VLAN_CLIENT
Switch-CCNA (config)# vlan 200
Switch(config-vlan)#name VLAN_MGT
Switch-CCNA(config)# int fa0/24
Switch-CCNA (config-if)#switchport trunk encaspulation dot1q
(dibeberapa tipe os switch rubah menjadi mode trunk harus me encapulation terlebih dahulu, tapi jika bisa lsg rubah menjadi mode trunk command ini tidak perlu)
Switch-CCNA (config-if)#switchport mode trunk
Switch-CCNA (config-if)# switchport trunk allowed vlan 100,200
Switch-CCNA(config)# int fa0/1
Switch-CCNA (config-if)#switchport mode access
Switch-CCNA (config-if)# switchport access vlan 100
Switch-CCNA(config)# int fa0/2
Switch-CCNA (config-if)#switchport mode access
Switch-CCNA (config-if)# switchport access vlan 200
4. TELNET
Switch-CCNA (config)# line vty 0 4
Switch-CCNA (config -line)#login local
Switch-CCNA (config)#username admin password cisco
Switch-CCNA (config)#enable secret cisco
5. STP PORTFAST
Switch-CCNA (config)#interface gi0/0/1
Switch-CCNA (config-if)#spanningtree portfast
6. DEFAULT GATEWAY
Switch-CCNA(config)#ip default-gateway 10.200.200.1
Klo ada pertanyaan bisa ditanyakan di IG @kufastek jangan lupa follow guys 🙂
