Lab 12 EIGRP - Filtering ACL

Assalamu'alaikum Warohmatullahi Wabarokatuh...
baik sahabat configer kali ini saya akan sedikit sharing mengenai Filtering ACL
untuk skema jaringannya seperti ini

Sekarang kita akan konfigurasi ip dan eigrp pada semua router :

Router 1

R1(config)#int lo0
R1(config-if)#ip add 1.1.1.1 255.255.255.255
R1(config)#int se1/0
R1(config-if)#ip add 12.12.12.1 255.255.255.0
R1(config-if)#no shutdown
R1(config)#router eigrp 10
R1(config-router)#net 1.1.1.1 0.0.0.0
R1(config-router)#net 12.12.12.1 0.0.0.0
R1(config-router)#no auto-summary

Router 2

R2(config)#int lo0
R2(config-if)#ip add 2.2.2.2 255.255.255.255
R2(config-if)#exit
R2(config)#int se1/0
R2(config-if)#ip add 12.12.12.2 255.255.255.0
R2(config-if)#no sh
R2(config)#int f0/0
R2(config-if)#ip add 23.23.23.2 255.255.255.0
R2(config-if)#no sh
R2(config)#router eigrp 10
R2(config-router)#net 12.12.12.2 0.0.0.0
R2(config-router)#net 2.2.2.2 0.0.0.0
R2(config-router)#net 23.23.23.2 0.0.0.0
R2(config-router)#no auto-summary

Router3

R3(config)#int lo0
R3(config-if)#ip add 3.3.3.3 255.255.255.255
R3(config-if)#ex
R3(config)#int f0/0
R3(config-if)#ip add 23.23.23.1 255.255.255.0
R3(config-if)#no sh
R3(config-if)#ex
R3(config)#router eigrp 10
R3(config-router)#net 3.3.3.3 0.0.0.0
R3(config-router)#net 23.23.23.1 0.0.0.0
R3(config-router)#no auto-summary

setelah selesai kita cek ip route dan test ping koneksinya

R1#sh ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is not set
1.0.0.0/32 is subnetted, 1 subnets
1.1.1.1 is directly connected, Loopback0
2.0.0.0/32 is subnetted, 1 subnets
2.2.2.2 [90/2297856] via 12.12.12.2, 00:10:43, Serial1/0
3.0.0.0/32 is subnetted, 1 subnets
3.3.3.3 [90/2300416] via 12.12.12.2, 00:05:37, Serial1/0
12.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
12.12.12.0/24 is directly connected, Serial1/0
12.12.12.1/32 is directly connected, Serial1/0
23.0.0.0/24 is subnetted, 1 subnets
23.23.23.0 [90/2172416] via 12.12.12.2, 00:05:39, Serial1/0

R1#ping 1.1.1.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 1.1.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms

R1#ping 2.2.2.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2.2.2.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 8/11/16 ms

R1#ping 3.3.3.3
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 3.3.3.3, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 28/32/40 ms

setelah kita selesai mengkonfigurasi EIGRP sekarang kita akan membuat interface loopback di R1 untuk difilter

R1(config)#int lo1
R1(config-if)#ip add 10.10.10.1 255.255.255.255
R1(config)#int lo2

R1(config-if)#ip add 10.10.10.2 255.255.255.255
R1(config)#int lo3

R1(config-if)#ip add 10.10.10.3 255.255.255.255
R1(config)#int lo4

R1(config-if)#ip add 10.10.10.4 255.255.255.255
R1(config)#int lo5

R1(config-if)#ip add 10.10.10.5 255.255.255.255
R1(config)#int lo6

R1(config-if)#ip add 10.10.10.6 255.255.255.255

selanjutnya kita advertise ke EIGRP

R2(config)#router eigrp 10
R2(config-router)net 10.10.10.1 0.0.0.0
R2(config-router)net 10.10.10.2 0.0.0.0
R2(config-router)net 10.10.10.3 0.0.0.0
R2(config-router)net 10.10.10.4 0.0.0.0
R2(config-router)net 10.10.10.5 0.0.0.0
R2(config-router)net 10.10.10.6 0.0.0.0

cek ip route di R3

R3#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

1.0.0.0/32 is subnetted, 1 subnets
D 1.1.1.1 [90/2300416] via 23.23.23.2, 00:03:18, FastEthernet0/0
2.0.0.0/32 is subnetted, 1 subnets
D 2.2.2.2 [90/156160] via 23.23.23.2, 00:03:18, FastEthernet0/0
3.0.0.0/32 is subnetted, 1 subnets
C 3.3.3.3 is directly connected, Loopback0
23.0.0.0/24 is subnetted, 1 subnets
C 23.23.23.0 is directly connected, FastEthernet0/0
10.0.0.0/32 is subnetted, 6 subnets
D 10.10.10.2 [90/2300416] via 23.23.23.2, 00:00:32, FastEthernet0/0
D 10.10.10.3 [90/2300416] via 23.23.23.2, 00:00:37, FastEthernet0/0
D 10.10.10.1 [90/2300416] via 23.23.23.2, 00:00:45, FastEthernet0/0
D 10.10.10.6 [90/2300416] via 23.23.23.2, 00:00:27, FastEthernet0/0
D 10.10.10.4 [90/2300416] via 23.23.23.2, 00:00:39, FastEthernet0/0
D 10.10.10.5 [90/2300416] via 23.23.23.2, 00:00:36, FastEthernet0/0
12.0.0.0/24 is subnetted, 1 subnets
D 12.12.12.0 [90/2172416] via 23.23.23.2, 00:03:49, FastEthernet0/0

sekarang kita akan mulai memfilter yang genap terlebih dahulu

R3(config)#access-list 1 per 0.0.0.0 255.255.255.254
R3(config)#router eigrp 10
R3(config-router)#distribute-list 1 in f0/0

cek routing table nya

R3(config)#do sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

2.0.0.0/32 is subnetted, 1 subnets
D 2.2.2.2 [90/156160] via 23.23.23.2, 00:07:48, FastEthernet0/0
3.0.0.0/32 is subnetted, 1 subnets
C 3.3.3.3 is directly connected, Loopback0
23.0.0.0/24 is subnetted, 1 subnets
C 23.23.23.0 is directly connected, FastEthernet0/0
10.0.0.0/32 is subnetted, 3 subnets
D 10.10.10.2 [90/2300416] via 23.23.23.2, 00:05:02, FastEthernet0/0
D 10.10.10.6 [90/2300416] via 23.23.23.2, 00:04:46, FastEthernet0/0
D 10.10.10.4 [90/2300416] via 23.23.23.2, 00:04:58, FastEthernet0/0
12.0.0.0/24 is subnetted, 1 subnets
D 12.12.12.0 [90/2172416] via 23.23.23.2, 00:07:53, FastEthernet0/0s

sekarang kita akan memfilter yang ganjil

R3(config)#no access-list 1 per 0.0.0.0 255.255.255.254
R3(config)#access-list 1 permit 0.0.0.1 255.255.255.254

tunggu sebentar dan kemudian cek routing table R3 dan tara yang ganjil pun sudah terfilter

R3(config)#do sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route

Gateway of last resort is not set

1.0.0.0/32 is subnetted, 1 subnets
D 1.1.1.1 [90/2300416] via 23.23.23.2, 00:02:15, FastEthernet0/0
3.0.0.0/32 is subnetted, 1 subnets
C 3.3.3.3 is directly connected, Loopback0
23.0.0.0/24 is subnetted, 1 subnets
C 23.23.23.0 is directly connected, FastEthernet0/0
10.0.0.0/32 is subnetted, 3 subnets
D 10.10.10.3 [90/2300416] via 23.23.23.2, 00:02:15, FastEthernet0/0
D 10.10.10.1 [90/2300416] via 23.23.23.2, 00:02:15, FastEthernet0/0
D 10.10.10.5 [90/2300416] via 23.23.23.2, 00:02:18, FastEthernet0/0

Alhamdulillah postingan kali ini telah selesai, jika artikel ini terasa bermanfaat silahkan bisa di share dengan menekan salah satu button dibawah ini.

Wassalamu'alaikum ...

TKJ BERSATU

Lab 12 EIGRP - Filtering ACL

Share this :

Unknown

0 Komentar

Penulisan markup di komentar