Lab 3.1 - HackMD

# Lab 3.1 ###### tags: `Lab` ![](https://i.imgur.com/Qb1ZtOv.png) VLAN 10 ~ 192.168.10.0/24 VLAN 20 ~ 192.168.20.0/24 VLAN 30 ~ 192.168.30.0/24 VLAN100 ~ 192.168.100.0/24 = Mgt VLAN ## Configure the BR ```teringleier jarne ena conf t hostname br no ip domain-lookup int fa0/0 desc wan ip nat outside ip add 172.23.80.69 255.255.254.0 no shut int fa0/1 desc lan no ip address duplex auto no shut int fa0/1.1 encapsulation dot1Q 10 ip nat inside ip address 192.168.10.1 255.255.255.0 int fa0/1.2 encapsulation dot1Q 20 ip nat inside ip address 192.168.20.1 255.255.255.0 ip helper-address 192.168.10.2 int fa0/1.3 encapsulation dot1Q 30 ip nat inside ip address 192.168.30.1 255.255.255.0 ip helper-address 192.168.10.2 int fa0/1.10 encapsulation dot1Q 100 ip address 192.168.100.1 255.255.255.0 ip helper-address 192.168.10.2 int fa0/1.999 descr Native ip route 0.0.0.0 0.0.0.0 fa0/0 ip nat inside source list 1 interface fa0/0 overload access-list 1 permit 192.168.10.0 0.0.0.255 access-list 1 permit 192.168.20.0 0.0.0.255 access-list 1 permit 192.168.30.0 0.0.0.255 access-list 1 permit 192.168.100.0 0.0.0.255 end ``` ## Hardening the BR ```geef mij mijn kankerdetectie ``` ## Configure the Switch ```dumbfuck ruban ena conf t vlan 10 name vlan10 int vlan10 no ip address no shut vlan 20 name vlan20 int vlan20 no ip address no shut vlan 30 name vlan30 int vlan30 no ip address no shut vlan 100 name mgnt int vlan100 ip address 192.168.100.2 255.255.255.0 no shut vlan 999 name native int vlan999 no shut int gi0/1 switchport mode trunk switchport trunk native vlan 999 int range fa0/1-8 switchport mode access switchport access vlan 10 int range fa0/9-16 switchport mode access switchport access vlan 20 int range fa0/17-24 switchport mode access switchport access vlan 30