Ccna-2v7.0 Case Study -rev B- Here
The case study - Rev B is a revised version of the original case study, which was updated to reflect the latest network technologies and industry trends. The case study is designed to evaluate a candidate's ability to apply theoretical knowledge to practical scenarios, making it an essential component of the CCNA certification process.
: Applying IPv4 VLSM and IPv6 prefix assignments to maximize address efficiency. Inter-VLAN Routing Router-on-a-Stick
Configuring WLANs with secure encryption types (e.g., WPA3 Enterprise/Personal).
: Segregating traffic for security and performance using 802.1Q trunks. ccna-2v7.0 case study -rev b-
S1(config)# interface range FastEthernet0/1 - 24 S1(config-if-range)# switchport mode access S1(config-if-range)# switchport port-security S1(config-if-range)# switchport port-security maximum 2 S1(config-if-range)# switchport port-security violation shutdown S1(config-if-range)# switchport port-security mac-address sticky Use code with caution. Mitigating Layer 2 Infrastructure Attacks
! Enterprise Core Sub-Interface Configuration (Router-on-a-Stick) interface GigabitEthernet0/0/1.10 encapsulation dot1Q 10 ip address 192.168.10.1 255.255.255.0 ipv6 address 2001:db8:acad:10::1/64 ipv6 address fe80::1 link-local description MGMT_Gateway interface GigabitEthernet0/0/1.20 encapsulation dot1Q 20 ip address 192.168.20.1 255.255.255.0 ipv6 address 2001:db8:acad:20::1/64 ipv6 address fe80::1 link-local description PROD_Gateway interface GigabitEthernet0/0/1.99 encapsulation dot1Q 99 native description Native_Transit_Drop Use code with caution. Phase 3: Switch Hardening and Infrastructure Security
By following these steps and tips, you'll be well on your way to completing the CCNA 2 v7.0 case study - Rev B successfully. Good luck! The case study - Rev B is a
The is a comprehensive, multi-part networking scenario used in Cisco Network Academy curricula to test a student's ability to design, configure, and troubleshoot an enterprise network infrastructure.
But wait – that denies Guest from everything. The requirement is usually: Guest can access internet, but not internal VLANs. So you need an extended ACL.
interface g0/0/1.99 encapsulation dot1Q 99 native ip address 192.168.99.1 255.255.255.0 Mitigating Layer 2 Infrastructure Attacks
IP addresses are excluded for static devices (e.g., the default gateway and management station) using ip dhcp excluded-address . Verification on a client PC involves using ipconfig (or show ip dhcp binding on the router) to ensure leases are obtained correctly.
: The first usable IP address in a subnet range is reserved for the local router interface acting as the Default Gateway.
Create and name all specified VLANs explicitly on every local switch.
R1(config)# access-list 100 deny ip 192.168.20.0 0.0.0.255 192.168.10.0 0.0.0.255 R1(config)# access-list 100 deny ip 192.168.20.0 0.0.0.255 192.168.99.0 0.0.0.255 R1(config)# access-list 100 permit ip any any R1(config)# interface g0/0/1.20 R1(config-subif)# ip access-group 100 in