Konfigurasi Dasar Router Switch Cisco untuk Service Dedicated Internet

cisco

Cara konfigurasi dasar router dan switch cisco untuk service dedicated internet (dapat ip public) dari ISP, dasar dalam arti disini akan bahas konfigurasi router cisco sebagai router NAT saja. Berikut asumsi alokasi IP Address dari topologi diatas :

  • IP Gateway ISP 192.253.20.57/29
  • IP Router Customer 192.253.20.58/29
  • IP Untuk NAT Customer 192.253.20.59/29
  • IP LAN Customer 192.168.10.0/24

Berikut konfigurasi disisi Router Cisco Customer :

*** Konfigurasi IP WAN ***
interface GigabitEthernet0/1
 description *** Link To Provider ***
 ip address 192.253.20.58 255.255.255.248
 ip nat outside

*** Konfigurasi IP LAN ***
interface GigabitEthernet0/0
 description *** Link to Internal ***
 ip address 192.168.10.1 255.255.255.0
 ip nat inside

*** Buat DHCP pool IP LAN ***
ip dhcp pool biznet
 network 192.168.10.0 255.255.255.0
 default-router 192.168.10.1
 dns-server 203.142.82.222 203.142.84.222
 ip dhcp excluded-address 192.168.10.255

*** Buat access-list untuk IP LAN ***
access-list 1 permit 192.168.10.0 0.0.0.255

*** Buat NAT untuk IP LAN ***
ip nat pool biznet 192.253.20.59 192.253.20.59 netmask 255.255.255.248
ip nat inside source list 1 pool biznet overload

*** Buat static route dengan next-hop IP gateway di ISP ***
ip route 0.0.0.0 0.0.0.0 192.253.20.57 

*** Buat akses untuk remote login Router ***
enable password cisco01

line vty 0 4
 password cisco01
 login

Berikut konfigurasi disisi Switch Cisco Customer :

*** Buat IP Management Switch dari ip LAN ***
interface Vlan1
 ip address 192.168.10.255 255.255.255.0

*** Buat akses untuk remote login switch ***
enable password cisco01

line vty 0 4
 password cisco01
 login

Cek PC-Client sudah dapat ip dhcp client dan bisa ping ke internet :

C:\>ipconfig

Windows IP Configuration
Ethernet adapter Local Area Connection:

 Connection-specific DNS Suffix . :
 IPv4 Address. . . . . . . . . . . : 192.168.10.2
 Subnet Mask . . . . . . . . . . . : 255.255.255.0
 Default Gateway . . . . . . . . . : 192.168.10.1

PC>ping 8.8.8.8

Pinging 8.8.8.8 with 32 bytes of data:

Reply from 8.8.8.8: bytes=32 time=1ms TTL=254
Reply from 8.8.8.8: bytes=32 time=0ms TTL=254
Reply from 8.8.8.8: bytes=32 time=0ms TTL=254
Reply from 8.8.8.8: bytes=32 time=16ms TTL=254

Ping statistics for 8.8.8.8:
 Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
 Minimum = 0ms, Maximum = 16ms, Average = 4ms

Test remote login ke Router dan Switch dari PC-Client :

PC>telnet 192.168.10.255
Trying 192.168.10.255 ...Open

User Access Verification
Password: 
Switch>enable
Password: 

Switch#show interfaces vlan 1
Vlan1 is up, line protocol is up
 Hardware is CPU Interface, address is 0090.21ca.4d23 (bia 0090.21ca.4d23)
 Internet address is 192.168.10.255/24
 MTU 1500 bytes, BW 100000 Kbit, DLY 1000000 usec,
 reliability 255/255, txload 1/255, rxload 1/255
 Encapsulation ARPA, loopback not set
 ARP type: ARPA, ARP Timeout 04:00:00
 Last input 21:40:21, output never, output hang never
 Last clearing of "show interface" counters never
 Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
 Queueing strategy: fifo
 Output queue: 0/40 (size/max)
 5 minute input rate 0 bits/sec, 0 packets/sec
 5 minute output rate 0 bits/sec, 0 packets/sec
 1682 packets input, 530955 bytes, 0 no buffer
 Received 0 broadcasts (0 IP multicast)
 0 runts, 0 giants, 0 throttles
 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
 563859 packets output, 0 bytes, 0 underruns
 0 output errors, 23 interface resets
 0 output buffer failures, 0 output buffers swapped out

PC>telnet 192.168.0.1
Trying 192.168.0.1 ...Open

User Access Verification
Password: 
Router>enable
Password: 

Router#sh int g0/0
GigabitEthernet0/0 is up, line protocol is up (connected)
 Hardware is CN Gigabit Ethernet, address is 0001.c763.7a01 (bia 0001.c763.7a01)
 Description: *** Link to Internal ***
 Internet address is 192.168.10.1/24
 MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec,
 reliability 255/255, txload 1/255, rxload 1/255
 Encapsulation ARPA, loopback not set
 Keepalive set (10 sec)
 Full-duplex, 100Mb/s, media type is RJ45
 output flow-control is unsupported, input flow-control is unsupported
 ARP type: ARPA, ARP Timeout 04:00:00, 
 Last input 00:00:08, output 00:00:05, output hang never
 Last clearing of "show interface" counters never
 Input queue: 0/75/0 (size/max/drops); Total output drops: 0
 Queueing strategy: fifo
 Output queue :0/40 (size/max)
 5 minute input rate 29 bits/sec, 0 packets/sec
 5 minute output rate 20 bits/sec, 0 packets/sec
 138 packets input, 7832 bytes, 0 no buffer
 Received 6 broadcasts, 0 runts, 0 giants, 0 throttles
 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
 0 watchdog, 1017 multicast, 0 pause input
 0 input packets with dribble condition detected
 109 packets output, 6715 bytes, 0 underruns
 0 output errors, 0 collisions, 1 interface resets
 0 unknown protocol drops
 0 babbles, 0 late collision, 0 deferred
 0 lost carrier, 0 no carrier
 0 output buffer failures, 0 output buffers swapped out

Sekian Konfigurasi Dasar Router Switch Cisco untuk Service Dedicated Internet 🙂