ICND Fail!

Unanswered Question
Oct 17th, 2007
User Badges:

failed icnd monday 788 points

planning design 80%

implementation and operation 72%

troubleshooting 53%

technology 78%

is there any way to gage just how far off i am from these points its very dissapointing!


a question regading NAT and pat


if i have a arouter with 2 ethernet segments e0 192.168.1.0 255.255.255.0

e1 192.168.2.0 255.255.255.0


and i want to configure Nat for the 2 segments


can the 2 segments be catered for in one ip nat pool statment


what am basically saying is how i do create a statment if possible to cover the 2 lan segments for nat.


one other question regarding ACLS


cisco states that acls for extended acls be placed closest to source is there any time that you would not place it as close to the source.


Thanks in advance.




thought id cracked it!


i know i have weak areas.

stp nat and pat etc.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
LordFlasheart Wed, 10/17/2007 - 00:43
User Badges:
  • Bronze, 100 points or more

First of all, keep your chin up. You nearly passed so get onto the exam again as quickly as possible.


In the NAT question you have to ask how many outside addresses are available. If there is only 1 then you need to configure PAT. If you have many outside addresses then you should use dynamic NAT using NAT pools.


I have feeling it is the former, in which case you create an access-list permitting the two subnets and then use the command:


ip nat inside source list interface overload


HTH and good luck,


Chris

mundo1234 Wed, 10/17/2007 - 04:15
User Badges:

chris thanks ive booked it for monday 10.30 am


still unclear on what your saying


if the acl defines was addresses are to be translated

and i have 2 segments

192.168.1.0

192.168.2.0

how would you define an acl to permit pool adresses to be allocated to both lan segments.


i am under the impression that you would have to define 2 statements becuase of the network addresses differ.


am wondering if the question that was posed to me was relating to the fact that the acl should of had overload statment.


NAT is my weakness!


thanks


any advice on acls another weakness of mine


really want to get it done and out the way this week!


would you know of any good resources i have the ccna semester 1 and 2 and 3 and 4 but i dont think they explain nat that clearly.



NateBattle Wed, 10/17/2007 - 03:24
User Badges:

You would just create 2 access list statement with the same number ie


access-list 10 permit 192.168.1.0 0.0.0.255

access-list 10 permit 192.168.2.0 0.0.0.255


As for your second question, for the test you should always follow the cisco mantra -- Standard list close to the destination, extended list close to the source.

mundo1234 Wed, 10/17/2007 - 04:30
User Badges:

Thanks for that


changing the topic some what, relating to stp


what information can be aquired from a partial output of show span-tree.

ie i know you would get like the bridge id and priority values.


if the path cost to root is 19 what can be determined by this partal kind of output


once again thanks




Kevin Dorrell Wed, 10/17/2007 - 05:00
User Badges:
  • Green, 3000 points or more

I think you asked about this before but in more general terms.


In this particular case, your cost to root is 19. Maybe one of your ports - specifically the root port - had a cost of 19. In which case, the root bridge is whatever is at the other end of that link.


Kevin Dorrell

Luxembourg


mundo1234 Mon, 10/22/2007 - 06:29
User Badges:

Passed the bugger today!

918


what a relief.


my problem is i think the answer cant be a simple one! half the time the answer is staring you in the face just begging to be ticked!


Thanks to everyone who has responded to my post.


Mundo



Actions

This Discussion