ewqfr

!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ipv6 unicast-routing
multilink bundle-name authenticated
mpls label protocol tdp
mpls ldp advertise-labels for 14
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.1 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 172.14.8.5 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 ipv6 address 2002:15::1/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface Ethernet1/1
 ip address 172.14.8.9 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 ipv6 address 2002:14::1/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface Ethernet1/2
 ip address 172.14.8.13 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 mpls ip
!
interface Ethernet1/3
 ip address 172.14.8.17 255.255.255.252
 rate-limit input access-group 100 8000 1500 2000 conform-action transmit exceed-action drop
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 mpls ip
!
router ospf 1
 router-id 10.1.1.1
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.1 0.0.0.0 area 0
 network 172.14.8.5 0.0.0.0 area 0
 network 172.14.8.9 0.0.0.0 area 0
 network 172.14.8.13 0.0.0.0 area 0
 network 172.14.8.17 0.0.0.0 area 0
!
router bgp 3
 bgp cluster-id 12
 bgp log-neighbor-changes
 neighbor 10.1.1.3 remote-as 3
 neighbor 10.1.1.3 update-source Loopback0
 neighbor 10.1.1.4 remote-as 3
 neighbor 10.1.1.4 update-source Loopback0
 neighbor 10.1.1.5 remote-as 3
 neighbor 10.1.1.5 update-source Loopback0
 neighbor 10.1.1.6 remote-as 3
 neighbor 10.1.1.6 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.3 activate
  neighbor 10.1.1.3 send-community
  neighbor 10.1.1.3 route-reflector-client
  neighbor 10.1.1.4 activate
  neighbor 10.1.1.4 send-community
  neighbor 10.1.1.4 route-reflector-client
  neighbor 10.1.1.5 activate
  neighbor 10.1.1.5 send-community
  neighbor 10.1.1.5 route-reflector-client
  neighbor 10.1.1.6 activate
  neighbor 10.1.1.6 send-community
  neighbor 10.1.1.6 route-reflector-client
  auto-summary
  synchronization
  network 10.1.1.1 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.3 activate
  neighbor 10.1.1.3 send-community both
  neighbor 10.1.1.3 route-reflector-client
  neighbor 10.1.1.4 activate
  neighbor 10.1.1.4 send-community both
  neighbor 10.1.1.4 route-reflector-client
  neighbor 10.1.1.5 activate
  neighbor 10.1.1.5 send-community both
  neighbor 10.1.1.5 route-reflector-client
  neighbor 10.1.1.6 activate
  neighbor 10.1.1.6 send-community both
  neighbor 10.1.1.6 route-reflector-client
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 1 permit 10.1.1.1 0.0.0.6
access-list 1 deny   any
access-list 14 permit 10.1.1.3
access-list 14 permit 10.1.1.6
access-list 14 permit 10.1.1.4
access-list 14 permit 10.1.1.5
access-list 100 permit icmp host 10.1.1.5 any
access-list 100 permit icmp host 172.14.8.18 any
access-list 100 permit icmp host 172.14.8.22 any
ipv6 router ospf 1
 router-id 10.1.1.1
 log-adjacency-changes
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R10
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
class-map match-all TELNET
 match access-group 100
!
policy-map TELNET
 class TELNET
    police 10000 3000 2500 conform-action drop  exceed-action drop  violate-action drop
!
interface Loopback0
 ip address 10.1.1.10 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 10.10.10.34 255.255.255.252
 full-duplex
!
interface Ethernet1/1
 ip address 10.10.10.18 255.255.255.252
 ip access-group 100 in
 full-duplex
!
interface Ethernet1/2
 no ip address
 shutdown
 full-duplex
!
interface Ethernet1/3
 ip address 10.10.10.41 255.255.255.252
 full-duplex
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.10 0.0.0.0 area 0
 network 10.10.10.18 0.0.0.0 area 0
 network 10.10.10.34 0.0.0.0 area 0
 network 10.10.10.41 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 100 permit tcp any any eq telnet
access-list 100 permit icmp any any
access-list 100 permit ospf any any
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R11
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.11 255.255.255.255
!
interface FastEthernet0/0
 ip address 10.10.10.30 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 10.10.10.45 255.255.255.252
 duplex auto
 speed auto
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.11 0.0.0.0 area 0
 network 10.10.10.30 0.0.0.0 area 0
 network 10.10.10.45 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R12
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.12 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 no ip address
 shutdown
 full-duplex
!
interface Ethernet1/1
 no ip address
 shutdown
 full-duplex
!
interface Ethernet1/2
 no ip address
 shutdown
 full-duplex
!
interface Ethernet1/3
 ip address 10.10.10.38 255.255.255.252
 full-duplex
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.12 0.0.0.0 area 0
 network 10.10.10.38 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R13
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
class-map match-all mark
 match access-group 100
!
policy-map mark
 class mark
  set precedence 1
!
interface Loopback0
 ip address 10.1.1.13 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 10.10.10.46 255.255.255.252
 duplex auto
 speed auto
 service-policy output mark
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.13 0.0.0.0 area 0
 network 10.10.10.46 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 100 permit ip host 10.1.1.13 host 10.1.1.7
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R14
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
class-map match-all mark
 match access-group 100
!
policy-map mark
 class mark
  set precedence 1
!
interface Loopback0
 ip address 10.1.1.14 255.255.255.255
!
interface FastEthernet0/0
 ip address 10.10.10.42 255.255.255.252
 duplex auto
 speed auto
 service-policy output mark
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.14 0.0.0.0 area 0
 network 10.10.10.42 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 100 permit ip host 10.1.1.14 host 10.1.1.7
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R15
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
username R15 password 0 cisco
archive
 log config
  hidekeys
!
!
class-map match-all mark
 match access-group 100
!
policy-map mark
 class mark
  set precedence 1
!
interface Loopback0
 ip address 10.1.1.15 255.255.255.255
!
interface Loopback10
 ip address 17.1.1.1 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.12.1 255.255.255.252
 encapsulation ppp
 serial restart-delay 0
 clock rate 64000
 ppp authentication chap
 ppp chap hostname R16
 ppp chap password 0 cisco
!
interface Serial1/1
 ip address 1.1.10.2 255.255.255.252
 serial restart-delay 0
 clock rate 64000
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router eigrp 200
 network 1.1.10.0 0.0.0.3
 network 10.1.1.15 0.0.0.0
 network 171.1.1.1 0.0.0.0
 network 172.14.12.0 0.0.0.3
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R16
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
key chain eigrp
 key 1
   key-string cisco
!
username R16 password 0 cisco
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.16 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.12.9 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.12.2 255.255.255.252
 encapsulation ppp
 serial restart-delay 0
 ppp authentication chap
 ppp chap hostname R15
 ppp chap password 0 cisco
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router eigrp 200
 network 1.1.16.0 0.0.0.3
 network 10.1.1.16 0.0.0.0
 network 172.14.12.0 0.0.0.3
 network 172.14.12.8 0.0.0.7
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R17
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
key chain eigrp
 key 1
   key-string cisco
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.17 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.12.10 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 172.14.12.17 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
!
router eigrp 200
 network 10.1.1.16 0.0.0.3
 network 172.14.12.8 0.0.0.7
 network 172.14.12.16 0.0.0.7
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
ntp authentication-key 1 md5 070C285F4D06 7
ntp authenticate
ntp trusted-key 1
ntp clock-period 17179830
ntp server 10.1.1.16 key 1
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R18
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
key chain eigrp
 key 1
   key-string cisco
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.18 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.12.11 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 172.14.12.18 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
!
router eigrp 200
 network 10.1.1.16 0.0.0.3
 network 172.14.12.8 0.0.0.7
 network 172.14.12.16 0.0.0.7
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
ntp authentication-key 1 md5 030752180500 7
ntp authenticate
ntp trusted-key 1
ntp clock-period 17179830
ntp server 10.1.1.16 key 1
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R19
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
no ip dhcp use vrf connected
!
ip dhcp pool r17r18
   network 172.14.12.16 255.255.255.248
   domain-name cisco.com
   dns-server 172.14.12.19
   default-router 172.14.12.19
!
multilink bundle-name authenticated
!
key chain eigrp
 key 1
   key-string cisco
!
archive
 log config
  hidekeys
!
!
class-map match-all udp
 match access-group 101
class-map match-all tcp
 match access-group 102
!
policy-map copp
 class tcp
   police cir 8000
     conform-action transmit
     exceed-action drop
 class udp
   police cir 8000
     conform-action transmit
     exceed-action drop
!
interface Loopback0
 ip address 10.1.1.19 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.12.19 255.255.255.248
 ip authentication mode eigrp 200 md5
 ip authentication key-chain eigrp 200 eigrp
 duplex auto
 speed auto
 service-policy output copp
!
interface FastEthernet0/1
 ip address 192.168.14.1 255.255.255.252
 duplex auto
 speed auto
!
router eigrp 200
 network 10.1.1.19 0.0.0.0
 network 172.14.12.16 0.0.0.7
 network 192.168.14.0 0.0.0.3
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 101 permit udp any any
access-list 102 permit tcp any any
!
control-plane
 service-policy output copp
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ipv6 unicast-routing
multilink bundle-name authenticated
mpls label protocol ldp
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.2 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 172.14.8.21 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 mpls ip
!
interface Ethernet1/1
 ip address 172.14.8.25 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 mpls ip
!
interface Ethernet1/2
 ip address 172.14.8.29 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 ipv6 address 2001:100::2/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface Ethernet1/3
 ip address 172.14.8.33 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 ipv6 address 2001:200::2/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
router ospf 1
 router-id 10.1.1.2
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.2 0.0.0.0 area 0
 network 172.14.8.21 0.0.0.0 area 0
 network 172.14.8.25 0.0.0.0 area 0
 network 172.14.8.29 0.0.0.0 area 0
 network 172.14.8.33 0.0.0.0 area 0
!
router bgp 3
 bgp cluster-id 12
 bgp log-neighbor-changes
 neighbor 10.1.1.3 remote-as 3
 neighbor 10.1.1.3 update-source Loopback0
 neighbor 10.1.1.4 remote-as 3
 neighbor 10.1.1.4 update-source Loopback0
 neighbor 10.1.1.5 remote-as 3
 neighbor 10.1.1.5 update-source Loopback0
 neighbor 10.1.1.6 remote-as 3
 neighbor 10.1.1.6 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.3 activate
  neighbor 10.1.1.3 send-community
  neighbor 10.1.1.3 route-reflector-client
  neighbor 10.1.1.4 activate
  neighbor 10.1.1.4 send-community
  neighbor 10.1.1.4 route-reflector-client
  neighbor 10.1.1.5 activate
  neighbor 10.1.1.5 send-community
  neighbor 10.1.1.5 route-reflector-client
  neighbor 10.1.1.6 activate
  neighbor 10.1.1.6 send-community
  neighbor 10.1.1.6 route-reflector-client
  no auto-summary
  no synchronization
  network 10.1.1.2 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.3 activate
  neighbor 10.1.1.3 send-community both
  neighbor 10.1.1.3 route-reflector-client
  neighbor 10.1.1.4 activate
  neighbor 10.1.1.4 send-community both
  neighbor 10.1.1.4 route-reflector-client
  neighbor 10.1.1.5 activate
  neighbor 10.1.1.5 send-community both
  neighbor 10.1.1.5 route-reflector-client
  neighbor 10.1.1.6 activate
  neighbor 10.1.1.6 send-community both
  neighbor 10.1.1.6 route-reflector-client
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ip access-list extended ALLOW
 permit esp host 172.14.8.34 host 172.14.8.23
 permit udp host 172.14.8.34 host 172.14.8.33 eq ntp
 permit udp host 172.14.8.34 host 10.1.1.2 eq ntp
 permit udp host 172.14.8.34 host 10.1.1.2 eq tftp
 permit ospf any any
 permit tcp any host 10.1.1.2 eq bgp
 permit tcp host 10.1.1.2 any eq bgp
 permit eigrp any any
 permit icmp any any
 permit tcp any any eq 646
 permit tcp any eq 646 any
ipv6 router ospf 1
 router-id 10.1.1.2
 log-adjacency-changes
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R20
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.20 255.255.255.255
!
interface Loopback1
 ip address 171.2.2.2 255.255.255.255
!
interface Loopback10
 ip address 200.20.20.20 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.9.1 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 172.29.7.5 255.255.255.252
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.29.7.2 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 router-id 20.20.20.20
 log-adjacency-changes
 area 101 virtual-link 4.4.4.4
 network 10.1.1.20 0.0.0.0 area 0
 network 171.2.2.2 0.0.0.0 area 0
 network 172.14.9.1 0.0.0.0 area 0
 network 172.29.7.2 0.0.0.0 area 101
 network 172.29.7.5 0.0.0.0 area 0
 network 200.20.20.20 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 1 deny   198.168.0.0 0.0.255.255
access-list 1 permit any
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R21
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.21 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.9.2 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.11.1 255.255.255.248
 encapsulation frame-relay
 ip ospf message-digest-key 1 md5 cisco
 ip ospf network point-to-multipoint
 serial restart-delay 0
 no arp frame-relay
 frame-relay map ip 172.14.11.3 315 broadcast
 frame-relay map ip 172.14.11.2 314 broadcast
 no frame-relay inverse-arp
 frame-relay lmi-type ansi
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 log-adjacency-changes
 area 1 authentication message-digest
 area 1 nssa
 network 10.1.1.21 0.0.0.0 area 0
 network 172.14.9.2 0.0.0.0 area 0
 network 172.14.11.1 0.0.0.0 area 1
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R22
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.22 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.16.12.22 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 172.29.7.6 255.255.255.252
 ip nat outside
 ip virtual-reassembly
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.9.1 255.255.255.252
 ip nat inside
 ip virtual-reassembly
 encapsulation frame-relay
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
 frame-relay map ip 172.14.9.2 22
 no frame-relay inverse-arp
 frame-relay lmi-type ansi
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 log-adjacency-changes
 network 10.1.1.22 0.0.0.0 area 0
 network 172.14.9.1 0.0.0.0 area 2
 network 172.16.12.22 0.0.0.0 area 2
 network 172.29.7.6 0.0.0.0 area 0
 neighbor 172.14.9.2
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ip nat inside source route-map Pat_HTTP interface Loopback0 overload
ip nat inside source route-map Pat_ICMP interface Loopback0 overload
ip nat inside source route-map Pat_Telnet interface Loopback0 overload
!
access-list 100 permit tcp 10.1.0.0 0.0.255.255 any eq telnet
access-list 100 permit tcp 172.14.9.0 0.0.0.255 any eq telnet
access-list 101 permit tcp 10.1.0.0 0.0.255.255 any eq www
access-list 101 permit tcp 172.14.9.0 0.0.0.255 any eq www
access-list 102 permit icmp 10.1.0.0 0.0.255.255 any
access-list 102 permit icmp 172.14.9.0 0.0.0.255 any
!
route-map Pat_HTTP permit 10
 match ip address 101
!
route-map Pat_ICMP permit 10
 match ip address 102
!
route-map Pat_Telnet permit 10
 match ip address 100
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
line vty 1 4
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R23
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.23 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.9.6 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.9.2 255.255.255.252
 encapsulation frame-relay
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
 frame-relay map ip 172.14.9.1 23
 no frame-relay inverse-arp
 frame-relay lmi-type ansi
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 log-adjacency-changes
 network 10.1.1.23 0.0.0.0 area 2
 network 172.14.9.2 0.0.0.0 area 2
 network 172.14.9.6 0.0.0.0 area 2
 neighbor 172.14.9.1
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R24
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.24 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.11.9 255.255.255.248
 ip ospf message-digest-key 1 md5 cisco
 ip policy route-map PBR
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.11.2 255.255.255.248
 encapsulation frame-relay
 ip ospf message-digest-key 1 md5 cisco
 ip ospf network point-to-multipoint
 serial restart-delay 0
 no arp frame-relay
 frame-relay map ip 172.14.11.1 341 broadcast
 frame-relay map ip 172.14.11.3 345 broadcast
 no frame-relay inverse-arp
 frame-relay lmi-type ansi
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 log-adjacency-changes
 area 1 authentication message-digest
 area 1 nssa
 network 10.1.1.24 0.0.0.0 area 1
 network 172.14.11.2 0.0.0.0 area 1
 network 172.14.11.9 0.0.0.0 area 1
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ip access-list extended PBR
 permit ip host 10.1.1.26 host 200.20.20.20
 permit ip host 200.20.20.20 host 10.1.1.26
 deny   ip host 200.20.20.20 any
 permit ip any any
!
route-map PBR permit 10
 match ip address PBR
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R25
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.25 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial1/0
 ip address 172.14.11.3 255.255.255.248
 encapsulation frame-relay
 ip ospf message-digest-key 1 md5 cisco
 ip ospf network point-to-multipoint
 serial restart-delay 0
 no arp frame-relay
 frame-relay map ip 172.14.11.2 354 broadcast
 frame-relay map ip 172.14.11.1 351 broadcast
 no frame-relay inverse-arp
 frame-relay lmi-type ansi
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 100
 log-adjacency-changes
 area 1 authentication message-digest
 area 1 nssa
 network 10.1.1.25 0.0.0.0 area 1
 network 172.14.11.3 0.0.0.0 area 1
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R26
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.26 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.11.10 255.255.255.248
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 198.168.20.1 255.255.255.0
 duplex auto
 speed auto
!
router ospf 100
 log-adjacency-changes
 area 1 authentication message-digest
 area 1 nssa
 redistribute rip subnets route-map conn
 network 10.1.1.26 0.0.0.0 area 1
 network 172.14.11.10 0.0.0.0 area 1
!
router rip
 version 2
 redistribute ospf 100 metric 1
 network 10.0.0.0
 network 198.168.20.0
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ip prefix-list RIP seq 5 permit 198.168.20.0/24
ip prefix-list RIP seq 10 permit 10.1.1.28/32
!
route-map conn permit 10
 match ip address prefix-list RIP
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R27
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.27 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.11.11 255.255.255.248
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
router ospf 100
 log-adjacency-changes
 area 1 authentication message-digest
 area 1 nssa
 network 10.1.1.27 0.0.0.0 area 1
 network 172.14.11.11 0.0.0.0 area 1
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R28
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.28 255.255.255.255
!
interface Loopback100
 ip address 192.168.20.1 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.16.12.21 255.255.255.252
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 198.168.20.2 255.255.255.0
 duplex auto
 speed auto
!
router ospf 100
 log-adjacency-changes
 network 10.1.1.28 0.0.0.0 area 2
 network 172.16.12.20 0.0.0.3 area 2
!
router rip
 version 2
 network 10.0.0.0
 network 192.168.20.0
 network 198.168.20.0
 no auto-summary
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R3
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ip vrf site-b
 rd 20:10
 route-target export 20:10
 route-target import 20:10
 route-target import 20:20
!
multilink bundle-name authenticated
mpls label protocol tdp
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.3 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.8.6 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 mpls ip
!
interface FastEthernet0/1
 ip address 172.14.8.34 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 mpls ip
!
interface Serial1/0
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/1
 ip vrf forwarding site-b
 ip address 1.1.10.1 255.255.255.252
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router eigrp 1
 no auto-summary
 !
 address-family ipv4 vrf site-b
  redistribute bgp 3 metric 100000 100 255 1 1500
  network 1.1.10.0 0.0.0.3
  no auto-summary
  autonomous-system 200
 exit-address-family
!
router ospf 1
 router-id 10.1.1.3
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.3 0.0.0.0 area 0
 network 172.14.8.6 0.0.0.0 area 0
 network 172.14.8.34 0.0.0.0 area 0
!
router bgp 3
 bgp log-neighbor-changes
 neighbor 10.1.1.1 remote-as 3
 neighbor 10.1.1.1 update-source Loopback0
 neighbor 10.1.1.2 remote-as 3
 neighbor 10.1.1.2 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community
  no auto-summary
  no synchronization
  network 10.1.1.3 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community both
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community both
 exit-address-family
 !
 address-family ipv4 vrf site-b
  redistribute eigrp 200 metric 1
  no synchronization
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
!

!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router30
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
!
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
 log config
  hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 login
!
!
end


!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R4
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ip vrf site-a
 rd 10:20
 route-target export 10:20
 route-target import 10:20
 route-target import 10:10
!
ipv6 unicast-routing
multilink bundle-name authenticated
mpls label protocol tdp
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.4 255.255.255.255
!
interface Loopback1
 ip address 172.1.1.4 255.255.255.255
!
interface Loopback100
 no ip address
 ipv6 address CC1E:100::100/64
 ipv6 ospf 1 area 1
!
interface FastEthernet0/0
 ip address 172.14.8.10 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 ipv6 address 2002:14::4/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface FastEthernet0/1
 ip address 172.14.8.30 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 ipv6 address 2001:100::4/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface Serial1/0
 ip vrf forwarding site-a
 ip address 172.29.7.1 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 serial restart-delay 0
 clock rate 64000
 no fair-queue
!
interface Serial1/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial1/3
 no ip address
 shutdown
 serial restart-delay 0
!
router ospf 101 vrf site-a
 router-id 4.4.4.4
 log-adjacency-changes
 area 101 virtual-link 20.20.20.20
 redistribute bgp 3 metric 10 subnets
 network 172.29.7.1 0.0.0.0 area 101
!
router ospf 1
 router-id 10.1.1.4
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.4 0.0.0.0 area 0
 network 172.14.8.10 0.0.0.0 area 0
 network 172.14.8.30 0.0.0.0 area 0
!
router bgp 3
 bgp log-neighbor-changes
 neighbor 10.1.1.1 remote-as 3
 neighbor 10.1.1.1 update-source Loopback0
 neighbor 10.1.1.2 remote-as 3
 neighbor 10.1.1.2 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community
  no auto-summary
  no synchronization
  network 10.1.1.4 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community extended
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community extended
 exit-address-family
 !
 address-family ipv4 vrf site-a
  redistribute ospf 101 vrf site-a match internal external 1 external 2
  no synchronization
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ipv6 router ospf 1
 router-id 10.1.1.1
 log-adjacency-changes
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R5
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ip vrf site-a
 rd 10:10
 route-target export 10:10
 route-target import 10:10
 route-target import 10:20
!
ipv6 unicast-routing
multilink bundle-name authenticated
mpls label protocol tdp
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.5 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.8.18 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 ipv6 address 2002:15::5/64
 ipv6 enable
 ipv6 ospf 1 area 0
 mpls ip
!
interface FastEthernet0/1
 ip address 172.14.8.22 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 ipv6 address 2001:200::5/64
 ipv6 ospf 1 area 0
 mpls ip
!
interface Ethernet1/0
 ip vrf forwarding site-a
 ip address 10.10.10.5 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
 ipv6 address 2002:58::5/64
 ipv6 enable
!
interface Ethernet1/1
 no ip address
 shutdown
 half-duplex
!
interface Ethernet1/2
 no ip address
 shutdown
 half-duplex
!
interface Ethernet1/3
 no ip address
 shutdown
 half-duplex
!
router ospf 101 vrf site-a
 router-id 5.5.5.5
 log-adjacency-changes
 redistribute bgp 3 metric 10 metric-type 1 subnets
 network 10.10.10.5 0.0.0.0 area 0
 distance ospf external 220
!
router ospf 1
 router-id 10.1.1.5
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.5 0.0.0.0 area 0
 network 172.14.8.18 0.0.0.0 area 0
 network 172.14.8.22 0.0.0.0 area 0
!
router bgp 3
 bgp log-neighbor-changes
 neighbor 10.1.1.1 remote-as 3
 neighbor 10.1.1.1 update-source Loopback0
 neighbor 10.1.1.2 remote-as 3
 neighbor 10.1.1.2 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community
  no auto-summary
  no synchronization
  network 10.1.1.5 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community extended
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community extended
 exit-address-family
 !
 address-family ipv4 vrf site-a
  redistribute ospf 101 vrf site-a match internal external 1 external 2
  no synchronization
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ipv6 router ospf 1
 log-adjacency-changes
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R6
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ip vrf site-b
 rd 20:20
 route-target export 20:20
 route-target import 20:20
 route-target import 20:10
!
multilink bundle-name authenticated
mpls label protocol tdp
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.6 255.255.255.255
!
interface FastEthernet0/0
 ip address 172.14.8.14 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 mpls ip
!
interface FastEthernet0/1
 ip address 172.14.8.26 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 mpls ip
!
interface Ethernet1/0
 no ip address
 shutdown
 half-duplex
!
interface Ethernet1/1
 no ip address
 shutdown
 half-duplex
!
interface Ethernet1/2
 ip vrf forwarding site-b
 ip address 10.10.10.1 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
!
interface Ethernet1/3
 no ip address
 shutdown
 half-duplex
!
router ospf 101 vrf site-b
 router-id 6.6.6.6
 log-adjacency-changes
 redistribute bgp 3 metric 10 metric-type 1 subnets
 network 10.10.10.1 0.0.0.0 area 0
 distance ospf external 220
!
router ospf 1
 log-adjacency-changes
 area 0 authentication message-digest
 network 10.1.1.6 0.0.0.0 area 0
 network 172.14.8.14 0.0.0.0 area 0
 network 172.14.8.26 0.0.0.0 area 0
!
router bgp 3
 bgp log-neighbor-changes
 neighbor 10.1.1.1 remote-as 3
 neighbor 10.1.1.1 update-source Loopback0
 neighbor 10.1.1.2 remote-as 3
 neighbor 10.1.1.2 update-source Loopback0
 !
 address-family ipv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community
  no auto-summary
  no synchronization
  network 10.1.1.6 mask 255.255.255.255
 exit-address-family
 !
 address-family vpnv4
  neighbor 10.1.1.1 activate
  neighbor 10.1.1.1 send-community extended
  neighbor 10.1.1.2 activate
  neighbor 10.1.1.2 send-community extended
 exit-address-family
 !
 address-family ipv4 vrf site-b
  redistribute ospf 101 vrf site-b match internal external 1 external 2
  no synchronization
 exit-address-family
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
mpls ldp router-id Loopback0
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R7
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.7 255.255.255.255
!
interface Loopback10
 ip address 171.2.2.2 255.255.255.255
!
interface FastEthernet0/0
 ip address 10.10.10.2 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 10.10.10.9 255.255.255.252
 ip ospf message-digest-key 1 md5 cisco
 full-duplex
!
interface Ethernet1/1
 ip address 10.10.10.17 255.255.255.252
 full-duplex
!
interface Ethernet1/2
 no ip address
 shutdown
 half-duplex
!
interface Ethernet1/3
 ip address 10.10.10.25 255.255.255.252
 full-duplex
!
router ospf 100
 router-id 7.7.7.7
 log-adjacency-changes
 redistribute connected subnets
 network 10.1.1.7 0.0.0.0 area 0
 network 10.10.10.2 0.0.0.0 area 0
 network 10.10.10.9 0.0.0.0 area 0
 network 10.10.10.17 0.0.0.0 area 0
 network 10.10.10.25 0.0.0.0 area 0
!
router ospf 101
 router-id 10.1.1.7
 log-adjacency-changes
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 100 deny   tcp any any eq telnet
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R8
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
interface Loopback0
 ip address 10.1.1.8 255.255.255.255
!
interface Loopback1
 ip address 171.1.1.1 255.255.255.255
!
interface FastEthernet0/0
 ip address 10.10.10.6 255.255.255.252
 ip ospf authentication message-digest
 ip ospf message-digest-key 1 md5 cisco
 duplex auto
 speed auto
 ipv6 address autoconfig
 ipv6 enable
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 10.10.10.33 255.255.255.252
 full-duplex
!
interface Ethernet1/1
 no ip address
 shutdown
 full-duplex
!
interface Ethernet1/2
 ip address 10.10.10.21 255.255.255.252
 full-duplex
!
interface Ethernet1/3
 ip address 10.10.10.26 255.255.255.252
 full-duplex
!
router ospf 100
 router-id 8.8.8.8
 log-adjacency-changes
 redistribute connected metric 10000 subnets
 network 10.1.1.8 0.0.0.0 area 0
 network 10.10.10.6 0.0.0.0 area 0
 network 10.10.10.21 0.0.0.0 area 0
 network 10.10.10.26 0.0.0.0 area 0
 network 10.10.10.33 0.0.0.0 area 0
 network 171.1.1.1 0.0.0.0 area 0
!
router ospf 101
 router-id 10.1.1.8
 log-adjacency-changes
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ipv6 router ospf 1
 log-adjacency-changes
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R9
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
ipv6 unicast-routing
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
class-map match-all GOLD
 match access-group 100
class-map match-all BRONZE
 match access-group 101
class-map match-all SILVER
 match access-group 102
!
policy-map CPP
 class GOLD
  bandwidth percent 20
 class SILVER
    police 1000000
 class BRONZE
    police 300000
!
interface Loopback0
 ip address 10.1.1.9 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Ethernet1/0
 ip address 10.10.10.10 255.255.255.252
 full-duplex
 service-policy output CPP
!
interface Ethernet1/1
 ip address 10.10.10.29 255.255.255.252
 ip policy route-map PBR
 full-duplex
!
interface Ethernet1/2
 ip address 10.10.10.22 255.255.255.252
 full-duplex
 service-policy output CPP
!
interface Ethernet1/3
 ip address 10.10.10.37 255.255.255.252
 ip policy route-map PBR
 full-duplex
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.9 0.0.0.0 area 0
 network 10.10.10.10 0.0.0.0 area 0
 network 10.10.10.22 0.0.0.0 area 0
 network 10.10.10.29 0.0.0.0 area 0
 network 10.10.10.37 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
ip access-list extended PBR
 permit ip host 10.1.1.11 any
 permit ip host 10.1.1.12 any
access-list 100 permit ip any any precedence priority
access-list 101 permit ip any any precedence immediate
access-list 102 permit ip any any precedence flash-override
!
route-map PBR permit 10
 match ip address PBR
 set ip next-hop 10.10.10.21
!
control-plane
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!

!
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname SW1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
 log config
  hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet1/0
 switchport access vlan 810
!
interface FastEthernet1/1
!
interface FastEthernet1/2
!
interface FastEthernet1/3
 switchport mode trunk
!
interface FastEthernet1/4
!
interface FastEthernet1/5
!
interface FastEthernet1/6
!
interface FastEthernet1/7
!
interface FastEthernet1/8
!
interface FastEthernet1/9
!
interface FastEthernet1/10
!
interface FastEthernet1/11
!
interface FastEthernet1/12
!
interface FastEthernet1/13
!
interface FastEthernet1/14
!
interface FastEthernet1/15
 switchport mode trunk
!
interface Vlan1
 no ip address
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
!
!
end
!


!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
!
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname SW2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
!
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
archive
 log config
  hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet1/0
 switchport access vlan 810
!
interface FastEthernet1/1
!
interface FastEthernet1/2
!
interface FastEthernet1/3
!
interface FastEthernet1/4
!
interface FastEthernet1/5
!
interface FastEthernet1/6
!
interface FastEthernet1/7
!
interface FastEthernet1/8
!
interface FastEthernet1/9
!
interface FastEthernet1/10
!
interface FastEthernet1/11
!
interface FastEthernet1/12
!
interface FastEthernet1/13
!
interface FastEthernet1/14
!
interface FastEthernet1/15
 switchport mode trunk
!
interface Vlan1
 no ip address
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
!
!
end
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname TG2
!
boot-start-marker
boot-end-marker
!
no aaa new-model
memory-size iomem 5
!
ip cef
no ip domain lookup
!
multilink bundle-name authenticated
!
archive
 log config
  hidekeys
!
!
class-map match-all mark
 match access-group 100
!
policy-map mark
 class mark
  set precedence 1
!
interface Loopback0
 ip address 10.1.1.13 255.255.255.255
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 10.10.10.46 255.255.255.252
 duplex auto
 speed auto
 service-policy output mark
!
router ospf 10
 log-adjacency-changes
 network 10.1.1.13 0.0.0.0 area 0
 network 10.10.10.46 0.0.0.0 area 0
!
no ip http server
no ip http secure-server
ip forward-protocol nd
!
access-list 100 permit ip host 10.1.1.13 host 10.1.1.7
!
control-plane
!
line con 0
line aux 0
line vty 0 4
 login
!
end