Daftar Pertemuan
Info UTS
Waktu: 170 menit
Bobot: 20%
Format: Individual
Tools: Packet Tracer
Checklist Verifikasi
Basic Configuration
VLAN & Trunking
VTP Domain
OSPF Multi-Area
STP Optimization
Security & Management
Pertemuan 8: Ujian Tengah Semester (UTS)
Progress Pembelajaran
8/16
Ujian Tengah Semester
Ujian bersifat individual dan harus dikerjakan sendiri. Dilarang keras bekerja sama atau mencontek selama ujian.
Petunjuk Ujian
Informasi Waktu
- Durasi: 170 menit
- Waktu Mulai: [Diisi pengawas]
- Waktu Selesai: [Diisi pengawas]
- Bobot Nilai: 20%
Pengumpulan
- Format File: NIM_NAMA_UTS.pkt
- Dokumentasi: PDF format
- Deadline: Saat waktu ujian berakhir
- Keterlambatan: Pengurangan nilai
Larangan Selama Ujian:
- Dilarang bekerja sama dengan peserta lain
- Dilarang mencontek atau memberikan contekan
- Dilarang mengakses sumber luar kecuali dokumentasi Cisco
- Dilarang sharing konfigurasi selama ujian
Soal Ujian - Enterprise Networking Implementation
Diagram Topologi yang Harus Dibangun
Router1
Area 0
Router2
ABR - Area 0 & 1
Router3
Area 1
Switch1
VTP Server
Switch2
VTP Client
Switch3
VTP Client
PC1
VLAN10
Srv1
VLAN20
PC2
VLAN10
Srv2
VLAN20
PC3
VLAN10
Srv3
VLAN20
Keterangan Topologi:
- 3 Router: Router1, Router2 (ABR), Router3
- 3 Switch: Switch1 (VTP Server), Switch2-3 (VTP Client)
- 6 Devices: 3 PC (VLAN10) + 3 Server (VLAN20)
- OSPF Multi-Area: Area 0 (Router1-2), Area 1 (Router3)
- VLAN: VLAN10 (ADMIN), VLAN20 (SERVERS), VLAN99 (NATIVE)
- Koneksi: Router-Router (Serial), Router-Switch (Trunk)
Requirements dan Spesifikasi Teknis
A. IP Addressing Scheme
| Segment | Network | Interface/Device | IP Address | Subnet Mask |
|---|---|---|---|---|
| Router1-Router2 | 10.12.0.0/30 | Router1 S0/0/0 | 10.12.0.1 | 255.255.255.252 |
| Router2-Router3 | 10.23.0.0/30 | Router2 S0/0/1 | 10.23.0.1 | 255.255.255.252 |
| HQ Network | 192.168.10.0/24 | Router1 G0/0 | 192.168.10.1 | 255.255.255.0 |
| Branch Network | 192.168.20.0/24 | Router2 G0/0 | 192.168.20.1 | 255.255.255.0 |
| Remote Network | 192.168.30.0/24 | Router3 G0/0 | 192.168.30.1 | 255.255.255.0 |
| PC VLAN10 | 192.168.x.0/24 | PC1, PC2, PC3 | 192.168.x.10 | 255.255.255.0 |
| Server VLAN20 | 192.168.x.0/24 | Srv1, Srv2, Srv3 | 192.168.x.170 | 255.255.255.0 |
B. VLAN Configuration
- VLAN 10: ADMIN
- VLAN 20: SERVERS
- VLAN 99: NATIVE (untuk trunk)
- PC Assignment: PC1, PC2, PC3 → VLAN 10
- Server Assignment: Srv1, Srv2, Srv3 → VLAN 20
- Trunk Native: VLAN 99 pada semua trunk ports
C. OSPF Routing
- Area 0: Router1 dan Router2
- Area 1: Router3
- ABR: Router2 sebagai Area Border Router
- Router ID: 1.1.1.1 (Router1), 2.2.2.2 (Router2), 3.3.3.3 (Router3)
- Process ID: 1
Tugas Konfigurasi (100 Points)
1. Basic Device Configuration (15 Points)
Requirements:
- Konfigurasi hostname pada semua device (Router1, Router2, Router3, Switch1, Switch2, Switch3)
- Set banner MOTD:
"AUTHORIZED ACCESS ONLY - UTS ENTERPRISE NETWORKING" - Konfigurasi password:
- Enable secret:
"uts2025" - Console password:
"console123" - VTY password:
"vty123"
- Enable secret:
- Konfigurasi IP address pada semua interface sesuai addressing scheme
Contoh Konfigurasi (Router1):
enable
configure terminal
hostname Router1
banner motd #AUTHORIZED ACCESS ONLY - UTS ENTERPRISE NETWORKING#
enable secret uts2025
line console 0
password console123
login
exit
line vty 0 4
password vty123
login
exit
interface gigabitethernet 0/0
ip address 192.168.10.1 255.255.255.0
no shutdown
exit
interface serial 0/0/0
ip address 10.12.0.1 255.255.255.252
clock rate 64000
no shutdown
exit
configure terminal
hostname Router1
banner motd #AUTHORIZED ACCESS ONLY - UTS ENTERPRISE NETWORKING#
enable secret uts2025
line console 0
password console123
login
exit
line vty 0 4
password vty123
login
exit
interface gigabitethernet 0/0
ip address 192.168.10.1 255.255.255.0
no shutdown
exit
interface serial 0/0/0
ip address 10.12.0.1 255.255.255.252
clock rate 64000
no shutdown
exit
2. VLAN and Trunking Configuration (20 Points)
Requirements:
- Buat VLAN 10, 20, 99 pada semua switch
- Assign PC1, PC3, PC5 ke VLAN 10
- Assign PC2, PC4, PC6 ke VLAN 20
- Konfigurasi trunk antara switch-router dengan native VLAN 99
- Verifikasi VLAN database konsisten
Contoh Konfigurasi (Switch1 - VTP Server):
enable
configure terminal
vlan 10
name ADMIN
exit
vlan 20
name SALES
exit
vlan 99
name NATIVE
exit
interface range fastethernet 0/1-5
switchport mode access
switchport access vlan 10
exit
interface range fastethernet 0/6-10
switchport mode access
switchport access vlan 20
exit
interface gigabitethernet 0/1
switchport mode trunk
switchport trunk native vlan 99
switchport trunk allowed vlan 10,20,99
exit
configure terminal
vlan 10
name ADMIN
exit
vlan 20
name SALES
exit
vlan 99
name NATIVE
exit
interface range fastethernet 0/1-5
switchport mode access
switchport access vlan 10
exit
interface range fastethernet 0/6-10
switchport mode access
switchport access vlan 20
exit
interface gigabitethernet 0/1
switchport mode trunk
switchport trunk native vlan 99
switchport trunk allowed vlan 10,20,99
exit
3. VTP Domain Management (15 Points)
Requirements:
- Konfigurasi Switch1 sebagai VTP Server
- Konfigurasi Switch2 dan Switch3 sebagai VTP Client
- Set VTP domain:
"UTS_DOMAIN" - Set VTP password:
"vtpsecure123" - Verifikasi VLAN database terdistribusi otomatis
Contoh Konfigurasi:
! Pada Switch1 (Server)
vtp domain UTS_DOMAIN
vtp password vtpsecure123
vtp mode server
! Pada Switch2 (Client)
vtp domain UTS_DOMAIN
vtp password vtpsecure123
vtp mode client
! Verifikasi
show vtp status
show vtp password
show vlan brief
vtp domain UTS_DOMAIN
vtp password vtpsecure123
vtp mode server
! Pada Switch2 (Client)
vtp domain UTS_DOMAIN
vtp password vtpsecure123
vtp mode client
! Verifikasi
show vtp status
show vtp password
show vlan brief
4. OSPF Multi-Area Routing (25 Points)
Requirements:
- Konfigurasi OSPF Process 1 pada semua router
- Router1 dan Router2 di Area 0
- Router3 di Area 1
- Router2 sebagai ABR
- Pastikan full connectivity antar semua network
- Verifikasi OSPF neighbor adjacency mencapai FULL state
Contoh Konfigurasi (Router2 - ABR):
router ospf 1
router-id 2.2.2.2
network 10.12.0.0 0.0.0.3 area 0
network 10.23.0.0 0.0.0.3 area 1
network 192.168.20.0 0.0.0.255 area 0
exit
! Verifikasi
show ip ospf neighbor
show ip route ospf
show ip ospf interface brief
router-id 2.2.2.2
network 10.12.0.0 0.0.0.3 area 0
network 10.23.0.0 0.0.0.3 area 1
network 192.168.20.0 0.0.0.255 area 0
exit
! Verifikasi
show ip ospf neighbor
show ip route ospf
show ip ospf interface brief
5. STP Optimization (15 Points)
Requirements:
- Konfigurasi Switch1 sebagai root bridge untuk VLAN 1
- Aktifkan Rapid-PVST pada semua switch
- Konfigurasi PortFast pada port yang terhubung ke PC
- Aktifkan BPDUGuard pada port PortFast
- Verifikasi tidak ada looping dalam network
Contoh Konfigurasi:
! Set root bridge
spanning-tree vlan 1 root primary
! Rapid-PVST
spanning-tree mode rapid-pvst
! PortFast dan BPDUGuard
interface range fastethernet 0/1-10
spanning-tree portfast
spanning-tree bpduguard enable
exit
! Verifikasi
show spanning-tree
show spanning-tree root
spanning-tree vlan 1 root primary
! Rapid-PVST
spanning-tree mode rapid-pvst
! PortFast dan BPDUGuard
interface range fastethernet 0/1-10
spanning-tree portfast
spanning-tree bpduguard enable
exit
! Verifikasi
show spanning-tree
show spanning-tree root
6. Security and Management (10 Points)
Requirements:
- Konfigurasi SSH pada semua router untuk remote management
- Set login local dengan username
"admin"password"admin123" - Konfigurasi ACL untuk membatasi akses telnet hanya dari network 192.168.10.0/24
Contoh Konfigurasi:
! SSH Configuration
username admin secret admin123
ip domain-name enterprise.local
crypto key generate rsa modulus 1024
ip ssh version 2
line vty 0 4
transport input ssh
login local
exit
! ACL untuk telnet restriction
access-list 10 permit 192.168.10.0 0.0.0.255
access-list 10 deny any
line vty 0 4
access-class 10 in
exit
username admin secret admin123
ip domain-name enterprise.local
crypto key generate rsa modulus 1024
ip ssh version 2
line vty 0 4
transport input ssh
login local
exit
! ACL untuk telnet restriction
access-list 10 permit 192.168.10.0 0.0.0.255
access-list 10 deny any
line vty 0 4
access-class 10 in
exit
Verification Commands Checklist
Wajib Disertakan dalam Dokumentasi
Basic Verification:
show running-configshow ip interface briefshow version
VLAN Verification:
show vlan briefshow interface trunk
VTP Verification:
show vtp statusshow vtp password
OSPF Verification:
show ip ospf neighborshow ip route ospfshow ip ospf interface brief
STP Verification:
show spanning-treeshow spanning-tree root
Security Verification:
show sshshow access-lists
Kriteria Penilaian
| Kategori | Sub-Kategori | Bobot | Deskripsi |
|---|---|---|---|
| Technical Implementation (70%) |
Accuracy | 30% | Konfigurasi sesuai requirements |
| Functionality | 25% | Semua fitur bekerja dengan benar | |
| Optimization | 15% | Konfigurasi optimal dan efisien | |
| Connectivity Testing (20%) |
Intra-VLAN | 10% | PC1 to PC6 connectivity |
| Inter-Area Routing | 10% | PC1 to PC5 (Area 0 to Area 1) | |
| Dokumentasi (10%) |
Completeness | 10% | File terorganisir dan rapi |
Format Pengumpulan
File yang Harus Dikumpulkan
1. Packet Tracer File
Format: NIM_NAMA_UTS.pkt
Contoh: 123456789_JOHNDOE_UTS.pkt
2. Laporan PDF
Format: NIM_NAMA_UTS.pdf
Dokumentasi screenshot dan verification
Struktur Laporan PDF:
- Halaman Cover (NIM, Nama, Kelas)
- Daftar Isi
- Pendahuluan
- Konfigurasi per section (screenshot command)
- Verification results (screenshot output)
- Testing connectivity (screenshot ping/traceroute)
- Kesimpulan
Ketentuan Khusus
Larangan dan Sanksi:
- Dilarang sharing konfigurasi selama ujian
- Dilarang mengakses sumber luar kecuali dokumentasi Cisco
- Jika terjadi technical issue, segera laporkan kepada pengawas
- Nilai akan dikurangi untuk keterlambatan pengumpulan