Wired 802.1x (dot1x) device authentication

Wired 802.1x device authentication is available in Cisco Catalyst switches emulated in Cisco Packet Tracer . This feature is available with the following limitations :

  • dot1x commands only supported with IOS 15. Update of the switch image is required (IOS 15 images available on the server device) before configuring 802.1x authentication.
  • EAP-MD5 is the only EAP protocol supported.

A 802.1x configuration form has been added to end devices IP configuration utility.

Packet Tracer - End devices 802.1x configuration (EAP-MD5)

PPPoE authentication

PPPoE is a protocol widely used by Internet Service Providers to provide high speed internet services which can use the same authentication server for both PPP and PPPoE sessions, resulting in a cost savings. It expands the capability of PPP by allowing a virtual point to point connection over a multipoint Ethernet network architecture. PPPoE uses the same methods of compression, authentication, and encryption than PPP.

PPPoE is supported by ISR routers, Meraki Security Appliance, and end devices (PC, servers) in Cisco Packet Tracer with PAP or CHAP authentication.

Packet Tracer 7.2 - PPPoE configuration on a PC end device

 

DHCPv6 client on ISR1941 router

DHCP v6 client is supported in the Cisco Packet Tracer ISR1941 router. Gigabit Ethernet interface IPv6 address can be dynamically obtained by DHCP with the "ipv6 address dhcp" IOS command. ISR 1941 router can also act as  DHCPv6 server with the "ipv6 dhcp pool <pool name>" command.

RouterClient(config)#interface gigabitEthernet 0/0
RouterClient(config-if)#ipv6 address dhcp 
RouterClient(config)#end

RouterClient#show ipv6 interface 
GigabitEthernet0/0 is up, line protocol is up
  IPv6 is enabled, link-local address is FE80::202:17FF:FE61:5C01
  No Virtual link-local address(es):
  Global unicast address(es):
    2001:DB8:1111:0:9364:8387:C92D:86B6, subnet is 2001:DB8:1111:0:9364:8387:C92D:86B6/128 [CAL/PRE]
  Joined group address(es):
    FF02::1
    FF02::1:FF2D:86B6
    FF02::1:FF61:5C01
  MTU is 1500 bytes
  ICMP error messages limited to one every 100 milliseconds
  ICMP redirects are enabled
  ICMP unreachables are sent
  ND DAD is enabled, number of DAD attempts: 1
  ND reachable time is 30000 milliseconds

 

Network protocols (layer 3) :

  • BGP, IPv4,
  • ICMP,
  • ARP,
  • IPv6,
  • ICMPv6,
  • IPSec,
  • RIPv1/v2/ng,
  • Multi-Area OSPF,
  • OSPFv3,
  • EIGRP,
  • EIGRPv6,
  • Static Routing,
  • Route Redistribution,
  • Multilayer Switching,
  • L3 QoS,
  • NAT,
  • CBAC,
  • Zone-based policy firewall, and Intrusion Protection System on the ISR,
  • GRE VPN,
  • IPSec VPN,
  • HSRP,
  • CEF,
  • SPAN/RSPAN,
  • L2NAT,
  • PTP, REP,
    LLDP

Transport protocols (layer 4) :

  • TCP and UDP,
  • TCP Nagle Algorithm & IP Fragmentation,
  • RTP

Application (layer 7) :

  • FTP ,
  • SMTP,
  • POP3,
  • HTTP,
  • TFTP,
  • Telnet,
  • SSH,
  • DNS,
  • DHCP,
  • NTP,
  • SNMP,
  • AAA,
  • ISR VOIP,
  • MQTT,
  • SCCP config and calls ISR command support,
  • Call Manager Express,

Logical and physical workspaces

The logical workspace allows student to get a global view of the network through realtime or simulaton mode. The devices are added, linked, and configured on this workspace.

Packet Tracer 5.3 logical workspace

The physical workspace gives a physical dimension to the logical network topology. This workspace is particulary important for wireless labs, where the distance parameter is one of the factors that determine if a device is able to connect or not connect to another device. The physical workspace is divided into four layers to reflect the physical scale of real life environments:

  • Intercity,
  • City,
  • Building,
  • Wiring Closet.

 

Packet Tracer 5.3 physical workspace