cis187-PT-Enterprise-Switch-Block

Download Report

Transcript cis187-PT-Enterprise-Switch-Block 

CIS 187 Multilayer Switched Networks
(CCNP Switch)
Enterprise Switch Block
Rick Graziani
Cabrillo College
[email protected]
Spring 2010
Topology
NOTE: ALS1 and ALS2 G0/2 should be G1/2
 Instructions: PT-Topology-SwitchBlock-VLANs.doc
 File: PT-Topology-SwitchBlock-VLANs.pkt
 File: PT-Topology-SwitchBlock-VLANs-answers.pkt
2
VTP Configuration
 All switches will be in the same VTP
domain and will use a VTP password.
 Configure DLS1 and DLS2 as VTP
servers.
 Configure all other switches as VTP
clients.
DLS1
vtp mode server
vtp domain central
vtp password cisco
All
vtp
vtp
vtp
other switches
mode client
domain central
password cisco
DLS2
vtp mode server
vtp domain central
vtp password cisco
3
Creating VLANs

DLS1: Create and name the user VLANs: 10,
11, 20 and 21.
 DLS1: Create and name a Management VLAN
(used to telnet into switches)
 DLS1: Create and name a NATIVE VLAN
other than VLAN 1 (default)
 DLS1: Create and name a Garbage VLAN
(assigned to all unused ports.)
 All ports that are not used (trunks and
access) will be assigned as an access
DLS1
port to this VLAN.
vlan 2
name NATIVE
vlan 10
name Engineering
vlan 11
name IT
vlan 20
name Sales
vlan 21
name Administration
vlan 99
name ManagementVLAN
vlan 222
name GarbageVLAN
4
Management VLAN
 For each device in the network
configure it to be a member of the
management VLAN.
 Configure privileged and vty (telnet)
passwords for each switch.
 You should be able to ping/telnet
between switches
On each switch
inter vlan 99
desc Management VLAN
ip address 172.16.99.x 255.255.255.0
no shutdown
line vty 0 4
login
password cisco
enable secret class
5
Default Gateway
 Configure DLS1 to be the
default gateway for VLANs 10
and 11.
 Configure DLS2 to be the
default gateway for VLANs 20
and 21.
DLS1
DLS2
inter vlan 10
descr Engineering VLAN
ip address 172.16.10.1 255.255.255.0
no shut
inter vlan 20
descr Sales VLAN
ip address 172.16.20.1 255.255.255.0
no shut
inter vlan 11
desc IT VLAN
ip address 172.16.11.1 255.255.255.0
no shut
inter vlan 21
desc Administration VLAN
ip address 172.16.21.1 255.255.255.0
no shut
6
Access Ports
 All ports not connected to a PC
or used for trunking should be
an access port in your Garbage
VLAN.
DLS1 (Done on all switches)
inter range fa 0/1 – 24
switchport mode access
switchport access vlan 222
inter range gig 0/1 – 2
switchport mode access
switchport access vlan 222
7
Trunking (All switches)
 Configure trunking between all switches.
 Allow only configured VLANs to be
transported across the trunks. NOTE:
Packet Tracer does not allow spaces in
the range of vlans Example: 1,10-11,2021,99
 Configure the trunk link for the NATIVE
VLAN using the VLAN number you
created on DLS1 using VTP.
DLS1
inter range gig 0/1 - 2
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
inter range fa 0/23 - 24
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
8
Trunking
ALS1
inter gig 1/2
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
inter range fa 0/1 - 2
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
inter range fa 0/23 - 24
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
9
Trunking
ALS10
inter fa 0/1
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
inter fa 0/24
switchport mode trunk
switchport trunk native vlan 2
switchport trunk allowed vlan 1,2,10-11,20-21,99
10
EtherChannel





Configure PAgP between DL and AL switches
where there are multiple links.
Configure port-channel load balancing to use
source and destination IP addresses.
You will need to include the NATIVE VLAN to
the port channel interface on each switch:
interface portchannel 1 (or whatever number
you used in PAgP)
switchport trunk native vlan 2 (or whatever
VLAN number you created).
DLS1
ALS2
! Configure EtherChannel load balancing
port-channel load-balance src-dst-ip
! Configure EtherChannel load balancing
port-channel load-balance src-dst-ip
! Include PAgP commands for EtherChannel
inter range fa 0/23 - 24
channel-protocol pagp
channel-group 1 mode desirable
! Include PAgP commands for EtherChannel
inter range fa 0/23 - 24
channel-protocol pagp
channel-group 1 mode desirable
inter portchannel 1
switchport trunk native vlan 2
inter portchannel 1
switchport trunk native vlan 2
11
EtherChannel





Configure PAgP between DL and AL switches
where there are multiple links.
Configure port-channel load balancing to use
source and destination IP addresses.
You will need to include the NATIVE VLAN to
the port channel interface on each switch:
interface portchannel 1 (or whatever number
you used in PAgP)
switchport trunk native vlan 2 (or whatever
VLAN number you created).
DLS2
ALS1
! Configure EtherChannel load balancing
port-channel load-balance src-dst-ip
! Configure EtherChannel load balancing
port-channel load-balance src-dst-ip
! Include PAgP commands for EtherChannel
inter range fa 0/23 - 24
channel-protocol pagp
channel-group 1 mode desirable
! Include PAgP commands for EtherChannel
inter range fa 0/23 - 24
channel-protocol pagp
channel-group 1 mode desirable
inter portchannel 1
switchport trunk native vlan 2
inter portchannel 1
switchport trunk native vlan 2
12
Access Ports
 Configure the appropriate ports on
ALS10, ALS11, ALS 20, and ALS21
to be access ports for the proper
VLAN where a PC is connected.
 All ports not connected to a PC or
used for trunking should be an
access port in your Garbage VLAN.
ALS10
ALS20
! Configure access ports
inter fa 0/2
switchport mode access
switchport access vlan 10
! Configure access ports
inter fa 0/2
switchport mode access
switchport access vlan 20
ALS11
! Configure access ports
inter fa 0/1
switchport mode access
switchport access vlan 11
ALS21
! Configure access ports
inter fa 0/1
switchport mode access
switchport access vlan 21
13
STP
 Configure DLS1 to be the root
bridge for VLANs 1, 10 and 11
 Configure DLS2 to be the root
bridge for all other VLANs
DLS1
spanning-tree vlan 1, 2, 10, 11 root primary
DLS2
spanning-tree vlan 20, 21, 99, 222 root primary
14
CIS 187 Multilayer Switched Networks
(CCNP Switch)
Enterprise Switch Block
Rick Graziani
Cabrillo College
[email protected]
Spring 2010