Scribd Logo
Upload

Welcome to Scribd!

  • 37 views

    Switch Configs: Etherchannel Etherchannel

    Uploaded by

    alimad0900
    This document summarizes various switch configuration topics including: - Layer 2 and layer 3 etherchannel configuration - VLAN, protected port, and private VLAN configuration - Spanning tree protocols, root guard, port security, DHCP snooping, and other security features - 802.1x port authentication, MAC authentication bypass, and restricted VLAN configuration - Double core switch and fabric extender configuration

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd

    Switch Configs: Etherchannel Etherchannel

    Uploaded by

    alimad0900
    37 views8 pages
    This document summarizes various switch configuration topics including: - Layer 2 and layer 3 etherchannel configuration - VLAN, protected port, and private VLAN configuration - Spanning tree protocols, root guard, port security, DHCP snooping, and other security features - 802.1x port authentication, MAC authentication bypass, and restricted VLAN configuration - Double core switch and fabric extender configuration

    Original Title

    Switch configs

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    This document summarizes various switch configuration topics including: - Layer 2 and layer 3 etherchannel configuration - VLAN, protected port, and private VLAN configuration - Spanning tree protocols, root guard, port security, DHCP snooping, and other security features - 802.1x port authentication, MAC authentication bypass, and restricted VLAN configuration - Double core switch and fabric extender configuration

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    37 views8 pages

    Switch Configs: Etherchannel Etherchannel

    Uploaded by

    alimad0900
    This document summarizes various switch configuration topics including: - Layer 2 and layer 3 etherchannel configuration - VLAN, protected port, and private VLAN configuration - Spanning tree protocols, root guard, port security, DHCP snooping, and other security features - 802.1x port authentication, MAC authentication bypass, and restricted VLAN configuration - Double core switch and fabric extender configuration

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    of 8

    Switch configs

    Layer2 etherchannel layer 3 etherchannel

    VLAN Protected Ports Private VLAN VTP Trunking

    VACL PACL

    STP-Root-force PortFast BPDU Guard BPDU Filtring Root Guard Flex link

    Port security SPAN DHCP Snooping ARP inspection IP Source Guard MAC drop
    Storm control PORT ACL

    802.1x Guest Vlan Restricted Vlan MAC Authentication Bypass

    Double Core switch Configuring the Fabric Extender

    Layer2 Etherchannel
     

    Switch
    Switch# configure terminal

    Switch(config)# interface range


    gigabitethernet0/4 -5

    Switch(config-if-range)# switchport
    mode access

    Switch(config-if-range)# switchport
    access vlan 10

    Switch(config-if-range)# channel-
    group 5 mode on

    Switch(config-if-range)# end

    Layer3 etherchannel

    Switch
    Switch# configure terminal

    Switch(config)# interface port-


    channel 5

    Switch(config-if)# no switchport

    Switch(config-if)# ip address
    172.10.20.10 255.255.255.0

    Switch(config-if)# exit

    Switch(config)# interface range


    gigabitethernet0/4 -5

    Switch(config-if-range)# no ip
    address

    Switch(config-if-range)# channel-
    group 5 mode desirable

    Switch(config-if-range)# end
    !

    VLAN

    Switch
    3524XL#vlan database

    !-- You have to enter into vlan


    database, to configure any VLAN

    3524XL(vlan)#vtp server

    Device mode already VTP


    SERVER.

    3524XL(vlan)#vlan 2 name
    cisco_vlan_2

    VLAN 2 added: Name:


    cisco_vlan_2

    !You have to exit from the VLAN


    database, for the changes to be
    committed 3524XL(vlan)#exit

    APPLY completed.

    Exiting.... 3524XL#

    3524XL#configure terminal

    3524XL(config)#interface
    fastEthernet 0/2

    3524XL(config-if)#switchport
    access vlan 2

    !-- Assigning interface fa0/2 to vlan


    2

    3524XL(config-if)#exit

    3524XL(config)#interface
    fastEthernet 0/3

    3524XL(config-if)#switchport
    access vlan 2

    !-- Assigning interface fa0/3 to vlan


    2

    3524XL(config-if)#end

    3524XL#wr mem

    !-- Saving the configuration

     
    HEY SMOKER, THIS IS YOUR END

    Protected Ports

    A protected port does not forward any traffic to any other port that is also a
    protected port in the same switch. All traffic passing between protected ports
    must be forwarded through a Layer 3 (L3) device.
    interface FastEthernet0/1
    switchport protected

    interface FastEthernet0/2

    switchport protected

    interface FastEthernet0/3

    In this example PCs connected to Fe0/1 and 0/2 cannot communicate with each other but can
    communicate with 0/3

    Private VLAN

    Isolated VLANs—Ports within an isolated VLAN cannot communicate with


    each other at the Layer 2 level.

    Community VLANs—Ports within a community VLAN can communicate


    with each other but cannot communicate with ports in other communities at
    the Layer 2 level.

    Promiscuous— A promiscuous port can communicate with all interfaces,


    including the isolated and community ports within a PVLAN.
    vtp mode transparent

    vlan 202

    private-vlan primary

    private-vlan association 303,440

    vlan 303

    private-vlan community

    !
    vlan 440

    private-vlan isolated

    interface FastEthernet0/1

    switchport access vlan 303

    switchport private-vlan host-association 202 303

    switchport mode private-vlan host

    interface FastEthernet0/2

    switchport access vlan 303

    switchport private-vlan host-association 202 303

    switchport mode private-vlan host

    interface FastEthernet0/3

    switchport access vlan 440

    switchport private-vlan host-association 202 440

    switchport mode private-vlan host

    interface FastEthernet0/4

    switchport access vlan 440

    switchport private-vlan host-association 202 440

    switchport mode private-vlan host

    !
    interface FastEthernet0/5

    switchport access vlan 202

    switchport private-vlan mapping 202 303,440

    switchport mode private-vl

    You might also like