Lab 6-1: Configuring VLAN and trunk
Lab 6-1: Configuring VLAN and trunk
Sitching & InterVlan Multilayer Routing
Characterize multi-layer activity (Multilayer) of the product line of Cisco Catalyst 3550 Access Layer Switch (ALSwitch). Divided into VLAN1 switches, VLAN 10, VLAN 20 distributed to each user group. Usually the VLAN operation in the data link layer (Data-link Layer). The VLAN is considered as belonging to different broadcast domain, can not talk to each other (although the physical connection to ALSwitch). The VLAN want to talk to each other via an External Router with routing functions. Within the scope of this lab, using the capabilities of the Catalyst 3550 Multilayer Switching to route between VLANs as well as between the VLAN to connect by Remote Remote office router. In this case the Catalyst 3550 can act as an External Router.
Additional requirements: Remote router: Cisco 2600 (port FastEthernet). Distribute Layer Switch (DLSwitch): Catalyst 3550. Access Layer Switch (ALSwitch): Catalyst 2900 or higher (required for trunking configuration devices support FastEthernet). Workstations connected to the testing service VLAN configuration and routing.
To implement features Multilayer Switching (MLS):
Phase 1: Establish the base configuration includes: shared VLAN, trunking between the switches.
Stage 2: Configuring the Catalyst 3550 (DLSwitch) activity in MLS mode, configure routing protocols on the router. Within the scope of this lab, use the OSPF routing protocol.Prior to deployment all Lab, should remove all the old configuration on the switches and routers to avoid affecting the operation of the system
Conducting phases:
ALSwitch DLSwitch and connect with each other through trunk lines. Switch these two the same VTP domain, divided into the VLAN including VLAN 1 (Native), VLAN 10 (Admin), VLAN 20 (User).
Configured on DLSwitch
Configure the basic parameters: the names, the type password:
Sw
itch> enable
Switch # config terminal
Enter configuration commands, one per line. End with CNTL / Z.
Switch (config) # hostname DLSwitch
DLSwitch (config) # enable password cisco
DLSwitch (config) # enable secret vnpro
DLSwitch (config) # line vty 0 15
DLSwitch (config-line) # password cisco
DLSwitch (config-line) # login
DLSwitch (config-line) # ^ Z
00:15:08:% SYS-5-CONFIG_I: Configured from console by console
VLAN and Trunking Configuration:
DLSwitch # vlan database
DLSwitch (vlan) # vtp domain Vnpro
Changing VTP domain name from NULL to Vnpro
DLSwitch (vlan) # vtp server
Device mode already VTP SERVER.
DLSwitch (vlan) # vlan 10 name Admin
VLAN 10 added:
Name: Admin
DLSwitch (vlan) # vlan 20 name User
VLAN 20 added:
Name: User
DLSwitch (vlan) # apply
APPLY completed.
DLSwitch (vlan) # exit
APPLY completed.
Exiting ....
DLSwitch # config terminal
Enter configuration commands, one per line. End with CNTL / Z.
DLSwitch (config) # interface vlan 1
DLSwitch (config-if) # ip address 192.168.1.1 255.255.255.0
DLSwitch (config-if) # no shutdown
DLSwitch (config-if) # exit
00:17:26:% LINK-3-UPDOWN: Interface VLAN1, changed state to up
DLSwitch (config) # interface vlan 10
DLSwitch (config-if) # ip address 192.168.10.1 255.255.255.0
DLSwitch (config-if) # no shutdown
00:18:20:% LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan10, changed state to down
DLSwitch (config-if) # exit
DLSwitch (config) # interface vlan 20
DLSwitch (config-if) # ip address 192.168.20.1 255.255.255.0
DLSwitch (config-if) # no shutdown
00:19:06:% LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan20, changed state to down
DLSwitch (config-if) # exit
DLSwitch (config) # interface FastEthernet 0 / 1
DLSwitch (config-if) # switchport trunk encapsulation dot1q
DLSwitch (config-if) # switchport mode trunk
DLSwitch (config-if) # ^ Z
00:20:11:% SYS-5-CONFIG_I: Configured from console by console
Check the new VLAN information:
DLSwitch # show vlan
VLAN Name Status Ports
---- -------------------------------- --------- ----- --------------------------
1 default active Fa0 / 2, Fa0 / 3, Fa0 / 4, Fa0 / 5
Fa0 / 6, Fa0 / 7, Fa0 / 8, Fa0 / 9
Fa0/10, Fa0/11, Fa0/12, Fa0/13
Fa0/14, Fa0/15, Fa0/16, Fa0/17
Fa0/18, Fa0/19, Fa0/20, Fa0/21
Fa0/22, Fa0/23, Fa0/24, Gi0 / 1
Gi0 / 2
10 active Admin
20 Active User
1002 FDDI-default act / unsup
1003 token-ring-default act / unsup
1004 fddinet-default act / unsup
1005 trnet-default act / unsup
Configured on ALSwitch
Configure the basic parameters: the names, the type password:
Switch> enable
Switch # config terminal
Enter configuration commands, one per line. End with CNTL / Z.
Switch (config) # hostname ALSwitch
ALSwitch (config) # enable password cisco
ALSwitch (config) # enable secret vnpro
ALSwitch (config) # line vty 0 4
ALSwitch (config-line) # password cisco
ALSwitch (config-line) # login
ALSwitch (config-line) # ^ Z
00:07:40:% SYS-5-CONFIG_I: Configured from console by console
VLAN and Trunking Configuration
Just configure trunking, then put into the same VTP domain ALSwitch Vnpro in client mode, ALSwitch will automatically learn information from the VTP server VLAN (DLSwitch).
ALSwitch # vlan database
ALSwitch (vlan) # vtp domain Vnpro
Changing VTP domain name from NULL to Vnpro
ALSwitch (vlan) # vtp client
Setting device to VTP CLIENT mode.
ALSwitch (vlan) # exit
Print CLIENT state, no apply attempted.
Exiting ....
ALSwitch # config terminal
Enter configuration commands, one per line. End with CNTL / Z.
ALSwitch (config) # interface FastEthernet 0 / 1
ALSwitch (config-if) # switchport trunk encapsulation dot1q
ALSwitch (config-if) # switchport mode trunk
ALSwitch (config-if) # exit
ALSwitch (config) # interface range FastEthernet0 / 4-8
ALSwitch (config-if) # switchport access vlan 10
ALSwitch (config-if) # exit
ALSwitch (config) # interface FastEthernet0 / 9-12
ALSwitch (config-if) # switchport access vlan 20
ALSwitch (config-if) # exit
ALSwitch (config) # ^ Z
ALSwitch #
00:13:00:% SYS-5-CONFIG_I: Configured from console by console
Check the VLAN information on ALSwitch:
ALSwitch # show vlan
VLAN Name Status Ports
---- -------------------------------- --------- ----- --------------------------
1 default active Fa0 / 2, Fa0 / 3
10 Admin active Fa0 / 4, Fa0 / 5, Fa0 / 6, Fa0 / 7,
Fa0 / 8
20 User active Fa0 / 9, Fa0/10, Fa0/11, Fa0/12
1002 FDDI-default active
1003 token-ring-default active
Fddinet-default active 1004
Trnet-default active 1005
VLAN Type SAID MTU Parent RingNo BridgeNo BrdgMode Trans1 Trans2 STP
---- ----- ---------- ----- ------ ------ -------- ---- - ------ ------ ------
1 enet 100001 1500 - - - - - 0 0
10 enet 100010 1500 - - - - - 0 0
20 enet 100020 1500 - - - - - 0 0
FDDI 101 002 1002 1500-0 - - - 0 0
P. 101 003 1003 1500-0 - - SRB 0 0
Fdnet 1004 1500 101 004 - - - IEEE - 0 0
Trnet 1005 1500 101 005 - - - ibm - 0 0
ALSwitch #
Conduct Phase 2:
DLSwitch (config) # interface FastEthernet 0 / 2
DLSwitch (config-if) # no switchport
DLSwitch (config-if) # ip address 10.200.1.1 255.255.255.0
DLSwitch (config-if) # no shutdown
00:14:35:% LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0 / 2, changed state to downxit
The command "no switchport" to enable operation in Grade 3 for the Catalyst 3550. At this port FastEthernet 0 / 2 can operate as a port on the router. But the connection between the Remote Router DLSwitch through this port and still use Straight Cable, and the connection between DLSwitch ALSwitch through port FastEthernet 0 / 1 use Cross Cable. Routing configuration:
DLSwitch (config) # ip routing
DLSwitch (config-router) # router ospf 0
DLSwitch (config-router) # network 10.200.0.0 0.0.0.255 area 0
DLSwitch (config-router) # network 192.168.1.0 0.0.0.255 area 0
DLSwitch (config-router) # network 192.168.10.0 0.0.0.255 area 0
DLSwitch (config-router) # network 192.168.20.0 0.0.0.255 area 0
DLSwitch (config-router) # ^ z
Configuring the Remote Router
Configure the basic parameters:
Router> enable
Router # config terminal
Router (config) # hostname Remote
Remote (config) # enable password cisco
Remote (config) # enable secret vnpro
Remote (config) # line vty 0 4
Remote (config-line) # password cisco
Remote (config-line) # login
Remote (config-line) # exit
Remote (config) # interface interface ethernet0 / 0
Remote (config-if) # ip address 10.200.1.2 255.255.255.0
Remote (config-if) # no shut
Remote (config-if) #
* Mar 1 00:10:39.175:% LINK-3-UPDOWN: Interface Ethernet0 / 0, changed state to up
Remote (config-if) # exit
Remote (config) # interface loopback 0
Remote (config-if) # ip address 172.168.0.1 255.255.255.0
Remote (config-if) # no shutdown
Remote (config-if) # exit
* Mar 1 00:11:26.749:% LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
Remote (config) # router ospf 1
Remote (config-router) # network 172.168.0.0 0.0.0.255 area 0
Remote (config-router) # network 10.200.1.0 0.0.0.255 area 0
Remote (config-router) # ^ Z
Mar 1 00:13:35.347:% SYS-5-CONFIG_I: Configured from console by console
Configure the interface and routing configuration
View the routing information DLSwitch
DLSwitch> enable
DLSwitch # show ip route
Gateway of last resort is not set
C 192.168.10.0/24 is directly connected, Vlan10
172.168.0.0/32 is subnetted, 1 subnets
O 172.168.0.1 [110/11] via 10.200.0.2, 00:22:50, FastEthernet0 / 2
C 192.168.20.0/24 is directly connected, Vlan20
10.0.0.0/24 is subnetted, 1 subnets
C 10.200.0.0 is directly connected, FastEthernet0 / 2
C 192.168.1.0/24 is directly connected, VLAN1
View the routing information on the Remote router:
DLSwitch # telnet 10.200.0.2
Trying 10.200.0.2 ... Open
User Access Verification
Password: cisco
Remote> enable
Password: vnpro
Remote # show ip route
Gateway of last resort is not set
O 192.168.10.0/24 [110/11] via 10.200.0.1, 00:23:53, Ethernet0 / 0
172.168.0.0/24 is subnetted, 1 subnets
C 172.168.0.0 is directly connected, Loopback0
O 192.168.20.0/24 [110/11] via 10.200.0.1, 00:23:53, Ethernet0 / 0
10.0.0.0/24 is subnetted, 1 subnets
C 10.200.0.0 is directly connected, Ethernet0 / 0
O 192.168.1.0/24 [110/11] via 10.200.0.1, 00:23:53, Ethernet0 / 0
Check the connection by using a workstation connected to any VLAN. Ping found
0 on the Remote Router Looback interface. Work Station with previous address on VLAN 10. With the Default Gateway is the IP Mangement of VLAN 10. WorkStation used on VLAN 10 as the ping address to 0 on the Remote Router Looback taking and recording results. Check Intervlan Routing capabilities by using a ping work station VLAN 20 to VLAN 10 on the work station and record results.
