Laboratórios

Laboratrios
DmSwitch 3000 e DM4000
Av. Frana, 735 - Porto Alegre, RS - 90230-220

Suporte Tcnico: 51 3358 0122
www.datacom-telematica.com.br
Pgina 1 de 35
Sumrio
Lab 1:
Lab 2:
Lab 3:
Lab 4:
Lab 5:
Lab 6:
Lab 7:
Lab 8:
Lab 9:
Lab 10:
Funes de Ajuda do CLI ................................................................................... 3

SNMP ................................................................................................................ 6
ACLs .................................................................................................................. 7
Criao e Autenticao de Usurio .................................................................... 8
VLAN ................................................................................................................. 9
RSTP (Rapid Spanning Tree) ............................................................................. 11
MSTP (Multiple STP) ........................................................................................ 14
EAPS................................................................................................................ 22
QinQ (Double Tagging de VLAN) ..................................................................... 29
Link Aggregation ......................................................................................... 32

Pgina 2 de 35
Lab 1: Funes de Ajuda do CLI

1.1
Logar no DmSwitch como usurio privilegiado usando o login e senha padro de fbrica
DmSwitch3000 login: admin

Password: admin
DmSwitch3000#
1.2
Digite um ponto de interrogao ? no prompt para ter acesso a lista de comandos disponveis
com uma breve descrio.
DmSwitch3000#[?]
clear
Clear functions
clock
Manage the system clock
configure
Configure parameters
copy
Copy configuration or image data
debug
Enable process debugging
diff
Compare configurations
erase
Erase flash data
exit
Exit session
help
Obtain a description of the interactive help system
light
Light LEDs to show unit information
no
Override parameters
ping
Send echo messages
reboot
Perform a warm restart
select
Select startup firmware and configuration
show
Show running system information
telnet
Open a telnet connection
terminal
Set terminal line parameters
traceroute Traceroute to destination
unit
Select the default unit to be used in the terminal
1.3
Ou digite duas vezes a tecla TAB para ver a lista em um formato simplificado.
DmSwitch3000#[TAB][TAB]
clear
debug
clock
diff
configure
erase
copy
exit
1.4
help
light
no
ping
reboot
select
show
telnet
terminal
traceroute
unit
Acesse o modo de configurao global atravs do comando configure. O DmSwitch suporta

comandos abreviados, ou seja, no necessrio digitar todo o comando, desde que no haja outro
comando que inicie com a mesma sintaxe.
DmSwitch3000#con[ENTER]
DmSwitch3000(config)#
1.5
Caso no tenha certeza da sintaxe correta do comando, utilize o ? ou a tecla TAB
DmSwitch3000#co[TAB][TAB]
configure copy
DmSwitch3000#con[TAB]
DmSwitch3000#configure[ENTER]
DmSwitch3000(config)#
1.6
Alterar o nome do DmSwitch para SWA atravs do comando hostname.
DmSwitch3000(config)#hostname [?]
<text> This system's hostname
Pgina 3 de 35
DmSwitch3000(config)#hostname SWA [?]

<enter> no further known parameters
DmSwitch3000(config)#hostname SWA [ENTER]
SWA(config)#
1.7
Para visualizar os comandos j digitados, pressione [SETA PARA CIMA] ou Ctrl+P para ver os
comandos comeando com os mais recentes, [SETA PARA BAIXO] ou Ctrl+N para retornar, ou o
comando show history para ver todos j digitados.
SWA(config)#show history
1: configure
2: hostname SWA
3: show history
SWA(config)#
1.8
A sada do comando show <parmetro>, pode ser alterada para apresentar somente as linhas que
se deseja visualizar. O | (pipe) usado para modificar a sada.
SWA(config)#show history [?]

|
Output modifiers
<enter>
SWA(config)#show history | [?]
begin
Print lines which beginning matches a pattern
exclude Print lines unmatching a pattern
include Print lines matching a pattern
<enter>
SWA(config)#show history | include host [ENTER]
2: hostname SWA
4: show history | include host
SWA(config)#
1.9
Por padro, um terminal de configurao possui 24 linhas, no entanto, o resultado de alguns

comandos pode reproduzir mais do que 24 linhas. Neste caso, na ltima linha aparecer um
MORE, indicando que h mais informaes a serem visualizadas. Para correr mais uma tela, tecle
na barra de espaos [SPACE], para correr trs telas de uma s vez tecla em [SETA PARA BAIXO], para
visualizar as prximas linhas, uma de cada vez tecle [ENTER] e para retornar ao prompt sem exibir o
restante das informaes tecle a letra [q].
DmSwitch3000(config)#show
Information of Eth 1/1
Basic information:
Port type:
MAC address:
Configuration:
Name:
Port admin:
Speed-duplex:
Capabilities:
Flow-control:
MDIX:
Slow Protocols MAC:
LACP:
OAM:
Loopback Detection:
Link-Flap Detection:
Current status:
Link status:
interfaces status [ENTER]

100TX
00:04:DF:10:44:86
Up
Auto
10M half, 10M full, 100M half, 100M full
Disabled
Auto
Standard
Disabled
Disabled
Enabled - Unblock hysteresis: 30 sec
Down
Information of Eth 1/2

Pgina 4 de 35
Basic information:
Port type:
--More--
100TX
1.10 A opo de paginao do terminal pode ser desabilitada. Para desabilitar uma configurao em
qualquer nvel de operao, digite um no na frente do comando que ativa essa opo.
DmSwitch3000(config)#no terminal paging
1.11 Configurar o timeout do terminal, ou seja, o tempo em que o terminal ficar inativo antes de
realizar o logoff do usurio. Por padro no h configurao de timeout, portanto o usurio
permanecer logado indefinidamente mesmo sem atividade.
DmSwitch3000#terminal timeout [?]
15-3600 Timeout in seconds
DmSwitch3000#terminal timeout 3600

Pgina 5 de 35
Lab 2: SNMP
2.1
Configurar a community datacom de leitura e escrita, o contato suporte tcnico 51 33580122,

a localizao porto alegre rs e o host 192.168.0.1 para receber traps SNMPv2c
DmSwitch3000(config)#ip snmp-server community datacom rw

DmSwitch3000(config)#ip snmp-server contact suporte tecnico 51 33580122
DmSwitch3000(config)#ip snmp-server location porto alegre rs
DmSwitch3000(config)#ip snmp-server host 192.168.0.1 version 2c datacom
DmSwitch3000(config)#show ip snmp-server
SNMP status: Enable
Local SNMP engineID: 80000E7D030004DF103931
SNMP Community:
public(Read-Only)
datacom(Read/Write)
SNMPv3 User:
USER
ACCESS
AUTHENTICATION
PRIVACY
SNMPv(1|2c) Trap Manager:

IP
COMMUNITY
192.168.0.1
datacom
VERSION
2c
SNMPv3 Trap Manager:

IP
AUTHENTICATION
USER
PRIVACY

Pgina 6 de 35
Lab 3: ACLs
3.1
Permitir que apenas os endereos IP que pertenam a rede 192.168.0.0/24 possam gerenciar o
DmSwitch, com exceo do acesso via HTTP, HTTPS e SNMP que somente ser gerenciado pelo
endereo IP 192.168.0.1
DmSwitch3000(config)#management snmp-client 192.168.0.1/32

DmSwitch3000(config)#management ssh-client 192.168.0.0/24
DmSwitch3000(config)#management telnet-client 192.168.0.0/24
DmSwitch3000(config)#management http-client 192.168.0.1/32
DmSwitch3000(config)#show management all-client
Management IP filter:
Telnet client:
192.168.0.0/24
HTTP client:
192.168.0.1/32
SNMP client:
192.168.0.0/24
SSH client:
192.168.0.0/24

Pgina 7 de 35
Lab 4: Criao e Autenticao de Usurio

4.1
Criar o usurio privilegiado nmc com senha d474c0m. Criar o usurio normal operador sem
senha de acesso.
DmSwitch3000(config)#username nmc password 0 d474c0m

DmSwitch3000(config)#username nmc access-level 15
DmSwitch3000(config)#username operador nopassword
DmSwitch3000(config)#username operador access-level 0
DmSwitch3000(config)#show users
Access
Username
Level Password Hash
-------------------------------- ------ ---------------------------------------admin
15
d033e22ae348aeb5660fc2140aec35850c4da997
guest
0
35675e68f4b5af7b995d9205ad0fc43842f16450
nmc
15
6b8f2e7026c340afb241e17446418165765d599b
operador
0
no password
4.2
Configurar autenticao de usurio em um servidor com IP 192.168.0.1 e secret key datacom.

Habilitar para que o servidor radius seja a primeira opo de autenticao e em seguida,
autenticao local.
DmSwitch3000(config)#radius-server host 1 address 192.168.0.1

DmSwitch3000(config)#radius-server key datacom
DmSwitch3000(config)#show radius-server
RADIUS configuration:
Default Key:
********
Default Auth-port: 1812
Default Acct-port: 1813
Timeout:
5
Retries:
2
Host 1:
Authentication: Enable
Accounting:
Enable
Address:
192.168.0.1
Host 2:
Host 3:
Host 4:
Host 5:
DmSwitch3000(config)#authentication login radius local
DmSwitch3000(config)#show authentication
Login authentication method by precedence:
(1) RADIUS server
(2) Local database

Pgina 8 de 35
Lab 5: VLAN
5.1
Criar o range de vlans de 2 a 200 e configurar a vlan de gerncia em todos os switches com id de
vlan 100, nome MANAGEMENT, endereo ip 10.0.100.x/24 ( Se hostname for SW1, ento x=1; se
hostname for SW2, ento x=2, etc.) e ajustar as portas que fazem o entroncamento dos switches
como tagged para a vlan 100;
SW1-4004(config)#interface vlan range 2 200

Iterating over 199 VLANs. Next commands may take a while...
SW1-4004(config-if-vlan-2-to-200)#exit
SW1-4004(config)#interface vlan 100
SW1-4004(config-if-vlan-100)#name MANAGEMENT
SW1-4004(config-if-vlan-100)#ip address 10.0.100.1/24
SW1-4004(config-if-vlan-100)#set-member tagged ethernet 3/1
SW2-4001(config-if-vlan-100)#set-member tagged ethernet 1
SW2-4001(config-if-vlan-100)#
Pgina 9 de 35

SW3-3000(config-if-vlan-100)#set-member tagged ethernet range 25 26
SW4-3000(config-if-vlan-100)#set-member tagged Ethernet 25
SW5-3000(config-if-vlan-100)#set-member tagged Ethernet 25
5.2
Nos switches de acesso (SW4-3000 e SW5-3000), configurar uma interface que pertencer a vlan
100 de gerncia e verificar se na tabela de vlans consta a interface que foi associada a vlan 100
SW4-3000(config)#interface ethernet [?]

SW4-3000(config-if-eth-1/5)#switchport native vlan 100
SW4-3000#sh vlan table id 100
SW5-3000(config)#interface ethernet [?]
SW5-3000#sh vlan table id 100
5.3
Ajustar as configuraes de rede TCP/IP das mquinas que estaro nas interfaces pertencentes a vlan
100 com ip na faixa 10.0.100.x/24, conectar as mesmas nas interfaces e testar conectividade (ping e
telnet) com os switches e outras mquinas na mesma vlan.
Host C:\> ping/telnet 10.0.100.x

5.4
Seguindo o mesmo passo, ajuste as configuraes das vlans 10, 20, 30, 110, 120 e 130 em todos os
switches e faa testes de conectividade entre os mesmos e outras estaes.
Vlan
Vlan
Vlan
Vlan
Vlan
Vlan
10 = faixa 10.0.10.x/24
20 = faixa 10.0.20.x/24
30 = faixa 10.0.30.x/24
110 = faixa 10.0.110.x/24
120 = faixa 10.0.120.x/24
130 = faixa 10.0.130.x/24

Pgina 10 de 35
Lab 6: RSTP
6.1
Por default, os switches DATACOM trabalham com o modo RSTP habilitado, no entanto possvel
habilitar os diferentes modos STP atravs do comando abaixo:
6.2
SW1-4004(config)#spanning-tree mode
mstp Specify spanning-tree mode as
rstp Specify spanning-tree mode as
stp
Specify spanning-tree mode as
6.3
[?]
MSTP
RSTP
STP
Crie uma situao de looping de rede fechando o anel entre os switches SW1, SW2 e SW3 e
verifique o processo de eleio do switch raiz da topologia RSTP e a reao do protocolo RSTP ao
detectar a presena de um looping de rede. A sada dos comandos abaixo demonstra o status do
RSTP:
SW1-4004# sh spanning-tree
- Role (first letter):
(a)lternate, (b)ackup, (r)oot, (d)esignated,

(m)aster, (-)disabled
- State (second letter): (d)iscarding, (l)earning, (f)orwarding
- Uppercase:
port-channel member
Spanning-tree 1 (RSTP01) information
-------------------------------------------------------------------------------Av. Frana, 735 - Porto Alegre, RS - 90230-220
Pgina 11 de 35
Members:
Bridge info:
Root info:
Bridge times:
Root times:
Topology changes:
Unit 3
VLAN group 1
32769.0004df10cfed, priority: 32768 + ID 1
32769.0004df104486, port: Eth 3/3, cost: 20000
hello: 2, forward: 15, max age: 20, max hops: 20
hello: 2, forward: 15, max age: 20
total: 1, last: 891s
8 10 12
df rf
1 3
9 11 13
SW2-4001#sh spanning-tree

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df10d07d, priority: 32768 + ID 1
Root info:
32769.0004df104486, port: Eth 1/3, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13
-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df104486, priority: 32768 + ID 1
Root info:
This is the Root Bridge for RSTP01
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27
OBS: A anlise dos comandos deixa claro que o SW3-3000 foi eleito o switch raiz
(Root Bridge) da topologia RSTP. O processo de eleio foi feito aps troca de
BPDUs entre os switches e a constatao de que o BID (Bridge Id = Priority/MAC)
do SW3-3000 o menor dentre todos. Pelo fato do SW2-3000 ser o Bridge Root da
topologia RSTP, todas as suas portas so designadas e encotram-se em modo
forwarding (df). Os outros switches iro eleger a porta de menor custo at o
Root Bridge como a porta root (rf). Como apenas uma porta designada pode existir
por segmento, a porta 1 do SW1-4004 foi eleita designated port (df), e a porta 1
do SW2-4001 foi eleita alternative port (ad), estando esta em modo discarding.
Dessa forma loopings no ocorrero.
6.4
Defina o SW1-4004 como o Root Bridge da topologia RSTP e verifique a reconstruo da mesma. A
sada dos comandos abaixo demonstra a nova topologia aps o SW1-4004 se tornar o Root Bridge:
Pgina 12 de 35
SW1-4004(config)#spanning-tree 1 root primary

Ou
SW1-4004(config)#spanning-tree 1 priority 24576

- Uppercase:
port-channel member
-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
Root info:
This is the Root Bridge for RSTP01
Bridge times:
Root times:
Topology changes:
total: 2, last: 63s
Unit 3
8 10 12
df df
1 3
9 11 13
-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df10d07d, priority: 32768 + ID 1
Root info:
24577.0004df10cfed, port: Eth 1/1, cost: 20000
Bridge times:
Root times:
Topology changes:
total: 2, last: 46s
Unit 1
8 10 12
rf ad
1 3
9 11 13
SW3-3000#sh spannin
-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df104486, priority: 32768 + ID 1
Root info:
Bridge times:
Root times:
Topology changes:
total: 3, last: 12s
Unit 1
8 10 12 14 16 18 20 22 24 26 28
dd
rf
7 9 11 13 15 17 19 21 23 25 27

Pgina 13 de 35
Lab 7: MSTP
7.1
Em todos os switches do anel (SW1, 2 e 3), crie dois grupos de vlans (vlan-group 1 e 2) que faro
parte das instncias MSTP 1 e 2. Aps criar os grupos, defina o range de vlans de 1 a 100 para o
grupo 1 e de 101 a 200 para o grupo 2:
OBS: Por default, todas as vlans encontram-se associadas ao vlan-group 1 e a

instncia spanning-tree 1. Recomenda-se apagar essa configurao e refazer a
instncia spanning-tree 1 com as vlans necessrias.
SWx(config)#no spanning-tree 1
SWx(config)#no vlan-group 1
SWx(config)#vlan-group
7.2
1
1 vlan range 1 100
2
2 vlan range 101 200
Em todos os switches do anel, crie as instncias MSTP 1 e 2 e associe os grupos de vlans criados s
mesmas:
SWx(config)#spanning-tree
SWx(config)#!
1
1 vlan-group 1
2
2 vlan-group 2
Pgina 14 de 35
7.3
Em todos switches do anel, defina o nome da regio como REGION_DATACOM, o nmero de reviso
para 5 e por ltimo habilite o modo MSTP:
SWx(config)#spanning-tree mst name REGION_DATACOM

SWx(config)#spanning-tree mst revision 5
SWx(config)#spanning-tree mode mstp
OBS: Ao habilitar o MSTP, a instncia spanning-tree 0 ser criada
automaticamente, sendo esta a IST0 da topologia MSTP.
7.4
Verifique o status da topologia MSTP. A sada dos comandos abaixo mostrar que o SW3-3000 foi
eleito o Root Bridge da topologia MSTP tanto para a IST1 quanto para a IST2, e portanto, todas as
suas portas encontram-se em modo forwarding (df). possvel comprovar tambm que os outros
switches calcularam a porta de menor custo (rf) para o Root Bridge tanto para a IST1 quanto para a
IST2 e bloquearam uma de suas portas (ad) para evitar loopings.
SW1-4004#show spanning-tree

- Uppercase:
port-channel member
Spanning-tree 0 (CIST) information
-------------------------------------------------------------------------------Bridge info:
Root info:
32768.0004df104486, port: Eth 3/3, cost: 0
Regional root info:
32768.0004df104486, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 3
8 10 12
df rf
1 3
9 11 13
Spanning-tree 1 (MSTI01) information

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
Regional root info:
32769.0004df104486, port: Eth 3/3, cost: 20000
Topology changes:
Unit 3
8 10 12
df rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
Regional root info:
32770.0004df104486, port: Eth 3/3, cost: 20000
Topology changes:
Unit 3
8 10 12
df rf
Pgina 15 de 35
3 5
...
9 11 13
SW2-4001#show spanning-tree

- Uppercase:
port-channel member
-------------------------------------------------------------------------------Bridge info:
32768.0004df10d07d, priority: 32768 + ID 0
Root info:
32768.0004df104486, port: Eth 1/3, cost: 0
Regional root info:
32768.0004df104486, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df10d07d, priority: 32768 + ID 1
Regional root info:
32769.0004df104486, port: Eth 1/3, cost: 20000
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
32770.0004df10d07d, priority: 32768 + ID 2
Regional root info:
32770.0004df104486, port: Eth 1/3, cost: 20000
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13
...
-------------------------------------------------------------------------------Bridge info:
32768.0004df104486, priority: 32768 + ID 0
Root info:
This is the Root Bridge for CIST
Regional root info:
This is the Regional Root Bridge for CIST
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27
Pgina 16 de 35

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df104486, priority: 32768 + ID 1
Regional root info:
This is the Regional Root Bridge for MSTI01
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
32770.0004df104486, priority: 32768 + ID 2
Regional root info:
Topology changes:
Unit 1
7.5
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27
Habilite o debug stp e force a eleio do SW1-4004 como o Root Bridge da topologia MSTP para
as instncias 1 e 2.
SW1-4004#debug stp
SW1-4004#conf
ou
...
Ou
7.6
A sada dos commandos abaixo demostra as alteraes da topologia MSTP aps o processo de
reeleio do Root Bridge para as IST1 e IST2:

- Uppercase:
port-channel member
-------------------------------------------------------------------------------Bridge info:
Root info:
32768.0004df104486, port: Eth 3/3, cost: 0
Regional root info:
32768.0004df104486, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 3
8 10 12
Pgina 17 de 35
df rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
Regional root info:
Topology changes:
Unit 3
8 10 12
df df
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
Regional root info:
Topology changes:
total: 15, last: 4s
Unit 3
8 10 12
df df
1 3
9 11 13

- Uppercase:
port-channel member
-------------------------------------------------------------------------------Bridge info:
32768.0004df10d07d, priority: 32768 + ID 0
Root info:
32768.0004df104486, port: Eth 1/3, cost: 0
Regional root info:
32768.0004df104486, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df10d07d, priority: 32768 + ID 1
Regional root info:
Topology changes:
Unit 1
8 10 12
rf ad
1 3
9 11 13

-------------------------------------------------------------------------------Av. Frana, 735 - Porto Alegre, RS - 90230-220
Pgina 18 de 35
Members:
Bridge info:
Regional root info:
Topology changes:
Unit 1
VLAN group 2
32770.0004df10d07d, priority: 32768 + ID 2
8 10 12
rf ad
1 3
9 11 13
-------------------------------------------------------------------------------Bridge info:
32768.0004df104486, priority: 32768 + ID 0
Root info:
Regional root info:
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df104486, priority: 32768 + ID 1
Regional root info:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
rf
7 9 11 13 15 17 19 21 23 25 27

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
32770.0004df104486, priority: 32768 + ID 2
Regional root info:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
rf
7 9 11 13 15 17 19 21 23 25 27
OBS: A anlise dos comandos deixa claro que o SW1-4004 passou a ser o Root
Bridge da topologia MSTP para as instncias 1 e 2. Observa-se tambm que tanto o
SW2-4001 quanto o SW3-3000 escolheram as portas 1 e 25 respectivamente como root
port para as instncias 1 e 2. Assim sendo, todo trfego das vlans mapeadas para
as instncias 1 e 2 nos dois switches supramencionados sair por essas portas.
7.7
Atravs da manipulao do custo at o Root Bridge da topologia MSTP em anel, defina que todo
trfego da instncia 1 nos switches dever seguir um percurso anti-horrio at o Root Bridge, ao
passo que o trfego da instncia 2 dever seguir um percurso horrio. Dessa forma, estaremos
distribuindo o trfego da instncias de vlans atravs do anel, no deixando nenhuma parte do
mesmo ociosa. A sada dos comandos abaixo demostra a manipulao dos custos e como a
topologia MSTP reagiu aps a mudana dos mesmos.
Pgina 19 de 35
SW2-4001(config)#interface ethernet 1
SW2-4001(config-if-eth-1/1)#spanning-tree 2 cost 40001

- Uppercase:
port-channel member
-------------------------------------------------------------------------------Bridge info:
32768.0004df10d07d, priority: 32768 + ID 0
Root info:
32768.0004df104486, port: Eth 1/3, cost: 0
Regional root info:
32768.0004df104486, cost: 20000
Bridge times:
Root times:
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df10d07d, priority: 32768 + ID 1
Regional root info:
Topology changes:
Unit 1
8 10 12
rf df
1 3
9 11 13

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
32770.0004df10d07d, priority: 32768 + ID 2
Regional root info:
Topology changes:
Unit 1
8 10 12
ad rf
1 3
9 11 13
...
SW3-3000(config-if-eth-1/25)#spanning-tree 1 cost 400001
-------------------------------------------------------------------------------Bridge info:
32768.0004df104486, priority: 32768 + ID 0
Root info:
Regional root info:
Bridge times:
Root times:
Topology changes:
Pgina 20 de 35
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
df
7 9 11 13 15 17 19 21 23 25 27

-------------------------------------------------------------------------------Members:
VLAN group 1
Bridge info:
32769.0004df104486, priority: 32768 + ID 1
Regional root info:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
rf
ad
7 9 11 13 15 17 19 21 23 25 27

-------------------------------------------------------------------------------Members:
VLAN group 2
Bridge info:
32770.0004df104486, priority: 32768 + ID 2
Regional root info:
Topology changes:
Unit 1
8 10 12 14 16 18 20 22 24 26 28
df
rf
7 9 11 13 15 17 19 21 23 25 27
OBS: A anlise dos comandos deixa claro que no SW2-4001 o trfego das vlans
mapeadas para a instncia 1 sair pela root port 1, ao passo que o trfego das
vlans mapeadas para a instncia 2 sair pela root port 3. J no SW3-3000, o
trfego das vlans mapeadas para a instncia 1 sair pela root port 26, ao passo
que o trfego das vlans mapeadas para a intncia 2 sair pela root port 25.
7.8
Aps este laboratrio, exclua as configuraes MSTP de todos os switches usando os comandos
abaixo e por ltimo, habilite o modo default RSTP.
SWx(config)#no
SWx(config)#no
SWx(config)#no
SWx(config)#no
SWx(config)#no
SWx(config)#no
SWx(config)#no
spanning-tree
spanning-tree
spanning-tree
spanning-tree
spanning-tree
vlan-group 1
vlan-group 2
mst name
mst revision
0
1
2
SWx(config)#vlan-group 1
SWx(config)#vlan-group 1 vlan all
SWx(config)#spanning-tree 1
SWx(config)#spanning-tree 1 vlan-group 1
SWx(config)#spanning-tree mode rstp

Pgina 21 de 35
Lab 8: EAPS
8.1
Em todos os switches do anel EAPS, crie os grupos de vlans que sero protegidas pelos domnios
EAPS 1 e 2. O domnio EAPS 1 (DM1) ir fazer a proteo do vlan-group 1 onde estaro mapeadas
as vlans de 1 a 100 e, o domnio EAPS 2 (DM2) ir fazer a proteo do vlan-group 2 onde estaro
mapeadas as vlans de 101 a 200.
SWx(config)#vlan-group 1 vlan range 1 100
SWx(config)#vlan-group 2 vlan range 101 200
8.2
Em todos os switches do anel EAPS, crie as vlans de controles EAPS. A vlan de controle do domnio
EAPS 1 (DM1) ser a vlan 4001 e receber o nome CONTROL_DM1. A vlan de controle do domnio
EAPS 2 (DM2) ser a vlan 4002 e receber o nome CONTROL_DM2. No esquea de inserir como
tagged as vlans que circularo pelo anel nos links que entrocam o switches.

SW1-4004(config-if-vlan-2-to-200)#set-member tagged Ethernet 3/1
SW1-4004(config-if-vlan-2-to-200)#set-member tagged Ethernet 3/3
SW1-4004(config-if-vlan-4001)#name CONTROL_DM1
SW1-4004(config-if-vlan-4001)#interface vlan 4002
Pgina 22 de 35

SW2-4001(config-if-vlan-2-to-200)#set-member tagged Ethernet 1
SW2-4001(config-if-vlan-4001)#interface vlan 4002
8.3
Em todos os switches do anel, crie os domnios EAPS 1 e 2 e, atribua o nome DM1 e DM2
respectivamente:
SWx(config)#eaps
SWx(config)#eaps
SWx(config)#eaps
SWx(config)#eaps
8.4
1
1 name DM1
2
2 name DM2
Defina o switch SW1-4004 como o MASTER do anel EAPS para os domnios 1 e 2 e, deixe os outros
switches no modo default TRANSIT:
SW1-4004(config)#eaps 1 mode master

SW1-4004(config)#eaps 2 mode master
8.5
Em todos os switches do anel, associe o vlan-group 1 ao domnio EAPS 1 e o vlan-group 2 ao

domnio EAPS 2. Dessa forma, o DM1 ir fazer a proteo das vlans de 1 a 100 e o DM2 far a
proteo das vlans de 101 a 200:
SWx(config)#eaps 1 protected-vlans vlan-group 1

SWx(config)#eaps 2 protected-vlans vlan-group 2
8.6
Em todos os switches do anel, associe a vlan de controle 4001 ao anel domnio EAPS 1 e a vlan de
controle 4002 ao domnio EAPS 2:
SWx(config)#eaps 1 control-vlan id 4001

SWx(config)#eaps 2 control-vlan id 4002
8.7
Em todos os switches do anel, defina a porta primria e secundria do anel EAPS para os domnios
EAPS 1 e 2, de tal maneira que as portas primrias do domnio EAPS 1 sigam o sentido horrio, ao
passo que as portas primrias do domnio EAPS 2 sigam o sentido anti-horrio. Dessa forma,
estaremos fazendo a distribuio do trfego das vlans atravs de todo anel, no deixando partes
ociosas do mesmo.
SW1-4004(config)#eaps 1 port primary ethernet 3/1

SW1-4004(config)#eaps 1 port secondary ethernet 3/3
Pgina 23 de 35
SW1-4004(config)#eaps 2 port primary ethernet 3/3

SW1-4004(config)#eaps 2 port secondary ethernet 3/1
SW2-4001(config)#eaps
1
1
2
2
port
port
port
port
primary ethernet 1/3

secondary ethernet 1/1
primary ethernet 1/1
secondary ethernet 1/3
1
1
2
2
port
port
port
port
primary ethernet 25
secondary ethernet 26
primary ethernet 26
secondary ethernet 25
8.8
Verifique as configuraes EAPS que foram armazenadas na running-config em todos os switches

do anel e salve as mesmas posteriormente.
SW1-4004(config)#sh run | beg eaps

Building configuration...
eaps 1
eaps 1 mode master
eaps 1 name DM1
eaps 1 port primary ethernet 3/1
eaps 1 port secondary ethernet 3/3
eaps 1 control-vlan id 4001
eaps 1 protected-vlans vlan-group 1
eaps 2
eaps 2 mode master
eaps 2 name DM2
eaps 1
eaps 1 name DM1
!
eaps 2
eaps 2 name DM2
eaps 1
eaps 1 name DM1
!
eaps 2
eaps 2 name DM2
Pgina 24 de 35

...
SWx(config)#copy run start [1-4] <text>
8.9
Verifique o status do anel em todos os switches usando os comandos abaixo:
SW1-4004#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Complete
M
3/1
3/3
4001
1
2
DM2
Complete
M
3/3
3/1
4002
1
SW1-4004#sh eaps detail
Domain ID:
Domain Name:
State:
Mode:
Hello Timer interval:
Fail Timer interval:
Pre-forwarding Timer:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
Protected VLAN group IDs:
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
...
1
DM1
Complete
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 3/3, Thu Jan 1 10:10:31 1970
Eth3/1
Port status: Up
Eth3/3
Port status: Blocked
4001
1
2
DM2
Complete
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 3/1, Thu Jan 1 10:10:31 1970
Eth3/3
Port status: Up
Eth3/1
4002
2
SW2-4001#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Links-Up
T
1/3
1/1
4001
1
2
DM2
Links-Up
T
1/1
1/3
4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
1
DM1
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/1, Thu Jan 1 10:10:54 1970
Eth1/3
Port status: Up
Eth1/1
Port status: Up
4001
1
Domain ID:
Domain Name:
2
DM2
Pgina 25 de 35
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
...
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/3, Thu Jan 1 10:10:54 1970
Eth1/1
Port status: Up
Eth1/3
Port status: Up
4002
2
SW3-3000#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Links-Up
T
1/25 1/26 4001
1
2
DM2
Links-Up
T
1/26 1/25 4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
1
DM1
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/26, Wed Jan 7 13:49:53 1970
Eth1/25
Port status: Up
Eth1/26
Port status: Up
4001
1
2
DM2
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/25, Wed Jan 7 13:49:53 1970
Eth1/26
Port status: Up
Eth1/25
Port status: Up
4002
2
OBS: Conforme a sada dos comandos, constatado que o status do anel est
completo (complete state)e todos os links esto funcionais (up).
8.10 Habilite a depurao do EAPS no SW1-4004 (MASTER) de modo a verificar a troca de mensagens de
controle (Type=HEALTH_CHECK) que iro garantir o status operacional do anel e em seguida
derrube a interface 3/1 (Porta primria do domnio EAPS 1 e secundria do domnio EAPS 2). Ser
observado que o status do anel passar para o modo failed no switch MASTER do anel EAPS
tanto para o domnio EAPS 1 quanto para o 2, embora a redundncia esteja garantida pelo caminho
do anel que no foi interrompido.
SW1-4004#debug eaps
...
SW1-4004(config)#interface ethernet 3/1
SW1-4004(config-if-eth-3/1)#shut
...
SW1-4004(config)#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------Av. Frana, 735 - Porto Alegre, RS - 90230-220
Pgina 26 de 35
1
2
DM1
DM2
Failed
Failed
M
M
3/1
3/3
3/3
3/1
4001
4002
1
1
SW1-4004(config)#sh eaps detail

Domain ID:
1
Domain Name:
DM1
State:
Failed
Mode:
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
Last update from:
00:04:DF:10:98:93, Eth 3/3, Thu Jan 1 10:22:06 1970
Primary port:
Eth3/1
Port status: Down
Secondary port:
Eth3/3
Port status: Up
Control VLAN ID:
4001
Protected VLAN group IDs: 1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
...
2
DM2
Failed
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 3/1, Thu Jan 1 10:22:06 1970
Eth3/3
Port status: Up
Eth3/1
Port status: Down
4002
2
SW2-4001#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Links-Down
T
1/3
1/1
4001
1
2
DM2
Links-Down
T
1/1
1/3
4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
...
1
DM1
Links-Down
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/1, Thu Jan 1 10:28:04 1970
Eth1/3
Port status: Up
Eth1/1
Port status: Down
4001
1
2
DM2
Links-Down
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/3, Thu Jan 1 10:28:29 1970
Eth1/1
Port status: Down
Eth1/3
Port status: Up
4002
2
Pgina 27 de 35
SW3-3000#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Links-Up
T
1/25 1/26 4001
1
2
DM2
Links-Up
T
1/26 1/25 4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
1
DM1
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/26, Wed Jan 7 13:49:53 1970
Eth1/25
Port status: Up
Eth1/26
Port status: Up
4001
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
2
DM2
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/25, Wed Jan 7 13:49:53 1970
Eth1/26
Port status: Up
Eth1/25
Port status: Up
4002
2

Pgina 28 de 35
Lab 9: QinQ (Double Tagging de VLAN)
9.1
Em todos os switches do cenrio de rede, crie a vlan 200 com o nome de METRO_TAG. A vlan 200
ser a Double tagging vlan. Em seguida, insira como tagged na vlan 200 as interfaces que
entroncam os switches do cenrio e habilite o modo vlan qinq globalmente.

SW1-4004(config-if-vlan-200)#name METRO_TAG
SW1-4004(config-if-vlan-200)#exit
SW1-4004(config)#vlan qinq
Pgina 29 de 35

9.2 Por default, as portas combo dos switches da srie 3000 so internas para qinq e o restante das
portas so externas. J nos switches da srie 4000, todas as portas so internas para qinq. Nos
switches SW4-3000 E SW5-3000 do cenrio de rede, configure a interface 5 para o modo
switchport qinq internal e nativa para a vlan 200, de tal maneira que o segundo tag=200 (Outer
Tag) seja inserido em todos os quadros que chegam na interface, independente dos quadros
chegarem com ou sem tag.
SW4-3000(config-if-eth-1/5)#switchport qinq external
SW4-3000(config-if-vlan-200)#set-member untagged ethernet 5
...
SW5-3000(config-if-eth-1/5)#switchport qinq external
SW5-3000(config-if-vlan-200)#set-member untagged ethernet 5
9.3
Verifique o modo qinq das portas nos switches:
SWx-400x#sh qinq
Port
Mode
TPID
QinQ Tag
Membership
---------------------------------------------------------3/ 1
Internal
0x8100
1
untagged
3/ 2
Internal
0x8100
1
untagged
3/ 3
Internal
0x8100
1
untagged
...
3/11
Internal
0x8100
1
untagged
3/12
Internal
0x8100
1
untagged
3/13
Internal
0x8100
1
untagged
SW4-3000#sh qinq
Port
Mode
TPID
QinQ Tag
Membership
------------------------------------------------------------1/ 1
External
0x8100
1
untagged
1/ 2
External
0x8100
1
untagged
1/ 3
External
0x8100
1
untagged
1/ 4
External
0x8100
1
untagged
1/ 5
External
0x8100
200
1/ 6
External
0x8100
1
untagged
...
1/25
Internal
0x8100
1
untagged
1/26
Internal
0x8100
1
untagged
1/27
Internal
0x8100
1
untagged
1/28
Internal
0x8100
1
untagged
SW5-3000#sh qinq
Pgina 30 de 35
Port
Mode
TPID
QinQ Tag
Membership
------------------------------------------------------------1/ 1
External
0x8100
1
untagged
1/ 2
External
0x8100
1
untagged
1/ 3
External
0x8100
1
untagged
1/ 4
External
0x8100
1
untagged
1/ 5
External
0x8100
200
1/ 6
External
0x8100
1
untagged
...
1/25
Internal
0x8100
1
untagged
1/26
Internal
0x8100
1
untagged
1/27
Internal
0x8100
1
untagged
1/28
Internal
0x8100
1
untagged
9.4
Conecte uma estao com ip na faixa 10.0.200.x/24 na interface 5 dos switches SW4-3000 e SW53000 e, verifique a conectividade entre ambas usando o comando ping.
Host C:\>ping 10.0.200.x

Pgina 31 de 35
Lab 10:
Link Aggregation
10.1 No segmento do anel EAPS entre os switches SW1-4004 e SW2-4001 ser inserido outro link de tal
maneira que os dois links faro parte de uma nica interface port-channel, totalizando um canal
de 2Giga. Para tanto, crie a interface port-channel 1em ambos switches do segmento, atrelando as
interfaces 3/1 e 3/2 do SW1-4004 e as interfaces 1 e 2 do SW2/4001 mesma. Antes de configurar o
port-channel, derrube as interfaces que faro parte do mesmo e em seguida configure-o.
SW1-4004(config)#interface ethernet 3/1
SW1-4004(config-if-eth-3/1)#interface ethernet 3/2
SW1-4004(config-if-eth-3/2)#interface port-channel 1
SW1-4004(config-if-port-ch-1)#set-member ethernet 3/1
SW1-4004(config-if-port-ch-1)#set-member ethernet 3/2
SW2-4001(config)#interface ethernet range 1 2
SW2-4001(config-if-eth-1/1-to-1/2)#shut
SW2-4001(config)#interface port-channel 1
SW2-4001(config-if-port-ch-1)#set-member ethernet range 1 2
10.2 Ajuste as configuraes de portas primrias e secundrias dos domnios EAPS criados, uma vez que
o segmento do anel agora ser identificado pela interface port-channel 1 e no mais pelas
interfaces fsicas.
SW1-4004(config)#no eaps 1 port primary
SW1-4004(config)#eaps 1 port primary port-channel 1
Pgina 32 de 35
SW1-4004(config)#no eaps 2 port secondary

SW1-4004(config)#eaps 2 port secondary port-channel 1
SW2-4001(config)#no eaps 1 port secondary
SW2-4001(config)#eaps 1 port secondary port-channel 1
SW2-4001(config)#no eaps 2 port primary
SW2-4001(config)#eaps 2 port primary port-channel 1
10.3 Suba as interfaces que agora fazem parte do port-channel e verifique o status da interface portchannel 1, observando as interfaces fsicas membros do port-channel e se a mesma subiu.
SW1-4004(config-if-port-ch-1)#no shut
SW2-4001(config-if-port-ch-1)#no shut
SW1-4004#sh interfaces status port-channel 1
Information of Port-Channel 1
Basic information:
Port type:
SFP
MAC address:
00:04:DF:10:CF:ED
Configuration:
Name:
***Link_SW2-4001***
Port admin:
Up
Speed-duplex:
Auto
Capabilities:
10M half, 10M full, 100M half, 100M full, 1000M full
Flow-control:
Disabled
MDIX:
Normal
Slow Protocols MAC:
Standard
OAM:
Disabled
Loopback Detection:
Load Balance Method:
MAC (source and destination)
Current status:
Created by:
User
Link status:
Up
Operation speed-duplex: 1000M full
Flow control:
Disabled
MDIX:
Normal
Members:
Eth3/1 to Eth3/2
SW2-4001#sh interfaces status port-channel 1
Information of Port-Channel 1
Basic information:
Port type:
SFP
MAC address:
00:04:DF:10:D0:7D
Configuration:
Name:
***LINK_SW1-4004***
Port admin:
Up
Speed-duplex:
Auto
Capabilities:
10M half, 10M full, 100M half, 100M full, 1000M full
Flow-control:
Disabled
MDIX:
Normal
Slow Protocols MAC:
Standard
OAM:
Disabled
Loopback Detection:
Load Balance Method:
MAC (source and destination)
Current status:
Created by:
User
Link status:
Up
Operation speed-duplex: 1000M full
Pgina 33 de 35
Flow control:
MDIX:
Members:
Disabled
Normal
Eth1/1 to Eth1/2
10.4 Verifique o status do anel EAPS e observe que o segmento entre os switches SW1-4004 e SW2-4001
ser agora identificado pela interface port-channel 1.
SW1-4004#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Complete
M
Ch1
3/3
4001
1
2
DM2
Complete
M
3/3
Ch1
4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
...
1
DM1
Complete
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 3/3, Thu Jan 1 02:32:36 1970
PortCh1
Port status: Up
Eth3/3
4001
1
2
DM2
Complete
Master
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, PortCh 1, Thu Jan 1 02:32:36 1970
Eth3/3
Port status: Up
PortCh1
4002
2
SW2-4001#sh eaps
ID
Domain
State
M
Pri
Sec
Ctrl
Protected#
--- --------------- --------------- --- ----- ----- ------ ----------1
DM1
Links-Up
T
1/3
Ch1
4001
1
2
DM2
Links-Up
T
Ch1
1/3
4002
1
Domain ID:
Domain Name:
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
1
DM1
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, PortCh 1, Thu Jan 1 03:47:08 1970
Eth1/3
Port status: Up
PortCh1
Port status: Up
4001
1
Domain ID:
Domain Name:
2
DM2
Pgina 34 de 35
State:
Mode:
Last update from:
Primary port:
Secondary port:
Control VLAN ID:
Links-Up
Transit
1 sec
3 sec
6 sec (learned)
Remaining:
0 sec
00:04:DF:10:98:93, Eth 1/3, Thu Jan 1 03:47:08 1970
PortCh1
Port status: Up
Eth1/3
Port status: Up
4002
2
10.5 No SW1-4004, derrube a interface 3/1 e verifique se o anel continuar completo (complete state).
Aps, derrube a interface 3/2 e verifique que o anel ser interrompido (failed state). Em ambas as
situaes, deixe trfego rodando entre as vlans criadas e verifique que a redundncia ir assegurar o
fluxo do mesmo.

Pgina 35 de 35

Laboratórios

Загружено:

Сведения о документе

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Laboratórios

Загружено:

Авторское право:

Доступные форматы

Laboratrios

DmSwitch 3000 e DM4000

Av. Frana, 735 - Porto Alegre, RS - 90230-220

Funes de Ajuda do CLI ................................................................................... 3

Av. Frana, 735 - Porto Alegre, RS - 90230-220

Lab 1: Funes de Ajuda do CLI

DmSwitch3000 login: admin

Acesse o modo de configurao global atravs do comando configure. O DmSwitch suporta

Caso no tenha certeza da sintaxe correta do comando, utilize o ? ou a tecla TAB

Alterar o nome do DmSwitch para SWA atravs do comando hostname.

DmSwitch3000(config)#hostname SWA [?]

SWA(config)#show history [?]

Por padro, um terminal de configurao possui 24 linhas, no entanto, o resultado de alguns

interfaces status [ENTER]

Information of Eth 1/2

Av. Frana, 735 - Porto Alegre, RS - 90230-220

Configurar a community datacom de leitura e escrita, o contato suporte tcnico 51 33580122,

DmSwitch3000(config)#ip snmp-server community datacom rw

SNMPv(1|2c) Trap Manager:

SNMPv3 Trap Manager:

Av. Frana, 735 - Porto Alegre, RS - 90230-220

DmSwitch3000(config)#management snmp-client 192.168.0.1/32

Av. Frana, 735 - Porto Alegre, RS - 90230-220

Lab 4: Criao e Autenticao de Usurio

DmSwitch3000(config)#username nmc password 0 d474c0m

Configurar autenticao de usurio em um servidor com IP 192.168.0.1 e secret key datacom.

DmSwitch3000(config)#radius-server host 1 address 192.168.0.1

Av. Frana, 735 - Porto Alegre, RS - 90230-220

SW1-4004(config)#interface vlan range 2 200

SW3-3000(config)#interface vlan range 2 200

SW4-3000(config)#interface ethernet [?]

Host C:\> ping/telnet 10.0.100.x

Av. Frana, 735 - Porto Alegre, RS - 90230-220

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (RSTP01) information

SW1-4004(config)#spanning-tree 1 root primary

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Av. Frana, 735 - Porto Alegre, RS - 90230-220

OBS: Por default, todas as vlans encontram-se associadas ao vlan-group 1 e a

SWx(config)#spanning-tree mst name REGION_DATACOM

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

(a)lternate, (b)ackup, (r)oot, (d)esignated,

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

Spanning-tree 1 (MSTI01) information

Spanning-tree 2 (MSTI02) information

Av. Frana, 735 - Porto Alegre, RS - 90230-220

SW1-4004(config)#interface vlan range 2 200

SW1-4004(config-if-vlan-4002)#set-member tagged ethernet 3/3