Вы находитесь на странице: 1из 5

Switch 1 hostname S1 no ip domain-lookup enable secret class banner motd # Authorized Access Only. # !

interface range FastEthernet0/1-5 switchport trunk native vlan 99 switchport mode trunk ! interface range FastEthernet0/6-10 switchport access vlan 30 switchport mode access ! interface range FastEthernet0/11-17 switchport access vlan 10 switchport mode access ! interface range FastEthernet0/18-24 switchport access vlan 20 switchport mode access ! interface Vlan1 no ip address no ip route-cache ! interface Vlan99 ip address 192.168.99.31 255.255.255.0 no ip route-cache ! line con 0 password cisco logging synchronous history size 35 login line vty 0 4 no login line vty 5 15 password cisco logging synchronous history size 35 login ! end ! Switch 2 hostname S2 no ip domain-lookup enable secret class banner motd # Authorized Access Only. # ! vlan 10 name Faculty/Staff !

vlan 20 name Students ! vlan 30 name Guest(Default) ! vlan 99 name Management&Native ! interface range FastEthernet0/1-5 switchport trunk native vlan 99 switchport mode trunk ! interface range FastEthernet0/6-10 switchport access vlan 30 switchport mode access ! interface range FastEthernet0/11-17 switchport access vlan 10 switchport mode access ! interface range FastEthernet0/18-24 switchport access vlan 20 switchport mode access ! interface GigabitEthernet0/1 ! interface GigabitEthernet0/2 ! interface Vlan99 ip address 192.168.96.32 255.255.255.0 no ip route-cache no shutdown !

line con password login line vty password login line vty password login ! end !

0 cisco 0 4 cisco 5 15 cisco

Switch 3

hostname S3 no ip domain-lookup enable secret cisco banner motd # Authorized Access Only. # ! vlan 10 name Faculty/Staff ! vlan 20 name Students ! vlan 30 name Guest(Default) ! vlan 99 name Management&Native ! interface range FastEthernet0/1-5 switchport trunk native vlan 99 switchport mode trunk ! interface range FastEthernet0/6-10 switchport access vlan 30 switchport mode access ! interface range FastEthernet0/11-17 switchport access vlan 10 switchport mode access ! interface range FastEthernet0/18-24 switchport access vlan 20 switchport mode access ! interface GigabitEthernet0/1 ! interface GigabitEthernet0/2 ! ! interface Vlan1 no ip address no ip route-cache ! interface Vlan99 ip address 192.168.99.33 255.255.255.0 no ip route-cache no shutdown ! line con 0 password cisco login line vty 0 4 password cisco login line vty 5 15 password cisco login ! end !

Port Security int fa0/6 switchport switchport switchport switchport switchport exit ! int fa0/11 switchport switchport switchport switchport switchport exit ! int fa0/18 switchport switchport switchport switchport switchport exit ! mode access port-security port-security maximum 1 port-security mac-address sticky port-security violation shutdown

mode access port-security port-security maximum 1 port-security mac-address sticky port-security violation shutdown

mode access port-security port-security maximum 1 port-security mac-address sticky port-security violation shutdown

For Mismatched VLAN Looking at the above detail, you will notice that the native VLAN has been set t o VLAN 100 and it is inactive. As you look further down the output, you see that the allowed VLANs are 10 and 99. To sum it up, this is a case of a mismatched native VLAN

The solution: You need to reconfigure the native VLAN on the Fast Ethernet F0/3 trunk port to be VLAN 99. e.g S2#config t S2#interface fa0/3 S2#switchport trunk native vlan 99 S2#end VLAN Mismatch on SW1 and SW# Dynamic Auto show interface fa0/3 switchport reconfigure Reconfigure switchport fa0/3 as trunk link on Switch 3 SW3#config t

SW3(config)#interface fa0/3 SW3(config-if)switchport mode trunk SW3(config-if)end