C Program Files (x86) Certexams - Com Switch Network Simulator SwitchSim Switching-Manual-Demo

SWITCHING LAB MANUAL
Version 2.0
CONTENTS:
1. Networking Components
1.1 Hub
1.2 Switch
1.3 Router
2. Hierarchical Model
3. Switched Network Model
3.1
3.2
3.3
3.4
Access Layer Switches

Distribution Layer Switches
Core Layer Switches
Summary
4. Switch Device Features

5. Switch Operating Systems
6. Command Line Interface (CLI)
7. Switch IOS (Cisco) Fundamental Exercises
7.1 Lab Exercise 1 : Introduction to Switch
7.2 Lab Exercise 2 : Banner MOTD : Setting Message of the Day
7.3 Lab Exercise 3 : Setting Host Name
7.4 Lab Exercise 4 : Switch 2950 Console Password Assignment
7.5 Lab Exercise 5 : Switch 2950 VTY Password Assignment
7.6 Lab Exercise 6 : Switch 2950 Setting Privileged password
7.7 Lab Exercise 7 : Enable Fast Ethernet Interface on a 2950 Switch
7.8 Lab Exercise 8 : Copy Running Configuration to Startup Configuration
7.9 Lab Exercise 9 : Setting Port Speed and Mode on a Switch
7.10 Lab Exercise 10 : Initial Switch Configuration
7.11 Lab Exercise 11 : Basic Switch Interface Configuration
7.12 Lab Exercise 12 : Configuring Port-Security on a Switchport
7.13 Lab Exercise 13 : Catalyst 2950 Switch Configuration
7.14 Objective Test 1
Version 2.0
Copyright 2002 2016 CertExams.com
8. Basic Exercises
8.1 Lab exercises using Cisco switches
8.1.1
8.1.2
8.1.3
8.1.4
Lab Exercise 1 : Entering User EXEC prompt on a Switch, and exit

Lab Exercise 2 : Introduction to Basic User Interface
Lab Exercise 3 : Basic show commands
Short form commands
8.2 Lab exercises using Juniper switches

8.2.1
8.2.2
8.2.3
8.2.4
8.2.5
8.2.6
8.2.7
8.2.8
Lab Exercise 1 : Entering configuration mode on a switch and exit

Lab Exercise 2 : Setting Host name
Lab Exercise 3 : Set interface description
Lab Exercise 4 : Shutdown an interface
Lab Exercise 5 : Basic CLI commands
Lab Exercise 6 : Configure bandwidth on an interface
Lab Exercise 7 : Configuring ether-options on the gigabit ethernet switch interface
Lab Exercise 8 : Configuring the management IP address on EX series switch

9. Exercises on Switch Configuration and VLAN
9.1 Notes on VLAN and VTP
9.2.1 Lab Exercise 1 : Basic Switch IP Configuration
9.2.2 Lab Exercise 2 : Configuring 2950 Switch vlan
9.2.3 Lab Exercise 3 : Troubleshooting 2950 Switch
9.2.4 Lab Exercise 4 : 2950 Trunking Configuration
9.2.5 Lab Exercise 5 : Creating and Deleting 2950 VLAN's
9.2.6 Lab Exercise 6 : Configuring VTP on 2950 Switch
9.2.7 Lab Exercise 7 : Configuring VTP with a VTP Client
9.2.8 Lab Exercise 8 : Troubleshooting lab with non matching domains
9.2.9 Lab Exercise 9 : Troubleshooting lab with trunk functionality
9.2.10 Lab Exercise 10 : VLANs
9.2.11 Lab Exercise 11 : VTP
9.2.12 Lab Exercise 12 : VLANs and Trunking
9.2.13 Lab Exercise 13 : Routing between VLANs
9.2.14 Lab Exercise 14 : Connectivity Testing with Ping and Traceroute
9.3.1
9.3.2
9.3.3
9.3.4
9.3.5
Version 2.0
Lab Exercise 1 : Define VLANs

Lab Exercise 2 : Configure a port for membership in that VLAN
Lab Exercise 3 : Configuring an interface as a trunk port
Lab Exercise 4 : Configuring VLANs on EX series switch
Lab Exercise 5 : Configuring Routed VLAN interface (Inter-VLAN routing) on a switch

10. Exercises on Spanning Tree Protocol
10.1 Notes on Spanning-tree protocol
10.2.1
10.2.2
10.2.3
10.2.4
10.2.5
10.2.6
Lab Exercise 1 : Enabling STP

Lab Exercise 2 : Configuring Root Switch
Lab Exercise 3 : Configuring Port-Priority
Lab Exercise 4 : Configuring Switch Priority of a VLAN
Lab Exercise 5 : Configuring STP Timers
Lab Exercise 6 : Verifying STP

10.3.1
10.3.2
10.3.3
10.3.4
Lab Exercise 1 : Configuring STP Timers

Lab Exercise 2 : Setting bridge priority on switch
Lab Exercise 3 : Configuring port priority
Lab Exercise 4 : Verifying STP

11. Exercises on Per-VLAN Spanning Tree Protocol and VSTP
11.1.1
11.1.2
11.1.3
11.1.4
11.1.5
11.1.6
Notes on Per-VLAN Spanning Tree Protocol

Lab Exercise 1 : Enabling and disabling Uplinkfast feature on a switch
Lab Exercise 2 : Enabling and disabling Backbonefast feature on a switch
Lab Exercise 3 : Enabling and disabling Portfast feature on a switch
Lab Exercise 4 : Enabling PVST+ on a switch
Lab Exercise 5 : Implementing Per-VLAN Spanning tree on a switch network

11.2.1 Lab Ecercise 1: Enabling VSTP in all VLANs
11.2.2 Lab Exercise 2 : Enabling VSTP on a VLAN using a single VLAN-ID/VLAN-Name
12. Lab Exercises on PoE (using Juniper switches)
12.1
12.2
12.3
12.4
Version 2.0
Lab Exercise 1 : Configuring guard-band and maximum power on PoE enabled interface.
Lab Exercise 2 : Configuring power management on PoE enabled interface
Lab Exercise 3: Disabling a PoE interface
Lab Exercise 4 : Setting power priority on all PoE enabled interfaces
13. Final Exam

14. Appendix
14.1
14.2
14.3
14.4
14.5
14.6
Answer key for Objective Test 1

Answer key for Final Exam
15. Icons used in the Manual
Version 2.0
1. NETWORKING COMPONENTS
Hubs, switches and routers are the most frequently used network devices which lets you connect computers,
printers, and other devices to communicate.
1.1 Hub
A hub is typically the simplest device to use. Its job is very simple: anything that comes in one
port is sent out to all other ports on the hub. Every computer connected to the hub "sees" the
same information on the network that every other computer on the hub sees.
All devices connected to a hub will be in the same collision domain as well as broadcast domain.
VLANs may be used to divide the switch in to two or more broadcast domains. VLANS do not
allow broadcasts to propagate to other VLANs on the switch network. For example, traffic
generated in VLAN1 can only be forwarded into devices connected to VLAN1.
1.2 Switch
A switch learns the physical addresses of sending devices by reading the MAC address and
mapping it to the port number through which the frame had arrived. This way, it will quickly
learn which MAC address belongs to which switch port, and stores the information in a table
(called MAC table). Then onwards, it will send a frame only to the port that connects to the
destination device (as specified in the frame). A hub or a switch is used to connect two or more
network segments.
1.3 Router
A router is used to route packets, and most complicated among the three. They work at layer-3 of
the OSI model. They route packets based on the IP addresses where as a switch forwards packets
based on the MAC addresses. A router needs to disseminate an incoming packet down to its IP
address and route it to destination based on information available in its routing table.
A router reads the destination IP address of the incoming packet, finds out which interface it
needs to go to reach desired destination (which may be several hops away) and routes the packet
appropriately.
2. Hierarchical Model
The hierarchical model simplifies the task of building a reliable and scalable hierarchical inter network. The
model defines the following three layers that has specific functions and responsibilities associated with it:
i. Access Layer : controls user access to network resources. Layer 3 devices such as routers ensure that
local server traffic does not move to the wider network and this layer is responsible for Layer 2 services,
such as VLAN membership, traffic filtering based on broadcast or MAC addresses.
ii. Distribution Layer : is the communication mechanism between access layer and core layer of the
hierarchical model. The Distribution Layer determines how packets access the core layer, provides
filtering and routing, and determine access over the campus backbone by filtering out resource updates
which are not needed. This layer is responsible for routing traffic between VLANs, Broadcast domain
Version 2.0
definition, Inter-VLAN routing, and security.

iii. Core Layer : The primary function of a Core Layer is to switch traffic as fast as possible and
provide connectivity between switch blocks, WAN blocks and / or any other blocks that may be present.
3. Switched Network Model

3.1 Access Layer Switches
Access layer switches operate at layer 2 of the OSI model and these switches are used to provide
connectivity between desktop devices and the inter-network.
Cisco Access Layer Switches

The following Cisco catalyst switches come under the access layer
1900/2800; provides switched 10Mbps to the desktop/10BaseT hubs in small/medium

campus networks.
2900; provides 10/100Mbps switched access to a maximum of 50 users; and gigabit

speeds for servers.
4000; provides a 10/100/1000Mbps access to a maximum of 96 users and a maximum

of 36 Gigabit Ethernet ports for servers.
5000/5500; supports 100/1000Mbps Ethernet switching, and provides access for over
250 users.
Catalyst 4000 Series switch
Juniper Access Layer Switches

1. EX2200: Juniper Networks EX2200 Ethernet switches provide connectivity for low-density
environments.
Version 2.0
EX2200 switches are available in models with either 24 or 48 built-in network ports and four up link
ports, with Power over Ethernet (PoE) either available in all built-in network ports or not available in
any built-in network port. All models provide network ports that have 10/100/1000Base-T Gigabit
Ethernet connectors and four uplink ports. These switches run under JUNOS OS for EX Series
switches. Each EX2200 switch has four uplink ports that support 1-gigabit small form-factor
pluggable (SFP) transceivers for use with fiber connections and copper connections. PoE ports
provide electrical current to devices through the network cables so that separate power cords for
devices such as IP phones, wireless access points, and security cameras are unnecessary.
Model Number
Access Ports
PoE Enabled Ports
EX2200-24T-4G
24 Gigabit Ethernet
EX2200-24P-4G
24 Gigabit Ethernet
All 24 ports
EX2200-48T-4G
48 Gigabit Ethernet
EX2200-48P-4G
48 Gigabit Ethernet
All 48 ports
2. EX2500: The EX2500 line of Ethernet switches delivers a compact, energy efficient Ethernet solution
for 10 gigabit Ethernet GbE top-of-rack data center access deployments where high performance, low
latency and high availability are key requirements.
The EX2500 switch has 24 SFP+ ports, 2 management ports, and 1 console port. (The EX2500
switch contains 24 10-gigabit Small Form-Factor Pluggable Plus (SFP+) ports and 2 1-gigabit
management ports. The 10-gigabit SFP+ ports can accept 10-gigabit optical transceivers or Direct
Attach Cables (DACs). This 1U switch is rack mountable in either the horizontal or vertical direction,
depending on your application.)
Model Number
Description
EX2500-24F-FB
24-port Gigabit Ethernet/10-Gigabit Ethernet SFP
EX2500-24F-BF
24-port Gigabit Ethernet/10-Gigabit Ethernet SFP
Note: SFP+ Ports: 24 Small Form-Factor Pluggable (SFP+) ports are located on the front panel.
These ports accept approved optical SFP+ transceivers or direct access cables (DACs).
3.2 Distribution Layer Switches

Switches in this layer operate at layer 2 and layer 3. These switches must be capable of processing traffic
from the Access layer devices, deal with a route processor, and provide multi-layer switching (MLS)
support.
Cisco Distribution Layer Switches

Switches in this layer operate at layer 2 and layer 3. These switches must be capable of processing traffic
from the Access layer devices, deal with a route processor, and provide multi-layer switching (MLS)
Version 2.0
support.
The following Cisco catalyst switches come under the distribution layer
5000/5500; supports a considerable number of connections and the Route Switch Module
(RSM) processor module.
2926G; a strong switch that utilizes an external router processor.
6000; provides 384 10/100 Ethernet connections, and 192 100FX FastEthernet connections and
130 Gigabit Ethernet ports.
2926G Switch
Juniper Distribution Layer Switches

1. EX3200: The EX3200 line of Ethernet switches offers a simple, cost-effective solution for low-density
branch and regional offices.
EX3200 switches are available in models with either 24 or 48 ports and with either all ports equipped
for Power over Ethernet (PoE) or only 8 ports equipped for PoE. EX3200 switches with a DC power
supply installed do not provide PoE. All models provide ports that have 10/100/1000Base-T Gigabit
Ethernet connectors and optional 1-gigabit small form-factor pluggable (SFP) transceivers, 10-gigabit
small form-factor pluggable (SFP+) transceivers, or 10-gigabit small form-factor pluggable (XFP)
transceivers for use with fiber connections.
Version 2.0
Model
Access Ports
No of PoE enabled ports
EX3200-24T
24 Gigabit Ethernet
First 8 ports
EX3200-48T
48 Gigabit Ethernet
First 8 ports
EX3200-24P
24 Gigabit Ethernet
All 24 ports
EX3200-48P
48 Gigabit Ethernet
All 48 ports
EX3200-24T-DC
24 Gigabit Ethernet
EX3200-48T-DC
48 Gigabit Ethernet
2. EX4200: Juniper Networks EX4200 Ethernet Switches provide connectivity for medium- and highdensity environments and scalability for growing networks.
EX4200 switches are available in models with 24 or 48 ports and with either all ports equipped for
Power over Ethernet (PoE) or only 8 ports equipped for PoE. All models provide ports that have
10/100/1000Base-T Gigabit Ethernet connectors and optional 1-gigabit small form-factor pluggable
(SFP) transceivers, 10-gigabit small form-factor pluggable (SFP+) transceivers, or 10-gigabit small
form-factor pluggable (XFP) transceivers for use with fiber connections.
Additionally, a 24-port model provides 100Base-FX/1000Base-X SFP ports. This model is typically
used as a small distribution switch.
Model
Ports
PoE enabled ports
EX4200-24T
24 Gigabit Ethernet
First 8 ports
EX4200-48T
48 Gigabit Ethernet
First 8 ports
EX4200-24P
24 Gigabit Ethernet
All 24 ports
EX4200-48P
48 Gigabit Ethernet
All 48 ports
EX4200-24F
24 Gigabit Ethernet
EX4200-24T-DC
24 Gigabit Ethernet
EX4200-48T-DC
48 Gigabit Ethernet
EX4200-24F-DC
24 Gigabit Ethernet
3.3 Core Layer Switches

These switches must be capable of switching traffic as fast as it can.
Cisco Core Layer Switches

The Cisco Catalyst switches for the Core layer are listed here
5000/5500; the 5500 is the ideal Core layer switch while the 5000 is the ideal Distribution layer switch.
The 5000 series switches utilize the identical modules and cards.
6500; these series switches can provide gigabit port density, multi-layer switching, and high availability
for the Core layer.
Version 2.0
8540 Switch
8500; provides high performance switching for the Core layer. Application-Specific Integrated Circuits
(ASICs) is used to provide multiple-layer protocol support. This includes bridging, Asynchronous
Transfer Mode (ATM) switching,
Internet Protocol (IP), IP multicast, and Quality of Service (QoS).
Juniper Core Layer Switches

1. EX4500: EX4500 switches provide connectivity for high-density 10-Gigabit Ethernet data center topof-rack and aggregation deployments. Typically, EX4500 switches are used in data centers where they
can be positioned as the top device in a rack to provide connectivity for all devices in the rack.
Model
Access Port Configuration
EX4500-40F-FB
40-port GbE/10GbE SFP/SFP+
EX4500-40F-BF
EX4500-40F-FB-C
EX4500-40F-BF-C
EX4500-40F-DC-C
EX4500-40F-VC1-FB
EX4500-40F-VC1-BF
EX4500-40F-VC1-DC
Note:
1. The FB and BF in the model number indicate the direction of airflow of the chassis:
FBFront-to-back airflow
Version 2.0
10
BFBack-to-front airflow
2. The C in the model number indicates the Converged Enhanced Ethernet (CEE) status of
switch:
CCEE capable
NoneNot CEE capable
3. The DC in the model number indicates that the switch model supports DC power supply.
4. The VC in the model number indicates that the switch model can be used in a Virtual Chassis
configuration.
2. EX8200: The EX8200 line of modular Ethernet switches is a family of high-performance, highly
available platforms for use in high-density 10GbE data centers, campus aggregations and core
networks.
Juniper Networks EX8200 Ethernet line cards offer a variety of interfaces for supporting highdensity 100 Mbps, Gigabit and 10 Gigabit Ethernet (GbE) deployments. Four versions of the
EX8200 Ethernet line cards are available, each of which supports a consistent set of features and
capabilities: the EX8200-48T, the EX8200-48F, the EX8200-8XS and the EX8200-40XS.
Three of these cards are available in Extra Scale (ES) configurationsthe EX8200-48T-ES, the
EX8200-48F-ES and the EX8200-8XS-ESwhich are optimized for large-scale deployments such
as large campuses, global data centers, or cloud-based applications.
Ethernet Line Card Specifications
EX8 EX8200-48F
/
EX8200-8XS
/EX8200-48FES
/EX8200-8XSES
EX8200-40XS
EX8200-48PL
EX8200-2XS-4OP
/EX8200-48TL
/EX8200-2XS-4OT
40 RJ-45 / 4 SFP /2
SFP+
Port
quantity
and type
48
RJ45
48 SFP
8 SFP+
40 SFP/SFP+
48 RJ-45
PoE/PoE+
ports
48/12 (48PL only) 40/12 (40P only)
Port speed
10/1 100/1000 Mbps
10 Gbps
1 Gbps/10
Gbps
10/100/1000
Mbps
10/100/1000 Mbps;
100/1000
Mbps; 10
Gbps
3. QFX3500: The Juniper Networks QFX3500 Switch is a high-speed, multipurpose switch especially
designed for next-generation data centers that provides a total switching capacity and throughput of
640 Gbps.
Version 2.0
11
48 10-Gbps access ports in the switch use small form-factor pluggable plus transceivers (SFP+) and
operate by default as 10-Gigabit Ethernet interfaces. Optionally, you can choose to configure up to
12 of the ports as 2-Gbps, 4-Gbps, or 8-Gbps Fibre Channel (FC) interfaces, and up to 36 of the ports
as 1-Gigabit Ethernet interfaces. 4 40-Gbps uplink ports in the switch use quad, small form-factor
pluggable plus (QSFP+) transceivers.
SFP+ Access Ports
The QFX3500 switch has 48 access ports (0-47) that support small form-factor pluggable plus (SFP+)
and small form-factor pluggable (SFP) transceivers, as well as SFP+ direct attach copper cables, also
known as Twinax cables.
Up to 48 of the access ports can be used for SFP+ transceivers or SFP+ direct attach copper
cables. 10-Gigabit Ethernet SFP+ transceivers and SFP+ direct attach copper cables can be used
in any access port. 2-Gbps, 4-Gbps, or 8-Gbps Fibre Channel SFP+ transceivers can be used in
ports 0 through 5 and ports 42 through 47.
Up to 36 of the access ports can be used for SFP transceivers. Gigabit Ethernet SFP transceivers
can be used in ports 6 41.
QSFP+ Uplink Ports

The QFX3500 switch has four uplink ports (Q0-Q3) that support up to four 40-Gbps quad small formfactor pluggable plus (QSFP+) transceivers.
Version 2.0
12
3.4 Summary
1. Cisco Access Layer Switches
1. Cisco Catalyst 4500 E Series Switches
2. Cisco Catalyst 3750 Series Switches
3. Cisco Catalyst 3750-E Series Switches
4. Cisco Catalyst 3750-X Series Switches
6. Cisco Catalyst 3560-E Series Switches
7. Cisco Catalyst 3560-X Series Switches
10. Cisco Catalyst 2960-S Series Switches
2. Cisco Core/Distribution Layer Switches
2. Cisco Nexus 7000 Series Switches
3. Cisco Catalyst 4500E Series Switches
4. Cisco Catalyst 3560-E Series Switch
3. Juniper Access Layer Switches
1. EX2200
2. EX2500
4. Juniper Distribution Layer Switches
1.EX3200
2.EX4200
5. Juniper Core Layer Switches
1.EX4500
2.EX8200
3.QFX3500
Note: Access, Distribution and Core layers are defined for convenience in design and implementation of
computer networks. However the devices in core, distribution and access layer may be used inter
changeably as per requirement. For example: A distribution layer switch can be used in core layer and viceverse if it meets the customers networking requirement
Version 2.0
13
4. Switch Device Features

Cisco Switch Device Features
Cisco 2950 switch (CISCO CATALYST 2950 24 PORT SWITCH WS-C2950-24 10/100)
1. Front Panel:
The switch front panel consists of 24 RJ-45 port connectors that support 10/100 Mbps speed and LED
indicators as shown in the figures below. Please note that the 2950 series switches come in different
flavors and vary greatly in the number and type of ports available.
Fig 1
Fig 2
Version 2.0
14
Fig 3
Explanation:
The switch front panel contains Ports, LEDs and the Mode button.
PORTS:
1. 10/100 Ports
These use RJ-45 Connectors and twisted-pair cabling and they can be connected to 10BASE-Tcompatible devices, such as workstations and hubs, or 100BASE-TX-compatible devices, such as
high-speed workstations, servers, hubs, routers, and other switches. The 10/100 ports can be
explicitly set to operate in any combination of half duplex, full duplex, 10 Mbps, or 100 Mbps.
2. 100BASE-FX Ports
The 100BASE-FX Ports use 50/125- or 62.5/125-micron multimode fiber-optic cabling. These ports
only operate at 100 Mbps in full-duplex mode.
You can connect a 100BASE-FX port to an SC or ST port on a target device by using one of the
MT-RJ fiber-optic patch cables
3. 10/100/1000 Ports
The 10/100/1000 ports on Catalyst 2950T-24 switches use RJ-45 connectors and twisted-pair
cabling. The ports can connect to10BASE-T-compatible devices, such as workstations and hubs or
100BASE-TX-compatible devices, such as high-speed workstations, servers, hubs, routers, and
other switches or 1000BASE-T-compatible devices, such as high-speed workstations, servers, hubs,
routers, and other switches.
LED INDICATORS:
LEDs (Light Emitting Diodes) can be used to monitor switch activity and performance. Changing
the port mode changes the information provided by each port status LED.
Refer Fig 2 above for reference
Version 2.0
15
1. System LED : Specifies whether the system is receiving power and is functioning correctly.
Color
Status
Off
Indicates that the system is not powered on
Green
Indicates that the system is operating normally
Amber
System is receiving power but not functioning properly
2. RPS (Remote Power Supply) LED: Specifies whether or not the remote power supply is in use.
Color
Status
Off
RPS is off or is not installed.
Solid green
RPS is connected and ready to provide back-up power.
Flashing green
RPS is connected but is unavailable because it is providing power to

another device
Solid amber
RPS is in standby mode or in a fault condition.
Flashing amber
The internal power supply in a switch has failed, and the RPS is
providing power to the switch
3. Port mode LED: Indicates the current state of the mode button.
LED Mode
Port Mode
STAT
Port status
This is the default mode.
UTIL
Switch utilization
The bandwidth in use by the switch.
DUPLX
Port duplex mode
Half duplex or Full duplex.
SPEED
Port speed
Port operating speed: 10 or 100 Mbps for 10/100

ports and 10, 100, or 1000 Mbps for 10/100/1000
ports
Version 2.0
Description
16
4. Port status LED: Indicates different meanings depending on the current value of the Mode LED.
* For LRE Switches
Port mode
Color
Meaning
STAT
Off
No link
Solid Green
Link Present
Flashing Green
Activity, port is sending/receiving data.
Alternating Green-Amber
Link fault
Solid Amber
A link is established on a nonassigned LRE

profile, or a port is not forwarding.
Off
Port operating in half duplex
Green
Port operating in full duplex
DUPLX
SPEED
10/100/1000 ports and SFP Modules

Off
Port operating at 10 Mbps
Green
Flashing Green
2. Management Options
Catalyst 2950 switches offer these management options:
Cluster Management Suite (CMS)
CMS is made up of three web-based applications that you use to manage switches. You can use Cluster
Builder, which includes Cluster View, and Cluster Manager to create, configure, and monitor switch
clusters. You can also use Device Manager to manage individual and standalone switches.
IOS command-line interface (CLI)
You can manage switches by using command-line entries. To access the CLI, connect a PC or terminal
directly to the console port on the switch rear panel. If the switch is attached to your network, you can
use a Telnet connection to manage the switch from a remote location.
CiscoView application
You can use the CiscoView device-management application to set configuration parameters and to
view switch status and performance information. This application, which you purchase separately, can
be a standalone application or part of an Simple Network Management Protocol (SNMP) networkmanagement platform.
Version 2.0
17
You can manage switches by using an SNMP-compatible management station running platforms such
as HP OpenView and SunNet Manager. The switch supports a comprehensive set of MIB extensions
and MIB II, the IEEE 802.1D bridge MIB, and four RMON groups. For more information, refer to
the documentation that came with your SNMP application.
Cisco 1912 12 port switch

The Cisco Catalyst 1900 series of switches offer an economical option for Ethernet networks. There
are two Catalyst 1900 switches, the 1912, with 12 10BaseT switched ports and two Fast Ethernet
switched ports, and the 1924 with 24 10BaseT switched ports and two Fast Ethernet switched ports.
The Cisco Catalyst 1900 switch is useful for small workgroups needing switched 10-Mbps ports.
Cisco has created a Command-Line Interface (CLI) for the 1900 series of switches.
The figure above shows a 24-port 1900 switch with 2 Fast Ethernet ports.
10BaseT ports
The 10BaseT network ports use standard RJ-45 connectors. These ports can connect to 10BaseTcompatible devices, such as individual workstations and hubs, with Category 3, 4, or 5 cabling.
Using this type of cabling, the distance between the switch and the attached device can be up to 100
meters.
Switched 100-Mbps Ports
The switches can have any of the following high-speed ports (depends on model):
Version 2.0
Two switched 100BaseTX ports
One switched 100BaseTX port and one switched 100BaseFX port
Two switched 100-Mbps fiber-optic ports
18
3. Rear-Panel Description
The rear panel of a Catalyst 1900 switch consists of the following:
1. AC power connector
2. Console port
3. Redundant power system (RPS) connector and
4. A switched AUI port
4. Switching methods
1. Store-and-Forward switching: Here the LAN switch copies the entire frame into its buffers and
computes the CRC. The frame is discarded if there are any CRC errors. Giant (more than 1518 bytes0
and Runt (less than 64 bytes) frames are also dropped, if found.
2. Cut-Through (Real-Time) switching: Here, the LAN switch copies only the destination address
into its buffers. It immediately looks up the switching table and starts forwarding the frame. The
latency is very less because, the frame is forwarded as soon as the destination address is resolved.
3. Fragment-Free switching: Here, the switch waits for the collision window before forwarding the
entire frame. The collision window is 64 bytes long.
Juniper Switch Device Features

1. EX2200 Front Panel
The front panel of an EX2200 switch consists of the following components:
(a) Network portsdepending on the switch model, either of:
24 or 48 10/100/1000Base-T Gigabit Ethernet ports, with Power over Ethernet (PoE) not
available in EX2200-24T and EX2200-48T
24 or 48 10/100/1000Base-T Gigabit Ethernet ports, with Power over Ethernet (PoE)
available in EX2200-24P and EX2200-48P
(a) 4 built-in SFP uplink ports

(b) 2 chassis status LEDs
(c) 4 port status mode LEDs
(d) Mode button
Version 2.0
19
2. Chassis LEDs
The front panel of an EX2200 switch has two chassis status LEDs labeled SYS and ALM on the far
right side of the panel, above the uplink ports.
LED Label
Color
State and Decription
ALM
Unlit
There is no alarm
Amber
There is a minor alarm
Red
There is a major alarm
Green
On steadily : The switch is functioning normally
SYS
Blinking : The switch is booting

Off : The switch is off
Version 2.0
20
3. EX2200 Rear Panel

The rear panel of the EX2200 switch consists of the following components:
Management Ethernet port
USB port
Console port
Protective earthing terminal
ESD point
Air exhaust
Serial number ID label
AC power cord inlet
Version 2.0
21
5. Switch Operating Systems

Operating system for Cisco switches
1. CatOS (Catalyst OS) also known as Set based IOS is operating system that was used on some cisco
switches earlier. All configurations in CatOS were done via Set command sequence.
Ex: set port disable
set port duplex
set port speed
set spantree portfast
set trunk
2. Cisco IOS (originally Internetwork Operating System) is the software used on the vast majority of
Cisco Systems routers and current Cisco network switches. (Earlier switches ran CatOS.) IOS is a
package of routing, switching, internetworking and telecommunications functions tightly integrated with
a multitasking operating system.
The IOS CLI provides a fixed set of multiple-word commands the set available is determined by the
"mode" and the privilege level of the current user. The Command Line Interface (CLI) on Catalyst
1900/2800 and Catalyst 2900 XL series switches are similar to Cisco IOS command set popularly used
in Cisco routers.
The equivalent IOS commands to the above given SET commands are
Ex: shutdown
duplex
speed
spanning-tree portfast
switchport mode trunk
3. The Cisco Catalyst Switch Manager is a graphical user interface (GUI)-based, carrier-class element
management system (EMS) for managing the Cisco Catalyst 6500 and 6000, 4000 and 4500, 3550, 2970
and 2950 switches. This Cisco EMS provides a range of GUI features designed to increase network
operations productivity. With real-time inventory discovery capabilities, this EMS ensures quicker
deployment of Cisco networking equipment and provides comprehensive element service assurance to
more quickly solve network problems.
Operating system for Juniper switches

The operating system software that powers the Juniper routers is called JUNOS. The software is modular
and standards based. Another important feature of JUNOS is that the software is platform independent
(within Juniper hardware systems, not to be confused with other vendor hardware), thus delivering the
same scalability and security across several hardware platforms.
Version 2.0
22
6. Command Line Interface (CLI)

Cisco IOS Command Line Interface
Cisco IOS has three command modes, each with access to different command sets.
1. User mode: This is the mode a user has access to after logging into the switch. The user mode is
identified by the > prompt following the host name. The user has access to some basic commands in this
mode. The system cannot be configured or restarted from this mode.
2. Privileged mode: This is the mode where users can view the system configuration, and enter
configuration mode from this mode. All the commands that are available in user mode are also available
in privileged mode. Privileged mode is identified by the # prompt following the host name. To enter
privileged mode, one needs to type enable at the User mode prompt. If an enable password or enable
secret password has been set, you need to enter the password or secret password to enter the privileged
mode. The difference between a password and secret password is that the secret password uses stronger
encryption and not stored in as plain text.
3. Configuration mode: This mode allows users to configure the switch. To enter into the configuration
mode, the user should enter the command configure terminal from privileged mode. Global
configuration mode is identified by the (config)# prompt following the host name. After entering global
configuration mode, you can enter any sub-mode depending on the configuration task. For example, if
you want to configure an IP address on switch ethernet interface, you need to enter (config-if)#sub mode.
To exit configuration mode, the user can enter end or press Ctrl-Z.
By entering the command ? at any point shows the available commands at that level. The ? can also be
used in the middle of a command to show possible completion options.
JUNOS Command Line Interface

JUNOS CLI is a simple to use, text-based command interface. We give various commands on CLI for
configuring, troubleshooting and monitoring the software.
JUNOS primarily supports two types of command modes.
a) Operational Mode
b) Configuration Mode
1. Operational Mode:
When we log in to the router and the CLI starts, we are at the top level of the CLI operational mode. In this
mode, we enter the commands for
1. Controlling the CLI environment, and
2. Monitor and troubleshoot network connectivity, and
3. Initiating the Configuration Mode.
Frequently used commands in this mode include ping, show, traceroute, configure, etc.
Version 2.0
23
2. Configuration Mode:
We use the Configuration mode for configuring the JUNOS software by creating a hierarchy of
configuration statements. We enter the configuration mo9+de by using the command "configure" as
shown below:
user@host>configure
Entering configuration mode
[edit]
user@host#
Issuing the commands one at a time using CLI can configure a JUNOS router or alternately, we
can configure by creating a text (ASCII) file that contains the statement hierarchy. Remember to
activate the configuration by using the command "commit" on the router.
As shown in the above example, the generic configuration prompt is user@host#. Ofcourse, we can
change the prompt by using appropriate command.
Statement Hierarchy:
We use the above configuration mode commands to create a statement hierarchy, and then configure the
JUNOS software. The term "statement hierarchy" is used to define the sequence of commands used for
configuring a particular feature (or features) of the router. An example statement hierarchy is given below:
user@host>configure
Entering configuration mode
[edit] ----Top level
user@host#edit protocols ospf
[edit protocols ospf] ----protocols ospf hierarchy level
user@host#
"set" commands are used to configure specific leaf statements.
Ex: user@host#set hello-interval 14
Version 2.0
24
7. Switch IOS Fundamental Exercises

Note: Please refer to the below network diagram for the switch exercises given in the next section.
7.1 : Lab Exercise 1 : Introduction to Switch

Description: A basic exercise to get familiar with the different commands related to switch .
Choose SW1 switch from the N/W diagram, and use the following commands.
The switch initial startup status can be verified using the below status commands:
Show version: Displays the configuration of the system hardware and the currently loaded IOS
software version information
Show running-config: Displays the current active running configuration of the switch.This
command requires privileged EXEC mode access.
Show interfaces: Displays statistics and status information of all the interfaces on the switch.
Version 2.0
25
Instructions:
1. Connect to switch and you should see the user mode prompt
2. Show version command displays the IOS version of the switch
3. Show interfaces command displays the interfaces of the switch
4. Show running-config displays the running configuration
SW1>enable
SW1#show version
SW1#show interfaces
SW1#show running-config
Back
7.2 : Lab Exercise 2 : Banner MOTD-Setting message of the day

Description: This exercise helps in understanding the procedure of setting message of the day
and the show banner command . Note that the banner is set in a single command line here. You
can also use multi-line banner motd command.
Instructions:
1. Enter into privileged mode
2. Enter into global Configuration Mode
3. Set banner to: "Welcome to local host". Starting and ending character of the banner should be
"Z" (Do not use quotes)
4. Use show banner command to view the banner that has been set
SW1>enable
SW1#configure terminal
SW1(config)#banner motd Z Welcome to local host Z
SW1(config)#exit
SW1#show banner
Back
7.3 : Lab Exercise 3 : Setting Host Name

Description: This basic exercise illustrates the steps required to set a hostname to a switch.
Instructions:
2. Enter into global Configuration Mode
3. Set hostname as cisco
SW1>enable
Version 2.0
26
SW1(config)#hostname cisco
Cisco(config)#
Back
7.4 : Lab Exercise 4 : Switch 2950 Console Password Assignment

Not Available in Demo Version.
7.5 : Lab Exercise 5 : Switch 2950 VTY password assignment

7.6 : Lab Exercise 6 : Switch 2950: Setting Privileged Password

7.7 : Lab Exercise 7 : Enable Fast Ethernet Interface on a 2950 switch

7.8 : Lab Exercise 8 : Copy Running Configuration to Startup Configuration

7.9 : Lab Exercise 9 : Setting Port Speed and Mode on a Switch

7.10 : Lab Exercise 10 : Initial Switch configuration

7.11 : Lab Exercise 11 : Basic Switch Interface Configuration

Version 2.0
27
7.12 : Lab Exercise 12 : Configuring Port-Security on a Switchport

7.13 : Lab Exercise 13 : Catalyst 2950 Switch Configuration

7.14 : Objective Test 1 : Answer the following Questions

8. Basic Exercises
8.1 Lab exercises using Cisco Switches
8.1.1 : Lab Exercise 1 : Entering User EXEC prompt on a Switch, and exit
Description: A basic exercise, that shows how to enter into privileged EXEC prompt from user
mode prompt, and exit from the same.
Instructions:
2. Get back to the user mode
SW1>
SW1>enable
SW1#disable
SW1>
Back
8.1.2 : Lab Exercise 2 : Introduction to Basic User Interface

Description: This exercise helps to get familiar with the user mode, privileged mode, CLI and
basic commands.
Instructions:
1. Press enter to get the switch prompt
2. In the user mode, type the command ? used to view all the commands in user mode
Version 2.0
28
4. In the privileged mode, type the command ? to view all the commands in privileged mode
5. The command show ? displays all the show commands like show banner, interfaces, ip, macaddress-table, vlan, vtp etc
6.The command show running-config displays the running configuration
7. Press space bar to view more information
8. The command exit or disable logs out the switch
SW1>
SW1>?
SW1>enable
SW1#
SW1#?
SW1#show ?
SW1#exit
Or
SW1#disable
Back
8.1.3 : Lab Exercise 3 : Basic show commands

Description: A basic exercise to get familiar and understand the various show commands
available in the privileged mode.
Instructions:
2. Show banner displays the banner configured on the switch.
3. Show flash, flash memory is a special kind of memory that contains the operating system
image file(s) on the switch
4. Show history command displays all the past commands still present in switch memory
5. Show ip interface brief command displays information about each interface
6. Show mac-address-table command displays mac-address-table on the switch
7. Show running-config displays the active configuration in memory. The currently active
configuration script running on the switch is referred to as the running-config in the switchs CLI
8. Show vlan and show vtp status displays the vlan and vtp information respectively.
SW1>
SW1>enable
SW1#show banner
SW1#show flash
SW1#show history
SW1#show ip interface brief
SW1#show mac-address-table
SW1#show vlan
SW1#show vtp status
Version 2.0
Back
29
8.1.4 : Short form commands

1. copy running-config startup-config command can be interpreted and used in short form as
copy run start command.
2. show running-config command can be interpreted and used in short form as show run
command.
3. show startup-config command can be interpreted and used in short form as show start
command.
Note: We can also use UP ARROW and DOWN ARROW keys to get the previously typed
command in the simulator.
Back

Note: Please refer to the below network diagram for the switch exercises given in the next section.
8.2.1 : Lab Exercise 1 : Entering configuration mode on a switch and exit

Description: A basic exercise that shows how to enter configuration mode and exit from
Version 2.0
30
the same. Choose SW1 from the network diagram and exit.
Instructions
1. Enter into configuration mode
2. Get back to the operational mode
user@SW1>configure
[edit]
user@SW1#exit
user@SW1>
Back
8.2.2 : Lab Exercise 2 : Setting Hostname

Description: Set the switch hostname as junipersw. Choose SW1 from the network
diagram.
Instructions
2. Set hostname as junipersw
user@SW1>configure
[edit]
user@SW1#edit system
[edit system]
user@SW1#set host-name junipersw
[edit system]
user@junipersw#exit
[edit]
user@junipersw#exit
Back
8.2.3 : Lab Exercise 3 : Set interface description

Description: In this exercise, description to an interface is set by using set description command.
Instructions:
2. Set the description of interface ge-0/0/0 as "interface-ge-0/0/0"
user@SW1>configure
[edit]
user@SW1#edit interfaces ge-0/0/0
Version 2.0
31
[edit interfaces ge-0/0/0]

user@SW1#set description "interface-ge-0/0/0"
[edit interfaces ge-0/0/0]
user@SW1#exit
[edit]
user@SW1#
Back
8.2.4 : Lab Exercise 4 : Shutdown an interface

8.2.5 : Lab Exercise 5 : Basic CLI commands

8.2.6 : Lab Exercise 6 : Configure bandwidth on an interface

8.2.7 : Lab Exercise 7 : Configuring ether-options on the gigabit ethernet switch interface
8.2.8 : Lab Exercise 8 : Configuring the management IP address on EX series switch

8.3 Objective Test 2 : Answer the following Questions

1. You want to find the IOS version your switch is running. Which command shows this information?
a) show protocol
b) show interface
c) show processes
d) show version
Version 2.0
32
2. Which of the following can be used to view the previous command you entered into a Cisco switch?
[Select 2]
a) CTRL+F1
b) The Down Arrow
c) The Up Arrow
d) CTRL + P
3. You are working in privileged mode (at # prompt). You want to get back to user mode. Which
command would you type at the privileged mode prompt?
a) quit
b) exit
c) disable
d) end
4. What is the command used for copying the configuration from NVRAM to a running RAM?
a) copy startup running
b) copy startup-config running-config
c) copy running-config startup-config
d) write memory
Back
Note: please refer to the Appendix for Objective test Answer key
9. Exercises on Switch Configuration and VLAN

9.1 Notes on VLAN and VTP
i. VLANS
1. The following are the advantages of LAN segmentation using VLANs:
a) Segmentation of broadcast domains using VLANs result in creation of more bandwidth per
user.
b) Security is provided by isolating users corresponding to different VLANs. Users belonging to
one VLAN will not receive frames mean for some other VLAN.
c) LAN segmentation using VLANs can be done based on job function rather than physical
location, if required.
2. VLANs are typically configured on switch ports. However, note that a router is required to
switch traffic between VLANs. A switch identifies the VLAN associated with a given frame and
forwards the frame to associated ports. Separate VLANs for voice and data traffic improves the
privacy and reliability of voice communication.
Version 2.0
33
A single physical port on a router can support one or more VLANs by use of sub-interfaces. There is
no need to have as many physical ports on a router as that of VLANs.
3. Inter-VLAN communication can occur only if the router is configured with appropriate subinterfaces. In this case, there are 4 VLANs (VLANs 100,200,300, and 400), in addition to VLAN 1
(management VLAN). Therefore, 5 sub-interfaces have to be configured on the router interface
connecting the switch.
A roll-over cable is required for connecting a terminal to the Console port of a router/switch.
ii. VTP
1. VLAN Transport Protocol (VTP) information can be distributed throughout the
network to all stations including servers, routers, and switches.
The VLAN transport protocol are:
ISL: ISL (Inter Switch Link) is the VLAN transport protocol used over Fast Ethernet trunked link.
802.1: 802.1 is the VLAN transport protocol used over FDDI trunked link.
LANE: LAN Emulation (LANE) is the VLAN transport protocol used across an ATM trunked link.
The default VTP configuration parameters for the Catalyst switch are as follows:
1. VTP domain name: None
2. VTP mode: Server
3. VTP password: None
4. VTP pruning: Disabled
5. VTP trap: Disabled
2. The VTP domain name can be specified manually or learned across a configured trunk line from a server
with a domain name configured. By default, the domain name is not set.
If you configure a VTP password, VTP does not function properly unless you assign the same password to
Version 2.0
34
each switch in the domain.

VTP trap is disabled by default. If you enable this feature, it causes an SNMP message to be generated
every time a new VTP message is sent.
3. VTP is a Layer 2 messaging protocol. It carries configuration information throughout a single domain.
VTP operates in one of three modes:
1) Server mode: VTP Servers can create, modify, or delete VLANs and other configuration
parameters for the specified VLAN domain.
2) Client mode: A VTP client can't create, change, or delete VLANs.
3) Transparent mode: A VTP transparent mode is used when a switch is not required to participate in
VTP, but only pass the information to other switches. Transparent switches don't work either as
Server or clients.
4. Configurations made to a single switch, called VTP server, are propagated across the switch fabric under
a single domain control. Other switches, configured as VTP clients, learn the configuration information
from the server. Cisco switches such as Catalyst 1900, acting as VTP servers save the VLAN configuration
information in their Non volatile memory (NVRAM), whereas clients keep the information only in running
configuration.
From the output of show vtp status, we can observe that the domain name and the VTP version are different
for both the switches. For successfully transferring VLAN information, the version numbers must be same
on both the switches. Similarly, the VTP domain name must also be same on both the switches.
5. A VTP advertisement necessarily consists of "Configuration revision number". Every time a VTP server
updates its VLAN information, it increments the configuration revision number by one count. VTP clients,
use the revision number to enforce the VLAN configuration Update.
6. There are two different VTP versions. VTP version 1 and VTP version 2. These versions are not
interoperable. Version 1 is the default version. All switches in a given management domain should be
configured in either version 1 or version 2. Some of the advantages of VTP version 2 are as below:
1. Token Ring support: Supports Token Ring LAN switching and VLANs. If Token Ring is used, this is
the version required.
2. Version number auto propagation: In case that all switches are capable of running Version 2, only
one switch need to be Version 2 enabled, Version number is automatically propagated to others.
Version 2.0
35
7. By default, there are no passwords in VTP informational updates, and any switch that has no VTP
domain name can join the VTP domain when trunking is enabled. Also any switch that has the same VTP
domain name will join and exchange VTP information. This could enable an unwanted switch in your
network to manage the VLAN database on each of the switches. To prevent this from occurring, set a VTP
password on the switches you want to exchange information.
8. VTP pruning is a technique that enhances the available network bandwidth by reducing the broadcast,
multicast, and flooded unicast messages. These frames are not forwarded to network devices that don't have
ports associated with a given VLAN. When VTP pruning is enabled, a switch forwards the flooded traffic
across a link to another switch, only if that switch has ports associated with that VLAN.
Back

9.2.1 : Lab Exercise 1 : Basic Switch IP Configuration
Description: Configure hostname as 2950, and set the switch ip address to 172.16.1.10, subnet
mask 255.255.255.0. Also, set the default-gateway to 172.16.1.2
Instructions:
1. Enter user Exec mode
2. Enter privileged Exec mode
3. Assign the hostname 2950
4. Assign an ip address 172.16.1.10 255.255.255.0
5. Assign default gateway route 172.16.1.2
6. Exit switch configuration mode
SW1>enable
SW1(config)#hostname 2950
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.1.10 255.255.255.0
2950(config-if)#exit
2950(config)#ip default-gateway 172.16.1.2
2950(config)#end
Back
9.2.2 : Lab Exercise 2 : Configuring 2950 Switch vlan

Description: Configure vlan1 on 2950 switch, and set the ip address to 192.16.2.3 mask
255.255.255.0. Set ip default-gateway to 172.16.2.2. copy running configuration to startup
Version 2.0
36
configuration.
Instructions:
1. Enter privileged exec mode
2. Enter global configuration mode
3. Assign IP address 172.16.2.3 mask 255.255.255.0 on VLAN1
4. Set the default gateway to 172.16.2.2
5. Save the configuration to NVRAM
SW1>enable
SW1(config)#interface vlan 1
SW1(config-if)#ip address 172.16.2.3 255.255.255.0
SW1(config-if)#exit
SW1(config)#ip default-gateway 172.16.2.2
SW1(config)#end
SW1#copy running-config startup-config
Back
9.2.3 : Lab Exercise 3 : Troubleshooting 2950 Switch

9.2.4 : Lab Exercise 4 : 2950 Trunking Configuration

9.2.5 : Lab Exercise 5 : Creating and Deleting 2950 VLAN's

9.2.6 : Lab Exercise 6 : Configuring VTP on 2950 Switch

9.2.7 : Lab Exercise 7 : Configuring VTP with a VTP Client

9.2.8 : Lab Exercise 8 : Troubleshooting lab with non-matching domains

Version 2.0
37
9.2.9 : Lab Exercise 9 : Troubleshooting lab with trunk functionality

9.2.10 : Lab Exercise 10 : VLANs

9.2.11 : Lab Exercise 11 : VTP (VLAN Trunking Protocol)

9.2.12 : Lab Exercise 12 : VLANs and Trunking

9.2.13 : Lab Exercise 13 : Routing between VLANs (Router on a Stick)

9.2.14 : Lab Exercise 14 : Connectivity Testing with Ping and Traceroute

Version 2.0
38

Note: Please refer to the below network diagram for the switch exercises given in the next
sections.
9.3.1 : Lab Exercise 1 : DefineVLANs

Description: This exercise demonstrates the commands required to create VLANs on the
switch.
Instructions
1. Create VLAN 10 and 20 by using the command syntax set vlans <vlan-name> vlan-id <vlanid-number>
2. Verify the same using show vlans command
user@SW1>configure
[edit]
user@SW1#set vlans marketing vlan-id 10
[edit]
user@SW1#set vlans support vlan-id 20
[edit]
user@SW1#commit
[edit]
user@SW1#exit
user@SW1>show vlans
Version 2.0
Back
39
9.3.2 : Lab Exercise 2 : Configure a port for membership in that VLAN

9.3.3 : Lab Exercise 3 : Configuring an interface as a trunk port

9.3.4 : Lab Exercise 4 : Configuring VLANs on EX series switch

9.3.5 : Lab Exercise 5 : Configuring Routed VLAN interface (Inter-VLAN routing)
on a switch
9.4 Objective Test 3 : Answer the following Questions

10. Exercises on Spanning Tree Protocol and VSTP

10.1 Notes on Spanning-tree protocol
1. What is Spanning Tree Protocol and why is it required?
i. STP is a layer 2 protocol that runs on bridges and switches. The main function of STP is for
removing loops on a switch network. In Cisco Catalyst 5000 series switches, use BDPUs (Bridge
Protocol Data Units) to determine the spanning tree topology. STP uses a Tree Algorithm (STA)
to prevent loops, resulting in a stable network topology.
ii. Following are the possible solutions for preventing routing loops.
1. Split Horizon - based on the principle that it is not useful to send the information about a route
back in the direction from which the information originally came.
2. Poison Reverse - A router that discovers an inaccessible route sets a table entry consistent state
(infinite metric) while the network converges.
3. Hold-down Timers - Hold down timers prevent regular update messages from reinstating a route
that has gone bad. Here, if a route fails, the router waits a certain amount of time before accepting
any other routing information about that route.
4. Triggered Updates - Normally, new routing tables are sent to neighboring routers at regular
Version 2.0
40
intervals (IP RIP every 30 sec / and IPX RIP every 60 sec). A triggered update is an update sent
immediately in response to some change in the routing table. Triggered updates along with Holddown timers can be used effectively to counter routing loops.
iii. A switch, participating in Spanning-Tree protocol, passes through the following states:
1. Blocked state: This is the initial state. All ports are put in a blocked state to prevent bridging
loops.
2. Listen state: This is the second state of switch ports. Here all the ports are put in listen mode. The
port can listen to frames but can't send. The period of time that a switch takes to listen is set by "fwd
delay".
3. Learn state: Learn state comes after Listen state. The only difference is that the port can add
information that it has learned to its address table. The period of time that a switch takes to learn is
set by "fwd delay".
4. Forward state: A port can send and receive data in this state. Before placing a port in forwarding
state, Spanning-Tree Protocol ensures that there are no redundant paths or loops.
5. Disabled state: This is the state when the switch port is disabled. A switch port may be disabled
due to administrative reasons or due to switch specific problems.
2. How STP works
i. Root Bridge/Root Switch
The Root Bridge (Switch) is a special bridge at the top of the spanning tree. The first step in STP is to
elect the root switch, BPDUs are used for the election process.
(For switches that implement VLANs, the switches will have a different switch ID per VLAN and a
separate instance of STP per VLAN. Each VLAN has its own root switch and within each VLAN, STP
will run and remove loops in that particular VLAN)
Bridge ID
Bridge ID is determined by using switch priority (32768 by default and can have a value between 0
and 65,535) and switch's MAC address and it is 8 bytes long (bridge priority (2 bytes) and switch's
MAC addresses (6 bytes)).
Example:
Bridge Priority: 1000000000000000 (Binary equivalent of 32768)
MAC Address: 0001.002E.0025 H
Bridge ID in the above instance is as given: 32768.0001.002E.0025
Bridge priority is given in decimal and MAC is given in Hex for simplicity. In actual practice, both
figures are converted to binary/hex while determining the Bridge ID. Additionally, the bridge ID also
Version 2.0
41
depends on the STP protocol being used. For PVST, LAN information will also be taken in to
consideration while computing the Bridge ID. However, PVST is beyond the scope of this article.
How Root Switch is selected?
The following criteria is applied while selecting the Root Bridge:
The switch with the lowest Bridge ID is chosen as root.
Note that Bridge ID is a combination switch priority (32768 by default) and switch's MAC address.
While comparing two bridge IDs, the bridge priority is compared first. If two bridges have equal
priority value, then the MAC addresses are compared. The switch with the lowest MAC address will
be chosen as the root Bridge.
Example:
Switch A: Priority value: 32768, MAC address: 0001.002E.0025
Switch B: Priority value: 32768, MAC address: 0001.002E.0026
In the above example, Switch A will be chosen as the Root Bridge because it has the lowest MAC
address value though the priority values of both the switches are same.
Note: In a multi port bridge, the port with the lowest MAC address will be used the Bridge MAC
address.
Port Priority
Every port on a bridge will have a priority value. The default port priority is 32. However, this value
can range from 0 to 2^6.
Port Number: The port number is 10-bit long and can have values 0 to 2^10.
Port ID
Port ID is Port Priority and Port number. Each port ID is 16 bits long with two parts: a 6-bit priority
setting and a 10-bit port number.
Bridge Port Cost and Path Cost:
The port cost is inversely proportional to the port bandwidth. The more the bandwidth of a port, the
lesser the path cost. For example, a gigabit port will have less port cost than a 100mbps port.
The following table lists the Port Cost value for different port bandwidths. The table is based on IEEE
802.1d standards recommendation, and the exact criteria for computing the Cost Value given the Link
Speed is not known.
Version 2.0
Link Speed
Cost Value
10 Gbps
42
1 Gbps
100 Mbps
19
10 Mbps
100
When a packet leaves a port on a bridge, the port cost is added to the path cost. The path cost is the
accumulated port costs from a switch to the root switch.
ii. Root Port and its selection:
Once the root bridge is elected, all other switches in the switched network need communicate with the
root bridge choosing a single port on itself (known as the root port). The selection of root port is
based on the following criteria:
i. If there are two or more paths to reach the Root Bridge (Switch) select the bridge port associated
with the lowest accumulated path cost.
Example:
In the above example, there are two paths from SW3 to reach root bridge. Path Cost calculation is
given below
(SW3(Via Port1) -> SW2) + (SW2 -> SW1) = 19+4 = 23
(SW3(Via port 2) -> SW2) + (SW2 -> SW1) = 4+4 = 8
Hence port 2 on SW3 will be considered as root port.
ii. If the path cost to reach the root bridge over two or more bridge ports is same, then:
Select the neighboring switch with the lowest Switch ID value to reach the Root Bridge (Switch).
Example:
Version 2.0
43
In the above example, the path costs from SW3 to reach the root bridge is same in both cases
case 1: SW3-SW2-SW1 = 4+4 = 8
case 2: SW3-SW4-SW1 = 4+4 = 8
The port connecting the neighboring switch of SW3 with the lowest Bridge ID value will be
considered as root port, which is the port connecting to SW2 in this case.
iii. If there are two or more ports on the same bridge with the lowest path cost, then:
Select the port with the lowest Port Priority value, if you have multiple paths to reach the Root Bridge
(Switch) via same neighbor switch.
If all the ports are configured with same priority number (32 by default), select the lowest port
number on the switch.
Example:
Version 2.0
44
In the above example, there are two paths from SW3 to reach root bridge. Since the port priority is
same on both ports of SW3, the lowest port number 1 will be considered as the root port on SW3.
Hence port 1 on SW3 will be considered as root port.
Note: Root Bridge will never have a root port. If a switch has multiple paths to reach the root switch,
it must select one path and the associated port as the root port.
iii. Designated Bridge:
A designated bridge is elected on a LAN segment in accordance with the following criteria:
a. In a LAN segment, the bridge with the lowest path cost to the Root Bridge will be the Designated
Bridge.
Example:
Version 2.0
45
* Note that the figure is just for the demonstration of the spanning-tree concept and is not exactly
looped network.
In the above example, on segment SW2-->SW3, the bridge with the lowest path cost to the root
bridge is SW2, hence it is elected as Designated Bridge on that segment.
OR
b. If there are two bridges in the LAN segment with equal path cost to the Root Bridge, then the
Bridge with the lowest Bridge ID becomes the Designated Bridge.
Example
In the above example, on SW2-->SW3 segment, both the bridges SW2 and SW3 have equal path cost
to reach the root bridge, hence the bridge with lowest bridge ID becomes the designated bridge which
is SW2 in this case.
Version 2.0
46
iv. Designated Port

A layer 2 switched network consists of one or more LAN segments. Each of these LAN segments
need to access the Root Bridge. In a LAN segment, the port used to reach the Root port (RP) is called
Designated port (DP). There can be only one Root Port (marked as RP) on a Switch, but a Switch can
have multiple Designated ports (marked as DP), one for each LAN segment. Designated ports are
selected based on the lowest path cost to the root bridge for a given segment. Since the root bridge
will have a path cost of "0," any ports on the Root switch that are directly connected to the LAN
segments will become designated ports. A Root Port can never be a Designated port.
There can be only one Root Port (marked as RP) on a Switch, but a Switch can have multiple
Designated ports (marked as DP). Once the designated port for a network segment has been chosen,
the other end of the segment is designated as NDP (Non - Designated Port). NDP, if not a Root Port
(RP). They block network traffic from taking that path so it can only access that segment through the
designated port.
How a DP is selected?
Once the Designated Bridge is elected on a LAN segment, the following criteria applies in the
selection of a Designated Port on the given LAN segment::
i. The switch port (associated with the Designated Bridge) on the LAN segment with the lowest
accumulated path cost to the Root Bridge will be selected as Designated Port (DP) for the given
segment.
Example:
Version 2.0
47
* Note that the figure is just for the demonstration of the spanning-tree concept and is not exactly
looped network.
ii. If a switch has redundant connections to the network segment, the switch port with the lowest port
priority (32 by default) is selected.
Example:
In this example, there is redundant connection on segment SW2-->SW3. Therefore on the designated
bridge (SW2), the port with the lowest port priority will be selected as the designated port which is
port 1 on SW2 in this case.
Version 2.0
48
iii. If there is again a tie (it can happen if the priorities of the ports on this switch are the same), then
the lowest numbered port on the switch is selected.
Example:
In this example, there is redundant connection on segment SW2-->SW3. On the designated bridge
(SW2), both the ports have same priority, therefore as per the criteria given, the lowest numbered port
on the switch will be selected as designated port which is port 1 on SW2 in this case.
3. STP on a 5-Switched Network
Explanation
Version 2.0
49
1. Root Bridge : SW1 is the root bridge because of its lowest MAC-address, thus becoming the
decisive factor because the priority is default on all the switches..
2. Root Port : RP on each switch is calculated which is the sum of the port costs from each switch to
the root switch, lowest path cost will become the root port.
Example, there are three ways to reach root bridge from SW2 as given below:
SW2-SW1 = 19 (lowest path)
SW2-SW3-SW4-SW1 = 19+19+19+19 = 76
SW2-SW5-SW4-SW1 = 19+19+19+19 = 76
Therefore, port 1 on SW2 becomes the root port. Similarly root ports on other switches are selected.
3. Designated Port : On segment SW1-->SW2, the Designated Port will be port 1 on SW1. Thats
because port 1 on SW1 has a cost of 0, while port 1 on SW2 has a cost of 19. On segment SW1->SW4, the Designated Port will be port 2 on SW1. Again, port 2 on SW1 has a cost of 0, while port 1
on SW4 has a cost of 19. Since their port cost is always 0, it should be clear that ports on the Root
Bridge will always be Designated Ports for their connected segments.
Taking Segment SW2-SW3 as an example, the path cost from SW2 to root switch is lesser than SW3
to root. As such, the Designated Port will be on SW2. And the other port which is not a designated
port will be called a non-designated port NDP like port 2 on SW3 and SW5 in the above figure, and
they will be in blocking state where frames are neither sent/received. i.e, Any active port that is not a
root port or a designated port is a blocked port (BP).
Similarly Designated Port is selected on all the other segments of the switch network.
Back
Version 2.0
50
10.2 Lab Exercises using Cisco switches

Note: Please refer to the below network for the exercises given in this section. Also note that the
spanning tree commands are made available only on 2950 switch in the simulator.
10.2.1 : Lab Exercise 1 : Enabling STP

Description : This lab exercise demonstrates the necessary commands to enable and disable
spanning tree protocol on a switch.
Instructions:
1. Enter into configuration mode on SW1
2. Issue command "spanning-tree vlan <vlan-num> to enable spanning-tree on a specified VLAN
3. Issue no form of the command "spanning-tree vlan <vlan-num> to disable spanning-tree on the
VLAN specified.
SW1>enable
SW1(config)#spanning-tree vlan 1
SW1(config)#no spanning-tree vlan 1
SW1(config)#exit
SW1#
Back
Note: Spanning Tree Protocol (STP) is enabled by default on modern switches. It is possible to
disable or enable the Spanning Tree Protocol (STP) when required.
Version 2.0
51
10.2.2 : Lab Exercise 2 : Configuring Root Switch

Description : This lab exercise demonstrates the necessary commands to configure the root
switch.
Instructions:
2. Issue the command "spanning-tree vlan <vlan-num> root" that modifies the switch priority
from the default 32768 to a lower value to allow the switch to become the root switch for VLAN
1
3. Verify the configuration using show spanning-tree command.
SW1>enable
SW1(config)#spanning-tree vlan 1 root
SW1(config)#exit
SW1#show spanning-tree
Note: The command "show spantree" includes information about the following:
1. VLAN number
2. Root bridge priority, MAC address
3. Bridge timers (Max Age, Hello Time, Forward Delay)
Back
10.2.3 : Lab Exercise 3 : Configuring Port-Priority

10.2.4 : Lab Exercise 4 : Configuring the switch priority of a VLAN

10.2.5 : Lab Exercise 5 : Configuring STP Timers

10.2.6 : Lab Exercise 6 : Verifying STP

Version 2.0
52

10.3.1 : Lab Exercise 1 : Configuring STP Timers
Description: This lab exercise demonstrates configuring spanning-tree protocol timers.
Instructions:
2. Use the command set stp hello-time/forward-time/max-age <value> to configure the various
STP timers on the switch
3. Verify the configuration using show configuration command.
user@SW1>configure
[edit]
user@SW1#edit protocols
[edit protocols]
user@SW1#set stp forward-delay 20
[edit protocols]
user@SW1#set stp hello-time 5
[edit protocols]
user@SW1#set stp max-age 30
[edit protocols]
user@SW1#exit
[edit]
user@SW1#commit
[edit]
user@SW1#exit
user@SW1>show configuration
Back
Note:
i. Hello-Time: Determines how often the switch broadcasts hello messages to other switches.
ii. Forward-Time: Determines how long each of the listening and learning states last before the
interface begins forwarding.
iii. Max-Age: Determines the amount of time the switch stores protocol information received on an
interface.
10.3.2 : Lab Exercise 2 : Setting bridge priority on switch

Description: This exercise demonstrates the command required to configure switch priority of a
VLAN.
Instructions:
2. Issue the command "bridge-priority <priority-value> to configure the switch priority of a
VLAN.
Version 2.0
53
user@SW1>show spanning-tree interface

user@SW1>configure
[edit]
user@SW1#edit protocols
[edit protocols]
user@SW1#set stp bridge-priority 12288
[edit protocols]
user@SW1#exit
[edit]
user@SW1#exit
Note: The switch priority can be configured thus making it more likely to be chosen as the root
switch. Priority range is 0 to 61440 in increments of 4096, default is 32768.
Back
10.3.3 : Lab Exercise 3 : Configuring port priority

10.3.4 : Lab Exercise 4 : Verifying STP

10.4 : Objective Test 4: Answer the following Questions

11. Exercises on Per-VLAN Spanning Tree Protocol and VSTP

11.1 Lab Exercises using Cisco switches
11.1.1 Notes on Per-VLAN Spanning Tree Protocol
Per-VLAN Spanning Tree (PVST) maintains a spanning tree instance for each VLAN configured
in the network. It uses ISL Trunking and allows a VLAN trunk to be forwarding for some
VLANs while blocking for other VLANs. Since PVST treats each VLAN as a separate network,
it has the ability to load balance traffic (at layer-2) by forwarding some VLANs on one trunk and
other Vlans on another trunk without causing a Spanning Tree loop.
Per VLAN Spanning Tree Plus (PVST+) provides the same functionality as PVST using 802.1Q
trunking technology rather than ISL. PVST+ is an enhancement to the 802.1Q specification and
Version 2.0
54
is not supported on non-Cisco devices.
Note: Please refer to the below network for the exercises given in this section. Also note that the spanning
tree commands are made available only on 2950 switch in the simulator.
11.1.2 : Lab Exercise 1 : Enabling and disabling Uplinkfast feature on a switch

Description: This lab exercise demonstrates the usage of the uplinkfast command on the switch.
Instructions
1. Enter into the global configuration mode on the switch.
2. Use the command "Spanning-tree uplinkfast" to enable uplinkfast feature on the switch and
verify the same using show command.
3. Use the no form of the above command to disable the uplinkfast on switch and verify the same
using show spanning-tree summary command.
SW1>enable
SW1(config)#spanning-tree uplinkfast
SW1(config)#exit
SW1#show spanning-tree summary
SW1(config)#no spanning-tree uplinkfast
Note: Uplinkfast provides fast convergence in the network access layer after a spanning-tree
topology change using uplink groups.
Enables fast uplink fail over on an access layer switch when dual uplinks are connected. When
uplinkfastis enabled, it is enabled for the entire switch and all VLANs and note that this command
Version 2.0
55
is not allowed on root bridge switch. When UplinkFast is configured, the bridge priority is changed
to 49,152 so that this switch will not be selected as root.
Back
11.1.3 : Lab Exercise 2 : Enabling and disabling Backbonefast feature on a switch

11.1.4 : Lab Exercise 3 : Enabling and disabling Portfast feature on a switch

11.1.5 : Lab Exercise 4 : Enabling PVST+ on a switch

11.1.6 : Lab Exercise 5 : Implementing Per-VLAN Spanning Tree on a switch

network

11.2.1 : Lab Exercise 1 : Enabling VSTP on all VLANs
11.2.2 :Lab Exercise 2 : Enabling VSTP on a VLAN using a single VLAN-ID /

VLAN-Name
11.3 Objective Test 5 : Answer the following questions

Version 2.0
56
12. Lab Exercises on PoE (using Juniper switches)

12.1 : Lab Exercise 1 : Configuring guard-band and maximum power on PoE
enabled interface
Description: This exercise demonstrates the commands required to configure parameters like
guard-band and max power on a PoE enabled interface.
Instructions
1. Enter into PoE hierarchy mode on SW2 that has PoE enabled ports.
2. Guard-band syntax is Set guard-band <watts>. Range to be set is 0 through 19 where
default value is 0
3. Maximum power syntax is Set interface (all | interface-name) maximum-power <watts>.
Range to be set is 0.0 through 18.6 for EX3200 and EX4200 switches and 0.0 through 30.0 for
EX2200 switches and Default is: 15.4 for EX3200 and EX4200 switches and 30.0 for EX2200
switches
4. Verify using show poe interface command that display status of all PoE ports on the switch.
user@SW2>configure
[edit]
user@SW2#edit poe
[edit poe]
user@SW2#set guard-band 12
[edit poe]
user@SW2#set interface ge-0/0/0 maximum-power 18.6
[edit poe]
user@SW2#exit
[edit]
user@SW2#commit
[edit]
user@SW2#show
user@SW2#exit
user@SW2>show poe interface
Note: Guard-band: Reserve a specified amount of power out of the PoE power budget in case of a
spike in PoE consumption.
Maximum-Power: Set the maximum amount of power that the switch can supply to the PoE port.
Back
12.2 : Lab Exercise 2 : Configuring power management mode on PoE enabled

interface
Version 2.0
57
12.3 : Lab Exercise 3 : Disabling a PoE interface

12.4 : Lab Exercise 4 : Setting power priority on all PoE enabled interfaces
13. Final Exam: Answer the following Questions

14. Appendix
14.1 : Answer keys for Objective Test 1
14.2 Answer Keys for Objective Test 2

1. d
Explanation : Show version command displays the current version of the Cisco IOS. In
addition, this command displays the following important information:
- How long the switch has been up (length of time since boot-up).
- How the system was started (power on etc.)
- From where the system was loaded from ( booted via flash, or tftp etc.)
- The contents of configuration register.
2. c and d
Explanation : The following are some important commands that can be used to edit and
review command history buffer. It will be useful to practice these commands.
<ctrl> A : Move to the beginning of the command line
<ctrl> E : Move to the end of the command line
<ctrl> F : Move forward one character, same as using "Right Arrow".
<ctrl> B : Move backward one character, same as using "Left Arrow".
Version 2.0
58
<ctrl> P : Repeat Previous command, same as using "Up Arrow".

<ctrl> N : Repeat Next (more recent) command, same as using "Down Arrow".
<esc> B : Moves to beginning of previous word.
<esc> F : Moves to beginning of next word.
<ctrl>R : Creates new command prompt, followed by all the characters typed at the last one.
3. c
Explanation : Switch modes of operation:
1. User EXEC mode:- This is the LOWEST level of access. This allows examination of
switch status and do some diagnostics. However, you cannot change the switch
configuration, view the configuration files, or control the switch in any way. The prompt in
this mode is "Switch>".
2. Privileged (enable) EXEC mode:- This mode allows you to have all the privileges of
EXEC (user) mode plus commands that enable you to view configuration files, change the
switch configuration, perform troubleshooting that could potentially disrupt traffic. The
default prompt for this mode is "Switch#".
When you are working in the privileged mode (at # prompt), you can get back to user mode
by typing "disable" at the "#" prompt.
4.b
Explanation : Key word: COPY <source> <destination>
This command copies configuration information to specified location.
The following are some frequently used COPY commands:
COPY RUNNING-CONFIGURATION STARTUP-CONFIGURATION (alternatively,
you can use an older version of the command, WRITE MEMORY): This command saves
the current configuration to NVRAM.
Alternatively, we can issue the command using short form:
COPY RUNNING STARTUP - Copies configuration from RAM to NVRAM
COPY STARTUP RUNNING - This command merges configuration from NVRAM to
RAM.
COPY FLASH TFTP - Copies current IOS from switch flash memory to TFTP server.
COPY TFTP FLASH - Copies image file from TFTP server to flash. This is used to
upgrade the IOS image file to a newer version, or if your IOS image becomes corrupt.
Version 2.0
59



14.6 Answer Keys for Final Exam

15. Icons used in the Manual
1. Router-Layer 3 Device
2. Workgroup Switch-Layer 2 Device
3. PC/Workstation
4. Serial-Icon to represent a Layer 1 or 2 cable
Version 2.0
60
5. Circuit-Switched Serial
6. Ethernet-Icon to represent Layer 1 or 2 Ethernet cable
7. Network Cloud
CertExams.com is neither affiliated with nor endorsed by Cisco Systems, Inc.,

Microsoft Corporation, Inc., CompTIA, Check Point Software Corp., Prosoft, Juniper Systems Inc or
any other company. All trademarks are trademarks of their respective owners and duly acknowledged.
Version 2.0
61

C Program Files (x86) Certexams - Com Switch Network Simulator SwitchSim Switching-Manual-Demo

Загружено:

Сведения о документе

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

C Program Files (x86) Certexams - Com Switch Network Simulator SwitchSim Switching-Manual-Demo

Загружено:

Авторское право:

Доступные форматы

SWITCHING LAB MANUAL

Access Layer Switches

4. Switch Device Features

Copyright 2002 2016 CertExams.com

Lab Exercise 1 : Entering User EXEC prompt on a Switch, and exit

8.2 Lab exercises using Juniper switches

Lab Exercise 1 : Entering configuration mode on a switch and exit

8.3 Objective Test 2

Lab Exercise 1 : Define VLANs

Copyright 2002 2016 CertExams.com

9.4 Objective Test 3

Lab Exercise 1 : Enabling STP

10.3 Lab exercises using Juniper switches

Lab Exercise 1 : Configuring STP Timers

10.4 Objective Test 4

Notes on Per-VLAN Spanning Tree Protocol

11.2 Lab exercises using Juniper switches

Copyright 2002 2016 CertExams.com

13. Final Exam

Answer key for Objective Test 1

15. Icons used in the Manual

Copyright 2002 2016 CertExams.com

Copyright 2002 2016 CertExams.com

definition, Inter-VLAN routing, and security.

3. Switched Network Model

Cisco Access Layer Switches

1900/2800; provides switched 10Mbps to the desktop/10BaseT hubs in small/medium

2900; provides 10/100Mbps switched access to a maximum of 50 users; and gigabit

4000; provides a 10/100/1000Mbps access to a maximum of 96 users and a maximum

Catalyst 4000 Series switch

Juniper Access Layer Switches

Copyright 2002 2016 CertExams.com

PoE Enabled Ports

24-port Gigabit Ethernet/10-Gigabit Ethernet SFP

24-port Gigabit Ethernet/10-Gigabit Ethernet SFP

3.2 Distribution Layer Switches

Cisco Distribution Layer Switches

Copyright 2002 2016 CertExams.com

2926G; a strong switch that utilizes an external router processor.

Juniper Distribution Layer Switches

No of PoE enabled ports

Copyright 2002 2016 CertExams.com

PoE enabled ports

3.3 Core Layer Switches

Cisco Core Layer Switches

Copyright 2002 2016 CertExams.com

Juniper Core Layer Switches

Access Port Configuration

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

40-port GbE/10GbE SFP/SFP+

Copyright 2002 2016 CertExams.com

48/12 (48PL only) 40/12 (40P only)

10/1 100/1000 Mbps

Copyright 2002 2016 CertExams.com

QSFP+ Uplink Ports

Copyright 2002 2016 CertExams.com

Copyright 2002 2016 CertExams.com