Академический Документы
Профессиональный Документы
Культура Документы
Global Configuration
1. Assign the appropriate names to each of the devices based on the Layer 2 diagram
Router>enable
Router#conf t
Router(config)#hostname R1_ISP
R1_ISP(config)#no ip domain-lookup
R1_ISP(config)#enable secret s
R1_ISP(config)#service password-encryption
Console Port
R1_ISP(config)#line console 0
R1_ISP(config-line)#logging synchronous
R1_ISP(config-line)#password c
R1_ISP(config-line)#exec-timeout 0 ?
<cr>
R1_ISP(config-line)#exec-timeout 0 0
VTY Ports
1. Allow 5 concurrent sessions of remote access to all devices. /Allow 5 telnet sessions at one
time.
R1_ISP(config-line)#exit
R1_ISP(config)#line vty 0 4
R1_ISP(config-line)#logging synchronous
R1_ISP(config-line)#password v
R1_ISP(config-line)#exec-timeout 40 20
R1_ISP(config-line)#end
II.
VTP Configuration
RSW1#configure terminal
RSW2#conf t
RSW3#conf t
3. Configure examA for the vtp domain name and passA as the vtp password on all switches.
RSW1(config)#exit
RSW2(config)#exit
RSW3(config)#exit
RSW1#conf t
RSW1(config)#int f1/1
RSW1(config-if)#shutdown
RSW1(config-if)#end
RSW2#conf t
RSW2(config-if-range)#shutdown
RSW2(config-if-range)#end
RSW3#conf t
RSW3(config-if-range)#shut
RSW3(config-if-range)#end
RSW1#conf t
RSW1(config-if-range)#end
RSW2#conf t
RSW2(config-if-range)#end
RSW3#conf t
RSW3(config-if-range)#end
4. Verify prior step using the proper "show" commands.
<output omitted>
<output omitted>
<output omitted>
III.
VLAN Configuration
RSW1#conf t
RSW1(config)#vlan 5
RSW1(config-vlan)#name SalesDept
RSW1(config-vlan)#vlan 15
RSW1(config-vlan)#name WebServers
RSW1(config-vlan)#vlan 25
RSW1(config-vlan)#name FTPServers
RSW1(config-vlan)#vlan 10,20,30,35,40,45,50,55
RSW1(config-vlan)#end
RSW1#sh vlan-switch
3. Assign VLANs to appropriate switch ports according to the Physical Diagram and Layer 2/3
Diagram
RSW3#conf t
RSW3(config)#int f1/3
RSW3(config-if)#end
RSW1#conf t
RSW1(config)#int f1/2
RSW1(config-if)#end
RSW2#conf t
RSW2(config)#int f1/2
RSW2(config-if)#end
RSW1#sh vlan-s
RSW2#sh vlan-s
RSW3#sh vlan-s
5. Assign IPv4 addresses for each FastEthernet interface, Switch Virtual Interface (SVI) and
loopback.
Verification
Spanning Tree
RSW1#conf t
RSW1(config)#int f1/2
RSW1(config-if)#spanning-tree portfast
RSW1(config-if)#end
this interface when portfast is enabled, can cause temporary spanning tree
loops.
RSW2#conf t
RSW2(config)#int f1/2
RSW2(config-if)#span portfast
RSW2(config-if)#end
this interface when portfast is enabled, can cause temporary spanning tree
loops.
Use with CAUTION
RSW3#conf t
RSW3(config)#int f1/3
RSW3(config-if)#span portf
RSW3(config-if)#end
this interface when portfast is enabled, can cause temporary spanning tree
loops.
8. Use the show spanning-tree interface <interface> command at Privilege EXEC mode to verify that the
ports are in the portfast mode.
Port path cost 19, Port priority 128, Port Identifier 128.43.
Port path cost 19, Port priority 128, Port Identifier 128.43.
Port path cost 19, Port priority 128, Port Identifier 128.44.
IV.
LAN Interface Configuration
1. Assign IPv4 addresses for each FastEthernet interface, Switch Virtual Interface (SVI) and
loopbacks.
On R2_Gateway
R2_Gateway#conf t
R2_Gateway(config)#int f1/0
R2_Gateway(config-if)#no shut
R2_Gateway(config-if)#int f3/0
R2_Gateway(config-if)#no shut
R2_Gateway(config-if)#end
On R3_DMZ
R3_DMZ#conf t
R3_DMZ(config)#int loopback 1
R3_DMZ(config-if)#int lo3
R3_DMZ(config-if)#int lo4
Let's try this out on R3's F1/0 interface and sub-interfaces. First, bring up the main interface,
F1/0.
R3_DMZ(config-if)#int f1/0
R3_DMZ(config-if)#no shut
R3_DMZ(config-subif)#encapsulation dot1q 30
R3_DMZ(config-subif)#int f1/0.20
R3_DMZ(config-subif)#encap dot 20
R3_DMZ(config-subif)#int f3/0
R3_DMZ(config-if)#ip add 40.1.1.3 255.255.255.0
R3_DMZ(config-if)#no shut
R3_DMZ(config-if)#end
on RSW1
RSW1#conf t
RSW1(config)#int vlan 5
RSW1(config-if)#int vlan 10
RSW1(config-if)#int vlan 15
RSW1(config-if)#int vlan 20
RSW1(config-if)#end
RSW1#sh ip int br
RSW2#conf t
RSW2(config)#int vlan 30
RSW2(config-if)#int vlan 35
RSW2(config-if)#int vlan 45
RSW2(config-if)#int vlan 50
RSW2(config-if)#int vlan 55
RSW2(config-if)#end
RSW2#sh ip int br
On to RSW3.
RSW3#conf t
RSW3(config)#int vlan 25
RSW3(config-if)#int vlan 40
RSW3(config-if)#end
RSW3#sh ip int br
RSW1#ping 20.1.1.3
RSW1#ping 10.1.1.2
R2_Gateway#ping 45.1.1.12
RSW2#ping 30.1.1.3
R3_DMZ#ping 40.1.1.13
Frame-Relay
R2_Gateway#conf t
R2_Gateway(config)#int s0/0
R2_Gateway(config-if)#encapsulation frame-relay
R2_Gateway(config-if)#no shut
R2_Gateway(config-if)#int s0/0.1 p
R2_Gateway(config-fr-dlci)#end
3. Enable frame encapsulation on the main interface of serial 0/0 on R2 and bring the interface up.
R2_Gateway#conf t
R2_Gateway(config)#int s0/0
R2_Gateway(config-if)#encapsulation frame-relay
R2_Gateway(config-if)#no shut
R2_Gateway(config-if)#int s0/0.1 p
R2_Gateway(config-fr-dlci)#end
5. Verify connectivity.
R1_ISP#ping 12.1.1.2
!!!!!
R2_Gateway#ping 12.1.1.1
!!!!!
R1_ISP#conf t
R1_ISP(config-if)#encapsulation ppp
R1_ISP(config-if)#no shut
R1_ISP(config-if)#exit
5. Configure username and password for authentication on R1 and R2. Use LWP as the password.
On R2
R2_Gateway#conf t
R2_Gateway(config-if)#encapsulation ppp
R2_Gateway(config-if)#no shut
R2_Gateway(config-if)#exit
Configure username and password for authentication on R2. Use LWP as the password.
R2_Gateway(config)#end
6. Verify connectivity
R1_ISP#ping 21.1.2.2
!!!!!
R2_Gateway#ping 21.1.2.1
!!!!!
V.