Catalyst 2960 and 3560 Series Static VLANS VLAN Trunking.docx

1、Catalyst 2960 and 3560 Series Static VLANS VLAN TrunkingLab 2-1 Catalyst 2960 and 3560 Series Static VLANS, VLAN Trunking,and VTP Domain and ModesObjectiveSet up a VTP domain, create and maintain VLANs, and use Inter-Switch Link(ISL) and 802.1Q trunking on Cisco Catalyst 2960 and 3560 series Etherne

2、tswitches using command-line interface (CLI) mode.ScenarioVLANs must logically segment a network by function, team, or application,regardless of the physical location of the users. All end stations in a particular IPsubnet are often associated with a specific VLAN. VLAN membership on a switchthat is

3、 assigned manually for each interface is known as static VLANmembership.Trunking, or connecting switches, and the VLAN Trunking Protocol (VTP) areused to segment the network. VTP manages the addition, deletion, and renamingof VLANs on the entire network from a single central switch. VTP minimizescon

4、figuration inconsistencies that can cause problems, such as duplicate VLANnames, incorrect VLAN-type specifications, and security violations.Step 1Power up the switches and use the standard process for establishing aHyperTerminal console connection from a workstation to each switch in your pod.If yo

5、u are connecting remotely to your switches, follow the instructions that havebeen supplied by your instructor.2 - 18 CCNP: Building Multilayer Switched Networks v5.0 - Lab 2-2 Copyright 2006, Cisco Systems, IncPrepare for the lab by removing all VLAN information and configurations that mayhave been

6、previously entered into you switches. Refer to Lab 2.0 “Clearing aSwitch” and Lab 2.0b “Clearing a Switch Connected to a Larger Network.”Step 2To differentiate between the devices, give the switches names using thehostname command. We will also put IP addresses on the management VLANaccording to the

7、 diagram. By default, VLAN 1 is used as the management VLAN.The following is a sample configuration for the 3560 switch DLS1.Switch#configure terminalEnter configuration commands, one per line. End with CNTL/Z.Switch(config)#hostname DLS1DLS1(config)#interface vlan 1DLS1(config-if)#ip address 10.1.1

8、.101DLS1(config-if)#no shutdownDLS1(config)#endDLS1#Repeat these steps on the other pod switches according to the diagram.Step 3Use the show vlan command from privileged mode on any switch. The followingoutput is for a 2960 switch.ALS1#show vlanVLAN Name Status Ports- - - -1 default active Fa0/1, Fa

9、0/2, Fa0/3, Fa0/4Fa0/5, Fa0/6, Fa0/7, Fa0/8Fa0/9, Fa0/10, Fa0/11, Fa0/12Fa0/13, Fa0/14, Fa0/15, Fa0/16Fa0/17, Fa0/18, Fa0/19, Fa0/20Fa0/21, Fa0/22, Fa0/23, Fa0/24Gi0/1, Gi0/21002 fddi-default act/unsup1003 token-ring-default act/unsup1004 fddinet-default act/unsup1005 trnet-default act/unsupVLAN Typ

10、e SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2- - - - - - - - - - -1 enet 100001 1500 - - - - - 0 01002 fddi 101002 1500 - - - - - 0 01003 tr 101003 1500 - - - - - 0 01004 fdnet 101004 1500 - - - ieee - 0 01005 trnet 101005 1500 - - - ibm - 0 0Remote SPAN VLANs-Primary Secondary Type P

11、orts- - - -3 - 18 CCNP: Building Multilayer Switched Networks v5.0 - Lab 2-2 Copyright 2006, Cisco Systems, IncThe following output is for a 3560 switch.DLS1#show vlanVLAN Name Status Ports- - - -1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4Fa0/5, Fa0/6, Fa0/7, Fa0/8Fa0/9, Fa0/10, Fa0/11, Fa0/12Fa0/13

12、, Fa0/14, Fa0/15, Fa0/16Fa0/17, Fa0/18, Fa0/19, Fa0/20Fa0/21, Fa0/22, Fa0/23, Fa0/24Gi0/1, Gi0/21002 fddi-default act/unsup1003 token-ring-default act/unsup1004 fddinet-default act/unsup1005 trnet-default act/unsupVLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2- - - - - - - - -

13、- -1 enet 100001 1500 - - - - - 0 01002 fddi 101002 1500 - - - - - 0 01003 tr 101003 1500 - - - - - 0 01004 fdnet 101004 1500 - - - ieee - 0 01005 trnet 101005 1500 - - - ibm - 0 0Remote SPAN VLANs-Primary Secondary Type Ports- - - -Note that the default VLAN numbers, names, associated types, and al

14、l switchports are automatically assigned to VLAN 1.You can use the show vlan command to determine the mode of a port. Portsconfigured for a particular VLAN are shown in that VLAN. Ports configured totrunk mode do not appear in any of the VLANs.Step 4A VTP domain, also called a VLAN management domain

15、, consists of trunked orinterconnected switches that are under the administrative responsibility of aswitch or switches in server VTP mode. A switch can be in only one VTP domainwith the same VTP domain name. The default VTP mode for the 2960 and 3560switches is server mode. VLAN information is not

16、propagated until a domainname is specified and trunks are set up between the devices.The following table describes the three VTP modes.VTP Mode DescriptionVTP Server This is the default VTP mode. VLANs can be created,modified, and deleted. Other configuration parameters4 - 18 CCNP: Building Multilay

17、er Switched Networks v5.0 - Lab 2-2 Copyright 2006, Cisco Systems, Incmay be specified for all switches in the VTP domain. VTPservers advertise VLAN configurations to other switchesin the same VTP domain and synchronize VLANconfigurations with other switches based onadvertisements received over trun

18、k links.In VTP server mode, VLAN configurations are saved inNVRAM.VTP ClientThe switch learns VLANs from the switch in server mode,without the ability to create, change, or delete VLANs.In VTP client mode, VLAN configurations are not savedin NVRAM.VTP TransparentSwitches do not participate in VTP. T

19、he switch does notadvertise its VLAN configuration and does notsynchronize its configuration based on receivedadvertisements. However, in VTP version 2, transparentswitches do forward VTP advertisements that theyreceive from other switches from their trunk interfaces.Therefore, local VLANs may be cr

20、eated, modified, anddeleted on a switch in the transparent mode.In VTP transparent mode, VLAN configurations aresaved in NVRAM, but they are not advertised to otherswitches.Use the show vtp status command on any of the switches. The output shouldbe similar to the following sample for DLS1.DLS1#show

21、vtp statusVTP Version : 2Configuration Revision : 0Maximum VLANs supported locally : 1005Number of existing VLANs : 5VTP Operating Mode : ServerVTP Domain Name :VTP Pruning Mode : DisabledVTP V2 Mode : DisabledVTP Traps Generation : DisabledMD5 digest : 0xBF 0x86 0x94 0x45 0xFC 0xDF 0xB5 0x70Configu

22、ration last modified by 0.0.0.0 at 0-0-00 00:00:00Local updater ID is 10.1.1.250 on interface Vl1 (lowest numbered VLANinterface found)Since no VLAN configurations were made, all settings are the defaults. Noticethat the VTP mode is server. The number of existing VLANs is the five built-inVLANs. The

23、 3560 switch supports 1005 maximum VLANs locally. The 29605 - 18 CCNP: Building Multilayer Switched Networks v5.0 - Lab 2-2 Copyright 2006, Cisco Systems, Incswitch supports 255. The configuration revision is zero, and the VTP version is 2.All switches in the VTP domain must run the same VTP version

24、.The importance of the configuration revision number is that the switch in VTPserver mode with the highest revision number propagates VLAN information overtrunked ports. Every time VLAN information is modified and saved in the VLANdatabase or vlan.dat file, the revision number is increased by one wh

25、en the userexits from VLAN configuration mode.Multiple switches in the VTP domain can be in VTP server mode. These switchescan be used to manage all other switches in the VTP domain. This is suitable forsmall-scale networks where the VLAN information is small and easily stored in allswitches. In a l

26、arge network, the administrator must determine which switchesmake the best VTP servers. The network administrator should set aside some ofthe more powerful switches and keep them as VTP servers. The other switchesin the VTP domain can be configured as clients. The number of VTP serversshould be cons

27、istent based on the amount of redundancy desired in the network.Step 5Change the VTP domain name on DLS1 to SWLAB using the vtp domaincommand. The following is an example configuration from DLS1.DLS1(config)#vtp domain SWLABChanging VTP domain name from NULL to SWLABDLS1(config)#endSet up the switch

28、es so that the DL switches are in VTP server mode, and the ALswitches are in VTP client mode. The following are example configurations forDLS1 and ALS1.DLS1#configure terminalEnter configuration commands, one per line. End with CNTL/Z.DLS1(config)#vtp mode serverDevice mode already VTP SERVER.DLS1(c

29、onfig)#endALS1#configure terminalEnter configuration commands, one per line. End with CNTL/Z.ALS1(config)#vtp mode clientSetting device to VTP CLIENT mode.ALS1(config)#endNote that since the default mode is server, we receive a message on DLS1stating that the device mode is already VTP server.Use th

30、e show vtp status command on either of the AL switches. The outputshould be similar to the following sample for ALS1.DLS1#show vtp statusVTP Version : 2Configuration Revision : 06 - 18 CCNP: Building Multilayer Switched Networks v5.0 - Lab 2-2 Copyright 2006, Cisco Systems, IncMaximum VLANs supported locally : 1005Number of existing