Scribd
Upload
25 views

Switch

The document provides instructions for configuring basic settings on switches and routers, including hostname, passwords, VLAN configuration, interface configuration, and port security settings. The document contains detailed configuration steps for switch and router interfaces, VLANs, trunk ports, and port security.

Uploaded by

Indigo Corp
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
25 views

Switch

The document provides instructions for configuring basic settings on switches and routers, including hostname, passwords, VLAN configuration, interface configuration, and port security settings. The document contains detailed configuration steps for switch and router interfaces, VLANs, trunk ports, and port security.

Uploaded by

Indigo Corp
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 9

1.Realizar tareas de configuraci�n b�sicas en un switch.

--------------------------------------------------------------------------------
*Configure el nombre de host del switch como se indica en la topolog�a.
Switch(config)#hostname S1

*Configure una contrase�a encriptada del modo EXEC privilegiado en class.


S1(config)#enable secret class

*Deshabilite la b�squeda del DNS


S1(config)#no ip domain-lookup

*Configure la contrase�a cisco para las conexiones de la consola.


S1(config)#line console 0
S1(config-line)#password cisco
S1(config-line)#login

*Configure la contrase�a cisco para las conexiones vty.


S1(config-line)#line vty 0 15
S1(config-line)#password cisco
S1(config-line)#login
S1(config-line)#end
%SYS-5-CONFIG_I: Configured from console by console

*Guardar configuracion
S1#copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
[OK]

*CONFIGURACION LOOPBACK
R6(config)#interface loopback 0
R6(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to
up
R6(config-if)#ip address 192.169.6.6 255.255.255.0

--------------------------------------------------------------------------------
CONFIGURACION VTP EN LOS 3 SWITCHES
--------------------------------------------------------------------------------
S1(config)#vtp mode server
S1(config)#vtp domain Lab5
S1(config)#vtp password cisco
S1(config)#end

S2(config)#vtp mode client


S2(config)#vtp domain Lab5
S2(config)#vtp password cisco
S2(config)#end

S3(config)#vtp mode client


Setting device to VTP CLIENT mode
S3(config)#vtp domain Lab5
Changing VTP domain name from NULL to Lab5
S3(config)#vtp password cisco
Setting device VLAN database password to cisco
S3(config)#end

--------------------------------------------------------------------------------
CONFIGURACION DE ENLACES TRONCALES Y LA VLAN NATIVA (VLAN 99 como VLAN nativa)
Aplicar a las interfaces Fa0/1 a la Fa0/4
--------------------------------------------------------------------------------

S1S2S3(config)#interface fa0/1
S1S2S3(config-if)#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config)#end

S1S2S3(config)#interface fa0/2
S1S2S3(config-if)#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if)#end

S1S2S3(config)#interface fa0/3
S1S2S3(config-if#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if-#end

S1S2S3(config)#interface fa0/4
S1S2S3(config-if#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if-#end

--------------------------------------------------------------------------------
2.Crear las VLAN.
--------------------------------------------------------------------------------
S1(config)#vlan 99
S1(config-vlan)#name management
S1(config)#vlan 10
S1(config-vlan)#name faculty-staff
S1(config)#vlan 20
S1(config-vlan)#name students
S1(config)#vlan 30
S1(config-vlan)#name guest
S1(config-vlan)#end

--------------------------------------------------------------------------------
3.Asignar puertos de switch a una VLAN.
--------------------------------------------------------------------------------
S2(config)#interface fa0/6
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 10
S2(config-if)#no shutdown

S2(config-if)#interface fa0/11
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 20
S2(config-if)#no shutdown

S2(config-if)#interface fa0/18
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 30
S2(config-if)#no shutdown
--------------------------------------------------------------------------------
4. Comando Completo Port Security
--------------------------------------------------------------------------------
Switch01> enable
Switch01# config terminal
Switch01(config)# interface fa0/1
Switch01(config-if)# switchport mode access
Switch01(config-if)#switchport port-security
Switch01(config-if)#switchport port-security maximum 2
Switch01(config-if)# switchport port-security violation shutdown
Switch01(config-if)# switchport port-security mac-address sticky
Switch01(config-if)# end

--------------------------------------------------------------------------------
Configure las interfaces del router on a Sticke
--------------------------------------------------------------------------------

R1(config)#interface fastethernet 0/1


R1(config)#ip address 172.17.50.1 255.255.255.0
R1(config-if)#no shutdown

R1(config)#interface fastethernet 0/0


R1(config)#no shutdown

R1(config-if)#interface fastethernet 0/1.10


R1(config-if)#encapsulation dot1Q 10
R1(config-if)#ip address 172.17.10.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.20


R1(config-if)#encapsulation dot1Q 20
R1(config-if)#ip address 172.17.20.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.88


R1(config-if)#encapsulation dot1Q 88
R1(config-if)#ip address 172.17.20.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.99


R1(config-if)#encapsulation dot1Q 99 native

--------------------------------------------------------------------------------
4.Habilitar el enlace troncal en conexiones entre switches.
--------------------------------------------------------------------------------

Configure la VLAN troncal y nativa para los puertos troncales de todos los
switches.
--------------------------------------------------------------------------------
4.Asignar VLAN Administrativa.
--------------------------------------------------------------------------------
S1(config)#interface vlan 99
S1(config-if)#ip address 172.17.99.11 255.255.255.0
S1(config-if)#no shutdown

S2(config)#interface vlan 99
S2(config-if)#ip address 172.17.99.12 255.255.255.0
S2(config-if)#no shutdown

S3(config)#interface vlan 99
S3(config-if)#ip address 172.17.99.13 255.255.255.0
S3(config-if)#no shutdown
--------------------------------------------------------------------------------

7.Verificar la configuraci�n de enlace troncal.


8.Guardar la configuraci�n de la VLAN.
--------------------------------------------------------------------------------
Balaceo de cargas
--------------------------------------------------------------------------------
spanning-tree vlan 5,6 root primary
spanning-tree vlan 7,10 root secondary
--------------------------------------------------------------------------------
A1(config)#spanning-tree mode rapid-pvst
--------------------------------------------------------------------------------

Gateway
R1(config-subif)#encapsulation dot1Q 99
R1(config-subif)#ip address 172.17.99.1 255.255.255.0

--------------------------------------------------------------------------------
CONFIGURACION GATEWAY GATEWAY
switch(config)# ip default-gateway 192.168.1.1
--------------------------------------------------------------------------------
Configurar Port Security en Switches Cisco
Switch01# config terminal
Switch01(config)# interface GigabitEthernet 0/1
Switch01(config-if)#
Switch01(config-if)# switchport mode access
Switch01(config-if)#switchport port-security
Switch01(config-if)#switchport port-security maximum 1
--------------------------------------------------------
Switch01(config-if)# switchport port-security violation { protect | restrict |
shutdown }
Switch01(config-if)# switchport port-security violation shutdown
--------------------------------------------------------
Switch01(config-if)# switchport port-security mac-address 0a04.aaf8.13ad
--------------------------------------------------------
Switch01(config-if)# switchport port-security mac-address sticky (aprende la MAC)
--------------------------------------------------------
Comando Completo Port Security
Switch01> enable
Switch01# config terminal
Switch01(config)# interface GigabitEthernet 0/1
Switch01(config-if)# switchport mode access
Switch01(config-if)#switchport port-security
Switch01(config-if)#switchport port-security maximum 1
Switch01(config-if)# switchport port-security violation shutdown
Switch01(config-if)# switchport port-security mac-address sticky
Switch01(config-if)# end

--------------------------------------------------------------------------------
1)
CONFIGURACION BASICA DEL SWITCH

*Configure el nombre de host del switch como se indica en la topolog�a.


Switch(config)#hostname S1

*Configure una contrase�a encriptada del modo EXEC privilegiado en class.


S1(config)#enable secret class

*Deshabilite la b�squeda del DNS


S1(config)#no ip domain-lookup

*Configure la contrase�a cisco para las conexiones de la consola.


S1(config)#line console 0
S1(config-line)#password cisco
S1(config-line)#login

*Configure la contrase�a cisco para las conexiones vty.


S1(config-line)#line vty 0 15
S1(config-line)#password cisco
S1(config-line)#login
S1(config-line)#end
%SYS-5-CONFIG_I: Configured from console by console

*Guardar configuracion
S1#copy running-config startup-config
Destination filename [startup-config]?
Building configuration...
[OK]

CONFIGURACION LOOPBACK
R6(config)#interface loopback 0
R6(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Loopback0, changed state to up
R6(config-if)#ip address 192.169.6.6 255.255.255.0
--------------------------------------------------------------------------------

CONFIGURACION DE VLAN, HABILITAR PUERTOS

S2(config)#interface fa0/6
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 10
S2(config-if)#no shutdown

S2(config-if)#interface fa0/11
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 20
S2(config-if)#no shutdown

S2(config-if)#interface fa0/18
S2(config-if)#switchport mode access
S2(config-if)#switchport access vlan 99
S2(config-if)#no shutdown
--------------------------------------------------------------------------------

CONFIGURACION VTP EN LOS 3 SWITCHES

S1(config)#vtp mode server


S1(config)#vtp domain Lab5
S1(config)#vtp password cisco
S1(config)#end

S2(config)#vtp mode client


S2(config)#vtp domain Lab5
S2(config)#vtp password cisco
S2(config)#end

S3(config)#vtp mode client


Setting device to VTP CLIENT mode
S3(config)#vtp domain Lab5
Changing VTP domain name from NULL to Lab5
S3(config)#vtp password cisco
Setting device VLAN database password to cisco
S3(config)#end
--------------------------------------------------------------------------------

CONFIGURACION DE ENLACES TRONCALES Y LA VLAN NATIVA (VLAN 99 como VLAN nativa)


Aplicar a las interfaces Fa0/1 a la Fa0/4

S1S2S3(config)#interface fa0/1
S1S2S3(config-if)#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config)#end

S1S2S3(config)#interface fa0/2
S1S2S3(config-if)#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if)#end

S1S2S3(config)#interface fa0/3
S1S2S3(config-if#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if-#end

S1S2S3(config)#interface fa0/4
S1S2S3(config-if#switchport mode trunk
S1S2S3(config-if)#switchport trunk native vlan 99
S1S2S3(config-if)#no shutdown
S1S2S3(config-if-#end

--------------------------------------------------------------------------------
2)
CONFIGURACION DEL SERVIDOR VTP CON LAS VLAN

S1(config)#vlan 99
S1(config-vlan)#name management
S1(config)#vlan 10
S1(config-vlan)#name faculty-staff
S1(config)#vlan 20
S1(config-vlan)#name students
S1(config)#vlan 30
S1(config-vlan)#name guest
S1(config-vlan)#end
--------------------------------------------------------------------------------

CONFIGURACION DE DIRECCION DE INTERFAZ DE ADMINISTRACION EN LOS SWITCHES

S1(config)#interface vlan99
S1(config-if)#ip address 172.17.99.11 255.255.255.0

S2(config)#interface vlan99
S2(config-if)#ip address 172.17.99.12 255.255.255.0

S3(config)#interface vlan99
S3(config-if)#ip address 172.17.99.13 255.255.255.0
--------------------------------------------------------------------------------

Examinar la configuraci�n predeterminada del Protocolo spanning tree (STP) 802.1D.

S1#show spanning-tree
--------------------------------------------------------------------------------

Examine el �rbol de expansi�n de la VLAN 99 para los tres switches

S1#show spanning-tree vlan 99


--------------------------------------------------------------------------------

OPTIMIZAR STP

S1(config)#spanning-tree vlan 99 priority 4096


S1(config)#exit
--------------------------------------------------------------------------------
Configure las interfaces del router on a Stick

R1(config)#interface fastethernet 0/1


R1(config)#ip address 172.17.50.1 255.255.255.0
R1(config-if)#no shutdown

R1(config)#interface fastethernet 0/0


R1(config)#no shutdown

R1(config-if)#interface fastethernet 0/1.10


R1(config-if)#encapsulation dot1Q 10
R1(config-if)#ip address 172.17.10.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.20


R1(config-if)#encapsulation dot1Q 20
R1(config-if)#ip address 172.17.20.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.88


R1(config-if)#encapsulation dot1Q 88
R1(config-if)#ip address 172.17.20.1 255.255.255.0
R1(config-if)#no shutdown

R1(config-if)#interface fastethernet 0/1.99


R1(config-if)#encapsulation dot1Q 99 native
--------------------------------------------------------------------------------

Conexion SSH

hostname
mombre del dominio
crypto
nombre de usuario
conexion ssh
y autenticacion local

ip domain-name ucr.ac.cr

crypto key generate rsa

1024

line vty 0 4
transport input ssh
login local

username admin
password cisco

ssh -l admin 172.17.20.3

--------------------------------------------------------------------------------

Address: 172.17.15.96 10101100.00010001.00001111.011 00000


Netmask: 255.255.255.224 = 27 11111111.11111111.11111111.111 00000
Wildcard: 0.0.0.31 00000000.00000000.00000000.000 11111
=>
Network: 172.17.15.96 10101100.00010001.00001111.011 00000
HostMin: 172.17.15.97 10101100.00010001.00001111.011 00001
HostMax: 172.17.15.126 10101100.00010001.00001111.011 11110
Broadcast: 172.17.15.127 10101100.00010001.00001111.011 11111

Hosts/Net: 30

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy