2934234 34 Configuring a Catalyst Switch

8/14/2019 2934234 34 Configuring a Catalyst Switch

1/20

2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-1

2002, Cisco Systems, Inc. All rights reserved. 1

Configuring a Catalyst Switch


2/20


Objectives

Upon completing this lesson, you will beable to:

Verify the default configuration of the device,

given a functioning access layer switch Configure the switch management IP address

and the default gateway, given a functioningaccess layer switch and an IP addressing

scheme

Execute an add, move, or change on an accesslayer switch, given a new network requirement


3/20


IP address: 0.0.0.0

CDP: enabled

100baseT port: autonegotiate duplex mode

Spanning tree: enabled

Console password: none

Catalyst 1900 and 2950 DefaultConfiguration


4/20


wg_sw_2950#show run

Building configuration...Current configuration:!!interface FastEthernet0/1

!interface FastEthernet0/2

wg_sw_2950#show vlan

VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4,

Fa0/5, Fa0/6, Fa0/7, Fa0/8,Fa0/9, Fa0/10, Fa0/11, Fa0/12,Fa0/13, Fa0/14, Fa0/15, Fa0/16,Fa0/17, Fa0/18, Fa0/19, Fa0/20,Fa0/21, Fa0/22, Fa0/23, Fa0/24

Port Names onCatalyst 2950 Switches


5/20


Configuring theSwitch IP Address

wg_sw_2950(config)#interface vlan 1wg_sw_2950(config-if)#ip address 10.5.5.11 255.255.255.0

wg_sw_2950(config-if)#ip address {ip_address} {mask}

Configures an IP address and subnet mask for the switch VLAN1 interface

Catalyst 2950


6/20


wg_sw_a(config)#ip default-gateway {ip address} Configures the switch default gateway for the Catalyst 1900

and 2950 switches

Configuring the Switch DefaultGateway

wg_sw_a(config)#ip default-gateway 10.5.5.3


7/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-7

Showing the Switch IP Address

Catalyst 2950

wg_sw_2950#show interface vlan 1Vlan1 is up, line protocol is upHardware is Cat5k Virtual Ethernet, address is 0010.f6a9.9800 (bia 0010.f6a9.9800)Internet address is 172.16.80.79/24Broadcast address is 255.255.255.255. . .

wg_sw_2950#



Duplex Overview

Half Duplex (CSMA/CD)

Unidirectional data flow

Higher potential for collision

Hubs connectivity

Full Duplex

Point-to-point only

Attached to dedicated switched port Requires full-duplex support on both ends

Collision-free

Collision detect circuit disabled



Setting Duplex Options

Catalyst 2950

wg_sw_2950(config)#interface fa0/1wg_sw_2950(config-if)#duplex {auto | full | half}



Showing Duplex Options

Switch#show interfaces fastethernet0/3

FastEthernet0/3 is up, line protocol is downHardware is Fast Ethernet, address is 0000.0000.0003 (bia 0000.0000.0003)MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255Encapsulation ARPA, loopback not setKeepalive set (10 sec)

Half-duplex, 10Mb/sinput flow-control is off, output flow-control is offARP type: ARPA, ARP Timeout 04:00:00Last input never, output never, output hang neverLast clearing of "show interface" counters neverQueueing strategy: fifoOutput queue 0/40, 0 drops; input queue 0/75, 0 drops5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec

0 packets input, 0 bytes, 0 no bufferReceived 0 broadcasts, 0 runts, 0 giants, 0 throttles0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored0 input packets with dribble condition detected0 packets output, 0 bytes, 0 underruns0 output errors, 0 collisions, 2 interface resets0 babbles, 0 late collision, 0 deferred0 lost carrier, 0 no carrier0 output buffer failures, 0 output buffers swapped out



Managing the MAC Address Table

Catalyst 2950

wg_sw_2950#show mac-address-tableDynamic Address Count: 1Secure Address Count: 0

Static Address (User-defined) Count: 0System Self Address Count: 25Total MAC addresses: 26 Maximum MAC addresses: 8192Non-static Address Table:Destination Address Address Type VLAN Destination Port------------------- ------------ ---- --------------------0050.0f02.3372 Dynamic 1 FastEthernet0/2



Setting a Permanent MAC Address

wg_sw_2950(config)#mac-address-table staticmac_addr {vlan vlan_id} [interface int1 [int2 ... int15]]

Catalyst 2950 only



wg_sw_2950#mac-address-table secure 0003.3333.3333 fa 0/1 vlan 1wg_sw_2950#show mac-address-tableDynamic Address Count: 1Secure Address Count: 1Static Address (User-defined) Count: 1System Self Address Count: 25Total MAC addresses: 28 Maximum MAC addresses: 8192Non-static Address Table:Destination Address Address Type VLAN Destination Port

------------------- ------------ ---- --------------------0050.0f02.3372 Dynamic 1 FastEthernet0/20003.3333.3333 Secure 1 FastEthernet0/1Static Address Table:Destination Address VLAN Input Port Output Ports------------------- ---- ---------- -----------------------2222.2222.2222 1 ALL Fa0/1

Setting a Restricted Static MACAddress on the Catalyst 2950

wg_sw_2950(config)#mac-address-table securehw-addr interface [vlan vlan-id]



Configuring Port Security

Catalyst 2950

wg_sw_2950(config-if)#port security max-mac-count count

wg_sw_2950(config)#interface fa0/1wg_sw_2950(config-if)#port securitywg_sw_2950(config-if)#port security max-mac-count 10



wg_sw_2950#show mac-address-table secure

wg_sw_2950#show port-security

wg_sw_2950#show mac-address-table secure

Non-static Address Table:Destination Address Address Type VLAN Destination Port------------------- ------------ ---- --------------------0003.3333.3333 Secure 1 FastEthernet0/1

Verifying Port Securityon the Catalyst 2950

wg_sw_2950(config-if)#port security action {shutdown | trap}



Executing Adds, Moves, and Changesfor MAC Addresses

Adding a MAC Address

2. Configure port security.

3. Configure the MAC address.

Changing a MAC Address2. Remove MAC address restrictions.

Moving a MAC Address

2. Add the address to a new port.

3. Configure port security on thenew switch.

4. Configure the MAC address to theport allocated for the new user

5. Remove the old port configuration.



Adding a New Switchto the Network

Determine the IP address formanagement purposes.

Configure administrative access forthe console, auxiliary, and virtualterminal (VTY) interfaces.

Configure security for the device.

Configure the access switch portsas necessary.



Clearing NVRAM

Resets the system configuration to factory defaults

wg_sw_2950#erase startup-config

Catalyst 2950



Summary

A Catalyst switch comes with factory default settings thatcan be displayed with the show command.

To configure an IP address and subnet mask on a switch,use the ip address command. To configure a default

gateway, use the ip default-gateway command. Half-duplex transmission uses collision detection. The

faster full-duplex mode is used for directly connecteddevices where collision detection isnt needed.

Use the duplex command to configure switch duplexoptions.

MAC address tables include dynamic, permanent, andstatic addresses. Use the mac-address-table command toset permanent and static addresses.


20/20

Summary (Cont.)

Use the mac-address-table restricted static commandto associate a restricted static address with a particular port.

Secured ports restrict the use of a port to a user-defined

group of stations, set with the port secure command. As your network endpoint topology changes by adding new

devices or interfaces, or moving or changing existing ones,you may need to modify the switch configuration.

The copy command can be used to copy a configurationfrom or to a file server, while the delete nvram commandresets the switch configuration to the factory defaultsettings.

Documents

2934234 34 Configuring a Catalyst Switch