8/14/2019 2934234 34 Configuring a Catalyst Switch
1/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-1
2002, Cisco Systems, Inc. All rights reserved. 1
Configuring a Catalyst Switch
8/14/2019 2934234 34 Configuring a Catalyst Switch
2/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-2
Objectives
Upon completing this lesson, you will beable to:
Verify the default configuration of the device,
given a functioning access layer switch Configure the switch management IP address
and the default gateway, given a functioningaccess layer switch and an IP addressing
scheme
Execute an add, move, or change on an accesslayer switch, given a new network requirement
8/14/2019 2934234 34 Configuring a Catalyst Switch
3/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-3
IP address: 0.0.0.0
CDP: enabled
100baseT port: autonegotiate duplex mode
Spanning tree: enabled
Console password: none
Catalyst 1900 and 2950 DefaultConfiguration
8/14/2019 2934234 34 Configuring a Catalyst Switch
4/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-4
wg_sw_2950#show run
Building configuration...Current configuration:!!interface FastEthernet0/1
!interface FastEthernet0/2
wg_sw_2950#show vlan
VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4,
Fa0/5, Fa0/6, Fa0/7, Fa0/8,Fa0/9, Fa0/10, Fa0/11, Fa0/12,Fa0/13, Fa0/14, Fa0/15, Fa0/16,Fa0/17, Fa0/18, Fa0/19, Fa0/20,Fa0/21, Fa0/22, Fa0/23, Fa0/24
Port Names onCatalyst 2950 Switches
8/14/2019 2934234 34 Configuring a Catalyst Switch
5/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-5
Configuring theSwitch IP Address
wg_sw_2950(config)#interface vlan 1wg_sw_2950(config-if)#ip address 10.5.5.11 255.255.255.0
wg_sw_2950(config-if)#ip address {ip_address} {mask}
Configures an IP address and subnet mask for the switch VLAN1 interface
Catalyst 2950
8/14/2019 2934234 34 Configuring a Catalyst Switch
6/20
2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-6
wg_sw_a(config)#ip default-gateway {ip address} Configures the switch default gateway for the Catalyst 1900
and 2950 switches
Configuring the Switch DefaultGateway
wg_sw_a(config)#ip default-gateway 10.5.5.3
8/14/2019 2934234 34 Configuring a Catalyst Switch
7/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-7
Showing the Switch IP Address
Catalyst 2950
wg_sw_2950#show interface vlan 1Vlan1 is up, line protocol is upHardware is Cat5k Virtual Ethernet, address is 0010.f6a9.9800 (bia 0010.f6a9.9800)Internet address is 172.16.80.79/24Broadcast address is 255.255.255.255. . .
wg_sw_2950#
8/14/2019 2934234 34 Configuring a Catalyst Switch
8/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-8
Duplex Overview
Half Duplex (CSMA/CD)
Unidirectional data flow
Higher potential for collision
Hubs connectivity
Full Duplex
Point-to-point only
Attached to dedicated switched port Requires full-duplex support on both ends
Collision-free
Collision detect circuit disabled
8/14/2019 2934234 34 Configuring a Catalyst Switch
9/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-9
Setting Duplex Options
Catalyst 2950
wg_sw_2950(config)#interface fa0/1wg_sw_2950(config-if)#duplex {auto | full | half}
8/14/2019 2934234 34 Configuring a Catalyst Switch
10/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-10
Showing Duplex Options
Switch#show interfaces fastethernet0/3
FastEthernet0/3 is up, line protocol is downHardware is Fast Ethernet, address is 0000.0000.0003 (bia 0000.0000.0003)MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255Encapsulation ARPA, loopback not setKeepalive set (10 sec)
Half-duplex, 10Mb/sinput flow-control is off, output flow-control is offARP type: ARPA, ARP Timeout 04:00:00Last input never, output never, output hang neverLast clearing of "show interface" counters neverQueueing strategy: fifoOutput queue 0/40, 0 drops; input queue 0/75, 0 drops5 minute input rate 0 bits/sec, 0 packets/sec5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no bufferReceived 0 broadcasts, 0 runts, 0 giants, 0 throttles0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored0 input packets with dribble condition detected0 packets output, 0 bytes, 0 underruns0 output errors, 0 collisions, 2 interface resets0 babbles, 0 late collision, 0 deferred0 lost carrier, 0 no carrier0 output buffer failures, 0 output buffers swapped out
8/14/2019 2934234 34 Configuring a Catalyst Switch
11/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-11
Managing the MAC Address Table
Catalyst 2950
wg_sw_2950#show mac-address-tableDynamic Address Count: 1Secure Address Count: 0
Static Address (User-defined) Count: 0System Self Address Count: 25Total MAC addresses: 26 Maximum MAC addresses: 8192Non-static Address Table:Destination Address Address Type VLAN Destination Port------------------- ------------ ---- --------------------0050.0f02.3372 Dynamic 1 FastEthernet0/2
8/14/2019 2934234 34 Configuring a Catalyst Switch
12/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-12
Setting a Permanent MAC Address
wg_sw_2950(config)#mac-address-table staticmac_addr {vlan vlan_id} [interface int1 [int2 ... int15]]
Catalyst 2950 only
8/14/2019 2934234 34 Configuring a Catalyst Switch
13/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-13
wg_sw_2950#mac-address-table secure 0003.3333.3333 fa 0/1 vlan 1wg_sw_2950#show mac-address-tableDynamic Address Count: 1Secure Address Count: 1Static Address (User-defined) Count: 1System Self Address Count: 25Total MAC addresses: 28 Maximum MAC addresses: 8192Non-static Address Table:Destination Address Address Type VLAN Destination Port
------------------- ------------ ---- --------------------0050.0f02.3372 Dynamic 1 FastEthernet0/20003.3333.3333 Secure 1 FastEthernet0/1Static Address Table:Destination Address VLAN Input Port Output Ports------------------- ---- ---------- -----------------------2222.2222.2222 1 ALL Fa0/1
Setting a Restricted Static MACAddress on the Catalyst 2950
wg_sw_2950(config)#mac-address-table securehw-addr interface [vlan vlan-id]
8/14/2019 2934234 34 Configuring a Catalyst Switch
14/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-14
Configuring Port Security
Catalyst 2950
wg_sw_2950(config-if)#port security max-mac-count count
wg_sw_2950(config)#interface fa0/1wg_sw_2950(config-if)#port securitywg_sw_2950(config-if)#port security max-mac-count 10
8/14/2019 2934234 34 Configuring a Catalyst Switch
15/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-15
wg_sw_2950#show mac-address-table secure
wg_sw_2950#show port-security
wg_sw_2950#show mac-address-table secure
Non-static Address Table:Destination Address Address Type VLAN Destination Port------------------- ------------ ---- --------------------0003.3333.3333 Secure 1 FastEthernet0/1
Verifying Port Securityon the Catalyst 2950
wg_sw_2950(config-if)#port security action {shutdown | trap}
8/14/2019 2934234 34 Configuring a Catalyst Switch
16/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-16
Executing Adds, Moves, and Changesfor MAC Addresses
Adding a MAC Address
2. Configure port security.
3. Configure the MAC address.
Changing a MAC Address2. Remove MAC address restrictions.
Moving a MAC Address
2. Add the address to a new port.
3. Configure port security on thenew switch.
4. Configure the MAC address to theport allocated for the new user
5. Remove the old port configuration.
8/14/2019 2934234 34 Configuring a Catalyst Switch
17/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-17
Adding a New Switchto the Network
Determine the IP address formanagement purposes.
Configure administrative access forthe console, auxiliary, and virtualterminal (VTY) interfaces.
Configure security for the device.
Configure the access switch portsas necessary.
8/14/2019 2934234 34 Configuring a Catalyst Switch
18/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-18
Clearing NVRAM
Resets the system configuration to factory defaults
wg_sw_2950#erase startup-config
Catalyst 2950
8/14/2019 2934234 34 Configuring a Catalyst Switch
19/20 2002, Cisco Systems, Inc. All rights reserved. ICND v2.03-19
Summary
A Catalyst switch comes with factory default settings thatcan be displayed with the show command.
To configure an IP address and subnet mask on a switch,use the ip address command. To configure a default
gateway, use the ip default-gateway command. Half-duplex transmission uses collision detection. The
faster full-duplex mode is used for directly connecteddevices where collision detection isnt needed.
Use the duplex command to configure switch duplexoptions.
MAC address tables include dynamic, permanent, andstatic addresses. Use the mac-address-table command toset permanent and static addresses.
8/14/2019 2934234 34 Configuring a Catalyst Switch
20/20
Summary (Cont.)
Use the mac-address-table restricted static commandto associate a restricted static address with a particular port.
Secured ports restrict the use of a port to a user-defined
group of stations, set with the port secure command. As your network endpoint topology changes by adding new
devices or interfaces, or moving or changing existing ones,you may need to modify the switch configuration.
The copy command can be used to copy a configurationfrom or to a file server, while the delete nvram commandresets the switch configuration to the factory defaultsettings.