Embed Size (px)
Citation preview
1
Switch Configuration
2
Switches
• Contain:–CPU
–RAM
–Operating System
3
LED Indicators
Default setting
4
POST Test & Initial boot Up, and Help
• Console into a switch with the same cable used to console into a router
• Use same settings in Hyperterminal
• Context sensitive help is available from the command line – using the question mark as you would in router help.
5
Catalyst IOS Intro
• User EXEC mode and Privileged EXEC mode.– enable command.
• IOS based switch is just like the router IOS.– configure command – go to global config mode.– copy run start – to save config to NVRAM.
• Host Name configuration -1-255 characters– hostname [name]
• Comment to help identify the interface.– description [description-string] - interface config. mode– Use quotes when using spaces in string.
• IOS-based: same as on a router.– access help by entering ?
6
Default Configuration
• When powered up w/out configuration, the default name is Switch.
• No passwords have been configured.
• All switch ports are part of VLAN 1
• Switch has no IP address
• Show version shows the IOS version and the configuration register.
7
Actual Configuration• First,
– Remove any VLAN info (delete flash: vlan.dat)– Erase startup– Reload
• Follow router configuration method to configure hostname, line passwords, set a default gateway, etc.
• Set IP address for management VLAN1 for telnet access.
• Fast Ethernet ports default to auto-speed and auto-duplex, or they can be set manually.
• Management of a switch can also be done using a GUI interface as long as HTTP service is turned on.
8
Remote Access to Switch
• To telnet, ping, or globally manage the switch:– Enter an IP address and management VLAN.
• Configuration– interface vlan 1 – ip address [address][mask]– ip default-gateway [address]– Verify with show ip interface
9
Defining port speed / duplex
• Speed:– Interface config mode: – speed [10 | 100 | auto]
• Line mode is either full duplex or half duplex.– Interface config mode: – duplex [auto | full | half]– auto option only for fixed Fast Ethernet TX ports.
10
Backup on TFTP Server
• IOS-based commands:– copy run tftp – to save config file to tftp
server.– copy tftp run – to download config from
tftp server to active config and to NVRAM.
11
MAC Address Table
• Switches learn the MAC addresses of workstations that are connected to their switch ports by examining the source address of frames that are received on that port – then they are placed in a MAC table.
• If no frames are seen with a previously learned address, the MAC address entry is automatically discarded or aged out after 300 seconds.
12
Static MAC addresses
• If entered by an admin, it will be permanent and not age out or be cleared out by powering down the switch.
• The node has to be attached to the switch.
13
Port Security• Anyone can plug in if they are in the open
• Port security can be set on an interface – so that, for instance, the number of MAC addresses that can be learned on any one interface could be 1.
• Port security can be verified with:Show port security
Note commands available
14
Adding a Switch
15
MAC Addresses
![Configuring Access Control Lists...3. switch(config-acl)#[sequence-number]{permit|deny}protocolsourcedestination 4. (Optional)switch(config-acl)#statistics 5. (Optional)switch#show{ip|ipv6}access-listsname](https://img.pdfslide.us/doc/110x75/6138cac90ad5d20676497a43/configuring-access-control-lists-3-switchconfig-aclsequence-numberpermitdenyprotocolsourcedestination.jpg)
![Configuring SSH and Telnet - Cisco · Step2 switch(config)#no feature ssh DisablestheSSHserver. Step3 switch(config)#no ssh key [dsa |rsa] DeletestheSSHserverkey. ThedefaultistodeletealltheSSHkeys](https://img.pdfslide.us/doc/110x75/6139042aa4cdb41a985b6ed3/configuring-ssh-and-telnet-cisco-step2-switchconfigno-feature-ssh-disablesthesshserver.jpg)
