Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cisco LAN Switches.

Published byAdele Carter Modified over 7 years ago

Similar presentations

Presentation on theme: "Cisco LAN Switches."— Presentation transcript:

1 Cisco LAN Switches

2 Cisco 2960 Catalyst Switch Series

3 2960 series switch, with five LEDs on the left, one LED over each port, and a mode button
Number Name Description 1 SYST (system) Implies the overall system status 2 RPS (Redundant Power Supply) Suggests the status of the extra (redundant) power supply 3 STAT (Status) If on (green), implies that each port LED implies that port’s status 4 DUPLX (duplex) If on (green), each port LED implies that port’s duplex (on/green is full; off means half) 5 SPEED If on (green), each port LED implies the speed of that port, as follows: off means 10 Mbps, solid green means 100 Mbps, and flashing green means 1 Gbps. 6 MODE A button that cycles the meaning of the LEDs through three states (STAT, DUPLX, SPEED) 7 Port Has different meanings, depending on the port mode as toggled using the mode button

4 Tera Term Pro The default console port settings on a switch are as follows 9600 bits/second No hardware flow control 8-bit ASCII No parity bits 1 stop bit

5 Tera Term Pro

6 Accessing the CLI with Telnet and SSH
Telnet uses an IP network to send and receive the data, rather than a specialized cable and physical port on the device The switch runs Telnet server software by default, but the switch does need to have an IP address configured so that it can send and receive IP packets Secure Shell (SSH) does the same things as Telnet, but in a more secure manner by using encryption.

7 Passwords Password for CLI Access

8 User and Enable (Privileged) Modes

9 Cisco IOS Software Command Help

10 Key Sequences for Command Edit and Recall

11 debug and show Commands
The show command has a large variety of options, and with those options, you can find the status of almost every feature of Cisco IOS The Debug command asks the switch to continue monitoring different processes in the switch

12 Configuring Cisco IOS

13 Configuration Submodes

14 Common Switch Configuration Modes

15 Storing Switch Configuration Files
RAM: DRAM for Dynamic Random-Access Memory, RAM is used by the switch just as it is used by any other computer for working programs. The running configuration file is stored here. ROM: stores a bootstrap (or boothelper) program that is loaded when the switch first powers on. This bootstrap program then finds the full Cisco IOS image and manages the process of loading it to RAM. Flash memory: Either a chip inside the switch or a removable memory card, Flash memory stores fully functional Cisco IOS images and is the default location where the switch gets its Cisco IOS at boot time. NVRAM: Nonvolatile RAM (NVRAM) stores the initial or startup configuration file that is used when the switch is first powered on and when the switch is reloaded.

16 How Configuration Mode Commands Change the Running-config File, not the Startup-config File

17 Locations for Copying and Results from Copy Operations

18 Getting into Setup Mode

19 Ethernet Switch Configuration

20 Configuring Basic Passwords and a Hostname

21 SSH Configuration Concepts
Step 1 Change the vty lines to use usernames, with either locally configured usernames or an AAA server. In this case, the login local subcommand defines the use of local usernames, replacing the login subcommand in vty configuration mode. Step 2 If formerly disabled, use either the transport input all or transport input telnet ssh command to tell the switch to accept both Telnet and SSH. Step 3 Add one or more username name password pass-value global configuration commands to configure username/password pairs. Step 4 Configure a DNS domain name with the ip domain-name name global configuration command. Step 5 Configure the switch to generate a matched public and private key pair, as well as a share encryption key, using the crypto key generate rsa global configuration command. Step 6 Although no switch commands are required, each SSH client needs a copy of the switch’s public key before the client can connect.

22 SSH Configuration Concepts

23 SSH Configuration

24 SSH Configuration

25 Password Encryption The presence or absence of the service password-encryption global configuration command dictates whether the passwords are encrypted as follows When the service password-encryption command is configured, all existing console, vty, and username command passwords are immediately encrypted. If the service password-encryption command has already been configured, any future changes to these passwords are encrypted. If the no service password-encryption command is used later, the passwords remain encrypted, until they are changed—at which point they show up in clear text.

26 The Two Enable Mode Passwords
A router or switch can be configured to require a password to reach enable mode according to the following rules: If the global configuration command enable password actual-password is used, it defines the password required when using the enable EXEC command. This password is listed as clear text in the configuration file by default. If the global configuration command enable secret actual-password is used, it defines the password required when using the enable EXEC command. This password is listed as a hidden MD5 hash value in the configuration file. If both commands are used, the password set in the enable secret command defines which password is required.

27 Enable Mode Password

28 Banners Banner Typical Use Message of the Day (MOTD)
Shown before the login prompt. For temporary messages that may change from time to time, such as “Router1 down for maintenance at midnight.” Login Shown before the login prompt but after the MOTD banner. For permanent messages such as “Unauthorized Access Prohibited.” Exec Shown after the login prompt. Used to supply information that should be hidden from unauthorized users.

29 Banner Configuration

30 History Buffer

31 logging synchronous and exec timeout
line console 0 login password cisco exec-timeout 0 0 logging synchronous

32 Switch IP Address Step 1 Enter VLAN 1 configuration mode using the interface vlan 1 global configuration command (from any config mode). Step 2 Assign an IP address and mask using the ip address ip-address mask interface subcommand. Step 3 Enable the VLAN 1 interface using the no shutdown interface subcommand. Step 4 Add the ip default-gateway ip-address global command to configure the default gateway.

33 Switch IP Address

34 Switch IP Address DHCP

35 Interface Configuration Basics

36 Port Security Step 1 Make the switch interface an access interface using the switchport mode access interface subcommand. Step 2 Enable port security using the switchport port-security interface subcommand. Step 3 (Optional) Specify the maximum number of allowed MAC addresses associated with the interface using the switchport port-security maximum number interface subcommand. (Defaults to one MAC address.) Step 4 (Optional) Define the action to take when a frame is received from a MAC address other than the defined addresses using the switchport port-security violation {protect | restrict | shutdown} interface ubcommand. (The default action is to shut down the port.) Step 5A Specify the MAC address(es) allowed to send frames into this interface using the switchport port-security mac address mac-address command. Use the command multiple times to define more than one MAC address. Step 5B Alternatively, instead of Step 5A, use the “sticky learning” process to dynamically learn and configure the MAC addresses of currently connected hosts by configuring the switchport port-security macaddress sticky interface subcommand.

37 Port Security

38 VLAN´s

39 VLAN´s Step 1 To configure a new VLAN:
a. From configuration mode, use the vlan vlan-id global configuration command to create the VLAN and move the user into VLAN configuration mode. b. (Optional) Use the name name VLAN subcommand to list a name for the VLAN. If not configured, the VLAN name is VLANZZZZ, where ZZZZ is the four-digit decimal VLAN ID. Step 2 To configure a VLAN for each access interface: a. Use the interface command to move into interface configuration mode for each desired interface. b. Use the switchport access vlan id-number interface subcommand to specify the VLAN number associated with that interface. c. (Optional) To disable trunking so that the switch will not dynamically decide to use trunking on the interface, and it will remain an access interface, use the switchport mode access interface subcommand.

40 Network with One Switch and Two VLANs

41 Configuring VLANs and Assigning Them to Interfaces

42 Securing Unused Switch Interfaces
Administratively disable the interface using the shutdown interface subcommand. Prevent VLAN trunking and VTP by making the port a nontrunking interface using the switchport mode access interface subcommand. Assign the port to an unused VLAN using the switchport access vlan number interface subcommand.

43 Ethernet Switch Troubleshooting

44 Isolating Problems Step 1 PC1 sends the packet to its default gateway (R1) because the destination IP address is in a different subnet. Step 2 R1 forwards the packet to R2 based on R1’s routing table. Step 3 R2 forwards the packet to the web server based on R2’s routing table. Step 4 The web server sends a packet back toward PC1 based on the webserver’s default gateway setting (R2). Step 5 R2 forwards the packet destined for PC1 by forwarding the packet to R1 according to R2’s routing table. Step 6 R1 forwards the packet to PC1 based on R1’s routing table.

45 Cisco Discovery Protocol
CDP discovers several useful details from the neighboring Cisco devices: Device identifier: Typically the hostname Address list: Network and data-link addresses Local interface: The interface on the router or switch issuing the show cdp command with which the neighbor was discovered Port identifier: Text that identifies the port used by the neighboring device to send CDP messages to the local device Capabilities list: Information on what type of device it is (for instance, a router or a switch) Platform: The model and OS level running in the device

46 show cdp Commands That List Information About Neighbors

47 Commands Used to Verify CDP Operations

48 Analyzing Layer 1 and 2 Interface Status

49 show cdp Command Examples: SW2

50 Interface Speed and Duplex Issues
The show interfaces and show interfaces status commands list both the speed and duplex settings on an interface

51 show interfaces status

Download ppt "Cisco LAN Switches."

Similar presentations

Ch. 6 – Switch Configuration CCNA 3 version 3.0. 2 Overview Identify the major components of a Catalyst switch Monitor switch activity and status using.

Ch. 6 – Switch Configuration CCNA 3 version Overview Identify the major components of a Catalyst switch Monitor switch activity and status using.
1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.1 Module 6 Switch Configuration.

1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.1 Module 6 Switch Configuration.
Cisco Router. Overview Understanding and configuring the Cisco Internetwork Operating System (IOS) Connecting to a router Bringing up a router Logging.

Cisco Router. Overview Understanding and configuring the Cisco Internetwork Operating System (IOS) Connecting to a router Bringing up a router Logging.
Introduction to the Cisco IOS

Introduction to the Cisco IOS
Ch. 7 – Switch Configuration

Ch. 7 – Switch Configuration
CCNA Guide to Cisco Networking Fundamentals Fourth Edition

CCNA Guide to Cisco Networking Fundamentals Fourth Edition
Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;

Chapter 9 Managing a Cisco Internetwork Cisco Router Components Bootstrap - Brings up the router during initialization POST - Checks basic functionality;
CCENT Review. Put the following descriptions in order from Layer 7 to Layer 1 and give the name of each layer.

CCENT Review. Put the following descriptions in order from Layer 7 to Layer 1 and give the name of each layer.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Initial Switch Configuration Internetworking Fundamentals Instructor: Abdirahman I. Abdi.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Initial Switch Configuration Internetworking Fundamentals Instructor: Abdirahman I. Abdi.
1 Semester 2 Module 2 Introduction to Routers Yuda college of business James Chen

1 Semester 2 Module 2 Introduction to Routers Yuda college of business James Chen
Sybex CCNA 640-802 Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.

Sybex CCNA Chapter 7: Managing a Cisco Internetwork Instructor & Todd Lammle.
Routers A router is a computer Computers have four basic components:

Routers A router is a computer Computers have four basic components:
1 Chapter 2 ROUTER FUNDAMENTALS By: Tassos Tassou.

1 Chapter 2 ROUTER FUNDAMENTALS By: Tassos Tassou.
1 Semester 2 Module 3 Configuring a Router Yuda college of business James Chen

1 Semester 2 Module 3 Configuring a Router Yuda college of business James Chen
CISCO ROUTER.  The Cisco router IOS  Enhanced editing  Administrative functions  Hostnames  Banners  Passwords  Interface descriptions  Verifying.

CISCO ROUTER.  The Cisco router IOS  Enhanced editing  Administrative functions  Hostnames  Banners  Passwords  Interface descriptions  Verifying.
1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 6 Configuring a Router/ Learning About Other Devices/ Managing Cisco IOS Software.

1 © 2004, Cisco Systems, Inc. All rights reserved. Chapter 6 Configuring a Router/ Learning About Other Devices/ Managing Cisco IOS Software.
Configuring a network os

Configuring a network os
5: Configuring Network Devices

5: Configuring Network Devices
Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.

Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.
Operating Cisco LAN Switches

Operating Cisco LAN Switches

Similar presentations

Ads by Google