Re: free online catalyst lab [7:3270]

C555 Sat, 05 May 2001 13:49:23 -0700
Neal,

Thanks for the use of the kit. I have now configured a scenario and all is
working.  Here is the challenge for those who want to have a go, config is
included for those who get stuck:

1 x Cat Switch , ISL capable
1 x Router , ISL capable
2 x Routers

Blow away the configs on the Cat and Routers. You won't loose access as you
connect via the console ports. Set router and Cat prompts.

All routers connect to the switch. Use CDP to discover where.

Configure the 2 routers as IP Hosts (no ip routing), each router to be in a
seperate VLAN.

Configure the ISL capable router for inter-vlan routing between the two IP
hosts (the 2 routers).

Put the Catalyst switch into the same VLAN as either host 1 or host 2
(router 1 or router 2).

Check you have full IP connectivity by pinging from the catalyst to the ISL
router and the other two IP hosts (routers).

Extras:

The Catalyst should have a ststaic cam entry for IP Host 1 (router 1)
Set SNMP parameters, include the enabling of traps.
Any ports not in use should not be in VLAN1 or any VLAN that is active.
Set the system time on the Cat.
Practice the command for sending the Cat config to a TFTP server and then
back again (won't actually work as there is no TFTP server).
Use sh ip route, show arp, sh cam static, sh cam dynamic on the Cat - what
is each telling you.
Use show vlan on the ISL router.
Use debug arp and IP packet detail, on all the routers.  What happens when
you change the Cat sc0 interface into another VLAN, do pings work straight
away.
How can you ensure the Cat is will be the root bridge if another Cat is
added to the network.
How can you ensure VTP does not  wipe out  another Cat if added to the
network.
Set the Cat so your session never logs out.
Set port security on one port - how can it dynamically learn. How can you
test this to prove it works and shuts the port down?
Configure a port for a protocol analyser to look at Receive traffic on one
of the VLANS.
Enable the switch for IP multicasting.


Configs below:









Cat:
sh conf
.....
.........
.........
..

begin
set password $1$FMFQ$HfZR5DUszVHIRhrz4h6V70
set enablepass $1$FMFQ$HfZR5DUszVHIRhrz4h6V70
set prompt cat2926T>
set length 24 default
set logout 0
set banner motd ^C^C
!
#system
set system baud  9600
set system modem disable
set system name  Cat2926T
set system location on_the_internet_somewhere
set system contact  [EMAIL PROTECTED]
!
#snmp
set snmp community read-only      can_read
set snmp community read-write     can_write
--More--        set snmp community read-write-all can_do_all
set snmp rmon disable
set snmp trap enable  module
set snmp trap enable  chassis
set snmp trap enable  bridge
set snmp trap enable  repeater
set snmp trap enable  vtp
set snmp trap enable  auth
set snmp trap enable  ippermit
set snmp trap enable  vmps
set snmp trap 10.10.10.10     can_read
!
#ip
set interface sc0 2 10.1.1.253 255.255.255.0 10.1.1.255

set interface sl0 0.0.0.0 0.0.0.0
set arp agingtime 1200
set ip redirect   enable
set ip unreachable   enable
set ip fragmentation enable
set ip route 0.0.0.0         10.1.1.254      1
set ip alias default         0.0.0.0
!
--More--        #Command alias
!
#vmps
set vmps server retry 3
set vmps server reconfirminterval 60
set vmps tftpserver 0.0.0.0 vmps-config-database.1
set vmps state disable

!
#dns
set ip dns disable
!
#tacacs+
set tacacs attempts 3
set tacacs directedrequest disable
set tacacs timeout 5
set authentication login tacacs disable
set authentication login local enable
set authentication enable tacacs disable
set authentication enable local enable
!
#bridge
set bridge ipx snaptoether   8023raw
--More--        set bridge ipx 8022toether   8023
set bridge ipx 8023rawtofddi snap
!
#vtp
set vtp domain Craig
set vtp mode transparent
set vtp v2 disable
set vtp pruneeligible 2-1000
clear vtp pruneeligible 1001-1005
set vlan 1 name default type ethernet mtu 1500 said 100001 state active
set vlan 2 name Sales type ethernet mtu 1500 said 100002 state active
set vlan 3 name Engineering type ethernet mtu 1500 said 100003 state active
set vlan 99 name SPARE type ethernet mtu 1500 said 100099 state suspend
set vlan 1002 name fddi-default type fddi mtu 1500 said 101002 state active
set vlan 1004 name fddinet-default type fddinet mtu 1500 said 101004 state
activ
e bridge 0x0 stp ieee
set vlan 1005 name trnet-default type trbrf mtu 1500 said 101005 state
active br
idge 0x0 stp ibm
set vlan 1003 name token-ring-default type trcrf mtu 1500 said 101003 state
acti
ve parent 0 ring 0x0 mode srb aremaxhop 7 stemaxhop 7
set interface sc0 2 10.1.1.253 255.255.255.0 10.1.1.255

!
#spantree
#uplinkfast groups
set spantree uplinkfast disable
--More--        #vlan 1
set spantree enable     1
set spantree fwddelay 15    1
set spantree hello    2     1
set spantree maxage   20    1
set spantree priority 32768 1
#vlan 2
set spantree enable     2
set spantree fwddelay 15    2
set spantree hello    2     2
set spantree maxage   20    2
set spantree priority 8192  2
#vlan 3
set spantree enable     3
set spantree fwddelay 15    3
set spantree hello    2     3
set spantree maxage   20    3
set spantree priority 32768 3
#vlan 99
set spantree enable     99
set spantree fwddelay 15    99
set spantree hello    2     99
set spantree maxage   20    99
--More--        set spantree priority 32768 99
#vlan 1003
set spantree enable     1003
set spantree fwddelay 4     1003
set spantree hello    2     1003
set spantree maxage   10    1003
set spantree priority 32768 1003
set spantree portstate 1003 auto 0
set spantree portcost 1003 80
set spantree portpri  1003 4
set spantree portfast 1003 disable
#vlan 1005
set spantree enable     1005
set spantree fwddelay 4     1005
set spantree hello    2     1005
set spantree maxage   10    1005
set spantree priority 32768 1005
set spantree multicast-address 1005 ieee
!
#cgmp
set cgmp disable
set cgmp leave disable
!
--More--        #syslog
set logging console enable
set logging server disable
set logging level cdp 2 default
set logging level cgmp 2 default
set logging level disl 5 default
set logging level dvlan 2 default
set logging level earl 2 default
set logging level fddi 2 default
set logging level ip 2 default
set logging level pruning 2 default
set logging level snmp 2 default
set logging level spantree 2 default
set logging level sys 5 default
set logging level tac 2 default
set logging level tcp 2 default
set logging level telnet 2 default
set logging level tftp 2 default
set logging level vtp 2 default
set logging level vmps 2 default
set logging level kernel 2 default
set logging level filesys 2 default
set logging level drip 2 default
--More--        set logging level pagp 5 default
!
#ntp
set ntp broadcastclient disable
set ntp broadcastdelay 3000
set ntp client disable
clear timezone
set summertime disable
!
#permit list
set ip permit disable
!
#drip
set tokenring reduction enable
set tokenring distrib-crf disable
!
#module 1 : 2-port 100BaseTX Supervisor
set module name    1
set vlan 2    1/1
set vlan 99   1/2
set port channel 1/1-2 off
set port channel 1/1-2 auto
set port enable     1/1-2
--More--        set port level      1/1-2  normal
set port duplex     1/1-2  half
set port trap       1/1-2  enable
set port name       1/1-2
set port security   1/1-2  disable
set port broadcast  1/1-2  100%
set port membership 1/1-2  static
set cdp enable   1/1-2
set cdp interval 1/1-2 60
set trunk 1/1  nonegotiate 1-1005
set trunk 1/2  auto 1-1005
set spantree portfast    1/1-2 disable
set spantree portcost    1/1-2 19
set spantree portpri     1/1-2 32
set spantree portvlanpri 1/1  0
set spantree portvlanpri 1/2  0
set spantree portvlancost 1/1  cost 18
set spantree portvlancost 1/2  cost 18
!
#module 2 : 24-port 10/100BaseTX Ethernet
set module name    2
set module enable  2
set vlan 2    2/1
--More--        set vlan 3    2/24
set vlan 99   2/2-22
set port enable     2/1-24
set port level      2/1-24  normal
set port speed      2/2-11,2/13-23  auto
set port speed      2/12  100
set port speed      2/1,2/24  10
set port duplex     2/12  full
set port duplex     2/1,2/24  half
set port trap       2/1-24  enable
set port name       2/1-24
set port security   2/1-24  disable
set port broadcast  2/1-24  0
set port membership 2/1-24  static
set cdp enable   2/1-24
set cdp interval 2/1-24 60
set spantree portfast    2/1-24 disable
set spantree portcost    2/1  100
set spantree portcost    2/2  100
set spantree portcost    2/3  100
set spantree portcost    2/4  100
set spantree portcost    2/5  100
set spantree portcost    2/6  100
--More--        set spantree portcost    2/7  100
set spantree portcost    2/8  100
set spantree portcost    2/9  100
set spantree portcost    2/10 100
set spantree portcost    2/11 100
set spantree portcost    2/13 100
set spantree portcost    2/14 100
set spantree portcost    2/15 100
set spantree portcost    2/16 100
set spantree portcost    2/17 100
set spantree portcost    2/18 100
set spantree portcost    2/19 100
set spantree portcost    2/20 100
set spantree portcost    2/21 100
set spantree portcost    2/22 100
set spantree portcost    2/23 100
set spantree portcost    2/24 100
set spantree portcost    2/12 19
set spantree portpri     2/1-24 32
!
#switch port analyzer
set span 2/24 2/23 rx
!
--More--        #cam
set cam agingtime 1-3,99,1003,1005 300
end

ISL Router:

uilding configuration...

Current configuration:
!
version 11.3
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname c4500
!
!
ip tcp synwait-time 5
no ip domain-lookup
!
!
interface Ethernet0
 no ip address
 shutdown
 media-type 10BaseT
!
interface Ethernet1
 no ip address
 shutdown
 --More--          media-type 10BaseT
!
interface Fddi0
 no ip address
 no keepalive
 shutdown
!
interface FastEthernet0
 description ISL Trunk to Cat 2926T (Port 2/12)
 no ip address
 full-duplex
!
interface FastEthernet0.2
 description VLAN2 - Sales
 encapsulation isl 2
 ip address 10.1.1.254 255.255.255.0
 no ip redirects
!
interface FastEthernet0.3
 encapsulation isl 3
 ip address 10.1.2.254 255.255.255.0
 no ip redirects
!
 --More--         ip classless
!
alias exec ib show ip int brief
!
line con 0
 exec-timeout 0 0
 logging synchronous
line aux 0
 exec-timeout 0 0
 logging synchronous
line vty 0 4
 exec-timeout 0 0
 logging synchronous
 login
!
end


Router 1:


sh run
Building configuration...

Current configuration:
!
version 12.0
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname c2610
!
logging buffered 4096 debugging
!
ip subnet-zero
no ip routing
ip tcp synwait-time 5
no ip domain-lookup
!
!
!
interface Ethernet0/0
 description VLAN2-Sales (Connected to Cat Port 2/1)
 ip address 10.1.1.252 255.255.255.0
 no ip directed-broadcast
 --More--          no ip route-cache
 no ip mroute-cache
!
ip default-gateway 10.1.1.254
ip classless
!
alias exec ib show ip int brief
!
line con 0
 exec-timeout 0 0
 logging synchronous
 transport input none
line aux 0
 exec-timeout 0 0
 logging synchronous
line vty 0 4
 exec-timeout 0 0
 logging synchronous
 login
!
no scheduler allocate
end

Router 2:

sh run
Building configuration...

Current configuration:
!
version 11.3
no service pad
no service password-encryption
!
hostname c3810
!
!
no ip routing
ip tcp synwait-time 5
no ip domain-lookup
!
!
controller T1 0
!
interface Ethernet0
 description VLAN3-Engineering (Connected to Cat Port 2/24)
 ip address 10.1.2.252 255.255.255.0
 no ip route-cache
 no ip mroute-cache
!
 --More--         interface Serial0
 no ip address
 no ip route-cache
 shutdown
!
interface Serial1
 no ip address
 no ip route-cache
 shutdown
!
interface Serial2
 no ip address
 no ip route-cache
 shutdown
!
ip default-gateway 10.1.2.254
ip classless
logging buffered 4096 debugging
alias exec ib show ip int brief
!
line con 0
 exec-timeout 0 0
 logging synchronous
 --More--         line aux 0
 exec-timeout 0 0
 logging synchronous
line vty 0 4
 exec-timeout 0 0
 logging synchronous
 login
!
!
end




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=3330&t=3270
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: free online catalyst lab [7:3270]

Reply via email to
