guia switch

Click here to load reader

Post on 06-Sep-2014

126 views

Category:

Documents

2 download

Embed Size (px)

TRANSCRIPT

CCNP 3 Gua SWITCH v1.0

Topologa ................................................................................................................................... 2 DTP ............................................................................................................................................ 3 Creacin y Administracin de VLANs...................................................................................... 9 Asignacin VLANs TRUNK ................................................................................................... 11 Agregar VLANS adicionales al TRUNK ................................................................................ 16 Suprimir VLANs al TRUNK ................................................................................................... 18 Remover todas las VLANs de un enlace TRUNK .................................................................. 20 VTP I ....................................................................................................................................... 22 Private VLANs nico Switch .................................................................................................. 24 Private-VLANs pruebas de conectividad. ............................................................................... 28 Private VLANs Multiples Switchs .......................................................................................... 30 Private-VLANs pruebas de conectividad. ............................................................................... 35 Port Protected........................................................................................................................... 39 Etherchannel ............................................................................................................................ 42 Load-Shared Etherchannel....................................................................................................... 47 Etherchannel L3 ....................................................................................................................... 52 VTP II ...................................................................................................................................... 53 STP Comportamiento por defecto ........................................................................................... 57 STP Configuracin. ................................................................................................................. 63 STP BPDU Guard .................................................................................................................... 71 FLEX Link ............................................................................................................................... 72 STP Multiple Spanning Tree MST 802.1s .............................................................................. 77

@ NMT 2012

1

CCNP 3 Gua SWITCH v1.0

Topologa

@ NMT 2012

2

CCNP 3 Gua SWITCH v1.0

DTPConfigure ISL trunk entre DLS1 y DLS2 cumpliendo las siguientes polticas: DLS1 FastEthernet0/11 modo trunk: negociacin de trunk con puerto Fastethernet0/11 de DLS2 DLS1 FastEthernet0/11 modo dynamic auto: puerto pasivo que negocia siempre que puerto extremo FastEthernet0/11 de DLS1 sea trunk o dynamic desirable. Bajo este escenario no es necesario configurar la interface f0/11 de DSL2 puesto que por defecto tiene el modo dynamic auto. DLS1 interface FastEthernet0/11 switchport trunk encapsulation isl switchport mode trunk DLS1#show interfaces fastEthernet 0/11 switchport Name: Fa0/11 Switchport: Enabled Administrative Mode: trunk Operational Mode: trunk Administrative Trunking Encapsulation: isl Operational Trunking Encapsulation: isl DLS2#show interfaces fastEthernet 0/11 switchport Name: Fa0/11 Switchport: Enabled Administrative Mode: dynamic auto Operational Mode: trunk Administrative Trunking Encapsulation: negotiate Operational Trunking Encapsulation: isl DLS1#sh interfaces fastEthernet 0/11 trunk Port Mode Encapsulation Status Native vlan Fa0/11 on isl trunking 1 Port Vlans allowed on trunk Fa0/11 1-4094 Port Vlans allowed and active in management domain Fa0/11 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/11 1 DLS2#show interfaces fastEthernet 0/11 trunk Port Mode Encapsulation Status Native vlan Fa0/11 auto n-isl trunking 1 Port Vlans allowed on trunk Fa0/11 1-4094 Port Vlans allowed and active in management domain Fa0/11 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/11 1

isl = config. Estatica n-isl= negociacin

@ NMT 2012

3

CCNP 3 Gua SWITCH v1.0

Configure ISL trunk entre DLS1 y DLS2 cumpliendo las siguientes polticas: DLS1 FastEthernet0/12 modo dynamic desirable: negocia activamente la formacin del trunk con Fastethernet0/12 de DLS2 DLS1 FastEthernet0/11 modo dynamic auto: puerto pasivo que negocia siempre que puerto extremo FastEthernet0/11 de DLS1 sea trunk o dynamic desirable.

DLS1 interface FastEthernet0/12 switchport mode dynamic desirable DLS1#sh interfaces fastEthernet 0/12 switchport Name: Fa0/12 Switchport: Enabled Administrative Mode: dynamic desirable Operational Mode: trunk Administrative Trunking Encapsulation: negotiate Operational Trunking Encapsulation: isl DLS1#show interfaces fastEthernet 0/12 trunk Port Mode Encapsulation Status Native vlan Fa0/12 desirable n-isl trunking 1 Port Vlans allowed on trunk Fa0/12 1-4094 Port Vlans allowed and active in management domain Fa0/12 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/12 none DLS2#show interfaces fastEthernet 0/12 switchport Name: Fa0/12 Switchport: Enabled Administrative Mode: dynamic auto Operational Mode: trunk Administrative Trunking Encapsulation: negotiate Operational Trunking Encapsulation: isl Negotiation of Trunking: On DLS2#show interfaces fastEthernet 0/12 trunk Port Mode Encapsulation Status Native vlan Fa0/12 auto n-isl trunking 1 Port Vlans allowed on trunk Fa0/12 1-4094 Port Vlans allowed and active in management domain Fa0/12 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/12 1

@ NMT 2012

4

CCNP 3 Gua SWITCH v1.0

DLS2#show interfaces fastEthernet 0/12 switchport Name: Fa0/12 Switchport: Enabled Administrative Mode: dynamic auto Operational Mode: trunk Administrative Trunking Encapsulation: negotiate Operational Trunking Encapsulation: isl Negotiation of Trunking: On

Configurar DLS1 y DLS2 en los distintos modos DTP de acuerdo a la siguiente tabla. Y comprobar resultados.

Modos DTPDynamic Dynamic Auto Desirble Dynamic Auto Dynamic Desirable Trunk Access Acces Trunk Trunk Access Trunk Trunk Trunk Access Trunk Trunk Trunk Trunk Limited Conectivity Access Access Access Limited Conectivity Access

Deshabilite DTP entre DLS1 y DLS2

Nota Con el comando switchport nonegotiate se logra este comportamiento.

DLS2 default interface range fastEthernet 0/11-12 interface FastEthernet0/11 switchport trunk encapsulation isl switchport mode trunk switchport nonegotiate interface FastEthernet0/12 switchport trunk encapsulation isl switchport mode trunk switchport nonegotiate DLS2#show interfaces trunk Port Mode Encapsulation Status Native vlan Fa0/11 on isl trunking 1 Fa0/12 on isl trunking 1 Port Vlans allowed on trunk Fa0/11 1-4094 Fa0/12 1-4094 Port Vlans allowed and active in management domain Fa0/11 [email protected] NMT 2012

5

CCNP 3 Gua SWITCH v1.0

Fa0/12 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/11 1 Fa0/12 1 DLS1 default interface range fastEthernet 0/11-12 interface FastEthernet0/11 switchport trunk encapsulation isl switchport mode trunk switchport nonegotiate interface FastEthernet0/12 switchport trunk encapsulation isl switchport mode trunk switchport nonegotiate DLS1#sh interfaces fastEthernet 0/11 switchport Name: Fa0/11 Switchport: Enabled Administrative Mode: trunk Operational Mode: trunk Administrative Trunking Encapsulation: isl Operational Trunking Encapsulation: isl Negotiation of Trunking: Off DLS1#show interfaces trunk Port Mode Encapsulation Status Native vlan Fa0/11 on isl trunking 1 Fa0/12 on isl trunking 1 Port Vlans allowed on trunk Fa0/11 1-4094 Fa0/12 1-4094 Port Vlans allowed and active in management domain Fa0/11 1 Fa0/12 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/11 1 Fa0/12 none

Configurar 802.1q entre los enlaces DLS1-ALS1, DLS1-ALS2, DLS2-ALS1, y DLS2-ALS2. Los switchs de acceso deben aprender dinmicamente el trunk.

DLS1 default interface range fastEthernet 0/7-10 interface FastEthernet0/7 switchport trunk encapsulation dot1q switchport mode trunk

@ NMT 2012

6

CCNP 3 Gua SWITCH v1.0

interface FastEthernet0/8 switchport trunk encapsulation dot1q switchport mode trunk interface FastEthernet0/9 switchport trunk encapsulation dot1q switchport mode trunk interface FastEthernet0/10 switchport trunk encapsulation dot1q switchport mode trunk DLS1#sh interfaces fastEthernet 0/7 trunk Port Mode Encapsulation Status Native vlan Fa0/7 on 802.1q trunking 1 Port Vlans allowed on trunk Fa0/7 1-4094 Port Vlans allowed and active in management domain Fa0/7 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/7 1 DLS2 default interface range fastEthernet 0/7-10 interface range fastEthernet 0/7-10 switchport trunk encapsulation dot1q switchport mode trunk default interface range fastEthernet 0/11-12 DLS2#show interfaces fastEthernet 0/10 trunk Port Mode Encapsulation Status Native vlan Fa0/10 on 802.1q trunking 1 Port Vlans allowed on trunk Fa0/10 1-4094 Port Vlans allowed and active in management domain Fa0/10 1 Port Vlans in spanning tree forwarding state and not pruned Fa0/10 none

ALS1 y ALS2 deben formar trunk utilizando 802.1q. No se permite DTP entre estos Switches.

Nota