LAN Switching

Module 3: LAN Switching
2011 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Core Layer
Distribution Layer
Access Layer
Cisco Confidential
Cisco Confidential
Cisco Confidential
Cisco Confidential
Cut-Through Switch checks destination address and immediately begins forwarding frame.
Store and Forward Complete frame is received and checked before forwarding.
Fragment-Free Switch checks the first 64 bytes, then immediately begins forwarding frame.
Cisco Confidential
Initial MAC address table is empty.
Cisco Confidential
Station A sends a frame to station C. Switch caches the MAC address of station A to port E0 by learning the source address of data frames.
The frame from station A to station C is flooded out to all ports except port E0 (unknown unicasts are flooded).
2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Station D sends a frame to station C.

Switch caches the MAC address of station D to port E3 by learning the source address of data frames. The frame from station D to station C is flooded out to all ports except port E3 (unknown unicasts are flooded).
Station A sends a frame to station C. Destination is known; frame is not flooded.

Station D sends a broadcast or multicast frame. Broadcast and multicast frames are flooded to all ports other than the originating port.
Cisco Confidential
12
Unbounded failure domains

Large broadcast domains Large amount of unknown MAC unicast traffic Unbounded multicast traffic Management and support challenges Possible security vulnerabilities
Cisco Confidential
13
Segmentation Flexibility Security
VLAN = Broadcast Domain = Logical Network (Subnet)

Cisco Confidential
15
Each logical VLAN is like a separate physical bridge.
VLANs can span across multiple switches.

Trunks carry traffic for multiple VLANs. Trunks use special encapsulation to distinguish between different VLANs.
16
Cisco Confidential
Cisco Confidential
17
Cisco Confidential
18
Cisco Confidential
19
Cisco Confidential
20
Cisco Confidential
21
Create VLANs Modify VLANs
Delete VLANs
Sends and forwards advertisements Synchronizes
Cannot create, change, or delete VLANs
Create local VLANs only Modify local VLANs only Delete local VLANs only
Sends and forwards advertisements

Synchronizes
Forwards advertisements
Does not synchronize
Cisco Confidential
22
VTP advertisements are sent as multicast frames. VTP servers and clients are synchronized to the latest revision number. VTP advertisements are sent every 5 minutes or when there is a change.
Cisco Confidential
23
Cisco Confidential
24
1. 2. 3. 4.
Configure and verify VTP.
Configure and verify 802.1Q trunks.

Create or modify a VLAN on the VTP server switch. Assign switch ports to a VLAN and verify.
5.
6.
Execute adds, moves, and changes.

Save the VLAN configuration.
Cisco Confidential
25
VTP defaults for the Cisco Catalyst switch:

VTP domain name: None
VTP mode: Server mode VTP pruning: Enabled or disabled (model specific) VTP password: Null
VTP version: Version 1
A new switch can automatically become part of a domain once receives an advertisement from a server. A VTP client can overwrite a VTP server database if the client has a higher revision number. A domain name cannot be removed after it is assigned; it can only be reassigned.
Cisco Confidential
26
SwitchX# configure terminal SwitchX(config)# vtp mode [ server | client | transparent ] SwitchX(config)# vtp domain domain-name SwitchX(config)# vtp password password SwitchX(config)# vtp pruning SwitchX(config)# end
Cisco Confidential
27
SwitchX(config)# vtp domain ICND Changing VTP domain name to ICND SwitchX(config)# vtp mode transparent Setting device to VTP TRANSPARENT mode. SwitchX(config)# end SwitchX# show vtp status VTP Version : 2 Configuration Revision : 0 Maximum VLANs supported locally : 64 Number of existing VLANs : 17 VTP Operating Mode : Transparent VTP Domain Name : ICND VTP Pruning Mode : Disabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0x7D 0x6E 0x5E 0x3D 0xAF 0xA0 0x2F 0xAA Configuration last modified by 10.1.1.4 at 3-3-93 20:08:05 SwitchX#
Cisco Confidential
28
SwitchX(config-if)# switchport mode {access | dynamic {auto | desirable} | trunk} Configures the trunking characteristics of the port
SwitchX(config-if)# switchport mode trunk Configures the port as a VLAN trunk
Cisco Confidential
29
SwitchX# show interfaces interface [switchport | trunk] SwitchX# show interfaces fa0/11 switchport Name: Fa0/11 Switchport: Enabled Administrative Mode: trunk Operational Mode: down Administrative Trunking Encapsulation: dot1q Negotiation of Trunking: On Access Mode VLAN: 1 (default) Trunking Native Mode VLAN: 1 (default) . . . SwitchX# show interfaces fa0/11 trunk Port Fa0/11 Port Fa0/11 Port Fa0/11 Mode desirable Encapsulation 802.1q Status trunking Native vlan 1
Vlans allowed on trunk 1-4094 Vlans allowed and active in management domain 1-13
Cisco Confidential 30
The maximum number of VLANs is switch-dependent. Most Cisco Catalyst desktop switches support 128 separate spanningtree instances, one per VLAN. VLAN 1 is the factory default Ethernet VLAN. Cisco Discovery Protocol and VTP advertisements are sent on VLAN 1. The Cisco Catalyst switch IP address is in the management VLAN (VLAN 1 by default). If using VTP, the switch must be in VTP server or transparent mode to add or delete VLANs.
Cisco Confidential
31
SwitchX# configure terminal SwitchX(config)# vlan 2 SwitchX(config-vlan)# name switchlab99
Cisco Confidential
32
SwitchX# show vlan [brief | id vlan-id || name vlan-name]
SwitchX# show vlan id 2
VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------2 switchlab99 active Fa0/2, Fa0/12
VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 ---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----2 enet 100002 1500 0 0 . . . SwitchX#
Cisco Confidential
33
SwitchX(config-if)# switchport access [vlan vlan# | dynamic]
SwitchX# configure terminal SwitchX(config)# interface range fastethernet 0/2 - 4 SwitchX(config-if)# switchport access vlan 2 SwitchX# show vlan VLAN ---1 2 Name Status Ports -------------------------------- --------- ---------------------default active Fa0/1 switchlab99 active Fa0/2, Fa0/3, Fa0/4
Cisco Confidential
34
SwitchX# show vlan brief
SwitchX# show vlan brief VLAN Name ---- -------------------------------1 default 2 switchlab99 3 vlan3 4 vlan4 1002 fddi-default 1003 token-ring-default VLAN ---1004 1005 Name -------------------------------fddinet-default trnet-default
Status --------active active active active act/unsup act/unsup
Ports ------------------------------Fa0/1 Fa0/2, Fa0/3, Fa0/4
Status Ports --------- ------------------------------act/unsup act/unsup
Cisco Confidential
35
SwitchX(config-if)# show interfaces interface switchport
SwitchX# show interfaces fa0/2 switchport Name: Fa0/2 Switchport: Enabled Administrative Mode: dynamic auto Operational Mode: static access Administrative Trunking Encapsulation: dot1q Operational Trunking Encapsulation: native Negotiation of Trunking: On Access Mode VLAN: 2 (switchlab99) Trunking Native Mode VLAN: 1 (default) --- output omitted ----
Cisco Confidential
36
When using VTP, the switch must be in VTP server or transparent mode to add, change, or delete VLANs. When you make VLAN changes from a switch in VTP server mode, the change is propagated to other switches in the VTP domain. Changing VLANs typically implies changing IP networks. After a port is reassigned to a new VLAN, that port is automatically removed from its previous VLAN. When you delete a VLAN, any ports in that VLAN that are not moved to an active VLAN will be unable to communicate with other stations.
Cisco Confidential
37
Cisco Confidential
38
When using VTP, the switch must be in VTP server or transparent mode to add, change, or delete VLANs. When you make VLAN changes from a switch in VTP server mode, the change is propagated to other switches in the VTP domain. Changing VLANs typically implies changing IP networks. After a port is reassigned to a new VLAN, that port is automatically removed from its previous VLAN. When you delete a VLAN, any ports in that VLAN that are not moved to an active VLAN will be unable to communicate with other stations.
Cisco Confidential
39
Technology Fast Ethernet Gigabit Ethernet
Use Connects end-user devices to the access layer switch Connects access switch to distribution switch and high use servers to switches Provides high-speed switch to switch links, backbones Provides high-speed switch to switch links, backbones with redundancy
10-Gigabit Ethernet EtherChannel
Cisco Confidential
40
Each link provides adequate bandwidth for the total aggregate traffic over that link.
Cisco Confidential
41
Logical aggregation of similar links between switches Load-shares across links Viewed as one logical port to STP Redundancy
Cisco Confidential
42
Redundant topology eliminates single points of failure. Redundant topology causes broadcast storms, multiple frame copies, and MAC address table instability problems.
43
Cisco Confidential
Station D sends a broadcast frame. Broadcast frames are flooded to all ports except the originating port.
Cisco Confidential
44
Host X sends a broadcast. Switches continue to propagate broadcast traffic over and over.
Host X sends a unicast frame to router Y.

The MAC address of router Y has not been learned by either switch. Router Y will receive two copies of the same frame.
Provides a loop-free redundant network topology by placing certain ports in the blocking state Published in the IEEE 802.1D specification Enhanced with the Cisco PVST+ implementation
Cisco Confidential
47
One root bridge per broadcast domain.
One root port per nonroot bridge.

One designated port per segment. Nondesignated ports are unused.
Cisco Confidential
48
BPDU (default = sent every 2 seconds) Root bridge = bridge with the lowest bridge ID Bridge ID = Bridge
Priority
MAC Address
Cisco Confidential
49
Spanning tree transits each port through several different states:
Cisco Confidential
50
PortFast is configured on access ports, not trunk ports.
Cisco Confidential
51
SwitchX(config-if)#
spanning-tree portfast
Configures PortFast on an interface OR

SwitchX(config)#
spanning-tree portfast default
Enables PortFast on all non-trunking interfaces

SwitchX#
show running-config interface interface
Verifies that PortFast has been configured on an interface
Cisco Confidential
52
Cisco Confidential
53
Link Speed
Cost (New IEEE Specification)
Cost (Old IEEE Specification)
10 Gb/s 1 Gb/s 100 Mb/s 10 Mb/s
2 4 19 100
1 1 10 100
Cisco Confidential
54
Cisco Confidential
55
Cisco Confidential
56
Bridge ID without the extended system ID
Extended bridge ID with system ID
System ID = VLAN
Cisco Confidential
57
Cisco Confidential
58
Cisco Catalyst switches support three types of STPs:

PVST+ PVRST+ MSTP
The default STP for Cisco Catalyst switches is PVST+ :

A separate STP instance for each VLAN One root bridge for all VLANs No load sharing
Cisco Confidential
59
Cisco Confidential
60
SwitchA(config)#
spanning-tree vlan 1 root primary
This command forces this switch to be the root for VLAN 1.

SwitchA(config)#
spanning-tree vlan 2 root secondary
This command configures this switch to be the secondary root for VLAN 2. OR
SwitchA(config)#
spanning-tree vlan # priority priority
This command statically configures the priority (increments of 4096).

SwitchB(config)# spanning-tree vlan 2 root primary
This command forces the switch to be the root for VLAN 2.

SwitchB(config)# spanning-tree vlan 1 root secondary
This command configures the switch to be the secondary root VLAN 1. OR

SwitchB(config)# spanning-tree vlan # priority priority
This command statically configures the priority (increments of 4096).
Cisco Confidential
62
Cisco Confidential
63
Cisco Confidential
64
Cisco Confidential
65
Cisco Confidential
66
Cisco Confidential
67
Cisco Confidential
68
Cisco Confidential
69
Cisco Confidential
70
Cisco Confidential
71
Cisco Confidential
72
Cisco Confidential
73
Cisco Confidential
74
Thank you.
Cisco Confidential
75

LAN Switching

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

LAN Switching

Caricato da

Copyright:

Formati disponibili

Module 3: LAN Switching

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

Initial MAC address table is empty.

2011 Cisco and/or its affiliates. All rights reserved.

Station D sends a frame to station C.

Station A sends a frame to station C. Destination is known; frame is not flooded.

2011 Cisco and/or its affiliates. All rights reserved.

Unbounded failure domains

2011 Cisco and/or its affiliates. All rights reserved.

Segmentation Flexibility Security

VLAN = Broadcast Domain = Logical Network (Subnet)

2011 Cisco and/or its affiliates. All rights reserved.

Each logical VLAN is like a separate physical bridge.

VLANs can span across multiple switches.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

Create VLANs Modify VLANs

Cannot create, change, or delete VLANs

Sends and forwards advertisements

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

Configure and verify VTP.

Configure and verify 802.1Q trunks.

Execute adds, moves, and changes.

2011 Cisco and/or its affiliates. All rights reserved.

VTP defaults for the Cisco Catalyst switch:

VTP version: Version 1

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX(config-if)# switchport mode trunk Configures the port as a VLAN trunk

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX# configure terminal SwitchX(config)# vlan 2 SwitchX(config-vlan)# name switchlab99

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX# show vlan [brief | id vlan-id || name vlan-name]

SwitchX# show vlan id 2

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX(config-if)# switchport access [vlan vlan# | dynamic]

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX# show vlan brief

Status --------active active active active act/unsup act/unsup

Ports ------------------------------Fa0/1 Fa0/2, Fa0/3, Fa0/4

Status Ports --------- ------------------------------act/unsup act/unsup

2011 Cisco and/or its affiliates. All rights reserved.

SwitchX(config-if)# show interfaces interface switchport

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

2011 Cisco and/or its affiliates. All rights reserved.

Technology Fast Ethernet Gigabit Ethernet

10-Gigabit Ethernet EtherChannel