top of page

Ethernet channel - hsrp - port security

Ethernet channel

Eerst ip adressen toevoegen

S1:

En
conf t
Host S1
vlan 10
name A
vlan 20
name B
exit
 

(poorten koppelen)
int f0/1
switchport mode acces
switchport acces vlan (10,20)
exit

Int range g0/1-2
channel-group 1 mode active
exit

int port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10,20 (beide toegang geven dus 10,20)

int range f0/14-17
channel-group 3
mode on
exit

Int port-channel 3
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

 

 

 

 

 

 

 

 

S2 ( bovenste switch ):

En
conf t
host S2

vlan 10
name A
vlan 20
name B
exit
 

Int f0/1
switchport mode access
switchport access vlan 10
exit
 

Int f0/10
switchport mode access
switchport acces vlan 20
exit
 

(lijnen naar beneden )

int range g0/1-2
channel-group 1 mode passive
exit
 

int port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10,20
exit
 

( lijnen naar rechterkant )

Int range f0/18-21
channel-group 2 mode auto
exit
 

Int port-channel 2
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

 

 

 

 

 

 

S3:

En
conf t
host S3

Vlan 10
name A
vlan 20
name B

Int range f0/18-21
channel-group 2 mode desirable
exit

Int port-channel 2
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

Int range f0/14-17
channel-group 3 mode on
exit

Int port-channel 3
switchport mode trunk
switchport trunk allowed vlan 10,20
exit
 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Router:

En
conf t

Int gig0/0
no sh
exit

 

Int g0/0.10 (vlan nr.)
ip addr 192.168.10.1 (computer) 255.255.255.0
encapsulation dot1Q 10
ip addr 192.168.10.1 255.255.255.0
no sh
exit

 

Int g0/0.20 (vlan nr.)
ip addr 192.168.20.1 255.255.255.0
encapsulation dot1Q 20
ip addr 192.168.20.1 255.255.255.0
no sh
exit

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

HSRP Huiswerk:

Eerst computers static ip adres geven ( ip beginnen met 10.10.20.3, geen 2 )
VR (virtual) is altijd defeault gateway!!!

 

ALLE LIJNEN GROEN MAKEN

Tweede helemaal rechts router:

En
conf t
host ISP
int g0/1
ip addr 10.10.10.1 255.255.255.0
no sh
exit
 

Int g0/0
ip addr 192.168.2.1 255.255.255.0
no sh
exit
 

Bovenste router (4):

En
conf t
host R1
int g0/0
ip addr 10.10.20.1 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.2 255.255.255.0
no sh
exit
 

Router (3):

En
conf t
Host R1_Backup
Int g0/0
ip addr 10.10.20.2 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.3 255.255.255.0
no sh
exit
 

Router (2):

En
conf t
host R2
int g0/0
ip addr 10.10.150.1 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.4 255.255.255.0
no sh
exit
 

Router (1):

En
conf t
host R2_Backup
int g0/0
ip addr 10.10.150.2 255.255.255.0
no sh
Exit
 

Int g0/1
ip addr 192.168.1.5 255.255.255.0
no sh
exit
 

( vlans koppelen )

Int f0/3
Switchport mode acces
Switchport acces vlan 11
exit
 

Int f0/4
switchport mode acces
switchport acces vlan 22
exit
 

Int g0/0.10 (vlan nr.)
ip addr 192.168.10.1 (computer) 255.255.255.0
encapsulation dot1Q 10
ip addr 192.168.10.1 255.255.255.0
no sh
exit

 

 

Int g0/0.20 (vlan nr.)
ip addr 192.168.20.1 255.255.255.0
encapsulation dot1Q 20
ip addr 192.168.20.1 255.255.255.0
no sh
exit

 

EIGRP Protocol toepassen:

Helemaal rechter router:

En
conf t
router eigrp 10
net 10.10.10.0 0.0.0.255
net 192.168.2.0 0.0.0.255
exit

ā€‹

Bovenste router (4)
router eigrp 10
net 10.10.20.0 0.0.0.255
net 192.168.2.0 0.0.0.255
exit

 

 

Router (3) Backup

Router eigrp 10
net 10.10.20.0 0.0.0.255
192.168.2.0 0.0.0.255
exit
 

Router (2)
Zelfde

ā€‹

Router (1)

Zelfde

 

 

 

 

HSRP configureren:
 

Hoofdrouter (4):

Int g0/0.22 (22 is vlan) (van router naar switch)
standby 10 ip 172.16.1.254 (  virtual ip )
standby priority 100 (bij standby beginnen bij 100 en hoger)
standby 10 preempt

 

Router (3) Backup:

Int g0/0.11 (11 is van vlan) (van router naar switch )
standby 10 ip 172.16.1.254 (altijd eindigen met default gatway(virtual IP))
standby 10 preempt ( bij backup geen priority)
 


Router (2) Hoofd router:

Int g0/0
standby 10 ip 172.16.1.254
standby priority 200 (bij standby beginnen bij 100 en hoger)
standby 10 preempt

 

Router (1) Backup:

Int g0/0
standby 10 ip 172.16.1.254 (altijd eindigen met defeault gateway(virtual IP))
standby 10 preempt ( bij backup geen priority)

 

Ip route:

Ip route 0.0.0.0 0.0.0.0 203.1.1.2 ( niet eerste lijn maar laatste lijn )

Ip route:
Ip route 0.0.0.0 0.0.0.0 202.1.1.1

ā€‹

ISP route:
ip route 172.16.1.0 (virtual ip) 255.255.255.0 203.1.1.1
ip route 172.16.1.0 255.255.255.0 202.1.1.2

 

 

 

 

Port Security:

Eerst lijn groen maken

En
Conf t
Host A
int g0/0
ip addr 192.168.1.1 255.255.255.0
no sh
exit
 

Static IP toevoegen op computers

 

Switch:

En
Conf t
int range f0/1-3 ( alle lijnen  selecteren)
switchport mode access
switchport port-security maximum 1
switchport port-security mac-address sticky
switchport port-security violation restrict
switchport port-security

int range f0/1-3
switchport mode acces
switchport port-security
switchport port-security mac-address sticky 0001.9670.DCC1 ( laptop/pc, config, fastethernet 0)
switchport port-security maximum 2
switchport port-security violation shutdown
 

Een van de 2!!

Kom later terug
Gepubliceerde posts zullen hier worden weergegeven.
bottom of page