top of page

Ethernet channel - hsrp - port security

Ethernet channel

Eerst ip adressen toevoegen

S1:

En
conf t
Host S1
vlan 10
name A
vlan 20
name B
exit
 

(poorten koppelen)
int f0/1
switchport mode acces
switchport acces vlan (10,20)
exit

Int range g0/1-2
channel-group 1 mode active
exit

int port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10,20 (beide toegang geven dus 10,20)

int range f0/14-17
channel-group 3
mode on
exit

Int port-channel 3
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

 

 

 

 

 

 

 

 

S2 ( bovenste switch ):

En
conf t
host S2

vlan 10
name A
vlan 20
name B
exit
 

Int f0/1
switchport mode access
switchport access vlan 10
exit
 

Int f0/10
switchport mode access
switchport acces vlan 20
exit
 

(lijnen naar beneden )

int range g0/1-2
channel-group 1 mode passive
exit
 

int port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10,20
exit
 

( lijnen naar rechterkant )

Int range f0/18-21
channel-group 2 mode auto
exit
 

Int port-channel 2
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

 

 

 

 

 

 

S3:

En
conf t
host S3

Vlan 10
name A
vlan 20
name B

Int range f0/18-21
channel-group 2 mode desirable
exit

Int port-channel 2
switchport mode trunk
switchport trunk allowed vlan 10,20
exit

Int range f0/14-17
channel-group 3 mode on
exit

Int port-channel 3
switchport mode trunk
switchport trunk allowed vlan 10,20
exit
 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Router:

En
conf t

Int gig0/0
no sh
exit

 

Int g0/0.10 (vlan nr.)
ip addr 192.168.10.1 (computer) 255.255.255.0
encapsulation dot1Q 10
ip addr 192.168.10.1 255.255.255.0
no sh
exit

 

Int g0/0.20 (vlan nr.)
ip addr 192.168.20.1 255.255.255.0
encapsulation dot1Q 20
ip addr 192.168.20.1 255.255.255.0
no sh
exit

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

HSRP Huiswerk:

Eerst computers static ip adres geven ( ip beginnen met 10.10.20.3, geen 2 )
VR (virtual) is altijd defeault gateway!!!

 

ALLE LIJNEN GROEN MAKEN

Tweede helemaal rechts router:

En
conf t
host ISP
int g0/1
ip addr 10.10.10.1 255.255.255.0
no sh
exit
 

Int g0/0
ip addr 192.168.2.1 255.255.255.0
no sh
exit
 

Bovenste router (4):

En
conf t
host R1
int g0/0
ip addr 10.10.20.1 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.2 255.255.255.0
no sh
exit
 

Router (3):

En
conf t
Host R1_Backup
Int g0/0
ip addr 10.10.20.2 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.3 255.255.255.0
no sh
exit
 

Router (2):

En
conf t
host R2
int g0/0
ip addr 10.10.150.1 255.255.255.0
no sh
exit
 

Int g0/1
ip addr 192.168.2.4 255.255.255.0
no sh
exit
 

Router (1):

En
conf t
host R2_Backup
int g0/0
ip addr 10.10.150.2 255.255.255.0
no sh
Exit
 

Int g0/1
ip addr 192.168.1.5 255.255.255.0
no sh
exit
 

( vlans koppelen )

Int f0/3
Switchport mode acces
Switchport acces vlan 11
exit
 

Int f0/4
switchport mode acces
switchport acces vlan 22
exit
 

Int g0/0.10 (vlan nr.)
ip addr 192.168.10.1 (computer) 255.255.255.0
encapsulation dot1Q 10
ip addr 192.168.10.1 255.255.255.0
no sh
exit

 

 

Int g0/0.20 (vlan nr.)
ip addr 192.168.20.1 255.255.255.0
encapsulation dot1Q 20
ip addr 192.168.20.1 255.255.255.0
no sh
exit

 

EIGRP Protocol toepassen:

Helemaal rechter router:

En
conf t
router eigrp 10
net 10.10.10.0 0.0.0.255
net 192.168.2.0 0.0.0.255
exit

Bovenste router (4)
router eigrp 10
net 10.10.20.0 0.0.0.255
net 192.168.2.0 0.0.0.255
exit

 

 

Router (3) Backup

Router eigrp 10
net 10.10.20.0 0.0.0.255
192.168.2.0 0.0.0.255
exit
 

Router (2)
Zelfde

Router (1)

Zelfde

 

 

 

 

HSRP configureren:
 

Hoofdrouter (4):

Int g0/0.22 (22 is vlan) (van router naar switch)
standby 10 ip 172.16.1.254 (  virtual ip )
standby priority 100 (bij standby beginnen bij 100 en hoger)
standby 10 preempt

 

Router (3) Backup:

Int g0/0.11 (11 is van vlan) (van router naar switch )
standby 10 ip 172.16.1.254 (altijd eindigen met default gatway(virtual IP))
standby 10 preempt ( bij backup geen priority)
 


Router (2) Hoofd router:

Int g0/0
standby 10 ip 172.16.1.254
standby priority 200 (bij standby beginnen bij 100 en hoger)
standby 10 preempt

 

Router (1) Backup:

Int g0/0
standby 10 ip 172.16.1.254 (altijd eindigen met defeault gateway(virtual IP))
standby 10 preempt ( bij backup geen priority)

 

Ip route:

Ip route 0.0.0.0 0.0.0.0 203.1.1.2 ( niet eerste lijn maar laatste lijn )

Ip route:
Ip route 0.0.0.0 0.0.0.0 202.1.1.1

ISP route:
ip route 172.16.1.0 (virtual ip) 255.255.255.0 203.1.1.1
ip route 172.16.1.0 255.255.255.0 202.1.1.2

 

 

 

 

Port Security:

Eerst lijn groen maken

En
Conf t
Host A
int g0/0
ip addr 192.168.1.1 255.255.255.0
no sh
exit
 

Static IP toevoegen op computers

 

Switch:

En
Conf t
int range f0/1-3 ( alle lijnen  selecteren)
switchport mode access
switchport port-security maximum 1
switchport port-security mac-address sticky
switchport port-security violation restrict
switchport port-security

int range f0/1-3
switchport mode acces
switchport port-security
switchport port-security mac-address sticky 0001.9670.DCC1 ( laptop/pc, config, fastethernet 0)
switchport port-security maximum 2
switchport port-security violation shutdown
 

Een van de 2!!

Kom later terug
Gepubliceerde posts zullen hier worden weergegeven.

About Me

I'm a paragraph. Click here to add your own text and edit me. It’s easy. Just click “Edit Text” or double click me to add your own content and make changes to the font.

 

Read More

 

© 2023 by Going Places. Proudly created with Wix.com

Join My Mailing List

Thanks for submitting!

  • Facebook
  • Instagram
  • Pinterest
  • Twitter
bottom of page