Please enable JavaScript.
Coggle requires JavaScript to display documents.
Implementing Basic Ethernet LANs (Configuring interfaces (speed (auto, 10,…
Implementing Basic Ethernet LANs
Configuring interfaces
Interface types
Fath ethernet
Gigabit ethernet
Ethernet
duplex auto /full / half
speed
auto
10
100
1000
Autonegotiation
Show interface status
Accessing CLI
SSL
Encrypts
Tellnet
data sent as clear text, security risk, TCP based aplication layer protocol
CLI
Enable
(priviliged mode)
Enable Secret
Configure terminal
line console
login
password
Exec mode
(looking around only)
Configuratoin mode
Hostname
INterface (type / number)
Speed
duplex
Analysing Ethernet LAN Switching
Campus or data centre
What do switches do
1. Flter / forwad frames
IF broadcast, mutlicast or unknown FLOOD FRAME
IF known - Send to correct destination
IF destination address same as source FILTER
2. Learn MAC addressess (examine sourse)
CAM - content addressable memory
MAC table - links MAC addresses with Interfaces (ports)
show mac address table
show mac adddress table dynamic
Knows what port things come in on so links up
3. Prevent loops using SPT
spanning tree protocol
cuases some interfaces to block t odont
Memory
RAM
running config
working mem
Flash Memory
IOS
back up config files
ROM
bootstrap programe / power up
NVRAm
initial start up config files
coppy running config start up config
Basic Switch Management
Secure console & VTY
line con
enable secret
password
usernames
usernames
name
password
passwork
as many as want
set vty local to use same
AAA servers = Authentication, authorization, accounting
typically connected two switch via RADIUM / TACAS protocol
Secure Shell (SSH)
configure terminal
hostname
Ip domain name
crypto key generate rsa
Configuring Ipv4 on switch (for remote access)
Switch virtual interface (SVI)
assign an IP address
Interface vlan 1
no shutdown
also need to configure default gateway
Port Security
trunnk port or access port
switch port mode
switchport violoation - protect / restric / shutdown
shutdown
= all of above, also disables interface
protect
=- discards offending traffic
Restrict
= discards offending traffic, sneds message & counts violation
switch port security mac address - predefines allowed
switch port security mac address sticky
show port security interface