Lab – Implementing VLAN Security
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 2 of 7
In this lab, you will configure the network devices in the topology with some basic settings, verify connectivity
and then apply more stringent security measures on the switches. You will examine how Cisco switches
behave by using various show commands. You will then apply security measures.
Note: The switches used with this lab are Cisco Catalyst 2960s with Cisco IOS Release 15.0(2) (lanbasek9
image). Other switches and Cisco IOS versions can be used. Depending on the model and Cisco IOS
version, the commands available and output produced might vary from what is shown in the labs.
Note: Make sure that the switches have been erased and have no startup configurations. If you are unsure,
contact your instructor.
Required Resources
• 2 Switches (Cisco 2960 with Cisco IOS Release 15.0(2) lanbasek9 image or comparable)
• 3 PCs (Windows 7, Vista, or XP with terminal emulation program, such as Tera Term)
• Console cables to configure the Cisco IOS devices via the console ports
• Ethernet cables as shown in the topology
Part 1: Build the Network and Configure Basic Device Settings
In Part 1, you will configure basic settings on the switches and PCs. Refer to the Addressing Table for device
names and address information.
Step 1: Cable the network as shown in the topology.
Step 2: Initialize and reload the switches.
Step 3: Configure IP addresses on PC-A, PC-B, and PC-C.
Refer to the Addressing Table for PC address information.
Step 4: Configure basic settings for each switch.
a. Disable DNS lookup.
b. Configure the device names as shown in the topology.
c. Assign class as the privileged EXEC mode password.
d. Assign cisco as the console and VTY password and enable login for console and vty lines.
e. Configure synchronous logging for console and vty lines.
Step 5: Configure VLANs on each switch.
a. Create and name VLANs according to the VLAN Assignments table.
b. Configure the IP address listed in the Addressing Table for VLAN 99 on both switches.
c. Configure F0/6 on S1 as an access port and assign it to VLAN 99.
d. Configure F0/11 on S2 as an access port and assign it to VLAN 10.
e. Configure F0/18 on S2 as an access port and assign it to VLAN 99.
f. Issue show vlan brief command to verify VLAN and port assignments.
To which VLAN would an unassigned port, such as F0/8 on S2, belong?
____________________________________________________________________________________
(22 strony)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji