Exemplo de Configuração do Catalyst 4908G-L3 VLAN Routing e Bridging

Opções de download

PDF (251.0 KB)
Ver no Adobe Reader em vários dispositivos
ePub (102.6 KB)
Ver em vários aplicativos no iPhone, iPad, Android, Sony Reader ou Windows Phone
Mobi (Kindle) (141.2 KB)
Ver no dispositivo Kindle ou no aplicativo Kindle em vários dispositivos

Atualizado:6 de outubro de 2005

ID do documento:14972

Linguagem imparcial

O conjunto de documentação deste produto faz o possível para usar uma linguagem imparcial. Para os fins deste conjunto de documentação, a imparcialidade é definida como uma linguagem que não implica em discriminação baseada em idade, deficiência, gênero, identidade racial, identidade étnica, orientação sexual, status socioeconômico e interseccionalidade. Pode haver exceções na documentação devido à linguagem codificada nas interfaces de usuário do software do produto, linguagem usada com base na documentação de RFP ou linguagem usada por um produto de terceiros referenciado. Saiba mais sobre como a Cisco está usando a linguagem inclusiva.

Sobre esta tradução

A Cisco traduziu este documento com a ajuda de tecnologias de tradução automática e humana para oferecer conteúdo de suporte aos seus usuários no seu próprio idioma, independentemente da localização. Observe que mesmo a melhor tradução automática não será tão precisa quanto as realizadas por um tradutor profissional. A Cisco Systems, Inc. não se responsabiliza pela precisão destas traduções e recomenda que o documento original em inglês (link fornecido) seja sempre consultado.

Introduction

Prerequisites

Requirements

Componentes Utilizados

Conventions

Configurar

Exemplo de Catalyst 4908G-L3 VLAN Routing e Bridging

Diagrama de Rede

Configurações

Tarefas de configuração geral

Configurando os Switches para gerenciamento

Configurando VLANs

Configurando o EtherChannel

Configurando Bridging e Roteamento

Configurando os troncos de ISL entre Switches

Configurando as portas de estação final

Salvando as configurações do Switch

Configurações completas do dispositivo

Verificar

Troubleshoot

Informações Relacionadas

Introduction

Este documento fornece um exemplo de configuração para o Switch Catalyst 4908G-L3 para oferecer suporte ao roteamento entre VLANs e à ligação de VLANs entre vários Switches de Camada 2 (L2).

Prerequisites

Requirements

Os leitores deste documento devem ter conhecimento do switch Catalyst 4908G-L3:

Do ponto de vista da configuração, o Catalyst 4908G-L3 é um roteador. Ele usa uma interface de configuração do Cisco IOS^® e, por padrão, todas as interfaces são interfaces roteadas.
O Catalyst 4908G-L3 não suporta vários protocolos orientados à camada 2, como o VLAN Trunking Protocol (VTP), Dynamic Trunking Protocol (DTP) ou Port Aggregation Protocol (PAgP) encontrados em outros switches Catalyst.
Na versão 12.0(7)WX5(15d), o Catalyst 4908G-L3 não suporta estes:
- Listas de controle de acesso (ACLs) de plano de dados (segurança): em outras palavras, o tráfego de dados do usuário não pode ser restrito com listas de acesso de entrada ou saída nas interfaces do roteador. As ACLs de plano de dados agora são suportadas na versão 12.0(10)W5(18e).
- Bridging em subinterfaces 802.1q, ou seja, uma subinterface com comandos encapsulation dot1q e bridge-group n aplicados: é compatível com bridging em subinterfaces ISL (InterSwitch Link). A ponte nas subinterfaces 802.1q agora é suportada na versão 12.0(10)W5(18e).
- Roteamento AppleTalk
- Snooping de porta, também conhecido como SPAN, espelhamento de porta, modo promíscuo

Componentes Utilizados

As informações neste documento são baseadas nestas versões de software e hardware:

Switch-roteador Catalyst 4908G-L3 que executa o Cisco IOS 12.0(7)W5(15d)
Três switches Catalyst 3512XL que executam o Cisco IOS 12.0(5.2)XU

The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.

Conventions

Consulte as Convenções de Dicas Técnicas da Cisco para obter mais informações sobre convenções de documentos.

Configurar

Exemplo de Catalyst 4908G-L3 VLAN Routing e Bridging

Nesta seção, você encontrará informações para configurar os recursos descritos neste documento.

Nota: Use a Command Lookup Tool (somente clientes registrados) para obter mais informações sobre os comandos usados nesta seção.

Neste exemplo de configuração, um switch Catalyst 4908G-L3 é implantado para duas finalidades:

Estenda cinco VLANs (VLAN 1, 10, 20, 30 e 40) através de vários switches de Camada 2: neste caso, três Catalyst 3512XLs
Executar o roteamento entre VLANs para IP e IPX (Internetwork Packet Exchange) para permitir a comunicação entre dispositivos nas diferentes VLANs

Para estender as VLANs através dos switches, os 3512XLs se conectam ao 4908G-L3 por meio de links de tronco e tráfego que chegam a uma determinada VLAN de um switch 3512XL, que é ligado nessa VLAN aos outros switches com uma configuração de bridging que segue regras de bridging normais. Dois dos switches 3512XL usam Gigabit EtherChannel para se conectar ao switch 4908G-L3. O outro Switch 3512XL usa um link Gigabit Ethernet simples.

Para suportar o roteamento entre VLANs, Integrated Routing and Bridging (IRB) e BVIs (Bridge Virtual Interfaces), que são configurados para rotear IP e IPX entre VLANs diferentes.

As estações finais e os servidores são conectados aos switches Catalyst 3512XL. Se um dispositivo em uma VLAN precisa se conectar a um dispositivo em outra VLAN, o tráfego é enviado para o Catalyst 4908G-L3 e roteia o tráfego nas interfaces BVI.

Caso a implantação faça parte de uma rede maior, o tráfego destinado ao núcleo é roteado para uma sub-rede adicional (essa configuração não é considerada aqui) por meio de uma conexão com o switch ou roteador do núcleo.

Essa configuração é aplicada aos switches:

A configuração inicial básica é aplicada.
Endereços IP e gateways padrão são atribuídos aos Switches para gerenciamento.
O modo VTP é definido como transparente e as VLANs são configuradas nos switches Catalyst 3512XL.
Links Gigabit EtherChannel são configurados entre o Catalyst 4908G-L3 e Switches 3512xl-01 e 3512xl-02.
Bridging, interfaces BVI e roteamento IP e IPX são configurados no Catalyst 4908G-L3.
Os troncos ISL são configurados entre os Catalyst 4908G-L3 e os três switches Catalyst 3512XL, e o Bridging é configurado nas subinterfaces de tronco.

Estes são os mapeamentos de rede para VLAN IP e IPX:

VLAN	Sub-rede de IP	Rede do IPX
1	10.10.1.0/24	N/A
10	10.10.10.0/24	1000
20	10.10.20.0/24	2000
30	10.10.30.0/24	3000
40	10.10.40.0/24	4000

As VLANs de acesso são atribuídas e o portfast de spanning tree é ativado em todas as interfaces Fast Ethernet do switch Catalyst 3512XL.

Diagrama de Rede

Este documento utiliza a seguinte configuração de rede:

Configurações

Este documento utiliza as seguintes configurações:

Tarefas de configuração geral
Configurando os Switches para gerenciamento
Configurando VLANs
Configurando o EtherChannel
Configurando Bridging e Roteamento
Configurando os troncos de ISL entre Switches
Configurando as portas de estação final
Salvando as configurações do Switch
Configurações completas do dispositivo

Tarefas de configuração geral

Nos switches baseados no Cisco IOS, como os switches Catalyst 4908G-L3 e Catalyst 3512XL, essa configuração básica deve ser aplicada a cada switch:


!-- The calendar set command does not apply to the Catalyst 3500XL switches.

Router#calendar set 18:00:00 Jan 8 2003
Router#clock set 18:00:00 Jan 8 2003
Router#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#hostname 4908G-L3
4908G-L3(config)#clock timezone PST -8
4908G-L3(config)#clock calendar-valid
4908G-L3(config)#service timestamps log datetime localtime msec
4908G-L3(config)#service timestamps debug datetime localtime msec
4908G-L3(config)#enable password verysecret
4908G-L3(config)#line vty 0 4
4908G-L3(config-line)#password secret
4908G-L3(config-line)#exit
4908G-L3(config)#no logging console
4908G-L3(config)#^Z
4908G-L3#

Notas:

O comando do conjunto de calendários define a hora e a data no chip interno do calendário do switch. Esse comando não se aplica aos switches Catalyst 3512XL.
O comando clock set define a hora e a data do relógio do switch.
O comando hostname configura o nome do host do Switch.
O comando clock calendar-valid diz ao switch para definir a data e a hora do relógio com a data e a hora armazenadas no chip do calendário na próxima recarga. Esse comando não se aplica aos switches Catalyst 3548XL.
Os comandos service timestamps log datetime localtime msec e service timestamps debug datetime localtime msec ajudam no Troubleshooting de problemas gerais e de gerenciamento rotulando o tempo da saída syslog e da depuração com a data e o horário atuais (em milissegundos).
O comando enable password define uma senha para entrar no modo privilegiado no switch.
O comando line vty 0 4 entra no modo de configuração de linha, portanto podemos definir uma senha para sessões Telnet de entrada nas linhas do terminal virtual (vty). Nos switches Catalyst 3512XL, use a linha vty 0 15.
O comando password define uma senha para entrar no modo normal no switch através de uma sessão Telnet nas linhas vty.
O comando no logging console não permite que mensagens de syslog sejam exibidas no console do terminal; o comando é usado nesses exemplos para simplificar as capturas de tela.

Configurando os Switches para gerenciamento

Nos Switches Catalyst 3512XL, um endereço IP e um gateway padrão são configurados na VLAN 1 para gerenciamento do Switch. O gateway padrão é o endereço IP da interface BVI 1 no Catalyst 4908G-L3; as interfaces BVI são configuradas posteriormente.

Observação: você não pode executar telnet para o Catalyst 4908G-L3 até que um endereço IP tenha sido atribuído a uma interface.

Catalyst 3512XL-01:

3512XL-01#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-01(config)#interface vlan 1
3512XL-01(config-if)#ip address 10.10.1.10 255.255.255.0
3512XL-01(config-if)#management
3512XL-01(config-if)#exit
3512XL-01(config)#ip default-gateway 10.10.1.1
3512XL-01(config)#^Z
3512XL-01#

Notas:

O comando ip default-gateway define o endereço IP do gateway padrão para interface do roteador do próximo salto. Isso é necessário porque o switch não participa do roteamento IP e não tem conhecimento da topologia da camada 3 (L3) da rede.
O endereço IP usado para o gateway padrão é 10.10.1.1, o endereço IP da interface BVI 1 (configurada posteriormente neste exemplo) no switch Catalyst 4908G-L3.

Catalyst 3512XL-02:

3512XL-02#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-02(config)#interface vlan 1
3512XL-02(config-if)#ip address 10.10.1.20 255.255.255.0
3512XL-02(config-if)#management
3512XL-02(config-if)#exit
3512XL-02(config)#ip default-gateway 10.10.1.1
3512XL-02(config)#^Z
3512XL-02#

Catalyst 3512XL-03:

3512XL-03#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-03(config)#interface vlan 1
3512XL-03(config-if)#ip address 10.10.1.30 255.255.255.0
3512XL-03(config-if)#management
3512XL-03(config-if)#exit
3512XL-03(config)#ip default-gateway 10.10.1.1
3512XL-03(config)#^Z
3512XL-03#

Configurando VLANs

Os switches Catalyst 4908G-L3 não suportam VTP. Neste exemplo, os switches Catalyst 3512XL são configurados no modo transparente de VTP porque um domínio de VTP não pode ser estendido pelo Catalyst 4908G-L3.

A configuração é a mesma no Catalyst 3512XL-01, 3512XL-02 e 3512XL-03:

3512XL-01#vlan database
3512XL-01(vlan)#vtp transparent
Setting device to VTP TRANSPARENT mode.
3512XL-01(vlan)#vlan 10 name Vlan10
VLAN 10 added:
    Name: Vlan10
3512XL-01(vlan)#vlan 20 name Vlan20
VLAN 20 added:
    Name: Vlan20
3512XL-01(vlan)#vlan 30 name Vlan30
VLAN 30 added:
    Name: Vlan30
3512XL-01(vlan)#vlan 40 name Vlan40
VLAN 40 added:
    Name: Vlan40
3512XL-01(vlan)#exit
APPLY completed.
Exiting....
3512XL-01#

Você pode verificar a configuração da VLAN com os comandos show vtp status e show vlan:

3512XL-01#show vtp status
VTP Version                     : 2
Configuration Revision          : 0
Maximum VLANs supported locally : 254
Number of existing VLANs        : 9
VTP Operating Mode              : Transparent
VTP Domain Name                 :
VTP Pruning Mode                : Disabled
VTP V2 Mode                     : Disabled
VTP Traps Generation            : Disabled
MD5 digest                      : 0xF0 0xEA 0x28 0x34 0xA1 0xC6 0x2A 0xDE
Configuration last modified by 10.10.1.10 at 9-18-00 18:04:06
3512XL-01#show vlan
VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4,
                                                Fa0/5, Fa0/6, Fa0/7, Fa0/8,
                                                Fa0/9, Fa0/10, Fa0/11, Fa0/12,
                                                Gi0/1, Gi0/2
10   Vlan10                           active
20   Vlan20                           active
30   Vlan30                           active
40   Vlan40                           active
1002 fddi-default                     active
1003 token-ring-default               active
1004 fddinet-default                  active
1005 trnet-default                    active

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        1002   1003
10   enet  100010     1500  -      -      -        -    -        0      0
20   enet  100020     1500  -      -      -        -    -        0      0
30   enet  100030     1500  -      -      -        -    -        0      0
40   enet  100040     1500  -      -      -        -    -        0      0
1002 fddi  101002     1500  -      -      -        -    -        1      1003
1003 tr    101003     1500  1005   0      -        -    srb      1      1002
1004 fdnet 101004     1500  -      -      1        ibm  -        0      0
1005 trnet 101005     1500  -      -      1        IBM  -        0      0
3512XL-01#

Configurando o EtherChannel

Esta saída mostra como configurar os links EtherChannel entre os switches Catalyst 4908G-L3 e Catalyst 3512XL-01 e 3512XL-02. As interfaces gig0/1 e gig0/2 em 3512XL-01 conectam-se às interfaces gig1 e gig2 no Catalyst 4908G-L3. As interfaces gig0/1 e gig0/2 em 3512XL-02 se conectam às interfaces gig3 e gig4 no Catalyst 4908G-L3.

Para configurar um EtherChannel no Catalyst 4908G-L3, você deve atribuir as interfaces físicas a uma interface lógica (canal de porta) com o comando channel-group. Nos switches Catalyst 3512XL, as interfaces físicas são atribuídas aos grupos de portas. Não há interface lógica de canal de porta no Catalyst 3512XL.

Catalyst 4908G-L3:

4908G-L3#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
4908G-L3(config)#interface port-channel 1
4908G-L3(config-if)#exit
4908G-L3(config)#interface gig1
4908G-L3(config-if)#no shutdown
4908G-L3(config-if)#channel-group 1

GigabitEthernet1 added as member-1 to port-channel1
4908G-L3(config-if)#exit
4908G-L3(config)#interface gig2
4908G-L3(config-if)#no shutdown
4908G-L3(config-if)#channel-group 1

GigabitEthernet2 added as member-2 to port-channel1
4908G-L3(config-if)#exit
4908G-L3(config)#interface port-channel 2
4908G-L3(config-if)#exit
4908G-L3(config)#interface gig3
4908G-L3(config-if)#no shutdown
4908G-L3(config-if)#channel-group 2

GigabitEthernet3 added as member-1 to port-channel2
4908G-L3(config-if)#exit
4908G-L3(config)#interface gig4
4908G-L3(config-if)#no shutdown
4908G-L3(config-if)#channel-group 2

GigabitEthernet4 added as member-2 to port-channel2
4908G-L3(config-if)#^Z
4908G-L3#

Notas:

O comando interface port-channel cria uma interface lógica; neste exemplo, duas interfaces lógicas de canal de porta são criadas.
O comando channel-group adiciona a interface física à interface lógica port-channel; o número channel-group corresponde ao número da interface port-channel.

Você pode verificar a configuração do EtherChannel com o comando show interface port-channel:

4908G-L3#show interface port-channel 1
Port-channel1 is up, line protocol is up
  Hardware is GEChannel, address is 0030.78fe.a007 (bia 0000.0000.0000)
  MTU 1500 bytes, BW 2000000 Kbit, DLY 10 usec, rely 255/255, load 1/255
  Encapsulation ARPA, loopback not set, keepalive set (10 sec)
  Half-duplex, Unknown Speed, Media type unknown, Force link-up
  ARP type: ARPA, ARP Timeout 04:00:00
    No. of active members in this channel: 2
        Member 0 : GigabitEthernet1
        Member 1 : GigabitEthernet2
  Last input 00:00:25, output never, output hang never
  Last clearing of "show interface" counters never
  Queueing strategy: fifo
  Output queue 0/40, 0 drops; input queue 0/300, 0 drops
  5 minute input rate 0 bits/sec, 1 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
     489 packets input, 41461 bytes, 0 no buffer
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
     0 watchdog, 0 multicast
     0 input packets with dribble condition detected
     19 packets output, 8668 bytes, 0 underruns(0/0/0)
     0 output errors, 0 collisions, 0 interface resets
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier
     0 output buffer failures, 0 output buffers swapped out
4908G-L3#

Notas:

Observe que o comando show interface port-channel mostra o número de membros ativos e as interfaces específicas que pertencem ao EtherChannel.

Catalyst 3512XL-01:

3512XL-01#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-01(config)#interface gig0/1
3512XL-01(config-if)#port group 1
3512XL-01(config-if)#exit
3512XL-01(config)#interface gig0/2
3512XL-01(config-if)#port group 1
3512XL-01(config-if)#^Z
3512XL-01#

Notas:

O comando port group adiciona a porta física a um grupo lógico de portas (EtherChannel).

Você pode verificar a configuração do EtherChannel com o comando show port group:

3512XL-01#show port group
Group  Interface              Transmit Distribution
-----  ---------------------  ---------------------
    1  GigabitEthernet0/1     source address
    1  GigabitEthernet0/2     source address
3512XL-01#

Catalyst 3512XL-02:

3512XL-02#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-02(config)#interface gig0/1
3512XL-02(config-if)#port group 1
3512XL-02(config-if)#exit
3512XL-02(config)#interface gig0/2
3512XL-02(config-if)#port group 1
3512XL-02(config-if)#^Z
3512XL-02#

Você pode verificar a configuração do EtherChannel com o comando show port group.

Configurando Bridging e Roteamento

Esta saída mostra como configurar o Catalyst 4908G-L3 para bridging e roteamento. Para cada VLAN, é definido um processo de bridge separado; as interfaces são atribuídas a grupos de ponte na seção Configurando Troncos ISL entre Switches, mais adiante neste exemplo. Como o roteamento entre VLANs é necessário, o Integrated Routing and Bridging (IRB) deve ser ativado com o comando bridge irb.

Além disso, para rotear o tráfego IP e IPX entre os diferentes grupos de bridge, uma interface virtual de bridge (BVI) deve ser criada.

Na seção Configurando Troncos ISL Entre Switches, as subinterfaces de VLAN nos troncos ISL são unidas aos grupos de bridge apropriados para criar um único domínio de Camada 2 para cada VLAN, com o BVI correspondente que atua como a interface do roteador nessa VLAN.

Catalyst 4908G-L3:

4908G-L3#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
4908G-L3(config)#ipx routing
4908G-L3(config)#bridge irb
4908G-L3(config)#bridge 1 protocol ieee
4908G-L3(config)#bridge 1 route ip
4908G-L3(config)#bridge 10 protocol IEEE
4908G-L3(config)#bridge 10 route ip
4908G-L3(config)#bridge 10 route ipx
4908G-L3(config)#bridge 20 protocol IEEE
4908G-L3(config)#bridge 20 route ip
4908G-L3(config)#bridge 20 route ipx
4908G-L3(config)#bridge 30 protocol IEEE
4908G-L3(config)#bridge 30 route ip
4908G-L3(config)#bridge 30 route ipx
4908G-L3(config)#bridge 40 protocol IEEE
4908G-L3(config)#bridge 40 route ip
4908G-L3(config)#bridge 40 route ipx
4908G-L3(config)#interface bvi 1
4908G-L3(config-if)#ip address 10.10.1.1 255.255.255.0
4908G-L3(config-if)#exit
4908G-L3(config)#interface bvi 10
4908G-L3(config-if)#ip address 10.10.10.1 255.255.255.0
4908G-L3(config-if)#ipx network 1000
4908G-L3(config-if)#exit
4908G-L3(config)#interface bvi 20
4908G-L3(config-if)#ip address 10.10.20.1 255.255.255.0
4908G-L3(config-if)#ipx network 2000
4908G-L3(config-if)#exit
4908G-L3(config)#interface bvi 30
4908G-L3(config-if)#ip address 10.10.30.1 255.255.255.0
4908G-L3(config-if)#ipx network 3000
4908G-L3(config-if)#exit
4908G-L3(config)#interface bvi 40
4908G-L3(config-if)#ip address 10.10.40.1 255.255.255.0
4908G-L3(config-if)#ipx network 4000
4908G-L3(config-if)#^Z
4908G-L3#

Notas:

O comando ipx routing ativa o roteamento IPX no Catalyst 4908G-L3.
O comando bridge irb habilita o Integrated Routing and Bridging no roteador, o que permite rotear o tráfego dentro dos grupos de bridge.
O comando bridge number protocol IEEE cria um processo de bridge que executa o spanning tree IEEE.
O comando bridge number route ip permite que o tráfego de IP seja roteado entre a interface de número do BVI e as outras interfaces de IP no roteador.
O comando bridge number route ipx permite que o tráfego IPX seja roteado entre a interface do número BVI e as outras interfaces IPX no roteador; observe que esse comando foi omitido para o processo de bridge 1 [a VLAN de gerenciamento].
O comando interface bvi number cria uma interface BVI (Bridge Virtual Interface) para servir como uma interface L3 no número de bridge-group.
O comando ip address atribui um endereço IP à interface BVI.
O comando ipx network atribui um número de rede IPX à interface BVI; observe que o BVI na VLAN de gerenciamento [BVI 1] não tem um número de rede IPX atribuído.

Podemos verificar a configuração de bridging posteriormente neste exemplo, depois de configurarmos os links de tronco ISL e adicionarmos as subinterfaces de tronco aos grupos de bridge apropriados.

Configurando os troncos de ISL entre Switches

Esta saída mostra como configurar os links de tronco entre os switches Catalyst 4908G-L3 e Catalyst 3512XL.

Para configurar o entroncamento no Catalyst 4908G-L3, ele exige a adição de subinterfaces na interface principal, uma subinterface para cada VLAN transmitida no tronco. Neste exemplo, dois troncos são configurados nas interfaces da porta-canal lógico, enquanto o terceiro tronco é configurado na interface física.

Além disso, os comandos bridge-group são configurados nas subinterfaces para unir cada subinterface de VLAN ao grupo de bridge apropriado, o que conclui a configuração de bridging e roteamento iniciada na seção Configurando Bridging e Roteamento encontrada anteriormente neste exemplo.

Catalyst 4908G-L3:

4908G-L3#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
4908G-L3(config)#interface port-channel 1.1
4908G-L3(config-subif)#encapsulation isl 1
4908G-L3(config-subif)#bridge-group 1
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 1.10
4908G-L3(config-subif)#encapsulation isl 10
4908G-L3(config-subif)#bridge-group 10
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 1.20
4908G-L3(config-subif)#encapsulation isl 20
4908G-L3(config-subif)#bridge-group 20
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 1.30
4908G-L3(config-subif)#encapsulation isl 30
4908G-L3(config-subif)#bridge-group 30
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 1.40
4908G-L3(config-subif)#encapsulation isl 40
4908G-L3(config-subif)#bridge-group 40
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 2.1
4908G-L3(config-subif)#encapsulation isl 1
4908G-L3(config-subif)#bridge-group 1
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 2.10
4908G-L3(config-subif)#encapsulation isl 10
4908G-L3(config-subif)#bridge-group 10
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 2.20
4908G-L3(config-subif)#encapsulation isl 20
4908G-L3(config-subif)#bridge-group 20
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 2.30
4908G-L3(config-subif)#encapsulation isl 30
4908G-L3(config-subif)#bridge-group 30
4908G-L3(config-subif)#exit
4908G-L3(config)#interface port-channel 2.40
4908G-L3(config-subif)#encapsulation isl 40
4908G-L3(config-subif)#bridge-group 40
4908G-L3(config-subif)#exit
4908G-L3(config)#interface gig 5
4908G-L3(config-if)#no shutdown
4908G-L3(config-if)#exit
4908G-L3(config)#interface gig 5.1
4908G-L3(config-subif)#encapsulation isl 1
4908G-L3(config-subif)#bridge-group 1
4908G-L3(config-subif)#exit
4908G-L3(config)#interface gig 5.10
4908G-L3(config-subif)#encapsulation isl 10
4908G-L3(config-subif)#bridge-group 10
4908G-L3(config-subif)#exit
4908G-L3(config)#interface gig 5.20
4908G-L3(config-subif)#encapsulation isl 20
4908G-L3(config-subif)#bridge-group 20
4908G-L3(config-subif)#exit
4908G-L3(config)#interface gig 5.30
4908G-L3(config-subif)#encapsulation isl 30
4908G-L3(config-subif)#bridge-group 30
4908G-L3(config-subif)#exit
4908G-L3(config)#interface gig 5.40
4908G-L3(config-subif)#encapsulation isl 40
4908G-L3(config-subif)#bridge-group 40
4908G-L3(config-subif)#^Z
4908G-L3#

Notas:

Para criar subinterfaces lógicas na interface principal, especifique a interface principal, por exemplo, interface port-channel 1, seguido por um ponto (.) e o número da subinterface, por exemplo, interface port-channel 1.10. O número da subinterface/número da VLAN/número do grupo de pontes não precisa ser o mesmo, mas isso facilita o gerenciamento.
O comando encapsulation isl vlan especifica o tipo de encapsulamento (ISL) e a VLAN a ser recebida na subinterface.
Observe que as subinterfaces de VLAN não recebem um endereço IP ou um número de rede IPX, mas são adicionadas a grupos de ponte com o comando bridge-group number, que permite que cada VLAN abranja todos os switches na Camada 2. Os BVIs configurados na seção Configurando Bridging e Roteamento têm os endereços IP e os números de rede IPX.

Você pode verificar a configuração com os comandos show interface, show ip interface e show ipx interface. Por exemplo, use estes comandos para verificar a configuração na subinterface port-channel 1.10 (VLAN 10) no link EtherChannel para o Catalyst 3512XL-01 e o BVI correspondente (BVI 10) para a VLAN 10:

4908G-L3#show interface port-channel 1.10
Port-channel1.10 is up, line protocol is up
  Hardware is GEChannel, address is 0030.78fe.a007 (bia 0000.0000.0000)
  MTU 1500 bytes, BW 2000000 Kbit, DLY 10 usec, rely 255/255, load 1/255
  Encapsulation ISL Virtual LAN, Color 10.
  ARP type: ARPA, ARP Timeout 04:00:00
4908G-L3#show ip interface bvi 10
BVI10 is up, line protocol is up
  Internet address is 10.10.10.1/24
  Broadcast address is 255.255.255.255
  Address determined by setup command
  MTU is 1500 bytes
  Helper address is not set
  Directed broadcast forwarding is disabled
  Outgoing access list is not set
  Inbound  access list is not set
  Proxy ARP is enabled
  Security level is default
  Split horizon is enabled
  ICMP redirects are always sent
  ICMP unreachables are always sent
  ICMP mask replies are never sent
  IP fast switching is enabled
  IP fast switching on the same interface is disabled
  IP Null turbo vector
  IP multicast fast switching is enabled
  IP multicast distributed fast switching is disabled
  Router Discovery is disabled
  IP output packet accounting is disabled
  IP access violation accounting is disabled
  TCP/IP header compression is disabled
  RTP/IP header compression is disabled
  Probe proxy name replies are disabled
  Policy routing is disabled
  Network address translation is disabled
  Web Cache Redirect is disabled
  BGP Policy Mapping is disabled
4908G-L3#show ipx interface bvi 10
BVI10 is up, line protocol is up
  IPX address is 1000.0030.78fe.a00b, NOVELL-ETHER [up]
  Delay of this IPX network, in ticks is 2 throughput 0 link delay 0
  IPXWAN processing not enabled on this interface.
  IPX SAP update interval is 60 seconds
  IPX type 20 propagation packet forwarding is disabled
  Incoming access list is not set
  Outgoing access list is not set
  IPX helper access list is not set
  SAP GNS processing enabled, delay 0 ms, output filter list is not set
  SAP Input filter list is not set
  SAP Output filter list is not set
  SAP Router filter list is not set
  Input filter list is not set
  Output filter list is not set
  Router filter list is not set
  Netbios Input host access list is not set
  Netbios Input bytes access list is not set
  Netbios Output host access list is not set
  Netbios Output bytes access list is not set
  Updates each 60 seconds aging multiples RIP: 3 SAP: 3
  SAP interpacket delay is 55 ms, maximum size is 480 bytes
  RIP interpacket delay is 55 ms, maximum size is 432 bytes
  RIP response delay is not set
  IPX accounting is disabled
  IPX fast switching is configured (disabled)
  RIP packets received 0, RIP packets sent 19, 0 Throttled
  RIP specific requests received 0, RIP specific replies sent 0
  RIP general requests received 0, 0 ignored, RIP general replies sent 0
  SAP packets received 0, SAP packets sent 5, 0 Throttled
  SAP GNS packets received 0, SAP GNS replies sent 0
  SAP GGS packets received 0, 0 ignored, SAP GGS replies sent 0
4908G-L3#

Você pode verificar a configuração de Bridging com os comandos show bridge group e show spanning-tree number. Além disso, você pode usar o comando show bridge para exibir a tabela de encaminhamento de bridge.

Nos Catalyst 3512XL Switches, a configuração é a mesma no Catalyst 3512XL-01, 3512XL-02 e 3512XL-03. Os enlaces de tronco são configurados nas interfaces Gigabit Ethernet apropriadas. No caso dos enlaces de EtherChannel, a configuração do truncamento será aplicada apenas a uma interface no grupo de portas. O tronco é aplicado automaticamente às outras interfaces no mesmo grupo e aparece na configuração:

3512XL-01#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-01(config)#interface gig 0/1
3512XL-01(config-if)#switchport mode trunk
3512XL-01(config-if)#^Z
3512XL-01#

Notas:

No caso de 3512XL-01 e 3512XL-02, quando a configuração é aplicada a uma única interface no grupo de canais, a mesma configuração é aplicada a outra(s) interface(s) no grupo automaticamente e aparece na configuração de cada interface.
O comando switchport mode trunk configura a interface como uma porta de tronco.
The 3500XL Switches use ISL encapsulation by default when you enable trunking, so there is no need to specify the encapsulation in this case.

Você pode verificar a configuração com o comando show interface switchport:

3512XL-01#show interface gig0/1 switchport
Name: Gi0/1
Switchport: Enabled
Administrative mode: trunk
Operational Mode: trunk
Administrative Trunking Encapsulation: isl
Operational Trunking Encapsulation: isl
Negotiation of Trunking: Disabled
Access Mode VLAN: 0 ((Inactive))
Trunking Native Mode VLAN: 1 (default)
Trunking VLANs Enabled: ALL
Trunking VLANs Active: 1,10,20,30,40
Pruning VLANs Enabled: 2-1001

Priority for untagged frames: 0
Override vlan tag priority: FALSE
Voice VLAN: none
Appliance trust: none
3512XL-01#

Configurando as portas de estação final

Agora, as portas nos switches Catalyst 3512XL são atribuídas a VLANs e o portfast de spanning tree é ativado. Qualquer porta em qualquer um dos switches 3512XL pode ser atribuída a qualquer uma das VLANs configuradas.

As estações finais em uma VLAN específica devem receber um endereço IP no intervalo associado a essa VLAN e devem usar o endereço IP da BVI no Catalyst 4908G-L3 para essa VLAN como seu gateway padrão.

Esta saída mostra como configurar a interface fast0/1 e fast 0/2 na VLAN 10 e ativar o portfast nas interfaces:

3512XL-01#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
3512XL-01(config)#interface fast0/1
3512XL-01(config-if)#switchport access vlan 10
3512XL-01(config-if)#spanning-tree portfast
3512XL-01(config-if)#exit
3512XL-01(config)#interface fast0/2
3512XL-01(config-if)#switchport access vlan 10
3512XL-01(config-if)#spanning-tree portfast
3512XL-01(config-if)#^Z
3512XL-01#

Você pode verificar a configuração com o comando show interface switchport e os comandos show spanning-tree interface:

3512XL-01#show interface fast0/1 switchport
Name: Fa0/1
Switchport: Enabled
Administrative mode: static access
Operational Mode: static access
Administrative Trunking Encapsulation: isl
Operational Trunking Encapsulation: isl
Negotiation of Trunking: Disabled
Access Mode VLAN: 10 (Vlan10)
Trunking Native Mode VLAN: 1 (default)
Trunking VLANs Enabled: NONE
Pruning VLANs Enabled: NONE

Priority for untagged frames: 0
Override vlan tag priority: FALSE
Voice VLAN: none
Appliance trust: none
3512XL-01#show spanning-tree interface fast 0/1
Interface Fa0/1 (port 13) in Spanning tree 10 is FORWARDING
   Port path cost 19, Port priority 128
   Designated root has priority 16384, address 0090.ab28.d000
   Designated bridge has priority 16384, address 0090.ab28.d000
   Designated port is 193, path cost 0
   Timers: message age 2, forward delay 0, hold 0
   BPDU: sent 1, received 73
   The port is in the portfast mode
3512XL-01#

Notas:

O comando show interface switchport mostra o modo operacional (acesso estático) e a VLAN do modo de acesso (10) da interface.

O comando show spanning-tree interface mostra o estado do spanning-tree da porta e indica que "A porta está no modo portfast".

Salvando as configurações do Switch

Certifique-se de que salvou a configuração em execução na NVRAM (configuração de inicialização) em todos os Switches, de forma que a configuração fique retida após uma recarga.

Catalyst 4908G-L3:

4908G-L3#copy running-config startup-config
Destination filename [startup-config]? 
Building configuration...
[OK]
4908G-L3#

Switches Catalyst 3512XL:

3512XL-01#copy running-config startup-config
Destination filename [startup-config]?
Building configuration...

3512XL-01#

Configurações completas do dispositivo

Estas são as configurações completas para os dispositivos usados neste exemplo:

Catalyst 4908G-L3
Catalyst 3512XL-01
Catalyst 3512XL-02
Catalyst 3512XL-03

Catalyst 4908G-L3
4908G-L3#show running-config Building configuration... Current configuration: ! ! Last configuration change at 14:09:14 PST Tue Sep 19 2000 ! NVRAM config last updated at 14:09:15 PST Tue Sep 19 2000 ! version 12.0 no service pad service timestamps debug datetime msec localtime service timestamps log datetime msec localtime no service password-encryption ! hostname 4908G-L3 ! no logging console enable password verysecret ! clock timezone PST -8 clock calendar-valid ip subnet-zero ipx routing 0030.78fe.a000 !-- Enables IRB to route between bridge groups. bridge irb ! ! ! !-- Creates a logical interface (1) to group physical interfaces into a channel. interface Port-channel1 no ip address no ip directed-broadcast hold-queue 300 in ! !-- A subinterface is added to allow VLAN 1 traffic to be transmitted on the trunk. interface Port-channel1.1 !-- Specifies ISL encapsulation for VLAN 1. encapsulation isl 1 no ip redirects no ip directed-broadcast !-- Assign the subinterface to the appropriate bridge-group for bridging and routing. bridge-group 1 ! !-- A subinterface is added to allow VLAN 10 traffic to be transmitted on the trunk. interface Port-channel1.10 !-- Specifies ISL encapsulation for VLAN 10. encapsulation isl 10 no ip redirects no ip directed-broadcast !-- Assign the subinterface to the appropriate bridge-group for bridging and routing. bridge-group 10 ! !-- VLAN 20 configuration. interface Port-channel1.20 encapsulation isl 20 no ip redirects no ip directed-broadcast bridge-group 20 ! !-- VLAN 30 configuration. interface Port-channel1.30 encapsulation isl 30 no ip redirects no ip directed-broadcast bridge-group 30 ! !-- VLAN 40 configuration. interface Port-channel1.40 encapsulation isl 40 no ip redirects no ip directed-broadcast bridge-group 40 ! !-- Creates a logical interface (2) to group physical interfaces into a channel. interface Port-channel2 No ip address no ip directed-broadcast hold-queue 300 in ! !-- VLAN 1 configuration. interface Port-channel2.1 encapsulation isl 1 no ip redirects no ip directed-broadcast bridge-group 1 ! !-- VLAN 10 configuration. interface Port-channel2.10 encapsulation isl 10 no ip redirects no ip directed-broadcast bridge-group 10 ! !-- VLAN 20 configuration. interface Port-channel2.20 encapsulation isl 20 no ip redirects no ip directed-broadcast bridge-group 20 ! !-- VLAN 30 configuration. interface Port-channel2.30 encapsulation isl 30 no ip redirects no ip directed-broadcast bridge-group 30 ! !-- VLAN 40 configuration. interface Port-channel2.40 encapsulation isl 40 no ip redirects no ip directed-broadcast bridge-group 40 ! interface GigabitEthernet1 no ip address no ip directed-broadcast !-- Logically groups the physical interface to interface port-channel 1. channel-group 1 ! interface GigabitEthernet2 no ip address no ip directed-broadcast !-- Logically groups the physical interface to interface port-channel 1. channel-group 1 ! interface GigabitEthernet3 no ip address no ip directed-broadcast !-- Logically groups the physical interface to interface port-channel 2. channel-group 2 ! interface GigabitEthernet4 no ip address no ip directed-broadcast !-- Logically groups the physical interface to interface port-channel 2. channel-group 2 ! interface GigabitEthernet5 no ip address no ip directed-broadcast ! !-- A subinterface is added to allow VLAN 1 traffic to be transmitted on the trunk. interface GigabitEthernet5.1 !-- Specifies ISL encapsulation for VLAN 1. encapsulation isl 1 no ip redirects no ip directed-broadcast !-- Assign the subinterface to the appropriate bridge-group for bridging and routing. bridge-group 1 ! !-- VLAN 10 configuration. Interface GigabitEthernet5.10 encapsulation isl 10 no ip redirects no ip directed-broadcast bridge-group 10 ! !-- VLAN 20 configuration. interface GigabitEthernet5.20 encapsulation isl 20 no ip redirects no ip directed-broadcast bridge-group 20 ! !-- VLAN 30 configuration. interface GigabitEthernet5.30 encapsulation isl 30 no ip redirects no ip directed-broadcast bridge-group 30 ! !-- VLAN 30 configuration. interface GigabitEthernet5.40 encapsulation isl 40 no ip redirects no ip directed-broadcast bridge-group 40 ! interface GigabitEthernet6 no ip address no ip directed-broadcast shutdown ! interface GigabitEthernet7 no ip address no ip directed-broadcast shutdown ! interface GigabitEthernet8 no ip address no ip directed-broadcast shutdown ! !-- BVI 1 is an L3 interface for bridge-group 1 (VLAN 1). interface BVI1 !-- The IP address assigned to bridge-group 1. ip address 10.10.1.1 255.255.255.0 no ip directed-broadcast no ip route-cache cef ! !-- BVI 10 is an L3 interface for bridge-group 10 (VLAN 10). interface BVI10 !-- The IP address assigned to bridge-group 10. ip address 10.10.10.1 255.255.255.0 no ip directed-broadcast no ip route-cache cef !-- Assigns IPX network 1000 to BVI 10. ipx network 1000 ! !-- BVI 20 is a Layer 3 interface for bridge-group 20 (VLAN 20). Interface BVI20 !-- IP address assigned to bridge-group 20. ip address 10.10.20.1 255.255.255.0 no ip directed-broadcast no ip route-cache cef !-- Assigns IPX network 1000 to BVI 20. ipx network 2000! !-- BVI 30 configuration.interface BVI30 ip address 10.10.30.1 255.255.255.0 no ip directed-broadcast no ip route-cache cef ipx network 3000 ! !-- BVI 40 configuration. interface BVI40 ip address 10.10.40.1 255.255.255.0 no ip directed-broadcast no ip route-cache cef ipx network 4000 ! ip classless ! ! ! ! !-- Applies IEEE Ethernet Spanning-Tree Protocol (STP) to bridge-group 1. bridge 1 protocol ieee !-- Allows IP traffic to be routed between the BVI 1 and other IP interfaces. bridge 1 route ip bridge 10 protocol ieee bridge 10 route ip !-- Allows IPX traffic to be routed between the BVI 10 and other IP interfaces. bridge 10 route ipx bridge 20 protocol ieee bridge 20 route ip bridge 20 route ipx bridge 30 protocol ieee bridge 30 route ip bridge 30 route ipx bridge 40 protocol ieee bridge 40 route ip bridge 40 route ipx ! line con 0 transport input none line aux 0 line vty 0 4 password secret login ! end 4908G-L3#

Catalyst 4908G-L3

4908G-L3#show running-config
Building configuration...
 
Current configuration:
!
! Last configuration change at 14:09:14 PST Tue Sep 19 2000
! NVRAM config last updated at 14:09:15 PST Tue Sep 19 2000
!
version 12.0
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
no service password-encryption
!
hostname 4908G-L3
!
no logging console
enable password verysecret
!
clock timezone PST -8
clock calendar-valid
ip subnet-zero
ipx routing 0030.78fe.a000

!-- Enables IRB to route between bridge groups.

bridge irb
!
!
!

!-- Creates a logical interface (1) to group physical interfaces into a channel.

interface Port-channel1
 no ip address
 no ip directed-broadcast
 hold-queue 300 in
!

!-- A subinterface is added to allow VLAN 1 traffic to be transmitted on the trunk.

interface Port-channel1.1
 
!-- Specifies ISL encapsulation for VLAN 1. 

encapsulation isl 1
 no ip redirects
 no ip directed-broadcast
 !-- Assign the subinterface to the appropriate bridge-group 
   for bridging and routing. 
bridge-group 1
!

!-- A subinterface is added to allow VLAN 10 traffic to be transmitted on the trunk.

interface Port-channel1.10 
   !-- Specifies ISL encapsulation for VLAN 10.
 encapsulation isl 10
 no ip redirects
 no ip directed-broadcast 

!-- Assign the subinterface to the appropriate bridge-group for bridging and routing.

 bridge-group 10
!

!-- VLAN 20 configuration.

interface Port-channel1.20
 encapsulation isl 20
 no ip redirects
 no ip directed-broadcast
 bridge-group 20
!

!-- VLAN 30 configuration. 

interface Port-channel1.30
 encapsulation isl 30
 no ip redirects
 no ip directed-broadcast
 bridge-group 30
!

!-- VLAN 40 configuration.

interface Port-channel1.40
 encapsulation isl 40
 no ip redirects
 no ip directed-broadcast
 bridge-group 40
!

!-- Creates a logical interface (2) to group physical interfaces into a channel.

interface Port-channel2 
No ip address
 no ip directed-broadcast
 hold-queue 300 in
!

!-- VLAN 1 configuration.

interface Port-channel2.1
 encapsulation isl 1
 no ip redirects
 no ip directed-broadcast
 bridge-group 1
!

!-- VLAN 10 configuration.

interface Port-channel2.10
 encapsulation isl 10
 no ip redirects
 no ip directed-broadcast
 bridge-group 10
!

!-- VLAN 20 configuration.

interface Port-channel2.20
 encapsulation isl 20
 no ip redirects
 no ip directed-broadcast
 bridge-group 20
!

!-- VLAN 30 configuration.

interface Port-channel2.30
 encapsulation isl 30
 no ip redirects
 no ip directed-broadcast
 bridge-group 30
!

!-- VLAN 40 configuration.

interface Port-channel2.40
 encapsulation isl 40
 no ip redirects
 no ip directed-broadcast
 bridge-group 40
!
interface GigabitEthernet1
 no ip address
 no ip directed-broadcast

!-- Logically groups the physical interface to interface port-channel 1. 

channel-group 1
!
interface GigabitEthernet2
 no ip address
 no ip directed-broadcast

!-- Logically groups the physical interface to interface port-channel 1. 

channel-group 1
!
interface GigabitEthernet3
 no ip address
 no ip directed-broadcast

!-- Logically groups the physical interface to interface port-channel 2. 

channel-group 2
!
interface GigabitEthernet4
 no ip address
 no ip directed-broadcast

!-- Logically groups the physical interface to interface port-channel 2. 

channel-group 2
!
interface GigabitEthernet5
 no ip address
 no ip directed-broadcast
!

!-- A subinterface is added to allow VLAN 1 traffic to be transmitted on the trunk.

interface GigabitEthernet5.1

!-- Specifies ISL encapsulation for VLAN 1. 

encapsulation isl 1 
 no ip redirects
 no ip directed-broadcast

!-- Assign the subinterface to the appropriate bridge-group for bridging and routing. 

bridge-group 1
!

!-- VLAN 10 configuration.

Interface GigabitEthernet5.10
 encapsulation isl 10
 no ip redirects
 no ip directed-broadcast
 bridge-group 10
!

!-- VLAN 20 configuration.

interface GigabitEthernet5.20
 encapsulation isl 20
 no ip redirects
 no ip directed-broadcast
 bridge-group 20
!

!-- VLAN 30 configuration.

interface GigabitEthernet5.30
 encapsulation isl 30
 no ip redirects
 no ip directed-broadcast
 bridge-group 30
!

!-- VLAN 30 configuration.

interface GigabitEthernet5.40
 encapsulation isl 40
 no ip redirects
 no ip directed-broadcast
 bridge-group 40
!
interface GigabitEthernet6
 no ip address
 no ip directed-broadcast
 shutdown
!
interface GigabitEthernet7
 no ip address
 no ip directed-broadcast
 shutdown
!
interface GigabitEthernet8
 no ip address
 no ip directed-broadcast
 shutdown
!

!-- BVI 1 is an L3 interface for bridge-group 1 (VLAN 1).

interface BVI1

!-- The IP address assigned to bridge-group 1. 

ip address 10.10.1.1 255.255.255.0
 no ip directed-broadcast
 no ip route-cache cef
!

!-- BVI 10 is an L3 interface for bridge-group 10 (VLAN 10).

interface BVI10

!-- The IP address assigned to bridge-group 10. 

   ip address 10.10.10.1 255.255.255.0 
 no ip directed-broadcast
 no ip route-cache cef
!-- Assigns IPX network 1000 to BVI 10. ipx network 1000
!
!-- BVI 20 is a Layer 3 interface for bridge-group 20 (VLAN 20).
Interface BVI20

!-- IP address assigned to bridge-group 20.
 
ip address 10.10.20.1 255.255.255.0 
   no ip directed-broadcast
 no ip route-cache cef

 !-- Assigns IPX network 1000 to BVI 20. 

ipx network 2000!

!-- BVI 30 configuration.interface BVI30

 ip address 10.10.30.1 255.255.255.0
 no ip directed-broadcast
 no ip route-cache cef
 ipx network 3000
!

!-- BVI 40 configuration.

interface BVI40
 ip address 10.10.40.1 255.255.255.0
 no ip directed-broadcast
 no ip route-cache cef
 ipx network 4000
!
ip classless
!
!
!
!

!-- Applies IEEE Ethernet Spanning-Tree Protocol (STP) to bridge-group 1.

bridge 1 protocol ieee

!-- Allows IP traffic to be routed between the BVI 1 and other IP interfaces. 

bridge 1 route ip
bridge 10 protocol ieee
 bridge 10 route ip

!-- Allows IPX traffic to be routed between the BVI 10 and other IP interfaces.

 bridge 10 route ipx
bridge 20 protocol ieee
 bridge 20 route ip
 bridge 20 route ipx
bridge 30 protocol ieee
 bridge 30 route ip
 bridge 30 route ipx
bridge 40 protocol ieee
 bridge 40 route ip
 bridge 40 route ipx
!
line con 0
 transport input none
line aux 0
line vty 0 4
 password secret
 login
!
end

4908G-L3#

Catalyst 3512XL-01
3512XL-01#show running-config Building configuration... Current configuration: ! ! Last configuration change at 08:24:03 PST Tue Sep 19 2000 ! NVRAM config last updated at 08:24:03 PST Tue Sep 19 2000 ! version 12.0 no service pad service timestamps debug datetime msec localtime service timestamps log datetime msec localtime no service password-encryption ! hostname 3512XL-01 ! no logging console enable password verysecret ! ! ! ! ! clock timezone PST -8 ! ip subnet-zero ! ! ! interface FastEthernet0/1 !-- The switchport access command configures the port to be an L2 2 port. !-- Assigns the port to be a member of VLAN 10. switchport access vlan 10 !-- Enables spanning-tree portfast. spanning-tree portfast ! interface FastEthernet0/2 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/3 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/4 !-- Assigns the port to be a member of VLAN 20. switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/5 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/6 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/7 !-- Assigns the port to be a member of VLAN 30. switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/8 switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/9 switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/10 !-- Assigns the port to be a member of VLAN 40. switchport access vlan 40 spanning-tree portfast ! interface FastEthernet0/11 switchport access vlan 40 spanning-tree portfast ! interface FastEthernet0/12 switchport access vlan 40 spanning-tree portfast ! interface GigabitEthernet0/1 !-- Assigns the port to logical port-group 1 to create the EtherChannel. port group 1 !-- Configures the port to be an ISL trunk. switchport mode trunk ! Interface GigabitEthernet0/2 !-- Assigns the port to logical port-group 1 to create the EtherChannel. port group 1 !-- Configures the port to be an ISL trunk. switchport mode trunk ! Interface VLAN1 !-- The IP address of the management interface. ip address 10.10.1.10 255.255.255.0 no ip directed-broadcast no ip route-cache ! !-- The default gateway is set to the BVI 1 interface on the 4908G-L3. ip default-gateway 10.10.1.1 ! line con 0 transport input none stopbits 1 line vty 0 4 password secret login line vty 5 15 password secret login ! end 3512XL-01#

Catalyst 3512XL-01

3512XL-01#show running-config
Building configuration...

Current configuration:
!
! Last configuration change at 08:24:03 PST Tue Sep 19 2000
! NVRAM config last updated at 08:24:03 PST Tue Sep 19 2000
!
version 12.0
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
no service password-encryption
!
hostname 3512XL-01
!
no logging console
enable password verysecret
!
!
!
!
!
clock timezone PST -8
!
ip subnet-zero
!
!
!
interface FastEthernet0/1

!-- The switchport access command configures the port to be an L2 2 port. !-- Assigns the port to be a member of VLAN 10.

switchport access vlan 10

!-- Enables spanning-tree portfast.

!-- Assigns the port to be a member of VLAN 20.

switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/5
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/6
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/7

!-- Assigns the port to be a member of VLAN 30.

switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/8
switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/9
switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/10

!-- Assigns the port to be a member of VLAN 40.

switchport access vlan 40
spanning-tree portfast
!
interface FastEthernet0/11
switchport access vlan 40
spanning-tree portfast
!
interface FastEthernet0/12
switchport access vlan 40
spanning-tree portfast
!
interface GigabitEthernet0/1

!-- Assigns the port to logical port-group 1 to create the EtherChannel.

port group 1

!-- Configures the port to be an ISL trunk.

switchport mode trunk
!
Interface GigabitEthernet0/2

!-- Assigns the port to logical port-group 1 to create the EtherChannel.

port group 1

!-- Configures the port to be an ISL trunk. switchport mode trunk

!
Interface VLAN1

!-- The IP address of the management interface.

ip address 10.10.1.10 255.255.255.0
no ip directed-broadcast
no ip route-cache
!

!-- The default gateway is set to the BVI 1 interface on the 4908G-L3.

ip default-gateway 10.10.1.1
!
line con 0
transport input none
stopbits 1
line vty 0 4
password secret
login
line vty 5 15
password secret
login
!
end

3512XL-01#

Catalyst 3512XL-02
3512XL-02#show running-config Building configuration... Current configuration: ! ! Last configuration change at 08:25:22 PST Tue Sep 19 2000 ! NVRAM config last updated at 08:25:22 PST Tue Sep 19 2000 ! version 12.0 no service pad service timestamps debug datetime msec localtime service timestamps log datetime msec localtime no service password-encryption ! hostname 3512XL-02 ! no logging console enable password verysecret ! ! ! ! ! clock timezone PST -8 ! ip subnet-zero ! ! ! interface FastEthernet0/1 !-- The switchport access command configures the port to be an L2 port. !-- Assigns the port to be a member of VLAN 10. switchport access vlan 10 !-- Enables spanning-tree portfast. spanning-tree portfast ! Interface FastEthernet0/2 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/3 !-- Assigns the port to be a member of VLAN 20. switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/4 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/5 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/6 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/7 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/8 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/9 !-- Assigns the port to be a member of VLAN 30. switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/10 switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/11 !-- Assigns the port to be a member of VLAN 40. switchport access vlan 40 spanning-tree portfast ! interface FastEthernet0/12 switchport access vlan 40 spanning-tree portfast ! interface GigabitEthernet0/1 !-- Assigns the port to logical port-group 1 to create the EtherChannel. port group 1 !-- Configures the port to be an ISL trunk. switchport mode trunk ! Interface GigabitEthernet0/2 !-- Assigns the port to logical port-group 1 to create the EtherChannel. port group 1 !-- Configures the port to be an ISL trunk. switchport mode trunk ! Interface VLAN1 !-- The IP address of the management interface. ip address 10.10.1.20 255.255.255.0 No ip directed-broadcast no ip route-cache ! !-- The default gateway is set to the BVI 1 interface on the 4908G-L. ip default-gateway 10.10.1.1 ! line con 0 transport input none stopbits 1 line vty 0 4 password secret login line vty 5 15 password secret login ! end 3512XL-02#

Catalyst 3512XL-02

3512XL-02#show running-config
Building configuration...

Current configuration:
!
! Last configuration change at 08:25:22 PST Tue Sep 19 2000
! NVRAM config last updated at 08:25:22 PST Tue Sep 19 2000
!
version 12.0
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
no service password-encryption
!
hostname 3512XL-02
!
no logging console
enable password verysecret
!
!
!
!
!
clock timezone PST -8
!
ip subnet-zero
!
!
!
interface FastEthernet0/1

!-- The switchport access command configures the port to be an L2 port. !-- Assigns the port to be a member of VLAN 10.

switchport access vlan 10

!-- Enables spanning-tree portfast.

spanning-tree portfast
!
Interface FastEthernet0/2
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/3

!-- Assigns the port to be a member of VLAN 20.

switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/4
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/5
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/6
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/7
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/8
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/9

!-- Assigns the port to be a member of VLAN 30.

switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/10
switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/11

!-- Assigns the port to be a member of VLAN 40.

switchport access vlan 40
spanning-tree portfast
!
interface FastEthernet0/12
switchport access vlan 40
spanning-tree portfast
!
interface GigabitEthernet0/1

!-- Assigns the port to logical port-group 1 to create the EtherChannel.

port group 1

!-- Configures the port to be an ISL trunk.

switchport mode trunk
!
Interface GigabitEthernet0/2

!-- Assigns the port to logical port-group 1 to create the EtherChannel.

port group 1

!-- Configures the port to be an ISL trunk.

switchport mode trunk
!
Interface VLAN1

!-- The IP address of the management interface.

ip address 10.10.1.20 255.255.255.0
No ip directed-broadcast
no ip route-cache
!

!-- The default gateway is set to the BVI 1 interface on the 4908G-L.

ip default-gateway 10.10.1.1
!
line con 0
transport input none
stopbits 1
line vty 0 4
password secret
login
line vty 5 15
password secret
login
!
end

3512XL-02#

Catalyst 3512XL-03
3512xl-03#show running-config Building configuration... Current configuration: ! ! Last configuration change at 12:13:33 PST Tue Sep 19 2000 ! NVRAM config last updated at 12:13:34 PST Tue Sep 19 2000 ! version 12.0 no service pad service timestamps debug datetime msec localtime service timestamps log datetime msec localtime no service password-encryption ! hostname 3512xl-03 ! no logging console enable password verysecret ! ! ! ! ! clock timezone PST -8 ! ip subnet-zero ! ! ! interface FastEthernet0/1 !-- The switchport access command configures the port to be an L2 port. !-- Assigns the port to be a member of VLAN 10. switchport access vlan 10 !-- Enables spanning-tree portfast. spanning-tree portfast ! interface FastEthernet0/2 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/3 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/4 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/5 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/6 switchport access vlan 10 spanning-tree portfast ! interface FastEthernet0/7 !-- Assigns the port to be a member of VLAN 20. switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/8 switchport access vlan 20 spanning-tree portfast ! interface FastEthernet0/9 !-- Assigns the port to be a member of VLAN 30. switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/10 switchport access vlan 30 spanning-tree portfast ! interface FastEthernet0/11 !-- Assigns the port to be a member of VLAN 40. switchport access vlan 40 spanning-tree portfast ! interface FastEthernet0/12 switchport access vlan 40 spanning-tree portfast ! interface GigabitEthernet0/1 !-- Configures the port to be an ISL trunk. switchport mode trunk ! Interface GigabitEthernet0/2 ! interface VLAN1 !-- The IP address of the management interface. ip address 10.10.1.30 255.255.255.0 no ip directed-broadcast no ip route-cache ! !-- The default gateway is set to the BVI 1 interface on the 4908G-L3. ip default-gateway 10.10.1.1 ! Line con 0 transport input none stopbits 1 line vty 0 4 password secret login line vty 5 15 password secret login ! end 3512xl-03#

Catalyst 3512XL-03

3512xl-03#show running-config
Building configuration...

Current configuration:
!
! Last configuration change at 12:13:33 PST Tue Sep 19 2000
! NVRAM config last updated at 12:13:34 PST Tue Sep 19 2000
!
version 12.0
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
no service password-encryption
!
hostname 3512xl-03
!
no logging console
enable password verysecret
!
!
!
!
!
clock timezone PST -8
!
ip subnet-zero
!
!
!
interface FastEthernet0/1

!-- The switchport access command configures the port to be an L2 port. !-- Assigns the port to be a member of VLAN 10.

switchport access vlan 10

!-- Enables spanning-tree portfast.

spanning-tree portfast
!
interface FastEthernet0/2
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/3
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/4
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/5
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/6
switchport access vlan 10
spanning-tree portfast
!
interface FastEthernet0/7

!-- Assigns the port to be a member of VLAN 20.

switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/8
switchport access vlan 20
spanning-tree portfast
!
interface FastEthernet0/9

!-- Assigns the port to be a member of VLAN 30.

switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/10
switchport access vlan 30
spanning-tree portfast
!
interface FastEthernet0/11

!-- Assigns the port to be a member of VLAN 40.

switchport access vlan 40
spanning-tree portfast
!
interface FastEthernet0/12
switchport access vlan 40
spanning-tree portfast
!
interface GigabitEthernet0/1

!-- Configures the port to be an ISL trunk.

switchport mode trunk
!
Interface GigabitEthernet0/2
!
interface VLAN1

!-- The IP address of the management interface.

ip address 10.10.1.30 255.255.255.0
no ip directed-broadcast
no ip route-cache
!

!-- The default gateway is set to the BVI 1 interface on the 4908G-L3.

ip default-gateway 10.10.1.1
!
Line con 0
transport input none
stopbits 1
line vty 0 4
password secret
login
line vty 5 15
password secret
login
!
end

3512xl-03#