Pages

Thursday, February 18, 2010

Inter-VLAN routing with External Router

in this GNS3 lab, i'll use router C3640 with additional module NM-16ESW to act as S1 and S2


VLAN can only configured in vlan database mode (command : vlan database) at priviledge-level

set VTP domain

S2#vlan database
S2(vlan)#vtp domain lab
Domain name already set to lab .
S2(vlan)#vtp client //for S1 set this to client


create VLAN 

S1#vlan database
S1(vlan)#vlan 100 name HR //repeat this step to create vlan 200 for Branch
VLAN 100 modified:
    Name: HR

use show vlan-switch to display vlan information


-----------------------------------------------------------------------------------------------------------
ISP Conf
-----------------------------------------------------------------------------------------------------------
Current configuration : 772 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ISP
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
!
!
interface Loopback0
 ip address 200.200.200.1 255.255.255.0
!
interface FastEthernet0/0
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial0/0
 ip address 192.168.1.1 255.255.255.0
 clock rate 56000
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
!
ip route 172.16.0.0 255.255.0.0 192.168.1.2 //static route for data to 172.16.x.x
!
!
ip http server
no ip http secure-server
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
!
!
end
-----------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------
GW Conf
-----------------------------------------------------------------------------------------------------------
Building configuration...

Current configuration : 1116 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname GW
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
ip cef
!
!
!
!
no ip domain lookup
!
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 speed 100
 full-duplex //if there is duplex miss match, set it to full
!
interface FastEthernet0/0.1
 description MG VLAN 1
 encapsulation dot1Q 1 native
 ip address 172.16.1.1 255.255.255.0
!
interface FastEthernet0/0.100
 description VLAN 100
 encapsulation dot1Q 100 //put the number corresponding to the Vlan number for this int
 ip address 172.16.100.1 255.255.255.0
!
interface FastEthernet0/0.200
 description VLAN 200
 encapsulation dot1Q 200
 ip address 172.16.200.1 255.255.255.0
!
interface Serial0/0
 ip address 192.168.1.2 255.255.255.0
 clock rate 2000000
!
interface FastEthernet0/1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface Serial0/1
 no ip address
 shutdown
 clock rate 2000000
!
!
ip route 0.0.0.0 0.0.0.0 192.168.1.1
!
!
ip http server
no ip http secure-server
!
!
!
!
!
control-plane
!
line con 0
line aux 0
line vty 0 4
!
!
end
-----------------------------------------------------------------------------------------------------------


-----------------------------------------------------------------------------------------------------------
SW1 Conf
-----------------------------------------------------------------------------------------------------------
Current configuration : 1195 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname S1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
 switchport mode trunk //trunk port to GW
!
interface FastEthernet0/0
!
interface FastEthernet0/1
!
interface FastEthernet0/2
!
interface FastEthernet0/3
!
interface FastEthernet0/4
!
interface FastEthernet0/5
!
interface FastEthernet0/6
 switchport access vlan 100 //connect host to here, ping other host on vlan 200 to check connectivity
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
 switchport mode trunk
 channel-group 1 mode on
!
interface FastEthernet0/12
 switchport mode trunk
 channel-group 1 mode on //issue show etherchannel summary to see the detail of this interface
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface Vlan1
 ip address 172.16.1.101 255.255.255.0 //management vlan, telnet to this IP from GW/host to make sure everything work fine
!
ip default-gateway 172.16.1.1
ip http server
no ip http secure-server
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 password cisco
 login
line vty 5 15
 password cisco //configure password for line vty to enable telnet session to here
 login
!
!
end
-----------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------
SW2 Conf
-----------------------------------------------------------------------------------------------------------
Current configuration : 1218 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname S2
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
!
!
ip cef
no ip domain lookup
!
!
!
!
interface Port-channel1
 switchport mode trunk
!
interface FastEthernet0/0
!
interface FastEthernet0/1
 switchport mode trunk
!
interface FastEthernet0/2
!
interface FastEthernet0/3
!
interface FastEthernet0/4
!
interface FastEthernet0/5
!
interface FastEthernet0/6
 switchport access vlan 200
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
 switchport mode trunk
 channel-group 1 mode on
!
interface FastEthernet0/12
 switchport mode trunk
 channel-group 1 mode on
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface Vlan1
 ip address 172.16.1.102 255.255.255.0
!
ip default-gateway 172.16.1.1
ip http server
no ip http secure-server
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 password class
 login
line vty 5 15
 password class
 login
!
!
end
-----------------------------------------------------------------------------------------------------------

Labels:

2 comments:

  1. UnknownApril 19, 2011 at 1:04 AM

    Hey. am using c3640-jk9o3s-mz.124-16a image. When I try to enter switchport mode trunk command, its does not recognize the command. Which image should I use

    ReplyDelete
  2. AmjadSeptember 9, 2012 at 2:23 AM

    Hi. Thanks for the nice topology. I think you are committing some typos here:
    on ISP the config has:
    ip route 172.16.0.0 255.255.0.0 192.168.1.2
    The dest IP should be (192.168.1.1) because the .2 is already configured on the ISP router itself.
    Also, clock rate on serial between GW and ISP is configured on both sides. Clock rate should be configured on one of them only, not on both sides of the serial link.

    ReplyDelete

Subscribe to: Post Comments (Atom)