chapter 3 implementing inter vlan routing
play

Chapter 3: Implementing Inter-VLAN Routing CCNP-RS SWITCH Ali - PowerPoint PPT Presentation

Aug 09, 2023 •7 likes •697 views

Chapter 3: Implementing Inter-VLAN Routing CCNP-RS SWITCH Ali Aydemir Chapter 3 Objectives Explain methods of inter-VLAN routing. Configure and verify inter-VLAN routing in a Layer 2 topology using multilayer switching. Explain

  1. Chapter 3: Implementing Inter-VLAN Routing  CCNP-RS SWITCH Ali Aydemir

  2. Chapter 3 Objectives  Explain methods of inter-VLAN routing.  Configure and verify inter-VLAN routing in a Layer 2 topology using multilayer switching.  Explain DHCP operation and configure DHCP.  Configure and verify inter-VLAN routing in a Layer 2 topology using CEF-based multilayer switching. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 2

  3. Describing Inter-VLAN Routing CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 3

  4. Introduction to Inter-VLAN Routing • VLANs isolate traffic by design. • Inter-VLAN router of some sort required. • Inter-VLAN routing should occur in the distribution layer. • Multilayer switch is recommended to terminate VLANs. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 4

  5. Inter-VLAN Routing Options • External router with a separate interface for each VLAN. • External router trunked to Layer 2 switch (router-on-a-stick). • Multilayer switch (pictured). CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 5

  6. Catalyst Switch Layer 3 Interfaces  Routed port: A pure Layer 3 interface similar to a routed port on a Cisco IOS router.  Switch virtual interface (SVI): A virtual VLAN interface for inter-VLAN routing. In other words, SVIs are virtual routed VLAN interfaces.  Bridge virtual interface (BVI): A Layer 3 virtual bridging interface. Used in some DSL applications, but not used much any more since bridging protocols across interfaces is no longer necessary. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 6

  7. Catalyst Switch Layer 3 Interfaces Type of Switch Inter-VLAN Inter-VLAN Routing Solution Routing Capability – Catalyst No 2940/2950/2955/ 2960/2970 Catalyst Yes Catalyst 4000 running Cisco CatOS with 3560/3750/3760 Supervisor I or II, using the Layer 3 module, WS-X4232-L3 Catalyst Yes Catalyst 4000 with a Supervisor II+, III, IV, 4000/4500/4948 or V running Cisco IOS using integrated routing Catalyst 6500 Yes Catalyst 6500 with an MSFC, MSFC II, or MSFC III daughter card running Cisco CatOS on the supervisors and Cisco IOS on the MSFC Catalyst 6500 with MSFC, MSFC II, or MSFC III running Cisco Native IOS Catalyst 6500 using a legacy MSM CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 7

  8. Router-on-a-Stick • Layer 2 switch linked to router via trunk (in lieu of using a multilayer switch). • Router interface, typically Fast Ethernet, subdivided into logical subinterfaces, one per VLAN. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 8

  9. Routed/L3-Switched vs. L2 Switched Design • Routing can now be performed at L2 switching speeds by switching frames/packets using specialized hardware circuits. • L3 switches serve as default gateways, terminating VLANs (one IP subnet per VLAN). CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 9

  10. Switch Virtual Interfaces (SVI’s) • Configured on multilayer switches, one per VLAN. • The management interface on an L2 switch is an SVI, but an L2 switch is limited to one active SVI. • An SVI associates with an L2 VLAN – a switch must have an active L2 instance of a VLAN in order for an (L3) SVI to function. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 10

  11. Routed Ports • Use the no switchport command to configure a physical switch port as a routed port. • Routed ports are used in conjunction with SVI’s. • Routed ports connect point-to-point (L3) links between distribution layer and core layer switches. • A 48-port L3 switch can be configured as a 48-port router. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 11

  12. L3 EtherChannels • Just as with physical interfaces on multilayer switches, bundles of interfaces (port channels) can be configured as routed ports. • Port channels configured as routed ports are called L3 EtherChannels. • L2 EtherChannels are normally used only when connecting from an access layer switch. CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 12

  13. Configuring Inter-VLAN Routing CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 13

  14. Configuring Router-on-a-Stick  Step 1. Enable trunking on the switch port. Switch(config-if)# switchport trunk encapsulation dot1q Switch(config-if)# switchport mode trunk Switch(config-if)# switchport trunk native vlan #  Step 2. Enable the router interface. Router(config-if)# no shutdown  Step 3. Create the subinterfaces for each VLAN that requires inter-VLAN routing. Router(config)# interface interface_id slot/port.subinterface  Step 4. Configure the trunking encapsulation and IP address on the subinterfaces corresponding to the VLANs. Router(config-subif)# encapsulation [ dot1q | isl ] vlan- id { native } Router(config-subif)# ip address ip_address subnet_mask CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 14

  15. Router-on-a-Stick Example Here, VLAN 100 is used as native VLAN. It is a security best practice to use a dummy/unused VLAN for the native VLAN. Router(config)# interface FastEthernet0/0 Router(config-if)# no shutdown Router(config-if)# interface FastEthernet 0/0.1 Router(config-subif) description VLAN 1 Router(config-subif)# encapsulation dot1q 1 native Router(config-subif)# ip address 10.1.1.1 255.255.255.0 Router(config-subif)# exit Router(config)# interface FastEthernet 0/0.2 Router(config-subif)# description VLAN 2 Router(config-subif)# encapsulation dot1q 2 Router(config-subif)# ip address 10.2.2.1 255.255.255.0 Router(config-subif)# exit Router(config)# end #####Cisco IOS switch Trunking Configuration Connected to Interface FastEthernet0/0 Switch(config)# interface FastEthernet 4/2 Switch(config-if)# switchport trunk encapsulation dot1q Switch(config-if)# switchport mode trunk Switch(config-if)# end CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 15

  16. Configuring Inter- VLAN Routing with SVI’s  Step 1. Specify an SVI by using a VLAN interface command: Switch(config)# interface vlan vlan-id  Step 2. Assign an IP address to the VLAN: Switch(config-if)# ip address ip_address subnetmask  Step 3. Enable the interface: Switch(config-if)# no shutdown  Step 4. (Optional.) Enable IP routing on the router: Switch(config)# ip routing  Step 5. (Optional.) Specify an IP routing protocol or use static routes: Switch(config)# router ip_routing_protocol options CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 16

  17. SVI-Based Inter-VLAN Routing Example  Switch(config)# ip routing  Switch(config)# router rip  Switch(config-router)# network 10.0.0.0  Switch(config)# interface vlan 10  Switch(config-if)# ip address 10.10.1.1 255.0.0.0  Switch(config-if)# no shutdown  Switch(config-if)# interface vlan 20  Switch(config-if)# ip address 10.20.1.1 255.255.255.0  Switch(config-if)# no shutdown CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 17

  18. Configuring Routed Ports  Step 1 . Select the interface for configuration. Switch(config)# interface interface-id  Step 2 . Convert this port from a physical Layer 2 port to a physical Layer 3 interface. Switch(config-if)# no switchport  Step 3 . Configure the IP address and IP subnet mask. This address will be used by hosts on the segment connected to this interface for communication to the switch on this interface, or as the default gateway to other networks. Switch(config-if)# ip address ip_address subnet_mask  Step 4 . (Optional.) Enable IP routing on the router. Switch(config)# ip routing  Step 5 . (Optional.) Specify an IP routing protocol or use static routes: Switch(config)# router ip_routing_protocol options CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 18

  19. Routed Port Example Switch(config)# interface GigabitEthernet 1/1 Switch(config-if)# no switchport Switch(config-if)# ip address 10.10.1.1 255.255.255.252 Switch(config-if)# exit Switch(config)# interface GigabitEthernet 1/2 Switch(config-if)# ip address 10.20.1.254 255.255.255.252 % IP addresses may not be configured on L2 links. Switch(config-if)# no switchport Switch(config-if)# ip address 10.20.1.254 255.255.255.252 CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 19

  20. Inter-VLAN Routing Verification (1) Verify the status of an SVI. Switch# show interfaces vlan 20 Vlan20 is up, line protocol is up Hardware is Ethernet SVI, address is 00D.588F.B604 (bia 00D.588F.B604) Internet address is 10.1.20.1/24 MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set ARP type: ARPA, ARP Timeout 04:00:00 Last input never, output never, output hang never Last clearing of “show interface” counters never Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 interface resets 0 output buffer failures, 0 output buffers swapped out CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 20

  21. Inter-VLAN Routing Verification (2) Display the interface configuration of a routed port. Switch# show running-config interface FastEthernet 2/8 Building configuration... ! interface FastEthernet2/8 no switchport ip address 172.16.22.2 255.255.255.252 <output omitted> CCNP-RS SWITCH v2.0 Chapter 3 Ali Aydemir 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Inter-Domain Routing Network comprised of many Autonomous Systems (ASes) or domains 23

1 Inter-Domain Routing Network comprised of many Autonomous Systems (ASes) or domains 23

CSE/EE 461 Lecture 11 Inter-domain Routing This Lecture Focus How do we make routing scale? Application Presentation Inter-domain routing Session ASes and BGP Transport Network Data Link Physical sdg // CSE/EE 461,

395 views • 5 slides
CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001

CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001

CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001 Spring 2013 Inter-domain Routing 2153 11537 1706 52 FRGP Level 3 ARIZONA ColoState Autonomous Systems (AS) Border Gateway Protocol

566 views • 30 slides
Lab Course RouterLab VLAN, Routing Information Protocol Miscellaneous Your feedback on

Lab Course RouterLab VLAN, Routing Information Protocol Miscellaneous Your feedback on

Lab Course RouterLab VLAN, Routing Information Protocol Miscellaneous Your feedback on work sheet 1? Don't reserve more time than you need! Check that inferfaces are no shutdown Lab -k if devices not accessible

527 views • 18 slides
Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing

Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing

Network Layer: Control Plane Part II Routing in the Internet: Intra vs. Inter-AS Routing Intra-AS: RIP and OSPF (quick recap) Inter-AS: BGP and Policy Routing Internet Control Message Protocol: ICMP network management

888 views • 61 slides
External Routing External Routing BGP JeanYves Le Boudec Fall 2009 Self Organization 1 1

External Routing External Routing BGP JeanYves Le Boudec Fall 2009 Self Organization 1 1

COLE POLYTECHNIQUE FDRALE DE LAUSANNE External Routing External Routing BGP JeanYves Le Boudec Fall 2009 Self Organization 1 1 Contents A. What InterDomain Routing does 1 1. Inter Domain Routing Inter Domain Routing 2.

1.3k views • 91 slides
Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route

Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route

Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route Hijacking~ Mar 1 2007 in APRICOT 2007 NTT Communications Corp. Taka Mizuguchi Tomoya Yoshida What s BGP Route Hijacking? s BGP Route

583 views • 40 slides
Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M.

Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M.

Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M. Handley , Z. Mao, S. Shenker, and I. Stoica Routing 1999 Internet Map Coloured by ISP Source: Bill Cheswick, Lumeta AS-level Topology 2003

946 views • 37 slides
Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya

Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya

Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya Akella, Peter Steenkiste Inter-domain routing is stagnant Many proposed fi xes/replacements for BGP E.g., LISP [RFC 6830], S-BGP [SAC00], Wiser,

350 views • 23 slides
CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing -

CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing -

CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing - BGP (Border Gateway Protocol) Intra -domain routing The Story So Far Routing protocols generate the forwarding table Two styles:

481 views • 12 slides
Outline 15-441/641: Computer Networks Routing hierarchy BGP Inter-domain Routing

Outline 15-441/641: Computer Networks Routing hierarchy BGP Inter-domain Routing

9/14/2019 Outline 15-441/641: Computer Networks Routing hierarchy BGP Inter-domain Routing Internet structure 15-441 Fall 2019 Profs Peter Steenkiste &amp; Justine Sherry External BGP (E-BGP) Internal BGP (I-BGP) Fall 2019

421 views • 9 slides
IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR)

IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR)

IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR) improve utilization of IP address space and slow growth of routing information, but at some point, they will not be sufficient more than 32 bits

579 views • 18 slides
Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by Andreas Tnnesen andreto@olsr.org http://www.olsr.org Agenda MANET routing Optimized LinkState Routing The UniK OLSR implementation

715 views • 55 slides
Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam,

Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam,

Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam, Aditya Akella, Peter Steenkiste This talk in one slide What evolvability features needed in any Q inter-domain protocol? New New Existing

609 views • 26 slides
Routing protocols Goals of this chapter In any network of diameter &gt; 1, the routing &amp;

Routing protocols Goals of this chapter In any network of diameter &gt; 1, the routing &amp;

Ad hoc and Sensor Networks Routing protocols Goals of this chapter In any network of diameter &gt; 1, the routing &amp; forwarding problem appears We will discuss mechanisms for constructing routing tables in ad hoc/sensor networks

751 views • 47 slides
? ? guaranteed bandwidth? virtual circuit n o preservation of inter-packet i t or c

? ? guaranteed bandwidth? virtual circuit n o preservation of inter-packet i t or c

Chapter 4: Network Layer* Virtual circuits Chapter goals: Chapter Overview: source-to-dest path behaves much like telephone understand principles network layer services circuit behind network layer routing principle: path o

197 views • 6 slides
Why dont we have a Secure and Trusted Inter-Domain Routing System? Geoff Huston, APNIC Why

Why dont we have a Secure and Trusted Inter-Domain Routing System? Geoff Huston, APNIC Why

Why dont we have a Secure and Trusted Inter-Domain Routing System? Geoff Huston, APNIC Why do we keep seeing these headlines? 1. The Meta Goal Can we devise changes to operational practices, or operational tools or routing technologies

572 views • 15 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

439 views • 25 slides
Inspection and maintenance tools Inspection and maintenance tools Gerard Braad me@gbraad.nl

Inspection and maintenance tools Inspection and maintenance tools Gerard Braad me@gbraad.nl

Inspection and maintenance tools Inspection and maintenance tools Gerard Braad me@gbraad.nl Continued operation Continued operation of an OpenStack environment is essential to our customers. However, there are cases in which systems can react

457 views • 24 slides
The Internet Protocol (IP) Part 1: Basics

The Internet Protocol (IP) Part 1: Basics

COLE POLYTECHNIQUE FDRALE DE LAUSANNE The Internet Protocol (IP) Part 1: Basics Contents

440 views • 25 slides
ELEC / COMP 177 Fall 2012 Some slides from Kurose

ELEC / COMP 177 Fall 2012 Some slides from Kurose

ELEC / COMP 177 Fall 2012 Some slides from Kurose and Ross, Computer Networking , 5 th Edition Today Ethernet: 10G and Beyond IPv6

649 views • 40 slides
ECE 697J - - Advanced Topics in Advanced Topics in ECE 697J Computer Networks Computer

ECE 697J - - Advanced Topics in Advanced Topics in ECE 697J Computer Networks Computer

ECE 697J - - Advanced Topics in Advanced Topics in ECE 697J Computer Networks Computer Networks Packet Processing III 9/18/03 1 Packet Processing Functions Packet Processing Functions Basic network system functionality

623 views • 25 slides
Chapter 5: The Data Link Layer Our goals: principles behind data link layer services:

Chapter 5: The Data Link Layer Our goals: principles behind data link layer services:

Chapter 5: The Data Link Layer Our goals: principles behind data link layer services: error detection correction error detection, correction sharing a broadcast channel: multiple access link layer addressing reliable data

638 views • 41 slides
Packet Sniffing and Spoofing Chester Rebeiro IIT Madras Some of the slides borrowed from the

Packet Sniffing and Spoofing Chester Rebeiro IIT Madras Some of the slides borrowed from the

Packet Sniffing and Spoofing Chester Rebeiro IIT Madras Some of the slides borrowed from the book Computer Security: A Hands on Approach by Wenliang Du Shared Networks Every network packet reaches every computer's network Interface

960 views • 59 slides
Findings Port Security is ineffective at preventing 3 different MAC Spoofing attacks in

Findings Port Security is ineffective at preventing 3 different MAC Spoofing attacks in

M EDIA A CCESS C ONTROL (MAC) A DDRESS S POOFING A TTACKS AGAINST P ORT S ECURITY Andrew Buhr, Dale Lindskog, Pavol Zavarsky, Ron Ruhl Concordia University College of Alberta Findings Port Security is ineffective at preventing 3 different

455 views • 24 slides

More recommend