ICND I (100-101) 07 - Installing & Operating Cisco LAN Switches

Cisco Press
07 - Installing & Operating Cisco LAN Switches

By Muhammad Asghar Khan asghar.psh@gmail.com
Reference: Cisco CCENT/CCNA ICND1 100-101 Official Cert Guide By WENDELL ODOM
Agenda
Introduction
Cisco Catalyst Switch Brand Cisco Linksys Switch Brand
1/2
The Cisco Catalyst 2960 Switch

Switch Status from LEDs
Accessing the Cisco IOS CLI

CLI Access from the Console CLI Access with Telnet & SSH Setting Password Security for CLI
Cisco IOS Modes of Operation

User EXEC Mode Privileged EXEC Mode
2 www.asghars.blogspot.com
Agenda
Global Configuration Mode
2/2
Switch Configuration Files

Types of Switch Memory
RAM/DRAM ROM Flash Memory NVRAM
Types of Configurations
Initial Configuration (Setup Mode) Startup Configuration
Running Configuration
Copying Configuration Files Erasing Configuration Files

Introduction
Cisco Catalyst Switch Brand
Includes a large collection of switches, all of which have
1/2
Cisco has two major brands of LAN switching products
been designed with Enterprises in mind The Catalyst switches have a wide range of sizes, functions, and forwarding rates
Cisco Linksys Switch Brand
Includes a variety of switches designed for use in the home
The CCNA exams focus on how to implement LANs
using Cisco Catalyst switches

Both the Catalyst and Linksys brands of Cisco switches
provide the same base features

Introduction
variety of switch series or families
2/2
Within the Cisco Catalyst brand, Cisco produces a wide
Each switch series includes several specic models of
switches that have:

Similar Features,
Similar Price-Versus-Performance trade-offs, and

Similar Internal components
www.asghars.blogspot.com

Cisco positions the 2960 series/family of switches as
1/8
full-featured, low cost wiring closet/cabinet switches for enterprises

2960 switches are mostly used as access switches The distribution layer switches are often from a
different Cisco switch family, typically a more powerful and more expensive product family
Figure on next slide shows the photo of the 2960
switch series from Cisco; each switch is a different specific model of switch inside the 2960 series
2/8
Cisco Catalyst 2960 Series


that these ports can negotiate the use of 10BASE-T or 100BASE-TX Ethernet
3/8
Three of the five switches have 48 RJ-45 10/100 ports, meaning
These switches also have few additional RJ-45 ports on the
right that are 10/100/1000 interfaces on the right, intended to connect to the core switches of an Enterprise campus LAN
Cisco refers to a switchs physical connectors as either
interfaces or ports. Each interface has a number in the style x/y, where x and y are two different numbers
In a 2960, the number before the / is always 0. The rst
10/100 interface on a 2960 is numbered starting at 0/1, the second is 0/2, and so on

The interfaces also have names; for example, interface
4/8
FastEthernet 0/1 is the rst of the 10/100 interfaces

Any Gigabit-capable interfaces would be called
GigabitEthernet interfaces
Cisco supports two major types of switch operating systems:
Internetwork Operating System (IOS)
Catalyst Operating System (Cat OS)
Most Cisco Catalyst switch series today run only Cisco IOS But for some historical reasons, some of the high-end Cisco LAN
switches support both Cisco IOS and Cat OS

Cisco also uses the term hybrid to refer to 6500 switches that
use Cat OS and the term native to refer to 6500 switches that use Cisco IOS

Switch Status from LEDs
5/8
Switch hardware includes several LEDs that provide some
status and troubleshooting information

Figure shows the front of a 2960 series switch, with five
LEDs on the left, one LED over each port, and a mode button
Port
SYST (System) RPS (Redundant Power Supply) STAT (Status) DUPLX (Duplex) SPEED
10
MODE

SYST LED
6/8
To make sense of the LEDs, consider the specific example of

SYST LED provides a quick overall status of the switch, with three
states on most 2960 switch models: Off: switch is not powered on On (green): switch is powered on and operational (Cisco IOS has been loaded) On (amber): switchs Power-On Self Test (POST) process failed, and the Cisco IOS did not load. In this case, the typical response is to power the switch off and back on again. If the same failure occurs, a call to the Cisco Technical Assistance Center (TAC) is typically the next step
The particular details of how each LED works differ between
different Cisco switch families and with different models inside the same switch family

The port LEDsthe LEDs sitting above or below each
7/8
Ethernet portmeans something different depending on which of three port LED modes is currently used on the switch
The switches have a mode button (labeled with number 6
in Figure) that, when pressed, cycles the port LEDs through three modes:
STAT DUPLX, and
SPEED
12

of the port LEDs associated with each port
In STAT (status) Mode
Off: The link is not working
8/8
Each of the three port LED modes changes the meaning
Solid Green: The link is working, but theres no current traffic Flashing Green: The link is working, and traffic is currently
passing over the interface Flashing Amber: The interface is administratively disabled or has been dynamically disabled for a variety of reasons In SPEED Mode Dark LED; meaning 10 Mbps Solid Green Light; meaning 100 Mbps Flashing Green; meaning 1000 Mbps (1 Gbps)
1/6
The command-line interface (CLI) is a text-based interface in
which the user, typically a network engineer, enters a text command and presses Enter
Pressing Enter sends the command to the switch, which
tells the device to do something

Cisco IOS not also define an interface (CLI) for humans but it
also controls the switchs performance and behavior

The switch CLI can be accessed through three popular
methodsthe console, Telnet, and Secure Shell (SSH)

The console is a physical port built specifically to allow
access to the CLI

2/6
Telnet and SSH use the IP network in which the switch
resides to reach the switch

Figure on next slide shows the cabling
15
3/6
Next, a terminal emulator software package (e.g. tera
term) must be installed and configured to use the PCs serial port, matching the switchs console port settings
16

The default console port settings on a switch are as
4/6
follows:
9600 bits/second No hardware flow control 8-bit ASCII No stop bits
1 parity bit
Figure shows the configuration window for the settings just
listed
CLI Access with Telnet & SSH
Most terminal emulator packages also include both Telnet &
SSH client functions


Telnet or SSH application protocol calls the terminal
5/6
emulator a Telnet Client or SSH Client and device that listens for commands is called Telnet Server or SSH Server The switch runs Telnet and SSH server software by default, but needs to have an IP address configured Telnet & SHH is TCP based where Telnet uses the port 23 and SHH uses the port 22 The key difference b/w Telnet & SHH is that Telnet sends all data as clear-text data, while the SHH sends data in more secure manner by using the encryption By default switch allows only console access, but no Telnet or SHH access
6/6
Cisco switches refers to console as console line-specifically,
console line 0 Cisco switches also support 16 Telnet sessions, referenced as virtual terminal (vty) lines 0 through 15 SSH requires a little more effort than console & Telnet, as SSH uses public key cryptography to exchange a shared session key Additionally, SSH requires both username and password for login

modes
Each command mode provides a different group of
1/9
Cisco IOS provides access to several different command
related commands
Entering a question mark (?) at the system prompt
allows you to obtain a list of commands available for each command mode
The three basic modes are:
User EXEC Mode Privileged EXEC Mode Global Configuration Mode

User EXEC Mode
It is the default command mode for the CLI
2/9
It is also called User Mode

The user EXEC commands allow you to connect to remote
devices, change terminal settings on a temporary basis, perform basic tests, and list system information
EXEC refers to the fact that the user only enter the
command, switch executes that command and then display the message
The prompt for user EXEC mode is the name of the device
followed by an angle bracket:


Privileged EXEC Mode
Privileged EXEC commands set operating parameters Privileged EXEC mode is password protected It is also called simply privileged or enable mode
3/9
To enter privileged mode, enter the enable EXEC command
from user EXEC mode:
To set enable mode password, use either the enable password or enable secret commands It is recommended that you use the enable secret command
because it uses an improved encryption algorithm


image of the Cisco IOS software Figure shows the User & Privileged modes
4/9
Use the enable password command only if you boot an older
Global Configuration Mode

Global configuration commands apply to features that affect
the system as a whole, rather than just one protocol or interface


Commands entered in configuration mode update the
5/9
active configuration file Configuration mode itself contains submodes Submodes used to configure specific system features Context-setting commands move you from one configuration mode or context to another To enter global configuration mode, enter the configure command from privileged EXEC mode:
The system prompt changes to indicate that you are now
in global configuration mode


Some of the sub-modes are:
Access-list Configuration
6/9
Line Configuration
Interface Configuration
Access-list Configuration
Use access-list configuration mode when you are creating a
named IP or IPX access list

From global configuration mode, use the ip access-list or ipx access-list command
25

Line configuration
7/9
Line configuration commands modify the operation of an
auxiliary, console, physical, or virtual terminal line From global configuration mode, enter by specifying a line with a line {aux|con|tty|vty} line-number [ending-linenumber] command
Interface Configuration
The commands entered in this mode modify the operation of
an interface From global configuration mode, enter by specifying an interface with an interface command
8/9
Figure shows the relationship b/w EXEC modes and
configuration mode
27
9/9
The end or Ctrl+z key sequence exit the user from any
part of configuration mode and go back to privileged EXEC mode

While the exit command backs you out of configuration
mode one sub-configuration mode at a time
28

To work with files, you need some sort of memory
1/8
Cisco switches uses several types of permanent memory as:

RAM/DRAM
Used by switch as it is used by any other computer
ROM
Stores bootstrap/boot-helper program, that is loaded when the
switch first power on Bootstrap program finds the image of IOS and load it into the RAM
Flash Memory
Found in the form of chip inside the switch or a removable
memory card Stores the Cisco IOS images and it is the default location where bootstrap searches for the IOS image

It can also be used to store configuration or backup files
2/8
Nonvolatile RAM (NVRAM)

Stores the initial or startup configuration file
A configuration file saves the switch configuration
commands in text format

Switch maintains the following types of configuration:
Initial Configuration (Setup Mode)
Setup mode leads a switch administrator to a basic switch
configuration by using questions that prompt for basic switch configuration parameters Figure on next slide describe the process used by setup mode
3/8
Startup Configuration
Used for initialization when the switch boots If this file does not exist, the system boots using the factory
defaults

It is stored in NVRAM You can use the show startup-config
4/8
command to view the
startup configuration file The IOS File System (IFS) refers to startup-config as nvram:startup-config
Running Configuration
Stores the currently used configuration commands
This file changes dynamically when someone enters
commands in configuration mode It is stored in RAM If the switch is reloaded (rebooted) and the running configuration is not saved all commands will be lost You can use the show running-config command to view the startup configuration file
32
5/8
The IOS File System (IFS) refers to running-config
as system:running-config
33

Copying Configuration Files
The copy
6/8
command can be used to copy files b/w RAM or NVRAM on a switch and a TFTP server The copy command can be summarized as:
copy { tftp|running-config|startup-config } { tftp|running-config|startup-config }
It always replaces the existing configuration file when the
file is copied into NVRAM or into a TFTP server, while it merged the configuration file into the running-config file in RAM Figure on next slide depicts the locations and results of copy operation
7/8
Erasing Configuration Files

You can use three different commands to erase the
contents of NVRAM
write erase erase
35
erase (older)
startup-config (older) nvram (recomened)

All the three commands will erase the contents of the
8/8
NVRAM configuration file

Note there is no command to erase the contents of the
running-config file; to clear the running-config file, simply erase the startup-config file and then reload the switch
36

ICND I (100-101) 07 - Installing & Operating Cisco LAN Switches

Hochgeladen von

Dokumentinformationen

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

ICND I (100-101) 07 - Installing & Operating Cisco LAN Switches

Hochgeladen von

Copyright:

Verfügbare Formate

Cisco Press

07 - Installing & Operating Cisco LAN Switches

The Cisco Catalyst 2960 Switch

Accessing the Cisco IOS CLI

Cisco IOS Modes of Operation

Switch Configuration Files

Copying Configuration Files Erasing Configuration Files

Cisco has two major brands of LAN switching products

The CCNA exams focus on how to implement LANs

using Cisco Catalyst switches

provide the same base features

Within the Cisco Catalyst brand, Cisco produces a wide

Each switch series includes several specic models of

switches that have:

Similar Price-Versus-Performance trade-offs, and

The Cisco Catalyst 2960 Switch

full-featured, low cost wiring closet/cabinet switches for enterprises

The Cisco Catalyst 2960 Switch

Cisco Catalyst 2960 Series

The Cisco Catalyst 2960 Switch

Three of the five switches have 48 RJ-45 10/100 ports, meaning

These switches also have few additional RJ-45 ports on the

The Cisco Catalyst 2960 Switch

FastEthernet 0/1 is the rst of the 10/100 interfaces

Catalyst Operating System (Cat OS)

switches support both Cisco IOS and Cat OS

The Cisco Catalyst 2960 Switch

Switch hardware includes several LEDs that provide some

status and troubleshooting information

The Cisco Catalyst 2960 Switch

To make sense of the LEDs, consider the specific example of

The Cisco Catalyst 2960 Switch

The Cisco Catalyst 2960 Switch

Each of the three port LED modes changes the meaning

Accessing the Cisco IOS CLI

The command-line interface (CLI) is a text-based interface in

tells the device to do something

also controls the switchs performance and behavior

methodsthe console, Telnet, and Secure Shell (SSH)

access to the CLI

Accessing the Cisco IOS CLI

Telnet and SSH use the IP network in which the switch

resides to reach the switch

Accessing the Cisco IOS CLI

Next, a terminal emulator software package (e.g. tera

Accessing the Cisco IOS CLI

Figure shows the configuration window for the settings just

SSH client functions

Accessing the Cisco IOS CLI

Accessing the Cisco IOS CLI

Cisco switches refers to console as console line-specifically,

Cisco IOS Modes of Operation

Cisco IOS provides access to several different command

Cisco IOS Modes of Operation

It is also called User Mode

followed by an angle bracket:

Cisco IOS Modes of Operation

To enter privileged mode, enter the enable EXEC command

from user EXEC mode:

because it uses an improved encryption algorithm

Cisco IOS Modes of Operation

Use the enable password command only if you boot an older

Global Configuration Mode