HOME

CCNA Exercise Lab 12

Written Lab

In this lab, you will write out the commands to answer the questions.

1. Write the command to display the configuration of the switch.

Ans- #show running-config

2. Write the command to see the IP configuration of the switch.

Ans- #show run and #show ip interface

3. Write the command to see the MAC filter table.

Ans- #show mac address-table

4. Write the command to set port e0/2 to a secure table size of 1.

Ans- #conf t
#int eth0/2
#switch port port-security maximum 1

5. Write the command to assign MAC address 1234.4567.8912 to port e0/1 as a permanent address.

Ans- #conf t
#interface eth0/1
#switch port port-security mac-address 1234.4567.8912

6. Write the command to remove the permanent address you just added to port e0/1.

Ans- # no switch poet port-security

7. Write the command to view the statistics of port e0/5.

Ans- #show interface statistics eth0/5

8.Write the commands to create three VLANs: Purchasing, Sales, and MIS.

Ans- #vlan database
#vlan 1
Name: purchasing
#vlan 2
Name: sales
#vlan 3
Name: MIS
#exit

CCNA Exercise Lab 12 Image 1

9. Write the command to assign ports 2 and 3 to Sales, 4 and 5 to Purchasing and 6 and 7 to MIS. Use only static assignments.

Ans- #conf t
#interface fa0/2
#switch port access vlan sales
# interface fa0/3
#switch port access vlan sales
And so on. . . . .

10. Write the command to make your switch a VTP client.

Ans- #conf t
#vtp mode client
#vtp password abcde

11. Write the command to set your switch to be a transparent switch.

Ans- #conf t
#vtp domain
#vtp mode transparent

12. Write the command that will show the VTP status of your switch.

Ans- # show vtp status

13. Write the command that will put interface B into auto trunk mode.

Ans-#conf t
#int eth0/0
# switch port mode dynamic auto

14. Write the command to view all VLAN information on a switch.

Ans- # show vlan summary

15. Write the command to set interface 5 to VLAN 2.

Ans- # conf t
# vlan database
# vlan 2
Name : test
#int eth0/5
# switch port access vlan test

Hands-on Labs

There are seven hands-on labs in this section. You need to have access to a 1900 switch. However, you can use the Sybex CCNA e-trainer for the first two labs, or the Router Sim version 2.0 product found at www.routersim.com to complete all of these labs.

Lab B.1: Managing the 1900 Switch
Lab B.2: 1900 Switch Operations
Lab B.3: Creating VLANs
Lab B.4: Assigning VLANs to Switch Ports
Lab B.5: Configuring Trunking
Lab B.6: Configuring VTP
Lab B.7: Configuring Inter-VLAN Routing with ISL

Lab B.1: Managing the 1900 Switch

In this lab, you will connect to the Cisco Catalyst 1900 switch and manage the switch features.

  1. From your 1900 switch ,type K to enter into CLI kmode.
  2. From the 1900 CLI, press Enter and then from the user modeprompt (>), type enable.
  3. Type show running-config to view the current configuration. Notice the default settings.
  4. Type show version to view the IOS version running on the switch.
  5. Set the name of the router by using the host name command:
    config t
    host name 1900A
  6. Type show ip to see the default IP address, subnet mask, and default gateway settings.
  7. Set the IP address, subnet mask, and default gateway of the switch by typing the following:
    config t
    ip address 172.16.10.3 255.255.255.0
    ip default-gateway 172.16.10.1
  8. Type show ip to see the new configuration.
  9. Ping Router Aby typing ping[ipaddress] at the CLI.
  10. Type show mac address table to view the filter table used in the switch to make forwarding decisions.
  11. Type show interfaces to gather statistics on all interfaces.
  12. Type show int? to see the available Ethernet and Fast Ethernet commands.
  13. Type sho int Ethernet ?to choose the card 0. <0-0> means only one card with 12 or 24ports.
  14. Type shinte0/?to see all available interfaces.
  15. Type shinte0/2to see statistics for interface Ethernet2.
  16. Type delete nvram to delete the startup config.

Note:- You cannot view the startup-config, only the running-config. Also,the running- config is saved automatically to NVRAM.

Lab B.2: 1900 Switch Operations

This second lab will have you set the passwords, IP addresses, and port security available on a 1900 switch.

  1. Type K from the 1900A or 1900B switch console to enter CLI mode.
  2. Type en or enable to enter privileged mode.
  3. Set the three passwords by typing the following:
    config t
    enable password level 1 to dd
    enable password level 15 to dd1
    enable secret to dd2
  4. Type sh run to see the password. Notice that the enable passwords are not encrypted.
  5. Go to int Ethernet0/5 and set the duplex to full.
    config t
    int e0/5 duplex full
  6. Go to interface Ethernet0/6 and set the duplex to half.
    config t
    int e0/6
    duplexhalf
  7. Verify the setting by typing sh interface or shinte0/5 and shinte0/6.
  8. Type the command to remove any IP con
  9. figuration from the switch:
    Config t
    no ip address
  10. Verify that the switc his IP-less by typing show ip.
  11. Set the IPaddress, subnetmask,and default gateway of the switch:
    config t
    ip address 172.16.10.100 255.255.255.0
    ip default-gateway 172.16.10.1
  12. Verify the configuration by typing showip.
  13. Type show mac-address table to see the forwarding table. Notice that all MAC addresses have been found dynamically.
  14. Add a static entry into the filter table by using the command permanent:
    config t
    mac address table permanent 083c.0000.0001 e0/9
  15. Type show mac address-table, and notice the permanent entry for interface e0/9.
  16. Use the mac address table restricted static global configuration command to associate are stricted static address with a particular switched-port interface:
    Config t
    Mac-address-table restricted static 083c.0000.0002
    e0/3 e0/4
    The above command only allows traffic to the restricted static address 083c.0000.0002 on interface e0/3 from interface e0/4.
  17. Go to interface e0/1 and use the port secure max mac count 1 command to enable addressing security and allow only one MAC address in the filter table on that port. By default, up to 132 MAC addresses can be associated with a single port. By using this command, we will allow only one work station.
    Config tInt e0/1
    Port secure max-mac-count 1
  18. 19. Verify which ports have port security on them by typing show mac address table security. Notice that port e0/1 security is enabled.

Lab B.3: Creating VLANs

In this lab, you will create multiple VLANs on only one switch. Lab B.4 will have you create VTP configurations that will allow this VLAN information to be propagated to the second switch.

1. Telnet or connect to the first 1900 switch. Set the hostname of the switch to1900A.

#config t
(config)#hostname
1900A1900A#

2. Create four VLANs (2–5) and name them according to the following list:

VLAN2=Sales
VLAN3=Management
VLAN4=Engineering
VLAN5=Marketing
1900A#config t
Enter configuration commands, oneperline. End withCNTL/Z
1900A(config)#vlan 2 name Sales
1900A(config)#vlan 3 name Management
1900A(config)#vlan 4 name Engineering
1900A(config)#vlan 5 name Marketing
1900A(config)#exit
Verify your VLANs with the show vlancommand.
1900A#sh vlan
VLANName Status Ports
--------------------------------------
1 default Enabled 1-12, AUI, A,B
2 Sales Enabled
3 Management Enabled
4 Engineering Enabled
5 Marketing Enabled 1002
fddi-default Suspended
1003 token-ring-defau Suspended
1004 fddinet-default Suspended
1005 trnet-default Suspended --------------------------------------
# [output cut]

Lab B.4: Assigning VLANs to Switch Ports

In this lab, you will configure two ports of the switch to be a member of each VLAN.

1. Configure ports 1 and 2 to be in VLAN 2. Remember that all ports are in VLAN 1 unless setdifferently.

1900A#config t
Enter configuration commands, oneperline. End withCNTL/Z
1900A(config)#int e0/1
1900A(config-if)#vlan-membership static 2
1900A(config-if)#int e0/2
1900A(config-if)#vlan-membership static 2

2. Assignports3and4tobeinVLAN3.
1900A(config-if)#int e0/3
1900A(config-if)#vlan-membership static 3
1900A(config-if)#int e0/4
1900A(config-if)#vlan-membership static 3

Assign ports 5 and 6 to be in VLAN 4.
1900A(config-if)#int e0/5
1900A(config-if)#vlan-membership static 4
1900A(config-if)#int e0/6
1900A(config-if)#vlan-membership static 4

Assign ports 7 and 8 to be in VLAN 5.
1900A(config-if)#int e0/7
1900A(config-if)#vlan-membership static 5
1900A(config-if)#int e0/8
1900A(config-if)#vlan-membership static 5
1900A(config-if)#exit
1900A(config)#exit

3. Verify your configuration with the show vlancommand.
1900A#sh vlan
VLANName Status Ports
--------------------------------------
1 default Enabled 8-12, AUI, A, B
2 Sales Enabled 1-2
3 Management Enabled 3-4
4 Engineering Enabled 5-6
5 Marketing Enabled 7-8
1002 fddi-default Suspended
1003 token-ring-defau Suspended
1004 fddinet-default Suspended
1005 trnet-default Suspended

4. Verify your VLAN memberships with the showvlan-membership command.
1900A#sh vlan-membership
Port VLAN Membership
-----------------------
1 2 Static
2 2 Static
3 3 Static
4 3 Static
5 4 Static
6 4 Static
7 5 Static
8 5 Static
9 1 Static
10 1 Static
11 1 Static
12 1 Static
AUI 1 Static
A 1 Static
B 1 Static
1900A#

Lab B.5: Configuring Trunking

Before we can share information with our second switch, we need to configure the link between the switches. We don’t necessarily have to configure a trunked link, but then only VLAN 1 information would be transferred between switches, and we want to configure all VLANs’ information to be transferred between switches.

1. On 1900A, configure port 26 to be in auto trunk mode. This will allow the link to be come trunked as soon as we set the second switch’s trunk port toon.
1900A#config t
Enter configuration commands, one per line. End with CNTL/Z
1900A(config)#int f0/26
1900A(config-if)#trunk ?
auto Set DISL state to AUTO
desirable Set DISL state to DESIRABLE
no negotiate Set DISL state to NO NEGOTIATE
off Set DISL state to OFF
on Set DISL state to ON
1900EN(config-if)#trunk auto

2. Attach to the second 1900 switch and name the switch 1900B. Create port 26 as a permanent trunkport.
#config t
Enter configuration commands, one per line. End with CNTL/Z
(config)#hostname 1900B
1900B (config)#int f0/26
1900B(config-if)#trunk ?
auto Set DISL state to AUTO
desirable Set DISL state to DESIRABLE
no negotiate Set DISL state to NO NEGOTIATE
off Set DISL state to OFF
on Set DISL state to ON
1900B(config-if)#trunk on

Lab B.6: Configuring VTP

In this lab, you will configure the 1900A switches with a VTP domain name, configure the second switch as a client, and verify that VTP information is updated from the server to the client.

1. Telnet or connect a console to the 1900A switch. Set the switch to be a server VTP switch. (This is the default but type it in any way for practice.)
1900A#config t
1900A(config)#vtp server

2. Set the VTP domain name to Classroom1. 1900A#configt
1900A(config)#vtp domain Classroom1

3. Verify that the VTP information is configured correctly.
1900A#show vtp

4. Telnet or connect to 1900B, set the VTP domain name, and set the VTP mode to client.
1900B#config t
1900B(config)#vtp domain Classroom1
1900B(config)#vtp client

5. Verify both switches’ VTP configuration by using the show vtp command. Also verify that the VLAN information is propagated from the server switch to the client by using the show vlancommand.

6. From 1900B, type show vlanto see if the VLAN information was propagated from the 1900A switch.
1900B#sh vlan
VLANName Status Ports
--------------------------------------
1 default Enabled 1-12, AUI, A,B
2 Sales Enabled
3 Management Enabled
4 Engineering Enabled
5 Marketing Enabled
1002 fddi-default Suspended
1003 token-ring-defau Suspended
1004 fddinet-default Suspended
1005 trnet-default Suspended
--------------------------------------
Notice that it found all the VLANs, but that all of 1900B’s switch ports are in VLAN 1. Unless you tell it differently, all ports are always in VLANs. You have to set the ports at each switch. (VTP sends VLAN information, not portinformation.)

Lab B.7: Configuring Inter-VLAN Routing with ISL

Now that we have configured our VLANs and set up VTP domain information so both switches have the same VLAN configurations, we need to con- figure the 2600 router to support inter-VLAN routing.

1. Plug the 2600 into one of the Fast Ethernet ports on either switch. It doesn’t matter where you plug the router into the switch fabric.

2. Configure the switch port as a trunk port.
1900A#config t 1900A(config)int f0/027 1900A(config-if)#trunk on

3. Configure the 2600 router FastEthernet port to route between all VLANs.
2621#config t
2621(config)int f0/0.1
2621(config-if)no shutdown
2621(config-subif)#encapsulation isl 1
2621(config-subif)#ip address 172.16.10.1 255.255.255.0
2621(config-subif)#int f0/0.2
2621(config-subif)#encapsulation isl 2
2621(config-subif)#ip address 172.16.20.1 255.255.255.0
2621(config-subif)#int f0/0.3
2621(config-subif)#encapsulation isl 3
2621(config-subif)#ip address 172.16.30.1 255.255.255.0
2621(config-subif)#int f0/0.4
2621(config-subif)#encapsulation isl 4
2621(config-subif)#ip address 172.16.40.1 255.255.255.0
2621(config-subif)#encapsulation isl 5
2621(config-subif)#ip address 172.16.50.1 255.255.255.0
2621(config-subif)#exit
2621(config)#int f0/0
Remember that each host in their configured VLAN should have the same subnet information.

Review Questions

1. Which of the following is not true regarding the 1900 switch?

  1. You can ping from a 1900 switch if configured.
  2. You can ping to a 1900 switch if configured.
  3. You can telnet to a 1900 switch if configured.
  4. You can telnet from a 1900 switch if configured.
  5. Ans- D

2. What command sets interface e0/10 on a 1900 switch to run full- duplex Ethernet?

  1. full duplexon
  2. duplexon
  3. duplexfull
  4. full-duplex
  5. set duplex onfull
  6. Ans- D

3. Which command sets a 1900 switch interface to communicate so its buffer swill not overflow on a congested link?

  1. flowon
  2. duplex flowcontrol
  3. duplexfull-flow-control
  4. fullduplex-flow
  5. Ans- C

4. If you wanted to verify the duplex on a 1900 switch, port 26, what command should you use?

  1. show port26
  2. show int26
  3. show inte0/26
  4. show intf0/26
  5. show intg0/26
  6. show inth0/26
  7. Ans- C

5. Which of the following is true regarding a port status light on a switch?

  1. It is used to see if a loop has occurred on the network.
  2. It is used to identify RTS signaling.
  3. When a device is connected to a port, the port status LED light comes on and stays on.
  4. When a device is connected to a port, the port status LED light comes on and then goes off.
  5. Ans- C

6. If you want to delete the startup-config on a 1900 switch, what command do you use?

  1. erasestartup-config
  2. deletestartup-config
  3. deletenvram
  4. deletestartup
  5. Ans- A

7. What command would you use to identify port 3 on a 1900 switch to be Finance Server?

  1. int e0/3, description Finance Server
  2. int e0/3, descriptionFinance_Server
  3. set port name e0/3 Finance Server
  4. set port name e0/3 Finance_Server
  5. Ans- C

8. What type of cable must you use to connect between two switch up link ports?

  1. Straight
  2. Rolled
  3. Crossover
  4. Fiber
  5. Ans- C

9. How do you set the user mode password on a 1900 switch?

  1. usermode password todd
  2. enable password todd
  3. enable password level 1 todd
  4. enable password level 15 todd
  5. Ans- A

10. What command will set the enable mode password on a 1900switch?

  1. 1900EN(config)#enable password level 1todd
  2. 1900EN(config)#enable password level 15todd
  3. 1900EN#set enable passwordtodd
  4. 1900EN(Config)#enable passwordtodd
  5. Ans- D

11. What command will show you the IP configuration on a 1900switch?

  1. shipconfig
  2. ship
  3. shint config
  4. shint
  5. Ans- D

12. What commands should you use to set the IP address and default gate- way on a 1900 switch?(Choose all that apply.)

  1. ip address 172.16.10.16 255.255.255.0
  2. ip default-gateway 172.16.10.1
  3. ip address 172.16.10.1 mask 255.255.255.0
  4. default-gateway 172.16.10.10
  5. Ans-A,D

13. What is true regarding passwords on a Catalyst 1900 switch?

  1. They must by a minimum of eight characters.
  2. They are case sensitive.
  3. The passwords cannot be less than four characters or more than
  4. They are not case sensitive.
  5. Ans- C

14. What is true about the enable secret password?

  1. It is case sensitive.
  2. It is not used on the 1900 switch.
  3. It is used instead of the enable password if both a reset.
  4. It is not used instead of the enable password if both a reset.
  5. Ans- C

15. Which command will show you the permanent MAC addresses stored in the filter table?

  1. Todd1900EN#shmac-filter-table
  2. Todd1900EN#sh mac-address-table
  3. Todd1900EN(config)#shmac-address-table
  4. Todd1900EN#shfilter-address-table
  5. Ans- B

16. What are the three ways to configure a 1900 switch?

  1. VSM
  2. VLSM
  3. Menu
  4. CLI
  5. CLIM
  6. Ans- A,C,D

17. Which command will allow you to set the name of the switch?

  1. Switch nameCisco1900
  2. Description1900switch
  3. host name1900
  4. hostname 1900 ethernet
  5. Ans- C

18. Which of the following is part of the default configuration of the1900 switch?

  1. CDP:Enabled
  2. IP address: 192.168.10.2
  3. Default gateway:0.0.0.0
  4. Switching mode:FragmentFree
  5. 10BaseT ports: Auto-negotiate duplex mode
  6. 100BaseT ports: Halfduplex
  7. Spanning Tree:Enabled
  8. Console password:Cisco
  9. Ans- G

19. What command will allow you to view the switch statistics for port2?

  1. show int2
  2. show int eth0/2
  3. shinte/2
  4. show interf0/2
  5. Ans- B

20. Which command will show you the statistics for port 27?

  1. show int27
  2. show int eth0/27
  3. sh int f/27
  4. sh interf0/27
  5. Ans- D

21. Which of the following will allow only one MAC address to be associated with a port?

  1. Todd1900EN(config-if)#port secure max-mac-count1
  2. Todd1900EN(config-if)#port max-mac-count secure1
  3. Todd1900EN(config)#mac-address-table restricted static 00A0.246E.0FA8e0/2
  4. Todd1900EN(config)#mac-address-table permanent 2448.60A5e0/4
  5. Ans- A

22. Which of the following ports will set a hardware address on port e0/4 to only MAC address 00A0.2448.60A5?

  1. int e0/4setMAC 00A0.2448.60A5
  2. Todd1900EN(config)#mac-address-table restricted static 00A0.2448.60A5e0/2
  3. Todd1900EN(config)#mac-address-table permanent 2448.60A5e0/4
  4. Todd1900EN(config-if)#port secure max-mac-count 00A0.2448.60A5
  5. Ans- C

23. Which of the following commands allows only port e0/5 on a 1900 switch to communicate with hardware address 00A0.246E.0FA8?

  1. int e0/5 out00A0.246E.0FA8
  2. Todd1900EN(config)#mac-address-table permanent 246E.0FA8e0/4
  3. Todd1900EN(config-if)#port secure max-mac-count 00A0.246E.0FA8
  4. Todd1900EN(config)#mac-address-table restricted static 00A0.246E.0FA8 e0/2e0/5
  5. Ans- B