SWITCHING

- Layer 2
- CAM (Content Addressable Memory) -- MAC table
Vlan MAC Type Port
1 0060.2f25.2d85 Dynamic Fa0/1
1 00d0.bc26.8ace Dynamic Fa0/2
Fa0/4
Fa0/4
command:
Switch#show mac-address-table
aging timer: khoang thoi gian chu ki ma switch luu tru dia chi MAC ung voi Port
Switch 2950, 2960: Layer 2
Switch 3550, 3560, 3750, 4500, 6500: Layer 3: co them chuc nang routing
Co 2 loai chuyen mach trong Switch:
STORE AND FORWARD: complete frame is recerved before forward
Uu diem: co the kiem tra loi khung
Nhuoc diem: cham
CUT-THROUGH
+ Fast-forward switching: immediately forwards a packet after reading the destin
ation address
+ Fragment-free switching: the switch stores the first 64 bytes of the frame bef
ore forwarding
CRC: gia tri kiem tra loi khung
Buffer: hardware (bo nho dem)
SWITCH SECURITY
Physical security
Secure password
Enable SSH for Secure Remote VTY Access
Monitor Access and Traffic
Disable http
Disable Telnet
Disable unused port
Enable port security
CONFIGURING VLANs
VLan = Virtual Lan
A VLAN is a logical broadcast domain that can span multiple physical LAN segment
s
Config VLAN: 2 types
Static VLAN
Dynamic VLAN: use VMPS (VLAN Management Policy Server)
command:
Switch#show vlan brief
2 range:
normal: cau hinh trong switch doanh nghiep (1-1005)
extend: cau hinh trong switch ISP
types of VLAN:
+ Default VLAN (vlan 1): can not delete, rename, remove, add
vlan 1002 - vlan 1005
=> can creat vlan from 2 to 1001
+ Data VLAN
+ Voice VLAN
+ Management VLAN
Config:
1. Switch(config)#vlan [number]
Switch(config-vlan)#name ...
2. Switch#vlan database
Switch#vlan 3
or Switch#vlan 3 name ...
Switch#exit
Add port:
Switch(config)interface Fa0/1
Switch(config-if)switchport mode access
Switch(config-if)switchport access vlan 2
(explain: 1 cong tren Switch co the o 2 mode:
- Access: noi truc tiep voi PC
- Trunk: noi giua 2 switch voi nhau)
Other:
Cach thu 3 de tao vlan va add port:
Fa0/24: + mode: access
+ vlan 4
Switch(config)interface Fa0/4
Switch(config-if)switchport mode access
Switch(config-if)switchport access vlan 4

- VLAN
Creat VLAN
Add port
VLAN Trunking
command: Switch(config-if)#switchport mode trunk
cac VLAN khac nhau du lieu deu co the di tren duong trunk bang cach tagging
VID, VID depend on number of VLAN
Cac cach dong goi du lieu trong Trunk
Encapsulation: - dot1q (802.1q) (chuan mo) (default)
- ISL (cach dong goi cua Cisco)
Trong co che dam pham duong Trung, Cisco dua ra giao thuc DTP - Dynamic
Trunking Protocol (co 3 mode):
- on (default)
switchport mode trunk
(mot cong de mode on thi cong kia tu dong hinh thanh duong trunk)
- dynamic auto
auto on
desirable
=> trunking
auto auto
=> non trunking
- dynamic desirable
desirable trunk
auto
desirable
=> trunking
desirable non negotiate
=> non trunking
CHAP 5: ROUTING WITH A DISTANCE VECTOR PROTOCOL
RIP
- RIPv1
- RIPv2
- v1 ~ v2
- Redistribute static
- Propagate
- Passive-interface (thong tin dinh tuyen k dc gui den cong passive)
- Authentication
- Preventing loop