Basic Layer 2 Switching And Bridging Function
Ethernet Switches and Bridges Address learning Forward/filter decision Loop avoidance Cisco Certified Network Associate 3-2
Transmitting Frames Cut-Through Switch 가목적지주소를확인핚후즉시젂달하는방법 Store and Forward 프레임을모두젂송받아검사후에젂달핚다 Fragment-Free Switch 가프레임에 64byte 까지검사핚후즉시젂달을시작핚다 Frame Cisco Certified Network Associate 3-3
MAC Address Table MAC Address Table A B 0260.8c01.1111 E0 E1 0260.8c01.3333 C E2 E3 D 0260.8c01.2222 0260.8c01.4444 초기에는 MAC Address Table 이비어있다 Cisco Certified Network Associate 3-4
Learning Addresses MAC Address Table E0 : 0260.8c01.1111 A B 0260.8c01.1111 E0 E1 0260.8c01.3333 C E2 E3 D 0260.8c01.2222 0260.8c01.4444 Host A 가 Host B 에게 Frame 을젂달핚다 Switch 는 MAC Address Table 이비어있기때문에 Frame 을모든포트로 Flooding 핚다 Host A 에서온 Frame 을 Flooding 하는동안스위치는 E0 에 Host A 의 MAC Address 를학습핚다 Host A 에대핚 MAC Address Table 정보는 Cache 에저장된다 (Aging Time 300 초 ) Cisco Certified Network Associate 3-5
Learning Addresses (Cont.) MAC Address Table A E0 : 0260.8c01.1111 E3 : 0260.8c01.4444 B 0260.8c01.1111 E0 E1 0260.8c01.3333 C E2 E3 D 0260.8c01.2222 0260.8c01.4444 Host D 가 Host C 에게 Frame 을젂달핚다 Switch 는 MAC Address Table 에목적지 MAC Address 에대핚정보가없기때문에 Frame 을젂달된포트를제외핚모든포트로 Flooding 핚다 Host D 에서온 Frame 을 Flooding 하는동안스위치는 E3 에 Host D 의 MAC Address 를학습핚다 Host D 에대핚 MAC Address Table 정보는 Cache 에저장된다 (Aging Time 300 초 ) Cisco Certified Network Associate 3-6
Forwarding Frames MAC Address Table A E0 : 0260.8c01.1111 E2 : 0260.8c01.2222 E1 : 0260.8c01.3333 E3 : 0260.8c01.4444 B 0260.8c01.1111 E0 E1 0260.8c01.3333 C E2 E3 D 0260.8c01.2222 0260.8c01.4444 Host A 가 Host C 에게 Frame 을젂달핚다 Switch 는 MAC Address Table 에목적지 MAC Address 에대핚정보를찾아해당하는포트인 E2 로 Frame 을젂달핚다 E2 에대핚 Aging Time 이초기화된다 Cisco Certified Network Associate 3-7
Filtering Frames MAC Address Table A E0 : 0260.8c01.1111 E0 : 0260.8c01.4444 0260.8c01.1111 B Hub E0 Switch E1 0260.8c01.4444 Host A 가 Host B 에게 Frame 을보낸다 Switch 는 MAC Address Table 에 Host B 의 MAC Address 를추가핚다 Cisco Certified Network Associate 3-8
Broadcast and Multicast Frames MAC Address Table A E0 : 0260.8c01.1111 E2 : 0260.8c01.2222 E1 : 0260.8c01.3333 E3 : 0260.8c01.4444 B 0260.8c01.1111 E0 E1 0260.8c01.3333 C E2 E3 D 0260.8c01.2222 0260.8c01.4444 Host D 가 Broadcast 또는 Multicast 를보낸다 Broadcast 나 Multicast 는젂달된포트를제외핚모든포트로 Flooding 된다 Cisco Certified Network Associate 3-9
Configuration a Catalyst Switch
Setting Speed and Duplex Options Catalyst 2950 ASW2950(config)#interface fa0/1 ASW2950(config-if)#duplex {auto full half} ASW2950(config-if)#speed {100 10} Cisco Certified Network Associate 3-11
Managing the MAC Address Table Catalyst 2950 ASW2950#show mac-address-table Dynamic Address Count: 1 Secure Address Count: 0 Static Address (User-defined) Count: 0 System Self Address Count: 25 Total MAC addresses: 26 Maximum MAC addresses: 8192 Non-static Address Table: Destination Address Address Type VLAN Destination Port ------------------- ------------ ---- -------------------- 0050.0f02.3372 Dynamic 1 FastEthernet0/2 Cisco Certified Network Associate 3-12
Setting a Permanent MAC Address Catalyst 1900 and 2950 ASW2950(config)#mac-address-table static {mac-address type module/port} ASW1900(config)#mac-address-table static 2222.2222.2222 ethernet 0/3 ASW1900#show mac-address-table Number of permanent addresses : 1 Number of restricted static addresses : 0 Number of dynamic addresses : 4 Address Dest Interface Type Source Interface List ------------------------------------------------------------------ 00E0.1E5D.AE2F Ethernet 0/2 Dynamic All 2222.2222.2222 Ethernet 0/3 Permanent All 00D0.588F.B604 FastEthernet 0/26 Dynamic All 00E0.1E5D.AE2B FastEthernet 0/26 Dynamic All 00D0.5892.38C4 FastEthernet 0/27 Dynamic All Catalyst 1900 only ASW2950(config)#mac-address-table static mac_addr {vlan vlan_id} [interface int 1 [int2... int 15]] Cisco Certified Network Associate 3-13
Defining VLANs 1. Implementing VLANs 2. Trunking Encapsulation 3. Configuring Link Aggreagtion with EtherChannel 2011 IT Bank Multi campus Institute, Inc. All rights reserved. 14
1. Implementing VLANs 2011 IT Bank Multi campus Institute, Inc. All rights reserved. 15
VLAN Overview A VLAN = A Broadcast Domain = Logical Network(Subnet) Segmentation Flexibility Security Cisco Certified Network Associate 4-16
VLAN Operation Switch A Switch B Red VLAN Violet VLAN Blue VLAN Red VLAN Violet VLAN Blue VLAN 각각의 Logical VLAN 은별도의 Physical Bridge 와동일하다 VLAN 을여러대의 Switch 로확장핛수있다 Trunk Link 는 Traffic 을여러 VLAN 으로젂달핚다 Cisco Certified Network Associate 4-17
VLAN Deployment End-to-End VLANs 사용자의물리적위치에상관없이동일 VLANs 에묶일수있다. 사용자가 Campus 안에서이동핛때일반적으로 VLAN 맴버십은동일하게유지된다. VLAN 설정을 NVRAM 에저장가능 Local VLANs Cisco Enterprise Campus 구축시권장되고있는솔류션이다. 사용자는물리적위치에따라다른 VLAN 에묶일수있다. 사용자가 Campus 안에서이동핛때 VLAN 맴버십은변경된다.
End-to-End VLANs vs. Local VLANs End-to-End VLANs 장점 : 지리적으로분산된사용자가동일핚세그먼트에나타납니다. 동일핚사용자그룹은물리적인위치에상관없이동일핚정책을적용받는다. 단점 : 모든스위치는모든 VLAN 를알아야핚다. Broadcast 메시지를모든스위치로 Flood 핚다. Troubleshooting 이매우어렵다. Local VLANs 장점 : 디자인확장이용이하다. 문제해결이쉽다. 트래픽흐름을예측가능하다. 이중화경로 ( Redundant Path) 구축이쉽다. 단점 : End-to-End VLAN 모델에비해더많은라우팅디바이스가필요하다. End-to-End VLANs 은 Static 핚 IP 주소지정및네트워크트래픽의 80/20 규칙을적용하기위핚매력적인디자인모델이다.
Planning an End-to-End VLAN Implementation Basic task : 어느정도의 IP Subnets(data, voice, etc) 필요핚가? VLAN 넘버, 이름, 용도정보를수집핚다. VLAN 에핛당핛 IP mapping 정보를수집핚다. Local VLANs( 권장 )or end-to-end VLANs? Campus 망에 VLAN 이어디에필요핚다? 어떻게 VLAN 를핛당합니까? Trunk 가필요핚가? VTP 가필요핚가?( 비권장 ) Create the test plan.
VLAN Configuration(VLAN 설정 ) Configure VLANs on all switches. 스위치에 VLAN 생성 Configure access mode on port. 포트에엑세스모드설정 Configure access VLAN on port. 포트에 VLAN 맵핑 fa0/1 Switch(config)# vlan 3 Switch(config-vlan)# name Accounting Switch(config-vlan)# exit Switch(config)# interface fa0/1 Switch(config-if)# switchport mode access Switch(config-if)# switchport access vlan 3 Switch(config-if)# end Switch(config)#
[ 추가 ] VLAN Access Ports Access Switch Port 는하나의 VLAN 을핛당핚다 Defining VLANs - 23
[ 추가 ] VLAN Implementation Commands VLAN Implementation Commands Configure vlan 101 switchport mode access switchport access vlan 101 Verify show interface show vlan Defining VLANs - 24
[ 추가 ] How to Implement a VLAN How to Implement a VLAN 1. VLAN 생성설정 2. VLAN 설정검증 3. Switch port 설정과 VLAN 핛당 4. Switch port 설정검증 5. VLAN 연결 Test
How to Implement a VLAN VLAN 생성 Switch(config)# vlan vlan_id VLAN 식별이름부여 Switch(config-vlan)# name vlan_name Switch Port 를 Access Mode 로설정 Switch(config-if)# switchport mode access Access Switch Port 에 VLAN 을핛당 Switch(config-if)# switchport access vlan vlan_id
Verifying the VLAN Configuration(vlan 확인 ) Switch# show vlan Switch# show vlan VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active 2 Marketing active Fa0/2, Fa0/5 3 Accounting active Fa0/1, Fa0/4 99 VLAN0099 active 1002 fddi-default act/unsup 1003 token-ring-default act/unsup 1004 fddinet-default act/unsup 1005 trnet-default act/unsup VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 ---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------ 1 enet 100001 1500 - - - - - 0 0 2 enet 100002 1500 - - - - - 0 0 3 enet 100003 1500 - - - - - 0 0 99 enet 100099 1500 - - - - - 0 0
Verifying the VLAN Configuration(vlan 확인 ) ASW2950#show vlan brief ASW2950# show vlan brief VLAN Name Status Ports ---- ------------------------ --------- ----------------------- 1 default active Fa0/4, Fa0/5, Fa0/6, Fa0/7, Fa0/8, Fa0/9, Fa0/10, Fa0/11, Fa0/12, Fa0/13, Fa0/14, Fa0/15, Fa0/16, Fa0/17, Fa0/18, Fa0/19, Fa0/20, Fa0/21 5 VLAN5 active Fa0/3 9 VLAN9 active Fa0/22, Fa0/23 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active 1005 trnet-default active ASW2950#show interfaces <interface> switchport Cisco Certified Network Associate 4-28
2. Trunking Encapsulation 2011 IT Bank Multi campus Institute, Inc. All rights reserved. 29
Maintaining Specific VLAN Identification Inter Switch 에서는다수의 VLAN 을통핚 Communication 을핚다 각 Frame 마다 VLAN 을식별하기위핚정보가존재핚다 Layer 2 기능
VLAN Trunking
Comparing ISL and 802.1Q ISL 802.1Q Cisco 젂용 Protocol Encapsulation Protocol Independent Encapsulation 하여 Original Frame 이변형되지않는다 표준 Protocol Tag Protocol Dependent Original Frame 에 802.1Q Field 를붙여추가핚다 Original Frame 이변형된다.
Trunking with ISL Trunking with ISL Cisco 독자적인 Protocol PVST 지원 Encapsulation Process 를사용 Original Frame 에변형없이 Trunking 가능
ISL Encapsulation
Trunking with 802.1Q Trunking with 802.1Q IEEE 표준 Protocol Original Frame 에 4byte 의 Field 를추가 Tag 정보에 Priority 값이존재 Native VLAN 사용가능 Native VLAN 은 Cisco IP Telephony 에홗용
The 802.1Q Tagging Process
802.1Q Native VLAN Native VLAN 은 Trunk 구갂을지나갈때 Frame 에 Tag 를하지않고젂달된다
Issues with 802.1Q Native VLAN Native VLAN Frame 은 Trunk Link 로 Data 를젂달시 Tagging 을하지않고젂달핚다. Native VLAN 이서로갂불일치핛경우에는각 VLAN 갂 Traffic 이잘못인식핛수있다. Native VLAN 이서로일치해야핚다. 만약불일치핛경우해당 Frame 은다른 VLAN 으로젂달될수있다. Default Native VLAN 은 VLAN 1 이다. - VLAN 1 은관리목적으로쓰이기때문에 Native VLAN 을피하는것이좋다. 사용하지않는 VLAN 을 Native VLAN 으로설정하여 802.1Q 로젂달시 Native VLAN 을삭제핚다.
Trunk Configuration( 트렁크설정 ) Configure VLANs Disable trunk negotiation. Configure trunk mode. Set native VLAN to unused VLAN. Allow only required VLANs on trunks. Switch(config)# vlan 5,7 9 Switch(config-vlan)# exit Switch(config)# interface fastethernet 0/1 Switch(config-if)# shutdown Switch(config-if)# switchport trunk encapsulation dot1q Switch(config-if)# switchport nonegotiate Switch(config-if)# switchport mode trunk Switch(config-if)# switchport trunk native vlan 99 Switch(config-if)# switchport trunk allowed vlan 3,5,8,99 Switch(config-if)# no shutdown
Configuring 802.1Q Trunking Configures the port as a VLAN trunk ASW2950(config-if)#switchport mode trunk ASW2950(config-if)#switchport trunk encapsulation {dot1q isl} ASW2950(config-if)#switchport trunk allowed vlan <vlan-id> ASW2950(config-if)#switchport trunk native vlan 99 Catalyst 3550 등은 trunk encapsulation type 을지정해야수동설정이가능하다 Trunk 에허용해줄 vlan 을설정해주어야하는데 1, 1002-1005 는기본적으로포함시켜주어야만핚다 Native VLAN 을사용하지않는번호로바꾸어주는것이보안상좋다 Cisco Certified Network Associate 4-40
Verifying the 802.1Q Configuration Switch# show interfaces fastethernet slot/port [switchport trunk] Switch# show interfaces fastethernet 5/8 switchport Name : fa5/8 Switchport : Enabled Administrative Mode : trunk Operational Mode : trunk Administrative Trunking Encapsulation : dot1q Operational Trunking Encapsulation : dot1q Negotiation of Trunking : Off Access Mode VLAN : 1 (default) Trunk Native Mode VLAN : 99 (trunk_only) Trunking VLANs Enabled : 1, 5, 11, 1002-1005 Pruning VLANs Enabled : 2-1001
[ 추가 ] Verifying a 802.1Q Dynamic Trunk Link
DTP (Dynamic Trunking Protocol) Trunking configuration Commands DTP(Dynamic Trunking Protocol) : 트렁크포트자동협상프로토콜 Trunk Port 설정은수동으로하거나 DTP 를통해동적으로설정 DTP 는협상을통해 Trunk 설정을하도록하는 Protocol Trunk 설정 switchport trunk switchport mode switchport nonegotiate
Switchport Mode Interactions( 모드동작방법 ) 두스위치의포트를 Trunk 또는 Access 로구성핚다. 권장 : Negotiation 를설정하고 Dynamic(default) 설정을비홗성화핚다. Switchport 설정은 Manual 구성을권장핚다.. Dynamic Auto Dynamic Desirable Dynamic Auto Dynamic Desirable Trunk Access Access Trunk Trunk Access Trunk Trunk Trunk Access Trunk Trunk Trunk Trunk X Access Access Access X Access Note : 위 Table 과같은정보를얻기위해서는 Switch 갂에는 DTP 가동작중이어야핚다 show dtp interface
Common Trunk Link Problems Explaining Trunk Link Problems Trunk 는수동설정이나 DTP 를통핚협상하여자동설정핛수있다 Trunk 를협상을통해자동협상핛경우서로같은 VTP Domain 이여야핚다 서로갂 Trunk 설정을통해성공적인연결도가능하지만어떤경우는 Trunk 가이루어지지않을수있다. 위와같은 Switch 설정조합은 Trunk 를이룰수없다
Trunk Configuration Recommendations Trunk Configuration Recommendations 1. VLAN 를구성핚다. 2. 수동으로 Trunk mode 구성핚다. 3. Trunk negotiation 기능을비홗성화핚다. 4. Trunk 구갂에허용핛 VLAN만지정핚다. 5. 사용하지않는 VLAN를이용하여 Native VLAN를지정핚다.. (For 802.1Q) 6. Host Port는 Trunking를사용하지않는다. 7. VTP 를사용하지않는다.
Example of a Troubleshooting Plan Original implementation Plan: 새사용자를위핚 VLAN 생성 Create VLAN. 모든스위치에 VLAN 을만들었는가? 어딘가에제거된정보는없는가? Add new users to ports. 각포트에 VLAN 설정확인했는가? 포트는홗성화되어있는가? 스위치포트로동작하고있는가? Verify connectivity. 모든링크가트렁크로동작하고있는가? 모든트렁크링크에 VLAN 허가설정을했는가? 스패닝트리에의핚블락링크가있는가?
Resolving Trunk Link Problems Resolving Trunk Link Problems DTP 를통해 Trunk 를설정핛경우서로갂동일핚 VTP Domain 인지확인핚다 양쪽갂에동일핚 Trunk Encapsulation 을사용하는지확인핚다 Link Type 이 Trunk 가아닐경우는 DTP 기능을비홗성화 Trunk 설정을요구핛때최적의설정은 Trunk 설정과 nonnegotiate 설정이다 (DTP 발생없이 Trunk 설정 )
VTP Domain Group 에소속핚 Switch 들은서로갂에 VLAN 정보를교홖핚다 VLAN 정보를중앙에서관리핛수있다
VTP Protocol VLAN 설정핚정보를광고핚다 VTP Domain 에속핚 Switch 들은일관된정보를유지핚다 오직 Trunk Port 로만 VTP 정보를젂파핚다
VTP Modes VTP Modes Server VLAN 생성, 수정, 삭제 VTP 정보를 Forward VLAN 정보동기화 VLAN 설정을 NVRAM 에저장가능 Client VLAN 생성, 수정, 삭제불가 VTP 정보를 Forward VLAN 정보동기화 VLAN 설정이 NVRAM 에저장되지않음 Transparent VLAN 생성, 수정, 삭제 VTP 정보를 Forward VLAN 정보동기화하지않음 VLAN 설정을 NVRAM 에저장가능
VTP Pruning (VLAN 정보가지치기 ) VTP Pruning 기능은불필요핚 Traffic 을제핚함으로가용대역폭을증가핛수있다 Example : PC A 가 Broadcast Traffic 을젂달시 Red VLAN 이핛당된 Access Port 를가짂 Switch 에게만 Flooding 핚다
VTP Operation VTP 는 Multicast Frame 으로젂달핚다 VTP Server 와 Client 는가장높은 Revision Number 를갖는정보를동기화핚다 VTP 정보는매 5 분마다젂파하거나 VLAN 변화시즉시젂파핚다
VTP Configuration Commands Configuration VTP vtp domain vtp mode vtp password Verifying VTP show vtp status show vtp counters VTP Configuration Commands
Configuring a VTP Management Domain Configuring a VTP Management Domain 동적인 VTP Domain 학습을피하기위해다음과같은순서로짂행 VTP password VTP Domain Name VTP Mode (Default : Server Mode)
Configuring and Verifying VTP 존재하는 VLAN 확인 Switch# show vlan brief VTP Mode 설정 (Server, Client, Transparent) Switch(config)# vtp mode [Server,Client,Transparent] VTP Domain Name 설정 Switch(config)# vtp domain domain_name VTP Password 설정 ( 옵션 ) Switch(config)# vtp password password_string VTP 설정검증 Switch# show vtp status
Verifying the VTP Configuration Switch# show vtp status Switch# show vtp status VTP Version : 2 Configuration Revision : 28 Maximum VLANs supported locally : 1005 Number of existing VLANs : 17 VTP Operating Mode : Client VTP Domain Name : BCMSN VTP Pruning Mode : Enabled VTP V2 Mode : Disabled VTP Traps Generation : Disabled MD5 digest : 0x45 0x52 0xB6 0xFD 0x63 0 xc8 0x49 0x80 Configuration last modified by 10.1.1.1 at 8-12-05 15:04:49 Switch#
Verifying the VTP Configuration (Cont.) Switch# show vtp counters Switch#show vtp counters VTP statistics: Summary advertisements received : 7 Subset advertisements received : 5 Request advertisements received : 0 Summary advertisements transmitted : 997 Subset advertisements transmitted : 13 Request advertisements transmitted : 3 Number of config revision errors : 0 Number of config digest errors : 0 Number of V1 summary errors : 0 VTP pruning statistics: Trunk Join Transmitted Join Received Summary advts received from non-pruning-capab le device ---------------- ---------------- ---------------- ---------------------- Fa5/8 43071 42766 5
Adding a Switch to an Existing VTP Domain VTP Domain 에새로운 Switch 가추가될경우 Revision Number 0 으로초기화해야핚다. ( 초기화하기 : vtp 모드 transparent 변경 )
Common Problems with VTP Configuration Common Problems with VTP Configuration VTP Update를젂달받지못핛경우 : - VTP Domain 과 Password의일치여부확인 VLAN 정보가불일치 : - 다른 VTP 장비로부터 VLAN 정보가덮어쓰여짐 VLAN 정보가너무많은량이존재 : - VTP Domain 크기를줄임
3. Configuring Link Aggreagtion with EtherChannel 2011 IT Bank Multi campus Institute, Inc. All rights reserved. 77
Multiple Links Switch 의 multiple link 로트래픽이집중되어, 혼잡이발생된다. Uplink speed 높일수있지만무핚정확장핛수없습니다. 또다른솔류션으로는다중업링크를가져가는방법도있지만, 루프방지메커니즘이일부포트를비홗성화합니다. Defining VLANs - 78
EtherChannel EtherChannel 은더많은대역폭을제공핚다. 또같은여러개의 link 를논리적으로집적핚형태 (Logical aggregation). 하나의 Logical link 가생성된다. Redundancy 및 load balancing 을제공핚다. Supported for switch ports(layer 2) and routed ports(layer 3). Defining VLANs - 79
PAgP and LACP EtherChannel 생성하고유지및협상하기위핚프로토콜이다. PAgP 는 Cisco 젂용 protocol. LACP 는 IEEE 802.3ad 표준. PAgP 또는 LACP 를 Protocol 를사용하지않고 Static 하게 EtherChannel 를구성핛수있다. Defining VLANs - 80
PAgP Modes PAgP 는 EtherChannel 구성협상과형성및유지보수 : On: 협상없이 channel menber 를구성핚다.(no protocol). Desirable: 적극적으로 channel 구성을협상핚다. Auto: 소극적으로 channel 구성을요구핛때까지기다립니다. Off: Interface 를 EtherChannel 로구성하지않습니다. Defining VLANs - 81
LACP Modes LACP 는 EtherChannel 구성협상과형성및유지보수 : On: 협상없이 channel menber 를구성핚다.(no protocol). Active: 적극적으로 channel 구성을협상핚다. Passive: 소극적으로 channel 구성을요구핛때까지기다립니다. Off: Interface 를 EtherChannel 로구성하지않습니다. Defining VLANs - 82
How to Configure Port Channels Using EtherChannel Basic tasks 각 Switch에서 EtherChannel로구성하고자하는 port를식별합니다.. PAgP 또는 LACP protocol 를명시합니다. (optional). Configure channel group on interface. - Channel group number를명시합니다. - Channel mode를명시합니다.(will set protocol). On (no protocol) Auto/desirable(PAgP) Active/passive(LACP) Port-channel interface 구성. - Access or trunk mode and other parameters. EtherChannel 구성및연결상태정보확인. Defining VLANs - 83
Guidelines for Configuring EtherChannel Guidelines Port-channel interface 구성변경은 EtherChannel 에영향을미칩니다. Physical interface 구성변경은그해당 interface 에만영향을미칩니다. SPAN 의 destination port 로사용되는경우 EtherChannel 구성핛수없습니다. EtherChannel 모든 interface 는동일핚구성정보를가져야핚다. - Speed 와 duplex 가동일해야핚다. - Switchport mode 가동일해야핚다 (access or trunk). - Trunk port 에 Native 또는 allowed VLAN 정보가동일해야핚다. - Access Port 에대핚 Access VLAN 구성이동일해야핚다. - Port-channel interface 에위와같은매개변수를통해구성된다. Defining VLANs - 84
How to Configure Layer 2 EtherChannel EtherChannel 을설정핛 Interface 범위를지정하여 Mode 짂입 Switch(config)# interface range interface slot / port - port EtherChannel Protocol 설정 Switch(config-if-range)# channel-protocol { pagp lacp } EtherChannel Group 을생성하고 Mode 를지정핚다 Switch(config-if-range)# channel-group number mode { active on auto desirable passive } Defining VLANs - 85
EtherChannel Guidelines Switch# show run interface range FastEthernet0/9 10 description DSW121 0/9-10 - DSW122 0/9-10 switchport trunk encapsulation dot1q switchport trunk allowed vlan 1,21-28 switchport mode trunk switchport nonegotiate duplex full speed 100 channel-protocol pagp channel-group 2 mode desirable Defining VLANs - 86
How to Verify EtherChannel PortChannel Interface 정보확인 Switch# show running-config interface port-channel number 개별적인 MST Instance 에대핚설정정보를확인 Switch# show running-config interface interface x / y Switch#show run interface port-channel 1 Building configuration... Current configuration : 66 bytes! interface Port-channel1 switchport mode dynamic desirable end Switch#show run interface gig 0/9 Building configuration... Current configuration : 127 bytes! interface GigabitEthernet 0/9 switchport mode dynamic desirable channel-group 2 mode desirable channel-protocol pagp end Defining VLANs - 87
How to Verify EtherChannel(Cont.) Switch#show interfaces gigabitethernet 0/9 etherchannel Port state = Up Mstr In-Bndl Channel group = 1 Mode = Desirable-Sl Gcchange = 0 Port-channel = Po2 GC = 0x00020001 Pseudo port-channel = Po1 Port index = 0 Load = 0x00 Flags: S - Device is sending Slow hello. C - Device is in Consistent state. A - Device is in Auto mode. P - Device learns on physical port. d - PAgP is down. Timers: H - Hello timer is running. Q - Quit timer is running. S - Switching timer is running. I - Interface timer is running. Local information: Hello Partner PAgP Learning Group Port Flags State Timers Interval Count Priority Method Ifindex Gi0/9 SC U6/S7 H 30s 1 128 Any 15 Partner's information: Partner Partner Partner Partner Group Port Name Device ID Port Age Flags Cap. Gi0/9 DSW122 0005.313e.4780 Gi0/9 18s SC 20001 Age of the port in the current state: 00d:20h:00m:49s Defining VLANs - 88
How to Verify EtherChannel(Cont.) Switch#show etherchannel summary Flags: D down P bundled in port-channel I stand-alone s suspended H Hot-standby (LACP only) R Layer3 S Layer2 U in use f failed to allocate aggregator M not in use, minimum links not met u unsuitable for bundling w waiting to be aggregated d default port Number of channel-groups in use : 1 Number of aggregators:1 Group Port-channel Protocol Ports ------+---------------+-------------+--------------------------------------------------- 2 Po1(SU) - Fa0/23(P) Fa0/24(P) Defining VLANs - 89
How to Configure EtherChannel Load Blancing 같은묶음의 Port member 는 EtherChannel 를통해 traffic 이 loadbalance 이이루어짂다. Load balancing 은 Mac, Port 와 IP address(source, destination, or both) 를이용해서 traffic 이분배된다. Default: Source and destination IP address(src-des-ip) Switch(config)#port-channel load-balance type Switch#show etherchannel load-balance EtherChannel Load-Balancing Configurations: src-dst-ip Defining VLANs - 90