4. 스위치재부팅을실시한다. ( 만약, Save 질문이나오면 'no' 를실시한다.) SWx#reload System configuration has been modified. Save? [yes/no]: no Proceed with reload? [confirm] (

[ 실습 ] 스위치장비초기화 1. NVRAM 에저장되어있는 'startup-config' 파일이있다면, 삭제를실시한다. SWx>enable SWx#erase startup-config Erasing the nvram filesystem will remove all configuration files Continue? [confirm] ( 엔터 ) [OK] Erase of nvram: complete %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram 2. Flash 메모리에 'vlan.dat' 파일이있다면, 삭제를실시한다. ( 만약, 없다면 '4' 번과정을실시한다.) SWx#show flash System flash directory: File Length Name/status 3 8662192 c3560-advipservicesk9-mz.122-37.se1.bin 2 28282 sigdef-category.xml 1 227537 sigdef-default.xml 4 616 vlan.dat [8918627 bytes used, 55097757 available, 64016384 total] 63488K bytes of processor board System flash (Read/Write) SWx#delete flash:vlan.dat Delete filename [vlan.dat]? ( 엔터 ) Delete flash:/vlan.dat? [confirm] ( 엔터 ) 3. 'vlan.dat' 파일만삭제되었는지확인하도록한다. ( 만약, flash 메모리전체가삭제되었다면, '4' 번과정을실시하지않고강사에게꼭얘기한다.) SWx#show flash System flash directory: File Length Name/status 3 8662192 c3560-advipservicesk9-mz.122-37.se1.bin 2 28282 sigdef-category.xml 1 227537 sigdef-default.xml [8918011 bytes used, 55098373 available, 64016384 total] 63488K bytes of processor board System flash (Read/Write) 블로그 : net123.tistory.com - 1 - 저자김정우

4. 스위치재부팅을실시한다. ( 만약, Save 질문이나오면 'no' 를실시한다.) SWx#reload System configuration has been modified. Save? [yes/no]: no Proceed with reload? [confirm] ( 엔터 ) ~~ 스위치재부팅 ~~ --- System Configuration Dialog --- Would you like to enter the initial configuration dialog? [yes/no]: no % Please answer 'yes' or 'no'. Press RETURN to get started ( 엔터 ) Switch>enable Switch# 5. 라우터초기화및재부팅 Rx#erase startup-config Erasing the nvram filesystem will remove all configuration files Continue? [confirm] ( 엔터 ) [OK] Erase of nvram: complete %SYS-7-NV_BLOCK_INIT: Initialized the geometry of nvram Rx#reload System configuration has been modified. Save? [yes/no]: no Proceed with reload? [confirm] ( 엔터 ) 블로그 : net123.tistory.com - 2 - 저자김정우

[ 실습 ] VLAN & STP & HSRP 로드분산실습 ( 스위치 4 대 ) 1. DSW1, DSW2, ASW1, ASW2, R1~R2 에서기본설정을실시한다. ( 모든실습진행시설정하는것을권장함 ) @ DSW1, DSW2, ASW1, ASW2 @ R1~R2 (y 는장비번호 ) en conf t hostname 장비이름 no ip domain-lookup line con 0 exec-timeout 0 0 logg syn line vty 0 15 no login privilege level 15 int vlan 1 ip address 192.168.100.y 255.255.255.0 ip default-gateway 192.168.100.254 en conf t hostname Ry no ip domain-lookup line con 0 exec-timeout 0 0 logg syn line vty 0 4 no login privilege level 15 2. DSW1, DSW2, ASW1, ASW2 에서트렁크 & RSTP 설정을실시한다. @ ASW1 @ ASW2 spanning-tree mode rapid-pvst int ramge fa0/11-12 switchport trunk encapsulation dot1q switchport mode trunk @ DSW1 spanning-tree mode rapid-pvst int ramge fa0/11-12 switchport trunk encapsulation dot1q switchport mode trunk @ DSW2 spanning-tree mode rapid-pvst int ramge fa0/1 2, fa0/10, fa0/20 switchport trunk encapsulation dot1q switchport mode trunk spanning-tree mode rapid-pvst int ramge fa0/1 2, fa0/10, fa0/20 switchport trunk encapsulation dot1q switchport mode trunk 블로그 : net123.tistory.com - 3 - 저자김정우

int fa0/10 spanning-tree portfast trunk All Switch#show int trunk int fa0/10 spanning-tree portfast trunk 3 R1 과 R2 에서인터페이스설정및 NAT 관련설정을실시한다. @ R1 @ R2 access-list 10 permit 10.0.0.0 0.255.255.255 source list 10 interface fa0/1 overload int fa0/0 int fa0/0.501 encapsulation dot1q 501 ip address 10.1.1.1 255.255.255.0 int fa0/0.502 encapsulation dot1q 502 ip address 10.1.2.1 255.255.255.0 int fa0/0.503 encapsulation dot1q 503 ip address 10.1.3.1 255.255.255.0 int fa0/0.504 encapsulation dot1q 504 ip address 10.1.4.1 255.255.255.0 int fa0/1 ip address 192.168.1.X 255.255.255.0 ip nat outside ip route 0.0.0.0 0.0.0.0 192.168.1.1 access-list 10 permit 10.0.0.0 0.255.255.255 source list 10 interface fa0/1 overload int fa0/0 int fa0/0.501 encapsulation dot1q 501 ip address 10.1.1.2 255.255.255.0 int fa0/0.502 encapsulation dot1q 502 ip address 10.1.2.2 255.255.255.0 int fa0/0.503 encapsulation dot1q 503 ip address 10.1.3.2 255.255.255.0 int fa0/0.504 encapsulation dot1q 504 ip address 10.1.4.2 255.255.255.0 int fa0/1 ip address 192.168.1.Y 255.255.255.0 ip nat outside ip route 0.0.0.0 0.0.0.0 192.168.1.1 블로그 : net123.tistory.com - 4 - 저자김정우

R1,R2#show ip route R1,R2#show int fa0/0.501 R1,R2#show int fa0/0.502 R1,R2#show int fa0/0.503 R1,R2#show int fa0/0.504 R1,R2#show ip int brief R1,R2#ping 168.126.63.1 4. 모든스위치에서 VLAN 생성하고, ASW1 과 ASW21 에서 VLAN Access 설정을실시한다. @ All Switch vtp mode transparent vlan 501,502,503,504 @ ASW1 @ ASW2 int fa0/1 switchport mode access switchport access vlan 501 spanning-tree portfast int fa0/2 switchport mode access switchport access vlan 503 spanning-tree portfast All Switch#show vlan brief ASW1,ASW2#show vlan brief int fa0/1 switchport mode access switchport access vlan 502 spanning-tree portfast int fa0/2 switchport mode access switchport access vlan 504 spanning-tree portfast 5. STP Blocking 포트선정 - VLAN 501&503은 ASW1-DSW1-R1 링크를통하여인터넷이되도록하여라. - VLAN 502&504는 ASW2-DSW2-R2 링크를통하여인터넷이되도록하여라. @ DSW1 @ DSW2 spanning-tree vlan 501,503 root primary spanning-tree vlan 501,503 root secondary spanning-tree vlan 502,504 root secondary spanning-tree vlan 502,504 root primary ASW1#show spanning-tree vlan 501,503 <- F0/12 포트 Blocking 확인 ASW2#show spanning-tree vlan 502,504 <- F0/11 포트 Blocking 확인 블로그 : net123.tistory.com - 5 - 저자김정우

6. R1 & R2 HSRP 설정 본교재는수업용으로제작된게시물입니다. - VLAN 501&503은 R1이 Active Router, R2가 Standby Router가되도록하여라. - VLAN 502&504는 R2가 Active Router, R1이 Standby Router가되도록하여라. - F0/1 외부인터페이스가장애발생될경우에도장애이전이되도록구성하여라. @ R1 @ R2 int fa0/0.501 standby 1 ip 10.1.1.254 standby 1 priority 120 standby 1 preempt standby 1 track fa0/1 30 int fa0/0.502 standby 2 ip 10.1.2.254 standby 2 preempt int fa0/0.503 standby 3 ip 10.1.3.254 standby 3 priority 120 standby 3 preempt standby 3 track fa0/1 30 int fa0/0.504 standby 4 ip 10.1.4.254 standby 4 preempt int fa0/0.501 standby 1 ip 10.1.1.254 standby 1 preempt int fa0/0.502 standby 2 ip 10.1.2.254 standby 2 priority 120 standby 2 preempt standby 2 track fa0/1 30 int fa0/0.503 standby 3 ip 10.1.3.254 standby 3 preempt int fa0/0.504 standby 4 ip 10.1.4.254 standby 4 priority 120 standby 4 preempt standby 4 track fa0/1 30 6. PC IP 주소설정 VLAN 도메인 PC 이름 IP 주소 /Prefix 기본게이트웨이 DNS 서버주소 VLAN 501 A 10.1.1.101/24 10.1.1.254 VLAN 502 C 10.1.2.101/24 10.1.2.254 VLAN 503 B 10.1.3.101/24 10.1.3.254 168.126.63.1 VLAN 504 D 10.1.4.101/24 10.1.4.254 R1,R2#show ip route R1,R2#ping 168.126.63.1 블로그 : net123.tistory.com - 6 - 저자김정우

영리목적으로사용할경우저작권법제30조항에의거법적처벌을받을수있습니다. 7. VLAN 501&503 도메인 HSRP 테스트실시 A/B>ping 168.126.63.1 A/B>tracert 168.126.63.1 <- 평상시에는 R1 통해서인터넷이되어야한다. - R1 F0/0 -> shutdown 실시 A/B>ping 168.126.63.1 A/B>tracert 168.126.63.1 <- R1 F0/0 장애발생시, R2 통해서인터넷이되어야한다. - R1 F0/0 -> 실시 A/B>ping 168.126.63.1 A/B>tracert 168.126.63.1 <- R1 F0/0 장애가복구되면, R1 통해서인터넷이되어야한다. - R1 F0/1 -> shutdown 실시 A/B>ping 168.126.63.1 A/B>tracert 168.126.63.1 <- R1 F0/1 외부인터페이스장애발생시, R2 통해서인터넷이되어야한다. - R1 F0/1 -> 실시 블로그 : net123.tistory.com - 7 - 저자김정우

영리목적으로사용할경우저작권법제30조항에의거법적처벌을받을수있습니다. 8. VLAN 502&504 도메인 HSRP 테스트실시 C/D>ping 168.126.63.1 C/D tracert 168.126.63.1 <- 평상시에는 R2 통해서인터넷이되어야한다. - R2 F0/0 -> shutdown 실시 C/D>ping 168.126.63.1 C/D>tracert 168.126.63.1 <- R2 F0/0 장애발생시, R1 통해서인터넷이되어야한다. - R2 F0/0 -> 실시 C/D>ping 168.126.63.1 C/D>tracert 168.126.63.1 <- R2 F0/0 장애가복구되면, R2 통해서인터넷이되어야한다. - R2 F0/1 -> shutdown 실시 C/D>ping 168.126.63.1 C/D>tracert 168.126.63.1 <- R2 F0/1 외부인터페이스장애발생시, R1 통해서인터넷이되어야한다. - R2 F0/1 -> 실시 블로그 : net123.tistory.com - 8 - 저자김정우