Page 24

Volume 1 – Lab 2

2.6

IPexpert CCIE R&S Detailed Solutions Guide

Only allow the defined VLANs across the link.  Now it's time to add a little security into our mix. The "switchport trunk allowed" command will help us decide which VLANs are or are not allowed on the link. Cat1 - Cat4 int range Fa0/19 - 24 switchport trunk allowed vlan 1,12,40,100,300,567

Cat1 int range po12 , po13 , po14 switchport trunk allowed vlan 1,12,40,100,300,567

Cat2 int range po12 , po23 , po24 switchport trunk allowed vlan 1,12,40,100,300,567

Cat3 int range po13 , po23 , po34 switchport trunk allowed vlan 1,12,40,100,300,567

Cat4 int range po14 , po24 , po34 switchport trunk allowed vlan 1,12,40,100,300,567

 Why do it on the physical links and etherchannel? In case something doesn't work? It's an easy cut/paste if nothing else.  You'll start to get inconsistent messages. Cutting and pasting will help speed things up here. Cat1(config-if-range)# 9w4d: %EC-5-CANNOT_BUNDLE2: Fa0/19 is not compatible with Fa0/20 and will be suspended (VLAN mask is different) 9w4d: %EC-5-COMPATIBLE: Fa0/19 is compatible with port-channel members 9w4d: %EC-5-CANNOT_BUNDLE2: Fa0/21 is not compatible with Fa0/22 and will be suspended (VLAN mask is different) 9w4d: %EC-5-COMPATIBLE: Fa0/21 is compatible with port-channel members 9w4d: %EC-5-CANNOT_BUNDLE2: Fa0/23 is not compatible with Fa0/24 and will be suspended (VLAN mask is different) 9w4d: %EC-5-COMPATIBLE: Fa0/23 is compatible with port-channel members Cat1(config-if-range)#

 Check and make sure we didn't wait too long. Cat1(config-if-range)#do sh int | in errd Cat1(config-if-range)# Cat2(config-if-range)#do sh int | in errd Cat2(config-if-range)# Cat3(config-if-range)#do sh int | in errd Cat3(config-if-range)# Cat4(config-if-range)#do sh int | in errd Cat4(config-if-range)#

48

Copyright © 2010 by IPexpert, Inc. All Rights Reserved.

v1500

R&S_Volume_1_DSG_v11.0_Lab2  

IPexpert’s Detailed Solution Guide for the Cisco® CCIE™ v4 Routing & Switching Lab Exam Volume 1 At the beginning of each section, you w...

Advertisement