Buscar

Blogger templates

SELAMAT DATANG DI BLOGSPOT RITA FEBRINA

Páginas

tugas kelompok

Tugas Kelompok

 Kali  ini  saya  mendokumentasikan  tentang  bagaimana  mengkonfigurasi  jaringan  VLAN  pada
network  switching  layer  2.  Di  sini  saya  menggunakan  cisco  simulator  4, meski  pun  kita  tidak
mengakses  perangkat  switch  secara  real,  konfigurasi  simulator  ini  cukup  canggih  dan  sangat
membantu,  sayang  nya ada  beberapa perintah  yang  tidak  support pada  simulator  tersebut,  seperti
menjalankan  spaning  tree.  Terus  terang  saja  konfigurasi  jaringan  pada  Network  VLAN  cukup
sederhana,  tetapi  pemahaman  mendasar  tentang  konsep  bagaimana  network  switching  layer  2
bekerja sangat membantu anda. Ada beberapa hal yang saya  ingin anda ketahui disini, agar dapat
membantu  anda  dalam  memahami  dunia  networking  VLAN,  pastikan  anda  memahami  konsep-
konsep dasar yang dibawah ini :
- konsep dasar TCP/IP, Broadcast domain, collision domain
- konsep dasar bagaimana switching layer 2 bekerja
- konsep dasar Spanning Tree
- konsep dasar VLAN 
- Konsep dasar Trunking
- konsep VTP (Virtual Trunking Protokol)
- bagaiman VTP Server dan VTP Clien bekerja
- konsep enkapsulation ISL dan dot1Q
- Tentu saja bagaiman cara Routing antar VLAN
- Setting dasar sebuah VLAN seperti hostname, password, dan ip address
Hanya  itu  saja  yang  diperlukan  untuk memahami  dunia  VLAN,  ketika  anda  memahami  semua
konsep dasar diatas maka  sebesar  apapun  network VLAN  yang  anda  bangun  tidak akan menjadi
masalah, untuk  tingkat pemula dan setting VLAN standart  tentunya. Di sini saya  tidak membahas
tentang  semua  konsep-konsep  diatas  karena  untuk  membahas  itu  semua  memerlukan  ruangan
tersendiri. Untuk memahami semua konsep diatas anda bisa googling di internet, OK

Baik mari kita mulai membangun  jaringan VLAN pertama kita. Pada skenario kita kali  ini, VLAN

yang kita bangun terdiri dari  :
- 6 buah Cisco Switch 2950 dan 1 Buah Cisco Router
- 15 Host yang masing-masing Switch terkoneksi dengan 3 host
Berikut Data lengkap Alokasi IP address dari Network VLAN yang kita bangun

Langkah-langkah yang dilakukan dalam membangun jaringan VLAN ini adalah :
1. Design Network VLAN yang anda bangun
   - Buat design network, nama group VLAN dan Alokasi Subnet IP addres pada tiap VLAN
1. Konfigurasi Router-VLAN
   - Setting Hostname
   - Setting Password
   - Setting Subinterface
   - Setting encapsulation dotlq x
   - Setting ip address untuk segmentasi VLAN
2. konfigurasi MainSwitch
   pada main switch yang dikofigurasi adalah
   - Setting HostName
   - Setting Password
   - Setting IP address VLAN
   - Setting Trunking pada port yang terkoneksi dengan perangkat lain
   - Setting VTP Server
   - Setting VTP Domain
   - Setting VTP Database
   - Setting nomor dan nama-nama VLAN
3. Konfigurasi Switch yang bergabung dalam VLAN
   - Setting Hostname
   - Setting Password
   - Setting IP Address VLAN
   - Setting Trunking pada port yang terkoneksi dengan perangkat lain
   - Setting VTP Client
   - Setting VTP Domain
   - Setting Port untuk didaftarkan pada suatu VLAN   
4. Verifikasi koneksi dan VLAN membership
   - Melihat pada switch port mana yang sudah di daftarkan ke VLAN
   - Melihat VLAN membership dari setiap switch
   - Cek Koneksi dengan ping ke setiap segment network dari berbagai tempat

Sebenarnya konfigurasi VLAN cukup sederhana anda hanya mengikuti konfigurasi seperti dibawah

ini. tapi sekali lagi pemahaman mendasar tentang konsep yang berhubungan dengan VLAN seperti
trunking, protokol ISL atau IEE 802.1Q (dot1q) cukup membantu dalam trobleshooting ke depan
Mari kita mulai konfigurasi Network VLAN kita :
Gambar Topologi VLAN yang akan dibangun

Router Con0 is now available

Press RETURN to get started!

Router>enable 
% Incomplete command.
Router#configure terminal 
% Incomplete command.
Router(config)#hostname Route_VLAN
Route_VLAN(config)#enable secret fery
Route_VLAN(config)#line console 0
Route_VLAN(config-line)#password fery
Route_VLAN(config-line)#login
Route_VLAN(config-line)#exit
Route_VLAN(config)#line vty 0 4
Route_VLAN(config-line)#password fery
Route_VLAN(config-line)#login
Route_VLAN(config-line)#exit
Route_VLAN(config)#service password-encryption 
Route_VLAN(config)#interface fastethernet 0/0
Route_VLAN(config-if)#no ip address 
Route_VLAN(config-if)#no shutdown 
03:37:51 %LINK-3-UPDOWN:  Interface Fastethernet0/0, changed state to up
03:37:51 %LINEPROTO-5-UPDOWN: Line protocol on  Interface Fastethernet0/0, changed  state
to up
Route_VLAN(config-if)#exit
Route_VLAN(config)#interface fastethernet 0/0.1

Route_VLAN(config-subif)#encapsulation dot1Q 1

Route_VLAN(config-subif)#ip address 172.16.10.1 255.255.255.0
Route_VLAN(config-subif)#exit
Route_VLAN(config)#interface fastethernet 0/0.2
Route_VLAN(config-subif)#encapsulation dot1Q 2
Route_VLAN(config-subif)#ip address 192.168.20.1 255.255.255.0
Route_VLAN(config-subif)#exit
Route_VLAN(config)#interface fastethernet 0/0.3
Route_VLAN(config-subif)#encapsulation dot1Q 3
Route_VLAN(config-subif)#ip address 192.168.30.1 255.255.255.0
Route_VLAN(config-subif)#exit
Route_VLAN(config)#interface fastethernet 0/0.4
Route_VLAN(config-subif)#encapsulation dot1Q 4
Route_VLAN(config-subif)#ip address 192.168.40.1 255.255.255.0
Route_VLAN(config-subif)#exit
Route_VLAN(config)#interface fastethernet 0/0.5
Route_VLAN(config-subif)#encapsulation dot1Q 5
Route_VLAN(config-subif)#ip address 192.168.50.1 255.255.255.0
Route_VLAN(config-subif)# --->CTRL+Z
Route_VLAN#copy running-config startup-config 
Destination filename [startup-config]? 
Building configuration...
[OK]
Route_VLAN#

switch Con0 is now available

Press RETURN to get started!

switch>enable 
% Incomplete command.
switch#configure terminal 
% Incomplete command.
switch(config)#hostname 2950-MainSwitch
2950-MainSwitch(config)#enable secret fery
2950-MainSwitch(config)#line console 0
2950-MainSwitch(config-line)#password fery
2950-MainSwitch(config-line)#login
2950-MainSwitch(config-line)#exit
2950-MainSwitch(config)#line vty 0 15
2950-MainSwitch(config-line)#password fery
2950-MainSwitch(config-line)#login
2950-MainSwitch(config-line)#exit
2950-MainSwitch(config)#service password-encryption 
2950-MainSwitch(config)#interface fastethernet 0/6
2950-MainSwitch(config-if)#switchport mode trunk 
2950-MainSwitch(config-if)#description Trunking to Router-VLAN
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface fastethernet 0/1
2950-MainSwitch(config-if)#switchport mode trunk 
2950-MainSwitch(config-if)#description Trunking to A_2950
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface fastethernet 0/2

2950-MainSwitch(config-if)#switchport mode trunk 

2950-MainSwitch(config-if)#description Trunking to B_2950
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface fastethernet 0/3
2950-MainSwitch(config-if)#switchport mode trunk 
2950-MainSwitch(config-if)#description Trunking to C_2950
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface fastethernet 0/11
2950-MainSwitch(config-if)#switchport mode trunk 
2950-MainSwitch(config-if)#description Trunking to D_2950
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface fastethernet 0/12
2950-MainSwitch(config-if)#switchport mode trunk 
2950-MainSwitch(config-if)#description Trunking to E_2950
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#interface VLAN 1
2950-MainSwitch(config-if)#ip address 172.16.10.2 255.255.255.0
2950-MainSwitch(config-if)#no shutdown 
2950-MainSwitch(config-if)#exit
2950-MainSwitch(config)#ip default-gateway 172.16.10.1 
2950-MainSwitch(config)#vtp mode server 
Device mode already VTP SERVER.
2950-MainSwitch(config)#vtp domain jetcoms
Changing VTP domain name from NULL to jetcoms
2950-MainSwitch(config)#exit
2950-MainSwitch#VLAN database 
2950-MainSwitch(VLAN)#VLAN 2 name Marketing
VLAN 2 added:
    Name: Marketing
2950-MainSwitch(VLAN)#VLAN 3 name Finance

VLAN 3 added:

    Name: Finance
2950-MainSwitch(VLAN)#VLAN 4 name Support
VLAN 4 added:
    Name: Support
2950-MainSwitch(VLAN)#VLAN 5 name Operation
VLAN 5 added:
    Name: Operation
2950-MainSwitch(VLAN)#apply
2950-MainSwitch(VLAN)#exit
APPLY completed.
Exiting....
2950-MainSwitch#show VLAN 
VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/5, Fa0/6, Fa0/7, Fa0/8
                                                Fa0/9, Fa0/10, Fa0/11, Fa0/12
2    Marketing                        active    
3    Finance                          active    
4    Support                          active    
5    Operation                        active    
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
------------------------------------------------------------------------------
 Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 2950-MainSwitch#


switch Con0 is now available

Press RETURN to get started!
switch>enable 
% Incomplete command.
 switch#configure terminal 
% Incomplete command.
switch(config)#hostname A_2950
A_2950(config)#enable secret fery
A_2950(config)#line console 0
A_2950(config-line)#password fery
A_2950(config-line)#exit
A_2950(config)#line vty 0 15
A_2950(config-line)#password fery
A_2950(config-line)#exit
A_2950(config)#service password-encryption 
A_2950(config)#interface VLAN 1
A_2950(config-if)#ip address 172.16.10.3 255.255.255.0
A_2950(config-if)#no shutdown 
A_2950(config-if)#exit
A_2950(config)#ip default-gateway 172.16.10.1
A_2950(config)#interface fastethernet 0/1
A_2950(config-if)#description Trunking to MainSwitch_2950
A_2950(config-if)#exit
A_2950(config)#interface fastethernet 0/5
A_2950(config-if)#switchport access VLAN 2
A_2950(config-if)#exit
A_2950(config)#interface fastethernet 0/6


A_2950(config-if)#switchport access VLAN 4

A_2950(config-if)#exit
A_2950(config)#interface fastethernet 0/7
A_2950(config-if)#switchport access VLAN 3
A_2950(config)#vtp mode client 
Aetting device to VTP CLIENT mode.
A_2950(config)#vtp domain jetcoms
Changing VTP domain name from NULL to jetcoms
A_2950(config)#apply           
A_2950(config)#exit
F_2950#copy running-config startup-config 
Destination filename [startup-config]? 
Building configuration...
[OK]
A_2950#

switch Con0 is now available

Press RETURN to get started!
switch>enable 
% Incomplete command.
switch#configure terminal 
% Incomplete command.
switch(config)#hostname B_2950
B_2950(config)#enable secret fery
B_2950(config)#line console 0
B_2950(config-line)#password fery
B_2950(config-line)#exit
B_2950(config)#line vty 0 15
B_2950(config-line)#password fery
B_2950(config-line)#exit
B_2950(config)#service password-encryption 
B_2950(config)#interface VLAN 1
B_2950(config-if)#ip address 172.16.10.4 255.255.255.0
B_2950(config-if)#no shutdown 
B_2950(config-if)#exit
B_2950(config)#ip default-gateway 172.16.10.1
B_2950(config)#interface fastethernet 0/1
B_2950(config-if)#description Trunking to MainSwitch_2950
B_2950(config-if)#exit
B_2950(config)#interface fastethernet 0/5
B_2950(config-if)#switchport access VLAN 2
B_2950(config-if)#exit
B_2950(config)#interface fastethernet 0/6
B_2950(config-if)#switchport access VLAN 5
B_2950(config-if)#exit
B_2950(config)#interface fastethernet 0/7
B_2950(config-if)#switchport access VLAN 3
B_2950(config)#vtp mode client 
Aetting device to VTP CLIENT mode.
B_2950(config)#vtp domain jetcoms
Changing VTP domain name from NULL to jetcoms
B_2950(config)#apply           
B_2950(config)#exit
B_2950#copy running-config startup-config 
Destination filename [startup-config]? 
Building configuration...
[OK]
B_2950#

switch Con0 is now available

Press RETURN to get started!
switch>enable 
% Incomplete command.
switch#configure terminal 
% Incomplete command.
switch(config)#hostname C_2950
C_2950(config)#enable secret fery
C_2950(config)#line console 0
C_2950(config-line)#password fery
C_2950(config-line)#exit
C_2950(config)#line vty 0 15
C_2950(config-line)#password fery
C_2950(config-line)#exit
C_2950(config)#service password-encryption 
C_2950(config)#interface VLAN 1
C_2950(config-if)#ip address 172.16.10.5 255.255.255.0
C_2950(config-if)#no shutdown 
C_2950(config-if)#exit
C_2950(config)#ip default-gateway 172.16.10.1
C_2950(config)#interface fastethernet 0/1
C_2950(config-if)#description Trunking to MainSwitch_2950
C_2950(config-if)#exit
C_2950(config)#interface fastethernet 0/5
C_2950(config-if)#switchport access VLAN 4
C_2950(config-if)#exit
C_2950(config)#interface fastethernet 0/6
C_2950(config-if)#switchport access VLAN 2
C_2950(config-if)#exit
C_2950(config)#interface fastethernet 0/7
C_2950(config-if)#switchport access VLAN 5
C_2950(config)#vtp mode client 
Aetting device to VTP CLIENT mode.
C_2950(config)#vtp domain jetcoms
Changing VTP domain name from NULL to jetcoms

C_2950(config)#apply           
C_2950(config)#exit
C_2950#copy running-config startup-config 
Destination filename [startup-config]? 
Building configuration...
[OK]
C_2950#
switch Con0 is now available
Press RETURN to get started!
switch>enable 
% Incomplete command.
switch#configure terminal 
% Incomplete command.
 
switch(config)#hostname D_2950
D_2950(config)#enable secret fery
D_2950(config)#line console 0
D_2950(config-line)#password fery
D_2950(config-line)#exit
D_2950(config)#line vty 0 15
D_2950(config-line)#password fery
D_2950(config-line)#exit
D_2950(config)#service password-encryption 
D_2950(config)#interface VLAN 1
D_2950(config-if)#ip address 172.16.10.6 255.255.255.0
D_2950(config-if)#no shutdown 
D_2950(config-if)#exit
D_2950(config)#ip default-gateway 172.16.10.1
D_2950(config)#interface fastethernet 0/1
D_2950(config-if)#description Trunking to MainSwitch_2950
D_2950(config-if)#exit
D_2950(config)#interface fastethernet 0/5
D_2950(config-if)#switchport access VLAN 3
D_2950(config-if)#exit
D_2950(config)#interface fastethernet 0/6
D_2950(config-if)#switchport access VLAN 4
D_2950(config-if)#exit
D_2950(config)#interface fastethernet 0/7
D_2950(config-if)#switchport access VLAN 2
D_2950(config)#vtp mode client 
Aetting device to VTP CLIENT mode.
D_2950(config)#vtp domain jetcoms
Changing VTP domain name from NULL to jetcoms
D_2950(config)#apply           
D_2950(config)#exit
D_2950#copy running-config startup-config 
Destination filename [startup-config]? 
Building configuration...
[OK]
D_2950#
switch Con0 is now available
Press RETURN to get started!
switch>enable 
% Incomplete command.
switch#configure terminal 
% Incomplete command.

switch(config)#hostname E_2950
E_2950(config)#enable secret fery
E_2950(config)#line console 0
E_2950(config-line)#password fery
E_2950(config-line)#exit
E_2950(config)#line vty 0 15
E_2950(config-line)#password fery
E_2950(config-line)#exit
E_2950(config)#service password-encryption 
E_2950(config)#interface VLAN 1
E_2950(config-if)#ip address 172.16.10.7 255.255.255.0
E_2950(config-if)#no shutdown 
E_2950(config-if)#exit
E_2950(config)#ip default-gateway 172.16.10.1
E_2950(config)#interface fastethernet 0/1
E_2950(config-if)#description Trunking to MainSwitch_2950
E_2950(config-if)#exit
E_2950(config)#interface fastethernet 0/5
E_2950(config-if)#switchport access VLAN 5
E_2950(config-if)#exit
E_2950(config)#interface fastethernet 0/6
A_2950 Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
A_2950>enable
Enter password: ****
% Incomplete command.
A_2950#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
A_2950#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname A_2950
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to MainSwitch"
  switchport mode trunk
!
interface FastEthernet0/2
  switchport mode access
!
interface FastEthernet0/3
  switchport mode access
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport access VLAN 2
  switchport mode access
!
interface FastEthernet0/6
  switchport access VLAN 4
  switchport mode access
!
interface FastEthernet0/7
  switchport access VLAN 3
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!
interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  switchport mode access

!
interface FastEthernet0/12
  switchport mode access
!
interface VLAN1
  ip address 172.16.10.3 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line vty 0 15
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end
A_2950#show VLAN 

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/8, Fa0/9, Fa0/10, Fa0/11
                                                Fa0/12
2    Marketing                        active    Fa0/5
3    Finance                          active    Fa0/7
4    Support                          active    Fa0/6
5    Operation                        active    
  
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 
A_2950#
B_2950 Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
B_2950>enable 
Enter password: ****
% Incomplete command.

B_2950#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
B_2950#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname B_2950
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to MainSwitch"
  switchport mode trunk
!
interface FastEthernet0/2
  switchport mode access
!
interface FastEthernet0/3
  switchport mode access
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport access VLAN 2
  switchport mode access
!
interface FastEthernet0/6
  switchport access VLAN 5
  switchport mode access
!
interface FastEthernet0/7
  switchport access VLAN 3
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!
interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  switchport mode access
!
interface FastEthernet0/12
  switchport mode access
!
interface VLAN1
  ip address 172.16.10.4 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line vty 0 15
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end

B_2950#show VLAN 

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/8, Fa0/9, Fa0/10, Fa0/11
                                                Fa0/12
2    Marketing                        active    Fa0/5
3    Finance                          active    Fa0/7

4    Support                          active    
5    Operation                        active    Fa0/6
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
 Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 B_2950#

C_2950 Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
C_2950>enable 
Enter password: ****
% Incomplete command.
C_2950#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
C_2950#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime

service timestamps log uptime
no service password-encryption
!
hostname C_2950
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to MainSwitch"
  switchport mode trunk
!
interface FastEthernet0/2
  switchport mode access
!
interface FastEthernet0/3
  switchport mode access
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport access VLAN 4
  switchport mode access
!
interface FastEthernet0/6
  switchport access VLAN 2
  switchport mode access
!
interface FastEthernet0/7
  switchport access VLAN 5
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!

interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  switchport mode access
!
interface FastEthernet0/12
  switchport mode access
!
interface VLAN1
  ip address 172.16.10.5 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password fery
  login
line vty 0 15
  password fery
  login
!
end

C_2950#show VLAN 

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/8, Fa0/9, Fa0/10, Fa0/11
                                                Fa0/12
2    Marketing                        active    Fa0/6
3    Finance                          active    
4    Support                          active    Fa0/5
5    Operation                        active    Fa0/7
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
 Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 C_2950#
D_2950 Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
D_2950>enable 
Enter password: ****
% Incomplete command.
D_2950#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
D_2950#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname D_2950
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to MainSwitch"
  switchport mode trunk
!
interface FastEthernet0/2
  switchport mode access
!
interface FastEthernet0/3
  switchport mode access
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport access VLAN 3
  switchport mode access
!
interface FastEthernet0/6
  switchport access VLAN 4
  switchport mode access
!
interface FastEthernet0/7
  switchport access VLAN 2
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!
interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  switchport mode access
!
interface FastEthernet0/12
  switchport mode access
!
interface VLAN1
  ip address 172.16.10.6 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line vty 0 15
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end
D_2950#show VLAN 
VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/8, Fa0/9, Fa0/10, Fa0/11
                                                Fa0/12
2    Marketing                        active    Fa0/7
3    Finance                          active    Fa0/5
4    Support                          active    Fa0/6
5    Operation                        active    
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
 Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 D_2950#
E_2950 Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
Enter password: ****
% Incomplete command.
E_2950#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
E_2950#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname E_2950
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to MainSwitch"
  switchport mode trunk
!
interface FastEthernet0/2
  switchport mode access
!
interface FastEthernet0/3
  switchport mode access
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport access VLAN 5
  switchport mode access
!
interface FastEthernet0/6
  switchport access VLAN 3
  switchport mode access
!
interface FastEthernet0/7
  switchport access VLAN 4
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!
interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  switchport mode access
!
interface FastEthernet0/12
  switchport mode access
!
interface VLAN1
  ip address 172.16.10.7 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line vty 0 15
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end
E_2950#show VLAN 
VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/8, Fa0/9, Fa0/10, Fa0/11
                                                Fa0/12
2    Marketing                        active    

3    Finance                          active    Fa0/6
4    Support                          active    Fa0/7
5    Operation                        active    Fa0/5
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
 Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 

E_2950#
 2950-MainSwitch Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
2950-MainSwitch>enable 
Enter password: ****
% Incomplete command.
2950-MainSwitch#ping 172.16.10.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
2950-MainSwitch#show running-config 
Building configuration...
Current configuration : 866 bytes
!
version 12.1
no service single-slot-reload-enable
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname 2950-MainSwitch
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
spanning-tree extend system-id
!
!
interface FastEthernet0/1
  description "Trunking to A_2950"
  switchport mode trunk
!
interface FastEthernet0/2
  description "Trunking to B_2950"
  switchport mode trunk
!
interface FastEthernet0/3
  description "Trunking to C_2950"
  switchport mode trunk
!
interface FastEthernet0/4
  switchport mode access
!
interface FastEthernet0/5
  switchport mode access
!
interface FastEthernet0/6
  description "Trunking to Router"
  switchport mode trunk
!
interface FastEthernet0/7
  switchport mode access
!
interface FastEthernet0/8
  switchport mode access
!
interface FastEthernet0/9
  switchport mode access
!
interface FastEthernet0/10
  switchport mode access
!
interface FastEthernet0/11
  description "Trunking to D_2950"
  switchport mode trunk
!
interface FastEthernet0/12
  description "Trunking to E_2950"
  switchport mode trunk
!
interface VLAN1
  ip address 172.16.10.2 255.255.255.0
  no ip route-cache
!
ip default-gateway 172.16.10.1
ip http server
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line vty 0 15
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end

2950-MainSwitch#show VLAN 

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/1, Fa0/2, Fa0/3, Fa0/4
                                                Fa0/5, Fa0/6, Fa0/7, Fa0/8
                                                Fa0/9, Fa0/10, Fa0/11, Fa0/12
2    Marketing                        active    
3    Finance                          active    
4    Support                          active    
5    Operation                        active    
VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
4    enet  100004     1500  -      -      -        -    -        0      0
5    enet  100005     1500  -      -      -        -    -        0      0
Remote SPAN VLANs
------------------------------------------------------------------------------
Primary Secondary Type              Ports
------- --------- ----------------- ------------------------------------------
 2950-MainSwitch#
 Route_VLAN Con0 is now available
Press RETURN to get started!
User Access Verification
Password: 
Route_VLAN>enable
Password: 
% Incomplete command.
Route_VLAN#show running-config 
Building configuration...
Current configuration : 625 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname Route_VLAN
!
enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
!
ip subnet-zero
!
!
!
!
!
interface FastEthernet0/0
  no ip address
  no ip directed-broadcast
!
interface FastEthernet0/0.1
  encapsulation dot1Q 1
  ip address 172.16.10.1 255.255.255.0
!
interface FastEthernet0/0.2
  encapsulation dot1Q 2
  ip address 192.168.20.1 255.255.255.0
!
interface FastEthernet0/0.3
  encapsulation dot1Q 3
  ip address 192.168.30.1 255.255.255.0
!
interface FastEthernet0/0.4
  encapsulation dot1Q 4
  ip address 192.168.40.1 255.255.255.0
!
interface FastEthernet0/0.5
  encapsulation dot1Q 5
  ip address 192.168.50.1 255.255.255.0
!
interface Serial0/0
  no ip address
  no ip directed-broadcast
  shutdown
!
interface FastEthernet0/1
  no ip address
  no ip directed-broadcast
  shutdown
!
interface Serial0/1
  no ip address
  no ip directed-broadcast
  shutdown
!
!
ip classless
no ip http server
!
!
!
line con 0
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
line aux 0
line vty 0 4
  password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0
  login
!
end

Route_VLAN#
 Ke host di network 192.168.30.0 
C:\>ping 192.168.30.3
Ke host di network 192.168.40.0 
C:\>ping 192.168.40.3
Ke host di network 192.168.50.0
C:\>ping 192.168.50.3

Untuk verifikasi selanjutnya  lakukan hal yang sama dengan di atas. Coba cek
pada network yang berbeda :
- Network  192.168.20.0
- Network  192.168.30.0
- Network  192.168.40.0
- Network  192.168.50.0

Switch pada layer 2 dan switch pada layer 3

Switch pada layer 2 dan switch pada layer 3

Layer 2 switch beroperasi dengan baik ketika ada lalu lintas yang sangat sedikit antara VLAN. Untuk menambah fungsi Layer 2, kita membutuhkan sebuah router yang mengakibatkan hilangnya kinerja karena router biasanya lebih lambat daripada switch.
Layer 2 switch perlu beroperasi hanya pada frame Ethernet MAC. Skenario ini pada gilirannya menyebabkan algoritma forwarding yang jelas yang dapat diimplementasikan dalam perangkat keras. Algoritma ini tidak dapat diperpanjang dengan mudah untuk layer 3 protokol karena ada beberapa Layer 3 routable protokol seperti IP, IPX, AppleTalk, dan seterusnya, dan kedua, keputusan forwarding di protokol seperti biasanya lebih rumit daripada Layer 2 keputusan forwarding.
Sebagian besar switch Layer 3 melakukan IP switching di tingkat hardware dan meneruskan protokol lain di layer 2 (yaitu, jembatan mereka).
Layer 3 switch router dengan cepat forwarding dilakukan melalui perangkat keras. IP forwarding biasanya melibatkan pencarian rute, decrementing Waktu Untuk Live (TTL) menghitung dan menghitung ulang checksum, dan meneruskan frame dengan header MAC sesuai dengan port output yang benar. Lookup dapat dilakukan di perangkat keras, demikian juga decrementing dari TTL dan perhitungan kembali dari checksum. Router menjalankan routing protokol seperti Open Shortest Path First (OSPF) atau Routing Informasi Protocol (RIP) untuk berkomunikasi dengan lainnya Layer 3 switch atau router dan membangun tabel routing mereka.

Berikut ini adalah data sheet untuk switch yang bekerja pada layer 2 dan layer 3:

rancangan jarinagn vlan