2006052213550876705

Information about 2006052213550876705

Published on January 3, 2008

Author: Belly

Source: authorstream.com

Content

交换和VLAN Switching and VLAN :  交换和VLAN Switching and VLAN 深圳职业技术学院计算机系网络专业 教学目标( Objectives ):  教学目标( Objectives ) 1. 交换机学习主机地址 (Switche Learn Host Address) 2. 两种交换方法(Two Switching Methods) 3. 配置端口安全(Configuring Port Security) 4.密码破解(Password Recovery) 5. VLAN操作(VLAN Operations) 6.配置和验证静态VLAN (Configuring and Verifying Static VLANs) 交换机三种功能 (Three Switch Functions ) :  地址学习(Address learning) 决定转发或过滤(Forward/filter decision) 避免环路(Loop avoidance) 交换机三种功能 (Three Switch Functions ) 交换机学习主机地址 (Switche Learn Host Address):  交换机学习主机地址 (Switche Learn Host Address) 初始MAC地址表是空的 Initial MAC address table is empty MAC address table 0260.8c01.1111 0260.8c01.2222 0260.8c01.3333 0260.8c01.4444 E0 E1 E2 E3 A B C D 交换机学习主机地址 (Switche Learn Host Address):  交换机学习主机地址 (Switche Learn Host Address) A向C发送帧(Station A sends a frame to Station C) 交换机将A的MAC地址和其对应的接口E0放入MAC地址表 Switch caches station A MAC address to port E0 by learning the source address of data frames 该帧向除了E0接口的所有接口泛洪 The frame from station A to station C is flooded out to all ports except port E0 MAC address table 0260.8c01.1111 0260.8c01.2222 0260.8c01.3333 0260.8c01.4444 E0: 0260.8c01.1111 E0 E1 E2 E3 D C B A 交换机学习主机地址 (Switche Learn Host Address):  交换机学习主机地址 (Switche Learn Host Address) D向C发送帧(Station D sends a frame to station C) 交换机将D的MAC地址和其对应的接口E3放入MAC地址表 Switch caches station D MAC address to port E3 by learning the source Address of data frames 该帧向除了E3接口的所有接口泛洪 The frame from station D to station C is flooded out to all ports except port E3 (unknown unicasts are flooded) MAC address table 0260.8c01.1111 0260.8c01.2222 0260.8c01.3333 0260.8c01.4444 E0: 0260.8c01.1111 E3: 0260.8c01.4444 E0 E1 E2 E3 D C A B 交换机过滤帧( Switches Filter Frames):  交换机过滤帧( Switches Filter Frames) A向C发送帧 Station A sends a frame to station C 目的地址已知,帧不被泛洪 Destination is known, frame is not flooded E0: 0260.8c01.1111 E2: 0260.8c01.2222 E1: 0260.8c01.3333 E3: 0260.8c01.4444 0260.8c01.1111 0260.8c01.2222 0260.8c01.3333 0260.8c01.4444 E0 E1 E2 E3 X X D C A B MAC address table 两种交换方法(Two Switching Methods):  两种交换方法(Two Switching Methods) 存储转发特征(Store-and-forward Feature):  存储转发特征(Store-and-forward Feature) 1. 在转发之前整个帧被接收 The entire frame is received before any forwarding takes place. 2.由于交换开始之前要接收完整帧,较大的数据帧延迟较大 Latency is greater with larger frames because the entire frame must be received before the switching process begins. 直通特征(Cut-through Feature):  直通特征(Cut-through Feature) 1.在接收完整帧之前,帧就被转发。 The frame is forwarded through the switch before the entire frame is received. 2.最快的是只要读到目的地址就转发。 At a minimum the frame destination address must be read before the frame can be forwarded. 3.这种模式降低了延迟,但是不进行检错 This mode decreases the latency of the transmission, but also reduces error detection. 直通分类(Cut-through Class):  直通分类(Cut-through Class) 一、快速转发(Fast-forward  ) 1.快速转发提供了最低的延迟 Fast-forward switching offers the lowest level of latency. 2.只要读到目的地址,就立刻转发 Fast-forward switching immediately forwards a packet after reading the destination address. 直通分类(Cut-through Class):  直通分类(Cut-through Class) 二、Fragment-free  (无碎片方式) 1.无碎片方式在转发之前过滤掉碰撞碎片Fragment-free switching filters out collision fragments before forwarding begins. 2.无碎片方式在转发之前要读到帧的前64字节 Fragment-free switching waits until the packet is determined not to be a collision fragment(>64bytes) before forwarding 配置SVI地址(Configuring SVI Address):  配置SVI地址(Configuring SVI Address) Switch(config)#interface vlan 1 Switch(config-if)#ip address 10.1.1.1 255.255.255.0 Switch(config-if)#no shutdown 配置端口安全(Configuring Port Security):  配置端口安全(Configuring Port Security) Switch(config)#int f0/1 Switch(config-if)#switchport mode access Switch(config-if)#switchport port-security Switch(config-if)#switchport port-security mac-address 0060.6700.dd5b Switch(config-if)#switchport port-security violation restrict Switch#sh port-security Secure Port MaxSecureAddr CurrentAddr SecurityViolation Security Action (Count) (Count) (Count) ------------------------------------------------------------------------------- Fa0/1 132 1 0 Restrict 密码破解(Password Recovery):  密码破解(Password Recovery) 1. 拔掉电源(Unplug the power cable) 2.按下mode按钮(hold down the mode button) 3.输入flash_init (type flash_init) 4.执行dir flash: (type dir flash:) 5.重命名配置文件 (rename flash:config.text flash:config.old) 6.启动(Boot) 7.在进入setup模式提示下输入N (enter N at the prompt to start the setup program.) 密码破解(Password Recovery):  密码破解(Password Recovery) 8. 进入特权模式(switch>enable) 9. 重命名配置文件 (rename flash:config.old flash:config.text) 10. 将配置文件拷贝到RAM中运行 (copy flash:config.text system:running-config) 11.修改密码 (enable password cisco) 12.存盘(write) 13.重启(reload) Slide17:  VLAN预览(VLAN Overview) 分段Segmentation 灵活 Flexibility 安全 Security 3rd floor 2nd floor 1st floor SALES HR ENG 1 VLAN =1广播域=1逻辑子网 A VLAN = A broadcast domain = Logical network (subnet) Slide18:  VLAN操作(VLAN Operations) 每一个逻辑的VLAN就像一个独立的物理网桥 Each logical VLAN is like a separate physical bridge Slide19:  VLAN操作(VLAN Operations) Switch B Green VLAN Black VLAN Red VLAN 同一个VLAN可以跨越多个交换机 VLANs can span across multiple switches Slide20:  VLAN操作(VLAN Operations) Switch B Green VLAN Black VLAN Red VLAN Trunk TRUNK链路携带多个VLAN的数据 Trunks carries traffic for multiple VLANs Trunks利用特定的封装来识别不同的VLAN Trunks use special encapsulation to distinguish between different VLANs Fast Ethernet VLAN成员模式(VLAN Membership Modes):  VLAN成员模式(VLAN Membership Modes) VLAN5 静态VLAN (Static VLAN) 动态VLAN(Dynamic VLAN) MAC = 1111.1111.1111 Trunk VMPS 1111.1111.1111 = vlan 10 VLAN10 Port e0/9 Port e0/4 配置静态VLAN (Configuring Static VLANs):  配置静态VLAN (Configuring Static VLANs) 1.创建VLAN (create the VLAN ) Switch#vlan database Switch(vlan)#vlan vlan_number Switch(vlan)#exit 2.将接口指定到VLAN中 assign the VLAN to one or more interfaces : Switch(config)#interface fastethernet 0/9 Switch(config-if)#switchport access vlan vlan_number 配置静态VLAN实例 (Configuring Static VLANs Example):  配置静态VLAN实例 (Configuring Static VLANs Example) Switch#vlan database Switch(vlan)#vlan 2 name v2 VLAN 2 added: Name: v2 Switch(vlan)#vlan 3 name v3 VLAN 3 added: Name: v3 Switch(vlan)#vlan 4 name v4 VLAN 4 modified: Name: v4 Switch(vlan)#no vlan 4 Deleting VLAN 4... Switch(vlan)#exit APPLY completed. Exiting.... Switch(config)#int f0/2 Switch(config-if)#switchport mode access Switch(config-if)#switchport access vlan 2 Switch(config-if)#int f0/3 Switch(config-if)#switchport mode access Switch(config-if)#switchport access vlan 3 Switch(config-if)#end 验证静态VLAN配置 (Verifying Static VLANs Configuration):  验证静态VLAN配置 (Verifying Static VLANs Configuration) Switch#sh vlan brie VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Fa0/1, Fa0/4, Fa0/5, Fa0/6 Fa0/7, Fa0/8, Fa0/9, Fa0/10 Fa0/11, Fa0/12 2 v2 active Fa0/2 3 v3 active Fa0/3 1002 fddi-default active 1003 token-ring-default active 1004 fddinet-default active 1005 trnet-default active Switch# 思考题(Questions):  思考题(Questions) 1. 交换机三种主要的功能是什么? 2. 交换机怎样学习主机地址? 3. 什么是存储转发? 4. 什么是快速转发? 5. 什么是无碎片方式转发? 6. 简述交换机密码破解的步骤? 7. 什么是VLAN?

Related presentations


Other presentations created by Belly

Capital budgeting
28. 04. 2008
0 views

Capital budgeting

Nice pics slides
17. 09. 2007
0 views

Nice pics slides

perceptron 2 4 2008
30. 04. 2008
0 views

perceptron 2 4 2008

pham07
18. 04. 2008
0 views

pham07

FC STONE GREAT WALL1
17. 04. 2008
0 views

FC STONE GREAT WALL1

Sauter Nuts Bolt ETFs
16. 04. 2008
0 views

Sauter Nuts Bolt ETFs

UnivOfGuelphNov26th
14. 04. 2008
0 views

UnivOfGuelphNov26th

fujiwara
13. 04. 2008
0 views

fujiwara

Week 08 Finance
10. 04. 2008
0 views

Week 08 Finance

Lct1
09. 04. 2008
0 views

Lct1

outlook
19. 06. 2007
0 views

outlook

Microsoft Windows Vista
19. 06. 2007
0 views

Microsoft Windows Vista

2004 presentation
13. 09. 2007
0 views

2004 presentation

Australian
13. 09. 2007
0 views

Australian

NBB
13. 09. 2007
0 views

NBB

Thilo Ewald ppt
13. 09. 2007
0 views

Thilo Ewald ppt

20031216 NASANIH presentation
05. 10. 2007
0 views

20031216 NASANIH presentation

mna presentation
17. 10. 2007
0 views

mna presentation

lect29 groupwords
18. 10. 2007
0 views

lect29 groupwords

Essential Q Imperialism 2
22. 10. 2007
0 views

Essential Q Imperialism 2

p puska
07. 09. 2007
0 views

p puska

Productivity
07. 09. 2007
0 views

Productivity

honeyPots
13. 09. 2007
0 views

honeyPots

NDB Bensouda
23. 10. 2007
0 views

NDB Bensouda

181105
24. 10. 2007
0 views

181105

METO200Lect19 20
05. 10. 2007
0 views

METO200Lect19 20

oksupercompsymp2006 talk matrow
17. 10. 2007
0 views

oksupercompsymp2006 talk matrow

mareyes
25. 10. 2007
0 views

mareyes

2 01 3
29. 10. 2007
0 views

2 01 3

Online Class Evaluations 8
30. 10. 2007
0 views

Online Class Evaluations 8

1 3Grand father Journey
02. 11. 2007
0 views

1 3Grand father Journey

TuijaKuisma
07. 09. 2007
0 views

TuijaKuisma

Metallsektor
14. 11. 2007
0 views

Metallsektor

insects in out
13. 09. 2007
0 views

insects in out

oasen
16. 11. 2007
0 views

oasen

Unit 10 Scent Theory
17. 11. 2007
0 views

Unit 10 Scent Theory

SPEAR 2004
21. 11. 2007
0 views

SPEAR 2004

danse macabre
22. 11. 2007
0 views

danse macabre

kmutt
13. 09. 2007
0 views

kmutt

NCUR SDT 4 19 05
04. 01. 2008
0 views

NCUR SDT 4 19 05

gerber colloq UICtop feb2002
15. 10. 2007
0 views

gerber colloq UICtop feb2002

Lioi Altered Version
07. 01. 2008
0 views

Lioi Altered Version

Five Halloween Pumpkins audacity
02. 11. 2007
0 views

Five Halloween Pumpkins audacity

smime
07. 10. 2007
0 views

smime

CdF BEC
20. 11. 2007
0 views

CdF BEC

WEB C Schumacher
23. 10. 2007
0 views

WEB C Schumacher

bsb
13. 09. 2007
0 views

bsb

1 11
19. 02. 2008
0 views

1 11

Ukraine
20. 02. 2008
0 views

Ukraine

truck tmp1002
27. 02. 2008
0 views

truck tmp1002

ace program plan
29. 02. 2008
0 views

ace program plan

takala
07. 09. 2007
0 views

takala

464 TM12
14. 12. 2007
0 views

464 TM12

ICEBP presentation for ANZCP A
10. 03. 2008
0 views

ICEBP presentation for ANZCP A

aionescu cmc dec06
30. 10. 2007
0 views

aionescu cmc dec06

creationtalk
11. 03. 2008
0 views

creationtalk

Data Mining 2
12. 03. 2008
0 views

Data Mining 2

Omaha Pres for NAP web2
29. 12. 2007
0 views

Omaha Pres for NAP web2

sustainable development part1
26. 03. 2008
0 views

sustainable development part1

Schrage
31. 08. 2007
0 views

Schrage

IHYJP Kickoff Poster
09. 10. 2007
0 views

IHYJP Kickoff Poster

020703 DHCAL
31. 08. 2007
0 views

020703 DHCAL

Vimpel Com
31. 08. 2007
0 views

Vimpel Com

Overland vista uib itforum
19. 06. 2007
0 views

Overland vista uib itforum

OS Notes
19. 06. 2007
0 views

OS Notes

NVIDIA OpenGL on Vista
19. 06. 2007
0 views

NVIDIA OpenGL on Vista

NonAdmin Pilot
19. 06. 2007
0 views

NonAdmin Pilot

New Mexico NETUG WPF
19. 06. 2007
0 views

New Mexico NETUG WPF

nercomp SIG
19. 06. 2007
0 views

nercomp SIG

MSAM Launch Vista Final Updated
19. 06. 2007
0 views

MSAM Launch Vista Final Updated

MOSS WF Talk
19. 06. 2007
0 views

MOSS WF Talk

More Online Games
19. 06. 2007
0 views

More Online Games

MHay Wireless
19. 06. 2007
0 views

MHay Wireless

Marl WSUS3
19. 06. 2007
0 views

Marl WSUS3

mail list news
19. 06. 2007
0 views

mail list news

Lenovo UofU
19. 06. 2007
0 views

Lenovo UofU

Lecture II
19. 06. 2007
0 views

Lecture II

Smith F09
13. 10. 2007
0 views

Smith F09

35508
26. 02. 2008
0 views

35508

pinar
19. 06. 2007
0 views

pinar

pgp
19. 06. 2007
0 views

pgp

pessner
19. 06. 2007
0 views

pessner

Overview Presentation
19. 06. 2007
0 views

Overview Presentation

North Dakota Annuity Deck
19. 06. 2007
0 views

North Dakota Annuity Deck

Rutland Presentation plenary4
31. 08. 2007
0 views

Rutland Presentation plenary4

NAMI NC 112707
07. 01. 2008
0 views

NAMI NC 112707

finland poster
07. 09. 2007
0 views

finland poster

sample
27. 09. 2007
0 views

sample

dtk
13. 09. 2007
0 views

dtk

Phenotyping Oxford
17. 10. 2007
0 views

Phenotyping Oxford

dog breeding
19. 11. 2007
0 views

dog breeding

5th trondhiem
29. 11. 2007
0 views

5th trondhiem

policies regs
28. 12. 2007
0 views

policies regs

GetuHailu
13. 09. 2007
0 views

GetuHailu

genealogy
01. 10. 2007
0 views

genealogy

net info 050928
19. 06. 2007
0 views

net info 050928

chap7
15. 10. 2007
0 views

chap7

Rafael Guillen CCAD SIAM mar06
22. 10. 2007
0 views

Rafael Guillen CCAD SIAM mar06

na3 Russia
31. 08. 2007
0 views

na3 Russia

Sois Global Programs3 12 04
31. 08. 2007
0 views

Sois Global Programs3 12 04

sacha
31. 08. 2007
0 views

sacha

amm pres valdez lacnic
22. 10. 2007
0 views

amm pres valdez lacnic

nwnt
19. 06. 2007
0 views

nwnt

STAR shielding 2
13. 11. 2007
0 views

STAR shielding 2

voiceline overview
17. 10. 2007
0 views

voiceline overview

gross PPT
07. 04. 2008
0 views

gross PPT

WP1a
15. 10. 2007
0 views

WP1a

Microarray Data Standard
07. 11. 2007
0 views

Microarray Data Standard

Lim Badejo Dell Presentation 1
19. 06. 2007
0 views

Lim Badejo Dell Presentation 1

HongKong Punkka Salo
07. 09. 2007
0 views

HongKong Punkka Salo

Dvoretsky
31. 08. 2007
0 views

Dvoretsky

qm1 web
03. 01. 2008
0 views

qm1 web

IAPS
07. 09. 2007
0 views

IAPS

yalestudy
28. 09. 2007
0 views

yalestudy

digvlsideslec1
12. 10. 2007
0 views

digvlsideslec1

mead
13. 09. 2007
0 views

mead

bashmakov
31. 08. 2007
0 views

bashmakov