Lab 2.1.1.6

Part 1
Step 1 b: Cable the Network and Verify the Default Switch Configuration
Why must you use a console connection to initially configure the switch? Why is it not possible to connect to the switch via Telnet or SSH?
Because the initial configuration must be made using console port for the first time, it is the only way to activate all port and protocols requires to enable SSH.
Step 2 b: Verify the default switch configuration.
How many FastEthernet interfaces does a 2960 switch have?
24 FastEthernet Ports
How many Gigabit Ethernet interfaces does a 2960 switch have?
2 GigabitsEthernet Ports
What is the range of values shown for the vty lines?
Line vty 5 to 15

Step 2 c: Examine the startup configuration file in NVRAM
Why does this message appear?
Because there is not saved configuration.
Step 2 d: Examine the characteristics of the SVI for VLAN 1.
Is there an IP address assigned to VLAN 1?
No
What is the MAC address of this SVI?
0022.569b.4540
Is this interface up?
Vlan1 is up, line protocol is down
Step 2 e: Examine the IP properties of the SVI VLAN 1.
What output do you see?
Internet protocol processing disabled
Step 2 f: Connect PC-A Ethernet cable to port 24 on the switch and examine the IP properties of the SVI VLAN 1.
What output do you see?
Vlan1 is up, line protocol is up / Internet protocol processing disabled

Step 2 g: Examine the Cisco IOS version information of the switch.

What is the Cisco IOS version that the switch is running?
Version 12.2(35)SE5
What is the system image filename? c2960-lanbase-mz.122-35.SE5.old What is the base MAC address of this switch?
00:22:56:9B:45:00
Step 2 h: Examine the default properties of the FastEthernet interface used by PC-A. show interface f0/24
Is the interface up or down?
FastEthernet0/24 is up, line protocol is up (connected)

What event would make an interface go up?
Input the command (no shutdown) in the respectively interface after the right cable connections is made
What is the MAC address of the interface?
0022.569b.4518
What is the speed and duplex setting of the interface?
Full-duplex, 100Mb/s
Step 2 i: Examine the default VLAN settings of the switch.
What is the default name of VLAN 1?
Default
Which ports are in this VLAN?
Fa0/1, Fa0/2, Fa0/3, Fa0/4 Fa0/5, Fa0/6, Fa0/7, Fa0/8 Fa0/9, Fa0/10, Fa0/11, Fa0/12 Fa0/13, Fa0/14, Fa0/15, Fa0/16 Fa0/17, Fa0/18, Fa0/19, Fa0/20 Fa0/21, Fa0/22, Fa0/23, Fa0/24 Gi0/1, Gi0/2
Is VLAN 1 active?
Active
What type of VLAN is the default VLAN?
Enet
Step 2 j: Examine flash memory.
What is the filename of the Cisco IOS image? c2960-lanbase-mz.122-35.SE5.old Part 2: Configure Basic Network Device Settings
Step 1: Configure basic switch settings including hostname, local passwords, MOTD banner, management address, and Telnet access.
Step 1 h: Which shortcut keys are used to go directly from global configuration mode to privileged EXEC mode?
En

Step 1 j: Enter global configuration mode to set the SVI IP address of the switch. This allows remote management of the switch.

Step 1 k: Assign all user ports to VLAN 99 / l. Issue show vlan brief

Step 1 o: Configure the virtual terminal (vty) lines for the switch to allow Telnet access. If you do not configure a vty password, you are unable to telnet to the switch.
Why is the login command required?
Login is used to control VTY access, is used in VTY for password that is specified to be checked at login.

Part 3: Verify and Test Network Connectivity
Part 1 a: A sample configuration displays here. The settings you configured are highlighted in yellow. The other configuration settings are IOS defaults.

Step 1 b: Verify the management VLAN 99 settings

What is the bandwidth on this interface?
BW 1000000 Kbit
What is the VLAN 99 state?
Vlan99 is up
What is the line protocol state?
Line protocol is up

Step 2: Test end-to-end connectivity with ping.
a. From the command prompt on PC-A, ping your own PC-A address first.

Step 3 b: Test and verify remote management of S1

Ping to the Switch IP address

Telnet to the switch IP address

Part 4: Manage the MAC Address Table
Step 1: Record the MAC address of the host.
From a command prompt on PC-A, issue ipconfig /all command to determine and record the Layer 2 (physical) addresses of the PC NIC.
00-1B-21-6F-3A-60
Step 2: Determine the MAC addresses that the switch has learned

How many dynamic addresses are there?
99 001b.216f.3a60 DYNAMIC Fa0/24
99 001b.216f.3a84 DYNAMIC Fa0/6
How many MAC addresses are there in total?
22

Does the dynamic MAC address match the PC-A MAC address?
Yes
Step 3: List the show mac address-table options.

Step 3 a: How many options are available for the show mac address-table command?
12

Step 3 b: Issue the show mac address-table dynamic command to display only the MAC addresses that were learned dynamically

How many dynamic addresses are there?
2

Step 3 c: View the MAC address entry for PC-A. The MAC address formatting for the command is xxxx.xxxx.xxxx.

Step 4: Set up a static MAC address
Step 4 b: Verify that the MAC address table was cleared
How many static MAC addresses are there?
20
How many dynamic addresses are there?
0
Step 4 c: Examine the MAC table again
How many dynamic addresses are there?
2

Why did this change from the last display?
Because every Ethernet request made from the PC A/B goes to the CAM table
Step 4 d: Set up a static MAC address.

Step 4 e: Verify the MAC address table entries.
How many total MAC addresses are there?
22

How many static addresses are there?
22

Reflection
Why should you configure the vty lines for the switch?
In order to remotely manage the switch must be enable telnet or ssh protocol.
Why change the default VLAN 1 to a different VLAN number?
Vlan1 is default vlan, it is mandatory make the change to another vlan number to achieve security.
How can you prevent passwords from being sent in plain text?
Using SSH for remote management.
Why configure a static MAC address on a port interface?
To keep the switch secure of any unauthorized PC.