Cisco 3.3 Manual de usuario descargar pdf (Pagina 3)

Lab – Implementing VLAN Security

Step 6: Configure basic switch security.

a. Configure a MOTD banner to warn users that unauthorized access is prohibited.

b. Encrypt all passwords.

c. Shut down all unused physical ports.

d. Disable the basic web service running.

S1(config)# no ip http server

S2(config)# no ip http server

e. Copy the running configuration to startup configuration.

Step 7: Verify connectivity between devices and VLAN information.

a. From a command prompt on PC-A, ping the management address of S1. Were the pings successful?

Why?

____________________________________________________________________________________

b. From S1, ping the management address of S2. Were the pings successful? Why?

____________________________________________________________________________________

c. From a command prompt on PC-B, ping the management addresses on S1 and S2 and the IP address of

PC-A and PC-C. Were your pings successful? Why?

____________________________________________________________________________________

d. From a command prompt on PC-C, ping the management addresses on S1 and S2. Were you

successful? Why?

____________________________________________________________________________________

Note: It may be necessary to disable the PC firewall to ping between PCs.

Part 2: Implement VLAN Security on the Switches

Step 1: Configure trunk ports on S1 and S2.

a. Configure port F0/1 on S1 as a trunk port.

S1(config)# interface f0/1

S1(config-if)# switchport mode trunk

b. Configure port F0/1 on S2 as a trunk port.

S2(config)# interface f0/1

S2(config-if)# switchport mode trunk

c. Verify trunking on S1 and S2. Issue the show interface trunk command on both switches.

S1# show interface trunk

Port Mode Encapsulation Status Native vlan

Cisco 3.3 Manual de usuario Pagina 3