City College of Calamba

Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

NET201 – Computer Networking 2

Midterm Enrichment Activity 1 – Configuring VLANs and Trunking

NAME: SCORE: / 50
SUBJ. CODE-SECTION: PROFESSOR:

Scenario

Modern switches use virtual local-area networks (VLANs) to improve network

performance by separating large Layer 2 broadcast domains into smaller ones. VLANs can
also be used as a security measure by controlling which hosts can communicate. In general,
VLANs make it easier to design a network to support the goals of an organization.
VLAN trunks are used to span VLANs across multiple devices. Trunks allow the
traffic from multiple VLANS to travel over a single link, while keeping the VLAN identification
and segmentation intact.
In this activity, you will create VLANs on both switches in the topology, assign VLANs
to switch access ports, verify that VLANs are working as expected, and then create a VLAN
trunk between the two switches to allow hosts in the same VLAN to communicate through
the trunk, regardless of which switch the host is actually attached to.

Note: The switches used are Cisco Catalyst 2960s with Cisco IOS Release 15.0(2). Other
switches and Cisco IOS versions can be used. Depending on the model and Cisco IOS
version, the commands available and output produced might vary from what is shown in the
labs. Also, ensure that the switches have been erased and have no startup configurations.
 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

Configuring VLANs and Trunking

Network Topology

Networking Topology

Addressing Table

Table 2.1. Summary of network device interface IP addresses

SUBNET DEFAULT
NETWORK DEVICE INTERFACE IP ADDRESS
ADDRESS GATEWAY
DBA_SW VLAN 99 192.168.99.11 255.255.255.0 192.168.1.1
DCI_SW VLAN 99 192.168.99.12 255.255.255.0 192.168.1.1
DBA-PC NIC 192.168.10.3 255.255.255.0 192.168.1.1
DCI-PC1 NIC 192.168.10.4 255.255.255.0 192.168.1.1
DCI-PC2 NIC 192.168.20.3 255.255.255.0 192.168.1.1

Table 2.2. Summary of Switch Port Assignment Specifications

INTERFACE PORT ASSIGNEMENT

Fa0/1 802.1Q Trunk
Fa0/6-12 VLAN 10 - STUDENTS
Fa0/13-18 VLAN 20 - FACULTY
Fa0/19-24 VLAN 30 - GUEST
SVI VLAN 99 - MANAGEMENT
SVI VLAN 66 – NATIVE VLAN
 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

After this activity, students should be able to:

1. build the network and configure basic device settings,
2. create VLANs and assign switch ports,
3. maintain VLAN port assignments and the VLAN database, and
4. configure an 802.1Q trunk between the switches

Task 1. Build the Network and Configure Basic Device Settings.

1. Cable the network topology as shown in Figure 2.1 using Packet Tracer network simulator
software.
2. Initialize and reload the switch. Note: If configuration files were previously saved on the
router or switch, initialize and reload these devices back to their default configurations
(Reminders: Capture all the outputs since they part of your data results).
3. Configure basic settings for each switch.
3.1. Console into the switch and enter global configuration mode.
3.2. Execute the basic configuration on each switch such as:
a. Configure the host’s name as shown in the topology,
b. Disable IP domain lookup using no ip domain-lookup command
c. Enable password encryption,
d. Provide enable password (DCI_SW = “dci”, DBA_SW = “dba”)
e. Include message of the day banner (DCI_SW = “This is DCI office, unauthorized
access is strictly prohibited” and DBA_SW = “This DBA office, unauthorized access is
strictly prohibited”)
f. Provide a password for console 0 and virtual terminal type 0 to 15 during login
(DCI_SW = “dcisilver” and DBA_SW = “dbatiger”)
3.3. Configure the IP address listed in the addressing table presented in Table 2-1 for VLAN
1 on the switch.
3.4. Administratively deactivate all unused ports on the switch.
3.5. Copy the running configuration to the startup configuration.

4. Configure PC hosts (Refer to the addressing table (Table 2-1) for PC host address
information)
5. Test connectivity. Verify that the PC hosts can ping one another.
5.1. Can DBA-PC ping DCI-PC1? (yes/no) _____
5.2. Can DBA-PC ping DCI-PC2? (yes/no) _____
5.3. Can DBA-PC ping DBA_SW VLAN1? (yes/no) _____
5.4. Can DCI-PC1 ping DCI-PC2? (yes/no) _____
5.5. Can DCI-PC1 ping DCI_SW VLAN1? (yes/no) _____
5.6. Can DCI-PC2 ping DCI_SW VLAN1? (yes/no) _____
5.6. Can DBA_SW and DCI_SW VLAN1’s? (yes/no) _____

If you answered no to any of the above questions, why were the pings unsuccessful?
__________________________________________________________________________
__________________________________________________________________________
__________________________________________________________________________
Task 2. Create VLANs and Assign Switch Ports
 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

In task 2, you will create STUDENT, FACULTY, and MANAGEMENT VLANs on both switches.
You will then assign the VLANs to the appropriate interface. The show VLAN command is used to
verify your configuration settings.
1. Create VLANs on the switches.
1.1. Create the VLANs on DBA_SW.
1.2. Create the same VLANs on DCI_SW.
1.3. Issue the show vlan command to view the list of VLANs on DBA_SW.
1.4. Repeat (c) to view the list of VLANs on DCI_SW.

What is the default VLAN? ___________

What ports are assigned to the default VLAN?
__________________________________________________________________________
__________________________________________________________________________
__________________________________________________________________________

2. Assign VLANs to the correct switch interfaces.

2.1. Assign DBA-PC to the STUDENT VLAN.
DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int fa0/6
DBA_SW(config-if)# switchport mode access
DBA_SW(config-if)# switchport access vlan 10
DBA_SW(config-if)# end
DBA_SW#

2.2. Move the switch IP address VLAN 99 (MANAGEMENT VLAN).

DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int vlan 1
DBA_SW(config-if)# no ip add
DBA_SW(config-if)# int vlan 99
DBA_SW(config-if)# ip add 192.168.99.11 255.255.255.0
DBA_SW(config-if)# end
DBA_SW#

3. Issue the show vlan brief command and verify that the VLANs are assigned to the
correct interfaces.

4. Issue the show ip interface brief command.

What is the status of VLAN 99? Why?

________________________________________________________________
________________________________________________________________

5. Use the network topology to assign VLANs to the appropriate ports on DCI_SW.
6. Remove the IP address for VLAN 1 on DCI_SW.
7. Configure an IP address for VLAN 99 on DCI_SW according to the addressing table in Table
2.1.
8. Use the show vlan brief command to verify that the VLANs are assigned to the correct
interfaces.
9. Verify the connectivity using ping command and observe the output.
Is DBA-PC able to ping DCI-PC1? Why?
________________________________________________________________
 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

________________________________________________________________
Is DBA_SW able to ping DCI_SW? Why?
________________________________________________________________
________________________________________________________________

Task 3. Maintain VLAN Port Assignments and the VLAN Database

In task 3, you will change VLAN assignments to ports and remove VLANs from the VLAN
database.

1. Assign a VLAN to multiple interfaces.

1.1. On DBA_SW, assign interfaces from fa0/11 to fa0/24 to VLAN 10 using int range
command.
1.2. Issue the show vlan brief command to verify VLAN assignments.
1.3. Reassign Fa0/11 and Fa0/21 to VLAN 20.
1.4. Use show vlan brief to verify that VLAN assignments are correct.
2. Remove a VLAN assignment from an interface.
2.1. Use the no switchport access vlan command to remove the VLAN 10
assignment to Fa0/24.
DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int fa0/24
DBA_SW(config-if)# no switchport access vlan
DBA_SW(config-if)# end

2.2. Use show vlan brief to verify that the VLAN change was made.
Which VLAN is Fa0/24 now associated with?
____________________________________________________________
____________________________________________________________
3. Remove a VLAN ID from the VLAN database.
3.1. Add VLAN 30 to interface Fa0/24 without issuing the VLAN command.
DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int fa0/24
DBA_SW(config-if)# switchport access vlan 30
DBA_SW(config-if)# end

Note: Current switch technology no longer requires that the vlan command be issued to add
a VLAN to the database. By assigning an unknown VLAN to a port, the VLAN adds to the
VLAN database.

3.2. Verify that the new VLAN is displayed in the VLAN table.
What is the default name of VLAN 30?
____________________________________________________________

3.3. In the global configuration mode, issue a no vlan 30 command to remove VLAN 30
from the VLAN database.

3.4. Issue the show vlan brief command. Fa0/24 was assigned to VLAN 30.
_____________________________________________________________________

Note: Before removing a VLAN from the database, it is recommended that you reassign all
the ports assigned to that VLAN.
 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

Why should you reassign a port to another VLAN before removing the VLAN from the VLAN
database?
__________________________________________________________________________
__________________________________________________________________________
__________________________________________________________________________

Task 4. Configure an 802.1Q Trunk Between the Switches

In task 4, you will configure interface Fa0/1 of DBA_SW to use the Dynamic Trunking Protocol
(DTP) to allow it to negotiate the trunk mode. After this has been accomplished and verified, you will
disable DTP on interface Fa0/1 and manually configure it as a trunk.
1. Use DTP to initiate trunking on Fa0/1.
The default DTP mode of a 2960 switch port is dynamic auto. This allows the
interface to convert the link to a trunk if the neighboring interface is set to trunk or dynamic
desirable mode.
a. Set Fa0/1 on DBA_SW to negotiate trunk mode.
DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int fa0/1
DBA_SW(config-if)# switchport mode dynamic desirable
DBA_SW(config-if)# end
DBA_SW#

Note: You should also receive link status messages on DCI_SW. Check this in
DCI_SW command-line interface (CLI).

b. Issue the show vlan brief command on DBA_SW and DCI_SW. Interface Fa0/1 is
no longer assigned to VLAN 1. Trunked interfaces are not listed in the VLAN table.
c. In the global configuration mode, issue the show interfaces trunk command to
view trunked interfaces on each switch. Notice that the mode on DBA_SW is set to
desirable, and the mode on DCI_SW is set to auto.

Note: By default, all VLANs are allowed on a trunk. The switchport trunk command
allows you to control what VLANs have access to the trunk. For this lab, keep the default
settings which allows all VLANs to traverse Fa0/1.

d. Verify that VLAN traffic is traveling over trunk interface Fa0/1.

a. Can DBA_SW ping DCI_SW? (yes/no) _____
b. Can DBA-PC ping DCI-PC1? (yes/no) _____
c. Can DBA-PC ping DCI_PC2? (yes/no) _____
d. Can DCI-PC1 ping DCI-PC2? (yes/no) _____
e. Can DBA-PC ping DBA_SW? (yes/no) _____
f. Can DCI-PC1 ping DCI_SW? (yes/no) _____
g. Can DCI_PC2 and DCI_SW? (yes/no) _____

If you answered no to any of the above questions, explain below.

___________________________________________________________________
___________________________________________________________________
___________________________________________________________________

2. Manually configure trunk interface Fa0/1.

 City College of Calamba
Dalubhasan ng Lungsod ng Calamba

Department of Computing and Informatics (DCI)

The switchport mode trunk command is used to manually configure a port as a

trunk. This command should be issued on both ends of the link.
2.1. Change the switchport mode on interface Fa0/1 to force trunking. Make sure to do this
on both switches (DBA_SW and DCI_SW).
DBA_SW> en
DBA_SW# conf t
DBA_SW(config)# int fa0/1
DBA_SW(config-if)# switchport mode trunk
DBA_SW(config-if)# switchport trunk allowed vlan 1,10,20,30,66,99
DBA_SW(config-if)# switchport trunk native vlan 66
DBA_SW(config-if)# end
DBA_SW#

2.2. Issue the show interfaces trunk command to view the trunk mode in DCI_SW.
Notice that the mode changed from desirable to on.
Why might you want to manually configure an interface to trunk mode instead of using
DTP?
_____________________________________________________________________
_____________________________________________________________________
_____________________________________________________________________

2.3. Verify that VLAN traffic is traveling over trunk interface Fa0/1.
a. Can DBA_SW ping DCI_SW? (yes/no) _____
b. Can DBA-PC ping DCI-PC1? (yes/no) _____
c. Can DBA-PC ping DCI_PC2? (yes/no) _____
d. Can DCI-PC1 ping DCI-PC2? (yes/no) _____
e. Can DBA-PC ping DBA_SW? (yes/no) _____
f. Can DCI-PC1 ping DCI_SW? (yes/no) _____
g. Can DCI_PC2 and DCI_SW? (yes/no) _____

If you answered no to any of the above questions, explain below.

___________________________________________________________________
___________________________________________________________________
___________________________________________________________________

3. Save your Packet Tracer file (SURNAME_NET201_MEA1.pkt).