Term
Switching
Process to dynamically learn and configure the MAC addresses of currently connected hosts when configuring port security? |
|
Definition
| switchport port-security mac-address sticky |
|
|
Term
Switching
switchport port-security mac-address sticky ? |
|
Definition
the first MAC address heard “sticks” to the configuration, so the engineer does not have to know the MAC address of the device connected to the interface ahead of time
It uses the current MAC that is plugged into interface |
|
|
Term
Switching
In configuring port security, what are the first 2 major commands to enable port security?
|
|
Definition
1. switchport mode access
2. switchport port-security
Then the action can be set by:
switchport port-security violation
|
|
|
Term
Switching
Actions When Port Security Violation Occurs |
|
Definition
| Option on the switchport port-security violation Command | Protect | Restrict | Shutdown |
|---|
| Discards offending traffic |
Yes |
Yes |
Yes |
| Sends log and SNMP messages |
No |
Yes |
Yes |
| Disables the interface, discarding all traffic |
No |
No |
Yes |
|
|
|
Term
Switching
A switch interface is considered either a __ or __ interface? |
|
Definition
|
|
Term
Switching
Define access interface |
|
Definition
| Access interfaces send and receive frames only in a single VLAN, called the access VLAN |
|
|
Term
Switching
Define Trunk interface |
|
Definition
| Trunking interfaces send and receive traffic in multiple VLANs |
|
|
Term
Switching
To configure a new VLAN: |
|
Definition
|
Step 1.
|
To configure a new VLAN: - a. From configuration mode, use the vlan vlan-id global configuration command to create the VLAN and move the user into VLAN configuration mode.
- b. (Optional) Use the name name VLAN subcommand to list a name for the VLAN. If not configured, the VLAN name is VLANZZZZ, where ZZZZ is the four-digit decimal VLAN ID.
|
|
Step 2.
|
To configure a VLAN for each access interface: - a. Use the interface command to move into interface configuration mode for each desired interface.
- b. Use the switchport access vlan id-number interface subcommand to specify the VLAN number associated with that interface.
- c. (Optional) To disable trunking so that the switch will not dynamically decide to use trunking on the interface, and it will remain an access interface, use the switchport mode access interface subcommand
|
|
|
|
Term
Switching
3 steps to setting up VLANS |
|
Definition
1st) Create the VLAN. Use the set vlan command and specify vlan # and name.
2nd) Second assign the ports to a vlan. Use the vlan-membership command
3rd) Check your config using various commands such as show vlan, show port, and show vlan-membership |
|
|
Term
Switching
Commands to check/verify VLANS |
|
Definition
show vlan brief
show running-config |
|
|
