2.2. 远程telnet连接 当完成交换机配置,并起给交换机配置了管理地址,就可以直接采用远程telnet登陆进入交换机了,但是必须先配置line vty的密码和enable密码才能允许远程登陆。
配置telnet登陆命令如下:
#conf t
#line vty 0 4
#login ;控制vty接口是否能够telnet
#password switch
3. 基本信息配置
3.1. 交换机软件版本
Cisco的65xx交换机支持两种版本的系统软件,分别称为Natvie IOS版本和Cat OS版本的系统软件,CatOS版本的软件是为了兼容之前的65xx系列交换机的命令而沿袭下来的。Native IOS版本软件是Cisco公司为了统一其交换机及路由器的软件风格而研发出来的新一代IOS系统软件,Cisco所有的交换机版本都在整体向Native IOS版本过渡,目前来说,Native IOS版本的软件功能和CatOS版本的软件功能相差不多,但是今后都会向Native IOS版本软件。
本项目中所使用的6509交换机采用的是Native IOS版本。
3.2. 查看交换机基本配置
show version ;查看系统版本,内存配置,寄存器等基本信息
show module all ;查看交换机配置模块
show catalyst6000 chassis-mac-address ;查看交换机MAC地址
#show version输出信息如下:
Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-PK9S-M), Version 12.2(17a)SX1, EARLY
DEPLOYMENT> TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Wed 29-Oct-03 08:16 by cmong
Image text-base: 0x40008FBC, data-base: 0x41E50000
ROM: System Bootstrap, Version 12.2(14r)S9,> BOOTLDR: s72033_rp Software (s72033_rp-PK9S-M), Version 12.2(17a)SX1, EARLY
DEPLOYMENT> Router uptime is 29 minutes
Time since Router switched to active is 29 minutes
System returned to ROM by power-on (SP by power-on)
System restarted at 12:57:08 PST Sat Jan 31 2004
System image file is "sup-bootflash:s72033-pk9s-mz.122-17a.SX1.bin"
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found
at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to export@cisco.com.
cisco WS-C6509 (R7000) processor (revision 3.0) with 458752K/65536K bytes of
memory.
Processor board> SR71000 CPU at 600Mhz, Implementation 0x504, Rev 1.2, 512KB L2 Cache
Last reset from power-on
X.25 software, Version 3.0.0.
Bridging software.
1 Virtual Ethernet/IEEE 802.3 interface(s)
48 FastEthernet/IEEE 802.3 interface(s)
36 Gigabit Ethernet/IEEE 802.3 interface(s)
1917K bytes of non-volatile configuration memory.
8192K bytes of packet buffer memory.
65536K bytes of Flash internal SIMM (Sector> Standby is up
Standby has 458752K/65536K bytes of memory.
Configuration register is 0x2102
Router#sho module all
Mod Ports Card Type Model Serial
No.
--- ----- -------------------------------------- ------------------ -----------
2 16 16 port 1000mb GBIC
ethernet WS-X6416-GBIC SAL0750QNJP
3 16 16 port 1000mb GBIC
ethernet WS-X6416-GBIC SAL0750QNFV
5 2 Supervisor Engine 720
(Active) WS-SUP720-BASE SAD075000YF
6 2 Supervisor Engine 720
(Warm) WS-SUP720-BASE SAD075109SZ
7 48 48 port 10/100 mb
RJ45 WS-X6348-RJ-45 SAL0752R3E6
Mod MAC
addresses Hw Fw Sw Status
--- ---------------------------------- ------ ------------ ------------ -------
2 000e.8442.4850 to 000e.8442.485f 2.5 5.4(2) 8.2(0.56)TET Ok
3 000e.8442.48f0 to 000e.8442.48ff 2.5 5.4(2) 8.2(0.56)TET Ok
5 000d.290f.fd08 to 000d.290f.fd0b 3.0 7.7(1) 12.2(17a)SX1 Ok
6 000e.3838.1a8c to 000e.3838.1a8f 3.0 7.7(1) 12.2(17a)SX1 Ok
7 000e.84c8.54f0 to 000e.84c8.551f 6.8 5.4(2) 8.2(0.56)TET Ok
Mod
Sub-Module Model Serial Hw Statu
s
--- --------------------------- ------------------ ------------ ------- -------
5 Policy Feature Card 3 WS-F6K-PFC3A SAD0752009D 2.0 Ok
5 MSFC3 Daughterboard WS-SUP720 SAD075109HX 2.0 Ok
6 Policy Feature Card 3 WS-F6K-PFC3A SAD0751085J 2.0 Ok
6 MSFC3 Daughterboard WS-SUP720 SAD0751077C 2.0 Ok
7 Inline Power Module WS-F6K-PWR 0.0 Ok
Mod Online Diag Status
--- -------------------
2 Pass
3 Pass
5 Pass
6 Pass
7 Pass
3.3. 配置机器名、telnet、密码
在全局模式下,用conf t,进入配置模式,进行以下配置:
#conf t
#clock timezone GMT 8 ;配置时区
#clock set 13:30:21 31 JAN 2004 ;配置交换机时间
#clock calendar-valid ;使能硬件时钟同步
#service timestamps debug datetime localtime ;配置系统debug记录时间格式
#service timestamps log datetime localtime ;配置系统日志记录时间格式
#service password-encryption ;配置使用加密服务,主要针对口令加密
#hostname xxxx ;配置交换机名称
#enable secret 0 xxxxx ;配置enable口令
#copy run start ;将配置信息保存到NVRAM中,重启动不会丢失
#line vty 0 4 ;配置telnet
#exec-timeout 30 0
#password 0 xxxx
#login
3.4. 配置snmp
#conf t
#snmp-server community cisco ro(只读) ;配置只读通信字符串
#snmp-server community secret rw(读写) ;配置读写通信字符串
#snmp-server enable traps ;配置网关SNMP TRAP
#snmp-server host 10.254.190.1 rw ;配置网关工作站地址
3.5. 启动三层功能
#ip routing ;启动路由功能
3.6. 查看和配置系统环境变量
使用show bootvar命令查看系统启动环境变量,包括BOOT, BOOTLDR, and
CONFIG_FILE参数:
Router# show bootvar
BOOT variable = slot0:c6sup22-jsv-mz.121-5c.EX.bin,1;
CONFIG_FILE variable does not exist
BOOTLDR variable = bootflash:c6msfc2-boot-mz.121-3a.E4
Configuration register is 0x2
Router#
改变BOOT,、BOOTLDR、CONFIG_FILE 这三个环境变量使用命令:
BOOT #boot system
BOOTLDR #boot bootldr
CONFIG_FILE #boot config
4. 端口设置
4.1. 端口基本设置
Cisco 65xx系列交换机的端口缺省都是路由模式,一般都会配置为交换端口使用,进入端口配置模式:
对于单一端口,在配置模式下输入:interface Ethernet,Fast Ethernet,Gigabit
Ethernet x/y, x为槽位号,y为端口号。
对于一组端口,可以使用以下的命令进入,例如:
Router(config)# interface range fastethernet 5/1 - 5 或:
Router(config-if)# interface range gigabitethernet 2/1 - 2, gigabitethernet
3/1 - 2
进行端口配置模式后,可以shutdown,或no shutdown端口,并可以对端口进行配置,快速以太端口有全双工、半双工和自动协商模式,如果知道对端连接的设备是采用何种方式,最好采用手工设置方式固定端口的模式和速率。缺省是自动协商模式。
快速以太端口的速率可以设置为100M,也可以设置为10M和自动协商。缺省是自动协商方式。如:
Router(config-if)#speed [10 | 100 | auto](速度)
Router(config-if)# duplex [auto | full | half](双工)
或添加注释,如:
Router(config-if)# description Channel-group to "Marketing"
4.2. 配置二层交换接口
(以fastethernet为例,gigabitethernet一样)
Router(config)# interface fastethernet x/y
Router(config-if)# shutdown
Router(config-if)# switchport ;6500上缺省端口为路由端口,需要写switchport
将端口设置为交换端口
Router(config-if)# switchport mode access
Router(config-if)# switchport access vlan x
Router(config-if)# no shutdown
Router(config-if)# end
清除二层接口配置
(以fastethernet为例,gigabitethernet一样)
Router(config)# interface fastethernet x/y
Router(config-if)# no switchport
Router(config-if)# end
注:使用default interface {ethernet | fastethernet | gigabitethernet}
slot/port,使端口回到原来的缺省配置。
4.3. 配置三层路由端口
6500的端口缺省就是具有三层交换的端口,用来跟其他设备的连接,当将一个端口配
置成三层端口之后,就可以在此端口上分配IP地址了。
Router(config)# interface fastethernet x/y
Router(config)# ip add x.x.x.x x.x.x.x
Router(config)# no shutdown
4.4. 配置端口Trunk
将一个二层端口配置为Trunk模式:
Router(config)# interface fastethernet x/y (以fastethernet为例,
gigabitethernet一样)
Router(config-if)# shutdown
Router(config-if)# switchport
Router(config-if)# switchport trunk encapsulation dot1q
Router(config-if)# switchport mode trunk
Router(config-if)# no shutdown
Router(config-if)# end
Router# exit
4.5. Ethernaet Channel
Router(config)# interface range gigabitethernet1/1 - 2
Router(config-if)#no ip address
Router(config-if)#switchport
Router(config-if)#switchport trunk encapsulation dot1q
Router(config-if)#switchport mode trunk
Router(config-if)#switchport trunk native vlan 1
Router(config-if)#channel-group 1 mode on
产生配置结果如下:
interface Port-channel1 ;自动产生,并且一定要如下所示,否则可能会有问题。
switchport
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet1/1
no ip address
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 1
channel-group 1 mode on
!
interface GigabitEthernet1/2
no ip address
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 1
channel-group 1 mode on
如果有问题,使用命令#no int port-channel 1 ,#int g2/1 -2 ,#no switchport
4.6. 查看端口配置
Router# show running-config interface fastethernet 5/8
Router# show interfaces fastethernet 5/8 switchport
Router# show running-config interface port-channel 1
Router# show spanning-tree interface fastethernet 4/4
QQ群⑧:
窥视卡
雷达卡
发表于 2018-7-16 13:09:44
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡