Fechar
VTP Overview
VLAN trunking protocol (VTP) allows a network administrator to manage VLANs on a switch configured as a VTP server.
The VTP server distributes and synchronizes VLAN information over trunk links to VTP-enabled switches throughout the switched network. This minimizes the problems caused by incorrect configurations and configuration inconsistencies.
VTP Advertisements
- Summary advertisements – These inform adjacent switches of VTP domain name and configuration revision number.
- Advertisement request – These are in response to a summary advertisement message when the summary advertisement contains a higher configuration revision number than the current value.
- Subset advertisements – These contain VLAN information including any changes.
VTP Advertisements
When the switch receives a summary advertisement packet, the switch compares the VTP domain name to its own VTP domain name. If the name is different, the switch simply ignores the packet. If the name is the same, the switch then compares the configuration revision to its own revision.
If its own configuration revision number is higher or equal to the packet's configuration revision number, the packet is ignored. If its own configuration revision number is lower, an advertisement request is sent asking for the subset advertisement message.
VTP Versions
** Switches in the same VTP domain must use the same VTP version.
Note: VTPv2 is not much different than VTPv1 and is generally only configured if legacy Token Ring support is required. The newest version of VTP is Version 3.
*
By default, the VTP domain name is NULL
* By default, a switch is in VTP server mode.
VTP Caveats
Some network administrators avoid VTP because it could potentially introduce false VLAN information into the existing VTP domain.
** The configuration revision number is used when determining whether a switch should keep its existing VLAN database, or overwrite it with the VTP update sent by another switch in the same domain with the same password.
VTP Caveats
Ej: S4 has VLAN 1 and is configured with VLAN 30 and 40. But it does not have VLANs 10 and 20 in its database. Unfortunately, because S4 has a higher revision number, the rest of the switches in the domain will sync to S4’s revision.
The consequence is that VLANs 10 and 20 will no longer exist on the switches, leaving clients that are connected to ports belonging to non-existing VLANs without connectivity.
VTP Caveats
The VTP configuration revision number is stored in NVRAM (or Flash on some platforms) and is not reset if you erase switch configuration and reload it. To reset VTP configuration revision number to zero you have two options:
Steps to configure VTP:
Step 1: Configure the VTP Server
Step 2: Configure the VTP Domain Name and Password
Step 1 - Configure the VTP Server
" vtp mode server"
Ej: ? command to confirm that S1 is a VTP server
Notice how the configuration revision number is still set to 0 and the number of existing VLANs is 5. This is because no VLANs have yet been configured and the switch does not belong to a VTP domain. The 5 VLANs are the default VLAN 1 and VLANs 1002-1005.
Step 2 - Configure the VTP Domain Name and Password
Ej: The domain name is configured using the xxx global configuration command.
** S1 will then send out a VTP advertisement to S2 and S3. If S2 and S3 have the default configuration with the NULL domain name, then both switches will accept CCNA as the new VTP domain name.
"vtp password (password) "
"show vtp password "
Step 3 - Configure the VTP Clients
Ej: ? Configure S2 and S3 as VTP clients in the CCNA domain using the VTP password cisco12345.
A VTP client must have the same domain name as the VTP server before it will accept VTP advertisements.
Step 4 - Configure VLANs on the VTP Server
Ej: ? Verify the VTP Status after VLANs are Configured on the VTP Server
"show vlan brief"
Notice that the configuration revision number incremented six times from the default 0 to 6. This is because three new, named VLANs were added. Each time the administrator makes a change to the VTP server’s VLAN database, this number will increase by one. The number increased by one when the VLAN was added and by one when the name for the VLAN was configured.
Step 5 - Verify that the VTP Clients Have Received the New VLAN Information
"show vlan brief"
"show vtp status"
Ej: ? Because S2 is operating in VTP client mode, attempts to configure VLANs will not be allowed
Normal and Extended VLANs
Note: A Cisco Catalyst 2960 switch can support up to 255 normal range and extended range VLANs
Ej: by default, a Catalyst 2960 Plus Switch does not support extended VLANs.
If an extended VLAN is required, then the switch must be configured as a VTP transparent device
DTP Trunking Modes
** Dynamic Trunking Protocol (DTP) helps switches negotiate and establish 802.1Q trunk links. DTP is a Cisco proprietary protocol.
The trunking mode defines how the port negotiates using DTP to set up a trunk link with its peer port
"switchport mode {access | dynamic {auto | desirable} | trunk} "
"switchport nonnegotiate"
Deleting VLANs
"no vlan (vlan-id)"
When you delete a VLAN, any ports assigned to that VLAN become inactive. They remain associated with the VLAN (and thus inactive) until you assign them to a new VLAN.
Switch Stacking Concepts
** A switch stack can consist of up to nine Catalyst 3750 switches connected through their StackWise ports. One of the switches controls the operation of the stack and is called the stack master.
** The stack master and the other switches in the stack are stack members. Layer 2 and Layer 3 protocols present the entire switch stack as a single entity to the network.
Switch Stacking Concepts
** Every member is uniquely identified by its own stack member number. All members are eligible masters. If the master becomes unavailable, there is an automatic process to elect a new master from the remaining stack members.
One of the factors is the stack member priority value. The switch with the highest stack-member priority-value becomes the master.
Switch Stacking Concepts
** The master contains the saved and running configuration files for the stack. Therefore, there is only one configuration file to manage and maintain. The configuration files include the system-level settings for the stack and the interface-level settings for each member. Each member has a current copy of these files for backup purposes.
** Ej: shows the interfaces on a switch stack with four 52-port switches. Notice the first number after the interface-type is the stack-member number.
Spanning Tree and Switch Stacks
** Another benefit to switch stacking is the ability to add more switches to a single STP instance without increasing the STP diameter. The diameter is the maximum number of switches that you must cross to link any two switches.
** The IEEE recommends a maximum diameter of seven switches for the default STP timers. For example, in Figure the diameter from S1-4 to S3-4 is nine switches. This design violates the IEEE recommendation.
Spanning Tree and Switch Stacks
The recommended diameter is based on default STP timer values, which are as follows:
1. Hello Timer (2 seconds) - The interval between BPDU updates.
Spanning Tree and Switch Stacks
** Switch stacks help to maintain or reduce the impact of diameter on STP reconvergence. In a switch stack, all switches use the same bridge ID for a given spanning-tree instance.
Ej: This means that, if the switches in Figure 1 are stacked, as shown in Figure 2, then the maximum diameter becomes 3 instead of 9.
Hot Standby Router Protocol (HSRP)
was designed by Cisco to allow for gateway redundancy without any additional configuration on end devices. Routers configured with HSRP work together to present themselves as a single virtual default gateway (router) to end devices
One of the routers is selected by HSRP to be the active router. The active router will act as the default gateway for end devices. The other router will become the standby router. If the active router fails, the standby router will automatically assume the role of the active router. It will assume the role of default gateway for end devices
Hot Standby Router Protocol (HSRP)
Both the HSRP active router and the standby router present a single default gateway address to end devices. The default gateway address is a virtual IP address along with a virtual MAC address that is shared amongst both HSRP routers. End devices use this virtual IP address as their default gateway address.
The HSRP virtual IP address is configured by the network administrator. The virtual MAC address is created automatically. Regardless of which physical router is used, the virtual IP and MAC addresses provide consistent default gateway addressing for the end devices.
HSRP Versions
The default version for Cisco IOS 15 is version 1. HSRP version 2 provides the following enhancements:
- HSRPv2 expands the number of supported groups. HSRP version 1 supports group numbers from 0 to 255. HSRP version 2 supports group numbers from 0 to 4095.
- HSRPv1 uses the multicast address of 224.0.0.2. HSRP version 2 uses the IPv4 multicast address 224.0.0.102 or the IPv6 multicast address FF02::66 to send hello packets.
HSRP Priority and Preemption
The role of the active and standby routers is determined during the HSRP election process.
** By default, the router with the numerically highest IP address is elected as the active router.
HSRP Preemption
** By default, after a router becomes the active router, it will remain the active router even if another router comes online with a higher HSRP priority.
** To force a new HSRP election process, preemption must be enabled using the "standby preempt" interface command.
Preemption is the ability of an HSRP router to trigger the re-election process.
HSRP Verification
Note: You can change the default group name with the "standby [group-number] name (group-name)" interface configuration command.
"show standby"
Ej: "show standby brief"
HSRP Failure
Most issues will arise during one of the following HSRP functions:
1. Failing to successfully elect the active router that controls the virtual IP for the group.
2. Failure of the standby router to successfully keep track of the active router.
HSRP Debug Commands
Ej: ? The available HSRP debug commands can be viewed by entering the xxx command
Use debug standby packets to view the receiving and sending of hello packets every 3 seconds
HSRP routers monitor these hello packets and will initiate a state change after 10 seconds if no hellos are heard from an HSRP neighbor.
HSRP Debug Commands
** HSRP behaves differently, depending on whether the active router fails or is manually shutdown by the administrator.
Ej: ? to view the HSRP events as R1 is powered down and R2 assumes the role of active HSRP router for the 172.16.10.0/24 network.
Common HSRP Configuration Issues
* The HSRP routers are not connected to the same network segment. Although this could be a physical layer issue, it could also be a VLAN subinterface configuration issue.
* The HSRP routers are not configured with IP addresses from the same subnet. HSRP hello packets are local. They are not routed beyond the network segment. Therefore, a standby router would not know when the active router fails.
Multiarea OSPF Data Structures
OSPF stores routing information in four main data structures:
1. Interface table - This table includes a list of all active interfaces that have been enabled for OSPF. Type 1 LSAs include the subnets associated with each active interface.
2. Neighbor table - This table is used to manage neighbor adjacencies through hello timers and dead timers. Neighbor entries are added and refreshed when a hello is received. Neighbors are removed when the dead timer expires.
Remove only VLAN 100
- To remove all VLANs from a switch:
"delete flash:vlan.dat"
- To change the assigned VLAN for an interface:
"no switchport access vlan 100"
