2013年6月12日星期三

Design configuration


Question:

I have 30 switched in my Catalyst 3560X  corporate network it’s all up and running all switches running by default configuration and connected to WS-C4506 core switch our dhcp server pooling 192.168.100.1/27 network. Now we need to configure new Vlan for finance department this department has more than 200 users. If my server distributes 192.168.200.0 range ip can vlan2 automatically assign ip 200.0 addresses to finance department.
Problems:- All switches running default config no ip address assigned.

Answer:

You will need to create VLAN2 on all of the switches where your Finance users are connected and then configure trunking between these switches and the core. You will then need to connect an interface on your DHCP server to VLAN2 on the core switch (or configure dot1q trunking on the current server interface if is capable of supporting this). Users in VLAN1 will get 192.168.100.1/27 addresses and users in VLAN2 will get 192.168.200.0 addresses.
If you need these two sets of users to be able to talk to each other then you will need to configure inter-VLAN routing.
Moving forward you might want to do some house-keeping and create 3 VLANs:

You will need to create vlan 2 - your Core and your finance access switch and allow this vlan on the trunks. If you have a separate DHCP server, you will need the ip helper command under the SVI interface for vlan 2, if the DHCP server is in another vlan. This is so that user devices are able to pick up an IP. If you have to create a pool on the Core then that isnt a problem. But I assume you have a separate server.

SVI Core switch      --------------------->           Finance Access Switch
      VLAN 2           ---------TRUNK--------->     VLAN 2

Core Switch:

Conf t
!
vlan 2
name finance
!
interface vlan 2
ip address 192.168.200.1 255.255.255.0
ip helper-address x.x.x.x (your DHCP server)
!
interface gi1/1
description **UPLINK TO FINANCE ACCESS**
switchport trunk encapsuation dot1q
switchport mode trunk

============================
Finance access switch

conf t
!
vlan 2
name finance
!
int fa0/0
description ** ACCESS PORT**
switchport mode access
switchport access vlan 2
!
int gi0/1
description **UPLINK TO CORE**
switchport trunk encapsulation dot1q
switchport WS-C3560X-24T-L  mode trunk
发帖者 时间:

没有评论:

发表评论

订阅: 博文评论 (Atom)