When it comes to switch management, its common to use a dedicated VLAN for management purposes. This lab will discuss and demonstrate the configuration of a Management VLAN.
In the switching world, a logical interface for a VLAN is called a Switched Virtual Interface. When you’re configuring a switch you will see these interfaces represented as a vlan interface. You have the ability to configure these interfaces just as you would a FastEthernet interface. A VLAN Interface can be assigned an IP address, bridge group, interface description and even a quality of service policy.
Having a VLAN Interface gives layer 2 devices the ability to communicate with other devices at layer 3. Multi-Layer switches use VLAN interfaces to enable multi-layer routing functions on a single switch. Basically the switch is its own router-on-a-stick, which is discussed in lab 4-20. In a Multi-Layer switched network, switches such as the Cisco 3550 and Cisco 3560 use VLAN interfaces as default gateways for the PC’s and other host machines on the network to communicate with other IP Networks.
For example; A Cisco 3550 has 2 VLAN’s, VLAN 10 and VLAN 20. Both have a VLAN interface assigned to each with an IP address such as 192.168.10.0/24 and 192.168.20.0/24. When a PC on VLAN 10 needs to communicate to a pc on VLAN 20 it will use the vlan interface as the default gateway and the switch will route the packet via layer3 and the switch will then switch the packet at layer2 in the new VLAN.
Layer 2 only switches can only have a single active vlan interface at any given time. This interface is called the Management VLAN interface. Layer 2 Cisco switches include Cisco 2900XL, 2950 and 2960.
In this lab you will familiarize yourself with VLAN interface configuration mode.
You should be familiar with the commands required to complete the objectives of this lab from previous labs in the Free CCNA Workbook.
Step 1. – Create the VLAN number 10 and name it Management.
SW1 con0 is now available Press RETURN to get started. SW1>enable SW1>configure terminal Enter configuration commands, one per line. End with CNTL/Z. SW1(config)#vlan 10 SW1(config-vlan)#name Management SW1(config-vlan)#end SW1#
Step 2. – Create the VLAN 10 interface and assign it an IP address of 10.1.1.10/24.
To complete this objective you first need to create the VLAN interface by going into global configuration and then VLAN interface configuration mode by using the command interface vlan # Keep in mind that the VLAN interface number is proportional to the vlan number created. So Interface Vlan10 is used for VLAN 10 whereas interface Vlan20 would be used for VLAN 20.
SW1#configure terminal Enter configuration commands, one per line. End with CNTL/Z. SW1(config)#interface vlan10 SW1(config-if)#ip address 10.1.1.10 255.255.255.0 SW1(config-if)#no shut SW1(config-if)#
Step 3. – Assign the FastEthernet0/1 interface on SW1 to VLAN 10.
SW1(config-if)#interface FastEthernet0/1 SW1(config-if)#switchport access vlan 10 SW1(config-if)#no shut SW1(config-if)#end SW1#
By this point you should now be able to ping R1’s FastEthernet0/0 interface as shown below;
R1#ping 10.1.1.10 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.10, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/39/100 ms R1#
Step 4. – Verify the management VLAN configuration by using R1 to telnet the IP address of VLAN 10 on SW1.
R1#telnet 10.1.1.10 Trying 10.1.1.10 ... Open User Access Verification Password: SW1>