Created by Fery Junaedi

Teknik dan Konfigurasi Jaringan VLAN

fery.junaedi@jetcoms.net
Kali ini saya mendokumentasikan tentang bagaimana mengkonfigurasi jaringan VLAN pada network switching layer 2. Di sini saya menggunakan cisco simulator 4, meski pun kita tidak mengakses perangkat switch secara real, konfigurasi simulator ini cukup canggih dan sangat membantu, sayang nya ada beberapa perintah yang tidak support pada simulator tersebut, seperti menjalankan spaning tree. Terus terang saja konfigurasi jaringan pada Network VLAN cukup sederhana, tetapi pemahaman mendasar tentang konsep bagaimana network switching layer 2 bekerja sangat membantu anda. Ada beberapa hal yang saya ingin anda ketahui disini, agar dapat membantu anda dalam memahami dunia networking VLAN, pastikan anda memahami konsepkonsep dasar yang dibawah ini : - konsep dasar TCP/IP, Broadcast domain, collision domain - konsep dasar bagaimana switching layer 2 bekerja - konsep dasar Spanning Tree - konsep dasar VLAN - Konsep dasar Trunking - konsep VTP (Virtual Trunking Protokol) - bagaiman VTP Server dan VTP Clien bekerja - konsep enkapsulation ISL dan dot1Q - Tentu saja bagaiman cara Routing antar VLAN - Setting dasar sebuah VLAN seperti hostname, password, dan ip address Hanya itu saja yang diperlukan untuk memahami dunia VLAN, ketika anda memahami semua konsep dasar diatas maka sebesar apapun network VLAN yang anda bangun tidak akan menjadi masalah, untuk tingkat pemula dan setting VLAN standart tentunya. Di sini saya tidak membahas tentang semua konsep-konsep diatas karena untuk membahas itu semua memerlukan ruangan tersendiri. Untuk memahami semua konsep diatas anda bisa googling di internet, OK

Created by Fery Junaedi

Baik mari kita mulai membangun jaringan VLAN pertama kita. Pada skenario kita kali ini, VLAN yang kita bangun terdiri dari : - 6 buah Cisco Switch 2950 dan 1 Buah Cisco Router - 15 Host yang masing-masing Switch terkoneksi dengan 3 host Berikut Data lengkap Alokasi IP address dari Network VLAN yang kita bangun Switch name
Switch A

Hostname
A_2950 Host_A Host_B Host_C B_2950 Host_D Host_E Host_F C_2950 Host_G Host_H Host_I D_2950 Host_J Host_K Host_L E_2950 Host_M Host_N Host_O Main_Switch

Vlan Members
VLAN 1 VLAN 2 VLAN 4 VLAN 3 VLAN 1 VLAN 2 VLAN 5 VLAN 3 VLAN 1 VLAN 4 VLAN 2 VLAN 5 VLAN 1 VLAN 3 VLAN 4 VLAN 2 VLAN 1 VLAN 5 VLAN 3 VLAN 4 VLAN 1

IP addres
172.16.10.3 192.168.20.2 192.168.40.3 192.168.30.3 172.16.10.4 192.168.20.4 192.168.50.3 192.168.30.4 172.16.10.5 192.168.40.4 192.168.20.5 192.168.50.4 172.16.10.6 192.168.30.5 192.168.40.5 192.168.20.6 172.16.10.7 192.168.50.5 192.168.30.6 192.168.40.6 172.16.10.2

Subnet Mask
255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0

Gateway
172.16.10.1 192.168.20.1 192.168.40.1 192.168.30.1 172.16.10.1 192.168.20.1 192.168.50.1 192.168.30.1 172.16.10.1 192.168.40.1 192.168.20.1 192.168.50.1 172.16.10.1 192.168.30.1 192.168.40.1 192.168.20.1 172.16.10.1 192.168.50.1 192.168.30.1 192.168.40.1 172.16.10.1

Switch B

Switch C

Switch D

Switch E

Main Switch

Router

Sub interface 0 / 0.1 0 / 0.2 0 / 0.3 0 / 0.4 0 / 0.5 VLAN Members Marketing Finance Support Operation

VLAN Gateway VLAN_Switch VLAN 2 VLAN 3 VLAN 4 VLAN 5 VLAN ID VLAN 2 VLAN 3 VLAN 4 VLAN 5

IP address 172.16.10.1 192.168.20.1 192.168.30.1 192.168.40.1 192.168.50.1 Network 192.168.20.0 192.168.30.0 192.168.40.0 192.168.50.0

Subnet mask 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0 255.255.255.0

Created by Fery Junaedi Langkah-langkah yang dilakukan dalam membangun jaringan VLAN ini adalah : 1. Design Network VLAN yang anda bangun - Buat design network, nama group VLAN dan Alokasi Subnet IP addres pada tiap VLAN 1. Konfigurasi Router-VLAN - Setting Hostname - Setting Password - Setting Subinterface - Setting encapsulation dotlq x - Setting ip address untuk segmentasi VLAN 2. konfigurasi MainSwitch pada main switch yang dikofigurasi adalah - Setting HostName - Setting Password - Setting IP address VLAN - Setting Trunking pada port yang terkoneksi dengan perangkat lain - Setting VTP Server - Setting VTP Domain - Setting VTP Database - Setting nomor dan nama-nama VLAN 3. Konfigurasi Switch yang bergabung dalam VLAN - Setting Hostname - Setting Password - Setting IP Address VLAN - Setting Trunking pada port yang terkoneksi dengan perangkat lain - Setting VTP Client - Setting VTP Domain - Setting Port untuk didaftarkan pada suatu VLAN 4. Verifikasi koneksi dan VLAN membership - Melihat pada switch port mana yang sudah di daftarkan ke VLAN - Melihat VLAN membership dari setiap switch - Cek Koneksi dengan ping ke setiap segment network dari berbagai tempat

Created by Fery Junaedi

Sebenarnya konfigurasi VLAN cukup sederhana anda hanya mengikuti konfigurasi seperti dibawah ini. tapi sekali lagi pemahaman mendasar tentang konsep yang berhubungan dengan VLAN seperti trunking, protokol ISL atau IEE 802.1Q (dot1q) cukup membantu dalam trobleshooting ke depan Mari kita mulai konfigurasi Network VLAN kita : Gambar Topologi VLAN yang akan dibangun

Created by Fery Junaedi

Router VLAN Configuration

Router Con0 is now available

Press RETURN to get started!

Router>enable % Incomplete command. Router#configure terminal % Incomplete command. Router(config)#hostname Route_VLAN Route_VLAN(config)#enable secret fery Route_VLAN(config)#line console 0 Route_VLAN(config-line)#password fery Route_VLAN(config-line)#login Route_VLAN(config-line)#exit Route_VLAN(config)#line vty 0 4 Route_VLAN(config-line)#password fery Route_VLAN(config-line)#login Route_VLAN(config-line)#exit Route_VLAN(config)#service password-encryption Route_VLAN(config)#interface fastethernet 0/0 Route_VLAN(config-if)#no ip address Route_VLAN(config-if)#no shutdown 03:37:51 %LINK-3-UPDOWN: Interface Fastethernet0/0, changed state to up 03:37:51 %LINEPROTO-5-UPDOWN: Line protocol on Interface Fastethernet0/0, changed state to up Route_VLAN(config-if)#exit Route_VLAN(config)#interface fastethernet 0/0.1

Created by Fery Junaedi

Route_VLAN(config-subif)#encapsulation dot1Q 1 Route_VLAN(config-subif)#ip address 172.16.10.1 255.255.255.0 Route_VLAN(config-subif)#exit Route_VLAN(config)#interface fastethernet 0/0.2 Route_VLAN(config-subif)#encapsulation dot1Q 2 Route_VLAN(config-subif)#ip address 192.168.20.1 255.255.255.0 Route_VLAN(config-subif)#exit Route_VLAN(config)#interface fastethernet 0/0.3 Route_VLAN(config-subif)#encapsulation dot1Q 3 Route_VLAN(config-subif)#ip address 192.168.30.1 255.255.255.0 Route_VLAN(config-subif)#exit Route_VLAN(config)#interface fastethernet 0/0.4 Route_VLAN(config-subif)#encapsulation dot1Q 4 Route_VLAN(config-subif)#ip address 192.168.40.1 255.255.255.0 Route_VLAN(config-subif)#exit Route_VLAN(config)#interface fastethernet 0/0.5 Route_VLAN(config-subif)#encapsulation dot1Q 5 Route_VLAN(config-subif)#ip address 192.168.50.1 255.255.255.0 Route_VLAN(config-subif)# --->CTRL+Z Route_VLAN#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] Route_VLAN#

Created by Fery Junaedi

2950 Main Switch Configuration

switch Con0 is now available Press RETURN to get started!

switch>enable % Incomplete command. switch#configure terminal % Incomplete command. switch(config)#hostname 2950-MainSwitch 2950-MainSwitch(config)#enable secret fery 2950-MainSwitch(config)#line console 0 2950-MainSwitch(config-line)#password fery 2950-MainSwitch(config-line)#login 2950-MainSwitch(config-line)#exit 2950-MainSwitch(config)#line vty 0 15 2950-MainSwitch(config-line)#password fery 2950-MainSwitch(config-line)#login 2950-MainSwitch(config-line)#exit 2950-MainSwitch(config)#service password-encryption 2950-MainSwitch(config)#interface fastethernet 0/6 2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to Router-VLAN 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface fastethernet 0/1 2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to A_2950 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface fastethernet 0/2

Created by Fery Junaedi

2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to B_2950 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface fastethernet 0/3 2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to C_2950 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface fastethernet 0/11 2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to D_2950 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface fastethernet 0/12 2950-MainSwitch(config-if)#switchport mode trunk 2950-MainSwitch(config-if)#description Trunking to E_2950 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#interface VLAN 1 2950-MainSwitch(config-if)#ip address 172.16.10.2 255.255.255.0 2950-MainSwitch(config-if)#no shutdown 2950-MainSwitch(config-if)#exit 2950-MainSwitch(config)#ip default-gateway 172.16.10.1 2950-MainSwitch(config)#vtp mode server Device mode already VTP SERVER. 2950-MainSwitch(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms 2950-MainSwitch(config)#exit 2950-MainSwitch#VLAN database 2950-MainSwitch(VLAN)#VLAN 2 name Marketing VLAN 2 added: Name: Marketing 2950-MainSwitch(VLAN)#VLAN 3 name Finance

Created by Fery Junaedi

VLAN 3 added: Name: Finance 2950-MainSwitch(VLAN)#VLAN 4 name Support VLAN 4 added: Name: Support 2950-MainSwitch(VLAN)#VLAN 5 name Operation VLAN 5 added: Name: Operation 2950-MainSwitch(VLAN)#apply 2950-MainSwitch(VLAN)#exit APPLY completed. Exiting.... 2950-MainSwitch#show VLAN VLAN Name Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/5, Fa0/6, Fa0/7, Fa0/8 Fa0/9, Fa0/10, Fa0/11, Fa0/12 2 3 4 5 Marketing Finance Support Operation active active active active MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

VLAN Type SAID

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 enet 100001 1500 0 0

-----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- -----------------------------------------2950-MainSwitch#

Created by Fery Junaedi

Switch A_2950 Configuration

switch Con0 is now available Press RETURN to get started! switch>enable % Incomplete command. switch#configure terminal % Incomplete command. switch(config)#hostname A_2950 A_2950(config)#enable secret fery A_2950(config)#line console 0 A_2950(config-line)#password fery A_2950(config-line)#exit A_2950(config)#line vty 0 15 A_2950(config-line)#password fery A_2950(config-line)#exit A_2950(config)#service password-encryption A_2950(config)#interface VLAN 1 A_2950(config-if)#ip address 172.16.10.3 255.255.255.0 A_2950(config-if)#no shutdown A_2950(config-if)#exit A_2950(config)#ip default-gateway 172.16.10.1 A_2950(config)#interface fastethernet 0/1 A_2950(config-if)#description Trunking to MainSwitch_2950 A_2950(config-if)#exit A_2950(config)#interface fastethernet 0/5 A_2950(config-if)#switchport access VLAN 2 A_2950(config-if)#exit A_2950(config)#interface fastethernet 0/6

10

Created by Fery Junaedi

A_2950(config-if)#switchport access VLAN 4 A_2950(config-if)#exit A_2950(config)#interface fastethernet 0/7 A_2950(config-if)#switchport access VLAN 3 A_2950(config)#vtp mode client Aetting device to VTP CLIENT mode. A_2950(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms A_2950(config)#apply A_2950(config)#exit F_2950#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] A_2950#

11

Created by Fery Junaedi

Switch B_2950 Configuration

switch Con0 is now available Press RETURN to get started! switch>enable % Incomplete command. switch#configure terminal % Incomplete command. switch(config)#hostname B_2950 B_2950(config)#enable secret fery B_2950(config)#line console 0 B_2950(config-line)#password fery B_2950(config-line)#exit B_2950(config)#line vty 0 15 B_2950(config-line)#password fery B_2950(config-line)#exit B_2950(config)#service password-encryption B_2950(config)#interface VLAN 1 B_2950(config-if)#ip address 172.16.10.4 255.255.255.0 B_2950(config-if)#no shutdown B_2950(config-if)#exit B_2950(config)#ip default-gateway 172.16.10.1 B_2950(config)#interface fastethernet 0/1 B_2950(config-if)#description Trunking to MainSwitch_2950 B_2950(config-if)#exit B_2950(config)#interface fastethernet 0/5 B_2950(config-if)#switchport access VLAN 2 B_2950(config-if)#exit B_2950(config)#interface fastethernet 0/6

12

Created by Fery Junaedi

B_2950(config-if)#switchport access VLAN 5 B_2950(config-if)#exit B_2950(config)#interface fastethernet 0/7 B_2950(config-if)#switchport access VLAN 3 B_2950(config)#vtp mode client Aetting device to VTP CLIENT mode. B_2950(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms B_2950(config)#apply B_2950(config)#exit B_2950#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] B_2950#

13

Created by Fery Junaedi

Switch C_2950 Configuration

switch Con0 is now available Press RETURN to get started! switch>enable % Incomplete command. switch#configure terminal % Incomplete command. switch(config)#hostname C_2950 C_2950(config)#enable secret fery C_2950(config)#line console 0 C_2950(config-line)#password fery C_2950(config-line)#exit C_2950(config)#line vty 0 15 C_2950(config-line)#password fery C_2950(config-line)#exit C_2950(config)#service password-encryption C_2950(config)#interface VLAN 1 C_2950(config-if)#ip address 172.16.10.5 255.255.255.0 C_2950(config-if)#no shutdown C_2950(config-if)#exit C_2950(config)#ip default-gateway 172.16.10.1 C_2950(config)#interface fastethernet 0/1 C_2950(config-if)#description Trunking to MainSwitch_2950 C_2950(config-if)#exit C_2950(config)#interface fastethernet 0/5 C_2950(config-if)#switchport access VLAN 4 C_2950(config-if)#exit C_2950(config)#interface fastethernet 0/6 C_2950(config-if)#switchport access VLAN 2

14

Created by Fery Junaedi

C_2950(config-if)#exit C_2950(config)#interface fastethernet 0/7 C_2950(config-if)#switchport access VLAN 5 C_2950(config)#vtp mode client Aetting device to VTP CLIENT mode. C_2950(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms

C_2950(config)#apply C_2950(config)#exit C_2950#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] C_2950#

15

Created by Fery Junaedi

Switch D_2950 Configuration

switch Con0 is now available Press RETURN to get started! switch>enable % Incomplete command. switch#configure terminal % Incomplete command.

switch(config)#hostname D_2950 D_2950(config)#enable secret fery D_2950(config)#line console 0 D_2950(config-line)#password fery D_2950(config-line)#exit D_2950(config)#line vty 0 15 D_2950(config-line)#password fery D_2950(config-line)#exit D_2950(config)#service password-encryption D_2950(config)#interface VLAN 1 D_2950(config-if)#ip address 172.16.10.6 255.255.255.0 D_2950(config-if)#no shutdown D_2950(config-if)#exit D_2950(config)#ip default-gateway 172.16.10.1 D_2950(config)#interface fastethernet 0/1 D_2950(config-if)#description Trunking to MainSwitch_2950 D_2950(config-if)#exit D_2950(config)#interface fastethernet 0/5 D_2950(config-if)#switchport access VLAN 3 D_2950(config-if)#exit

16

Created by Fery Junaedi

D_2950(config)#interface fastethernet 0/6 D_2950(config-if)#switchport access VLAN 4 D_2950(config-if)#exit D_2950(config)#interface fastethernet 0/7 D_2950(config-if)#switchport access VLAN 2 D_2950(config)#vtp mode client Aetting device to VTP CLIENT mode. D_2950(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms D_2950(config)#apply D_2950(config)#exit D_2950#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] D_2950#

17

Created by Fery Junaedi

Switch E_2950 Configuration

switch Con0 is now available Press RETURN to get started! switch>enable % Incomplete command. switch#configure terminal % Incomplete command.

switch(config)#hostname E_2950 E_2950(config)#enable secret fery E_2950(config)#line console 0 E_2950(config-line)#password fery E_2950(config-line)#exit E_2950(config)#line vty 0 15 E_2950(config-line)#password fery E_2950(config-line)#exit E_2950(config)#service password-encryption E_2950(config)#interface VLAN 1 E_2950(config-if)#ip address 172.16.10.7 255.255.255.0 E_2950(config-if)#no shutdown E_2950(config-if)#exit E_2950(config)#ip default-gateway 172.16.10.1 E_2950(config)#interface fastethernet 0/1 E_2950(config-if)#description Trunking to MainSwitch_2950 E_2950(config-if)#exit E_2950(config)#interface fastethernet 0/5 E_2950(config-if)#switchport access VLAN 5 E_2950(config-if)#exit E_2950(config)#interface fastethernet 0/6

18

Created by Fery Junaedi

E_2950(config-if)#switchport access VLAN 3 E_2950(config-if)#exit E_2950(config)#interface fastethernet 0/7 E_2950(config-if)#switchport access VLAN 4 E_2950(config)#vtp mode client Aetting device to VTP CLIENT mode. E_2950(config)#vtp domain jetcoms Changing VTP domain name from NULL to jetcoms E_2950(config)#apply E_2950(config)#exit E_2950#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] E_2950#

19

Created by Fery Junaedi

Switch A_2950 Verification

A_2950 Con0 is now available Press RETURN to get started! User Access Verification Password: A_2950>enable Enter password: **** % Incomplete command. A_2950#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms A_2950#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname A_2950 ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 ! ip subnet-zero

20

Created by Fery Junaedi ! ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to MainSwitch" switchport mode trunk ! interface FastEthernet0/2 switchport mode access ! interface FastEthernet0/3 switchport mode access ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport access VLAN 2 switchport mode access ! interface FastEthernet0/6 switchport access VLAN 4 switchport mode access ! interface FastEthernet0/7 switchport access VLAN 3 switchport mode access ! interface FastEthernet0/8

21

Created by Fery Junaedi switchport mode access ! interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 switchport mode access

! interface FastEthernet0/12 switchport mode access ! interface VLAN1 ip address 172.16.10.3 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line vty 0 15 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login ! end

22

Created by Fery Junaedi

A_2950#show VLAN

VLAN Name

Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/8, Fa0/9, Fa0/10, Fa0/11 Fa0/12 2 3 4 5 Marketing Finance Support Operation active active active active Fa0/5 Fa0/7 Fa0/6

VLAN Type SAID

MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 2 3 4 5 enet 100001 enet 100002 enet 100003 enet 100004 enet 100005 1500 1500 1500 1500 1500 0 0 0 0 0 0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- ------------------------------------------

A_2950#

23

Created by Fery Junaedi

Switch B_2950 Verification

B_2950 Con0 is now available Press RETURN to get started! User Access Verification Password: B_2950>enable Enter password: **** % Incomplete command.

B_2950#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms B_2950#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname B_2950 ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0

24

Created by Fery Junaedi ! ip subnet-zero ! ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to MainSwitch" switchport mode trunk ! interface FastEthernet0/2 switchport mode access ! interface FastEthernet0/3 switchport mode access ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport access VLAN 2 switchport mode access ! interface FastEthernet0/6 switchport access VLAN 5 switchport mode access ! interface FastEthernet0/7 switchport access VLAN 3 switchport mode access

25

Created by Fery Junaedi ! interface FastEthernet0/8 switchport mode access ! interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 switchport mode access ! interface FastEthernet0/12 switchport mode access ! interface VLAN1 ip address 172.16.10.4 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line vty 0 15 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login !

26

Created by Fery Junaedi end

B_2950#show VLAN

VLAN Name

Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/8, Fa0/9, Fa0/10, Fa0/11 Fa0/12 2 3 Marketing Finance active active Fa0/5 Fa0/7

4 5

Support Operation

active active Fa0/6

VLAN Type SAID

MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 2 3 4 5 enet 100001 enet 100002 enet 100003 enet 100004 enet 100005 1500 1500 1500 1500 1500 0 0 0 0 0 0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- -----------------------------------------B_2950#

27

Created by Fery Junaedi

Switch C_2950 Verification

C_2950 Con0 is now available Press RETURN to get started! User Access Verification Password: C_2950>enable Enter password: **** % Incomplete command. C_2950#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms C_2950#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime

service timestamps log uptime no service password-encryption ! hostname C_2950 ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 !

28

Created by Fery Junaedi ip subnet-zero ! ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to MainSwitch" switchport mode trunk ! interface FastEthernet0/2 switchport mode access ! interface FastEthernet0/3 switchport mode access ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport access VLAN 4 switchport mode access ! interface FastEthernet0/6 switchport access VLAN 2 switchport mode access ! interface FastEthernet0/7 switchport access VLAN 5 switchport mode access !

29

Created by Fery Junaedi interface FastEthernet0/8 switchport mode access !

interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 switchport mode access ! interface FastEthernet0/12 switchport mode access ! interface VLAN1 ip address 172.16.10.5 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password fery login line vty 0 15 password fery login !

30

Created by Fery Junaedi end

C_2950#show VLAN

VLAN Name

Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/8, Fa0/9, Fa0/10, Fa0/11 Fa0/12 2 3 4 5 Marketing Finance Support Operation active active active active Fa0/5 Fa0/7 Fa0/6

VLAN Type SAID

MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 2 3 4 5 enet 100001 enet 100002 enet 100003 enet 100004 enet 100005 1500 1500 1500 1500 1500 0 0 0 0 0 0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- -----------------------------------------C_2950#

31

Created by Fery Junaedi

Switch D_2950 Verification

D_2950 Con0 is now available Press RETURN to get started! User Access Verification Password: D_2950>enable Enter password: **** % Incomplete command. D_2950#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms D_2950#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname D_2950 ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 !

32

Created by Fery Junaedi ip subnet-zero ! ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to MainSwitch" switchport mode trunk ! interface FastEthernet0/2 switchport mode access ! interface FastEthernet0/3 switchport mode access ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport access VLAN 3 switchport mode access ! interface FastEthernet0/6 switchport access VLAN 4 switchport mode access ! interface FastEthernet0/7 switchport access VLAN 2 switchport mode access !

33

Created by Fery Junaedi interface FastEthernet0/8 switchport mode access ! interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 switchport mode access ! interface FastEthernet0/12 switchport mode access ! interface VLAN1 ip address 172.16.10.6 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line vty 0 15 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login ! end

34

Created by Fery Junaedi

D_2950#show VLAN VLAN Name Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/8, Fa0/9, Fa0/10, Fa0/11 Fa0/12 2 3 4 5 Marketing Finance Support Operation active active active active MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 Fa0/7 Fa0/5 Fa0/6

VLAN Type SAID

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 2 3 4 5 enet 100001 enet 100002 enet 100003 enet 100004 enet 100005 1500 1500 1500 1500 1500 0 0 0 0 0 0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- -----------------------------------------D_2950#

35

Created by Fery Junaedi

Switch E_2950 Verification

E_2950 Con0 is now available Press RETURN to get started! User Access Verification Password: Enter password: **** % Incomplete command. E_2950#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms E_2950#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname E_2950 ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 ! ip subnet-zero !

36

Created by Fery Junaedi ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to MainSwitch" switchport mode trunk ! interface FastEthernet0/2 switchport mode access ! interface FastEthernet0/3 switchport mode access ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport access VLAN 5 switchport mode access ! interface FastEthernet0/6 switchport access VLAN 3 switchport mode access ! interface FastEthernet0/7 switchport access VLAN 4 switchport mode access ! interface FastEthernet0/8 switchport mode access

37

Created by Fery Junaedi ! interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 switchport mode access ! interface FastEthernet0/12 switchport mode access ! interface VLAN1 ip address 172.16.10.7 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line vty 0 15 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login ! end

38

Created by Fery Junaedi

E_2950#show VLAN VLAN Name Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/8, Fa0/9, Fa0/10, Fa0/11 Fa0/12 2 Marketing active

3 4 5

Finance Support Operation

active active active

Fa0/6 Fa0/7 Fa0/5

VLAN Type SAID

MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 2 3 4 5

enet 100001 enet 100002 enet 100003 enet 100004 enet 100005

1500 1500 1500 1500 1500 -

0 0 0 0 0

0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- ------------------------------------------

E_2950#

39

Created by Fery Junaedi

Main Switch 2950 Verification

2950-MainSwitch Con0 is now available Press RETURN to get started! User Access Verification Password: 2950-MainSwitch>enable Enter password: **** % Incomplete command. 2950-MainSwitch#ping 172.16.10.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.10.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms 2950-MainSwitch#show running-config Building configuration... Current configuration : 866 bytes ! version 12.1 no service single-slot-reload-enable no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname 2950-MainSwitch ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 !

40

Created by Fery Junaedi ip subnet-zero ! ! spanning-tree extend system-id ! ! interface FastEthernet0/1 description "Trunking to A_2950" switchport mode trunk ! interface FastEthernet0/2 description "Trunking to B_2950" switchport mode trunk ! interface FastEthernet0/3 description "Trunking to C_2950" switchport mode trunk ! interface FastEthernet0/4 switchport mode access ! interface FastEthernet0/5 switchport mode access ! interface FastEthernet0/6 description "Trunking to Router" switchport mode trunk ! interface FastEthernet0/7 switchport mode access !

41

Created by Fery Junaedi interface FastEthernet0/8 switchport mode access ! interface FastEthernet0/9 switchport mode access ! interface FastEthernet0/10 switchport mode access ! interface FastEthernet0/11 description "Trunking to D_2950" switchport mode trunk ! interface FastEthernet0/12 description "Trunking to E_2950" switchport mode trunk ! interface VLAN1 ip address 172.16.10.2 255.255.255.0 no ip route-cache ! ip default-gateway 172.16.10.1 ip http server ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line vty 0 15 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login

42

Created by Fery Junaedi ! end

2950-MainSwitch#show VLAN

VLAN Name

Status Ports

---- -------------------------------- --------- ------------------------------1 default active Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/5, Fa0/6, Fa0/7, Fa0/8 Fa0/9, Fa0/10, Fa0/11, Fa0/12 2 3 4 5 Marketing Finance Support Operation active active active active MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

VLAN Type SAID

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ -----1 2 3 4 5 enet 100001 enet 100002 enet 100003 enet 100004 enet 100005 1500 1500 1500 1500 1500 0 0 0 0 0 0 0 0 0 0

Remote SPAN VLANs -----------------------------------------------------------------------------Primary Secondary Type Ports

------- --------- ----------------- -----------------------------------------2950-MainSwitch#

43

Created by Fery Junaedi

Router VLAN Verification

Route_VLAN Con0 is now available Press RETURN to get started! User Access Verification Password: Route_VLAN>enable Password: % Incomplete command. Route_VLAN#show running-config Building configuration... Current configuration : 625 bytes ! version 12.2 service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Route_VLAN ! enable secret 5 $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 ! ip subnet-zero ! ! ! ! ! interface FastEthernet0/0 no ip address

44

Created by Fery Junaedi no ip directed-broadcast ! interface FastEthernet0/0.1 encapsulation dot1Q 1 ip address 172.16.10.1 255.255.255.0 ! interface FastEthernet0/0.2 encapsulation dot1Q 2 ip address 192.168.20.1 255.255.255.0 ! interface FastEthernet0/0.3 encapsulation dot1Q 3 ip address 192.168.30.1 255.255.255.0 ! interface FastEthernet0/0.4 encapsulation dot1Q 4 ip address 192.168.40.1 255.255.255.0 ! interface FastEthernet0/0.5 encapsulation dot1Q 5 ip address 192.168.50.1 255.255.255.0 ! interface Serial0/0 no ip address no ip directed-broadcast shutdown ! interface FastEthernet0/1 no ip address no ip directed-broadcast shutdown

45

Created by Fery Junaedi ! interface Serial0/1 no ip address no ip directed-broadcast shutdown ! ! ip classless no ip http server ! ! ! line con 0 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login line aux 0 line vty 0 4 password $1$u76B$IOFVJ7VxfVXYVpGDrFTcI0 login ! end

Route_VLAN#

46

Created by Fery Junaedi

Cek Ping dari host A di network Switch 2950

Ke host di network 192.168.30.0 C:\>ping 192.168.30.3 Ke host di network 192.168.40.0 C:\>ping 192.168.40.3 Ke host di network 192.168.50.0 C:\>ping 192.168.50.3

Untuk verifikasi selanjutnya lakukan hal yang sama dengan di atas. Coba cek ping ke setiap host pada network yang berbeda : - Network 192.168.20.0 - Network 192.168.30.0 - Network 192.168.40.0 - Network 192.168.50.0

Selamat anda baru saja menjalani langkah demi langkah bagaimana melakukan Network VLAN. hanya itu saja. Mudah Bukan ???

setting pada

Terima Kasih Jakarta, 18-04-2007

Fery Junaedi

47