cc/td/doc/product/l3sw/8540/rel_12_0/w5_13
hometocprevnextglossaryfeedbacksearchhelp
PDF

Table of Contents

Configuration Examples

Configuration Examples

This chapter provides real-world examples of Layer 3 switching configurations.

Note The IP, IPX, and network addresses in these examples are generic addresses, so you must replace them with the actual addresses for your network.

Example of a Catalyst 8540 CSR with ISL, VLAN, and BVI with GEC

This example configuration focuses on both the Inter-Switch Link (ISL) and virtual LANs (VLANs) as well as integrated routing and bridging (IRB) using a bridge-group virtual interface (BVI) over Gigabit EtherChannel (GEC). The Cisco proprietary ISL allows any Fast Ethernet port to be configured as a trunk. The Spanning-Tree Protocol detects and breaks loops on all the VLANs carried across the trunk. The Gigabit Ethernet interface information applies to both two-port and eight-port Gigabit Ethernet interfaces for a Catalyst 8540 campus switch router. This example also includes CPU redundancy, multicast routing, port snooping, and Network Time Protocol (NTP) configurations.

version 12.0
no service pad
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
!
hostname Cat8540_NY
!
logging buffered 4096 debugging
enable password 7 0833595E08
!
facility-alarm core-temperature major 53
facility-alarm core-temperature minor 45
clock timezone pst -8
clock summer-time pdt recurring
redundancy
 main-cpu
  sync config startup
  sync config running
ip subnet-zero
no ip domain-lookup
ip name-server 171.69.2.132
ip name-server 198.92.30.32
ip multicast-routing
ip dvmrp route-limit 20000
bridge irb
!
interface Port-channel9
 ip address 171.200.1.2 255.255.255.0
 no ip directed-broadcast
 ip pim dense-mode
 hold-queue 300 in
!
interface FastEthernet0/0/0

    no ip address
no ip directed-broadcast
no keepalive

!
interface FastEthernet0/0/0.128

    ip address 172.68.16.10 255.255.255.0
ip helper-address 172.68.16.15
no ip redirects
no ip directed-broadcast
ip pim dense-mode
ip multicast ttl-threshold 1
encapsulation isl 128
ipx encapsulation ARPA
ipx network 96A44FFF

!
interface FastEthernet0/0/0.199

    ip address 172.68.17.15 255.255.255.0
ip helper-address 172.68.16.16
ip helper-address 172.68.16.17
ip helper-address 172.68.16.18
no ip redirects
no ip directed-broadcast
ip pim dense-mode
ip multicast ttl-threshold 1
encapsulation isl 199

!
interface FastEthernet0/0/0.201

    ip address 172.68.18.10 255.255.255.0
ip helper-address 172.68.16.16
ip helper-address 172.68.16.17
ip helper-address 172.68.16.18
no ip redirects
no ip directed-broadcast
ip pim dense-mode
ip multicast ttl-threshold 1
encapsulation isl 201

!
interface FastEthernet0/0/1

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/2

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/3

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/4

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/5

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/6

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/7

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/8

    ip address 172.68.19.10 255.255.255.0
ip helper-address 172.68.16.16
ip helper-address 172.68.16.17
ip helper-address 172.68.16.18
no ip redirects
no ip directed-broadcast
ip pim dense-mode
ip multicast ttl-threshold 1
ip sdr listen
no keepalive
ipx network 95B12FFF

!
interface FastEthernet0/0/9

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/10

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/11

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/12

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/13

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/14

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface FastEthernet0/0/15

    no ip address
no ip directed-broadcast
no keepalive
shutdown

!
interface GigabitEthernet1/0/0
snoop interface FastEthernet0/0/3 direction both
 snoop interface FastEthernet0/0/4 direction both
 snoop interface FastEthernet0/0/5 direction both

    ip address 172.68.21.10 255.255.255.0
ip helper-address 172.68.16.19
ip helper-address 172.68.16.20
ip helper-address 172.68.16.21

!
interface GigabitEthernet1/0/1

    no ip address
no ip directed-broadcast
no keepalive

!
interface GigabitEthernet2/0/0
 ip address 172.68.1.1 255.255.255.0
 no ip directed-broadcast
 ip pim sparse-dense-mode
!         
interface GigabitEthernet2/0/1
 ip address 172.69.1.1 255.255.255.0
 no ip directed-broadcast
 ip pim sparse-dense-mode
!
interface GigabitEthernet3/0/0
 no ip address
 no ip directed-broadcast
 channel-group 9
!
interface GigabitEthernet3/0/1
 no ip address
 no ip directed-broadcast
 channel-group 9
!
interface GigabitEthernet3/0/2
 no ip address
 no ip directed-broadcast
 channel-group 9
!
interface GigabitEthernet3/0/3
 no ip address
 no ip directed-broadcast
 channel-group 9
!
interface GigabitEthernet3/0/4
 no ip address
 no ip directed-broadcast
 bridge-group 1
!
interface GigabitEthernet3/0/5
 no ip address
 no ip directed-broadcast
 bridge-group 1
!
interface GigabitEthernet3/0/6
 no ip address
 no ip directed-broadcast
 bridge-group 1
!
interface GigabitEthernet3/0/7
 no ip address
 no ip directed-broadcast
 bridge-group 1
!
interface BVI1
 ip address 171.201.1.2 255.255.255.0
 no ip directed-broadcast
 ip pim dense-mode
 no ip route-cache cef
!
interface Ethernet0

    ip address 172.68.20.10 255.255.255.0
no ip directed-broadcast

!
router eigrp 170
 network 171.200.0.0
 network 171.201.0.0
network 172.68.0.0
network 172.69.0.0
 no auto-summary
!
router bgp 180
 network 172.68.1.0
 network 172.69.1.0
 no auto-summary
!
ip classless
!
bridge 1 protocol ieee
bridge 1 route ip
bridge 1 route ipx
!
!
ip http server
!
line con 0
line aux 0
line vty 0 4

    login

!
ntp clock-period 17181168
ntp update-calendar
ntp server 171.71.150.52
ntp server 171.69.4.143
ntp server 171.69.5.10
end

Example of a Catalyst 8540 CSR with HSRP

This example configuration for a Catalyst 8540 campus switch router focuses on the Hot Standby Router Protocol (HSRP), which provides high network availability. HSRP makes network topology changes transparent to the host. The active router is monitored by other standby routers, and as soon as an active router becomes unavailable, the standby router takes its place.

Helper addresses facilitate connectivity by forwarding certain broadcasts to a target server. In this example, an IP helper address identifies the Dynamic Host Configuration Protocol (DHCP) server IP address. This configuration also includes configuration for IP multicast, Distance Vector Multicast Routing Protocol (DVMRP), tunneling, and Protocol Independent Multicast (PIM) in sparse mode.

version 11.3
service slave-coredump
no service pad
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname mozart
!
aaa new-model
aaa authentication login admin tacacs+ enable
enable password 7 105D100A0618
!
no ip rcmd domain-lookup
ip rcmd rcp-enable
ip rcmd rsh-enable
ip rcmd remote-host root 172.69.1.162 root enable
ip rcmd remote-host root 172.69.2.81 root enable
ip rcmd remote-host root 172.69.6.66 root enable
ip rcmd remote-host root 172.69.43.19 root enable
ip rcmd remote-username root
ip domain-name CISCO.COM
ip name-server 172.69.2.132
ip name-server 198.92.30.32
ip multicast-routing
ip dvmrp route-limit 7000
clock timezone PST -8
clock summer-time PDT recurring
!
interface FastEthernet1/0/0

    ip address 172.69.95.197 255.255.255.192
no ip directed-broadcast
no keepalive

!
interface FastEthernet1/0/1

    description Bldg 1 Network A
ip address 172.69.93.1 255.255.255.192
ip helper-address 172.69.2.74
ip helper-address 172.69.2.123
ip helper-address 172.69.30.31
ip helper-address 172.69.2.121
ip helper-address 172.71.84.140
ip helper-address 172.69.67.35
no ip redirects
no ip directed-broadcast
ip pim sparse-mode
ntp broadcast key 10
standby priority 200
standby preempt
standby ip 172.69.93.6

!
interface FastEthernet1/0/2

    ip address 172.69.90.1 255.255.255.0
 ip helper-address 172.69.2.74
 ip helper-address 172.69.2.123
 ip helper-address 172.69.30.31
 ip helper-address 172.69.2.121
 ip helper-address 172.71.84.140
 ip helper-address 172.69.67.35
 no ip redirects
 no ip directed-broadcast
 ip pim sparse-mode
 ntp broadcast key 10
 standby priority 200
 standby preempt
 standby ip 172.69.90.6
 standby track FastEthernet1/0/3 150

!
interface FastEthernet1/0/3

    ip address 172.69.91.1 255.255.255.0
ip helper-address 172.69.2.74
ip helper-address 172.69.2.123
ip helper-address 172.69.30.31
ip helper-address 172.69.2.121
ip helper-address 172.71.84.140
ip helper-address 172.69.67.35
no ip redirects
no ip directed-broadcast
ip pim sparse-mode
ntp broadcast key 10
standby priority 200
standby preempt
standby ip 172.69.91.6

!
 interface FastEthernet1/0/4

    description Building 2 Network A
ip address 172.69.88.1 255.255.255.192
ip helper-address 172.69.2.74
ip helper-address 172.69.2.123
ip helper-address 172.69.30.31
ip helper-address 172.69.2.121
ip helper-address 172.71.84.140
ip helper-address 172.69.67.35
no ip redirects
no ip directed-broadcast
ip pim sparse-mode
ntp broadcast key 10
standby priority 200
standby preempt
standby ip 172.69.88.6

!
interface FastEthernet1/0/5

    description Building 3 Network A
ip address 172.69.89.1 255.255.255.192
ip helper-address 172.69.2.74
ip helper-address 172.69.2.123
ip helper-address 172.69.30.31
ip helper-address 172.69.2.121
ip helper-address 172.71.84.140
ip helper-address 172.69.67.35
no ip redirects
no ip directed-broadcast
ip pim sparse-mode
ntp broadcast key 10
standby priority 200
standby preempt
standby ip 172.69.89.6

!
interface FastEthernet1/0/6

    no ip address
no ip directed-broadcast
no keepalive

!
interface FastEthernet1/0/7

    no ip address
no ip directed-broadcast
no keepalive

!
interface FastEthernet1/0/8

    no ip address
no ip directed-broadcast
no keepalive

!
interface FastEthernet1/0/9

    no ip address
no ip directed-broadcast

!
interface FastEthernet1/0/10

    no ip address
no ip directed-broadcast

!
 interface FastEthernet1/0/11

    no ip address
no ip directed-broadcast

!
interface FastEthernet1/0/12

    no ip address
no ip directed-broadcast

!
interface FastEthernet1/0/13

    no ip address
no ip directed-broadcast

!
interface FastEthernet1/0/14

    no ip address
no ip directed-broadcast

!
 interface FastEthernet1/0/15

    no ip address
no ip directed-broadcast

! 
interface Ethernet0

    no ip address
no ip directed-broadcast
shutdown

!
router eigrp 109
network 172.69.0.0
no auto-summary
!
ip forward-protocol udp sunrpc
ip pim accept-rp auto-rp
ip pim accept-rp 172.69.10.13
logging 172.69.43.19
snmp-server community 8540 RO 98
snmp-server community Cisco RW 99
snmp-server host 172.69.43.19 traps public
tacacs-server host 172.69.2.210
tacacs-server host 172.69.35.87
tacacs-server timeout 15
!
line con 0

    password 7 071B245F5A
transport input none
line aux 0
password 7 071B245F5A

line vty 0

    exec-timeout 0 0
login authentication admin

line vty 1

    exec-timeout 0 0
login authentication admin
length 57

line vty 2 4

    exec-timeout 0 0
login authentication admin

!
exception dump 172.69.43.19
exception memory minimum 1000000
ntp authentication-key 1 md5 06030C3242410A 7
ntp authentication-key 10 md5 15360E1F2F3E2434 7
ntp authenticate
ntp trusted-key 1
ntp update-calendar
ntp peer 172.69.95.196 key 1
ntp server 172.69.95.194 key 1
ntp server 172.69.95.193 key 1
end

hometocprevnextglossaryfeedbacksearchhelp
Posted: Wed Dec 22 14:13:04 PST 1999
Copyright 1989-1999©Cisco Systems Inc.