Configuration instance of a large network

Note:
This is a comprehensive example. It can be seen from the topology that it contains devices and technologies. The following is a description of this example.
1. for the internal LAN, Cisco's Catalyst 6506 is used as the central switch, and the second-level switch adopts the Catalyst 3500. To describe the Trunk, a Catalyst 2900 is added as the third-level switch, the Catalyst 1900 switch is used for terminal connection, so that Trunk can be established between the Catalyst 6506 and the Catalyst 3500, and between the Catalyst 3500 and the Catalyst 2900 to implement cross-switch VLAN.
Note: If you want to implement Trunk in the Catalyst 2900 series, the software must be in the Enterprise Edition. For more information, see the topic.
2. For external connections, leased line connections and dial-up access are the main types, including DDN, ISDN, Frame Relay, and E1 lines.
3. This example shows the basic configurations of the device.
4. For multi-device connection problems, it is worth noting that the routing problem is that the external connection of this instance adopts Static Routing and the internal LAN adopts dynamic routing.
5. In this example, IP Unnumbered is used to save address resources. If you are interested, pay attention to it.

Configure an instance
VLAN division problems:
In this example, switch devices are allocated to VLAN 1, while all Ethernet ports of external devices are allocated to VLAN 2. the VLAN name and gateway address are given below, in this example, eight VLANs are divided.
Vlan id vlan Name Gateway
VLAN 1 Bluestudy 1 10.1.0.1/16
VLAN 2 Bluestudy 2 10.2.0.1/16
VLAN 3 Bluestudy 3 10.3.0.1/16
VLAN 4 Bluestudy 4 10.4.0.1/16
VLAN 5 Bluestudy 5 10.5.0.1/16
VLAN 6 Bluestudy 6 10.6.0.1/16
VLAN 7 Bluestudy 7 10.7.0.1/16
VLAN 8 Bluestudy 8 10.8.0.1/16
Catalyst 6506 Configuration
Enter password:
Enable
Enter password:
Config t
Set system name Bluestudy
Set time 10/30/2000 9:30:00
Set password
Set enablepass
Set interface sc0 10.1.0.2/16
Set ip route default 10.1.0.1
Set ip dns server 10.1.0.100
Set ip dns domain bluestudy.com
Set ip dns enable
Set vtp domain bluestudy mode server
Set vlan 1 name Bluestudy 1
Set vlan 2 name Bluestudy 2
Set vlan 3 name Bluestudy 3
Set vlan 4 name Bluestudy 4
Set vlan 5 name Bluestudy 5
Set vlan 6 name Bluestudy 6
Set vlan 7 name Bluestudy 7
Set vlan 8 name Bluestudy 8
Set port negotiation 2/1-8 enable
Set port name 2/1-8 GEC 802.1Q Trunk
Set trunk 2/1-8 desirable dot1q
Set port speed 2/1-8 1000
Set vlan 1 3/1-48
For vswitch configurations of 6506, you only need to configure Trunk, because to implement a virtual network between vswitches, the following configurations are as follows:
Routing module. Because 6506 of the routing module is now integrated with the management engine module, the default command is Session 15.
For more information, see routing settings in section 6506.
Configuration of the Catalyst ipv6rsm Module
(Enable) session 15
Trying Router-15...
Connected to Router-15.
Escape character is '^]'.
Enable
Configure terminal
Hostname bluestudy
Enable password
Line vty 0 6
Password secret_word
Ip domain-name bluestudy.com
Ip name-server 10.1.0.100
Interface vlan 1
Ip address 10.1.0.1 255.255.0.0
No shutdown
Interface vlan 2
Ip address 10.2.0.1 255.255.0.0
No shutdown
Interface vlan 3
Ip address 10.3.0.1 255.255.0.0
No shutdown
Interface vlan 4
Ip address 10.4.0.1 255.255.0.0
No shutdown
Interface vlan 5
Ip address 10.5.0.1 255.255.0.0
No shutdown
Interface vlan 6
Ip address 10.6.0.1 255.255.0.0
No shutdown
Interface vlan 7
Ip address 10.7.0.1 255.255.0.0
No shutdown
Interface vlan 8
Ip address 10.8.0.1 255.255.0.0
No shutdown
Router rip
Version 2
Network 10.0.0.0
Ip route 0.0.0.0 0.0.0.0 10.2.0.12
Ip route 192.168.2.0 255.255.255.0 10.2.0.13
Ip route 192.168.3.0 255.255.255.255.240 10.2.0.11
Ip route 192.168.4.0 255.255.255.0 10.2.0.11
Ip route 192.168.5.0 255.255.255.0 10.2.0.11
Ip route 192.168.6.0 255.255.255.0 10.2.0.11
Copy running-config startup-config
Building configuration...
[OK]
The following is a simple command line, with some default settings omitted.
Catalyst 3500 Configuration
!
Version 12.0:
No service pad
Service timestamps debug uptime
Service timestamps log uptime
Service password-encryption
!
Hostname bluestudy
!
Enable password
!
Username bluestudy password
Username test password
!
Display of omitted ports
!
Interface GigabitEthernet0/1
Switchport trunk encapsulation dot1q
Switchport mode trunk
!
Interface GigabitEthernet0/2
!
Interface VLAN1
Ip address 10.1.0.4 255.255.0.0
Ip helper-address 10.1.0.100
Ip directed-broadcast
No ip route-cache
!
Ip default-gateway 10.1.0.1
Interface Ethernet1/1 (connected to 2900)
Switchport trunk encapsulation dot1q
Switchport mode trunk
!
Interface Ethernet1/2 (connected to 1900)
Switchport access VLAN 3
No shut
!
Interface Ethernet1/3 (connected to 1900 B)
Switchport access VLAN 4
No shut
!
Snmp-server engineID local 000000090200000216BE4E80
Snmp-server community public RO
Snmp-server community private RW
Snmp-server chassis-id 0x17
(Enable Simple Network Management to facilitate identification and management of Cisco network management software in the future)
!
Line con 0
Login local
Transport input none
Stopbits 1
Line vty 0 4
Login local
Line vty 5 15
Login
!
End
Catalyst 2900 Configuration
The 2900 configuration is similar to the 3500 configuration. The command is as follows:
Hostname bluestudy
!
Enable password
!
Username bluestudy password
Username test password
!
Display of omitted ports
!
Interface Ethernet0/1 (connected to 3500)
Switchport trunk encapsulation dot1q
Switchport mode trunk
!
Interface VLAN1
Ip address 10.1.0.3 255.255.0.0
Ip helper-address 10.1.0.100
Ip directed-broadcast
No ip route-cache
!
Ip default-gateway 10.1.0.1
!
Interface Ethernet0/2 (connected to 1900 C)
Switchport access VLAN 5
No shut
!
Interface Ethernet0/3 (connected to 1900 D)
Switchport access VLAN 6
No shut
!
Snmp-server engineID local 000000090200000216BE4E80
Snmp-server community public RO
Snmp-server community private RW
Snmp-server chassis-id 0x17
!
Line con 0
Login local
Transport input none
Stopbits 1
Line vty 0 4
Login local
Line vty 5 15
Login
!
End
Cisco Catalyst 1900 Configuration
It is easier to configure 1900.
You only need to type Setup in the enable status to enter the Configuration Wizard.
The
IP Address: 10.3.0.5
Mask: 255.255.0.0
Gateway: 10.3.0.1
In addition, the Simple Network Management Protocol SNMP should be enabled.
Snmp-server community public RO
Snmp-server community private RW
You can.
Basic configuration of PIX 520A
BIOS Version 4.2 (4)
Nameif ethernet0 outside security0
Nameif ethernet1 inside security100
Enable password encrypted
Passwd password encrypted
Hostname pix_A
Fixup protocol ftp 21
Fixup protocol http 80
Fixup protocol smtp 25
Fixup protocol h323 1720
Fixup protocol rsh 514
Fixup protocol sqlnet 1521
Names
No failover
Failover timeout 0:00:00
Failover ip address outside 0.0.0.0
Failover ip address inside 0.0.0.0
Pager lines 24
No logging console
Logging monitor debugging
Logging buffered debugging
No logging trap
Logging facility 20
Interface ethernet0 auto
Interface ethernet1 auto
Ip address outside 192.168.0.1 255.255.255.252
Ip address inside 10.2.0.13 255.255.0.0
Arp timeout 14400
Nat (inside) 0 192.168.0.0 255.255.255.252
Rip outside passive
No rip outside default
No rip inside passive
Rip inside default
Route outside 192.168.2.0 255.255.255.0 192.168.0.2
Route inside 0.0.0.0 0.0.0.0 10.2.0.1
Timeout xlate 3:00:00 conn 1:00:00 udp 0:02:00
Timeout rpc 0:10:00 h323 0:05:00
Timeout uauth 0:05:00 absolut
Esnmp-server community public RO
Snmp-server community private RW
Telnet 10.2.0.200 255.255.255.255.255
Telnet timeout 15
Mtu outgoing side 1500
Mtu inside 1500
Floodguard 0
Configuration of Cisco 2610A
Current configuration:
!
Version 11.3:
Service timestamps debug uptime
Service timestamps log uptime
Service password-encryption
!
Hostname 2610A
!
Enable password
!
Username bluestudy password
No ip domain-lookup!
!
Interface Ethernet0/0
Ip address 192.168.0.2 255.255.255.252
No shut
!
Interface Serial0/0
Ip address 192.168.0.5 255.255.255.252
No shut
!
Interface Serial0/1
No ip address
Shutdown
!
Ip route 0.0.0.0 0.0.0.0 192.168.0.1
Ip route 192.168.2.0 255.255.255.0 192.168.0.6
!
Snmp-server community public RO
Snmp-server community private RW
!
Line con 0
Line aux 0
Line vty 0 4
Login local
!
No scheduler allocate
End
Cisco 1603 Configuration
Current configuration:
!
Version 12.0:
Service timestamps debug uptime
Service timestamps log uptime
No service password-encryption
!
Hostname 1603
!
Enable secret password
Enable password
!
Memory-size iomem 25
Ip subnet-zero
!
Interface Serial0
Ip address 192.168.0.6 255.255.255.252
No ip directed-broadcast
!
Interface Ethernet0
Ip address 192.168.2.1 255.255.255.0
No ip unreachables
No ip directed-broadcast
!
Ip classless
Ip route 0.0.0.0 0.0.0.0 s0
No ip http server
!
Snmp-server community public RO
Snmp-server community private RW
!
Line con 0
Password
Transport input none
Line aux 0
Line vty 0 4
Password
Login
!
No scheduler allocate
End
Basic configuration of PIX 520B
BIOS Version 4.2 (4)
Nameif ethernet0 outside security0
Nameif ethernet1 inside security100
Enable password encrypted
Passwd password encrypted
Hostname pix520_ B
Fixup protocol ftp 21
Fixup protocol http 80
Fixup protocol smtp 25
Fixup protocol h323 1720
Fixup protocol rsh 514
Fixup protocol sqlnet 1521
Names
No failover
Failover timeout 0:00:00
Failover ip address outside 0.0.0.0
Failover ip address inside 0.0.0.0
Pager lines 24
No logging console
No logging monitor
No logging buffered
No logging trap
Logging facility 20
Interface ethernet0 auto
Interface ethernet1 auto
Ip address outside 202.108.66.97 255.255.255.248
Ip address inside 10.2.0.12 255.255.255.0.0
Arp timeout 14400
Global (outside) 1 202.108.66.100
Nat (inside) 1 0.0.0.0 0.0.0.0 0 0
No rip outside passive
No rip outside default
No rip inside passive
No rip inside default
Route outside 0.0.0.0 0.0.0.0 202.109.77.98
Timeout xlate 3:00:00 conn 1:00:00 udp 0:02:00
Timeout rpc 0:10:00 h323 0:05:00
Timeout uauth 0:05:00 absolute
No snmp-server location
No snmp-server contact
Snmp-server community public
No snmp-server enable traps
Telnet 10.2.0.200 255.255.255.255.255
Telnet timeout 15
Mtu outgoing side 1500
Mtu inside 1500
Floodguard 0
Configuration of Cisco 2610B
Current configuration:
!
Version 11.3:
Service timestamps debug uptime
Service timestamps log uptime
Service password-encryption
!
Hostname 2610B
!
Enable password
!
Username bluestudy password
No ip domain-lookup!
!
Interface Ethernet0/0
Ip address 202.108.66.98 255.255.255.255.248
No shut
!
Interface Serial0/0
Ip address 202.108.8.1 255.255.255.252
No shut
!
Interface Serial0/1
No ip address
Shutdown
!
Ip route 0.0.0.0 0.0.0.0 202.108.8.2
!
Snmp-server community public RO
Snmp-server community private RW
!
Line con 0
Line aux 0
Line vty 0 4
Login local
!
No scheduler allocate
End
Configuration of Cisco 2610c
Version 11.2:
Service udp-small-servers
Service tcp-small-servers
!
Hostname 2610C
!
Enable secret cisco
!
Ip subnet-zero
No ip domain-lookup
!
Ip address-pool local
Isdn switch-type basic-net3
Interface Ethernet0
Ip address 10.2.0.11 255.255.0.0
!
Interface Serial0
No ip address
Encapsulation frame-relay
Frame-relay lm-type ansi
!
Interface Serial0.1 point-to-point
Description Frame Relay to bluestudy1
Ip unnumbered Ethernet0
Frame-relay interface-dlci 10
!
Interface Serial0.2 point-to-point
Description Frame Relay to bluestudy2
Ip unnumbered Ethernet0
Frame-relay interface-dlci 11
!
Interface BRI1/0
No ip address
Shutdown
Isdn switch-type basic-net3
!
Interface BRI1/1
Ip address 192.168.3.1 255.255.255.255.240
Encapsulation ppp
Timeout absolute 60 0
Dialer idle-timeout 3600
Dialer-group 1
Isdn switch-type basic-net3
Peer default ip address pool default
Ppp authentication chap pap callin
!
Interface BRI1/2
No ip address
Encapsulation ppp
Shutdown
Isdn switch-type basic-net3
!
Interface BRI1/3
No ip address
Encapsulation ppp
Shutdown
Isdn switch-type basic-net3
No peer default ip address
!
Ip local pool default 192.168.3.3 192.168.3.14
Ip http server
Ip classless
Ip route 192.168.5.0 255.255.255.0 serial0.1
Ip route 192.168.4.0 255.255.255.0 serial0.2
Ip route 0.0.0.0 0.0.0.0 10.2.0.1
!
Access-list 1 permit any
Dialer-list 1 protocol ip list 1
Line con 0
Password console
Login
Line aux 0
Line vty 0 4
Password telnet
Login
!
End
Configuration of Cisco 1720A
　
Version 11.2:
Service udp-small-servers
Service tcp-small-servers
Hostname bluestudy1
!
Enable secret cisco
!
Ip subnet-zero
No ip domain-lookup
!
Interface Fastethernet0
Ip address 192.168.5.1 255.255.255.0
!
Interface Serial0
No ip address
Encapsulation frame-relay
!
Interface Serial0.1 point-to-point
Description Frame Relay to bluestudy
Ip unnumbered Ethernet0
Frame-relay interface-dlci 10
!
Ip http server
Ip classless
Ip route 0.0.0.0 0.0.0.0 serial0.1
!
Line con 0
Password console
Login
Line aux 0
Line vty 0 4
Password bluestudy1
Login
!
End
Configuration of Cisco 1720B
Version 11.2:
Service udp-small-servers
Service tcp-small-servers
Hostname bluestudy1
!
Enable secret cisco
!
Ip subnet-zero
No ip domain-lookup
!
Interface Fastethernet0
Ip address 192.168.4.1 255.255.255.0
!
Interface Serial0
No ip address
Encapsulation frame-relay
!
Interface Serial0.1 point-to-point
Description Frame Relay to bluestudy
Ip unnumbered Ethernet0
Frame-relay interface-dlci 11
!
Ip http server
Ip classless
Ip route 0.0.0.0 0.0.0.0 serial0.1
!
Line con 0
Password console
Login
Line aux 0
Line vty 0 4
Password bluestudy2
Login
!
End