Cisco | Konfigurasi Link Point to Point
1. Port-channel Core dan Disti idak perlu pake protocol.
2. Port-channel switch Disti dan Access bs pake non-protocol, bs pake protocol. Kalau pake procotol mode portchannel nya pek active.
3. Link dari Core-SW (N7k) to Firewall-PALO
4. Link to Core (Po L3) dan Link to Access (Po L2)
Konfig Core-01
interface Ethernet1/19
description Link to Port Ten1/1/1
channel-group 103
no shutdown
!
rface Ethernet1/20
description Link to Port Ten1/1/2
channel-group 103
no shutdown
!
interface port-channel103
description to_DAPENRA1
ip address 10.1.241.1/30
ip ospf network point-to-point
ip router ospf 1 area 0.0.0.0
!
Konfig SW-Access-01
interface TenGigabitEthernet1/1/4
description TO_HQ-DsSW-DP01-LT.4
switchport trunk allowed vlan 307,314,331
switchport mode trunk
switchport nonegotiate
storm-control broadcast level 1.00
channel-group 1 mode active
!
interface TenGigabitEthernet2/1/4
description TO_HQ-DsSW-DP01-LT.4
switchport trunk allowed vlan 307,314,331
switchport mode trunk
switchport nonegotiate
storm-control broadcast level 1.00
channel-group 1 mode active
!
interface Port-channel1
switchport trunk allowed vlan 307,314,331
switchport mode trunk
switchport nonegotiate
storm-control broadcast level 1.00
end
--------
5. Link Point to Point antas swith dengan firewall. Disisi swith port pisisk konfig vlan access, dan L3 nya pake SVI. Disisi firewall port2 dan port di bounding, firewall-01 Active dan firewall-02 standby/backup.
5. Link Port-Channel L3 switch Cat6500. Jika Port-Channel L2 bisa pake mode on.
5. Link to Access Point Cisco C9100 AXI (Joint WLC)
interface GigabitEthernet1/0/3
description MGMT_WIFI_GRAHA
switchport trunk native vlan 308
switchport mode trunk
spanning-tree portfast trunk
end
!
-----ATAU --------
interface GigabitEthernet1/0/12
description MGMT_WIFI_GSG-RUANG_RIAS-LT2
switchport trunk native vlan 309
switchport mode trunk
spanning-tree portfast
spanning-tree bpduguard enable
end
!
6. Konfigurasi FEX (Fabric Extender). Misal FEX 117
interface Ethernet3/33
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet3/34
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet4/33
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet4/34
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
!
interface port-channel117
switchport
switchport mode fex-fabric
fex associate 117
!
fex 117
pinning max-links 1
description "Rack36_Exalogic"
type N2248TP-E
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet3/34
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet4/33
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
interface Ethernet4/34
description To N2248-Fex117-Rack100-Atas
switchport
switchport mode fex-fabric
fex associate 117
channel-group 117
no shutdown
!
interface port-channel117
switchport
switchport mode fex-fabric
fex associate 117
!
fex 117
pinning max-links 1
description "Rack36_Exalogic"
type N2248TP-E
7. Konfigurasi link port antar pernagkat pakai Kabel FO
DISTI-01
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #- ##PAKE FO)
switchport
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
end
!
BTR-01-ACC03#sh run int
!
interface GigabitEthernet0/1
description # UPLINK_TO_BTR-08-6500-DIST-01_Gi2/1 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
udld port aggressive
end
8. Konfigurasi link port antar pernagkat pakai Kabel UTP
interface GigabitEthernet0/3
description # UPLINK_TO_BTR-01-ACC08_Gi1/0/48 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
end
!
interface GigabitEthernet1/0/48
description # UPLINK_TO_BTR-01-ACC03_Gi0/3 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
end
9. Link ke Access Point AP-Aruba pakai kabel UTP (ada WLC)
BTM-01-ACC08#sh run interface gi1/0/4
interface GigabitEthernet1/0/1
description # AP ARUBA #
switchport access vlan 60
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
========================================
10. Link ke PC-User kabel UTP
BTM-01-ACC03#sh run int fastEthernet 0/7
interface FastEthernet0/7
description # USER-PC #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
DISTI-01
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #- ##PAKE FO)
switchport
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
end
!
BTR-01-ACC03#sh run int
!
interface GigabitEthernet0/1
description # UPLINK_TO_BTR-08-6500-DIST-01_Gi2/1 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
udld port aggressive
end
8. Konfigurasi link port antar pernagkat pakai Kabel UTP
interface GigabitEthernet0/3
description # UPLINK_TO_BTR-01-ACC08_Gi1/0/48 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
end
!
interface GigabitEthernet1/0/48
description # UPLINK_TO_BTR-01-ACC03_Gi0/3 #
switchport trunk allowed vlan 1,4,60,101,102,131,147
switchport mode trunk
end
9. Link ke Access Point AP-Aruba pakai kabel UTP (ada WLC)
BTM-01-ACC08#sh run interface gi1/0/4
interface GigabitEthernet1/0/1
description # AP ARUBA #
switchport access vlan 60
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
========================================
10. Link ke PC-User kabel UTP
BTM-01-ACC03#sh run int fastEthernet 0/7
interface FastEthernet0/7
description # USER-PC #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
==================================
11. Link ke PC/Laptop kabel UTP
interface FastEthernet0/45
switchport access vlan 2
switchport mode access
spanning-tree portfast
spanning-tree guard root
!
-----ATAU-------
interface FastEthernet0/21
description # USER #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
-------------------------
LINK TRUNK -UTP-
--------------------------
interface FastEthernet0/47
description # BTR-02-ACC09
switchport trunk allowed vlan 1,2,21,60,102
switchport mode trunk
!
interface FastEthernet0/48
description # BTR-02-ACC09
switchport trunk allowed vlan 1,2,21,102
switchport mode trunk
udld port aggressive
!
-------------------------
LINK TRUNK -FO
interface GigabitEthernet0/1
description BTR-08-6500-DIST-02_Gi2/2
switchport trunk allowed vlan 1,2,21,60,102
switchport mode trunk
udld port aggressive
!
BTM-08-6500-DIST-01#sh run interface gi2/1
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
end
interface FastEthernet0/45
switchport access vlan 2
switchport mode access
spanning-tree portfast
spanning-tree guard root
!
-----ATAU-------
interface FastEthernet0/21
description # USER #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
end
-------------------------
LINK TRUNK -UTP-
--------------------------
interface FastEthernet0/47
description # BTR-02-ACC09
switchport trunk allowed vlan 1,2,21,60,102
switchport mode trunk
!
interface FastEthernet0/48
description # BTR-02-ACC09
switchport trunk allowed vlan 1,2,21,102
switchport mode trunk
udld port aggressive
!
-------------------------
LINK TRUNK -FO
interface GigabitEthernet0/1
description BTR-08-6500-DIST-02_Gi2/2
switchport trunk allowed vlan 1,2,21,60,102
switchport mode trunk
udld port aggressive
!
BTM-08-6500-DIST-01#sh run interface gi2/1
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
end
Konfigurasi Link Management (OOB)
interface GigabitEthernet0
description MANAGEMENT-OOB
vrf forwarding Mgmt-intf
ip address 192.168.4.66 255.255.255.0
negotiation auto
cdp enable
exit
!
ip route vrf Mgmt-intf 0.0.0.0 0.0.0.0 192.168.4.254
interface GigabitEthernet0
description MANAGEMENT-OOB
vrf forwarding Mgmt-intf
ip address 192.168.4.66 255.255.255.0
negotiation auto
cdp enable
exit
!
ip route vrf Mgmt-intf 0.0.0.0 0.0.0.0 192.168.4.254
===============&&&&&&&&&&&&===========================
BERIKUT LINK PORT DARI SWITH C6500 SBG DISTRIBUTION DAN KE C2960 sbg SW-ACCESS
BTR-08-6500-DIST-01#
!
interface GigabitEthernet2/9
description # To HYW-07-ACC01 PO37 #
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface GigabitEthernet2/10
description # To HYW-07-ACC01 PO37 #
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface Vlan10
description VLAN-MANAGEMENT
ip address 10.89.100.2 255.255.255.0
standby 1 ip 10.89.100.1
standby 1 timers 5 15
standby 1 priority 110
standby 1 preempt
!
--------------HYW-07-ACC01----------
!
interface GigabitEthernet1/1/1
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface GigabitEthernet1/1/2
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface Port-channel37
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
spanning-tree cost 4
!
interface FastEthernet0/1
description # LINK-TO-PC-USER #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
!
interface Vlan10
ip address 10.89.100.107 255.255.255.0
!
ip default-gateway 10.89.100.1
==================================
!
!
interface GigabitEthernet2/9
description # To HYW-07-ACC01 PO37 #
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface GigabitEthernet2/10
description # To HYW-07-ACC01 PO37 #
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface Vlan10
description VLAN-MANAGEMENT
ip address 10.89.100.2 255.255.255.0
standby 1 ip 10.89.100.1
standby 1 timers 5 15
standby 1 priority 110
standby 1 preempt
!
--------------HYW-07-ACC01----------
!
interface GigabitEthernet1/1/1
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface GigabitEthernet1/1/2
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
udld port aggressive
channel-group 37 mode on
!
interface Port-channel37
description # To HWY-05-DIST01 PO37 #
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10,15,148,149,214,215,218
switchport mode trunk
spanning-tree cost 4
!
interface FastEthernet0/1
description # LINK-TO-PC-USER #
switchport access vlan 4
switchport mode access
udld port aggressive
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
!
interface Vlan10
ip address 10.89.100.107 255.255.255.0
!
ip default-gateway 10.89.100.1
==================================
!
--------JIKA LINK DARI DISTI-TO-SW-ACCESS TANPA PORT-CHANNEL
!
SW-DSITI-6500
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #
switchport
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
!
SW-DSITI-6500
interface GigabitEthernet2/1
description # To Fl.1 BTR-01-ACC03 Gi0/1 #
switchport
switchport trunk allowed vlan 1,4,60,68,101,102,131,147
switchport mode trunk
udld port aggressive
spanning-tree guard root
!
SW-ACCESS
interface GigabitEthernet0/1
description # UPLINK_TO_BTR-01-ACC01_Gi0/4 #
switchport trunk allowed vlan 1,4,101,102,131,147
switchport mode trunk
udld port aggressive
!
description # UPLINK_TO_BTR-01-ACC01_Gi0/4 #
switchport trunk allowed vlan 1,4,101,102,131,147
switchport mode trunk
udld port aggressive
!
interface Vlan1
description *** VLAN Management ***
ip address 10.87.100.13 255.255.255.0
no ip route-cache
!
ip default-gateway 10.87.100.1
description *** VLAN Management ***
ip address 10.87.100.13 255.255.255.0
no ip route-cache
!
ip default-gateway 10.87.100.1
ip tacacs source-interface Vlan1
-------------------
Port Interface Vlan ( DHCP Relay ) || Nexus N700
interface Vlan219
description BOD_KOMPI
no shutdown
no ip redirects
ip address 10.1.29.2/24
no ipv6 redirects
ip router ospf 1 area 0.0.0.0
hsrp 3
preempt
priority 110
ip 10.1.29.1
ip dhcp relay address 10.1.51.39
interface Vlan219
description BOD_KOMPI
no shutdown
no ip redirects
ip address 10.1.29.2/24
no ipv6 redirects
ip router ospf 1 area 0.0.0.0
hsrp 3
preempt
priority 110
ip 10.1.29.1
ip dhcp relay address 10.1.51.39
Port Interface Vlan ( IP helper ) || Catalyst C9500
interface Vlan336
description AP1_DAPENRA
ip address 10.1.36.1 255.255.254.0
ip helper-address 10.1.51.39
ip ospf 1 area 0
end
-------------------------------
description AP1_DAPENRA
ip address 10.1.36.1 255.255.254.0
ip helper-address 10.1.51.39
ip ospf 1 area 0
end
-------------------------------
fex
nexus
link port
port
nxos
Cisco | Konfigurasi Link Point to Point
ip helper
Posting Komentar untuk "Cisco | Konfigurasi Link Point to Point"