Untitled document

CCIE Routing & Switching v5 Workbook -

CCIE R&S v5 Advanced Technology Labs -

LAN Switching

VTP Transparent

You must load the initial configuration files for the section, Basic

Layer2 Switching, which can be found in

CCIE R&S v5 Topology

Diagrams & Initial Configurations

. Reference the Virtual Routers &

Physical Switches Diagram to complete this task.

Task

Configure Ethernet links between SW1 and all other switches as static 802.1q trunks.

Ensure SW1 is the root bridge for all VLANs.

Configure VTP version 2 in domain CCIE as follows:

SW1 in transparent mode

SW2 in server mode

SW3 and SW4 in client mode

Configure VLANs 5, 7, 8, 9, and 10 on VTP server.

Ensure that traffic between hosts within same VLAN is functional regardless of the

switch being connected to.

Configuration

SW1:

vtp domain CCIE

vtp version 2

vtp mode transparent

vlan 5,7,8,9,10

spanning-tree vlan 1-4094 priority 0

!

interface range FastEthernet0/19 - 24

switchport trunk encapsulation dot1q

switchport mode trunk

SW2:

vtp domain CCIE

vtp version 2

vlan 5,7,8,9,10

!

interface range FastEthernet0/23 - 24

switchport trunk encapsulation dot1q

switchport mode trunk

SW3:

vtp domain CCIE

vtp version 2

vtp mode client

!

interface range FastEthernet0/19 - 20

switchport trunk encapsulation dot1q

switchport mode trunk

SW4:

vtp domain CCIE

vtp version 2

vtp mode client

!

interface range FastEthernet0/21 - 22

switchport trunk encapsulation dot1q

switchport mode trunk

Verification

VTP version, just like VTP domain name, can be dynamically learned from VTP

advertisements (if the VTP mode is client or server), but it is configured on all

switches for consistency; VTP version cannot be changed on devices running in

client mode. VTP devices running in transparent mode do not install VTP updates

received, but will continue to forward them unmodified if the domain name of

received VTP advertisements matches its locally configured domain. The

configuration revision number of zero confirms that received VTP updates do not

affect the local VLAN database.

SW1#show vtp status

VTP Version capable

: 1 to 3VTP version running: 2

VTP Domain Name

: CCIE

VTP Pruning Mode

: Disabled

VTP Traps Generation

: Disabled

Device ID

: 0013.605f.f000

Configuration last modified by 0.0.0.0 at 3-24-93 21:11:43

Feature VLAN:

--------------VTP Operating Mode: Transparent

Maximum VLANs supported locally : 1005

Number of existing VLANs: 10Configuration Revision: 0

MD5 digest: 0x6B 0x36 0x65 0xF9 0xD9 0x10 0x51 0xED

0xA8 0x25 0xC5 0x35 0xC9 0x38 0x9F 0x0F

Because VTP is control-plane only and does not directly relate to STP forwarding,

VTP traffic from the server/client or from an entirely different VTP domain can be in

the same broadcast domain as VTP transparent switches. In this particular case,

SW1 must be locally configured with all VLANs from the VTP domain, because it is

in the physical Layer 2 transit path for data-plane traffic within those VLANs. If a

switch receives tagged frames for which the VLAN does not exist in the database,

frames are silently dropped; this can be seen from the fact that the switch does not

have any of its ports in STP forwarding state for non-existing VLANs. Before VLANs

are manually configured on SW1:

SW2#show spanning-tree interface fastEthernet0/23

VlanRole Sts CostPrio.Nbr Type

------------------- ---- --- --------- -------- --------------------------------

VLAN0001

Desg FWD 19

128.25 P2p

VLAN0005

Desg FWD 19

128.25 P2p

VLAN0007

Desg FWD 19

128.25 P2p

VLAN0008

Desg FWD 19

128.25 P2p

VLAN0009

Desg FWD 19

128.25 P2p

VLAN0010

Desg FWD 19

128.25 P2p

!SW1#show spanning-tree interface fastEthernet0/23

VlanRole Sts CostPrio.Nbr Type

------------------- ---- --- --------- -------- --------------------------------

VLAN0001Root FWD 19128.25 P2p

Verify that the VLAN database has been learned by VTP clients, so the VTP device

in transparent mode, SW1, has relayed the VTP messages between its trunk ports

(from VTP server to VTP clients).

SW2#show vlan brief

VLAN NameStatus Ports

---- -------------------------------- --------- -------------------------------

1defaultactive Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/5, Fa0/6, Fa0/7, Fa0/8

Fa0/9, Fa0/10, Fa0/11, Fa0/12

Fa0/13, Fa0/14, Fa0/15, Fa0/16

Fa0/17, Fa0/18, Fa0/19, Fa0/20

Fa0/21, Fa0/22, Gi0/1, Gi0/25 VLAN0005

active7

VLAN0007

active8

VLAN0008

active9

VLAN0009

active10

VLAN0010

active

1002 fddi-default

act/unsup

1003 token-ring-default

act/unsup

1004 fddinet-default

act/unsup

1005 trnet-default

act/unsup

!

!SW3#show vlan brief

VLAN NameStatus Ports

---- -------------------------------- --------- -------------------------------

1defaultactive Fa0/1, Fa0/2, Fa0/3, Fa0/4

Fa0/5, Fa0/6, Fa0/7, Fa0/8

Fa0/9, Fa0/10, Fa0/11, Fa0/12

Fa0/13, Fa0/14, Fa0/15, Fa0/16

Fa0/17, Fa0/18, Fa0/21, Fa0/22

Fa0/23, Fa0/24, Gi0/1, Gi0/25 VLAN0005

active7

VLAN0007

active8

VLAN0008

active9

VLAN0009

active10

VLAN0010

active

1002 fddi-default

act/unsup

1003 token-ring-default

act/unsup

1004 fddinet-default

act/unsup

1005 trnet-default

act/unsup

Changes in the rest of the VTP domain, such as VLAN adds or removes, does not

affect the transparent switches, which just relay VTP messages.

SW1#debug sw-vlan vtp events

vtp events debugging is on

!

!SW2#configure terminal

Enter configuration commands, one per line. End with CNTL/Z.SW2(config)#vlan 123

!

!SW3#show vlan | include ^123

123 VLAN0123active

123 enet 1001231500 ---- -00

!

!SW4#show vlan | include ^123

123 VLAN0123active

123 enet 1001231500 ---- -00

!

!SW1#show vlan | include ^123

SW1#

The following log messages will appear on the SW1 console, confirming that VTP

messages are received from the VTP server and relayed on all other switches.

VTP LOG RUNTIME:Relaying packet received on trunk Fa0/23 - in TRANSPARENT MODE

(nc = false)

VTP LOG RUNTIME: Relaying packet received on trunk Fa0/23 - in TRANSPARENT MODE (nc = false)

VTP LOG RUNTIME:Relaying packet received on trunk Fa0/19 - in TRANSPARENT MODE

(nc = false)VTP LOG RUNTIME:Relaying packet received on trunk Fa0/21 - in TRANSPARENT MODE

(nc = false)

VTP LOG RUNTIME: Relaying packet received on trunk Fa0/19 - in TRANSPARENT MODE (nc = false)

VTP LOG RUNTIME: Relaying packet received on trunk Fa0/21 - in TRANSPARENT MODE (nc = false)

VTP LOG RUNTIME:Relaying packet received on trunk Fa0/20 - in TRANSPARENT MODE

(nc = false)VTP LOG RUNTIME:Relaying packet received on trunk Fa0/22 - in TRANSPARENT MODE

(nc = false)

VTP LOG RUNTIME: Relaying packet received on trunk Fa0/20 - in TRANSPARENT MODE (nc = false)

VTP LOG RUNTIME: Relaying packet received on trunk Fa0/22 - in TRANSPARENT MODE (nc = false)

Note that when a switch is in VTP transparent mode, the VLAN configuration

statements appear in the running-configuration. If the switch is in VTP client/server

mode, the configured VLANs do not appear in the running-configuration; these are

kept in the VLAN database file.

SW1# show running-config | i vlan

vlan internal allocation policy ascendingvlan 5,7-10

!

!SW2#show running-config | i vlan

vlan internal allocation policy ascending