![Page 1: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/1.jpg)
Advanced Switches
Chapter 4
www.classdemo.com
![Page 2: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/2.jpg)
• Ethernet Technology● Principles of Ethernet
● CSMA/CD
● Ethernet Switch Features● Virtual LANs
● Access Port
● Trunks
● STP
● Broadcast Storms
● Link Aggregation
● PoE
● Port Monitoring
● Port Mirroring
● User Authentication
Outline
www.classdemo.com
![Page 3: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/3.jpg)
Ethernet IEEE 802.3
10Base5 (Thicknet) 10Base2 (thinnet or Cheapernet)
www.classdemo.com
![Page 4: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/4.jpg)
CSMA/CD
Carrier Sense Multiple Access / Collision Detection
• Scalability Limits
• Collision Domain
www.classdemo.com
![Page 5: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/5.jpg)
One Collision Domain
Half-Duplex
Layer 1
www.classdemo.com
![Page 6: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/6.jpg)
Four Collision Domain
Full-Duplex
Layer 2
Every switchport is its own collision domain
www.classdemo.com
![Page 7: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/7.jpg)
Types of Ethernet
Ethernet Standard Media Type Bandwidth Capacity Distance Limitation
10Base5 Coax (thicknet) 10 Mbps 500 m
10Base2 Coax (thinnet) 10 Mbps 185 m
10Base-T Cat 3 (or higher) UTP 10 Mbps 100 m
100Base-TX Cat 5 (or higher) UTP 100 Mbps 100 m
100Base-FX MMF 100 Mbps 2 km
1000Base-T Cat 5e (or higher) UTP 1 Gbps 100 m
1000Base-TX Cat 6 (or higher) UTP 1 Gbps 100 m
1000Base-LX MMF/SMF 1 Gbps 5 km
1000Base-LH SMF 1 Gbps 10 km
1000Base-ZX SMF 1 Gbps 70 km
www.classdemo.com
![Page 8: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/8.jpg)
Types of Ethernet (continued…)
Ethernet Standard Media Type Bandwidth Capacity Distance Limitation
10GBase-SR MMF 10 Gbps 26-82 m
10GBase-LR SMF 10 Gbps 10 km
10GBase-ER SMF 10 Gbps 40 km
10GBase-SW MMF 10 Gbps 300 m
10GBase-LW SMF 10 Gbps 10 km
10GBase-EW SMF 10 Gbps 40 km
10GBase-T Cat 6A (or higher) UTP 10 Gbps 100 m
100GBase-SR10 MMF 100 Gbps 125 m
100GBase-LR4 SMF 100 Gbps 10 km
100GBase-ER4 SMF 100 Gbps 40 km
www.classdemo.com
![Page 9: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/9.jpg)
Virtual LANs
www.classdemo.com
![Page 10: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/10.jpg)
Switch Access Port Configuration
www.classdemo.com
![Page 11: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/11.jpg)
Trunk Access (dot1q)
www.classdemo.com
![Page 12: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/12.jpg)
Switch Trunk Port Configuration
www.classdemo.com
![Page 13: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/13.jpg)
Corruption of a Switch’s MAC Table
www.classdemo.com
![Page 14: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/14.jpg)
Broadcast Storms
www.classdemo.com
![Page 15: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/15.jpg)
STP Operation
www.classdemo.com
![Page 16: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/16.jpg)
Port Types with equal cost
www.classdemo.com
![Page 17: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/17.jpg)
Port Types with different cost
www.classdemo.com
![Page 18: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/18.jpg)
• Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an attempt to determine its role in the spanning tree.
• Listening: The port moves from the blocking state to the listening state and remains in this state for 15 seconds by default. During this time, the port sources BPDUs, which inform adjacent switches of the port’s intent to forward data.
STP Port States
BPDU = Bridge Protocol Data Units
www.classdemo.com
![Page 19: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/19.jpg)
• Learning: The port moves from the listening state to the learning state and remains in this state for 15 seconds by default. During this time, the port begins to add entries to its MAC address table.
• Forwarding: The port moves from the learning state to the forwarding state and begins to forward frames.
STP Port States
BPDU = Bridge Protocol Data Units
www.classdemo.com
![Page 20: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/20.jpg)
Link Aggregation
LACP = Link Aggregation Control Protocol
www.classdemo.com
![Page 21: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/21.jpg)
Link Aggregation
LACP = Link Aggregation Control Protocol
www.classdemo.com
![Page 22: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/22.jpg)
Power over Ethernet (802.3af PoE)
www.classdemo.com
![Page 23: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/23.jpg)
Port MonitoringWireshark
Network Monitor
www.classdemo.com
![Page 24: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/24.jpg)
Port Monitoring
Unable to Capture Traffic
www.classdemo.com
![Page 25: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/25.jpg)
Port Mirroring
www.classdemo.com
![Page 26: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/26.jpg)
User Authentication (802.1x)
www.classdemo.com
![Page 27: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/27.jpg)
User Authenication
802.1x
Supplicant: The device that wants to gain access to the network.
Authenticator: The authenticator forwards the supplicant’s authentication request on to an authentication server. After the authentication server authenticates the supplicant, the authenticator receives a key that is used to communicate securely during a session with the supplicant.
Authentication server:
The authentication server (for example, a Remote Authentication Dial In User Service [RADIUS] server) checks a supplicant’s credentials. If the credentials are acceptable, the authentication server notifies the authenticator that the supplicant is allowed to communicate on the network. The authentication server also gives the authenticator a key that can be used to securely transmit data during the authenticator’s session with the supplicant.
NAC Verify characteristics of the device seeking admission to the network.
www.classdemo.com
![Page 28: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/28.jpg)
Switch Management
Unmanaged
• Does not support an IP address
• No console port
Managed
• IP assigned
• Console access is most secure
• Encrypted Password
• OOB
• SSH
www.classdemo.com
![Page 29: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/29.jpg)
Management Access
www.classdemo.com
![Page 30: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/30.jpg)
Management Access
www.classdemo.com
![Page 31: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/31.jpg)
First-Hop Redundancy
HSRP
GLBP
VRRP
CARP
www.classdemo.com
![Page 32: Advanced Switches... · 2017-06-22 · •Blocking: The port remains in the blocking state for 20 seconds by default. During this time, the nondesignated port evaluates BPDUs in an](https://reader034.vdocuments.us/reader034/viewer/2022042113/5e8f4f2c7dea5100d33ead4f/html5/thumbnails/32.jpg)
Advanced Switches
Chapter 4
www.classdemo.com