Scribd Logo
Upload

Welcome to Scribd!

  • H3CNE - Lab Guide - scanUAE

    Uploaded by

    Qurt
    354 views147 pages
    Constructing Small- And Medium-Sized Enterprise Networks v7.0

    Original Title

    H3CNE_Lab Guide.scanUAE

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Constructing Small- And Medium-Sized Enterprise Networks v7.0

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    354 views147 pages

    H3CNE - Lab Guide - scanUAE

    Uploaded by

    Qurt
    Constructing Small- And Medium-Sized Enterprise Networks v7.0

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    of 147
    Copyright Copyright © 2003-2018, New H3C Group. All rights reserved No part of this book may be reproduced or transmitted in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without prior written consent of New H3C Group. H3C Certification Training Courses H3CNE Exam Training Textbook Constructing Small- and Medium-Sized Enterprise Networks (v7.0) Lab Guide Published by New H3C Group About the H3C Certification System In today's highly competitive market, companies are seeking employees, partners, and solutions that enable them to achieve their business objectives while containing costs. H3C certifications provide an easy way to identify individuals and organizations that offer in-demand expertise. H3C certifications enable customers to confidently work with H3C partners, knowing that they are receiving highly qualified technical assistance. H3C certifications provde employees the skills and abilities required to complete the program. Additionally, H3C certifications equip emplcyees with essential competencies that can increase their earning power and improve their marketability. H3C has more than 20 authorized training centers and 450 network academies worldwide. As of the end of 2016, more than 250,000 persons from over 40 countries or regions had attended H3C training, and 130,000 of them obtained certificates. Management Certification System Technology Certification System ‘Special Certification System The H3C cerification system offers both standard and customized training certification solutions that accommodate diversified customer demands. In response to growing customer demands and technologies, the H3C certification system is ever evolving to help network professionals, managers, and their employers achieve constant business success. Preface H3C Certified Network Engineer (H3CNE) certification is targeted at planning, design, configuration, and maintenance of small- and medium-sized business networks. It covers computer network fundamentals, getting started with H3C network devices, configuring LAN switching, advanced TCP/IP, configuring IP routing, configuring secure branch networks, and WAN access and interconnection. Target Audience © Network technology engineers and IT staff in small- and medium-sized enterprises and various industries Compuler science students Anyone interested in network technologies Anyone pursuing a technical or sales career in the communication industry Engineers of H3C agents H3C certfication trainers H3C network product maintenance/operation staff How to Obtain an H3CNE Certificate To obtain the H3CNE certificate, you must pass the GB0-191 exam. If the GBO-191 exam is passed, you will obtain the H3CNE certificate issued by H3C. The certificate is valid for three years. How to Register for an H3CNE Exam To get a comprehensive view of H3C certification, see Training & Certification at hllp/Avww.h3c.com. The websile provides comprehensive information about H3C. certification exams such as available exam organizations, exam delivery methods, time schedules, and benefits. The H3CNE exam outline is also available for download. It gives the exam coverage and basic exam information such as exam duration. Before taking the evam, you can take a mock exam online to get familiar with the exam and test your readiness. About H3CNE Certification Training To prepare for the H3CNE certification exam (code GBO-191), take the Constructing Smali- and Medium-Sized Enterprise Networks (v7.0) course. The course helps you gain a comprehensive view of data communication retworks and acquire generic networking skills for designing and ouilding small- and medium-sized business networks with H3C products. New H3C University lable of Contents Table of Contents LAB 1 GETTING STARTED WITH H3C NETWORK DEVICES Logging in Via a Console Port... Using Basic Corr mands to Operate the System and Files. Law Owsecives... 1 Las DIAGRAM 1 EQuipMeNT aNo CaB.es 1 Lae PROCEDURE. 2 2 3 Logging in Via Telnet ... Using FTP to Up oad and Download System Files... Using TFTP to Upload and Download System Files. COMMAND REFERENCE. (Questions.. 7 LAB 2 CONNECTING AND DEBUGGING NETWORK DEVICES. Lae Osiecrives... Las Diagram EQUIPMENT AND CABLES... ccssctnesee ecceneentennsees ve sevens 19 Las PRroceDURE.. Building a Connection Environment . Running the Ping Command to Check the Connectivity.. Running the Tracert Command to Check the Connectivity .. ComMANDS USED IN THE LAB. FAQs. LAB 3 CONFIGURING VLANS... LAB OBJECTIVES nsec sncssnnnetnteenee venenatis ssmnsenerennensesenes BD La DIAGRAM Equiemenr anu Castes Las ProceDures. - . Lab Task 1: Configure Access Ports... Lab Task 2: Configure Trunk Ports. CComMAND REFERENC ‘Questions.. LAB 4 CONFIGURING THE SPANNING TREE FEATURE... - a2 Lan OniecTivEs. 33 Las ToroLoy Equipment aNo Cases lable of Contents Lae PROCEDURE. Basic Configuration of STP. . 34 37 37 COMMANDS REFERENCE. ‘Questions.. LAB 5 CONFIGURING PORT SECURITY FUNCTIONS ...sssesesststantstntntes Las Osiecives... Las Diacram Equipment ano Casues Las PROCEDURES... Configuring Port Isolation... ‘COMMANDS REFERENCE. LAB 6 CONFIGURING LINK AGGREGATION... LAB OBIECTIVES... Las DIAGRAM Las EQUIPMENT AND CABLES.. Las PRoceDURES.. Lab Task: Configure Static Link Aggregation on Switches. ‘Commano Rerenenc Questions. LAB 7 ARP soe Las Osiecives... Las Diagram sven Las EQUIPMENT AND CABLES.. Las ProceDURES. Lab Task 1: Dispay ARP Entries Lab Task 2: Configure ARP Proxy COMMAND REFERENCE .. Questions. LAR 8 DHCP Lae OBIECTIVES... Lar Diacram Lap Equipment aN CaBLes. LAB PROCEDURES... Lab Task 1: Use 7CA to Obtain on IP Address from RTA Directly... . Lab Task 2: Use 2CA to Obtain an IP Address Through a DHCP Relay Agent CCoMMANo ReFERENC Questions. lable of Contents LAB 9 IPV6.. Las Osiecrives... Las Diagram Las EQUIPMENT AND CABLES.. LAB PROCEDURES. nnsntnntennnnnnntinnnnnnni Lab Task: Configure and Display IPv6 Addresses CommaNo REFERENC Questions, soo LAB 10 IP ROUTING BASICS ... Las OBJECTIVES... Las DiaGRaM LAB EQUIPMENT AND CABLES. LAB PROCEDURES. Lab Task 1: Display the Routing Table Lab Task 2: Configure Static Routes. COMMAND REFERENCE . Questions.. LAB 11 CONFIGURING RIP Las Opiecrives... Las Diagram Las EQUIPMENT AND CABLES.. Las PRocEDURES.... Lab Task 1: Configure RIPV... Lab Task 2: Configure RIPV2 Commano REFERENC: ‘Questions. events uaicinncasonansasecic BL LAB 12 CONFIGURING OSFF ... LAB OBJECTIVES oes oenntnnmnnnnnnntninnnnnnnannnnnnnninnninnnnnnnnnin wnarreoasanarmas: BD Prrarquisites, 89 Las DiaGrams, LAB EQUIPMENT AND CABLES. Las PROCEDURES. Lab Task 1: Configure Basic OSPF Single-Area Settings. Lab Task 2: Configure Advanced OSPF Single-Area Setting: Lab Task 3: Configure Basic OSPF Multi-Area Settings.. COMMAND REFERENC 1 102 102 Questions.. lable of Contents LAB 13 ACL-BASED PACKET FILTERING ... 104 Las Osiecrives... Las Diagram 104 104 105 Las EQUIPMENT AND CABLES.. LAB PROCEDURES ener cn 7 Basic Configuration of ACL 105 Advanced Configuration of ACL 107 COMMANDS REFERENCE... 1 ssnntnnsnnnnnnnnisene wnaieewoisansasennillO FAQS... 110 LAB 13 ACL-BASED PACKET FILTERING ... Lae OBiectives... a 104 Las DIAGRAM 104 Las EQUIPMENT AND CABLES.. 104 Lar ProcenuRes. 105 Basic Configuration of ACL 105 107 110 110 Advanced Configuration of ACI COMMANDS REFERENCE... FAQS... LAB 14 CONFIGURING NAT 1 111 Lae Osiectives... Las Diagram Las EQUIPMENT AND CABLE 112 Law PROCEDURES... 112 Configuring Basic NAT snentetnnnnnneees WIZ Configuring NAF 115 Configuring Easy IP .. 117 Configuring NAT Server... 119 COMMAND REFERENCE nnn 120 FAQS... 121 LAB 15 CONFIGURING HDLC... 122 Las Diagram so ssn 122 Lae Osiecrives... Las CQUIPMENT.. 122 Lae ProceDuREs. soieninnnntnnannnsnaeeseie 122 Lab Task: Configure HDLC on Routers to Enable Communication Between PCS... 123 COMMAND REFERENCE 125 Questions.. 125 lable of Contents LAB 16 CONFIGURING PPP soso Las Osiecrives... Las Diagram Las EQUIPMENT AND CABLES.. LAB PROCEDURES... ccsnnnneennenn Task 1: Basic Configuration of PPP Task 2: PPP PAP Configur: Task 3: PPP CHAP Configuration... Task 4: PPP MP Configuration... COMMAND REFERENCE Fans 136 Lab 1_ Getting Started with H3C Network Devices Lab 1 cetting started with H3C Network Devices Lab Objectives After completing the Lab, you will be able to: © Log in toa device via a console port. © Log in toa device via Telnet. @ Master the method of using basic commands to operate a system. ® Master the method of using basic commands to operate a file. e Use FTP and TFTP to upload and down oad files. Lab Diagram Figure 1-1 Lab diagram Router / Switch Console port GigabitEthemnet Console cable com Pc Equipment and Cables Item Version Quantity Description MSR90-20 CMW7.1.049-Ro10 | 4 Install the PuTTY PC Windows 7 1 software. Console serial port cable | — 1 Lab 1_ Getting Started with H3C Network Devices Category 5 UTP Ethemet cable Lab Procedure This Lab uses a multiple services router (MSR) as a demo device. A switch is also applicable Logging in Via 2 Console Port This task is to make users familiarize end master the method of configuring a device via a console cable connection. Connect a cable. Connect the serial port of a PC (terminal) with the console port of the MSR using a console cable. The RJ-45 end of the cable is connected to the console port of the MSR and the 9-pin RS-232 end is connected to the serial port of the PC. Power on the PC and run the PuTTY. Run the PUTTY on the PC desktop to display the connection session page, as shown in the following figure: Ls) Beno options for your PUTTY session Specfy the destination you wat to comect to Host Name (orIP adress) Pot 2 Connection pe Paw OTehet © Moga @ Sit Load, save or delete a stored session Saved Sessions [Defaut Setinos Ged Select Serial in the Connection type. Select a COM port. In this Lab. we choose COM4 to connect the PC with the console cabe. Set the baud rate to the default value 9600, as shown in the following figure: Lab 1_ Getting Started with H3C Network Devices {88 PUTTY Configuration (os tear cen Sas one fryor ATTY eesen Te tessng Specty the destratian you wartto connect to ae Setline Speed cole 600 Feces Cooeceai Wedow Mow) lehet © Hoge SSH @ Set topo, termes ees Ewin Saved Sesere Seccin Calum sia Sa &-comecen ei (tess) dae Ged Fel Tet (ieee) Foor ssn om. Close window on exit: Tom Ole @diyendenet p= Enter the console configuration page. Click Open to enter the configuration page, as shown in the following fre (g coMs - Pury. oF! 3 Using Basic Commands to Operate the System and Files Enter the system view. After task * is completed, the configuration interface enters the user view. Run the ‘systom-view command to enter the system view. systen 30 The prompt changes to [xxx], indicating that the user enters the system view. In the system view, run the quit command to switch from the system view to the user view. 3C) quit Use the help feature and complement function. The H3C Comware platform provides help and intelligent complement function according to the CLI input. Lab 1_ Getting Started with H3C Network Devices Input help feature: When entering a command, if you forget a command name, you can enter the first characters of the command in the configuration view, and then press ?. The system automatically lists all commands starting with the first characters. When entering a command keyword or parameter, press ? to query the following available keywords and parameters. In the system view, enter sys and then press ?. The system lists all commands starting with sys. [a3C} sy: sysname In the system view, enter sysname and then press Space and ?. The system lists all the following available keywords and parameters H3C] sysname ? EAT Most name (Lt o4 character: Intelligent complement function: When entering a command, you can enter the first characters of the command and then press Tab. The system automatically complements the command. If multiple commands share the same prefix, press Tab repeatedly ‘o switch between the commands. In the system view, enter sys. (3c) sys Press Tab. The system automatically complements the command: In the system view, enter in. (w3e]in Press Tab. The system automatically complements the first command starting with in: [H33c] Interzone Press Tab repeatedly. The system automatically switches between the commands ‘starting with in: {H3C] interface Modify the system name. Run the sysname command to modify the system name. [H3C] sysname YourName (YourName] The system name has been changed from H3C to YourName. Modify the system time. Query the current system time. The time can be queried in the user view and system view. [YourName]display clock 10:52:55 UTC Thu 10/30/2014 Run the quit command to exit the system view and modify the system time. (YourName}quit clock datetime 10:10:10 10/01/2015 Query the current system time again Lab 1_ Getting Started with H3C Network Devices dis clo 10:10:41 UTC Thu 10/02/2015 Display the current configuration of the system. Run the display current-configuration command to display the current configuration of the system. Specific display content is subject to the device and modules in use. In the following configuration, check the interface information, and compare the information with the actual interface and modules of the device. display current-configuration é version 7.1.049, Release 0106 # sysname YourName ‘ clock protocol none # password-recovery enable # vlan 1 i fant ralter Coltutara/a ‘ controller i interface Aux0 ‘ interface Serial1/0 t interface Serial2/0 ‘ interface NULLO ‘ Llular0/1 More Press Space to display the next page, oress Enter to display the next row, and press Ctrl+C to close the display. In this Lab. press Space. interface NULLO i interface GigabitEthernet0/0 port link-mode route combo enable copper ip address 1.1.1.1 255 ‘ interface GigabitEthernet0/ port link-mode route ‘ interface GigabitEthernet0/2 port link-mode route ' scheduler logfile size 16 ‘ line class aux user-role network-admin é Lab 1_ Getting Started with H3C Network Devices line class tty user-role network-operator é line class vty user-role network-operator i line aux 0 More ---- Based on the configuration, the router has interface GigabitEthernet0/0, interface GigabitEthernet0/1, and interface GigabitEtheret0/2. Specific interface number and type are sudject to the device model and board inserted. Display the saved configuration. Run the display saved-configuration command to display the saved configuration of the system display saved-configuration No configuration file is saved. Why is there configuration after the display current-configuration command is run? Because the current configuration is stored in the temporary storage, not a permanent storage. A device restart will cause the current configuraticn to loss. The correct current configuration must be stored in a timely manner. Saved configuration is stored in the CF card (or flash, hard disk, etc). No information is saved here, so no configuration file is stored in the CF card. Save the configuration. Run the save command to save the configuration save The current configuration will be written to the device. Are you sure? [Y/N]: Select Y to confirm to write current configuration into the storage of the device. :/startup.cfg] a9 the enter key): Please input the file name(*.cfg) [cfal (To leave the existing filename unchanged, The system reminds you to enter the name of the configuration file. Note that the format of the file name is *.cfg. In this Lab, the configuration file is saved as startup.cfg in the CI’ card by default. To use the default file name, press Cnter. Validating file. Please wait... iguration is saved to device successfully. The previous information shows the procedure of saving a configuration file for the first time. To save the configuration file again, you will see the following display content: save The current configuration will be written to the devi fo input the file namo (*.cfg) [cfa0:/startup.cfa] (To leave tho existing filename unchanged, pross the ontor key): Cfa0:/startup.cfg exists, overwrite? [¥/Ml1y Validating file, Ploaso wait... Configuration is saved to device successfully. After you press Enter, the system reminds you whether to override the previous configuralicn file, because you have chosen the defaull file name slarlup.clg. Are you sure? [¥/N] Plea: Lab 1_ Getting Started with H3C Network Devices Display the saved configuration again After the save command is run, the saved configuration is consistent with the current configuraticn. Delete and clear the configuration. To delete 2 command, run the undo command to delete it For example, after the sysname command is deleted, the device name is restored to H3C. (YourName]undo sysname [a3c) To restore to the factory setting, run the reset saved-configuration command in the user view to clear the saved configuration (merely clear the saved configuration. The Lab 1_ Getting Started with H3C Network Devices current configuration is still available). Then run the reboot command to restart the system. The system is restored to the factory setting [YourName]au: reset eaved-configuration The saved configuration file will be erased. Are you sure? [Y/N]: Confiquration file in cfa0: is being cleared. Please wait Configuration file is cleared reboot Start to chack confignration with next startup configuration file, please wait.. DONE! Current configuration may be lost after the reboot, save current configuration? [YAN]: Display the file directory. Run the pwd command to display the current path. pid fad: The current path is cfa0:/. The CF card stores ather file directories, and some routers may have multiple hard disks and flashes. Running the pwd command will show you the current path. Then, run the dir command to display all files on the CF card. dir varectory or ctav rw = Aug 11 2014 1 diagfile a 158 Oct 30 2014 11.2146 ifindex.dat drw- = Aug 11 2014 11:22:22 license Aug 11 2014 1. 10381312 Dec 15 2011 0: 006016 Dec 15 2011 22. logfile 00:00 msr36-cmw710-boot-r0106.bin msr36~cnw710-data-r0106.bin 232 Dec 15 2011 09:01 msr36~cmw710-security-r0106.bin 475R48N0 er 15 2071 N9:0N2N0 mar36-cmwTIN-aystem-rO1I6.bin 1724416 Dec 15 2011 09:00:00 msr36-cmw710-voice-r0106.bin = Aug 11 2014 11:22:22 seclog 252164 KB total (191572 KB free) In the previous example, the first row of the dir command displays No., the second row dicplaye ar attribute (drw indicates a diroctory, and rw indicates a roadable and writable file), and the third row indicates a file size. Based on the attribute, you can see that the logile is a directory actually. Display the text file content. Run the more command to display the text file content. nore startup.cfg # version 7.1.049, Relea: é i clock protocol none ‘ password-recovery enable ‘ vlan 1 0106 Lab 1_ Getting Started with HSC Network Devices ‘ controller Cellular0/0 é controller Cellular0/1 i interface Aux0 ? interface Serial1/0 # interface Serial2/0 ? interface NULLO ‘ interface Gigabitetherneto/0 port link-mode route combo enable copper ip address 1.1.1.1 255.255.255.0 ‘ interface GigabitBthernet0/1 port link-mode route ? interface GigabitEthernet0/2 port link-mode route ‘ scheduler logfile size 16 ‘ Line class aux user-role network-admin ‘ line class tty user-role network-operator i line class vty user-role network-operator ? Line aux 0 Modify the current path. Run the ed command to modify the current path. Enter the logfile subdirectory. cd logfile/ dir Directory of cfa0:/loafile The directory is empty. 252164 KB Lolal (191538 KB Cree) Exit the current directory. cd . pud cfad: Delete a file. Run the save command to save a configuration file and name it 2U141U3U.ctg, and then run the delete command to delete the configuration file. save 20141030.cfg The current configuration will be saved to cfa0:/20141030.cfg. Continue? [¥/N] + Now saving current configuration to the device. 9 Lab4 Saving configuration cfa0:/20141030.cfg. Please wait. Getting Started with HSC Network Devices Configuration is saved to device successfully. dir Directory of cfa0: 0 -rus 1996 Oct 30 2014 14:0. 1 onrw- 32087 Oct 30 2014 2 = Aug 11 2014 11: a -re 5A Oct 30 2014 14:01: 4 dew = Aug 11 2014 11:22:22 5 dr = Aug 11 2014 11:2: 6 -rw- 10381312 Dec 15 2011 09:00:00 J =rw- 2006016 Dec 15 2011 09:00 B-rw- 361232 Dec 18 2011 09 9 -rw- 47564800 Dec 15 2011 09:00:00 10 -rw- 1724416 Dec 15 2011 09:00:00 LL arw- = Aug 11 2014 11:22:22 12 =rw- 1996 Oct 30 2014 11:28:29 13 -2w- 32087 Oct 30 2014 11:28:29 z2oz164 KB total (191504 KB tree) delete 20141030.ctg Delete cfa0:/20141030.cfg?[¥/N] ty Deleting file cfa0:/20141030.cfg... Done. After the 20141030 efg fil deleted. dir Directory of cfa0: u $208 Oct 30 2014 L4sUL:34 1 > Aug 11 2014 1 2 15@ Oct 30 2014 14 3 = Aug 11 2014 4 5 10381312 Dec 15 2011 0 6 2006016 Dec 15 2011 09:00 7 351232 Dec 15 2011 09 Q -rw- 47564800 Dec 15 2011 0: 9 -rw- 1724416 Dec 15 2011 09:00:00 10 dew = Aug 11 2014 11:22:22 LL -rw- 1996 Oct 30 2014 11 12 -rw- 32087 Oct 30 2014 11:28:29 252164 KB total (191500 KB free) 20141030.cfa 20141030.mdb diagtile ifindex dat License logfile msr36-cmw710-boot-r0106.bin msr36-cnw710-data-r0106.bin msr36~cnw710-security-r0106.bin msr36-cmw710-system-r0106.bin mex36-cmw710-voice-r0106.bin seclog startup.cfa startup-mdb is deleted, query the file list to confirm that the file has been 20141U30.mab diagfile ifindex.dat License logfile msx36-cmw710-boot-r0106.bin msr36-cmw710-data-r0106.bin msr36-cnw710-security-r0106.bin mer36~cme710-systen-r0106.bin msr36-cmw710-voice-r0106.bin seclog startup.cfg startup-mdb After you select Y to delete the file, the available space in the CF card is changed to 191500KB ‘tee. Why? After the file is deleted, a Recycle Bin folder is created, and the added signs will occupy the storage space. Moreover, the deleted file is still saved in the Recycle Bin and occupies the storage space. If use’s use this command frequently to delete files, the storage space of the device will be lowered. To permanently delete a waste file from the Recycle Bin and recycle the storage space, run the reset recycle-bin ‘command in the original directory of the file. Run the dir /all command to display all files and subfolders under the current directory. The display content includes unhidden files, unhidden folders, hidden files, and hidden folders. The Recycle Bin folder is named .trash, and the files in this folder can be queried by running the dir /all trash command. Lab 1_ Getting Started with HSC Network Devices air /al1 Directory of cfa0: 0 -rw 32087 Oct 20 2014 14:15:18 20111030.mab 1 dew > Aug 11 2014 11: diagfile 2-20 158 Oct 30 2014 1 ifindex.dat 3 drw- = Aug 11 2014 11 license 4 dru ~ Aug 11 2014 11:22:22 logfile b -rw- 10381312 Dec 15 2011 09:00:00 msr36-cmw/10-boot-r0106.bin, 6 -rw= — 200AOIB Nee 18 7011 09200200 marah—cmw71N=data=rO106. bin J -rw- "351232 Dec 15 2011 09:00:00 msr36-cmw710-security-r0106.bin @ -rw- 47564800 Dec 15 2011 09:00:00 msr36-cmw710-system-r0106.bin Q-rw- 1724416 Dec 15 2011 09 msr36~cmw710-voice-r0106.bin 10 dew = Aug 11 2014 11:2 seclog aL -rw- 1996 oct 30 2014 11 startup.ctg 12 -rw- 32087 Oct 30 2014 11:28:29 startup.mdb 13 dewh = Oct 30 2014 14:15:30 trash 252164 KB total (191500 KB free) dir /all trash Directory ot cta0:/.trash 0 -rv- 1996 Oct 30 2014 14:15:18 20141030.cfg_0001 1 -xwh 51 Oct 30 2014 14:1 30 .trashinfo 252164 KB total (191500 KB free) The file 20141030 cfg is still available in the CF card Run the reset recycle-bin command to clear the Recycle Bin and vecycle the storage space. reset recycle-bin Clear cfa0:/20141030.cfg? [Y/N] :y Clearing tile ctav:/20L41030.ctg... Lone. dir /all .trash Directory of cfa0:/.trash 0 -run 0 Oct 30 2014 14:26:49 .trashinfo 252164 KB total (191504 KB free) After the Recycle Bin is cleared, the 20141030.cfg file is deleted, and the available storage space is changed to 191504 KB. There is another method of deleting the file without using the Recycle Bin. Run the delete /unreserved command to permanently delete the file. This command is equivalent fo the commands delete plus reset recycle-bin. delete /unreserved 20141030.mdb The file cannot be restored. Delete cfa0:/20141030.mdb? [Y/N] ty Deleting the Cile pexmanently will take a long Lime. Please wait. Deleting file cfa0:/20141030.mdb... Done. <¥ourlame>dir /all trash Directory of cfa0:/.trash 0 -rwh 0 Oct 30 2014 14:26:49 .trashinfo 252164 KB total (191536 KB frec) Logging in Via Telnet Configure a Telnet user via the console port. sys system View: return to User View with Ctrltz. [YourName] Create a user named test. Lab 1_ Getting Started with H3C Network Devices [YourName]iocal-user test New local user added. Set the login password to test. You can run the password command to specify a password configuration method. The keyword simple indicates to configure a plaintext password, and the keyword cipher indicates to configure a cipher password. [YourName-luser-manage-test password si e te: Set a Telnet service type for the user. The user role is level0. The smaller the number in the level-number is, the lower the user permission is. [YourName-1u: [YourName luse: [YourName-luse: [YourName] Configure a super password manage-test] service-type telnet manage test) author-zation attribute user role level 0 t)quit manage The super password is used to change the user role to a specified level. Set the password to H3C in plaintext mode for changing the user role to level 15. [YourNamelsuper password role level-15 simple H3C Configure the welcome information Set the welcome information to "Welcome to H3C world!". The character "%" is the end character of the text. Enter "%" to end the text and exit the header command. [YourName header Login Please input banner content, and qu:t with the character Welcome to 19¢ world!’ [YourName] Configure local authentication for the Telnet user. Enter the VTY0~63 user line. The system supports concurrent access of up to 64 VTY users. The VTY ports are logic terminal lines, and used to access a router via Telnet or SSH. [YourWame]line vty 0 63 The router can employ local or third-party server to authenticate users. In this Lab, local authentication is employed (the authentication mode is scheme). [YourName-1ine-vty0-63}authentication-mode scheme Enter the intorface view to configure IP addresses for a router Ethernet port anda PC NIC. Run the interface command to enter the Ethernet view, and run the ip address command to configure an Ethernet IP address for the router. [YourName]inte: [YourName-Gii [YourName-Gii bitEthernet0/1]ip add 192.168.0.1 255.2 bitEthernet0/1] Set the IP address of the PC to 192.168.0.10/24 which is on the same network segment as the router port. After configuring the PC, you can see the router port GigabitEthernet0/1 up information on the PUTTY. roel 30 interfa 44:53:892 2014 Your GigabitEthernet0/1 ch. T/3/PHY_UPDOWN: Physical slaLe um Lhe d to up. Lab 1_ Getting Started with H3C Network Devices 2014 bitEt Enable the Telnet service. Log in via Telnet Connect the PC to the Ethernet port GigabitEthernet0/1 of the router using a cross network caole, and Telnet the Ethernet IP address of the router port in the PC CLI window, and press Enter. Enter the TeInet username and password to enter the configuration page. Press ? to view the commands that are available to the user (level 0). The user is at the lowest level, so the user can only view commands and use several commands. oceans The following information can be seen on the PUTTY, indicating that the user logs in to the router aver the PC with the source IP address 192.168.0.10 Oct 30° 14:50:41 Modify the user role Run the super command to modify the user role, and enter the super password to enter level 15. Compare the commands available to user level 15 with those available to user level 0. Lab 1_ Getting Started with H3C Network Devices Save the configuration and restart the router Run the save command to save the current information to the router storage, and then run the reboot command to restart the system. Lab 1_ Getting Started with H3C Network Devices Using FTP to Upload and Download System Files Configure an FTP user via the console port. YourName] ~isee “test tep New local u YourName-1u: te .p] password simple test_ftp Set an FTP service type for the user, and set the user role to level 15, irName-1us: Enable the FTP service. ribute yourName]ftp server enab Log in via FTP. Connect the PC to the Ethernet port GigabitEthernet0/1 of the router using a cross network cable, and FTP the Ethernet IP address of the router port in the PC CLI window, and press Enter. Enter the FTP usemame and password. Use FTP to upload a file. Create a system file first, and then run the put command to upload the system file. The file should be stored in the local directory. In this Lab, the local directory is CAUsers\Chen Sie Use FTP to download a file. Run the get command to download a configuration file to a local directory. Poet Pereastts) iekerees Using TFTP to Upload and Download System Files Enable the TFTP server program. In this Lab, the 3CDaemon is the TFTP server program. Set the TFTP server parameters, and choose a local directory (C:\) for uploading and downloading files. Lab 1_ Getting Started with H3C Network Devices fe : — Sate tein Use TFTP to download a file. t et Press CTRL+ Tota lead Upload 00 2563 Lab 1_ Getting Started with H3C Network Devices Command Reference Command Description system-view Enter the system view. sysname Modify the device name. quit Exit clock Modify the clock configuration. display current-configuration Display the current configuration. isplay saved-configuration Display the saved configuration. reset saved-configuration Clear the saved configuration. pwd Display the current directory. dir List e directory. more play a text file. ed Modify the current airectory. delete Delete a file. rosot rocyclo-bin Clear the Recycle Ein, local-user Configure the local user. super passwordrole Configure a super password. header login Configure the welcome information. line vty Enter a user line. authentication-mode Set an authentication mode. telnet server enable Enable Telnet. save reboot Save the configuration. Restart the system ftp server enable Enable the FTP server. tftp get Use the TFTP. tftp put Use the TFTP. Lab 1_ Getting Started with H3C Network Devices Questions 1. In this lab, why can't | see the system time configured? The clock is a command used to modify the hardware parameter of the system and it takes effective immediately, so the clock is not displayed in the current configuration or saved configuration file Lab 2 Connecting and Debugging Network Devices L ab 2 Connecting and Debugging Network Devices Lab Objectives After completing the Lab, you will be able to: e Master the method of connecting a router via a serial port. e Master the methnd of testing system connectivity using Ping and Tracert commands: @ Master the method of using debug commands. Lab Diagram Figure 2-1 Lab diagram 132.168.1.2/30 192.168.0.10128 192:168.2.10728 Equipment and Cables Lab 2 Connecting and Debugging Network Devices Lab devices and components Item Version| Quantity MSR36-20 CMW/7.1.049-R0106 2 $5820V2 (CMW 7.1.035-R2210 2 PC Windows 7 2 DTE serial port cable - 1 DCE serial port cable - 1 Category 5 UTP Ethemet | _ 4 cable Lab Procedure Building a Connection Environment This task is to make users familiarize and master the method of connectingrouters, switches, and PCs Connect PCs, switches, and routers. Under guidance, connect two routers using a serial cable. Connect the routers to a switch $5820V2, respectively. Use network cables to connect the switches to a PC, respectively. Configure IP aduresses. Clear all device configuration, restart the devices, and perform the following configuration: Run the ip address command to configure the serial port and Ethernet port IP addresses of the routers. The RTA configuration is as follows: [#3C} sysname RTA (kuA}intertace Gigabitethernet 0/1 hernet0/L]ip add 192..68.0.1 24 Serial 1/0 1/0]ip address 192.168.1.1 30 [H3C] sysname RTE [RTB]interface GigabitEthernet 0/1 thernet0/1]ip add 192.768.2.1 24 terface Serial 1/0 [RYA-Seriall/0]ip address 192.168.1.2 30 The network IP address of the PCA is set as 192.168.0.10/24, and the gateway is 192.168.0.1 Connect the PCA to the router port GO/1 via the L2 switch. Running the Ping Command to Check the Connectivity Ping RTB on RTA. Log in to RA using the PUTTY software. and ping the RTB serial port S1/0 to check the router connectivity. [RTA]ping 192.168.1.2 Ping 192,168.1.2 (192.168.1.2): 56 data bytes, press CTRL_C to break 20 Lab 2 Connecting and Debugging Network Devices 58 bytes from 192.168.1.2: Lomp_seq-0 tti=255 +696 ms 56 bytes from 192.168.1.2: Lemp seq=1 ttl=255 235 ms 56 bytes from 192.16811.21 icmp eeq=? ttl=255, 1058 me 56 bytes from 192.168.1.2: icmp_seq=3 ttl=255 -251 ms 56 bytes from 192.168.1.2: icmp_sea=4 ttl=255 +121 ms c-- Ping statistics for 192.168.1.2 > packets transmitted, 5 packets received, 0.0% packet loss ronnd-trip min/avg/max/atd=dev = 24.058/24.272/24.696/0.224 ms [RIA] 80ct 30 16:56:30:560 2014 RTA PING/6/PING STATISTICS: Ping statistics for 192,168.1.2: 5 packets transmitted, 5 packets Teceived, 0.0% packet loss, round-trip min/avg/max/std-dev = 24.058/24.272/24.696/0.224 ms. RTA receives ICMP Echo Reply packets, ndicating that RTA can ping RTR RTA sends five 56-byte ICMP request packets by default. After the ping is successful, RTA will receive five reply packets. A windows device sends four 32-byte ICMP request packets by default. Check the parameters carried in the ping command. aatA>ping ? -a Specify the source IP address Specify the number of echo requeste Specify packets not to be fragmented Specify the TE value Specify an outgoing interface Specify’ the interval far! aninding ethin -feiquants Numeric output only. No attempt will be made to lookup host addresses for symbolic nanes ~P No more than 8 "pad" hexadecimal characters to fill out the sent packet. For example, -p £2 wil. fill the sent packet with Guuuuure repeaceaiy “9 Display only summary -2 Record route. Include the RECORD ROUTE option in the ECHO_REQUEST packets and display the route -s Specify the payload lenath as Specify the wait time for each reply -topology Specify a topology -tos Specity the TOS value -v Display the received TCMP packets other than ECHO-RESPONSE packets =vpn-instance Specify a VPN instance STRING<1-253> TP address or hostname of remote system ip IP information ipve qPv6 Lnformalton For example, use the parameter -c to set the ping packet number to 50. ping -c 50 192.168.1.2 Use the parameter -s to set the ping packet size to 512bytes. ping ~s 512 192.168.1.2 Ping 192.168.1.2 (192.16.1.2): 512 data bytes, press CTRL_C to break 512 bytes from’ 192.168.1.2: icmp seq=0 ttl=255 time=140.468 512 bytes from 192,160,112: icmplaeqel ttl-255 time=140.252 512 bytes from 192.168.1.2: icmp seq=2 ttl=255 time=140.099 512 bytes from 192,168,112: icmp seq=3 ttl=255 time=140.228 512 bytes from 192.168 demp_seq=4 ttl=255 time=140.216 aaa c-- Ping statistics for 192.168.1.2 5 packote tranemitted, § packote rocoived, 0.0% packet lore round-trip min/avg/max/std-dev = 140.099/140.249/140.468/0.120 ms [RTA] #0ct 30 1 7:047 2014 RTA PING/6/PING STATISTICS: Ping statistics for 192.168.1.2: 5 packets transmitted, 5 packets received, 0.0% packet loss, round-trip min/avg/max/std-dev = 140.099/140.249/140.468/0.120 ms. a Lab 2 Connecting and Debugging Network Devices Use the parameter -a to set the source IP address of the ping packets. During network debugging, add the source IP address to check network connectivity. In this Lab, the source IP address is the RTA GO/1 port, and the ping object is PCB. p: 16 68.2 ivea, s pack ‘A PING/6/PING STA 68.2.10: 5 packets transmitted, 0 packets re 00.08 packet 101 Only the local port address can be used as the source IP address. If the ping fails, go to step 3 Ping RTA on PCA Enter the PCA CLI, and ping the RTA ports G0/1 and S1/0. Ping RTB on PCA. Enter the PCA CLI, and ping the RTB port $1/0. Ping PCB on PCA. Enter the PCA CLI, and ping the PCB IP address. The PCA faiss to ping the PCB. Why? Follow the ctops below to chook the cause. 1 Ping the RTA ports GO/1 and 1/0 on the PCA. The ports can be pinged. 2 Ping the RTB port S1/0 on the PCA. The port cannot be pinged. 3. Ping PCB on PCA. PCB cannot be pinged The ICMP request packets (Echo Request) sent to RTB and PCB do not have reply packets (Eco Reply). Run the display ip routing-table command on RTA to check its routing table Braj Lab 2 Connecting and Debugging Network Devices Direct 9 0 Direct 0 0 Direct 0 0 Direct 0 0 Direct 0 0 Direct 0 0 rect 0 0 Direct 0 0 Direct 9 a Direct Direct NULLo NULLO 5 Taboo In the Destination column of the routing table, the entry 192.168 2.0 is nat available, so the RTA that receives ping packets destined to PCB does not forward the packets to PCB and directly discards the packets. As a result, the PCA fails to ping the PCB The entry 192.168.1.2 is available, but how does the PCA fail to ping the RTB port $1/0? In the routing table of KI, the entry 1YZ.168,U.U 1s not available. Inough the KIA sends tne PCA ping request packet to RTB, RTB does not forward the ping reply packet to PCA. As a result, the PCA fails to ping the RTB port 51/0. Based on the analysis, the cause of the last test item in step 1 is clear RTA does not have a route to the IP address 192. 168.2.0/24, and RTB does not have a route to the IP address 192.168.2.0'24, either. Configure static routes. Run the ip route-static command to configure static routes on RTA and RTB, with the destination network segment set to that connecting the peer router with a PC and the next hop sel tu Ue port of the peer router. The RTA configuration is as follows: 2.0 255.255.255.0 192. The RTB configuration is as follows: 68.0.0 255.255.255.0 192. [RIA] ip route-static 192.16 [RIBJip route-sta Ping PCB on PCA After the static routes are configured on RTA and RTB, PCAcan ping PCB. Use the RTA port G0/1 as the source IP address to ping PCB. URYAJPIng -a 19Z.108.U.1 19Z,108.2..0 Ping 192.168 (192.168.2.10) from 192.168.0.1: 56 data bytes, press CTRL_C to break 56 bytes 92.168.2.10: icmp seq: time=24.344 ms 56 bytes 92.168.2.10: icmp_seq=: time=24.124 ms 56 bytes 92.168.2.10: icmp seq time=24.203 ms 56 bytes £ 92.168.2.10: icmp seq: time=26.307 ms be bytes trom 192.168.2:10: icmp_seq- 233 ms =-- Ping 192.168.2.10 --- packe’ 5 packets received, 0.0% packet loss und-trip min/avg/max/std-dev = 24.124/24.642/26.307/0.835 ms [RTA] %Oct 30 17 40 2014 RTA PING/6/PING STATISTICS: Ping statistics for 192.168.2.10 5 packets transmitted, 3 packets received, 0.0% packet loss, round: indev = 24.124/24.642/26.30 trip min/avg/max/st B Lab 2 Connecting and Debugging Network Devices Running the Tracert Command to Check the Connectivity Run the tracert command to view the route nodes that packets pass from the source device to the destination device. In case of a network fault, run this command to figure out the faulty node Tracert PCB on PCA. Enter the PCA CLI, and tracert the PCB IP address. Mea | PCA receives three TTL ICMP packets. The first hop is 192.168.0.1, indicating that the first packet is returned by RTA. By analogy, the second packet is returned by RTB, and the third packet is re:urned by PCB. The three network nodes are reachable. If one of the network Nodes Is unreachable, corresponding | | L packet will not be returned, based on which, you can determine a faulty node. Tracert PCB on RTA. Tracert the PCB IP address ‘on RTA, vert 192.168.2.10 route to 192.168.2.10 (192.168.2.10), 30 hops at most, 52 bytes each packet, to break -2 (192.168.1.2) 16.691 ms 16.620 ms 16.556 ms 0 (192.168.2.10) 16.536 ms 16.624 ms 16.569 ns The first hop is RTR, and the second hap is PCR ‘Check the parameters carried in the Tracert command: tracert ? = source IP addr TTL value for used by TRAC f ackel kets sent each time value -9 mt -topology vpn-inatance Specify a VPN inatance Set tl 0 wait fo; 1-253> IP address Ipvé information ach reply he destination device Running the Debugging Command to View the Debugging Information Enable the information monitoring and display functions on the RTB. Run the terminal monitor command on RTB to enable the system monitoring function, and run the terminal debugging command to enable the debugging information display function. terminal mo! The curzent te: TB>terminal debugging The current terminal is enabled to disp: Enable the ICMP debugging switch on the RTB. inal i9 cnabled to display logo. ay debugging logs Run the debuaaingipicmp command on the RTB to enable the debuaging function of the ICMP module. debugging ip ic Ping RTB on RTA, and view the debugging information on RTB. Ping the RTB serial port on RTA by sending 10 ping packets. a Lab 2 Connecting and Debugging Network Devices ping -¢ 10 192.168.1.2 View the debugging information on RTB. It 30: 17:41:30:970 2014 RTB SOCKET/7/ICMP: 4690890 ICMP Input ere = 192.168.1. Time(s) dst = 192.168.1 ICMP Pi type = 8 code = 0 (echc) set 30 17:4123N-97N 214 ROR SOCKEN/T/ TEMP: Time(s) 21414690890 ICMP Output: ICMP Packet: src = 192.168.1.2, dst = 192.168.1.1 , code = 0 (echc-reply} type 311195 2014 RTB SOCKET/7/ICMP: 90891 ICMP Inpu ere = 192,168.1.1, det = 192.168 1, code = 0 (ech) soct 30 1 ime (s) 21 ICMP Packe: 4 KEC/7/ICMP: 30 17:41:31:195 2014 RIB Time(s) :1414630891 ICMP Ou ICMP P. sre = 192.168.1.2, dst = 192.168.1.1 type = 0, code = 0 teche-reply) The first ICMP packet is received by RTB: Type=8 Echo packet, source IP address 192.168.1.1, and deslinalion IP address 192.168.1.2. The second ICMP packel is sent from RTB: Type=0 Echo-Reply, source IP address 192.168.1.2, and destination IP address192.168.1.1 Disable the debugging switch Run the unco debugging all command to disable the debugging switches of all modules. Commands Used in the Lab ‘Command list ‘Command Deseription ip address Configure an IP address. iproute-static Configure a static route. ping Check connectivity tracort Check a route. terminal monitor Enable the system monitoring function. terminal debugging Enable the debugging information dlapiay ; Enable the debugging ewitch of a epecified debugging ero ie FAQs 1. In step 1 task 2, the ping 192.168.1.2 basic command is used. If the ping —a 192.168.0.1 192.168.1.2 extended command is used, the result will difer. How does a router process packets? 25 Lab 2 Connecting and Debugging Network Devices if the basic command is used, the source IP address in an ICMP reply packet is 192.168.1.1. If the extended command is used, the source IP address is specified as 192.168.0.1. So, the destination IP addresses in the ICMP reply packets are different. 26 Lab 3 _Contiguring VLANs Lab 3 Configuring VLANs Lab Objectives In this chapter, you will learn how to: * Configure VLANs to isolate Layer 2 traffic between hosts * Configure access ports and trunk ports Lab Diagram Figure 3-1 Lab diagram PCC PCD Equipment and Cables Item | Version Quantity $5820V2 CMW710-R2311P03 2 PC Windows XP SP2 4 Category § UTP Ethemet cable 7 Lab 3 _Contiguring VLANs Lab Procedures Lab Task 1: Configure Access Ports This lab task shows how to configure the link type of a port as access and how to assign PCs to different VLANs to disable Layer 2 communications among them. Step1 Establish physical connections Connect the devices as shown in Figure 3-1. Verify that each switch is running the expected software version with the display version command, and ensure that no contiguration has been made on the switch. If the configuration of tne switch nas changed, use the reset saved-configuration command to restore the default configuration, and reboot the switch with the reboot command to validate the change. Perform all these ‘commands in user view. Step2 Check the default VLAN configuration on each switch Display VLANs on SWA, for example: (SwA}display vlan ‘The following VIANS exist: 1 (default) Check the configuration of the system default VLAN, VLAN 1 [SWA}display vlan 1 VLAN ID: 1 VLAN Type: static koute Interface: not configured Description: VLAN 0001 Tagged Forts: none Untagged Ports: Gigabitethernet1/0/1 GigabitEthernet1/0/2 GigabitEthernet1/0/3 GigabitEthernet1/0/4 GigabitEthernet1/0/6 ‘Bigal GigabitEthernet1/0/3 GigabitEthernet1/0/10 Gigabitetherneti/0/12 GigabitEthernet1/0/13 Gigabitethernet1/0/15 Gigabitethernet1/0/16 bitEthernet1/0/18 GigabitEthernet1/0/19 Gigabitethernet1/0/21 GigabitEthernet1/0/22 GigabitEtherneti/0/24 Gigabitcigabi GigahincigahitRtharnett/1/3 GigabitGigabitethern thernet1/1/1 fla Giyabitethernet1/0/5 Bigahi tPthernet /0/8 GigabitBthernet1/0/11 Gigabitethernet1/0/14 Gigabitethernet1/0/17 GigabitEthernet1/0/20 Gigabi tethernet1/0/23 GigabitGigabitethernet1/1/2 Check the configuration on each port, for example, GigabitEthernet 1/011 [SWA]display interface GigabitEthernet 1/0/1 2B Lab 3 _Contiguring VLANs Tagged VLAN ID : none Untagged VLAN ID : 1 Port priority: 0 ‘The sample output shows that the default VLAN on SWAis VLAN 1, all ports are in VLAN 1, and each port is an access port with PVID 4 Step3 Create a VLAN and assign ports to it. Create VLAN 2 on SWA and SWB, ass gn GigabilEthemet 1/0/1 connecting to PCA to VLAN 2 on SWA, and assign GigabitEthernet 1/0/1 connecting to PCC to VLAN 2 on SWB. Configure SWA: [swalvian 2 (BWA vien2)port Gigabitnthernet 1/0/1 Configure SWB: [swBivian 2 (SWB-vlan2]port GigabitBthernet 1/0/1 Verify the configuration: [SWA}display vlan ‘The following VLANs exist: L(defauls), 2 [SwA}display vlan 2 VLAN ID: 2 VLAN type: Static Route interface: Not configured Description: VLAN 0002 Name: VLAN 0002 Tagged orts: none Untagged Porta: GigabitEthernet1/0/1 [SWB]display vlan ‘The following VLANs exis aqderauic), 2 [SWB]dieplay vlan 2 VLAN ID: 2 VLAN type: Static Route interface: Not configured Description: VLAN 0002 Name: VLAN Uvuz Tagged ports: None Untagged Ports: Gigabitethernet1/0/1 Step4 Toot the isolation cffcot of the VLANs. Assign IP addresses for PCs as per Table 3-1 2» Lab 3 _Contiguring VLANs Table 3-1 IP address assignment scheme Device name IP address PCA 172.16.0.1/24 PCB 172.16.0.2/24 PCC 172.16.0.3/24 PCD 172.16.0.4124 Use the ping command to test the cornectivity among PCs in different VLANs. For ‘example, ping PCB on PCA and ping PCD on PCC. All ping attompte fil. The result shows that communication among VLANs is disabled, and two PCs connected to the same switch but in different VLANs are isolated from each other. Lab Task 2: Configure Trunk Ports This lab task shows how to configure the ports between switches as trunk ports to forward traffic for PCs in the same VLAN. Step1 Test the connectivity among PCs in the same LAN across switches. In Lab Task 1, both PCA and PCC are assigned to VLAN 2. Use the ping command on PCA to ping PCC: C:\Documents and Settings \Administrator>ping 172.16.0.3 Pinging 172.16.0.3 with 32 bytes of data: Request timed out. Request timed out. Request timed out. Request timed out. Ping statistics for 172.16.0.3: Packets: Sent = 4, Received = 0, Lost = 4 (100% loss), The result shows that PCC cannot be pinged. This result occurs because the port connecting SWA to SWB is an access pert that belongs to VLAN 1, and it does not allow frames from VLAN 2 to pass through. To fix the problem, configure GigabitEtheret 1/0/24 on the two switches as trunk ports. Step2 Configure the link type of the ports between switches as trunk. Configure SWA: [SWA] interface GigabitEthernet 1/0/24 (SWA-GigabitEthernet1/0/24]port link-type trunk [SWA-GigabitBthernet1/0/24]port trunk permit vlan all 30 Lab 3 _Contiguring VLANs Configure SWB: (SwB} interface Gigabitethernet 1/0/24 [SWB-GigabitEthernet1/0/24]port link-type trunk [SWB-GigabitEthernet1/0/24]port trunk permit vlan all Verify the configuration on SWA: display vlan 2 VLAN LD? 2 VLAN type: static Route Interface: Not configured Description: VLAN 0002 Name: VLAN 0002 Tagged Ports: GigabitEthernet1/0/24 Untagged Ports: Gigabitethernet1/0/1 The output shows that port GigabitEthernet 1/0/24 is in VLAN 2 and sends frames from VLAN 2 without removing the tag. Display information about the ports between switches, for example, port GigabitEthernet 170/24 on SWA:

    You might also like