Catalyst express 500 series cisco

Коммутаторы Cisco Catalyst Express 500

Семейство управляемых нестекируемых коммутаторов 2-го уровня (коммутация на основе MAC-адресов) для рабочих групп. Коммутаторы серии Express 500 обеспечивают подержку основных технологий, применяемых в сетях Ethernet: виртуальные сети (VLAN, IEEE 802.1Q), приоритезация трафика, резервные линки (протокол RSTP), аггрегирование каналов (IEEE 802.3ad), сетевая аутентификация (IEEE 802.1x) и многоадресная IP-фильтрация. Таким образом, коммутаторы серии обеспечивают достаточный уровень управляемости, безопасности и масштабируемости в сочетании с простотой администрирования и невысокой стоимостью, что делает их прекрасным выбором для использования в сетях малых и средних предприятий размером от 20 до 250 пользователей.

Серия Express 500 включает как стомегабитные, так и гигабитные коммутаторы. Стомегабитные модели имеют 24 «медных» порта Fast Ethernet, а также 2 «медных» порта Gigabit Ethernet либо 2 гигабитных порта порта двойного назначения с интерфейсами 10/100/1000BASE-T и SFP для соединений с ядром сети или серверами. Гигабитная модель оснащена 8-тью «медными» портами Gigabit Ethernet, а также 4-мя портами Gigabit Ethernet двойного назначения с интерфейсами 10/100/1000BASE-T и SFP для соединений с ядром сети или серверами.

Коммутаторы серии Express 500 поддерживают стандарт Power over Ethernet (IEEE 802.3af). С помощью данной технологии можно обеспечить электропитанием различные сетевые устройства (беспроводные точки доступа, IP-телефоны, видеокамеры) непосредственно через сетевое подключение. Поддерживается 4 или 24 стомегабитных PoE-порта на коммутатор, к которым можно подключать устройства с потребляемой мощностью 15.4W.

Управление коммутаторами осуществляется по WEB-интерфейсу через сетевое подключение. Программное обеспечение имеет один вариант исполнения.

Коммутаторы семейства имеют исполнение для установки в стойку, высота 1U.

Источник

Знакомство с Cisco Catalyst Express 500 и возврат к заводским установкам

Как ни странно, не все фирмы в Москве уже развалились, а некоторые даже расширяются немного. Вот порты кончились, например. Нашел на одном популярном сайте объявление по продаже коммутатора с достаточным количеством портов и функций за адекватный ценник.

Сегодня ковыряю Catalyst Express 500 Series… 24 порта 10/100 + 2 порта 10/100/1000. Консольного порта какбэ нет, матерые цискари на форумах самовозгараются при упоминании этой модели т.к. «недо-это и всё вот такое вот всё». Ну а я люблю консоль тоже, но и настроить через веб меня не обламывает. Дизайнили явно те же, кто делали нормальные Каталисты, а не Linksys’ы там всякие ломучие, а вот с софтом начудили немного, но не смертельно.

Ну приступим, что ли. Так как мы с вами приобрели б/у устройство у непрофессионального продавца нам предстоит угадать порт, VLAN, ip-адрес, логин и пароль, которые использовали для управления предыдущие хозяева. Экстрасенс из вас так себе? Да и удача подкачала? Тогда надо сбросить настройки.

Если вы читали внимательно и исполнили все прям по буковкам — то наверно все удалось. Для всех остальных, вставивших кабель в первый порт и получивших фигу — вот:

0. Программизды Cisco настолько уверовали в Windows XP, что решили сделать выдачу адреса по DHCP только для этой замечательной ОС (видимо насрав на так обожаемые ими же самими отраслевые стандарты), поэтому вы либо делаете операцию из под Win2000/XP, либо обходите этот косячок.

1. Вычислим какой IP нам пытается выдать свитч (в разных версиях прошивки известны два варианта). Я добыл таким образом: позволил свитчу загрузиться, нажал SETUP (кнопка на корпусе), подключил ноут со сниффером в первый порт. Увидел в пакете DHCP-offer 169.254.0.2 и mac-адрес интерфейса.

2. Судя по описаниям получается, что имеем дело с комбинацией 169.254.0.1 (свитч), 169.254.0.2 (писюк), 255.255.255.248 (маска). Забиваем это все в настройки сетевухи вместе с DNS 127.0.0.1, отключаем кабель и переходим к стандартной процедуре.

3. Выключаем питание, зажимаем SETUP, включаем питание, ждем пока System поменяет цвет на оранжевый, отпускаем SETUP, ждем пока свитч укажет нам порт, через который будем настраивать (у меня это всегда был 1-й), подключаем писюк.

4. Идем браузером на http://адрес_свитча . Видимо вы увидите предупреждение, что ваш браузер не очень Интернет-Эксплорер (цискочтожтыделаешьА?), но как ни странно нажатие кнопочки рядом с предупреждением отправляет к полноценному интерфейсу, где все получится.

Резюме по железке:
Визуально фирменная, местами стильно-красивая, металл крепкий, прошивка делает все, что написано, управление писали дефективные какие-то, но не школьники как в китайских DVR. Жить можно. Своего ритейлового ценника как и очень многая продукция этого бренда железка не стоит. Но вот на вторичном рынке, где конкуренция идет с аналогичными hp/3com или более навороченными D-Link (c оговоркой на качество компонентов) вполне себе достойный вариант. Корпоративная вещь — не операторская, это да. Что до китайской сборки, то в данном случае это плюс. Никаких люфтов и щелей, ничего не болтается. Сколько каталистов было до этого — никогда такого не было, про уши роутеров 26-й серии например можно припомнить, ну или может кто разбирал когда 29-й каталист, чтобы почистить — те поймут что я имею в виду. Тут этого нет.

Cisco Catalyst Express 500 reset factory defaults password сброс настроек пароля не выдает адрес windows 7 8 10

Источник

Catalyst Express 500 Series Switches Configuration Example

Available Languages

Download Options

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Contents

Introduction

This document describes the procedure you use to configure Cisco Catalyst Express 500 series switches for Smartport roles, VLANs, EtherChannels, Switch Port Analyzer (SPAN) and to perform interVLAN routing with the Cisco Catalyst Express 500 series switch.

Prerequisites

Requirements

Cisco recommends that you have knowledge of these topics:

Configure the Cisco Catalyst 500 series switch with initial network settings as mentioned in the Initial Swicth Configuration section of this document.

You can see the data sheet for the Cisco Catalyst 500 series switches to learn about the different models and the supported features in Cisco Catalyst Express 500 Series Switches.

Components Used

The information in this document is based on these software and hardware versions:

Читайте также:  Прошивка для роутера tp link wr841n v13

Cisco Catalyst Express 500G-12TC that runs Cisco IOS® Software Release 12.2(25)FY

Cisco 2800 Router that supports IEEE 802.1Q Trunk Encapsulation.

Cisco Catalyst 3750 switches that support 802.1Q Trunk Encapsulation.

The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.

Conventions

Refer to Cisco Technical Tips Conventions for more information on document conventions.

Initial Switch Configuration

Complete these steps in order to perform initial setup of the switch. Refer to the Getting Started Guide for the Catalyst Express 500 Switches for more information on the configuration procedure.

Make sure that nothing is connected to the switch.

Power the switch.

Wait for the SETUP LED to blink green.

Click Setup. A switch port LED begins to blink green.

When a switch port LED blinks green, connect your PC to that port.

The LAN adapter of this PC must be configured to get the IP address via DHCP. The LEDs on the PC and the switchport blink green while the switch configures the connection (this takes around one minute).

Open a web browser. Complete these steps if the browser does not pull up the GUI automatically:

Issue the ipconfig command in order to view the dynamic address allocation.

The switch configures its management address as the Default Gateway for the LAN adapter card of the PC.

Note: For Cisco IOS Software FY series releases, the management IP address is 10.0.0.1. For Cisco IOS Software SEG series releases, the IP address is 169.254.0.1.

From the browser, go to the mentioned IP address. For example, http://169.254.0.1.

Enter the Network Settings and Optional Settings (if required). Click Submit in order to save changes and finish the basic configuration.

Enter the configured User Name and Password in order to continue the configuration of the switch.

For the Smartports dialog window:

Click Yes and Submit in order to accept the predefined port roles. The Smartports window appears. Here you can change the predefined roles or apply new port roles.

Click No and Submit in order to apply the Smartports roles yourself.

Restart the switch without turning off the power.

The switch automatically reloads in 60 seconds. A counter displays the time that remains for the reload.

Close the web browser and reconfigure the LAN adapter with an IP address within the same subnet of the new management address of the switch.

When the switch comes up, open a web browser and go to http:// . For example, http://172.16.100.100.

Note: Once the initial configuration is complete, the switch can be managed through any switchport that is configured for the same VLAN as that of the management IP address.

Smartports

Smartport Roles

The Smartports are preconfigured switch ports that provide preset Cisco recommended network enhancements, Quality of Service (QoS) and security. Catalyst Express 500 series switches have a number of Smartport roles. Each port role is just a configuration template. With these templates, users can consistently and reliably configure essential security, availably, and QoS features with minimal effort and expertise. Smartport roles simplify the configuration of critical features.

The port roles are based on the type of devices to be connected to the switch ports. For example, the Desktop port role is specifically for the switch ports that are connected to desktop or laptop PCs.

Smartport Role Description
Desktop Apply this role to ports that are connected to desktop devices, such as desktop PCs, workstations, notebook PCs, and other client-based hosts.
  • Optimized for desktop connectivity
  • Configurable VLAN setting
  • Port security enabled to limit unauthorized access to the network
Switch Apply this role to ports that are connected to other switches.
  • Configured as an uplink port to a backbone switch for fast convergence
  • Enables 802.1Q trunking
  • Configurable native VLAN
Router Apply this role to ports that are connected to WAN devices that connect to the Internet, such as routers and Layer 3 switches with routing service capabilities, firewalls, or VPN Concentrators.
  • Configured for optimal connection to a router or firewall for WAN connectivity
  • Enables 802.1Q trunking
  • Configurable native VLAN
IP Phone+Desktop Apply this role to ports that are connected to IP phones. A desktop device, such as a PC, can be connected to the IP phone. Both the IP phone and connected PC have access to the network and the Internet through the switch port. This role prioritizes voice traffic over data traffic to ensure clear voice reception on the IP phones.
  • Optimized QoS for IP Phone + Desktop configurations
  • Voice traffic is placed on Cisco-Voice VLAN
  • Configurable data VLAN
  • QoS level assures Voice over IP (VoIP) traffic takes precedence
  • Port security enabled to limit unauthorized access to the network
Access Point Apply this role on switch ports that connect to non-Power over Ethernet (PoE) and PoE-capable wireless access points (APs). Connected to the AP are mobile devices, such as wireless laptop PCs.
  • Configured for optimal connection to a wireless access point
  • Enables 802.1Q trunking
  • Configurable native VLAN

Note: Functionality of Cisco Wireless Bridges are more similar to that of a switch. So, Cisco recommends the Switch smartport role for Wireless Bridges.

Server Apply this role to ports that are connected to servers that provide network services, such as Exchange servers, collaborative servers, terminal servers, file servers, Dynamic Host Configuration Protocol (DHCP) servers, IP private branch exchange (PBX) servers, and so on. This role is for Gigabit or non-Gigabit ports, based on the server type to be connected.
  • Configurable VLAN
  • Port security enabled to limit unauthorized access to the network

This role prioritizes server traffic as trusted, critical, business, or standard, based on the function of the server.

  • Trusted—For use with Cisco CallManager Express. The same QoS setting as Voice (VoIP traffic is prioritized).
  • Critical—For critical servers with QoS set higher than the default.
  • Business—The default setting. QoS is higher than desktop Internet traffic.
  • Standard—For servers set to the same level as regular desktop Internet traffic.
Printer Apply this role on switch ports that connect to a printer, such as a network printer or an external print server. This role prevents printer traffic from affecting voice and critical data traffic.
  • QoS settings for Printer are the same as Desktop, Access Point, and Standard Server
  • Configurable VLAN
  • Port security enabled to limit unauthorized access to the network
Guest Apply this role to ports that are connected to desktop devices and to APs to provide guest wireless access.
  • Guests are allowed access to the Internet, but not to the company network.
  • All guest ports are placed on the Cisco-Guest VLAN.
  • Port security enabled to limit unauthorized access to the network.
Other Apply this role on switch ports if you do not want to assign a specialized role on the port. This role can be used on connections to guest or visitor devices, printers, desktops, servers, and IP phones. It allows for flexible connectivity of non-specified devices.
  • Configurable VLAN
  • No security policy
  • No QoS policy
Diagnostic Customers can connect diagnostics devices to monitor traffic on other switches (can be configured using Cisco Network Assistant only).

Apply Smartport Roles to Ports

Use the Smartports window to apply port roles to the switch ports. Select Configure > Smartports from the device manager menu to display this window. You can also click Smartports from the device manager tool bar.

From the Smartports window, you can see which Smartports role is applied to each port. Move the pointer over a port to display its port number, Smartports role, and VLAN ID (VLAN membership).

Before you use Smartports, decide which switch port you intent to connect to which device type. You can apply a Smartports role to a specific port or to all ports on the switch.

Restrictions

We recommend that you do not change specific port settings after you enable a Smartports role on a port. Any port setting changes can alter the effectiveness of the Smartports role.

Do not apply the Desktop role to ports that are connected to switches, routers, or APs.

The Smartport role Switch automatically enables 802.1Q trunking on the port. If a remote switch does not support 802.1Q trunking or the trunking is manually turned off, the spanning tree state of the port on the remote switch goes to blocking for type inconsistency. If the remote switch is the root bridge, the switch port does not go to blocking mode. In this case, the switch port trunk status is ON at both ends of the switches, but there is not any communication between the switches through these ports. There are no diagnostic messages displayed on the Catalyst Express 500 device.

Output from Remote Switch

The Smartport role Router automatically enables 802.1Q trunking on the port. If the main interface of the remote router is used, make sure the interface of the router is part of the native VLAN of the switch port. The interface of the router can be sub-interfaced to provide interVLAN routing for the Cisco Catalyst Express 500 switch. See the Configure InterVLAN Routing with a Cisco Router section of this document for configuration details.

You should have an additional VLAN named Cisco-Voice (case sensitive) to apply the IP Phone+Desktop Smartport role to the ports.

You should have an additional VLAN named Cisco-Guest (case sensitive) to apply the Guest Smartport role to the ports.

Do not apply the Other role to the ports that are connected to a sniffer or intrusion detection system devices.

Apply a Smartports Role to a Single Port

Complete these steps to apply a Smartports role to a specific port:

Choose a Smartports role from the Select a port role list.

Click on the port. The icon for the selected Smartports role appears on the port.

Click Submit to save your changes.

Complete these steps to remove the Smartports role applied to a port:

Choose Other from the Select a port role list.

Click on the port. The Other icon appears on the port.

Click Submit to save your changes.

Apply a Smartports Role to All Ports

Complete these steps to apply the selected Smartports role to all ports:

Choose a Smartports role from the Select a port role list.

Check Apply the selected port role to all ports. The icon for the selected Smartports role appears on the ports.

Complete these steps for any port(s) that should not be applied with the selected port role:

Choose another Smartports role from the Select a port role list.

Click on the port. The icon for the selected Smartports role appears on the port.

Click Submit to save your changes.

Complete these steps to remove the Smartports role applied to all ports:

Choose Other from the Select a port role list.

Check Apply the selected port role for all ports. The Other icon appears on the ports.

Click Submit to save your changes.

Create / Delete VLANs

VLAN Types

The switch ships with a default VLAN to which all the switch ports initially belong. The switch supports a maximum of 32 VLANs, including the default VLAN. Using only the default VLAN might be sufficient based on the size and requirements of your network. We recommend that you first determine your VLAN needs before you create VLANs.

Note: Cisco Catalyst 500 series switches work in VTP Transparent mode. VLAN creation, modification, or deletion done on this switch does not affect the other switches in the domain.

This depends on the type of device that is connected to the switch port:

A switch port applied with one of these port roles can belong only to an access VLAN:

The access VLAN provides the attached device with the specific access designed for that VLAN.

A switch port applied with one of these port roles can send and receive traffic for all VLANs configured on the switch, one of which can be identified as a native VLAN:

On this port, any traffic that is received or sent without the VLAN explicitly identified is assumed to belong to the native VLAN. Both the switch port and the attached device port must be in the same native VLAN.

Note: Select Configure > Smartports > Customize on the Device Manager to see the Port roles and associated VLANs.

If your network requires that you segregate either or both voice and guest traffic, you need to create additional VLANs. If you create additional VLANs on the switch where you have IP Phone+Desktop and Voice Smartports, you must also create these VLANs:

Cisco-Guest—The VLAN to which all ports that are applied with the Guest port role must be assigned. This VLAN ensures that all guest and visitor traffic is segregated from the rest of your network traffic and resources. Ports with Guest Smartport roles should be assigned to this VLAN.

Cisco-Voice—The VLAN to which all ports that are applied with the IP Phone+Desktop port role must be assigned. This VLAN ensures that all voice traffic has better QoS and is not mixed with data traffic. The voice VLAN of ports with IP Phone+Desktop Smartport roles should be assigned to this VLAN.

Use the VLANs window to create and delete VLANs. Select Configure > VLANs from the Device Manager menu to display this window.

Complete these steps to create a VLAN:

Click Create on the VLANs window.

Enter the name and ID for the VLAN.

Repeat steps 1 through 3 until you create the necessary VLANs.

Click Submit to save the changes.

Note: If you have any ports with the IP Phone+Desktop role, you must create the Cisco-Voice VLAN. If you have any ports with the Guest port role, you must create the Cisco-Guest VLAN. If you create VLANs without Cisco-Voice and Cisco-Guest VLANs and you click Submit, this error message appears.

Complete these steps to delete VLAN(s):

Check the check box at the top of the Delete column to select all VLANs or check the check box for one or more specific VLANs.

Click Submit to save your changes. Click OK in the Delete VLAN confirmation pop-up window.

Change VLAN Memberships

Specific VLAN memberships can be changed for the ports part of these Smartport roles:

Native VLAN—Switch, Router, and Access Point

Access VLAN—Desktop, IP Phone+Desktop, Server, Printer, Guest, and Other

Note: Access VLAN for the Guest role should be Cisco-Guest VLAN.

Voice VLAN—IP Phone+Desktop. Voice VLAN should be only the Cisco-Voice VLAN.

Use the Smartports Customize window to assign ports to VLANs. Select Configure > Smartports from the Device Manager menu to display this window.

Click Customize on the Smartports window.

Choose appropriate VLAN(s) for each port.

Click Submit to save your changes.

Configure EtherChannels

An EtherChannel is a group of two or more Fast Ethernet or Gigabit Ethernet switch ports bundled into a single logical link that create a higher bandwidth link between two switches. The switch supports up to six EtherChannels.

All ports in an EtherChannel must have the same characteristics:

All ports are either 10/100 ports or all 10/100/1000 ports. You cannot group a mix of 10/100 and 10/100/1000 ports in an EtherChannel.

All ports have the same speed and duplex mode settings.

All ports are applied with the Smartports Switch port role and belong to the same VLAN.

Complete these steps to create EtherChannels between a Cisco Catalyst Express 500 and another switch:

From the Device Manager of the Cisco Catalyst Express 500 switch, select Configure > EtherChannels to display the EtherChannels window.

Enter the Channel Group ID.

Choose the Channel Protocol (mode) for the Mode list.

Note: The Catalyst Express 500 switch supports two modes called LACP and Static. Configure the remote switch according to the mode you have chosen.

Click on the checkboxes against the ports which should be part of the channel.

Click Done and click Submit to save your changes.

If you have chosen LACP protocol to negotiate the channel, then configure the remote switch as this output shows:

If you choose to configure the channel statically, then configure the remote switch as this output shows:

Verify

Open the Configure > EtherChannels window to verify the status of the EtherChannel created. The status should be displayed as ‘In Use’. Otherwise, you can run diagnostics on the ports to determine the problem.

Issue the show etherchannel summary command in the Cisco 3750 switch to verify the status of the EtherChannel configuration. The Protocol field in the output displays LACP if it is used to negotiate the channel, blank or otherwise.

You can also see the Catalyst 500 switch log from Monitor > Alert Log on the Device Manager. This example shows the EtherChannel error message due to the EtherChannel misconfiguration on the remote switch.

Configure InterVLAN Routing with a Cisco Router

Note: The sample configuration makes use of the Cisco 2800 series router. This can be replaced with any Cisco router that supports IEEE 802.1Q trunking.

Complete these steps to configure interVLAN routing with a Cisco router:

Complete these steps to configure the Cisco Catalyst Express 500 switch:

Apply the Desktop Smartport role to ports Gig2 and Gig4. See the Apply Smartport Roles to Ports section of this document for the configuration procedure.

Apply the Router Smartport role to port Gig5.

Apply the appropriate VLAN IDs to the ports.

Assign VLAN 1 as the access VLAN for the port Gig2.

Assign VLAN 2 as the access VLAN for the port Gig4.

Assign VLAN 1 as the native VLAN for port Gig5.

See the Change VLAN Memberships section of this document for the configuration procedure.

Configure the Cisco 2800 series router:

Verify

Select Monitor > Port Status on the Device Manager to see the switch port trunk status on the Catalyst Express 500 switch.

Verify if the ping from Workstation 1 to Workstation 2 passes.

Run a trace to verify the path taken to communicate between Workstation 1 and Workstation 2.

Configure Switched Port Analyzer (SPAN)

The Switched Port Analyzer (SPAN) feature, which is sometimes called port mirroring or port monitoring, selects network traffic for analysis by a network analyzer. The network analyzer can be a Cisco SwitchProbe device or other Remote Monitoring (RMON) probe. The switch supports only the Local SPAN and does not support Remote SPAN.

The destination port should be configured with the Diagnostics Smartport role. This can only be done using the Cisco Network Assistant software. Refer to SPAN on Catalyst Express 500 for configuring the Catalyst Express 500 switch to monitor traffic.

Reset the Catalyst Express 500 Switch to Factory Default Settings

If you have connectivity to the Device Manager of the switch and you want to reset the switch to factory default settings and retain the current Cisco IOS system software, refer to the Reset the Switch Using the Device Manager section of Reset the Catalyst Express 500 Series Switches to Default Factory Settings.

If you do not have connectivity to the Device Manager of the switch and you want to reset the switch to the factory default, refer to the Reset the Switch When the Device Manager Is Not Available section of Reset the Catalyst Express 500 Series Switches to Default Factory Settings.

Verify

There is currently no verification procedure available for this configuration.

Troubleshoot

There is currently no specific troubleshooting information available for this configuration.

Источник

Adblock
detector