Tasks
Configure four switches as discribed about Port Security feature
Please type configuration commands here:
1. Configure Port Fa0/10 of SW3 to the mode that is used to connect with hosts only:
Sw3(config)# interface fastethernet0/10
Sw3(config-if)#
(1)
2. Assign this port to VLAN 20. This port will be connected to a hub or a wireless access point in the future.
Sw3(config-if)#
(2)
3. You are required to limit the number of hosts connected to this port to 10 but make sure the "boss" laptop (MAC: abab.1111.1111.1111) can connect anytime. Explicitly configure when there are more than 10 users connecting to this port then shut down the port and send notification to the admin.
a) Activate this feature first:
Sw3(config-if)#
(3)
b) Limit the number of hosts connected to this port to 10:
Sw3(config-if)#
(4)
c) Make sure the "boss" PC (MAC: 000f.abab.abab) can connect anytime:
Sw3(config-if)#
(5)
d) Explicitly configure when there are more than 10 users connecting to this port then shut down the port and send notification to the admin.
Sw3(config-if)#
(6)
4. Make sure if a host is not active in the last 5 minutes, remove this user so that another one can connect to the switch:
Sw3(config-if)#
(7)
Sw3(config-if)#
(8)
5. To avoid having to manually intervene every time this violation occurs, configure Sw3 to auto-recover after 10 minutes:
Sw3(config-if)# exit
Sw3(config)#
(9)
Sw3(config)#
(10)
6. Configure Sw1 to be the root bridge for VLAN 20 without knowing the bridge priority of other switches:
Sw1(config)#
(11)
7. Currently VLAN 20 traffic is going through Fa0/23 on Sw1 to Sw2 but the plan requires it must go through Fa0/24. Fix this but only make change on Fa0/24 of Sw1. A quick check of "show spanning-tree vlan 20" command on Sw1 gives this output:
Note: Currently Sw1 is the root bridge for VLAN 20
Sw1(config)# interface fa0/24
Sw1(config-if)#
(12)
Submit
Result: