Cisco Blog: Switching Archives

January 18, 2008

Help! Remote Switch IP Changes...

I feel so shamed. I have completely neglected the CiscoBlog since the holidays and my first post of the new year is a plea for help. How pathetic! Forgive me. I plan on putting plenty of time into the blog, answering many of the questions that have come in over the last few weeks, and getting that forum running (I'm really close!). The check's in the mail

So here's what I need help with. This weekend, I'm doing a massive network migration for a government agency. They have about 60 switches that I will be moving over to a new IP addressing scheme (creating a separate management VLAN). So here's, in effect, what I'll be doing:

interface vlan 1
no ip address
interface vlan 200
ip address 10.20.x.x 255.255.0.0 (each switch gets its own IP address)
no shutdown

Seems simple, right? Well, these switches are spread over 15 buildings miles apart using fiber cabling. I'd like to be able to do this all remotely, many of the switches are using low-end images that only allow a single IP assignment at a time. So, if I'm telnetted in remotely and drop the VLAN 1 IP address, I'm dead.

I thought about setting up a TFTP server on my laptop, copy the running configs of the remote switches down, changing them, then copying them back to the startup config of the remote switch and rebooting...but that seems pretty painful.

Anyone have a great idea on a quick way to do this?

Posted by JC at 3:06 PM | Comments (17) | TrackBack

July 18, 2007

Simple Article on Configuring 802.1X

802.1X is a powerful technology forcing people to authenticate before they are able to access Layer 2 services (such as a switchport or wireless access point). I recently stumbled on a step-by-step article showing an end-to-end configuration for the Windows RADIUS server, the Windows XP client, and the Cisco wireless access point - the link is below; just click the Server, Client, and Access Point links at the bottom of the page to get the configurations.

http://www.cs.umd.edu/~mvanopst/8021x/howto/

Posted by JC at 12:50 PM | Comments (2) | TrackBack

May 16, 2007

Completely Clearing a Cisco Switch...The Easy Way!

Clearing out a Cisco switch configuration is always a pain because VLANs are kept in a seperate file from the startup-config (NVRAM). There's two ways to clear a switch back to the factory defaults - the easy way and the REALLY easy way:

The easy way -

Switch# write erase
Switch# delete flash:vlan.dat
Switch# reload

The REALLY easy way -

Hold the "mode" button on the front of the switch for 10 seconds. The lights will blink then go solid - the switch completely wipes all configuration and then reboots. Obviously, this method only works on stackable switches as the chassis based switches do not have mode buttons.

Posted by JC at 2:29 PM | Comments (2) | TrackBack

November 6, 2006

Two very cool switch commands

I've got two hot commands for you that I think you'll find very handy on your NativeIOS switches:

First off, in most environments, just about every port should be set to "spanning-tree portfast" to eliminate the 30 second delay before a switchport goes active. Here's a way to do it globally:

Switch(config)# spanning-tree portfast default

This command automatically sets any port configured as an access port (non-trunking) to the correct mode.

Now, speaking of access ports, check this out. Cisco came out with a secret-ninja command that automatically does three things:

1. Configures a switchport to access mode (for hosts)
2. Enables portfast
3. Disables Etherchannel capabilities

Here it is:

Switch(config)# interface range fa0/1 - 24
Switch(config-if-range)# switchport host
switchport mode will be set to access
spanning-tree portfast will be enabled
channel group will be disabled

Nice!!!

Posted by JC at 3:11 PM | Comments (6) | TrackBack

June 24, 2006

New Catalyst Switch Guide

Cisco has just released their brand new Catalyst switch guide. Pretty awesome side-by-side comparison of all switch equipment currently produced along with the different supervisor engines created for their chassis-based switches.

You can get this information in PDF format by clicking here.

Posted by JC at 9:51 AM | Comments (2) | TrackBack

Cisco Blog

The world of all things Cisco