Question

Configuring and Defining VLANS w/ QoS and Trunking on multiple Catalyst 3560 for new Mitel VoIP Installation

Asked by: wega1985

Until recently, we haven't really found a need to subnet or otherwise segment our small office network.  We have Catalyst 3560 switches and a CAT 6 infrastructure, but aren't really utilizing it to the fullest.  Now that we are wanting to install a VoIP solution, the vendor made it sound imperative that we segment the network with VLANS using QoS to prioritize the voice, understandably.

We have a Juniper SSG-140, which is a seemingly complex and capable router that is now only acting as our firewall and gateway.

We have two Cisco 3560G as our main data switches, an empty 3560 designated for our office phones, and a 24 port 3560 dedicated to the shop phones, all PoE.

Concerns:

1)Connecting/trunking considerations on the switches.  We made the mistake of not getting the switches that can be trunked together in the rear, so have been using one patch cable between the two main data switches.  We plan to connect the shop switch to the phone switch in the computer room over fiber.  How should the rest of the switches be connected together, and how should these ports be programmed?

2)VLAN segmentation for voice prioritization.  We don't really see the need to completely isolate the phone network from the data network, as the phones have ports in the back for laptop users, etc.  If this isolation is a requirement of VLANS, that is fine.  I have no experience with VLANS, but little experience with the Cisco IOS.

3)I read in some other answers that the core switch needs to be converted into the gateway.  Is this necessarily true, or should we use the Juniper router as the gateway as we have been, and integrate the voice VLAN into one of its interfaces.

4) DHCP and other concerns.  Defining IP ranges on the server.

I can admit I'm very new to the advanced networking/Cisco world, but would like to possibly try and tackle the configuration with some assistance.  Keeping it simple would be great to start.   I greatly appreciate any help.

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2008-09-05 at 08:26:41ID23706583
Tags

Cisco, Intertel, Mitel, Juniper

,

Catalyst, Netscreen

,

3560, SSG-140

,

VoIP, VLANs, Firewall

Topics

Voice Over IP

,

Network Switches & Hubs

Participating Experts
2
Points
500
Comments
18

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. Configuring managed switch for VLANs and VoIP
    I have never configured a managed switch before today. We are building a new network infrastructure that will run desktop PCs and VoIP phones. While I have the cabling to keep the phones and computers on separate cables, in a year, my cabling will be maxed out and I will wa...
  2. VoIP and VLANs on Procurve 2524
    Hi All, We use VoIP at on our network and I have tried to use Vlans to seperate broadcasts. What I have is 3 HP Procurve 2524 switches. Each port on each switch is a member of Vlan 20 and vlan 40 as well as the default vlan 1. Vlan 20 = data vlan 40 = voice What I want t...
  3. VLan for VOIP
    How to configure VLAN for VOIP, and make IP phone auto assign to the voice vlan
  4. VoIP  Vlans or Tagging
    I have a 150 handset base and about 100 pc's. What is the best way to ensure voice quality. QOS tagging on the packets or VLans. VoIP vendor is not recommending vlan just tagging.. I like the idea of not using vlans for simplicity and keeping everything on one network. ...
  5. Voice VLAN
    Hello there; I have a catalyst 4006 as a core router on my network. I'm not a cisco guy so here is my question. Recently we purchased a linksys VOIP device (SPA8000) that we wanted to use for a soecific departemnt, the problem is that it does not work no matter which port us...

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: CoreyMacPosted on 2008-09-05 at 13:49:17ID: 22403660

This is a pretty complex set of questions with equally complex set of answers.

It would help to know more about the environment.

How many servers?

How many workstations?

Are all network devices connected locally to the switches?

What exact models of phones?

What exact models of switches?

What kind of functions do the PCs and servers perform?

..etc...

Any information would be helpful in what is really redesigning your network infrastructure.

A separate VLAN for the phones is really going to be helpful long-term.

 

by: bkepfordPosted on 2008-09-05 at 15:13:32ID: 22404304

1)Connecting/trunking considerations on the switches.  We made the mistake of not getting the switches that can be trunked together in the rear, so have been using one patch cable between the two main data switches.  We plan to connect the shop switch to the phone switch in the computer room over fiber.  How should the rest of the switches be connected together, and how should these ports be programmed?

When wanting to pass more then one vlans over a line that line has to be a trunk. You setup a trunk with the following configuration.

interface Fastethernet 0/24
 switchport trunk encapsulation dot1q
 switchport mode trunk

I noticed you were worried that you did not get the stackwise if it is due to bandwith you can always combine trunks into an etherchannel like this.

========
switch 1
========
interface Fastethernet 0/23
 switchport trunk encapsulation dot1q
 switchport mode trunk
 channel-group 1 mode on

interface Fastethernet 0/24
 switchport trunk encapsulation dot1q
 switchport mode trunk
  channel-group 1 mode on

========
switch 2
========
interface Fastethernet 0/23
 switchport trunk encapsulation dot1q
 switchport mode trunk
 channel-group 1 mode on
interface Fastethernet 0/24
 switchport trunk encapsulation dot1q
 switchport mode trunk
  channel-group 1 mode on

2)VLAN segmentation for voice prioritization.  We don't really see the need to completely isolate the phone network from the data network, as the phones have ports in the back for laptop users, etc.  If this isolation is a requirement of VLANS, that is fine.  I have no experience with VLANS, but little experience with the Cisco IOS.

Because you are using a Mitel solution for the phones I can not speak to how they work as far as the port in the back if it seperates it onto a seperate vlan. Cisco phones use CDP and specify a Voice VLAN on the same port where they have an access vlan. (I will pout other comments later need to go)

 

by: CoreyMacPosted on 2008-09-05 at 20:55:57ID: 22405687

The Cisco 3560 switches have some GigE connections on the right hand side of the switches and the 3560Gs have all GigE ports.  You should not really have a bandwidth issue unless you have some VERY unusual traffic.  The stacked ports between switches can aggregate up to 8GigE ports between switches and generally 2 of them are plenty for most offices.  (really one should be...)  1GigE port = 125MB/sec and that is more than most networks ever see.

Those 3750 back-side stack ports add ~$3500 (list price) to each switch and if you dont really need it, these will be far less costly and can perform very well indeed.

Do the phones you use have a switch port on the back where the PC can plug into, or will the phones and PCs use separate ports?

 

by: wega1985Posted on 2008-09-05 at 23:16:29ID: 22406279

Thanks for the responses thus far -- I realize that this set of questions is pretty complex.  Glad to see we didn't make a mistake by getting the 3560s as opposed to the 3750s with Stackwise.

I will try to answer the initial questions as best I can; more later:

How many servers? About 10.

How many workstations? About 50.

Are all network devices connected locally to the switches? Yes. Gigabit to every workstation and server. Some Linksys WAPs, with light use.

What exact models of phones? It looks like the majority of the phones we chose were the Inter-Tel Model 8520. http://mitel.com/DocController?documentId=26391&c=9512&sc=26389 I may have been thinking of the additional Ethernet port in a higher model phone, or with a different vendor, as the specs of that model do not mention an additional port.  Like I mentioned in the initial question, the additional port is not a necessity if it complicates matters, and it looks like I was mistaken anyway.

What exact models of switches? 2 - 48 port 3560g PoE (data), 1 - 48 port 3560 PoE (office phones), 1 - 24 port 3560 PoE (shop phones)

What kind of functions do the PCs and servers perform?
Our heaviest users are the engineers which use a combination of Mechanical Desktop, AutoCAD, Solidworks, etc, and related file transfer. Besides that, the next heaviest use would be the ERP system and basic file/email use. Servers are file, domain controllers, ERP, print, fax, other small applications.

bkepford thanks for the response on the trunking.  If nothing else, I can set that up now.

 

by: CoreyMacPosted on 2008-09-06 at 08:19:59ID: 22407808

I would reccomend you install some sort of monitoring software to watch your ports for traffic and errors...  Whats Up Gold, SolarWinds, even MRTG can work.  Cisco Network Asssistant can help out as well and supports all of your products.  The more you can see the better you can make informed decisions.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_network_assistant/version5_0/release/notes/OL12210a.pdf


Here is an article on balancing th Etherchannels
http://www.cisco.com/application/pdf/paws/12023/4.pdf

The release notes have several caveats for Intel Pro NICs and other issues you might find helpful.
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_44_se/release/notes/OL14630.pdf

You should not need more than 2 GigE Trunks between the switches, but 4 would be fine as well...  I would think that you might get additional boost by tuing the servers since a server generally has a rough time actually sending or receiving 125MB/sec that even a single GigE can handle.

 

by: CoreyMacPosted on 2008-09-06 at 08:22:45ID: 22407817

It sounds like the simple approach is to use the Phone switches for phones and make all those ports use the voice VLAN.  The rest can live on the data VLAN with the servers.  60 machines in one VLAN is no problem.  Once reason for the extra Voice VLAN is not bandwidth or QOS related and that is that the DHCP boot parameters for the phones are generally different from the PCs and it is just easier to separate them.

 

by: wega1985Posted on 2008-09-08 at 10:37:33ID: 22419620

OK, so we've established that the phone switches should use the voice VLAN and the rest can use the data VLAN on the other two switches.

Where should I start in converting our flat network to this configuration with the least trouble?  I believe all of the switches are still operating in Layer 2 mode as we got them.

Does the main GigE 3560 data switch become a Layer 3 switch now?  Is this where all of the VLANs are defined?  DHCP IP-helper ? This would then become the default gateway, right? I think I'm able to understand all of the concepts, just not finding much information on how exactly to configure it.

 

by: bkepfordPosted on 2008-09-08 at 11:33:16ID: 22420106

Continued from first post....

As I was saying in the cisco world you would configure a voice VLAN like so. I just read that Mitel phones should support this

===========
Switch 1
===========
mls qos
auto qos voip

interface fastethernet 0/16
switchport mode access
switchport voice vlan 100
mls qos trust cos

3)I read in some other answers that the core switch needs to be converted into the gateway.  Is this necessarily true, or should we use the Juniper router as the gateway as we have been, and integrate the voice VLAN into one of its interfaces.

It does not need to be the core switches. What they are saying is that for two VLANs to communicate you need any layer three device (anything that routes via IP address and maybe the router is the best place as it is your current default gateway. You could use a switch. For the switch the configuration would look like this. the second peice is what you put on your default gateway on the DATA VLAN to send traffic destined for the VOICE VLAN to make sure it gets to the right place. All devices on the VOICE VLAN would use the interface vlan 100 as their default gateway.

===========
Switch 1
===========
ip routing

interface vlan 1
description DATA VLAN
ip address 10.0.0.254 255.255.255.0

interface vlan 100
description VOICE VLAN
ip add 10.0.100.254 255.255.255.0

===========
Router 1
===========
ip route 10.0.100.0 255.255.255.0 10.0.0.254

4) DHCP and other concerns.  Defining IP ranges on the server.

the easiest thing to do is setup a secondary DHCP server for the voice vlan and plug it into a port configured like so

interface fastethernet 0/12
switchport mode access
switchport access vlan 100

This will statically assign the port to only the VOICE VLAN

 

by: wega1985Posted on 2008-09-08 at 13:25:04ID: 22421177

Instead of using a second DHCP server, can't I use an IP helper to direct the requests from the VLANS, and setup a second scope on the original DHCP server?

I think it would be simpler to just enable routing on one of the switches...

 

by: bkepfordPosted on 2008-09-08 at 14:34:26ID: 22421871

ip helper-address is a IOS Router command I could not find it on the 3560 documentation. Now just because I could not find it does not meant it isn't there but to the best of my knowledge it isn't supported.

 

by: CoreyMacPosted on 2008-09-08 at 16:59:08ID: 22422864

Take a look here at the DHCP Relay Agent settings and you can see how the IP Helper works.

http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/12.2_46_se/configuration/guide/swdhcp82.html#wp1096758

There are lots of ways to do this, but the basics are to either forward the DHCP requests to a central server or to let the switch that runs each VLAN act as a DHCP server...

 

by: bkepfordPosted on 2008-09-09 at 08:10:42ID: 22428215

Thanks CoreyMac for finding that I just looked thorugh the command refernce guide and it wasn't there. Good to know.

 

by: CoreyMacPosted on 2008-09-09 at 08:31:21ID: 22428502

Sure thing.  The reference was not as easy to find as I would have expected.  They changed the terminology and even though it works somewhat like IOS in a router, the docs show it very differently.  I can see why you didn't find it in the Command Reference.

Imagine that Cisco changing the wording/syntax/documentation for the exact same function on two platforms...  Drives me nuts sometimes why they can't get their internal communication channels working better.

 

by: wega1985Posted on 2008-09-09 at 08:47:11ID: 22428724

Well looks like I'm near the point of closing this one out and contracting the job out.  I don't really want to spend hours trying to figure this out, take down our office network in the meantime all the while not being confident the system is ready for the phone installers.  

This was as far as I got on the primary voice switch, but I don't think it's right.

Thanks for your help.


Current configuration : 14176 bytes
!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log datetime
no service password-encryption
service sequence-numbers
!
hostname GWIVoIP
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$EhoP$H5ygH5vq.DvCiBguoezfP1
!
no aaa new-model
system mtu routing 1500
ip subnet-zero
ip routing
ip name-server 10.0.0.6
!
!
!
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 90 10
mls qos srr-queue input threshold 1 8 16
mls qos srr-queue input threshold 2 34 66
mls qos srr-queue input buffers 67 33
mls qos srr-queue input cos-map queue 1 threshold 2  1
mls qos srr-queue input cos-map queue 1 threshold 3  0
mls qos srr-queue input cos-map queue 2 threshold 1  2
mls qos srr-queue input cos-map queue 2 threshold 2  4 6 7
mls qos srr-queue input cos-map queue 2 threshold 3  3 5
mls qos srr-queue input dscp-map queue 1 threshold 2  9 10 11 12 13 14 15
mls qos srr-queue input dscp-map queue 1 threshold 3  0 1 2 3 4 5 6 7
mls qos srr-queue input dscp-map queue 1 threshold 3  32
mls qos srr-queue input dscp-map queue 2 threshold 1  16 17 18 19 20 21 22 23
mls qos srr-queue input dscp-map queue 2 threshold 2  33 34 35 36 37 38 39 48
mls qos srr-queue input dscp-map queue 2 threshold 2  49 50 51 52 53 54 55 56
mls qos srr-queue input dscp-map queue 2 threshold 2  57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3  24 25 26 27 28 29 30 31
mls qos srr-queue input dscp-map queue 2 threshold 3  40 41 42 43 44 45 46 47
mls qos srr-queue output cos-map queue 1 threshold 3  5
mls qos srr-queue output cos-map queue 2 threshold 3  3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3  2 4
mls qos srr-queue output cos-map queue 4 threshold 2  1
mls qos srr-queue output cos-map queue 4 threshold 3  0
mls qos srr-queue output dscp-map queue 1 threshold 3  40 41 42 43 44 45 46 47
mls qos srr-queue output dscp-map queue 2 threshold 3  24 25 26 27 28 29 30 31
mls qos srr-queue output dscp-map queue 2 threshold 3  48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3  56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3  16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 3 threshold 3  32 33 34 35 36 37 38 39
mls qos srr-queue output dscp-map queue 4 threshold 1  8
mls qos srr-queue output dscp-map queue 4 threshold 2  9 10 11 12 13 14 15
mls qos srr-queue output dscp-map queue 4 threshold 3  0 1 2 3 4 5 6 7
mls qos queue-set output 1 threshold 1 138 138 92 138
mls qos queue-set output 1 threshold 2 138 138 92 400
mls qos queue-set output 1 threshold 3 36 77 100 318
mls qos queue-set output 1 threshold 4 20 50 67 400
mls qos queue-set output 2 threshold 1 149 149 100 149
mls qos queue-set output 2 threshold 2 118 118 100 235
mls qos queue-set output 2 threshold 3 41 68 100 272
mls qos queue-set output 2 threshold 4 42 72 100 242
mls qos queue-set output 1 buffers 10 10 26 54
mls qos queue-set output 2 buffers 16 6 17 61
mls qos
!
crypto pki trustpoint HTTPS_SS_CERT_KEYPAIR
 enrollment selfsigned
 serial-number
 revocation-check none
 rsakeypair HTTPS_SS_CERT_KEYPAIR
!
!
crypto pki certificate chain HTTPS_SS_CERT_KEYPAIR
 certificate self-signed 01
  30820258 308201C1 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
  3D311130 0F060355 04031308 47574956 6F49502E 3128300F 06035504 05130839
  33343335 45383030 1506092A 864886F7 0D010902 16084757 49566F49 502E301E
  170D3933 30333031 30303031 32385A17 0D323030 31303130 30303030 305A303D
  3111300F 06035504 03130847 5749566F 49502E31 28300F06 03550405 13083933
  34333545 38303015 06092A86 4886F70D 01090216 08475749 566F4950 2E30819F
  300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100D3C4 7DF2D5BD
  C60AC6A4 6FDEAACC F239110F 32C15637 BDB46C20 121D707C 86DD7583 1611AF93
  39588B2C 93231CFD 69FD21D8 0B9C2981 DF1DACEE 522FA473 06C2106A 183F86C7
  4F4E702D D58E1ED7 8F43FCA2 156400F0 A9504C38 705E3818 34E7F301 BE4C2834
  0DC10215 4428793C 7CBE881E 8F78A3B7 4423819C DD9ED577 789B0203 010001A3
  68306630 0F060355 1D130101 FF040530 030101FF 30130603 551D1104 0C300A82
  08475749 566F4950 2E301F06 03551D23 04183016 8014F1F3 C0AD9BEF 66C79AA0
  49D32E35 1F0F575D 8856301D 0603551D 0E041604 14F1F3C0 AD9BEF66 C79AA049
  D32E351F 0F575D88 56300D06 092A8648 86F70D01 01040500 03818100 B0EAADD8
  5B1496F6 80189FB3 E5218CB2 F9283671 3FA3671A E0DC6681 5EF61ADF A4F7D082
  FCA22784 83891683 D374D190 873D86FC CEC427BA 482718A2 64D8E7D7 F347791F
  1F1D1168 68C76564 E228B1B7 B176D8BD 6023E674 A8F30B1A BF464A4A 387AD4B3
  794088C1 6999349F 69FAF0E1 A01B1C77 FF58C20C A1BEB749 4932D398
  quit
!
!
!
!
!
spanning-tree mode pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
!
!
interface FastEthernet0/1
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/2
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/3
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/4
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
....
interface FastEthernet0/41
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/42
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/43
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/44
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/45
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/46
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/47
 switchport access vlan dynamic
 switchport mode access
 switchport voice vlan 2
 switchport priority extend trust
 no mdix auto
 spanning-tree portfast
!
interface FastEthernet0/48
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 2
 switchport mode trunk
 srr-queue bandwidth share 10 10 60 20
 priority-queue out
 mls qos trust cos
 auto qos voip trust
 macro description cisco-switch
 
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface GigabitEthernet0/3
!
interface GigabitEthernet0/4
!
interface Vlan1
 ip address 10.0.0.5 255.255.255.0
!
interface Vlan2
 ip address 10.0.1.1 255.255.255.0
!
ip default-gateway 10.0.0.30
ip classless
ip route 10.0.0.15 255.255.255.255 10.0.0.30 permanent
ip route 10.0.1.1 255.255.255.255 10.0.0.15
ip http server
ip http secure-server
!
!
control-plane
!
!
line con 0
line vty 0 4
 password
 login
 length 0
line vty 5 15
 password
 login
!

                                              
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:
87:
88:
89:
90:
91:
92:
93:
94:
95:
96:
97:
98:
99:
100:
101:
102:
103:
104:
105:
106:
107:
108:
109:
110:
111:
112:
113:
114:
115:
116:
117:
118:
119:
120:
121:
122:
123:
124:
125:
126:
127:
128:
129:
130:
131:
132:
133:
134:
135:
136:
137:
138:
139:
140:
141:
142:
143:
144:
145:
146:
147:
148:
149:
150:
151:
152:
153:
154:
155:
156:
157:
158:
159:
160:
161:
162:
163:
164:
165:
166:
167:
168:
169:
170:
171:
172:
173:
174:
175:
176:
177:
178:
179:
180:
181:
182:
183:
184:
185:
186:
187:
188:
189:
190:
191:
192:
193:
194:
195:
196:
197:
198:
199:
200:
201:
202:
203:
204:
205:
206:
207:
208:
209:
210:
211:
212:
213:
214:
215:
216:
217:
218:
219:
220:
221:
222:
223:
224:
225:
226:
227:
228:
229:
230:
231:
232:
233:
234:
235:
236:
237:
238:
239:
240:
241:
242:
243:

Select allOpen in new window

 

by: bkepfordPosted on 2008-09-10 at 07:46:37ID: 22438888

Actually your config looks good except for the IP route statements and the default gateway.

You don't need

ip route 10.0.1.1 255.255.255.255 10.0.0.15

because the router knows where 10.0.1.1 is because it is a connected interface. I am not sure what the other statement is doing either.

On the default-gateway command this command is not used for routing. It is just used to help the switch internally find stuff. Use this

ip route 0.0.0.0 0.0.0.0 10.0.0.30

 

by: wega1985Posted on 2008-09-10 at 08:05:38ID: 22439093

How come I'm seeing 2 different things on sh config and show running-config for the IP routes?  I'm seeing a different default gateway on the different commands.

 

by: CoreyMacPosted on 2008-09-10 at 08:09:08ID: 22439142

Contracting it out might work fine, but be aware that there are lots of contractors that don't know how to do this correctly.  It will still take several hours to get everything configured and tested correctly whether you do it or someone else does.  (I would imagine you have spent hours on it already.)

I would be sure they have done this successfully with these model switches and the phone system you have.  If not they will be doing the same as you would need to and run packet sniffers at each hop to ensure the QoS is working as it should under load.

I agree that you are almost all of the way there, on this switch.

 

by: wega1985Posted on 2008-09-10 at 10:01:25ID: 22440427

We just had a meeting with the vendors and they feel pretty confident with our configuration.  He just wanted to look at the config file.

Thanks for all your help.

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...