Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Sample Config for Catalyst 4000 Series Switches

Cisco:Switches

Sample Config for Catalyst 4000 Series Switches

by  IPKONFIG  Posted    (Edited  )
set password <cr>
old password <cr>
new password (your password)
confirm password (your password)
set enablepass <cr>
old password <cr>
new password (your password)
confirm password (your password)
set logout 20 <cr>
set banner motd # <cr>


You have reached Company XYZ
Authorized access only !!! If you
feel that you have reached this point
in error, please contact the NOC
@ 800.800.8888


SW-NAME

# <cr>
set system name SW-NAME <cr>
set system location (Location of Switch) <cr>
set system contact NOC @ 800.800.8888 <cr>
!
set snmp community read-only (your community strings) <cr>
set snmp community read-write (your community strings) <cr>
set snmp community read-write-all (your community strings) <cr>
!
set tacacs server A.B.C.D primary(your TACACS server, if you have one) <cr>
set tacacs server A.B.C.D (this is your secondary TACACS server) <cr>
set tacacs key (key for TACACS+) <cr>
!
set authentication login tacacs enable console primary <cr>
set authentication login tacacs enable telnet primary <cr>

set vtp domain (your vtp domain) <cr>
set vtp mode server <cr>
set vtp pruning enable <cr>
set vtp pruneeligible 2-1000 <cr>
!
set vlan (vlan #) name (name of vlan) <cr>
!
set interface sc0 (vlan) (ip address) (net mask) (broadcast) <cr>
set ip route 0.0.0.0 (address of gateway) <cr>
!
set spantree uplinkfast enable <cr>
!
set spantree portfast bpdu-guard enable <cr>
!
set logging server enable <cr>
set logging server (address of your syslog server) <cr>
!
set boot config-register 0x2 <cr>
set boot system flash bootflash:(sup code) <cr>
!
set udld enable <cr>
set errdisable-timeout enable udld <cr>
set errdisable-timeout enable duplex-mismatch <cr>
set errdisable-timeout enable bpdu-guard <cr>
set errdisable-timeout enable channel-misconfig <cr>
!
#module 1 : 2-port 1000BaseX Supervisor
set vlan (vlan #) 1/1-2 <cr>
set port enable 1/1-2 <cr>
set port name (name) 1/1 <cr>
set port name (name) 1/2 <cr>
set trunk 1/1 desirable dot1q <cr>
set trunk 1/2 desirable dot1q <cr>
set port channel 1/1-2 (admin group) <cr>
!
#module 2 : 48-port 10/100BaseTX Ethernet
set vlan (native vlan) 2/1-48
set port host 2/1-48
!
#module 3 : 48-port 10/100BaseTX Ethernet
set vlan (native vlan) 3/1-48
set port host 3/1-48
!
#module 4 : 48-port 10/100BaseTX Ethernet
set vlan (native vlan) 4/1-48
set port host 4/1-48
!
#module 5 : 48-port 10/100BaseTX Ethernet
set vlan (native vlan) 5/1-48
set port host 5/1-48
!
#module 6 empty
!
set authorization exec enable tacacs+ none console <cr>
set authorization exec enable tacacs+ none telnet <cr>

*Note: Remember to set the vtp mode to ôclientö before installing switch into the network.

*Note (all indications of ô!ö are entries to separate command lines only, they do not serve any functions other than cosmetic).
Register to rate this FAQ  : BAD 1 2 3 4 5 6 7 8 9 10 GOOD
Please Note: 1 is Bad, 10 is Good :-)

Part and Inventory Search

Back
Top