Overview

Introduction

The Implement VLANs and Trunking module provides you with the instructions and Cisco hardware to develop your hands-on skills in the following topics:

  • Configuring VLANs and Trunks
  • Configuring interVLAN routing
  • Securing STP vulnerabilities
  • Configuring port security

Exercise 1 - Configuring VLANs and Trunks

In this exercise, you will start the base configuration for a secured layer two environment. The NYEDGE1 and NYEDGE2 routers will be used as test hosts for this lab in later exercises.

If you have used the labs to go through your CCNA, then you are probably familiar with configuring VLANs already so this will be a refresher. In any case, the work needs to be completed in this exercise before you can move on to the next.

Exercise 2 - Configuring InterVLAN Routing

In this exercise, you will configure interVLAN routing so that NYEDGE1 and NYEDGE2 are able to communicate with each other.

Exercise 3 - Securing layer 2

STP is invaluable in preventing layer 2 loops and allowing for link redundancy at layer 2. However, STP does have several vulnerabilities that must be mitigated in any switching environment.

In this exercise, you will now apply some additional layer 2 security features. This includes:

  • BPDU guard
  • Root guard
  • Loop guard

Exercise 4 - Configuring port security

Port security is a technology that allows you to block unknown devices from being connected to a specified switch port.

In this exercise, you will configure port security on NYCORE2 to block unknown MAC addresses from connecting to a specific switch port.

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.