{"id":33245,"date":"2022-05-24T14:46:11","date_gmt":"2022-05-24T14:46:11","guid":{"rendered":"https:\/\/ded9.com\/?p=33245"},"modified":"2026-02-21T11:53:10","modified_gmt":"2026-02-21T11:53:10","slug":"how-to-configure-cisco-catalytic-switches","status":"publish","type":"post","link":"https:\/\/ded9.com\/tr\/how-to-configure-cisco-catalytic-switches\/","title":{"rendered":"How to Configure Cisco Catalyst Switches: A Step-by-Step Guide"},"content":{"rendered":"<p><span style=\"font-size: 12pt;\">There is a lot of variety in how to configure Cisco\u00a0Catalyst Switches. Some Operate At 10 Mbps, Others at 10 Gbps, and Others Use A Combination Of Fiber-Optic And Ethernet Ports To Deliver The Highest Throughput.\u00a0<\/span><\/p>\n<p>Advanced switches, such as the Model 3850, use intelligent capabilities to send data quickly. In this article, we will learn how to configure Cisco Catalyst converters.<\/p>\n<p>The switches are configured using the command-line interface (<a href=\"https:\/\/en.wikipedia.org\/wiki\/Command-line_interface\" target=\"_blank\" rel=\"noopener\">CLI<\/a>). Typically, network experts configure switches in two ways. First group: Some configure the initial settings to make the button work smoothly, while others go to advanced settings, including VLAN configuration, Inter-Switch Link (ISL), and 802.1q trunking.<\/p>\n<p>Here are some basic things to look for when selecting yours:<\/p>\n<ul>\n<li>Configure management settings.<\/li>\n<li>Configure IP address and subnet mask.<\/li>\n<li>Set the default IP gateway.<\/li>\n<li>Set the Port Security feature.<\/li>\n<li>Network testing and verification.<\/li>\n<\/ul>\n<h2><span style=\"font-size: 18pt;\">Cisco Catalyst Switches configuration<\/span><\/h2>\n<p>Before\u00a0<strong>configuring Catalyst switches<\/strong>, you should know how to boot them.\u00a0<span style=\"box-sizing: border-box; margin: 0px; padding: 0px;\"><strong>Figure 1 shows a typical Cisco Catalyst<\/strong>\u00a0switch<\/span>.<\/p>\n<p><img fetchpriority=\"high\" decoding=\"async\" class=\"aligncenter wp-image-33247\" title=\"Cisco Catalytic Switches\" src=\"https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/word-image-90.jpeg\" alt=\"Cisco Catalytic Switches configuration\" width=\"588\" height=\"231\" srcset=\"https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/word-image-90.jpeg 588w, https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/word-image-90-300x118.jpeg 300w\" sizes=\"(max-width: 588px) 100vw, 588px\" \/><\/p>\n<p>The first thing to note is that the console port for the Catalyst converter switches is on the back of the device. On switches like the 3560 shown in Figure 1, the console is directly in front of the device to make it easier to use. The 2960 eight-port switches are similar to the 3560.<\/p>\n<p>If the POST operation is completed successfully, the LED on the device will turn green, but if the POST operation has a problem, the amber light will indicate a severe problem. The bottom button on the left panel of the device shows which ports are using Ethernet (PoE).<\/p>\n<p>To do this, you must press the Mode button.<\/p>\n<p>As you know, PoE is a helpful feature that allows you to use the same cable for power and data transmission without additional cabling. Figure 3 shows the networks in which the switch is configured, and we intend to describe its operation.<\/p>\n<p>You can use any Layer 2 switch on a standard network, but when it comes to complex networks, you should use at least one router plus a Layer 3 switch like the 3560. If you have more than one switch on the web, you need to connect them via a crossover.<\/p>\n<p>The 3560 buttons can detect the connection type automatically, so you can also use direct cables (Straight), but note that not all switches can automatically detect the cable type.<\/p>\n<p>Different switches have different needs and capabilities, so keep this in mind when connecting separate switches.<\/p>\n<p>When you first connect the switch ports, the link lights are amber and turn green after a few seconds, indicating that the button has no hardware problems. Connecting to a switch port that turns green and amber alternately means the port has encountered an error.<\/p>\n<p>When this happens, check the docks&#8217; host network card, cabling, and two-way settings to ensure they match the host settings.<\/p>\n<h1><span style=\"font-size: 18pt;\">Do we need to set the IP address on the switches?<\/span><\/h1>\n<h1><span style=\"font-size: 18pt;\"><img decoding=\"async\" class=\"aligncenter wp-image-257031 size-full\" src=\"https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/configure_ip_address_switch_topology.jpg\" alt=\"Do we need to set the IP address on the switches?\" width=\"581\" height=\"308\" srcset=\"https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/configure_ip_address_switch_topology.jpg 581w, https:\/\/ded9.com\/wp-content\/uploads\/2022\/05\/configure_ip_address_switch_topology-300x159.jpg 300w\" sizes=\"(max-width: 581px) 100vw, 581px\" \/><\/span><\/h1>\n<p>In general, switches are equipped with active-standby ports. When you take the control out of the box, it connects the clients to the power and then switches to the router. The controller then starts learning the MAC addresses. However, the button must have an IP address to be managed more efficiently.<\/p>\n<p>Protocols such as Telnet, SSH, SNMP, etc., all require an <a href=\"https:\/\/ded9.com\/an-introduction-to-ip-and-its-types\/\">IP<\/a> address to communicate with a switch within a local area network. Remember, since all ports are enabled by default, you must close unused ports or assign them to a new VLAN for security reasons.<\/p>\n<p>According to our explanation, how should we assign this management IP address to the switch? The best place is the VLAN management interface, a routing interface on Cisco switches called VLAN 1.<\/p>\n<p>This management interface can change, and Cisco recommends that you change it to improve security. Now, let&#8217;s configure the controls shown in Figure 3.<\/p>\n<h2>Switch S1<\/h2>\n<p>We start by connecting to each switch and setting up management functions. We also assign an IP address to each button, but this is not done to improve network performance; it is only because of the switch&#8217;s remote management capability. Let&#8217;s use a simple IP design like 192.168.10.161\/28. The commands we run to configure the controller are shown in Figure 4.<\/p>\n<p>Switch&gt;en<\/p>\n<p>Switch#config t<\/p>\n<p>Switch(config)#hostname S1<\/p>\n<p>S1(config)#enable secret todd<\/p>\n<p>S1(config)#int f0\/15<\/p>\n<p>S1(config-if)#description 1st connection to S3<\/p>\n<p>S1(config-if)#int f0\/16<\/p>\n<p>S1(config-if)#description 2nd connection to S3<\/p>\n<p>S1(config-if)#int f0\/17<\/p>\n<p>S1(config-if)#description 1st connection to S2<\/p>\n<p>S1(config-if)#int f0\/18<\/p>\n<p>S1(config-if)#description 2nd connection to S2<\/p>\n<p>S1(config-if)#int f0\/8<\/p>\n<p>S1(config-if)#desc Connection to IVR<\/p>\n<p>S1(config-if)#line con 0<\/p>\n<p>S1(config-line)#password console<\/p>\n<p>S1(config-line)#login<\/p>\n<p>S1(config-line)#line vty 0 15<\/p>\n<p>S1(config-line)#password telnet<\/p>\n<p>S1(config-line)#login<\/p>\n<p>S1(config-line)#int vlan 1<\/p>\n<p>S1(config-if)#ip address 192.168.10.17 255.255.255.240<\/p>\n<p>S1(config-if)#no shut<\/p>\n<p>S1(config-if)#exit<\/p>\n<p>S1(config)#banner motd #this is my S1 switch#<\/p>\n<p>S1(config)#exit<\/p>\n<p>S1#copy run start<\/p>\n<p>Destination filename [startup-config]? [enter]<\/p>\n<p>Building configuration&#8230;<\/p>\n<p>[OK]<\/p>\n<p>S1#<\/p>\n<p>The first thing to note is that no IP address is configured on the switch&#8217;s physical interface. The configuration process is simple since all ports on a switch are enabled by default.<br \/>\nThe IP address is configured under a logical interface called a management domain, or VLAN. You can use the default VLAN 1 to manage a switched network, as we did, although you can also use another VLAN.<\/p>\n<p>There are no IP addresses in physical switch relationships, routing protocols, etc. We are focusing on Layer 2 switching, not routing. Also, note that Cisco switches do not have an AUX port.<\/p>\n<h1><span style=\"font-size: 18pt;\">S2 switch<\/span><\/h1>\n<p><strong>The S2 switch configuration<\/strong>\u00a0is as follows:<\/p>\n<p>Switch#config t<\/p>\n<p>Switch(config)#hostname S2<\/p>\n<p>S2(config)#enable secret todd<\/p>\n<p>S2(config)#int f0\/1<\/p>\n<p>S2(config-if)#desc 1st connection to S1<\/p>\n<p>S2(config-if)#int f0\/2<\/p>\n<p>S2(config-if)#desc 2nd connection to s1<\/p>\n<p>S2(config-if)#int f0\/5<\/p>\n<p>S2(config-if)#desc 1st connection to S3<\/p>\n<p>S2(config-if)#int f0\/6<\/p>\n<p>S2(config-if)#desc 2nd connection to s3<\/p>\n<p>S2(config-if)#line con 0<\/p>\n<p>S2(config-line)#password console<\/p>\n<p>S2(config-line)#login<\/p>\n<p>S2(config-line)#line vty 0 15<\/p>\n<p>S2(config-line)#password telnet<\/p>\n<p>S2(config-line)#login<\/p>\n<p>S2(config-line)#int vlan 1<\/p>\n<p>S2(config-if)#ip address 192.168.10.18 255.255.255.240<\/p>\n<p>S2(config)#exit<\/p>\n<p>S2#copy run start<\/p>\n<p>Destination filename [startup-config]?[enter]<\/p>\n<p>Building configuration&#8230;<\/p>\n<p>[OK]<\/p>\n<p>S2#<\/p>\n<p>We should now be able to ping switches S1 and S2<\/p>\n<p>S2#ping 192.168.10.17<\/p>\n<p>Type escape sequence to abort.<\/p>\n<p>Sending 5, 100-byte ICMP Echos to 192.168.10.17, timeout is 2 seconds:<\/p>\n<p>.!!!!<\/p>\n<p>Success rate is 80 percent (4\/5), round-trip min\/avg\/max = 1\/1\/1 ms<\/p>\n<p>S2#<\/p>\n<p>Well, why did I take only four pings instead of five? The first time.] It is a timeout, but the exclamation mark [!] means the operation was successful. The first ping did not work because ARP spent time converting the IP address to the corresponding hardware MAC address.<\/p>\n<h1><span style=\"font-size: 18pt;\">S3 switch<\/span><\/h1>\n<p><strong>The configuration<\/strong>\u00a0of the third switch is as follows:<\/p>\n<p>Switch&gt;en<\/p>\n<p>Switch#config t<\/p>\n<p>SW-3(config)#hostname S3<\/p>\n<p>S3(config)#enable secret todd<\/p>\n<p>S3(config)#int f0\/1<\/p>\n<p>S3(config-if)#desc 1st connection to S1<\/p>\n<p>S3(config-if)#int f0\/2<\/p>\n<p>S3(config-if)#desc 2nd connection to S1<\/p>\n<p>S3(config-if)#int f0\/5<\/p>\n<p>S3(config-if)#desc 1st connection to S2<\/p>\n<p>S3(config-if)#int f0\/6<\/p>\n<p>S3(config-if)#desc 2nd connection to S2<\/p>\n<p>S3(config-if)#line con 0<\/p>\n<p>S3(config-line)#password console<\/p>\n<p>S3(config-line)#login<\/p>\n<p>S3(config-line)#line vty 0 15<\/p>\n<p>S3(config-line)#password telnet<\/p>\n<p>S3(config-line)#login<\/p>\n<p>S3(config-line)#int vlan 1<\/p>\n<p>S3(config-if)#ip address 192.168.10.19 255.255.255.240<\/p>\n<p>S3(config-if)#no shut<\/p>\n<p>S3(config-if)#banner motd #This is the S3 switch#<\/p>\n<p>S3(config)#exit<\/p>\n<p>S3#copy run start<\/p>\n<p>Destination filename [startup-config]?[enter]<\/p>\n<p>Building configuration&#8230;<\/p>\n<p>[OK]<\/p>\n<p>S3 #<\/p>\n<p>Now, let&#8217;s ping switches S1 and S2 via switch S3. In this case, we will see the following outputs:<\/p>\n<p>S3#ping 192.168.10.17<\/p>\n<p>Type escape sequence to abort.<\/p>\n<p>Sending 5, 100-byte ICMP Echos to 192.168.10.17, timeout is 2 seconds:<\/p>\n<p>.!!!!<\/p>\n<p>Success rate is 80 percent (4\/5), round-trip min\/avg\/max = 1\/3\/9 ms<\/p>\n<p>S3#ping 192.168.10.18<\/p>\n<p>Type escape sequence to abort.<\/p>\n<p>Sending 5, 100-byte ICMP Echos to 192.168.10.18, timeout is 2 seconds:<\/p>\n<p>.!!!!<\/p>\n<p>Success rate is 80 percent (4\/5), round-trip min\/avg\/max = 1\/3\/9 ms<\/p>\n<p>S3#sh ip arp<\/p>\n<p>Protocol Address Age (min) Hardware Addr Type Interface<\/p>\n<p>Internet 192.168.10.17 0 001c.575e.c8c0 ARPA Vlan1<\/p>\n<p>Internet 192.168.10.18 0 b414.89d9.18c0 ARPA Vlan1<\/p>\n<p>Internet 192.168.10.19 &#8211; ecc8.8202.82c0 ARPA Vlan1<\/p>\n<p>S3 #<\/p>\n<p><strong>At the output of the show IP arp command, a dash (-) in the minute column means that the interface is a physical device.<\/strong><\/p>\n<p>Now, before we look at the switch settings, there is another command you need to know about. It is the IP default gateway command. If you want to manage your switches from outside your local network, you need to set a default gateway on the switches just like a host and do so from a global configuration.<\/p>\n<p>Here is an example where we introduce our router with an IP address using the last IP address in our subnet area:<\/p>\n<p>S3#config t<\/p>\n<p>S3(config)#ip default-gateway 192.168.10.30<\/p>\n<p>As you can see, the three switches are configured according to the pattern in the figure above. To protect your buttons more efficiently, you can do more advanced things, such as port security.<\/p>\n<h2>FAQ<\/h2>\n<div id=\"rank-math-rich-snippet-wrapper\"><div id=\"rank-math-faq\" class=\"rank-math-block\">\n<div class=\"rank-math-list \">\n<div id=\"faq-1\" class=\"rank-math-list-item\">\n<h3 class=\"rank-math-question \">Why set a management IP on a switch?<\/h3>\n<div class=\"rank-math-answer \">\n\n<p>So you can manage it remotely via SSH, Telnet, or SNMP.<\/p>\n\n<\/div>\n<\/div>\n<div id=\"faq-2\" class=\"rank-math-list-item\">\n<h3 class=\"rank-math-question \">Which interface gets the IP address?<\/h3>\n<div class=\"rank-math-answer \">\n\n<p>A VLAN interface (often VLAN 1 by default) is used for the management IP.<\/p>\n\n<\/div>\n<\/div>\n<div id=\"faq-3\" class=\"rank-math-list-item\">\n<h3 class=\"rank-math-question \">How do I save my configuration changes?<\/h3>\n<div class=\"rank-math-answer \">\n\n<p>Use copy running-config startup-config to persist settings across reboots.<\/p>\n\n<\/div>\n<\/div>\n<\/div>\n<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>There is a lot of variety in how to configure Cisco\u00a0Catalyst Switches. Some Operate At 10 Mbps, Others at 10 Gbps, and Others Use A Combination Of Fiber-Optic And Ethernet Ports To Deliver The Highest Throughput.\u00a0 Advanced switches, such as the Model 3850, use intelligent capabilities to send data quickly. In this article, we will [&hellip;]<\/p>\n","protected":false},"author":6,"featured_media":257028,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[96],"tags":[11629],"class_list":["post-33245","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-network","tag-vlan"],"acf":[],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/posts\/33245","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/comments?post=33245"}],"version-history":[{"count":6,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/posts\/33245\/revisions"}],"predecessor-version":[{"id":264009,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/posts\/33245\/revisions\/264009"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/media\/257028"}],"wp:attachment":[{"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/media?parent=33245"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/categories?post=33245"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ded9.com\/tr\/wp-json\/wp\/v2\/tags?post=33245"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}