From: Rocco R21 (roccor21@hotmail.com)
Date: Fri Jan 26 2007 - 16:53:14 ART
Sergey,
I see your point that it would allow all VLANs unless you were to use the
'allowed' command.
Now, you have mode access on your config. I guess my concern here is the
Cisco example does not display mode access so I am lead to believe that it
would use dynamic desirable by default. Would specifing the mode to access
have any impact on the dot1q default the port uses when you configure the
voice vlan? Here's what I see:
Rack1SW1#sho int fa0/7 swi
Name: Fa0/7
Switchport: Enabled
Administrative Mode: static access
Operational Mode: down
Administrative Trunking Encapsulation: negotiate
Negotiation of Trunking: Off
Access Mode VLAN: 7 (VLAN0007)
Trunking Native Mode VLAN: 1 (default)
Voice VLAN: 20 (VOICE)
Administrative private-vlan host-association: none
Administrative private-vlan mapping: none
Administrative private-vlan trunk native VLAN: none
Administrative private-vlan trunk encapsulation: dot1q
Administrative private-vlan trunk normal VLANs: none
Administrative private-vlan trunk private VLANs: none
Operational private-vlan: none
Trunking VLANs Enabled: ALL
Pruning VLANs Enabled: 2-1001
Capture Mode Disabled
Capture VLANs Allowed: ALL
Protected: false
Unknown unicast blocked: disabled
Unknown multicast blocked: disabled
Appliance trust: none
From: "Sergey Golovanov" <sergey.golovanov@iementor.com>
Reply-To: "Sergey Golovanov" <sergey.golovanov@iementor.com>
To: "Rocco R21" <roccor21@hotmail.com>, "" <ccielab@groupstudy.com>
Subject: Re: 7960 VoIP phone switch port
Date: Thu, 25 Jan 2007 23:08:25 -0500
MIME-Version: 1.0
X-Originating-IP: 198.169.188.225
X-Originating-Email: sergey.golovanov@iementor.com
Received: from lists.groupstudy.com ([207.44.210.9]) by
bay0-mc2-f6.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444); Thu, 25
Jan 2007 20:11:56 -0800
Received: (from sympa@localhost)by lists.groupstudy.com
(8.12.11.20060308/8.11.6) id l0Q4BkEf015084;Thu, 25 Jan 2007 23:11:46 -0500
Received: from groupstudy.com (www.groupstudy.com [209.51.144.7])by
lists.groupstudy.com (8.12.11.20060308/8.11.6) with ESMTP id
l0Q48IF1015034for <ccielab@lists.groupstudy.com>; Thu, 25 Jan 2007 23:08:18
-0500
Received: from groupstudy.com (groupstudy.com [127.0.0.1])by groupstudy.com
(8.12.11.20060308/8.12.11) with ESMTP id l0Q48U2R025650GroupStudy Mailer;
Thu, 25 Jan 2007 23:08:30 -0500
Received: (from listserver@localhost)by groupstudy.com
(8.12.11.20060308/8.12.11/Submit) id l0Q48UBR025648for ccielabxhiddenx; Thu,
25 Jan 2007 23:08:30 -0500
Received: from server319.com (server319.com [216.35.196.98]) by
groupstudy.com (8.12.11.20060308/8.12.11) with ESMTP id l0Q48ToE025628
GroupStudy Mailer; Thu, 25 Jan 2007 23:08:29 -0500
Received: (qmail 31347 invoked by uid 2006); 26 Jan 2007 04:08:25 -0000
>You don't really need trunk config at all. Voice vlan is enough. Example:
>
>interface FastEthernet0/7
> switchport mode access
> switchport voice vlan 20
> switchport access vlan 7
> spanning-tree portfast
>
>Originally when cisco came out with voice vlan configuration on Catalyst
>IOS you had to configure trunk mode and native vlan for DATA traffic, but
>you no longer have to.
>
>The problem with mode trunk is that the switch will put every VLAN you have
>on the switch in FORWARDING mode on this interface. So if you have 20
>vlans, and vlan 7 is data, vlan 20 is voice, all 20 vlans will be in
>forwarding state on this phone port, unless you explicitely configure
>"switchport trunk allowed 7,20". All broadcast traffic on all vlans will
>always be sent to the phone. Try to configure switchport mode trunk and
>then do "show spanning-tree interface fas0/7" - you will see every vlan in
>Forwarding State.
>
>Now change it to "switchport mode access, switchport access vlan 7,
>switchport voice vlan 20" and do "show spanning-tree interface fas0/7" ->
>you are only going to see two vlans in forwarding mode. The switch is still
>tagging voice packets with vlan 20 and it expects to see voice packets
>coming in tagged with vlan 20.
>
>--------------------------------------------------------------------
>Sergey Golovanov, CCIEx5 (R&S/Security/Voice/Service Provider/Storage)
>"Please, don't ask me for my ccie #, there are reasons why I can't release
>it"
>ieMentor Instructor and Content Developer
>sergey.golovanov@iementor.com
>http://www.iementor.com
>
>
> > -------Original Message-------
> > From: Rocco R21 <roccor21@hotmail.com>
> > Subject: 7960 VoIP phone switch port
> > Sent: Jan 25 '07 22:24
> >
> > Configuring a 7960 w/PC. If the phone I want to set up will be using
> > dot1q frames then is it better to set the trunk dynamic desirable or is
> > it better to hard code it with switchport trunk encap dot1a? Here's
>what
> > I have right now: mls qos!interface FastEthernet0/7
> > switchport trunk native vlan 7
> > switchport mode dynamic desirable
> > switchport voice vlan 20
> > mls qos trust device cisco-phone
> > mls qos trust cos
> > spanning-tree portfast
> > !
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Thu Feb 08 2007 - 23:46:57 ART