Re: Fallback Bridging

From: GAURAV MADAN (gauravmadan1177@gmail.com)
Date: Tue Feb 10 2009 - 07:21:25 ARST

HI Narbik

Undoubtly very nice post again !
Just wanted to make 1 doubt clear ..

In ur 3560 example (where it does not treat IPV6 as NON-IP traffic and hence
do not bridge it) ; if I am not wrong if we want to route IPV6 and bridge
legacy protocols ; we need to configure CRB ?

If possible can u plzz depict that concept via a example

Thnx in advance
Gaurav Madan.

On Tue, Feb 10, 2009 at 11:53 AM, Narbik Kocharians <narbikk@gmail.com>wrote:

> *SORRY FOR THE LONG POST.*
>
> This is used for bridge NON-IP traffic between different Networks, try to
> lab this one and i hope it helps.
>
>
> *Use the following topology:*
>
>
>
> The F0/0 interface of BB2 is connected to SW1 which is a 3560 and F0/1
> interface of this switch is connected to SW3 which is a 3550. This port
> should be in VLAN 20.
>
>
>
> The F0/0 interface of BB3 is connected to SW1 which is a 3560 and F0/1
> interface of this switch is connected to SW3 which is a 3550. This port
> should be in VLAN 30.
>
>
>
> *Layer 3 addressing:*
>
> *BB2's FastEthernet (which one? To be determined by you, read on you will
> see):*
>
> *IPX net address: ABCD, IPv6 address = 23::2 /64, Mac-address =
> 0000.2222.2222*
>
> * *
>
> *BB3's FastEthernet (which one? To be determined by you, read on you will
> see):*
>
> *IPX net address: ABCD, IPv6 address = 23::3 /64, Mac-address =
> 0000.3333.3333*
>
> * *
>
> *You see by assigning the addressing to F0/0, you will be dealing with 3560
> switch and by assigning the addressing to F0/1, you will be dealing with
> 3550 switch so you need to determine that based on the task. *
>
> * *
>
> *Task 1*
>
>
>
> Configure the appropriate switch such that routers BB2 and BB3 can forward
> NON-IP traffic between VLAN 20 and 30; Fallback Bridging should be
> configured to accomplish this task. If this task is configured properly,
> you
> should be able to use "Ping" to test this configuration using IPv6 or IPX
> addressing identified in the IP addressing chart.
>
>
>
> * *
>
> *Note since the task specifies that the test should be conducted using IPv6
> and IPX, 3550 switches will be the only choice. Since these switches do NOT
> have inherent support for IPv6, these switches looked at IPv6 traffic as
> NON-IP, just like IPX.*
>
> * *
>
> *To configure Fallback Bridging:*
>
> * *
>
> *On SW3*
>
> * *
>
> *The following command assigns a bridge group number (In this case number
> 1)
> and it also specifies the VLAN bridge spanning-tree protocol to run in this
> bridge group. *
>
>
>
> SW3(config)#*bridge 1 protocol vlan-bridge*
>
>
>
> *The following configuration assigns the bridge group that was created with
> the "Bridge 1 protocol vlan-bridge" global configuration command to
> interface VLAN 20 and 30.*
>
>
>
> SW3(config)#int vlan 20
>
> SW3(config-if)#*bridge-group 1*
>
>
>
> SW3(config-if)#int vlan 30
>
> SW3(config-if)#*bridge-group 1*
>
>
>
> *To verify the configuration*
>
> * *
>
> *On SW3*
>
> * *
>
> *If the output of your "Show bridge" command does NOT reveal the MAC
> address
> of BB2 and BB3, you should generate some traffic (For example: Pinging BB3
> from BB2 using the IPv6 or IPX) so the bridge will see the MAC addresses.*
>
>
>
> *SW3#Show bridge*
>
>
>
> Br Group Mac Address State Type Ports
>
> -------- ----------------- ------- ------
> ------
>
> 1 0000.2222.2222 *Forward DYNAMIC * Vl20 Fa0/12
>
> 1 0000.3333.3333 *Forward DYNAMIC* Vl30 Fa0/13
>
>
>
> *To test the configuration:*
>
> * *
>
> *On BB2*
>
>
>
> *BB2#Ping 23::3*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte ICMP Echos to 23::3, timeout is 2 seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 0/0/4 ms
>
>
>
> *BB2#Ping IPX ABCD.0000.3333.3333*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte IPX Novell Echoes to ABCD.0000.3333.3333, timeout is 2
> seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 1/2/4 ms
>
>
>
> *Note IPv6 and IPX pings worked.*
>
> * *
>
> * *
>
> *Task 2*
>
> * *
>
> Configure the switch such that ONLY static entries are bridged, if this
> switch is configured properly, the switch should NOT bridge dynamically
> learnt Mac addresses.
>
>
>
>
>
> *On SW3*
>
>
>
> *In the previous task, the switch (SW3) learned the MAC addresses
> dynamically, and it bridged the traffic between the VLANs. The following
> command prevents the switch to forward frames to stations that it has
> learned dynamically. *
>
>
>
> SW3(config)#*no bridge 1 acquire*
>
>
>
> * *
>
> *To verify the configuration:*
>
> * *
>
> *Note the output of the following "Show" command reveals that the
> dynamically learned MAC addresses are discarded:*
>
> * *
>
> *On SW3*
>
>
>
> *SW3#Show bridge*
>
>
>
> Br Group Mac Address State Type Ports
>
> -------- ----------------- ------- ------
> ------
>
> 1 0000.2222.2222 *discard DYNAMIC * Vl20 Fa0/12
>
> 1 0000.3333.3333 *discard DYNAMIC* Vl30 Fa0/13
>
>
>
> *To test the configuration:*
>
> * *
>
> *On BB2*
>
>
>
> *BB2#Ping IPX ABCD.0000.3333.3333*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte IPX Novell Echoes to ABCD.0000.3333.3333, timeout is 2
> seconds:
>
> *.....*
>
> *Success rate is 0 percent (0/5)*
>
>
>
> *BB2#Ping 23::3 *
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte ICMP Echos to 23::3, timeout is 2 seconds:
>
> *.....*
>
> *Success rate is 0 percent (0/5)*
>
>
>
> *To complete the configuration:*
>
> * *
>
> *The following two commands add the MAC addresses of BB2 and BB3
> statically,
> therefore, since the traffic from dynamically learned MAC addresses are
> discarded, the traffic with statically configured MAC addresses will be
> forwarded.*
>
> * *
>
> *On SW3*
>
>
>
> SW3(config)#*Bridge 1 address 0000.2222.2222 forward*
>
> SW3(config)#*Bridge 1 address 0000.3333.3333 forward*
>
>
>
> *To verify the configuration:*
>
> * *
>
> *On BB2*
>
>
>
> *SW3#Show bridge*
>
>
>
> Br Group Mac Address State Type Ports
>
> -------- ----------------- ------- ------ ------
>
> 1 0000.2222.2222 *Forward Static * -
>
> 1 0000.3333.3333 *Forward Static* -
>
> * *
>
> *To test the configuration:*
>
> * *
>
> *BB2#Ping 23::3*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte ICMP Echos to 23::3, timeout is 2 seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 0/1/4 ms
>
>
>
> *BB2#Ping IPX ABCD.0000.3333.3333*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte IPX Novell Echoes to ABCD.0000.3333.3333, timeout is 2
> seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 1/2/4 ms
>
>
>
>
>
> *Task 3*
>
> * *
>
> Configure the appropriate switch such that routers BB2 and BB3 can forward
> NON-IP traffic between VLAN 20 and 30; you should configure Fallback
> Bridging to accomplish this task. If this task is configured properly, you
> should be able to use "Ping" to test this configuration using IPX
> addressing
> identified in the addressing chart. *IPv6 addressing should NOT work* when
> conducting tests using the Ping command.
>
>
>
>
>
> *Note because 3560 switches support IPv6, they do not consider IPv6 as
> NON-IP traffic; therefore, they do not bridge IPv6 traffic.*
>
>
>
> *On BB2*
>
>
>
> BB2(config)#default interface f0/1
>
>
>
> BB2(config)#int f0/0
>
> BB2(config-if)#mac-address 000.2222.2222
>
>
>
> BB2(config-if)#ipx Network ABCD
>
> BB2(config-if)#ipv6 address 23::2/64
>
> BB2(config-if)#no shut
>
>
>
> *On BB3*
>
>
>
> BB3(config)#default interface f0/1
>
>
>
> BB3(config)#int f0/0
>
> BB3(config-if)#mac-address 0000.3333.3333
>
> BB3(config-if)#ipx Network ABCD
>
> BB3(config-if)#ipv6 address 23::3/64
>
> BB3(config-if)#no shut
>
>
>
> *On SW1*
>
>
>
> SW1(config)#int f0/10
>
> SW1(config-if)#swi mode acc
>
> SW1(config-if)#swi acc v 20
>
>
>
> SW1(config-if)#int f0/11
>
> SW1(config-if)#swi mode acc
>
> SW1(config-if)#swi acc v 30
>
>
>
> SW1(config)#int vlan 20
>
> SW1(config-if)#bridge-group 1
>
>
>
> SW1(config-if)#int vlan 30
>
> SW1(config-if)#bridge-group 1
>
>
>
> SW1(config)#Bridge 1 protocol vlan-bridge
>
>
>
> *To verify the configuration:*
>
> * *
>
> *On SW1*
>
>
>
> *SW3#Show bridge*
>
>
>
> Br Group Mac Address State Type Ports
>
> -------- ----------------- ------- ------
> ------
>
> 1 0000.2222.2222 *Forward DYNAMIC * Vl20
>
> 1 0000.3333.3333 *Forward DYNAMIC* Vl30
>
>
>
> *To test the configuration:*
>
> * *
>
> *On SW1*
>
>
>
> *BB2#Ping 23::3*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte ICMP Echos to 23::3, timeout is 2 seconds:
>
> *.....*
>
> *Success rate is 0 percent (0/5)*
>
>
>
> *Note the above Ping failed but the following Ping worked.*
>
>
>
> *BB2#Ping ipx ABCD.0000.3333.3333*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte IPX Novell Echoes to ABCD.0000.3333.3333, timeout is 2
> seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 1/2/4 ms
>
> * *
>
> *Note IPX pings worked, whereas, IPv6 pings did not work.*
>
>
>
>
>
> *Task 5*
>
>
>
> Configure R1 based on the following; this router should have reachability
> to
> the other two routers
>
> R1, FastEthernet:
>
> IPX Net address = ABCD, IPv6 address = 23::1 /64, VLAN = Default,
> MAC-address = 0000.1111.1111
>
>
>
>
>
> *On R1*
>
>
>
> R1(config)#ipx routing
>
>
>
> R1(config)#int f0/0
>
> R1(config-if)#mac-address 0000.1111.1111
>
> R1(config-if)#ipx Network ABCD
>
> R1(config-if)#ipv6 address 23::1/64
>
> R1(config-if)#no shut
>
>
>
> *On SW1*
>
> * *
>
> SW1(config)#interface f0/0
>
> SW1(config-if)#no Shut
>
>
>
> SW1(config)#int vlan 1
>
> SW1(config-if)#bridge-group 1
>
> SW1(config-if)#no shut
>
> * *
>
> *To test the configuration:*
>
> * *
>
> *On R1*
>
>
>
> *R1#ping ipx abcd.0000.2222.2222*
>
>
>
> Type escape sequence to abort.
>
> Sending 5, 100-byte IPX Novell Echoes to ABCD.0000.2222.2222, timeout is 2
> seconds:
>
> *!!!!!*
>
> *Success rate is 100 percent (5/5),* round-trip min/avg/max = 1/1/4 ms
>
> * *
>
> *To verify the configuration:*
>
> * *
>
> *On SW1*
>
>
>
> *SW1#Show bridge*
>
>
>
> Br Group Mac Address State Type Ports
>
> -------- ----------------- ------- ------
> ------
>
> 1 0000.1111.1111 *Forward DYNAMIC* Vl1
>
> 1 0000.2222.2222 *Forward DYNAMIC * Vl20
>
> 1 0000.3333.3333 *Forward DYNAMIC* Vl30
>
>
>
>
>
>
> On Mon, Feb 9, 2009 at 9:48 PM, Salahaddin Elshekeil <
> salah.elshekeil@gmail.com> wrote:
>
> > Dear Experts,
> >
> > Can any one please explain the fallback bridging in a simple way?
> >
> > When I can use it in the real environment?
> >
> > Salah
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> >
> >
> >
> >
> >
> >
>
>
> --
> Narbik Kocharians
> CCSI#30832, CCIE# 12410 (R&S, SP, Security)
> www.MicronicsTraining.com <http://www.micronicstraining.com/>
> www.Net-Workbooks.com <http://www.net-workbooks.com/>
> Sr. Technical Instructor
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net

This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:10 ARST