1
00:00:00,800 --> 00:00:07,980
Some switch one we're going to shut the interface down to force traffic to go via the hub interface

2
00:00:07,990 --> 00:00:10,400
gigabit zero to shut it down.

3
00:00:11,540 --> 00:00:20,080
Show interface gigabit zero or three switch port this port gigabit series three is acting as a trunk

4
00:00:20,560 --> 00:00:25,270
using editor the one key all villains are allowed.

5
00:00:25,440 --> 00:00:29,810
So let's do a capture on the hub.

6
00:00:30,970 --> 00:00:38,320
We were receiving previous information and noticed the difference here has an or that one Q header.

7
00:00:38,350 --> 00:00:40,180
So we have eaten it.

8
00:00:40,540 --> 00:00:45,160
But notice the type is not IP version for the type is a result of one.

9
00:00:45,160 --> 00:00:53,790
Q So the type is zero x 8 100 rather than zero x zero a hundred for IP.

10
00:00:54,070 --> 00:01:03,580
So for one keyframe we can see here that the villain ID for this previous message is VLAN 1 pavilion

11
00:01:03,610 --> 00:01:10,390
spending three cents what are called BPT use on every villain.

12
00:01:10,510 --> 00:01:17,800
So here we can see some spending information and as we scroll down we can see that as an example CGP

13
00:01:18,310 --> 00:01:26,590
and VCP messages on this case DTP is sent as an untagged frame so we can see some DTP information are

14
00:01:26,590 --> 00:01:27,380
arriving here.

15
00:01:28,840 --> 00:01:30,280
And that will continue on.

16
00:01:30,640 --> 00:01:42,500
So let's do a ping from rodded to acting as PC two to four and see if we can see why the frames are

17
00:01:42,500 --> 00:01:43,310
not permitted

18
00:01:46,800 --> 00:01:48,830
so ICMP showing nothing.

19
00:01:49,900 --> 00:01:51,550
So we can see a broadcast here.

20
00:01:51,550 --> 00:01:58,050
This is an OP message saying who has 10 1 2 4.

21
00:01:58,210 --> 00:02:06,500
So in this op message I'll just stop that capture for a moment.

22
00:02:06,760 --> 00:02:13,290
Here's the OP you can see it's an Ethan a two frame with a cost.

23
00:02:13,290 --> 00:02:19,450
So the destination is a broadcast source MAC address is the MAC address of rockety.

24
00:02:19,500 --> 00:02:22,130
We can see that by looking at the interface.

25
00:02:22,180 --> 00:02:23,650
It's a show interface.

26
00:02:24,120 --> 00:02:29,810
If there zero notice there's the MAC address of the router.

27
00:02:30,950 --> 00:02:33,960
And there it is shown in the shock capture.

28
00:02:34,270 --> 00:02:42,170
But notice the type is once again added to the one key and the villain is set to villain to.

29
00:02:42,180 --> 00:02:48,670
So in other words the router is sending the frame untagged to the switch.

30
00:02:48,930 --> 00:02:54,340
But when it goes across this link it's going as a tagged frame.

31
00:02:54,510 --> 00:03:03,390
The switch is setting the violent tag to two because it arrived on this port which is in V land to just

32
00:03:03,390 --> 00:03:14,840
reset that capture what I want to show you is on this port is going to show is untagged standeth in

33
00:03:14,860 --> 00:03:15,260
it.

34
00:03:15,520 --> 00:03:20,430
But on this one it's going to show is tagged because the switch is tagging the frame

35
00:03:25,070 --> 00:03:26,320
so do the ping again.

36
00:03:29,510 --> 00:03:34,950
Now this is the frame to the switch from the router and we'll do a search for up.

37
00:03:35,060 --> 00:03:43,120
You can see there's the traffic from the router to a broadcast address.

38
00:03:43,300 --> 00:03:44,920
It's untagged.

39
00:03:45,040 --> 00:03:50,190
This is the type for up there is no ADA to the one queue headache here at all.

40
00:03:50,920 --> 00:03:58,980
But when we look for up on the link between the switches notice you can see the ADA two to one queue

41
00:03:58,980 --> 00:04:03,900
tag set to.

42
00:04:04,120 --> 00:04:12,250
So the traffic is arriving here is untagged and the switches tagging it to send the frame to switch

43
00:04:12,250 --> 00:04:12,770
to.

44
00:04:12,910 --> 00:04:19,390
The problem here is when the traffic hits switch to switch to is not configured with trunking.

45
00:04:19,390 --> 00:04:27,190
This is just an access port in villaine one so that traffic will be sent on to this port but not out

46
00:04:27,190 --> 00:04:36,970
of this port which is invalid to switch to let's see if we can see that show interface trunk.

47
00:04:37,330 --> 00:04:41,280
At the moment no interfaces are trunking show interface.

48
00:04:41,520 --> 00:04:44,430
Gigabit zeros three.

49
00:04:44,620 --> 00:04:46,670
And let's put switch port at the end.

50
00:04:48,250 --> 00:04:55,690
So show interfaces gigabit is three switch port the interface Gingrich rich 0 3 is enabled.

51
00:04:55,930 --> 00:04:59,500
It's set for negotiation of trunking.

52
00:04:59,650 --> 00:05:02,810
So it's in a LAN one.

53
00:05:02,890 --> 00:05:07,950
This port belongs to veel and one it's an access port.

54
00:05:08,320 --> 00:05:09,880
No trunking is enabled.

55
00:05:10,000 --> 00:05:14,320
So traffic from router to is simply going to be sent out of this port.

56
00:05:14,410 --> 00:05:16,270
So let's do a capture there to prove that

57
00:05:19,120 --> 00:05:24,400
and then we'll do a capture on this port to check if any traffic arrives on this port.

58
00:05:24,400 --> 00:05:32,000
So there's the washup capture do the ping again on Broadway to do a full time for AAP.

59
00:05:32,030 --> 00:05:37,780
And notice there's the broadcast traffic from 10 1 to 2 which is routed to

60
00:05:40,650 --> 00:05:47,380
asking for the mac address of 10 1 to 4 Sarada 2 is asking for the MAC address of rota for.

61
00:05:47,550 --> 00:05:49,710
But it never receives that.

62
00:05:49,710 --> 00:05:54,550
So what you'll also notice here is there is no added to the queue tag.

63
00:05:54,960 --> 00:05:57,660
So the frame was St. untagged here.

64
00:05:57,780 --> 00:06:01,740
It was sent tagged across here arrived yet.

65
00:06:02,130 --> 00:06:04,930
But this port was configured as an access port and we learned one.

66
00:06:05,130 --> 00:06:10,650
So the traffic was simply copied out of this port in the land one with no tag the traffic never arrived

67
00:06:10,650 --> 00:06:12,010
on this port.

68
00:06:12,240 --> 00:06:14,530
So let's prove that to capture here.

69
00:06:17,860 --> 00:06:26,670
Well do the ping again and try and filter for up and what you'll notice is there's no up traffic because

70
00:06:26,670 --> 00:06:31,030
the traffic is arriving on an access port Port one.

71
00:06:31,170 --> 00:06:34,410
It's only going to be sent out of this port which is port one.

72
00:06:34,470 --> 00:06:37,090
It's not going to be sent out of this port at all.

73
00:06:37,230 --> 00:06:44,260
So let's stop all captures and then what we'll do now is configured this port to be a trunk port and

74
00:06:44,260 --> 00:06:45,680
the port to be a trunk port.

75
00:06:45,880 --> 00:06:50,970
But we'll leave the port shut down for the moment so that we can see the traffic being captured.