Hello! I just started working as Office/IT admin of a start up Datacenter. We've purchased two blocks of IPv4 addresses from local fiber ISP. We want to make sure the servers secure. ISP advised us to set up IP Unicast. We are using a subnet mask of /24 to break down the blocks in to 32 Subnets with 8 hosts (5 total useable IPv4 addresses). Problem is my Networking chops are 10+ years old. So relearning this as I go.Here is the diagram I was given from the ISP. 

subnet address 148.59.35.24

gateway address 148.59.35.25

host address range is 148.59.35.26-148.59.35.30

broadcast address 148.59.35.31

 

Switch: Cisco Catalyst 2960xr

Fiber ISP

 

 

I'm using this source:(https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960xr/software/15-0_2_EX1/routing/configuration_guide/b_rt_152ex1_2960-xr_cg/b_rt_152ex1_2960-xr_cg_chapter_011.html#d3590e8278a1635) 

I've tried to follow guide but I am unable to ping the router address. I am sure I don't have the correct protocols and IP addresses assigned correctly. VLAN1 is running servers that are hosting websites and the Office network.  Would like to reload switch, but I am unsure how long that process is and what effect it would have on the servers currently in use.

 

some error messages I am getting are:

Switch#config t

Enter configuration commands, one per line.  End with CNTL/Z.

Switch(config)#interface gi1/0/4

Switch(config-if)#ip address 148.59.35.2 255.255.255.0

Switch(config-if)#no shut

Switch(config-if)#end

Switch#config t

Enter configuration commands, one per line.  End with CNTL/Z.

Switch(config)#interface vlan 4

Switch(config-if)#ip address 148.59.35.27 255.255.255.248

% 148.59.35.24 overlaps with GigabitEthernet1/0/4

Switch(config-if)#ip address 148.59.35.27 255.255.255.0

% 148.59.35.0 overlaps with GigabitEthernet1/0/4

Switch(config-if)#end

 

Switch#show interface gi1/0/4

GigabitEthernet1/0/4 is up, line protocol is up (connected)

  Hardware is Gigabit Ethernet, address is b4a8.b9e7.1b04 (bia b4a8.b9e7.1b04)

  MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,

     reliability 255/255, txload 4/255, rxload 1/255

  Encapsulation ARPA, loopback not set

  Keepalive set (10 sec)

  Full-duplex, 100Mb/s, media type is 10/100/1000BaseTX

  input flow-control is off, output flow-control is unsupported

  ARP type: ARPA, ARP Timeout 04:00:00

  Last input never, output 00:00:00, output hang never

  Last clearing of "show interface" counters never

  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0

  Queueing strategy: fifo

  Output queue: 0/40 (size/max)

  5 minute input rate 42000 bits/sec, 30 packets/sec

  5 minute output rate 1712000 bits/sec, 3269 packets/sec

     29949 packets input, 4733698 bytes, 0 no buffer

     Received 22414 broadcasts (34 multicasts)

     0 runts, 0 giants, 0 throttles

     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored

     0 watchdog, 34 multicast, 0 pause input

     0 input packets with dribble condition detected

     2282691 packets output, 149987430 bytes, 0 underruns

     0 output errors, 0 collisions, 1 interface resets

     0 unknown protocol drops

     0 babbles, 0 late collision, 0 deferred

     0 lost carrier, 0 no carrier, 0 pause output

     0 output buffer failures, 0 output buffers swapped out

 

Here is the last running-config 

Switch#show running-config

Building configuration...

 

Current configuration : 3680 bytes

!

! Last configuration change at 19:11:11 UTC Tue Oct 9 2018

! NVRAM config last updated at 23:26:09 UTC Mon Sep 17 2018

!

version 15.2

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Switch

!

boot-start-marker

boot-end-marker

!

no logging console

enable secret 5 $1$v2pU$N53ps.HMsHv5kWxyymaVE1

!

no aaa new-model

switch 1 provision ws-c2960xr-24ps-i

system mtu routing 1500

ip routing

!

!

!

!

!

!

!

!

!

crypto pki trustpoint TP-self-signed-3118930688

 enrollment selfsigned

 subject-name cn=IOS-Self-Signed-Certificate-3118930688

 revocation-check none

 rsakeypair TP-self-signed-3118930688

!

!

crypto pki certificate chain TP-self-signed-3118930688

 certificate self-signed 01

  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030

  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274

  69666963 6174652D 33313138 39333036 3838301E 170D3138 30393137 32333232

  30325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649

  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 31313839

  33303638 3830819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281

  8100F825 4CD1E681 11ACE640 E7D1FE86 5F37769F E04ECE3C EF9510EE DBBBDE14

  4EB032E9 16D8C9E0 70C8E640 4A966CB8 32562405 1C415885 A1A2324C CAF2711F

  91EA34CE 46F40196 A2DD96C2 C1E95A31 343BA14A 804C93F4 A43F32E1 D5C0D66A

  F0BD71F0 5ABB37B4 0776BC30 FB54C962 17151A53 DBD16742 E1F7DE59 E6E00545

  48F30203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603

  551D2304 18301680 1481F1B9 8EE4380A D469E4E0 DE12F47A 97BCF3DB 77301D06

  03551D0E 04160414 81F1B98E E4380AD4 69E4E0DE 12F47A97 BCF3DB77 300D0609

  2A864886 F70D0101 05050003 81810012 5C2DDD74 BDD2F3A1 F2CECE58 3080C403

  24193E40 C76CC971 328C171C 7E81CD2A C8755763 E3EE102B 0DA8F0F6 EB029D44

  C55238F4 10A99633 BCA4AC77 EC40E8C4 F629613A 1B1A57AF D1666622 3B9FB8C1

  AA8C4AA2 D21BB71F 78D11BD4 7D48F6F4 3C05A19B 271BBADA AACD33A3 9AB07031

  8F8D07C2 0440EC68 DB4220A5 A350E6

        quit

spanning-tree mode pvst

spanning-tree extend system-id

!

!

!

!

vlan internal allocation policy ascending

!

!

!

!

!

!

!

!

!

!

!

interface Port-channel4

 switchport access vlan 4

 switchport trunk allowed vlan 4

 switchport mode access

!

interface Port-channel13

!

interface FastEthernet0

 no ip address

 no ip route-cache

!

interface GigabitEthernet1/0/1

!

interface GigabitEthernet1/0/2

!

interface GigabitEthernet1/0/3

!

interface GigabitEthernet1/0/4

 no switchport

 ip address 148.59.35.2 255.255.255.0

!

interface GigabitEthernet1/0/5

!

interface GigabitEthernet1/0/6

!

interface GigabitEthernet1/0/7

!

interface GigabitEthernet1/0/8

!

interface GigabitEthernet1/0/9

!

interface GigabitEthernet1/0/10

!

interface GigabitEthernet1/0/11

!

interface GigabitEthernet1/0/12

!

interface GigabitEthernet1/0/13

!

interface GigabitEthernet1/0/14

!

interface GigabitEthernet1/0/15

!

interface GigabitEthernet1/0/16

!

interface GigabitEthernet1/0/17

!

interface GigabitEthernet1/0/18

!

interface GigabitEthernet1/0/19

!

interface GigabitEthernet1/0/20

!

interface GigabitEthernet1/0/21

!

interface GigabitEthernet1/0/22

!

interface GigabitEthernet1/0/23

!

interface GigabitEthernet1/0/24

!

interface GigabitEthernet1/0/25

!

interface GigabitEthernet1/0/26

!

interface GigabitEthernet1/0/27

!

interface GigabitEthernet1/0/28

!

interface Vlan1

 no ip address

!

interface Vlan4

 no ip address

!

ip default-gateway 170.249.129.177

ip forward-protocol nd

ip http server

ip http secure-server

!

ip route 0.0.0.0 0.0.0.0 148.59.35.0

!

!

!

no vstack

!

line con 0

line vty 0 4

 login

line vty 5 15

 login

!

end

 

Switch#show vlan

 

VLAN Name                             Status    Ports

---- -------------------------------- --------- -------------------------------

1    default                          active    Gi1/0/1, Gi1/0/2, Gi1/0/3

                                                Gi1/0/5, Gi1/0/6, Gi1/0/7

                                                Gi1/0/8, Gi1/0/9, Gi1/0/10

                                                Gi1/0/11, Gi1/0/12, Gi1/0/13

                                                Gi1/0/14, Gi1/0/15, Gi1/0/16

                                                Gi1/0/17, Gi1/0/18, Gi1/0/19

                                                Gi1/0/20, Gi1/0/21, Gi1/0/22

                                                Gi1/0/23, Gi1/0/24, Gi1/0/25

                                                Gi1/0/26, Gi1/0/27, Gi1/0/28

4    0004                             active

13   VLAN0013                         active

1002 fddi-default                     act/unsup

1003 token-ring-default               act/unsup

1004 fddinet-default                  act/unsup

1005 trnet-default                    act/unsup

 

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1    enet  100001     1500  -      -      -        -    -        0      0

4    enet  100004     1500  -      -      -        -    -        0      0

13   enet  100013     1500  -      -      -        -    -        0      0

1002 fddi  101002     1500  -      -      -        -    -        0      0

1003 tr    101003     1500  -      -      -        -    -        0      0

1004 fdnet 101004     1500  -      -      -        ieee -        0      0

1005 trnet 101005     1500  -      -      -        ibm  -        0      0

 

Remote SPAN VLANs

------------------------------------------------------------------------------

 

 

Primary Secondary Type              Ports

------- --------- ----------------- ------------------------------------------

 

I need to know:

What protocols to enable/disable 

How do I resolve the IP address Overlap

 

I found it hard to decipher from the guilde which steps I needed to do and the steps I didn't. Could you provide a simplified list of steps so I am sure I am not missing steps as I go.

 

I know its a lot to ask, but help a Girl out! (I applied for IT assistant and ended up being the IT admin. I'm very happy to get back into IT after 10+ years, but this has been a stressful last few days!)

 

Thanks in advance!