Procedure Name: Create a template to adapt the switch/router to the network environment.
Procedure Number: NET-SOP-02.
Version: 1.0
Date: 10 September 2025.
Last Updated By: Raf Jablonski
Change Summary: Initial release of standard template.
Title: Port Allocation Table Standardisation Procedure
To define a consistent and standardised method for allocating switch ports on Cisco access switches. This ensures predictable placement of end-user devices, voice equipment, servers, and media, improving manageability, troubleshooting, documentation, and policy enforcement.
Network Engineers and Administrators responsible for provisioning and maintaining Cisco switches in the enterprise environment.
You must have access to the switch through a console, SSH, or management interface.
Knowledge of device roles and port mapping requirements (e.g. data, voice, servers, media).
Available VLAN IDs for each device category.
Change management approval for configuration templates.
Define VLAN assignments for each device category:
VLAN 10 – End-user Data (PCs, printers, laptops)
VLAN 20 – Voice (IP phones)
VLAN 30 – Servers / Media Devices
VLAN 99 – Management or Native VLAN (optional)
Implement port configurations on individual Cisco switches using the template:
!
! ========= Access Switch Port Template =========
!
! Ports 1-15: End-user data devices
interface range FastEthernet0/1 - 15
description END NODES (PCs, Printers, Laptops)
switchport mode access
switchport access vlan 10
spanning-tree portfast
spanning-tree bpduguard enable
switchport port-security
switchport port-security maximum 2
switchport port-security violation restrict
switchport port-security mac-address sticky
!
! Ports 16-20: Voice IP Phones
interface range FastEthernet0/16 - 20
description VOICE DEVICES (IP Phones)
switchport mode access
switchport access vlan 10
switchport voice vlan 20
spanning-tree portfast
spanning-tree bpduguard enable
!
! Ports 21-24: Servers / Media Devices
interface range FastEthernet0/21 - 24
description SERVERS / MEDIA
switchport mode access
switchport access vlan 30
spanning-tree portfast
spanning-tree bpduguard enable
!
! Uplink ports (to distribution/core)
interface range GigabitEthernet0/1 - 2
description UPLINK TO DISTRIBUTION SWITCHES
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 10,20,30,99
spanning-tree portfast trunk
!
Document deviations from the standard template when necessary (e.g., ports used for special devices), and update the port allocation table accordingly.
Post-Configuration Checks:
Verify VLAN assignments: show vlan brief
Confirm port statuses: show interfaces status
For voice ports, check show cdp neighbor detail (if CDP enabled) to see connected devices
Validate uplink trunk VLANs: show interfaces trunk
Ensure startup config was saved: write memory or copy running-config startup-config