Cisco 3845 Software Guide
Cisco 3845 - Security Bundle Router Manual
 |
UPC - 746320981420
View all Cisco 3845 manuals
Add to My Manuals
Save this manual to your list of manuals |
Cisco 3845 manual content summary:
- Cisco 3845 | Software Guide - Page 1
ME 3800X and 3600X Switch Software Configuration Guide Cisco IOS Release 12.2(52)EY October 2010 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-23400-01 - Cisco 3845 | Software Guide - Page 2
WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and - Cisco 3845 | Software Guide - Page 3
3 Features 1-8 Layer 3 VPN Services 1-8 Monitoring Features 1-9 Feature Support per License 1-9 Where to Go Next 1-11 Using the Command-Line Interface 2-1 Understanding Command Modes 2-1 Understanding the Help System 2-3 Understanding Abbreviated Commands 2-3 Understanding no and default Forms of - Cisco 3845 | Software Guide - Page 4
14 Manually Assigning IP Information 3-15 Checking and Saving the Running Configuration 3-16 Modifying the Startup Configuration 3-17 Default Boot Configuration 3-18 Automatically Downloading a Configuration File 3-18 Specifying the Filename to Read and Write the System Configuration 3-18 Cisco ME - Cisco 3845 | Software Guide - Page 5
-01 Booting Manually 3-19 Booting a Specific Software Image 3-19 Controlling Environment Variables 3-20 Scheduling a Reload of the Software Image 3-21 Configuring a Scheduled Reload 3-22 Displaying Scheduled Reload Information 3-23 Configuring Cisco IOS Configuration Engine 4-1 Understanding Cisco - Cisco 3845 | Software Guide - Page 6
NTP Broadcast Service 5-6 Configuring NTP Access Restrictions 5-8 Configuring the Source IP Address for NTP Packets 5-10 Displaying the NTP Configuration 5-11 Configuring Time and Date Manually 5-11 Setting the System Clock 5-11 Displaying the Time and Date Configuration 5-12 Configuring the Time - Cisco 3845 | Software Guide - Page 7
8-14 Configuring TACACS+ Authorization for Privileged EXEC Access and Network Services 8-16 Starting TACACS+ Accounting 8-16 Displaying the TACACS+ Configuration 8-17 Controlling Switch Access with RADIUS 8-17 Understanding RADIUS 8-17 Cisco ME 3800X and 3600X Switch Software Configuration Guide vii - Cisco 3845 | Software Guide - Page 8
for Secure Copy Protocol 8-39 Information About Secure Copy 8-40 9 C H A P T E R Configuring Interfaces 9-1 Understanding Interface Types 9-1 NNI Port Type 9-2 Port-Based VLANs 9-2 Switch Ports 9-2 Access Ports 9-3 Cisco ME 3800X and 3600X Switch Software Configuration Guide viii OL-23400-01 - Cisco 3845 | Software Guide - Page 9
the Ethernet Management Port 9-10 Supported Features on the Ethernet Management Port 9-12 Configuring the Ethernet Management Port 9-12 TFTP and the Ethernet Management Port 9-12 Configuring Ethernet Interfaces 9-13 Default Ethernet Interface Configuration 9-13 Configuring Interface Speed and Duplex - Cisco 3845 | Software Guide - Page 10
a Service Instance 11-10 Encapsulation Using a VLAN Range 11-10 Two Service Instances Joining the Same Bridge Domain 11-10 Bridge Domains and VLAN Encapsulation 11-11 Rewrite 11-11 Split Horizon 11-11 Hairpinning 11-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide x OL-23400-01 - Cisco 3845 | Software Guide - Page 11
11-29 Configuring Command Macros 12-1 Understanding Command Macros 12-1 Configuring Command Macros 12-1 Default Command Macro Configuration 12-2 Command Macro Configuration Guidelines 12-2 Port Becomes the Root Switch or Root Port 13-7 Cisco ME 3800X and 3600X Switch Software Configuration Guide xi - Cisco 3845 | Software Guide - Page 12
Standard Switches 14-7 Detecting Unidirectional Link Failure 14-7 Interoperability with IEEE 802.1D STP 14-8 Understanding RSTP 14-8 Port Roles and the Active Topology 14-9 Cisco ME 3800X and 3600X Switch Software Configuration Guide xii OL-23400-01 - Cisco 3845 | Software Guide - Page 13
-Tree Features 15-5 Default Optional Spanning-Tree Configuration 15-5 Optional Spanning-Tree Configuration Guidelines 15-5 Enabling Port Fast 15-5 Enabling BPDU Guard 15-6 Enabling BPDU Filtering 15-7 Enabling EtherChannel Guard 15-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide xiii - Cisco 3845 | Software Guide - Page 14
Guidelines 17-8 Configuring Flex Links 17-8 Configuring VLAN Load Balancing on Flex Links 17-10 Configuring the MAC Address-Table Move Update Feature 17-11 Monitoring Flex Links and the MAC Address-Table Move Update 17-13 Cisco ME 3800X and 3600X Switch Software Configuration Guide xiv OL-23400-01 - Cisco 3845 | Software Guide - Page 15
Storm Control Configuration 19-3 Configuring Storm Control and Threshold Levels 19-3 Configuring Port Blocking 19-5 Default Port Blocking Configuration 19-5 Blocking Flooded Traffic on an Interface 19-5 Configuring EVC MAC Security 19-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide xv - Cisco 3845 | Software Guide - Page 16
UDLD 22-1 Understanding UDLD 22-1 Modes of Operation 22-1 Methods to Detect Unidirectional Links 22-2 Configuring UDLD 22-3 Default UDLD Configuration 22-4 Configuration Guidelines 22-4 Enabling UDLD Globally 22-5 Cisco ME 3800X and 3600X Switch Software Configuration Guide xvi OL-23400-01 - Cisco 3845 | Software Guide - Page 17
R OL-23400-01 Enabling UDLD on an Interface 22-5 Resetting an Interface Disabled by UDLD 22-6 UDLD and Ethernet Flow Points (EFPs) 22-6 Displaying UDLD Status 22-7 Configuring RMON 23-1 Understanding RMON 23-1 Configuring RMON 23-3 Default RMON Configuration 23-3 Configuring RMON Alarms and Events - Cisco 3845 | Software Guide - Page 18
26-18 Applying an IPv4 ACL to a Terminal Line 26-18 Applying an IPv4 ACL to an Interface 26-19 Hardware and Software Treatment of IP ACLs 26-20 Troubleshooting ACLs 26-21 xviii Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 19
Contents 27 C H A P T E R OL-23400-01 IPv4 ACL Configuration Examples 26-22 Numbered ACLs 26-23 Extended ACLs 26-23 Named ACLs 26-24 Time Range Applied to an IP ACL 26-24 Commented IP ACL Entries 26-25 ACL Logging 26-25 Creating Named MAC Extended ACLs 26-26 Applying a MAC ACL to a Layer 2 - Cisco 3845 | Software Guide - Page 20
Class-Based Weighted Fair Queuing 27-19 Priority Queuing 27-20 Input and Output Policy Maps 27-20 Input Policy Maps 27-22 Output Policy Maps 27-22 QoS Treatment for Performance-Monitoring Protocols 27-23 Cisco IP-SLAs Probes 27-23 CPU Traffic 27-23 Configuring QoS 27-24 Default QoS Configuration 27 - Cisco 3845 | Software Guide - Page 21
29-4 Use of Subnet Zero 29-5 Classless Routing 29-5 Configuring Address Resolution Methods 29-7 Define a Static ARP Cache 29-7 Set ARP Encapsulation 29-9 Enable Proxy ARP 29-9 Routing Assistance When IP Routing is Disabled 29-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxi - Cisco 3845 | Software Guide - Page 22
29-36 Configuring EIGRP Interfaces 29-37 Configuring EIGRP Route Authentication 29-38 Configuring EIGRP Stub Routing 29-39 Monitoring and Maintaining EIGRP 29-40 Configuring BGP 29-41 Default BGP Configuration 29-43 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxii OL-23400-01 - Cisco 3845 | Software Guide - Page 23
BFD Echo Mode 29-79 Configuring Multi-VRF CE 29-80 Understanding Multi-VRF CE 29-80 Default Multi-VRF CE Configuration 29-82 Multi-VRF CE Configuration Guidelines 29-82 Configuring VRFs 29-83 Configuring VRF-Aware Services 29-84 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxiii - Cisco 3845 | Software Guide - Page 24
30-5 Enabling HSRP 30-6 Configuring HSRP Priority 30-7 Configuring MHSRP 30-9 Configuring HSRP Authentication and Timers 30-10 Enabling HSRP Support for ICMP Redirect Messages 30-11 Displaying HSRP Configurations 30-11 xxiv Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 25
-23400-01 Configuring Cisco IOS IP SLAs Operations 31-1 Understanding Cisco IOS IP SLAs 31-1 Using Cisco IOS IP SLAs to Measure Network Performance 31-2 IP SLAs Responder and IP SLAs Control Protocol 31-3 Response Time Computation for IP SLAs 31-4 IP SLAs Operation Scheduling 31-5 IP SLAs Operation - Cisco 3845 | Software Guide - Page 26
-7 Configuring IP Multicast Routing 33-8 Default Multicast Routing Configuration 33-8 Multicast Routing Configuration Guidelines 33-9 PIMv1 and PIMv2 Interoperability 33-9 Auto-RP and BSR Configuration Guidelines 33-10 xxvi Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 27
Rendezvous Point 33-22 Manually Assigning an RP to Multicast Groups 33-22 Configuring Auto-RP 33-23 Configuring PIMv2 BSR 33-27 Using Auto-RP and a BSR 33-31 Monitoring the RP Mapping Information 33-32 Troubleshooting PIMv1 and PIMv2 Interoperability Problems 33-32 Configuring Advanced PIM Features - Cisco 3845 | Software Guide - Page 28
IP Multicast Routing 33-46 34 C H A P T E R Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS 34-1 Understanding MPLS Services 34-2 Understanding MPLS VPNs 34-4 VPN Benefits 34-4 Distribution of VPN Routing Information 34-6 Configuring MPLS VPNs 34-7 Default MPLS Configuration 34-7 MPLS VPN - Cisco 3845 | Software Guide - Page 29
and IP SLAs MPLS 34-45 Default MPLS OAM Configuration 34-45 MPLS OAM Configuration Guidelines 34-46 Using LSP Ping for LDP IPv4 FEC 34-46 Using LSP Traceroute for LDP IPv4 FEC 34-48 Using LSP Ping for Pseudowire (AToM VCCV) 34-49 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxix - Cisco 3845 | Software Guide - Page 30
ECMP IP SLAs Tree Trace 34-57 Monitoring and Maintaining MPLS and EoMPLS 34-60 Troubleshooting 35-1 Recovering from a Lost or Forgotten Password 35-2 Procedure with Password Recovery Enabled 35-3 Procedure with Password Recovery Disabled 35-5 Preventing Autonegotiation Mismatches 35-6 SFP Module - Cisco 3845 | Software Guide - Page 31
and Results 36-4 Supported MIBs A-1 MIB List A-1 Using FTP to Access the MIB Files A-2 Working with the Cisco IOS File System, Configuration Files, and Software Images B-1 Working with the Flash File System B-1 Displaying Available File Systems B-2 Setting the Default File System B-3 Displaying - Cisco 3845 | Software Guide - Page 32
Configuration Mode C-2 Hot Standby Routing Protocol (HSRP) Commands C-2 Global Configuration Mode C-2 IGMP Snooping Commands C-3 Global Configuration Mode C-3 IP Multicast Routing Commands C-3 Privileged EXEC Mode C-3 xxxii Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 33
23400-01 Contents Global Configuration Mode C-3 Interface Configuration Mode C-3 IP Unicast Routing Commands C-4 Privileged EXEC or User EXEC Mode C-4 Global Configuration Mode C-4 Interface Configuration Mode C-5 BGP Router Configuration Mode C-5 Route Map Configuration Mode C-5 VPN Configuration - Cisco 3845 | Software Guide - Page 34
Contents INDEX Show Commands C-10 Global Configuration Mode C-10 Interface Configuration Mode C-10 xxxiv Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 35
required choices, and vertical bars ( | ) separate the alternative elements. • Braces and vertical bars within square brackets ([{ | }]) mean a required choice within an optional element. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxxv - Cisco 3845 | Software Guide - Page 36
in this manual. Caution Means Guide • Installation Note for the Cisco ME 3800X and ME 3600X Switch Power Supply and Fan Modules • Regulatory Compliance and Safety Information for the Cisco ME 3800X and ME 3600X Switches xxxvi Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 37
as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide xxxvii - Cisco 3845 | Software Guide - Page 38
Preface xxxviii Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 39
image. • Metro IP service license. • Metro Aggregation services license. For differences in feature support for each license, see Table 1-2 and Table 1-4 on page 1-10. To install a software image, see the switch release notes and the "Working with the Cisco IOS File System, Configuration Files, and - Cisco 3845 | Software Guide - Page 40
only one IGMP report per multicast router query to the multicast devices (supported only for IGMPv1 or IGMPv2 queries) • IGMP snooping querier support to configure switch to generate periodic IGMP General Query messages Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 41
-based autoconfiguration and image update to download a specified configuration a new image to a large number of switches • DHCP server port-based address allocation for the preassignment of an IP address to a switch port OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-3 - Cisco 3845 | Software Guide - Page 42
discovery, link monitoring, remote fault detection, and remote loopback • Configuration replacement and rollback to replace the running configuration on a switch with any saved Cisco IOS configuration file • Source Specific Multicast (SSM) mapping for multicast applications to provide a mapping of - Cisco 3845 | Software Guide - Page 43
• Support for up to 4094 VLANs for assigning users to VLANs associated with appropriate network resources, traffic patterns, and bandwidth • Support for VLAN IDs in the full 1 to 4094 range allowed by the IEEE 802.1Q standard OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 44
support for IEEE 802.1AB link layer discovery protocol for interoperability in multi-vendor networks. Switches exchange speed, duplex, and power settings with end devices such as IP in the MAC, IP, and TCP/UDP headers Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-6 OL-23400-01 - Cisco 3845 | Software Guide - Page 45
and VLAN interworking. • Pseudowire redundancy to allow service providers to configure their multiprotocol label switching (MPLS) networks to detect network failures and to reroute Layer 2 services to another endpoint. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-7 - Cisco 3845 | Software Guide - Page 46
devices to allow service providers to support multiple VPNs and to overlap IP addresses between VPNs. • Support for MPLS traffic engineering and fast reroute link protection for rerouting LSP traffic around a failed link Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 47
), • MPLS VPN • MST, REP, Flex Links • Ethernet over MPLS (EoMPLS) • Synchronous Ethernet • Pseudowire redundancy • Multi VRF-CE (VRF-Lite) with service awareness (ARP, ping, SNMP, syslog, traceroute, FTP and TFTP) OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-9 - Cisco 3845 | Software Guide - Page 48
K 42 K 2 K 4 K 2 K 4 K 2 K 8 K 4 K Scaled Metro IP Services 64 K 80 K 4 K Metro Aggregation Services 128 K 24 K 2 K Scaled Metro Aggregation Services 256 K 32 K 4 K 2 K 2 K 4 K 2 K 4 K 8 K 8 K 4 K 16 K 1-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 49
review these sections for startup information: • Chapter 2, "Using the Command-Line Interface" • Chapter 3, "Assigning the Switch IP Address and Default Gateway" • Chapter 4, "Configuring Cisco IOS Configuration Engine" OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 1-11 - Cisco 3845 | Software Guide - Page 50
Where to Go Next Chapter 1 Overview 1-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 51
IOS command-line interface (CLI) and how to use it to configure your Cisco ME 3800X and 3600X switch. It contains these sections: • Understanding Command Modes, page 2-1 • Understanding the Help System, page 2-3 • Understanding Abbreviated Commands, page 2-3 • Understanding no and default Forms - Cisco 3845 | Software Guide - Page 52
to privileged EXEC mode, press Ctrl-Z or enter end. Use this mode to configure parameters for the terminal line. For more detailed information on the command modes, see the command reference guide for this release. Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 53
Commands You need to enter only enough characters for the switch to recognize the command as unique. This example shows how to enter the show configuration privileged EXEC command in an abbreviated form: Switch# show conf OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-3 - Cisco 3845 | Software Guide - Page 54
default. Configuration commands can also have a default form. The default form of a command returns the command setting to its default. Most commands are disabled by default, so the default Feature, page 2-5 (optional) Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 55
the Command History Buffer Size By default, the switch records ten command lines in its history buffer. You can alter this number for a current terminal session or line, enter the no history line configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-5 - Cisco 3845 | Software Guide - Page 56
disable it, re-enable it, or configure a specific line to have enhanced editing. These procedures of the command line. Press Ctrl-E. Move the cursor to the end of the command line. Press Esc B. Move the cursor back one Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-6 OL-23400-01 - Cisco 3845 | Software Guide - Page 57
the word to the left of the cursor. Press Esc D. Delete from the cursor to the end of the word. Capitalize or lowercase words or capitalize a set of letters. Press Esc C. Capitalize terminals such as VT100s. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-7 - Cisco 3845 | Software Guide - Page 58
before pressing the Return key to execute the command. The dollar sign ($) appears at the end of the line to show that the line has been scrolled to the right: Switch(config)# GigabitEthernet0/2 is up, line protocol is up Cisco ME 3800X and 3600X Switch Software Configuration Guide 2-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 59
power on the switch as described in the hardware installation guide that shipped with your switch. Then, to understand the boot process and the options available for assigning IP information, see Chapter 3, "Assigning the Switch IP Address and Default Gateway." If your switch is already configured - Cisco 3845 | Software Guide - Page 60
Accessing the CLI Chapter 2 Using the Command-Line Interface 2-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 61
physical memory is mapped, its quantity, its speed, and so forth. • Performs power-on self-test (POST) for the CPU subsystem. It tests the CPU DRAM and the portion of the flash device that makes up the flash file system. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-1 - Cisco 3845 | Software Guide - Page 62
Switch IP Address and Default Gateway • Initializes the flash file system on the system board. • Loads a default operating system software image into memory and 127.EY 16920593 bytes available (41011183 bytes used) Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 63
password Hostname Telnet password Default Setting No IP address or subnet mask are defined. No default gateway is defined. No password is defined. The factory-assigned default hostname is Switch. No password is defined. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-3 - Cisco 3845 | Software Guide - Page 64
router does not forward broadcast packets, but it forwards packets based on the destination IP address in the received packet. DHCP-based autoconfiguration replaces reclaim the IP addresses that they offered to the client. Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 65
IP configuration and a new image to one or more switches in your network. The switch (or switches) downloading the new configuration and the new image can be blank (or only have a default factory configuration loaded). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 66
the file) settings. For procedures to configure the switch as a DHCP server, see the "Configuring DHCP-Based Autoconfiguration" section on page 3-6 and the "Configuring DHCP" section of the "IP addressing and Services" section of the Cisco IOS IP Configuration Guide, Release 12.2. After you install - Cisco 3845 | Software Guide - Page 67
the Switch IP Address and Default Gateway Assigning Switch Information If your DHCP server is a Cisco device, see the "Configuring DHCP" section of the "IP Addressing and Services" section of the Cisco IOS IP Configuration Guide, Release 12.2 for additional information about configuring DHCP. DHCP - Cisco 3845 | Software Guide - Page 68
10.0.0.2: router(config-if)# ip helper-address 20.0.0.2 router(config-if)# ip helper-address 20.0.0.3 router(config-if)# ip helper-address 20.0.0.4 On interface 20.0.0.1 router(config-if)# ip helper-address 10.0.0.1 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 69
the file, the switch uses the hostname in the DHCP reply. If the hostname is not specified in the DHCP reply, the switch uses the default Switch as its hostname. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-9 - Cisco 3845 | Software Guide - Page 70
Example Configuration Figure 3-3 shows a sample network for retrieving IP information by using DHCP-based autoconfiguration. Figure 3-3 DHCP-Based Autoconfiguration Network Example Switch 1 Switch 2 Switch 3 Switch 4 00e0.9f1e.2001 00e0.9f1e.2002 00e0.9f1e.2003 00e0.9f1e.2004 Cisco router 10 - Cisco 3845 | Software Guide - Page 71
requires that you configure at least two switches: One switch acts as a DHCP and TFTP server. The client switch is configured to download either a new configuration file or a new configuration file and a new image file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-11 - Cisco 3845 | Software Guide - Page 72
network network-number mask prefix-length Step 5 Step 6 Step 7 Step 8 Step 9 default-router address option 150 address exit tftp-server flash:filename.text interface interface-id Step 10 Step 11 Step 12 Step 13 no switchport ip address address mask end copy running-config startup-config Purpose - Cisco 3845 | Software Guide - Page 73
default router for a DHCP client. Specify the IP address of the TFTP server. Specify the path to the text file that describes the path to the image file. Upload the text file to the switch. Upload the tarfile for the new image to the switch. Return to global configuration mode. Specify the Cisco IOS - Cisco 3845 | Software Guide - Page 74
:/private-config.text Enable Break: no Manual Boot: no HELPER path-list: NVRAM/Config file buffer size: 32768 Timeout for Config Download: 300 seconds Config Download via DHCP: enabled (next boot: enabled) 3-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 75
address, use the no ip default-gateway global configuration command. For information on setting the switch system name, protecting access to privileged EXEC commands, and setting time and calendar services, see Chapter 5, "Administering the Switch." OL-23400-01 Cisco ME 3800X and 3600X Switch - Cisco 3845 | Software Guide - Page 76
! interface GigabitEthernet0/3 port-type nni ! port-type nni ! interface TenGigabitEthernet0/1 port-type nni ! interface TenGigabitEthernet0/2 port-type nni ! interface Vlan1 no ip address shutdown ! 3-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 77
B, "Working with the Cisco IOS File System, Configuration Files, and Software Images." Modifying the Startup Configuration • Default Boot Configuration, page 3-18 • Automatically Downloading a Configuration File, page 3-18 • Booting Manually, page 3-19 • Booting a Specific Software Image, page 3-19 - Cisco 3845 | Software Guide - Page 78
command changes the setting of the CONFIG_FILE environment variable. (Optional) Save your entries in the configuration file. To return to the default setting, use the no boot config-file global configuration command. 3-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 79
Assigning the Switch IP Address and Default Gateway Modifying the Startup Configuration Booting Manually By default, the switch automatically boots; however, you can configure it to manually boot. Beginning in privileged EXEC mode, follow these steps to configure the switch to manually boot during - Cisco 3845 | Software Guide - Page 80
an environment variable. • Data that controls code, which is responsible for reading the Cisco IOS configuration file. For example, the name of the Cisco IOS configuration file can be stored as an environment variable. 3-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 81
the switch is used less), or you can synchronize a reload network-wide (for example, to perform a software upgrade on all switches in the network). Note A scheduled reload must take place within approximately 24 days. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-21 - Cisco 3845 | Software Guide - Page 82
Switch IP Address and Default Gateway Configuring a Scheduled Reload To configure your switch configuration information to the startup configuration (copy running-config startup-config). If your switch is configured for manual Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 83
Chapter 3 Assigning the Switch IP Address and Default Gateway Scheduling a Reload of the Software Image Displaying Scheduled Reload Information To display reload (if it was specified when the reload was scheduled). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 3-23 - Cisco 3845 | Software Guide - Page 84
Scheduling a Reload of the Software Image Chapter 3 Assigning the Switch IP Address and Default Gateway 3-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 85
Configuration Engine supports an embedded Directory Service. In this mode, no external directory or other data store is required. In server mode, the Configuration Engine supports the use of a user-defined external directory. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 86
Understanding Cisco Configuration Engine Software Chapter 4 Configuring Cisco IOS Configuration Engine Figure 4-1 Configuration Engine Architectural Overview Service provider network Configuration engine Data service directory Configuration server Event service Web-based user interface - Cisco 3845 | Software Guide - Page 87
recognize only event subject-names that match those configured in Cisco IOS software; for example, cisco.cns.config.load. You can use the namespace mapping service to designate events by using any desired naming convention. When you have populated your data store with your subject names, NSM changes - Cisco 3845 | Software Guide - Page 88
Understanding Cisco Configuration Engine Software Chapter 4 Configuring Cisco IOS Configuration Engine DeviceID Each configured switch participating on the event bus has a unique DeviceID, which is analogous to the switch source address so that the switch can be targeted as a specific destination - Cisco 3845 | Software Guide - Page 89
IOS agent. The Cisco IOS agent feature supports the switch by providing these features: • Initial Configuration, page 4-5 • Incremental (Partial) Configuration, page 4-6 • Synchronized Configuration, page 4-6 Initial Configuration When the switch first comes up, it attempts to get an IP address - Cisco 3845 | Software Guide - Page 90
Configuring Cisco IOS Agents Chapter 4 Configuring Cisco IOS Configuration Engine Incremental (Partial) Configuration After the network is running, new services can be added by using the Cisco IOS agent. Incremental (partial) configurations can be sent to the switch. The actual configuration can - Cisco 3845 | Software Guide - Page 91
4 Configuring Cisco IOS Configuration Engine Configuring Cisco IOS Agents Table 4-1 Prerequisites for Enabling Automatic Configuration Device Access switch Distribution switch DHCP server TFTP server CNS Configuration Engine Required Configuration Factory default (no configuration file) • IP - Cisco 3845 | Software Guide - Page 92
IOS CNS agent on the switch. You can enable the Cisco IOS agent with these commands: • The cns config initial global configuration command enables the Cisco IOS agent and initiates an initial configuration on the switch. Cisco ME 3800X and 3600X Switch Software Configuration Guide 4-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 93
subinterface-number, specify the point-to-point subinterface number that is used to search for active DLCIs. • For interface [interface-type], enter the type of interface. • For line line-type, enter the line type. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 4-9 - Cisco 3845 | Software Guide - Page 94
Configuring Cisco IOS Agents Chapter 4 Configuring Cisco IOS Configuration Engine Step 8 Step 9 Step 10 Step 11 Step 12 Step 13 Command template name [ ... name] exit hostname name ip route network-number cns id interface num {dns-reverse | ipaddress | mac-address} [event] [image] or cns id { - Cisco 3845 | Software Guide - Page 95
Purpose Enable the Cisco IOS agent, and initiate an initial configuration. • For {hostname | ip-address}, enter the hostname or the IP address of the configuration server. • (Optional) For port-number, enter the port number of the configuration server. The default port number is 80. • (Optional - Cisco 3845 | Software Guide - Page 96
mode, follow these steps to enable the Cisco IOS agent and to initiate a partial configuration on the switch: Step 1 Step 2 Command configure terminal cns config partial {ip-address | hostname} [port-number] [source ip-address] Step 3 Step 4 Step 5 Step 6 end show cns config stats or show cns - Cisco 3845 | Software Guide - Page 97
hostname of the event gateway. cns trusted-server all-agents {hostname} Specify a trusted server for CNS agent. no cns aaa enable cns event {ip-address} {port number} Disable AAA authentication on the event gateway. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 4-13 - Cisco 3845 | Software Guide - Page 98
Displaying CNS Configuration Chapter 4 Configuring Cisco IOS Configuration Engine Command Step 5 cns image retry {number} Step 6 cns image server {ip-address} status {ip-address} Step 7 end Purpose Specify the number of times to retry and download the image. Download the image from the server to - Cisco 3845 | Software Guide - Page 99
heart of the time service is the system clock. This clock runs from the moment the system starts up and keeps track of the date and time. The system clock can then be set from these sources: • NTP • Manual configuration OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-1 - Cisco 3845 | Software Guide - Page 100
A is the NTP master, with Switches B, C, and D configured in NTP server mode, in server association with Switch A. Switch E is configured as an NTP peer to the upstream and downstream switches, Switch B and Switch F. Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 101
global configuration commands are not available. • Default NTP Configuration, page 5-4 • Configuring NTP Authentication, page 5-4 • Configuring NTP Associations, page 5-5 • Configuring NTP Broadcast Service, page 5-6 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-3 - Cisco 3845 | Software Guide - Page 102
up to eight characters for the key. The switch does not synchronize to a device unless both have one of these authentication keys, and the key number is specified by the ntp trusted-key key-number command. Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 103
Step 6 Step 7 end show running-config copy running-config startup-config Purpose Specify one or more key numbers (defined in Step 3) that a peer NTP device must provide in its NTP packets for this switch to synchronize to it. By default, no trusted keys are defined. For key-number, specify the key - Cisco 3845 | Software Guide - Page 104
to use IP broadcast messages instead. This alternative reduces configuration complexity because each device can simply be configured to send or receive broadcast messages. However, the information flow is one-way only. Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-6 OL-23400-01 - Cisco 3845 | Software Guide - Page 105
receive NTP broadcast packets, and enter interface configuration mode. Enable the interface to receive NTP broadcast packets. By default, no interfaces receive NTP broadcast packets. Return to global configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-7 - Cisco 3845 | Software Guide - Page 106
microseconds Step 6 Step 7 Step 8 end show running-config copy running-config startup-config Purpose (Optional) Change the estimated access-list-number, enter a standard IP access list number from 1 to 99. Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 107
] Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Create the access list. • For access-list-number, enter the number specified in Step 2. • Enter the permit keyword to permit access if the conditions are matched. • For source, enter the IP address of the - Cisco 3845 | Software Guide - Page 108
Step 1 Step 2 Command configure terminal ntp source type number Step 3 Step 4 Step 5 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Specify the interface type and number from which the IP source address is taken. By default, the source address - Cisco 3845 | Software Guide - Page 109
. • For month, specify the month by name. • For year, specify the year (no abbreviation). This example shows how to manually set the system clock to 1:32 p.m. on July 23, 2001: Switch# clock set 13:32:00 23 July 2001 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-11 - Cisco 3845 | Software Guide - Page 110
mode, follow these steps to manually configure the time zone: Step 1 Step 2 Command configure terminal clock timezone zone hours-offset [minutes-offset] Step 3 Step 4 Step 5 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Set the time zone - Cisco 3845 | Software Guide - Page 111
number of minutes to add during summer time. The default is 60. end Return to privileged EXEC mode. show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. The first part April at 02:00 and ends on the last Sunday in - Cisco 3845 | Software Guide - Page 112
.2 and the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2. • Default System Name and Prompt Configuration, page 5-15 • Configuring a System Name, page 5-15 • Understanding DNS, page 5-15 5-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 113
system name: Step 1 Step 2 Step 3 Step 4 Step 5 Command configure terminal hostname name end show running-config copy running-config startup-config Purpose Enter global configuration mode. Manually configure a system name. The default setting is switch. The name must follow the rules for ARPANET - Cisco 3845 | Software Guide - Page 114
Step 4 Step 5 Step 6 Step 7 Command configure terminal ip domain-name name ip name-server server-address1 [server-address2 ... server-address6] ip domain-lookup end show running-config copy running-config startup-config Purpose Enter global configuration mode. Define a default domain name that the - Cisco 3845 | Software Guide - Page 115
query is made to map the name to an IP address. The default domain name is the value set by the ip domain-name global configuration command. If there is a period (.) in the hostname, the Cisco IOS software looks up the IP address without appending any default domain name to the hostname. To remove - Cisco 3845 | Software Guide - Page 116
telnet 172.2.5.4 Trying 172.2.5.4... Connected to 172.2.5.4. Escape character is '^]'. This is a secure site. Only authorized users are allowed. For access, contact technical support. User Access Verification Password: 5-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 117
configure a login banner: Step 1 Step 2 Step 3 Step 4 Step 5 Command configure terminal banner login c message c end show running-config copy running-config startup-config Purpose Enter global configuration manually number 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-19 - Cisco 3845 | Software Guide - Page 118
MAC addresses supported on all ports, you can connect any port on the switch to individual workstations, repeaters, switches, routers, or address learning on a per-VLAN basis. Customers in a service provider network can tunnel a large number of MAC addresses through the network and fill up the - Cisco 3845 | Software Guide - Page 119
vlan vlan-id] Step 3 Step 4 Step 5 end show mac address-table aging-time copy running-config startup-config Purpose Enter global configuration mode. Set the length of time that a dynamic -table dynamic vlan vlan-id). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-21 - Cisco 3845 | Software Guide - Page 120
informs to send SNMP informs to the host. • Specify the SNMP version to support. Version 1, the default, is not available with informs. • For community-string, specify the string to address change notification feature. 5-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 121
mac-notification change {added | removed} end show mac address-table notification change interface show running-config copy running-config startup-config Purpose Enter the trap interval time privileged EXEC commands. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-23 - Cisco 3845 | Software Guide - Page 122
informs to send SNMP informs to the host. • Specify the SNMP version to support. Version 1, the default, is not available with informs. • For community-string, specify the string to mac-move privileged EXEC commands. 5-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 123
to support. Version 1, the default, default is 120 seconds. end Return to privileged EXEC mode. show mac address-table notification threshold show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco - Cisco 3845 | Software Guide - Page 124
Address Entries A static address has these characteristics: • It is manually entered in the address table and must be manually removed. • It can be a unicast or multicast address. specified with the interface-id option. 5-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 125
, one of these messages appears: % Only unicast addresses can be configured to be dropped % CPU destined address cannot be configured as drop address • Packets that are forwarded to the CPU are also not supported. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 5-27 - Cisco 3845 | Software Guide - Page 126
. Before you disable MAC address learning be sure that you are familiar with the network topology and the switch system configuration. Disabling MAC address learning on a VLAN could cause flooding in the network. 5-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 127
1 to 8000. end Return to privileged EXEC mode. show mac address-table learning [vlan Verify the configuration. vlan-id] copy running-config startup-config (Optional) Save your entries in the configuration file. To reenable MAC address learning on a VLAN or bridge, use the default mac address - Cisco 3845 | Software Guide - Page 128
Description Displays the number of addresses IP interface. ARP entries added manually to the table do not age and must be manually removed. For CLI procedures, see the Cisco IOS Release 12.2 documentation on Cisco.com. 5-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 129
all Ethernet ports send data based on a reference clock. All devices supporting SyncE must send and receive data in cycles of fixed size and duration. The data size depends on the (off), or in a holdover state (amber). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-1 - Cisco 3845 | Software Guide - Page 130
supports a PHY-recovered clock only from the small form-factor pluggable (SFP+) uplink ports with 10 Gigabit SFP+ or 1000BASE-X fiber SFP modules. All uplink and downlink ports transmit data failures within the segment. Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 131
1 Data path Timing path Priority 1 Router 1 REP Edge Port REP Edge Port Router 2 Clock Reference 281356 Figure 6-2 shows a failure in the timing network, a broken link in the REP segment between Switch 4 and Router 1. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 132
before considering the source as available in the selection process. The default time is 300 seconds. Configure wait-to-restore timeout by entering the network-clock-select wait-to-restore global configuration command. Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 133
and receiving T1 and E1 timing signals. You can configure all Ethernet ports to send data referenced to the BITS recovered clock. The BITS signal not supported on 1 Gigabit Ethernet copper SFPs for the first release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-5 - Cisco 3845 | Software Guide - Page 134
Ethernet ports for SYNC output: • For priority, the range is from 1 to 15, with 1 being the highest priority and 15 the lowest. • For port number: - Enter 0 for TenGigabitEthernet 0/1 - Enter 1 for TenGigabitEthernet 0/2 Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-6 OL-23400-01 - Cisco 3845 | Software Guide - Page 135
configure terminal network-clock-select option {option1 | option2} Purpose Enter global configuration mode. Configure the EEC option.: • option1-Select E1 as the input clock rate. • option2-Select T1 as the input clock rate OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 136
encoding • line-build-out length-Select a line length: - 0-133ft - 133-266ft - 266-399ft - 399-533ft - 533-655ft controller BITS shutdown Shut down the BITS controller. end Return to privileged EXEC mode. Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 137
default E1 or T1 values. Use the no form of each command to remove the configuration or return to the default. This example configures end configuration. (Optional) Save your entries in the switch startup configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 138
you configure REP. Step 1 Step 2 Command configure terminal network-clock-select priority SYNCE port number default is 300 seconds. Note This command is valid only when SyncE is configured with the REP workaround. 6-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 139
startup configuration file. Use the no versions of the commands to disable the REP workaround segment selection or return to the default settings. This example configures : Priority Source Type 01 Te0/2 SYNCE OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 6-11 - Cisco 3845 | Software Guide - Page 140
State is Automatic hold-timeout : infinite ESMC/SSM workaround using REP not configured Measured offset freq for input BITS is +0.0ppm (3.8 ppm resolution) Measured freq for current path (T4 DPLL) is +0.0ppm 6-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 141
display (the LED is normally off, meaning no alarm). See the Cisco ME-3800X and ME 3600X Hardware Installation Guide for information about the LEDs. The alarm trigger setting is open or closed when current does flow. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 7-1 - Cisco 3845 | Software Guide - Page 142
show env alarm-contact privileged EXEC command. For more detailed information about the alarm commands, see the command reference for this release. Note The switch supports the CISCO-ENTITY-ALARM-MIB for these alarms. Cisco ME 3800X and 3600X Switch Software Configuration Guide 7-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 143
severity major Switch(config)# alarm-contact 2 trigger closed Switch(config)# end Switch(config)# show env alarm-contact Switch# show env alarm-contact not asserted Description: Severity: critical Trigger: closed OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 7-3 - Cisco 3845 | Software Guide - Page 144
Configuring Switch Alarms Chapter 7 Configuring the Switch External Alarms Cisco ME 3800X and 3600X Switch Software Configuration Guide 7-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 145
, you can also assign a specific privilege level (with associated rights and privileges) to each username and password pair. For more information, see the "Configuring Username and Password Pairs" section on page 8-6. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-1 - Cisco 3845 | Software Guide - Page 146
is not encrypted in the configuration file. No password is defined. The default is level 15 (privileged EXEC level). The password is encrypted before it is written to the configuration file. No password is defined. Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 147
enable password password Step 3 Step 4 Step 5 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Define a new password or change an existing password for access to privileged EXEC mode. By default, no password is defined. For password, specify - Cisco 3845 | Software Guide - Page 148
and level, use the no enable password [level level] or no enable secret [level level] global configuration command. To disable password encryption, use the no service password-encryption global configuration command. Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 149
2 Command configure terminal no service password-recovery Step 3 end Step 4 show version Purpose Enter global configuration mode. Disable password recovery. This setting is saved in an area of the flash memory that is accessible by the boot loader and the Cisco IOS image, but it is not part of - Cisco 3845 | Software Guide - Page 150
Step 4 enable password password configure terminal line vty 0 15 Step 5 password password Step 6 end Step 7 show running-config Step 8 copy running-config startup-config Purpose Attach a PC or workstation with emulation software to the switch console port. The default data characteristics of the - Cisco 3845 | Software Guide - Page 151
username authentication for a specific user, use the no username name global configuration command. To disable password checking and allow connections without a password, use the no login line configuration command. Configuring Multiple Privilege Levels By default, the Cisco IOS software has two - Cisco 3845 | Software Guide - Page 152
. The string cannot start with a number, is case sensitive, and allows spaces but ignores leading spaces. By default, no password is defined. Return to 14 configure Switch(config)# enable password level 14 SecretPswd14 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 153
end show running-config or show privilege copy running-config startup-config Purpose Enter global configuration mode. Select the virtual terminal line on which to restrict access. Change the default the range is 0 to 15. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-9 - Cisco 3845 | Software Guide - Page 154
network access server along with other Cisco routers and access servers. A network access server provides connections to a single user, to a network or subnetwork, and to interconnected networks as shown in Figure 8-1. 8-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 155
between the switch and the TACACS+ daemon are encrypted. You need a system running the TACACS+ daemon software to use TACACS+ on your switch. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-11 - Cisco 3845 | Software Guide - Page 156
and TACACS+ to work on the console port. For information about the command, see the Cisco IOS Security Command Reference, Release 12.2: http://www.cisco.com/en/US/docs/ios/12_2/security/command/reference/fsecur_r.html 8-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 157
, specify the name or IP address of the host. • (Optional) For port integer, specify a server port number. The default is port 49. The configure the same key on the TACACS+ daemon for encryption to be successful. Enable AAA. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 158
Controlling Switch Access with TACACS+ Chapter 8 Configuring Switch-Based Authentication Step 4 Step 5 Step 6 Step 7 Step 8 Command aaa group server tacacs+ group-name server ip-address end show tacacs copy running-config startup-config Purpose (Optional) Define the AAA server-group with a group - Cisco 3845 | Software Guide - Page 159
method1 [method2...] global configuration command. To either disable TACACS+ authentication for logins or to return to the default value, use the no login authentication {default | list-name} line configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-15 - Cisco 3845 | Software Guide - Page 160
form of accounting records. Each accounting record contains accounting attribute-value (AV) pairs and is stored on the security server. This data can then be analyzed for network management, client billing, or auditing. 8-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 161
access. RADIUS clients run on supported Cisco routers and switches. Clients send authentication requests to a central RADIUS server, which contains all user authentication and network service access information. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-17 - Cisco 3845 | Software Guide - Page 162
generally binds a user to one service model. Figure 8-2 Transitioning from RADIUS to TACACS+ Services R1 RADIUS server R2 RADIUS server Remote PC T1 TACACS+ server T2 TACACS+ server 86891 8-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide Workstation OL-23400-01 - Cisco 3845 | Software Guide - Page 163
Privileged Access and Network Services, page 8-26 (optional) • Starting RADIUS Accounting, page 8-27 (optional) • Configuring Settings for All RADIUS Servers, page 8-28 (optional) • Configuring the Switch to Use Vendor-Specific RADIUS Attributes, page 8-28 (optional) OL-23400-01 Cisco ME 3800X and - Cisco 3845 | Software Guide - Page 164
or IP address, hostname and specific UDP port numbers, or their IP address and specific UDP port numbers. The combination of the IP address and the UDP port number creates a unique identifier, allowing different ports to be individually defined as RADIUS hosts providing a specific AAA service. This - Cisco 3845 | Software Guide - Page 165
-model radius-server host {hostname | ip-address} [auth-port port-number] [acct-port port-number] [timeout seconds] [retransmit retries] [key string] Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Enable AAA authentication - Cisco 3845 | Software Guide - Page 166
in privileged EXEC mode, follow these steps to configure login authentication. This procedure is required. Step 1 Step 2 Command configure terminal aaa new-model Purpose Enter global configuration mode. Enable AAA. 8-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 167
Chapter 8 Configuring Switch-Based Authentication Controlling Switch Access with RADIUS Step 3 Command aaa authentication login {default | list-name} method1 [method2...] Step 4 line [console | tty | vty] line-number [ending-line-number] Purpose Create a login authentication method list. • To - Cisco 3845 | Software Guide - Page 168
for the same server if each entry has a unique identifier (the combination of the IP address and UDP port number), allowing different ports to be individually defined as RADIUS hosts providing a specific AAA service. If you configure two different host entries on the same RADIUS server for the same - Cisco 3845 | Software Guide - Page 169
ip-address end show running-config Purpose Enter global configuration mode. Specify the IP address or hostname of the remote RADIUS server host. • (Optional) For auth-port port-number EXEC mode. Verify your entries. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-25 - Cisco 3845 | Software Guide - Page 170
: Step 1 Step 2 Command configure terminal aaa authorization network radius Purpose Enter global configuration mode. Configure the switch for user RADIUS authorization for all network-related service requests. 8-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 171
accounting for each Cisco IOS privilege level and for network services: Step 1 Step 2 Step 3 Command configure terminal aaa accounting network start-stop radius aaa accounting exec start-stop radius Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Enter - Cisco 3845 | Software Guide - Page 172
can then be used for RADIUS. For example, this AV pair activates Cisco's multiple named ip address pools feature during IP authorization (during PPP IPCP address assignment): cisco-avpair= "ip:addr-pool=first" 8-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 173
running-config startup-config (Optional) Save your entries in the configuration file. For a complete list of RADIUS attributes or more information about vendor-specific attribute 26, see the "RADIUS Attributes" appendix in the Cisco IOS Security Configuration Guide, Release 12.2. Configuring the - Cisco 3845 | Software Guide - Page 174
Release 12.2: http://www.ciscosystems.com/en/US/docs/ios/12_2sb/feature/guide/sbrdldbl.html Displaying the RADIUS Configuration To display the RADIUS configuration, use the show running-config privileged EXEC command. 8-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 175
Examples" section in the "Security Server Protocols" chapter of the Cisco IOS Security Configuration Guide, Release 12.2, at this URL: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfkerb.html For complete syntax and usage information for the commands used in this - Cisco 3845 | Software Guide - Page 176
characters. A daemon that is running on a network host. Users and network services register their identity with the Kerberos server. Network services query the Kerberos server to authenticate to other network services. 8-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 177
A Kerberos server can be a Cisco ME switch that is configured as a network security server and that can authenticate remote users by using the Kerberos protocol. Although you can customize Kerberos in a number of ways, remote users attempting to access network services must pass through three layers - Cisco 3845 | Software Guide - Page 178
instructions about how to authenticate to a network service, see the "Authenticating to Network Services" section in the "Security Server Protocols" chapter of the Cisco IOS Security Configuration Guide, Release 12.2, at this URL: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide - Cisco 3845 | Software Guide - Page 179
. For instructions, see the "Kerberos Configuration Task List" section in the "Security Server Protocols" chapter of the Cisco IOS Security Configuration Guide, Release 12.2, at this URL: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfkerb.html Configuring the Switch - Cisco 3845 | Software Guide - Page 180
8-39 For SSH configuration examples, see the "SSH Configuration Examples" section in the "Configuring Secure Shell" chapter of the Cisco IOS Security Configuration Guide, Cisco IOS Release 12.2, at this URL: http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfssh.html Note For - Cisco 3845 | Software Guide - Page 181
Switch to Run SSH Follow these steps to set up your switch to run SSH: 1. Download the cryptographic software image from Cisco.com. This step is required. For more information, see the release notes for this release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 8-37 - Cisco 3845 | Software Guide - Page 182
do not enter this command or do not specify a keyword, the SSH server selects the latest SSH version supported by the SSH client. For example, if the SSH client supports SSHv1 and SSHv2, the SSH server selects SSHv2. 8-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 183
Copy Protocol Step 3 Command ip ssh {timeout seconds | authentication-retries number} Step 4 Step 5 Step 6 end show ip ssh or show ssh copy running-config startup-config Purpose Configure the SSH control parameters: • Specify the time-out value in seconds; the default is 120 seconds. The range - Cisco 3845 | Software Guide - Page 184
IOS Security Configuration Guide: Securing User Services, Release 12.4. http://www.cisco.com/en/US/docs/ios/sec_user_services/configuration/guide/sec_secure_copy_ps6350 _TSD_Products_Configuration_Guide_Chapter.html 8-40 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 185
Cisco IOS Interface Command Reference, Release 12.2. Understanding Interface Types This section describes the different types of interfaces supported • EtherChannel Port Groups, page 9-4 • Connecting Interfaces, page 9-5 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-1 - Cisco 3845 | Software Guide - Page 186
Port Type All Cisco ME 3800X and 3600X ports are network node interfaces (NNIs), which are typically connected to a router or to another switch. The default status for an NNI is administratively up to allow a service provider remote access to the switch during initial configuration. Port-Based VLANs - Cisco 3845 | Software Guide - Page 187
resource limitations are reached. For more information about IP unicast and multicast routing and routing protocols, see Chapter 29, "Configuring IP Unicast Routing" and Chapter 33, "Configuring IP Multicast Routing." OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-3 - Cisco 3845 | Software Guide - Page 188
in Layer 3 mode, you can configure routing across SVIs. Although the switch supports a total of 1005 VLANs (and SVIs), the interrelationship between the number of SVIs and routed ports and the number of other features being configured might impact CPU performance because of hardware limitations. See - Cisco 3845 | Software Guide - Page 189
possible, to maintain high performance, forwarding is done by the switch hardware. However, only IP Version 4 packets with Ethernet II encapsulation can be routed in hardware. The switch routes only IP traffic. When IP routing Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-5 - Cisco 3845 | Software Guide - Page 190
interface configuration mode. • Type-Gigabit Ethernet (gigabitethernet or gi) for 10/100/1000 Mb/s Ethernet ports, or small form-factor pluggable (SFP) module Gigabit Ethernet interfaces. • Module number-The module or slot number on the switch (always 0 on the Cisco ME switch). • Port number-The - Cisco 3845 | Software Guide - Page 191
the configuration of the interfaces in the range. (Optional) Save your entries in the configuration file. When using the interface range global configuration command, note these guidelines: • Valid entries for port-range: OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 192
global configuration command string, you must use the define interface-range global configuration command to define the macro. Beginning in privileged EXEC mode, follow these steps to define an interface range macro: Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-8 OL-23400-01 - Cisco 3845 | Software Guide - Page 193
: Switch# configure terminal Switch(config)# define interface-range enet_list gigabitethernet0/1 - 2 Switch(config)# end Switch# show running-config | include define define interface-range enet_list GigabitEthernet0/1 - 2 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-9 - Cisco 3845 | Software Guide - Page 194
an EFP service instance on the Ethernet management port. When connecting a PC to the Ethernet management port, you must assign an IP address. Connect the Ethernet management port to the PC as shown in Figure 9-2. 9-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 195
, data packet loops occur between the ports, which disrupts the switch and network operation. Configure route filters to avoid routes between the Ethernet management port and the network ports and to prevent the loops. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 196
the show interfaces gigabitethernet 0 privileged EXEC command. TFTP and the Ethernet Management Port Use the commands in Table 1 when using TFTP to download or upload a configuration file to the boot loader. 9-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 197
-url filesystem:/destination-fileurl Copies a Cisco IOS image from the TFTP server to the configuration information related to the affected interface might be lost, and the interface is returned to its default configuration. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 198
at 1000 Mb/s. • You cannot configure speed on SFP module ports or on 10 Gigabit Ethernet ports, but you can configure speed to not negotiate (nonegotiate) if connected to a device that does not support autonegotiation. 9-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 199
-FX SFP module is in the SFP module slot, you can configure duplex mode to half or full. Although the auto keyword is available, it puts the interface in half-duplex mode (the default for this SFP module) because the 100BASE-FX SFP module does not support autonegotiation. • If both ends of - Cisco 3845 | Software Guide - Page 200
6 Step 7 end show interfaces interface-id copy running-config startup-config Purpose Enter the appropriate speed parameter for the interface: • Enter 10, 100, or 1000 to set a specific speed for the interface. The 1000 keyword is available only for 10/100/1000 Mb/s ports or SFP module ports with - Cisco 3845 | Software Guide - Page 201
command. This example shows how to enable IEEE 802.3x flow control on a port: Switch# configure terminal Switch(config)# interface gigabitethernet0/1 Switch(config-if)# flowcontrol receive on Switch(config-if)# end OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-17 - Cisco 3845 | Software Guide - Page 202
installation guide. Auto-MDIX is enabled by default. When you enable auto-MDIX, you must also set the speed and duplex on the interface to auto so that the feature operates correctly. Auto-MDIX is supported on all 10/100 and 10/100/1000 Mb/s interfaces and on Cisco 10/100/1000 BASE-T/TX SFP module - Cisco 3845 | Software Guide - Page 203
about assigning Layer 2 ports to VLANs, see Chapter 10, "Configuring VLANs." • Routed ports: Routed ports are physical ports configured to be in Layer 3 mode by using the no switchport interface configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-19 - Cisco 3845 | Software Guide - Page 204
# configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)# interface gigabitethernet0/2 Switch(config-if)# no switchport Switch(config-if)# ip address 192.20.135.21 255.255.255.0 9-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 205
can display the full list of show commands by using the show ? command at the privileged EXEC prompt.) These commands are fully described in the Cisco IOS Interface Command Reference, Release 12.2. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-21 - Cisco 3845 | Software Guide - Page 206
[interface-id] transceiver [detail | Display these physical and operational status about an SFP module: dom-supported-list | module number | properties | • interface-id-(Optional) Display configuration and status for a threshold-table] specified physical interface. • detail-(Optional) Display - Cisco 3845 | Software Guide - Page 207
interface configuration command to enable an interface. To verify that an interface is disabled, enter the show interfaces privileged EXEC command. A disabled interface is shown as administratively down in the display. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 9-23 - Cisco 3845 | Software Guide - Page 208
Monitoring and Maintaining the Interfaces Chapter 9 Configuring Interfaces 9-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 209
router, as shown in Figure 10-1. Because a VLAN is considered a separate logical network, it contains its own bridge MIB information and can support its own implementation of spanning tree. See Chapter 13, "Configuring STP." OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 210
VLAN Accounting VLAN Cisco router Gigabit Ethernet Floor 3 Floor 2 90571 Floor 1 VLANs are often associated with IP subnetworks. For example, all the end stations in a particular IP subnet belong to the same VLAN. Interface VLAN membership on the switch is assigned manually on an interface - Cisco 3845 | Software Guide - Page 211
• Security Association Identifier (SAID) • Bridge identification number for TrBRF VLANs • Ring number for FDDI and TrCRF VLANs • Parent VLAN number for TrCRF VLANs • Spanning Tree Protocol (STP) type for TrCRF VLANs OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-3 - Cisco 3845 | Software Guide - Page 212
see the "Managing the MAC Address Table" section on page 5-19. UNI VLANs The Cisco ME 3800X and 3600X have commands for configuring user network interface (UNI) VLANs to isolate traffic between some ports on a switch. 10-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 213
1006 to 4094) are not saved in the VLAN database. VLANxxxx, where xxxx represents four numeric digits (including leading zeros) equal to the VLAN ID number No range OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-5 - Cisco 3845 | Software Guide - Page 214
bridge 2 VLAN state Default 100001 (100000 plus the VLAN ID) 1500 0 0 active Range 1 to 4294967294 1500 to 9198 0 to1005 0 to1005 active, suspend VLAN Configuration Guidelines • The switch supports 4094 VLANs. • Normal-range Ethernet VLANs are identified with a number between 1 and 1001 - Cisco 3845 | Software Guide - Page 215
zeros to the word VLAN. For example, VLAN0004 is a default VLAN name for VLAN 4. mtu mtu-size (Optional) Change the MTU size. end Return to privileged EXEC mode. show vlan {name vlan-name them to a new VLAN. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-7 - Cisco 3845 | Software Guide - Page 216
Enter configuration commands, one per line. Switch(config)# interface gigabithernet0/1 Switch(config-if)# switchport mode access Switch(config-if)# switchport access vlan 2 Switch(config-if)# end End with CNTL/Z. 10-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 217
across links, use the switchport mode access interface configuration command to disable trunking. • To enable trunking, use the switchport mode trunk interface configuration command to change the interface to a trunk. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-9 - Cisco 3845 | Software Guide - Page 218
Interface VLAN Configuration Feature Default Setting Interface mode switchport mode access Allowed VLAN range VLANs 1 to 4094 Default VLAN (for access ports) VLAN 1 Native VLAN (for IEEE 802.1Q trunks) VLAN 1 10-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 219
interface to the defaults, use the no switchport trunk interface configuration command. To disable trunking, use the switchport mode access interface configuration command to configure the port as a static-access port. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-11 - Cisco 3845 | Software Guide - Page 220
a trunk carries, use the switchport trunk allowed vlan remove vlan-list interface configuration command to remove specific VLANs from the allowed list. Note VLAN 1 is the default VLAN on all trunk ports in all Cisco switches, and it has previously been a requirement that VLAN 1 always be enabled - Cisco 3845 | Software Guide - Page 221
. All VLANs are allowed by default. end Return to privileged EXEC mode. show interfaces interface-id switchport Verify your entries in the Trunking VLANs Enabled field of the display. copy running-config startup-config (Optional) Save your entries in the configuration file. To return to the - Cisco 3845 | Software Guide - Page 222
5 Step 6 Command end show interfaces interface-id switchport copy running-config startup-config Purpose Return to privileged EXEC mode. Verify your entries in the Trunking Native Mode VLAN field. (Optional) Save your entries in the configuration file. To return to the default native VLAN, VLAN - Cisco 3845 | Software Guide - Page 223
of VLANs, blocking different ports for different VLANs. The VLANs keep the traffic separate and maintain redundancy in the event of a lost link. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-15 - Cisco 3845 | Software Guide - Page 224
through 4 retain the default 100Base-T path cost configuration mode. Enter interface configuration mode for Trunk port 2. Set the spanning-tree path cost to 30 for VLANs 2 through 4. Return to global configuration mode. 10-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 225
file. Follow the same steps on Switch B to configure the trunk port for Trunk 1 with a path cost of 30 for VLANs 2 through 4, and configure the trunk port for Trunk 2 with a path cost of 30 for VLANs 8 through 10. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 10-17 - Cisco 3845 | Software Guide - Page 226
Configuring VLAN Trunks Chapter 10 Configuring VLANs 10-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 227
.com/en/US/docs/ios/mcl/allreleasemcl/all_book.html This chapter includes: • Supported EVC Features, page 11-2 • Understanding EVC Features, page 11-3 • Configuring EFPs, page 11-8 • Configuring Other Features on EFPs, page 11-15 • Monitoring EVC, page 11-29 OL-23400-01 Cisco ME 3800X and 3600X - Cisco 3845 | Software Guide - Page 228
Pop symmetric only-the supported rewrite configuration implies egress pushing (adding service instance These Layer 2 port-based features can run with EVC configured on the port: • PAGP • LACP • UDLD • LLDP • CDP • MSTP 11-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 229
can use the same number on different interfaces because service instances on different ports are not related. If you have defined an EVC by entering the ethernet evc evc-id global configuration command, you can associate the EVC with the service instance (optional). There is no default behavior for - Cisco 3845 | Software Guide - Page 230
tag After you have entered an encapsulation method, these keyword options are available in service instance configuration mode: • bridge-domain-Configures a bridge domain • rewrite-Configures Ethernet rewrite criteria 11-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 231
Configuring Ethernet Virtual Connections (EVCs) Understanding EVC Features Table 11-1 Supported host other EFPs that match tagged frames. encapsulation default Configures the default EFP on an interface, acting as a catch- 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-5 - Cisco 3845 | Software Guide - Page 232
domain. When a bridge domain contains a service instance that is part of a split-horizon group, this decreases the number of service instances allowed to be configured in that split-horizon group. The switch supports up to three split-horizon groups plus the default (no group). In Table 11-2, the - Cisco 3845 | Software Guide - Page 233
symmetric service-instance configuration mode command to specify the encapsulation adjustment to be performed on the ingress tag pop 1 symmetric. The switch does not support egress rewrite operations beyond the second VLAN that a 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-7 - Cisco 3845 | Software Guide - Page 234
switch, the number of bridge domains that you can configure depends on the license that is installed on the switch: - The metro services licenses support 4000 bridge domains. - The metro IP services licenses support 2000 bridge domains. - The metro aggregation services license supports 4000 bridge - Cisco 3845 | Software Guide - Page 235
EFPs • The switch does not support overlapping configurations on the same interface and same bridge domain. If you have configured a VLAN range encapsulation, or encapsulation default, or encapsulation any on service instance 1, you cannot configure any other encapsulations that also match - Cisco 3845 | Software Guide - Page 236
(config-if-srv)# bridge-domain 10 Switch (config)# interface gigabitethernet0/2 Switch (config-if)# service instance 1 Ethernet Switch (config-if-srv)# encapsulation dot1q 10 Switch (config-if-srv)# bridge-domain 10 11-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 237
Configuring EFPs Bridge Domains and VLAN Encapsulation Unlike VLANs, the bridge-domain number does not need to match the VLAN encapsulation number. Switch (config)# interface gigabitethernet0/1 Switch (config-if)# service -23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-11 - Cisco 3845 | Software Guide - Page 238
is performed before the service instance 3 Ethernet Switch (config-if-srv)# encapsulation dot1q 10 second-dot1q 20 Switch (config-if-srv)# rewrite ingress pop 1 symmetric Switch (config-if-srv)# bridge-domain 19 11-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 239
). Matching etype ipv4 in service instance 2 is a subset of service instance 1 etype match all (the default when not specified). Switch (config)# interface gigabitethernet 0/1 Switch (config-if)# switchport mode trunk OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-13 - Cisco 3845 | Software Guide - Page 240
does not support egress rewrite service instance 1 Ethernet Switch (config-if-srv)# encapsulation dot1q 10 second-dot1q 20 Switch (config-if-srv)# rewrite ingress pop 1 symmetric Switch (config-if-srv)# bridge-domain 2 11-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 241
(config-if)# switchport mode trunk Switch (config-if)# switchport allowed vlan none Switch (config-if)# service instance 2 ethernet Switch (config-if-srv)# encapsulation dot1q 20 Switch (config-if-srv)# bridge-domain 2 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-15 - Cisco 3845 | Software Guide - Page 242
configure dynamic address aging time per VLAN by entering the mac address-table aging time [0 | 10-1000000] bridge-domain bridge-id. The range is in seconds. An aging time of 0 means that the address aging is disabled. 11-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 243
Original Ethernet frame DA SA Etype Tag Len/Etype Data FCS IEE 802.1Q frame from customer network 74072 DA SA Etype Tag Etype Tag Len/Etype Data FCS Double-tagged frame in service provider infrastructure OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-17 - Cisco 3845 | Software Guide - Page 244
gigabitethernet0/2 Switch (config-if)# service instance 2 Ethernet Switch (config-if-srv)# encapsulation dot1q 30 Switch (config-if-srv)# rewrite ingress pop 1 symmetric Switch (config-if-srv)# bridge-domain 5000 11-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 245
on bridge-domain 5000. The service provider facing port is configured with a service instance on the same bridge (config-if-srv)# bridge-domain 5000 QinQ is also supported when sending packets between an EFP and a switchport trunk 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-19 - Cisco 3845 | Software Guide - Page 246
trunk Switch (config-if)# service instance 10 Ethernet Switch (config-if-srv)# encapsulation dot1q 20 second dot1q 30 Switch (config-if-srv)# rewrite ingress tag pop 2 symmetric Switch (config-if-srv)# bridge-domain 10 11-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 247
CDD0) and send them across the service-provider network. Core switches in the network do not process these packets but forward them as normal (unknown multicast data) packets. Layer 2 protocol data units (PDUs) for the OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-21 - Cisco 3845 | Software Guide - Page 248
Switch B VLAN 40 Trunk ports Trunk ports Service provider Trunk ports Trunk ports VLAN 30 Switch C Switch D VLAN 40 Customer Y Site 1 VLANs 1 to 200 Trunk Asymmetric link Customer Y Site 2 VLANs 1 to 200 101822 11-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 249
/2 Switch (config)# switchport mode trunk Switch (config)# switchport trunk allowed vlan none Switch (config-if)# service instance 10 Ethernet Switch (config-if-srv)# encapsulation untagged, dot1q 200 second-dot1q 300 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-23 - Cisco 3845 | Software Guide - Page 250
and a configuration example. Bridge Domain Routing The switch supports IP routing and multicast routing for bridge domains, including Layer 3 and Layer 2 VPNs, using the (config-if)# service instance 1 Ethernet 11-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 251
-table commands also support bridge domains as service instance 2 Ethernet Switch (config-if-srv)# encapsulation dot1q 2001 Switch (config-if-srv)# rewrite ingress tag pop 1 symmetric Switch (config-if-srv)# bridge-domain 30 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 252
Switch (config-if)# service instance 1 Ethernet Switch (config-if-srv)# encapsulation dot1q 1000 Switch (config-if-srv)# bridge-domain 1000 When data packets are forwarded on the EFP with a single tag (VLAN l0). 11-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 253
Switchport trunk native vlan 10 Bridge domain or 10 Switchport access access vlan 10 Service instance 1 ethernet encapsulation dot1q10 rewrite ingress tag pop 1 symmetric bridge-domain 10 an EFP with no rewrite. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-27 - Cisco 3845 | Software Guide - Page 254
a Switchport and an EFP with no Rewrite 10 20 Bridge domain Service instance 1 ethernet 20 Switchport trunk 10 encapsulation dot1q10 bridge-domain 10 trunk is configured with the access VLAN ID or native VLAN ID. 11-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 255
are supported by service instance (EFPs). If you specify an EFP ID and interface, only data pertaining to that particular EFP is displayed. If you specify only an interface ID, data is displayed for all EFPs on the interface. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 256
number of addresses present for the specified bridge domain. This command displays the learning status for the specified bridge domain. This is an example of output from the show ethernet service Bridge-domain: 10 11-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 257
mac address-table count bridge-domain 10 Mac Entries for BD 10 Dynamic Address Count : 20 Static Address Count : 0 Total Mac Addresses : 20 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 11-31 - Cisco 3845 | Software Guide - Page 258
Monitoring EVC Chapter 11 Configuring Ethernet Virtual Connections (EVCs) 11-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 259
. • Default Command Macro Configuration, page 12-2 • Command Macro Configuration Guidelines, page 12-2 • Creating Command Macros, page 12-3 • Applying Command Macros, page 12-4 • Displaying Command Macros, page 12-5 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 12-1 - Cisco 3845 | Software Guide - Page 260
specific to the interface. Keyword matching is case sensitive. All matching occurrences of the keyword are replaced with the corresponding value. Any full match of a keyword, even if it is part are disabled by default. 12-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 261
exit or end commands or change the command mode by configuration of those interfaces on which the macro is already applied. This example shows how to create a macro that defines the switchport access VLAN and the number 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 12-3 - Cisco 3845 | Software Guide - Page 262
Step 10 Step 11 end show parser macro description [interface interface-id] copy running-config startup-config Purpose Enter global configuration mode. Apply each individual Save your entries in the configuration file. 12-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 263
[interface interface-id] Purpose Displays all configured macros. Displays a specific macro. Displays the configured macro names. Displays the macro description for all interfaces or for a specified interface. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 12-5 - Cisco 3845 | Software Guide - Page 264
Displaying Command Macros Chapter 12 Configuring Command Macros 12-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 265
On the Cisco ME switch, STP is enabled by default on physical Supported Spanning-Tree Instances, page 13-9 • Spanning-Tree Interoperability and Backward Compatibility, page 13-10 • STP and IEEE 802.1Q Trunks, page 13-10 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 266
tree operation is transparent to end stations, which cannot detect designated switch. Spanning tree forces redundant data paths into a standby (blocked) small form-factor pluggable (SFP) modules. Spanning-Tree Topology and Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 267
powered up, each functions as the root switch. Each switch sends a configuration BPDU through all of its ports, or on the Cisco switch receives a configuration BPDU that contains receives a configuration BPDU that are configured with the default priority bridge IDs as VLANs configured on it. Each VLAN - Cisco 3845 | Software Guide - Page 268
ID unique for each VLAN. Support for the extended system ID affects how you manually configure the root switch, the secondary root the forwarding state, it can create temporary data loops. Interfaces must wait for new topology Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 269
the switch learns end-station location performs these functions: • Discards frames received on the interface • Discards frames switched from another interface for forwarding • Does not learn addresses • Receives BPDUs OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 270
. A disabled interface performs these functions: • Discards frames received on the interface • Discards frames switched from another interface for forwarding • Does not learn addresses • Does not receive BPDUs 13-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 271
the default (32768) and Switch A has the lowest MAC address. However, because of traffic patterns, number of forwarding is calculated based on default parameters, the path between source and destination end stations in a switched 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-7 - Cisco 3845 | Software Guide - Page 272
to Retain Connectivity The default for aging dynamic addresses is 5 minutes, the default setting of the mac address-table aging-time global configuration command. However, a to the aging interval entered for the switch. 13-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 273
default spanning-tree mode for the Cisco supports up to 128 spanning-tree instances. In MSTP mode, the switch supports up to 65 MST instances. The number of VLANs that can be mapped to a particular MST instance is unlimited. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 274
13-11 • Spanning-Tree Configuration Guidelines, page 13-11 • Changing the Spanning-Tree Mode., page 13-12 (required) • Disabling Spanning Tree, page 13-13 (optional) • Configuring the Root Switch, page 13-14 (optional) 13-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 275
no spanning-tree vlan vlan-id global configuration command to disable spanning tree on a specific VLAN, and use the spanning-tree vlan vlan-id global configuration command to enable spanning tree on the desired VLAN. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-11 - Cisco 3845 | Software Guide - Page 276
on the switch. • Select pvst to enable PVST+. • Select mst to enable MSTP (and RSTP). For more configuration steps, see Chapter 14, "Configuring MSTP." • Select rapid-pvst to enable rapid PVST+ (the default setting). 13-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 277
procedure is optional. Step 1 Step 2 Step 3 Command configure terminal no spanning-tree vlan vlan-id end Purpose Enter global configuration mode. For vlan-id, the range is 1 to 4094. Return to privileged EXEC mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-13 - Cisco 3845 | Software Guide - Page 278
with the extended system ID support will become the root switch. The extended system ID increases the switch priority value every time the VLAN number is greater than the vlan-id max-age global configuration commands. 13-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 279
backup root switches. Use the same network diameter and hello-time values that you used when you configured the primary root switch with the spanning-tree vlan vlan-id root primary global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-15 - Cisco 3845 | Software Guide - Page 280
ones that you want selected last. If all spanning-tree ports have the same priority value, spanning tree puts the port with the lowest interface number in the forwarding state and blocks the other interfaces. 13-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 281
-priority interface configuration command. For information on how to configure load sharing on trunk ports by using spanning-tree port priorities, see the "Configuring Trunk Ports for Load Sharing" section on page 10-14. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13 - Cisco 3845 | Software Guide - Page 282
information only for ports that are in a link-up operative state. Otherwise, you can use the show running-config privileged EXEC command to confirm the configuration. 13-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 283
to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return to the default setting, use the no spanning-tree vlan vlan-id priority global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-19 - Cisco 3845 | Software Guide - Page 284
to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return to the default setting, use the no spanning-tree vlan vlan-id hello-time global configuration command. 13-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 285
to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return to the default setting, use the no spanning-tree vlan vlan-id max-age global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 13-21 - Cisco 3845 | Software Guide - Page 286
Displaying the Spanning-Tree Status Chapter 13 Configuring STP Displaying the Spanning-Tree Status To display the spanning-tree status, use -tree privileged EXEC command, see the command reference for this release. 13-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 287
this chapter, see the command reference for this release. • Understanding MSTP, page 14-2 • Understanding RSTP, page 14-8 • Configuring MSTP Features, page 14-14 • Displaying the MST Configuration and Status, page 14-27 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-1 - Cisco 3845 | Software Guide - Page 288
within MSTP BPDUs. Because the MSTP BPDU carries information for all instances, the number of BPDUs that need to be processed by a switch to support multiple spanning-tree instances is significantly reduced. 14-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 289
domain. The CIST is formed as a result of the spanning-tree algorithm running between switches that support the IEEE 802.1w, IEEE 802.1s, and IEEE 802.1D protocols. The CIST inside an STP switches and MST regions. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-3 - Cisco 3845 | Software Guide - Page 290
tree topology (for example, switch priority, port VLAN cost, port VLAN priority) can be configured on both the CST instance and the MST instance. MSTP switches use Version 3 RSTP BPDUs to communicate with MSTP switches. 14-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 291
a hop-count mechanism similar to the IP time-to-live (TTL) mechanism. By using the spanning-tree mst max-hops global configuration command, you can configure the maximum hops inside the region and ports at the boundary. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-5 - Cisco 3845 | Software Guide - Page 292
an RSTP or legacy IEEE 802.1Q switch has the sender switch ID. The whole region performs like a single virtual switch by sending a consistent sender switch ID to neighboring switches. In now have a special master role. 14-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 293
no load balancing is possible between A and B. The same problem exists on segment X, but B might transmit topology changes. MST standard, but it is included in this Cisco IOS release. The software checks the consistency of the 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-7 - Cisco 3845 | Software Guide - Page 294
Convergence, page 14-9 • Synchronization of Port Roles, page 14-11 • Bridge Protocol Data Unit Format and Processing, page 14-12 For configuration information, see the "Configuring MSTP Features" section on page 14-14. 14-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 295
configuration command, the edge port immediately transitions to the forwarding state. An edge port is the same as a Port Fast-enabled port, and you should enable it only on ports that connect to a single end station. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 296
B as its root port, and both ends immediately transition to the forwarding state. With default setting that is controlled by the duplex setting by using the spanning-tree link-type interface configuration command. 14-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 297
That port is in the blocking state. • It is an edge port (a port configured to be at the edge of the network). If a designated STP port is in the forwarding state and is . The sequence of events is shown in Figure 14-5. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-11 - Cisco 3845 | Software Guide - Page 298
in the RSTP BPDU to accept the previous proposal. The port role in the agreement message is always set to the root port. 14-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 299
to an 802.1D switch and a configuration BPDU with the TCA bit set is received, the TC-while timer is reset. This behavior is only required to support IEEE 802.1D switches. The RSTP BPDUs information learned on them. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-13 - Cisco 3845 | Software Guide - Page 300
Spanning-tree mode Switch priority (configurable on a per-CIST port basis) Spanning-tree port priority (configurable on a per-CIST port basis) Default Setting Rapid PVST+ (PVST+ and MSTP are disabled). 32768. 128. 14-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 301
network into a large number of regions is not recommended. However, if this situation is unavoidable, we recommend that you partition the switched LAN into smaller LANs interconnected by routers or non-Layer 2 devices. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-15 - Cisco 3845 | Software Guide - Page 302
the configuration revision number. The range is 0 to 65535. Verify your configuration by displaying the pending configuration. Apply all changes, and return to global configuration mode. Enable MSTP. RSTP is also enabled. Step 9 Step 10 Step 11 end show running-config copy running-config startup - Cisco 3845 | Software Guide - Page 303
every time the VLAN number is greater than the priority of the connected switches running older software. The root switch for each spanning-tree instance should be a backbone or distribution switch. Do not configure an access switch as the spanning-tree primary root. OL-23400-01 Cisco ME 3800X and - Cisco 3845 | Software Guide - Page 304
net-diameter, specify the maximum number of switches between any two end stations. The range is 2 configured the primary root switch with the spanning-tree mst instance-id root primary global configuration command. 14-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 305
4 Step 5 end show spanning-tree mst instance-id copy running-config startup-config Purpose Enter global configuration mode. Configure a switch as the number in the forwarding state and blocks the other interfaces. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14 - Cisco 3845 | Software Guide - Page 306
running-config interface privileged EXEC command to confirm the configuration. To return the interface to its default setting, use the no spanning-tree mst instance-id port-priority interface configuration command. 14-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 307
the range is 1 to 200000000; the default value is derived from the media speed of the interface. end Return to privileged EXEC mode. show spanning- startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 308
EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return the switch to its default setting, use the no spanning-tree mst instance-id priority global configuration command. 14-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 309
-time global configuration command. Configuring the Forwarding-Delay Time Beginning in privileged EXEC mode, follow these steps to configure the forwarding-delay time for all MST instances. This procedure is optional. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-23 - Cisco 3845 | Software Guide - Page 310
-tree mst forward-time seconds Step 3 Step 4 Step 5 end show spanning-tree mst copy running-config startup-config Purpose Enter global configuration mode. Configure the forward time for all MST instances. The forward delay is the number of seconds a port waits before changing from its spanning - Cisco 3845 | Software Guide - Page 311
Step 4 Step 5 end show spanning-tree mst copy running-config startup-config Purpose Enter global configuration mode. Specify the number of hops in a region before the BPDU is discarded, and the information held for a port is aged. For hop-count, the range is 1 to 255; the default is 20. Return to - Cisco 3845 | Software Guide - Page 312
-tree detected-protocols privileged EXEC command. To restart the protocol migration process on a specific interface, use the clear spanning-tree detected-protocols interface interface-id privileged EXEC command. 14-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 313
the specified interface. For information about other keywords for the show spanning-tree privileged EXEC command, see the command reference for this release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 14-27 - Cisco 3845 | Software Guide - Page 314
Displaying the MST Configuration and Status Chapter 14 Configuring MSTP 14-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 315
protocol. STP is enabled by default on switch ports. For information on configuring the PVST+ and rapid PVST+, see Chapter 13, "Configuring STP." For information about the page 15-3 • Understanding Loop Guard, page 15-4 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 15-1 - Cisco 3845 | Software Guide - Page 316
configured bridge protocol data units (BPDUs STP ports connected to end stations. If you configuration or the spanning-tree portfast default global configuration portfast bpduguard default global configuration command. an invalid configuration, such enable interface configuration command without also - Cisco 3845 | Software Guide - Page 317
configurations because you must manually put the interface back in service. Use the BPDU guard feature in a service using the spanning-tree portfast bpdufilter default global configuration command. This command prevents interfaces 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 15-3 - Cisco 3845 | Software Guide - Page 318
configuration command. Caution Misuse of the root-guard feature can cause a loss of connectivity. Figure 15-2 Root Guard in a Service-Provider Network Customer network Service loopguard default global configuration command Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 319
Default Optional Spanning-Tree Configuration Table 15-1 Default Optional Spanning-Tree Configuration a single end station to problems. You can enable this feature if your switch is running PVST+, rapid PVST+, or MSTP. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 320
response to invalid configurations because you must manually put the interface back in service. Use the BPDU guard feature in a service-provider network to prevent an access port from participating in the spanning tree. 15-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 321
BPDU filtering is disabled. Caution Configure Port Fast only on STP ports that connect to end stations; otherwise, an accidental topology loop could cause a data packet loop and disrupt switch and network operation. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 15-7 - Cisco 3845 | Software Guide - Page 322
is optional. Step 1 Step 2 Step 3 Command configure terminal spanning-tree etherchannel guard misconfig end Purpose Enter global configuration mode. Enable EtherChannel guard. Return to privileged EXEC mode. 15-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 323
default, root guard is disabled on all interfaces. end Return to privileged EXEC mode. show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration is most effective when it is configured on the entire switched network. Loop - Cisco 3845 | Software Guide - Page 324
-tree active or show spanning-tree mst configure terminal spanning-tree loopguard default end show running-config copy running-config startup-config Purpose Verify which interfaces are alternate for this release. 15-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 325
and supports VLAN load balancing. Note REP is not supported on ports configured with service instances. This chapter includes these sections: • Understanding REP, page 16-1 • Configuring to minimize network disruption. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 16-1 - Cisco 3845 | Software Guide - Page 326
the alternate port) is in the blocked state for each VLAN. • If VLAN load balancing is configured, two ports in the segment control the blocked state of VLANs. • If one or more ports minimal disruption to the network. 16-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 327
support REP, as shown in Figure 16-3. In this case, you can configure by the spanning tree algorithm: a port number (unique on the bridge), associated to performs a three-way handshake with a neighbor in the same segment. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 16-3 - Cisco 3845 | Software Guide - Page 328
default, REP packets are sent to a BPDU class MAC address. The packets can also be sent to the Cisco as data traffic. You can control flooding of these messages by configuring a number of the primary edge port itself. 16-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 329
executing the new configuration. If you change an edge port to a regular segment port, the existing VLAN load balancing status does not change. Configuring a new edge port might cause a new topology configuration. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 16-5 - Cisco 3845 | Software Guide - Page 330
, page 16-7 • Configuring the REP Administrative VLAN, page 16-8 • Configuring REP Interfaces, page 16-9 • Setting Manual Preemption for VLAN Load Balancing, page 16-13 • Configuring SNMP Traps for REP, page 16-13 16-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 331
balancing is not configured, the default after manual preemption is to block all VLANs at the primary edge port. REP Configuration Guidelines • We recommend that you begin by configuring one port and then configure the contiguous ports to minimize the number of segments and the number of blocked - Cisco 3845 | Software Guide - Page 332
VLAN as VLAN 100 and to verify the configuration by entering the show interface rep detail command on one of the REP interfaces: Switch# configure terminal Switch (conf)# rep admin vlan 100 Switch (conf-if)# end 16-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 333
, and enter interface configuration mode. The interface can be a physical Layer 2 interface or a port channel (logical interface). The port-channel range is 1 to 26. Configure the interface as a Layer 2 trunk port. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 16-9 - Cisco 3845 | Software Guide - Page 334
, and identify a segment number. The [primary]] [preferred] segment ID range is from 1 to 1024. These optional keywords are available. Note You must configure two edge ports, including send STCNs to STP networks. 16-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 335
switch startup configuration file. Enter the no form of each command to return to the default configuration. Enter the show rep topology privileged EXEC command to see which port in the segment is the primary edge port. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 16 - Cisco 3845 | Software Guide - Page 336
block port 4 vlan 100-200 Switch (conf-if)# end Figure 16-5 Example of VLAN Blocking Primary edge port E1 blocks all VLANs except VLANs 100-200 E1 E2 201891 Alternate port (offset 4) 4 blocks VLANs 100-200 16-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 337
rep trap-rate value Step 3 Step 4 Step 5 end show running-config copy running-config startup config Purpose Enter global configuration mode. Enable the switch to send REP traps, and set the number of traps sent per second. The range is from 0 to 1000. The default is 0 (no limit imposed; a trap is - Cisco 3845 | Software Guide - Page 338
Displays REP configuration and status for a specified interface or for all interfaces. Displays REP topology information for a segment or for all segments, including the primary and secondary edge ports in the segment. 16-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 339
service provider or enterprise networks where customers do not want to run STP on the switch. If the switch is running STP, it is not necessary to configure Flex Links because STP already provides link-level redundancy or backup. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration - Cisco 3845 | Software Guide - Page 340
Note STP is enabled by default on the switch ports. You configure Flex Links on one Layer configured with service instances. VLAN Flex Link Load Balancing and Support VLAN Flex Link load-balancing allows users to configure Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 341
When the backup link starts forwarding, to achieve faster convergence of multicast data, the downstream switch immediately sends proxy reports for all the learned groups on this port without waiting for a general query. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-3 - Cisco 3845 | Software Guide - Page 342
by upstream distribution routers, so multicast data traffic gets by default and can be configured end ip igmp snooping querier Vlan IP Address IGMP Version Port 1 1.1.1.1 v2 Gi0/11 401 41.41.41.1 v2 Gi0/11 17-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 343
is output for the show ip igmp snooping mrouter command for VLAN 1 and 401: Switch# show ip igmp snooping mrouter Vlan ports ---- ----- 1 Gi0/11(dynamic), Gi0/12(dynamic) 401 Gi0/11(dynamic), Gi0/12(dynamic) OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-5 - Cisco 3845 | Software Guide - Page 344
part of the learned groups. In this example, GigabitEthernet 0/10 is a receiver/host in VLAN 1, which is interested in two multicast groups: Switch# show ip multicast data is already being forwarded by the upstream router. By Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 345
no backup interfaces defined. The preemption mode is off. The preemption delay is 35 seconds. Flex Link VLAN load-balancing is not configured. The MAC address-table move update feature is not configured on the switch. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-7 - Cisco 3845 | Software Guide - Page 346
configure Flex Links on ports configured with an Ethernet virtual connection (EVC) service , you should configure both Flex Links end Purpose Enter global configuration mode. Specify the interface, and enter interface configuration Configure a physical Layer 2 interface (or port channel) as part - Cisco 3845 | Software Guide - Page 347
another port. Note Setting a delay time only works with forced and bandwidth modes. Return to privileged EXEC mode. Verify the configuration. (Optional) Save your entries in the switch startup configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-9 - Cisco 3845 | Software Guide - Page 348
end show interfaces [interface-id] switchport backup copy running-config startup config Purpose Enter global configuration mode. Specify the interface, and enter interface configuration /8 Active Up/Backup Standby 17-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 349
/4) Mac Address Move Update Vlan : auto Configuring the MAC Address-Table Move Update Feature • Configuring a switch to send MAC address-table move updates • Configuring a switch to get MAC address-table move updates OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-11 - Cisco 3845 | Software Guide - Page 350
end This example shows how to verify the configuration: Switch# show mac-address-table move update Switch-ID : 010b.4630.1780 Dst mac-address : 0180.c200.0010 Vlans/Macs supported : 1023/8320 Default exceed count : 0 17-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 351
all Flex Links configured on the switch and the state of each active and backup interface (up or standby mode). show mac address-table move update Displays the MAC address-table move update information on the switch. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 17-13 - Cisco 3845 | Software Guide - Page 352
Chapter 17 Configuring Flex Links and the MAC Address-Table Move Update Feature Monitoring Flex Links and the MAC Address-Table Move Update 17-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 353
the table entry. It also periodically deletes entries if it does not receive IGMP membership reports from the multicast clients. Note For more information on IP multicast and IGMP, see RFC 1112 and RFC 2236. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18-1 - Cisco 3845 | Software Guide - Page 354
Specific Multicast (SSM) feature. For more information about source-specific multicast with IGMPv3 and IGMP, see this URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121t/121t5/dtssm5t.htm 18-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 355
in Table 18-1, that includes the port numbers connected to Host 1 and the router. Table 18-1 IGMP Snooping Forwarding Table IP address that are not IGMP packets to the router and to the host that has joined the group. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 356
message. When the switch receives a leave message from a host, it sends a group-specific query to learn if any other devices connected to that interface are interested in traffic for the specific multicast group. The 18-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 357
to the multicast devices. If you disable IGMP report suppression, all IGMP reports are forwarded to the multicast routers. For configuration steps, see the "Disabling IGMP Report Suppression" section on page 18-12. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18-5 - Cisco 3845 | Software Guide - Page 358
steps to globally enable IGMP snooping on the switch: Step 1 Step 2 Command configure terminal ip igmp snooping Purpose Enter global configuration mode. Globally enable IGMP snooping in all existing VLAN interfaces. 18-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 359
EXEC mode. show ip igmp snooping mrouter [vlan vlan-id] Verify that IGMP snooping is enabled on the VLAN interface. copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18-7 - Cisco 3845 | Software Guide - Page 360
port. You should only use the Immediate-Leave feature when there is a single receiver present on every port in the VLAN. Note Immediate Leave is supported only on IGMP Version 2 hosts. 18-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 361
-interval time Step 4 Step 5 Step 6 end show ip igmp snooping copy running-config startup-config Purpose Enter global configuration mode. Configure the IGMP leave timer globally. The range is 100 to 32768 milliseconds. The default is 1000 seconds. (Optional) Configure the IGMP leave time on the - Cisco 3845 | Software Guide - Page 362
count count Step 3 Step 4 Step 5 end show ip igmp snooping copy running-config startup-config Purpose Enter global configuration mode. Specify the number of IGMP general queries for which the multicast traffic is flooded. The range is 1 to 10. By default, the flooding query count is 2. Return to - Cisco 3845 | Software Guide - Page 363
solicit Step 3 Step 4 Step 5 end show ip igmp snooping copy running-config startup-config Purpose Enter global configuration mode. Send an IGMP leave message (global leave) to speed the process of recovering from the flood mode caused during a TCN event. By default, query solicitation is disabled - Cisco 3845 | Software Guide - Page 364
to the multicast routers. Beginning in privileged EXEC mode, follow these steps to disable IGMP report suppression: Step 1 Step 2 Step 3 Step 4 Step 5 Command configure terminal no ip igmp snooping report-suppression end show ip igmp snooping copy running-config startup-config Purpose Enter - Cisco 3845 | Software Guide - Page 365
IGMP filtering has no relationship with the function that directs the forwarding of IP multicast traffic. The filtering feature operates in the same manner whether IGMP or MVR is used to forward the multicast traffic. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18-13 - Cisco 3845 | Software Guide - Page 366
matching addresses are denied; this is the default. • exit: Exits from igmp-profile configuration mode. • no: Negates a command or returns to its defaults. • permit: Specifies that matching addresses are permitted. 18-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 367
end Return to privileged EXEC mode. show ip igmp profile profile number Verify the profile configuration. copy running-config startup-config (Optional) Save your entries in the configuration profile applied to it. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18-15 - Cisco 3845 | Software Guide - Page 368
in the forwarding table: Step 1 Step 2 Command configure terminal interface interface-id Step 3 ip igmp max-groups number Step 4 Step 5 Step 6 end show running-config interface interface-id copy running-config startup-config Purpose Enter global configuration mode. Specify the interface to be - Cisco 3845 | Software Guide - Page 369
maximum number of entries is in the forwarding table, specify the action that the interface takes: • deny-Drop the report. • replace-Replace the existing group with the new group for which the IGMP report was received. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 18 - Cisco 3845 | Software Guide - Page 370
to the forwarding table when the maximum number of entries is in the table. Switch(config)# interface gigabitethernet0/1 Switch(config-if)# ip igmp max-groups action replace Switch(config-if)# end Displaying IGMP Filtering and Throttling Configuration You can display IGMP profile characteristics - Cisco 3845 | Software Guide - Page 371
Storm Control, page 19-1 • Default Storm Control Configuration, page 19-3 • Configuring Storm Control and Threshold Levels, page 19-3 Understanding Storm Control The Cisco ME 3800X and 3600X switches support storm control on physical interfaces. When you configure storm control on an interface, it - Cisco 3845 | Software Guide - Page 372
traffic on the port, and when the utilization level is below the threshold level, the type of traffic that was dropped is forwarded again. 19-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 373
configure terminal interface interface-id Purpose Enter global configuration mode. Specify the type and number of the physical interface to configure, for example gigabitethernet0/1, and enter interface configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 374
interface for the specified traffic type. If you do not enter a traffic type, broadcast storm control settings are displayed. copy running-config startup-config (Optional) Save your entries in the configuration file. 19-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 375
. When you block multicast or unicast traffic for a port channel, it is blocked on all ports in the port-channel group. Note You cannon configure port blocking on an interface that has a service instance configured. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 19-5 - Cisco 3845 | Software Guide - Page 376
maximum addresses service-instance command to configure an upper limit for the number of secure MAC configuration information: • Understanding MAC Security, page 19-7 • Default EVC MAC Security Configuration, page 19-8 19-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 377
may get deleted to satisfy maximum number of secure address. The switch supports these types of secure MAC addresses: • Static secure MAC addresses-These are manually configured by using the mac security address permits mac-address service instance configuration command. Static secure MAC addresses - Cisco 3845 | Software Guide - Page 378
aging Default Setting Disabled on an EFP. Disabled. 1. Shutdown. The service instance shuts down when the maximum number of secure MAC addresses is exceeded. Disabled. Aging time is 0. Static aging is disabled. 19-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 379
• The number is the EFP identifier, an integer from 1 to 4000. • (Optional) ethernet name is the name of a previously configured Ethernet virtual connection (EVC). You do not need to use an EVC name in a service instance. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 19 - Cisco 3845 | Software Guide - Page 380
are dropped until you remove a sufficient number of secure MAC addresses or increase the number of maximum allowable addresses. An SNMP trap is sent, a syslog message is logged, and the violation counter increments. 19-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 381
(config-if-srv)# mac security sticky Switch (config-if-srv)# end You can verify the previous commands by entering the show ethernet service instance number interface interface-id mac security privileged EXEC command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 19-11 - Cisco 3845 | Software Guide - Page 382
19-3 Commands for Displaying Traffic Control Status and Configuration Command show ethernet service instance number interface interface-id mac security show interfaces [interface traffic if no traffic type is entered. 19-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 383
(the data link layer) on all Cisco-manufactured devices (routers, bridges, access servers, and switches) and allows network management applications to discover Cisco devices devices. The switch supports CDP Version 2. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 20-1 - Cisco 3845 | Software Guide - Page 384
sent by your device before discarding it. The range is 10 to 255 seconds; the default is 180 seconds. (Optional) Configure CDP to send Version-2 advertisements. This is the default state. Return to privileged EXEC mode. 20-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 385
configuration mode. Enable CDP after disabling it. Return to privileged EXEC mode. This example shows how to globally enable CDP if it has been disabled. Switch# configure terminal Switch(config)# cdp run Switch(config)# end OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 386
configured, you need to enter the l2 protocol peer cdp service-instance configuration command on the service instance. See the "Configuring Ethernet Virtual Connections (EVCs)" chapter for more information on EFPs. 20-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 387
ID. You can limit the display to neighbors of a specific interface or expand the display to provide more detailed information. Display CDP counters, including the number of packets sent and received and checksum errors. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 20-5 - Cisco 3845 | Software Guide - Page 388
Monitoring and Maintaining CDP Chapter 20 Configuring CDP 20-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 389
. LLDP supported devices can use TLVs to receive and send information to their neighbors. Details such as configuration information, device capabilities, and device identity can be advertised using this protocol. By default, LLDP is disabled globally and on interfaces. OL-23400-01 Cisco ME 3800X - Cisco 3845 | Software Guide - Page 390
IP phones and network devices such as switches. It specifically provides support for voice over IP (VoIP) applications and provides additional TLVs for capabilities discovery, network policy, Power name information. 21-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 391
can configure the frequency of LLDP updates, the amount of time to hold the information before discarding it, and the initialization delay time. You can also select the LLDP and LLDP-MED TLVs to be sent and received. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 21-3 - Cisco 3845 | Software Guide - Page 392
EXEC mode, follow these steps to globally disable LLDP: Step 1 Step 2 Step 3 Command configure terminal no lldp run end Purpose Enter global configuration mode. Disable LLDP. Return to privileged EXEC mode. 21-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 393
Purpose Enter global configuration mode. Specify the interface on which you are enabling LLDP, and enter interface configuration mode. LLDP packets are sent on the interface. LLDP packets are received on the interface. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 21-5 - Cisco 3845 | Software Guide - Page 394
policy TLV LLDP-MED power management TLV Beginning in privileged EXEC mode, follow these steps to disable a TLV on an interface: Step 1 Step 2 Command configure terminal interface interface-id Step 3 Step 4 Step 5 no lldp med-tlv-select tlv end copy running-config startup-config Purpose Enter - Cisco 3845 | Software Guide - Page 395
end copy running-config startup-config Purpose Specify the TLV to enable. Return to privileged EXEC mode. (Optional) Save your entries in the configuration )# service instance Display information about a specific neighbor. You can 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 21-7 - Cisco 3845 | Software Guide - Page 396
of a specific interface or expand the display to provide more detailed information. Display LLDP counters, including the number of packets sent and received, number of packets discarded, and number of unrecognized TLVs. 21-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 397
can cause a variety of problems, including spanning-tree topology loops. Modes of Operation UDLD supports two modes of operation: normal (the default) and aggressive. In normal is not received by the local device. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 22-1 - Cisco 3845 | Software Guide - Page 398
also detect a unidirectional link when one of these problems exists: • On fiber-optic or twisted-pair be performed by message before an older cache entry ages, the switch replaces the older entry with the new one. Whenever Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 399
UDLD • Default UDLD Configuration, page 22-4 • Configuration Guidelines, page 22-4 • Enabling UDLD Globally, page 22-5 • Enabling UDLD on an Interface, page 22-5 • Resetting an Interface Disabled by UDLD, page 22-6 • UDLD and Ethernet Flow Points (EFPs), page 22-6 OL-23400-01 Cisco ME 3800X - Cisco 3845 | Software Guide - Page 400
make sure that the same mode is configured on both sides of the link. Caution Loop guard works only on point-to-point links. We recommend that each end of the link has a directly connected device that is running STP. 22-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 401
or to disable UDLD on a port: Step 1 Step 2 Command configure terminal interface interface-id Purpose Enter global configuration mode. Specify the port to be enabled for UDLD, and enter interface configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 22-5 - Cisco 3845 | Software Guide - Page 402
configured, you need to enter the l2 protocol peer udld service-instance configuration command on the service instance. See the "Configuring Ethernet Virtual Connections (EVCs)" chapter for more information on EFPs. 22-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 403
service instance 1 Ethernet Switch (config-if-srv)# encapsulation untagged Switch (config-if-srv)# l2protocol peer udld Switch (config-if-srv)# bridge-domain 10 Switch (config-if-srv)# end reference for this release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 22-7 - Cisco 3845 | Software Guide - Page 404
Displaying UDLD Status Chapter 22 Configuring UDLD 22-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 405
monitoring data. You can use the RMON feature with the Simple Network Management Protocol (SNMP) agent in the switch to monitor all the traffic flowing among switches on all connected LAN segments as shown in Figure 23-1. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 23 - Cisco 3845 | Software Guide - Page 406
supported by this software release use hardware counters for RMON data processing, the monitoring is more efficient, and little processing power is required. Note 64-bit counters are not supported for RMON alarms. 23-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 407
is -2147483648 to 2147483647. • (Optional) For event-number, specify the event number to trigger when the rising or falling threshold exceeds its limit. • (Optional) For owner string, specify the owner of the alarm. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 23-3 - Cisco 3845 | Software Guide - Page 408
23 Configuring RMON Step 3 Step 4 Step 5 Step 6 Command rmon event number [description string] [log] [owner string] [trap community] end show running-config copy running-config startup-config Purpose Add an event in the RMON event table that is associated with an RMON event number. • For number - Cisco 3845 | Software Guide - Page 409
-id Step 3 rmon collection history index [buckets bucket-number] [interval seconds] [owner ownername] Step 4 Step 5 Step 6 Step 7 end show running-config show rmon history copy running-config startup-config Purpose Enter global configuration mode. Specify the interface on which to collect - Cisco 3845 | Software Guide - Page 410
owner of the RMON group of statistics. end Return to privileged EXEC mode. show startup-config (Optional) Save your entries in the configuration Cisco IOS Configuration Fundamentals Command Reference, Release 12.2. 23-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 411
release. You can access logged system messages by using the switch command-line interface (CLI) or by saving them to a properly configured syslog server. The switch software saves syslog messages in an internal buffer. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 24-1 - Cisco 3845 | Software Guide - Page 412
number only if the service sequence-numbers global configuration command is configured. For more information, see the "Enabling and Disabling Sequence Numbers list of supported facilities, see Table 24-4 on page 24-13. 24-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 413
configuration Logging buffer size Logging history size Time stamps Synchronous logging Logging server Syslog server IP address Server facility Server severity Default to the processes that generated the messages. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 24-3 - Cisco 3845 | Software Guide - Page 414
of memory for other tasks. Use the show memory privileged EXEC command to view the free processor memory on the switch. However, this value is the maximum available, and the buffer size should not be set to this amount. 24-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 415
number | type] Step 5 end Step 6 terminal monitor Step 7 show running-config Step 8 copy running-config startup-config Purpose Log messages to a UNIX syslog server host. For host, specify the name or IP for user input OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 24-5 - Cisco 3845 | Software Guide - Page 416
entries in the configuration file. To disable synchronization of unsolicited messages and debug output, use the no logging synchronous [level severity-level | all] [limit number-of-buffers] line configuration command. 24-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 417
configure terminal service sequence-numbers end show running-config copy running-config startup-config Purpose Enter global configuration mode. Enable sequence numbers. Return to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. OL-23400-01 Cisco - Cisco 3845 | Software Guide - Page 418
System Message Logging Chapter 24 Configuring System Message Logging To disable sequence numbers, use the no service sequence-numbers global configuration command. This example shows part of a logging display with sequence numbers enabled: 000019: %SYS-5-CONFIG_I: Configured from console by vty2 - Cisco 3845 | Software Guide - Page 419
configuration command, you can change the level of messages sent and stored in the switch history table. You also can change the number of default, warnings, errors, critical, alerts, and emergencies messages are sent. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 24-9 - Cisco 3845 | Software Guide - Page 420
number] number [end-number] | statistics} [provisioning] privileged EXEC command to display the complete configuration log or the log for specified parameters. The default is that configuration logging is disabled. For information about the commands, see the Cisco IOS Configuration Fundamentals - Cisco 3845 | Software Guide - Page 421
to enable logging of remote syslog messages. Step 1 Add a line such as the following to the file /etc/syslog.conf: local7.debug /usr/adm/logs/cisco.log OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 24-11 - Cisco 3845 | Software Guide - Page 422
trap global configuration command. Table 24-4 lists the UNIX system facilities supported by the software. For more information about these facilities, consult the operator's manual for your UNIX operating system. 24-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 423
configuration and the contents of the log buffer, use the show logging privileged EXEC command. For information about the fields in this display, see the Cisco IOS Configuration Fundamentals Command Reference, Release 12.2. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 424
Displaying the Logging Configuration Chapter 24 Configuring System Message Logging 24-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 425
the switch does not support the Cisco Data Collection MIB, you can use the command-line interface to periodically transfer selected MIB data to specified NMS stations. Starting with this release, you can also configure a Cisco Process MIB CPU threshold table. OL-23400-01 Cisco ME 3800X and 3600X - Cisco 3845 | Software Guide - Page 426
Data Collection and Transfer, page 25-6 SNMP Versions This software release supports these SNMP versions: • SNMPv1-The Simple Network Management Protocol, a Full Internet Standard, defined in RFC 1157. • SNMPv2C replaces number Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 427
this operation, an SNMP manager does not need to know the exact variable name. A sequential search is performed to find the needed variable from within a table. 2. The get-bulk command only works with SNMPv2 or later. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-3 - Cisco 3845 | Software Guide - Page 428
set device variables and to poll devices on the network for specific information. The results of a poll can be displayed as a graph and analyzed to troubleshoot internetworking problems, increase network performance, verify the configuration of devices, monitor traffic loads, and more. As shown in - Cisco 3845 | Software Guide - Page 429
support data unit in memory until unique number greater SFP = small form-factor pluggable ifIndex Range 1-4999 5000-5012 5013-5077 5078-5142 10000-14500 14501 Note The switch might not use sequential values within a range. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 430
Used Through SNMP, page 25-17 • Configuring MIB Data Collection and Transfer, page 25-18 • Configuring the Cisco Process MIB CPU Threshold Table, page 25-20 • Configuring MIB Data Collection and Transfer, page 25-18 25-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 431
view affects all users associated with that group. See the Cisco IOS Configuration Fundamentals Command Reference for information about when you should configure notify views. • To configure a remote user, specify the IP address or port number for the remote SNMP agent of the device where the user - Cisco 3845 | Software Guide - Page 432
Command configure terminal no snmp-server end show running-config copy running-config startup-config Purpose Enter global configuration mode specific Cisco IOS command exists to enable SNMP. The first snmp-server global configuration command that you enter enables all versions of SNMP. Configuring - Cisco 3845 | Software Guide - Page 433
the community string for that community to the null string (do not enter a value for the community string). To remove a specific community string, use the no snmp-server community string global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-9 - Cisco 3845 | Software Guide - Page 434
• If you select remote, specify the ip-address of the device that contains the remote copy of SNMP and the optional User Datagram Protocol (UDP) port to use for storing data on the remote device. The default is 162. 25-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 435
noauth-Enables the noAuthNoPriv security level. This is the default if no keyword is specified. priv-Enables Data Encryption Standard (DES) packet encryption (also called privacy). is the name of the access list. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-11 - Cisco 3845 | Software Guide - Page 436
. end Return startup-config (Optional) Save your entries in the configuration file. Configuring default, no trap manager is defined, and no traps are sent. Switches can have an unlimited number of trap managers. 25-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 437
any or all of these environmental traps: fan, shutdown, status, supply, temperature. Generates an SNMP Ethernet CFM trap. Generates SNMP FLASH notifications. Generates a trap for Hot Standby Router Protocol (HSRP) changes. Generates a trap for IP multicast routing changes. Generates a trap for MAC - Cisco 3845 | Software Guide - Page 438
2. Note You cannot configure a remote user for an address without first configuring the engine ID for the remote host. Otherwise, you receive an error message, and the command is not executed. Configure an SNMP group. 25-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 439
10. (Optional) Define how often to resend trap messages. The range is 1 to 1000; the default is 30 seconds. Return to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-15 - Cisco 3845 | Software Guide - Page 440
percentage value. end Return to privileged EXEC configuration, you must enter the show snmp user privileged EXEC command. copy running-config startup-config (Optional) Save your entries in the configuration file. 25-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 441
location text Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Set the system contact string. For implicit deny statement for everything. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-17 - Cisco 3845 | Software Guide - Page 442
configuration file. Configuring MIB Data Collection and Transfer This section includes basic configuration for MIB data collection. For more information, see the Periodic MIB Data Collection and Transfer Mechanism document at this URL: http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide - Cisco 3845 | Software Guide - Page 443
(no retries). (Optional) Specify how long the bulk-statistics file should be kept in system memory. The valid range is 0 to 20000 minutes; the default is 0 (the file is deleted immediately after a successful transfer). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 25-19 - Cisco 3845 | Software Guide - Page 444
become part of the history table. • (Optional) For size seconds, set the duration of time in seconds for which CPU statistics are stored in the history table. The range is from 5 to 86400 seconds; the default is 600. 25-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 445
to or less than the rising percentage. The default is for the falling percentage to be the same value as the rising percentage. end Return to privileged EXEC mode. copy running-config startup-config (Optional) Save your entries in the configuration file. SNMP Examples This example shows how to - Cisco 3845 | Software Guide - Page 446
cisco.com public This example shows how to associate a user with a remote host and to send auth (authNoPriv) authentication-level informs when the user enters global configuration of the periodic MIB data collection and transfer mechanism to provide information on the Cisco Process MIB CPU threshold - Cisco 3845 | Software Guide - Page 447
see the Cisco IOS Configuration Fundamentals Command Reference, Release 12.2. Table 25-6 Commands for Displaying SNMP Information Feature show snmp show snmp engineID [local | remote] show snmp group show snmp mib bulk transfer show snmp pending show snmp sessions show snmp user Default Setting - Cisco 3845 | Software Guide - Page 448
Displaying SNMP Status Chapter 25 Configuring SNMP 25-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 449
Guide, Release 12.2, and the Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2. • Understanding ACLs, page 26-1 • Configuring IPv4 ACLs, page 26-6 • Creating Named MAC Extended ACLs, page 26-26 • Configuring VLAN Maps, page 26-29 • Using VLAN Maps with Router - Cisco 3845 | Software Guide - Page 450
on ports configured with service instances. • Router ACLs access-control routed traffic between VLANs and are applied to Layer 3 interfaces in a specific direction (inbound or outbound). The switch must be running the metro IP access image to support router ACLs. • VLAN ACLs or VLAN maps access - Cisco 3845 | Software Guide - Page 451
by both the VLAN map and the router ACL. Other packets are filtered only by configured with a service instance. These access lists are supported on Layer 2 interfaces: • Standard IP access lists using source addresses • Extended IP 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-3 - Cisco 3845 | Software Guide - Page 452
for IPv4 traffic: • Standard IP access lists use source addresses for matching operations. • Extended IP access lists use source and destination addresses and optional protocol type information for matching operations. 26-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 453
examines ACLs associated with features configured on a given interface. However, router ACLs are supported in both directions. As numbers, ICMP type and code, and so on. All other fragments are missing this information. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 454
-port well-known numbers equaling Simple Mail Services, Release 12.2. The switch does not support these Cisco IOS router ACL-related features: • Non-IP protocol ACLs (see Table 26-1 on page 26-8) or bridge-group ACLs 26-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 455
a Numbered Extended ACL, page 26-10 • Resequencing ACEs in an ACL, page 26-14 • Creating Named Standard and Extended ACLs, page 26-14 • Using Time Ranges with ACLs, page 26-16 • Including Comments in ACLs, page 26-18 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26 - Cisco 3845 | Software Guide - Page 456
create standard and extended named IPv4 ACLs by using the supported numbers. That is, the name of a standard IP ACL can be 1 to 99; the name of an extended IP ACL can be 100 to 199. The advantage of using named ACLs instead of numbered lists is that you can delete individual entries from a named - Cisco 3845 | Software Guide - Page 457
for all packets that it did not find a match for before reaching the end. With standard access lists, if you omit the mask from an associated IP host address ACL specification, 0.0.0.0 is assumed to be the mask. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-9 - Cisco 3845 | Software Guide - Page 458
ACLs to be used for quality of service (QoS) classification, these limitations apply: • Qos ACLs support only the permit action. • For permit protocol, the supported keywords are: gre, icmp, igmp, ipinip, tcp, and udp. 26-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 459
, see the "Using Time Ranges with ACLs" section on page 26-16. • dscp-Enter to match packets with the DSCP value specified by a number from 0 to 63, or use the question mark (?) to see a list of available values. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-11 - Cisco 3845 | Software Guide - Page 460
name of a TCP port. To see TCP port names, use the ? or see the "Configuring IP Services" section in the "IP Addressing and Services" chapter of the Cisco IOS IP Configuration Guide, Release 12.2. Use only TCP port numbers or names when filtering TCP. The other optional keywords have these meanings - Cisco 3845 | Software Guide - Page 461
of ICMP message type names and code names, use the ?, or see the "Configuring IP Services" section of the Cisco IOS IP Configuration Guide, Release 12.2. access-list access-list-number {deny | permit} igmp source source-wildcard destination destination-wildcard [igmp-type] [precedence precedence - Cisco 3845 | Software Guide - Page 462
terminal ip access-list standard name Purpose Enter global configuration mode. Define a standard IPv4 access list using a name, and enter access-list configuration mode. Note The name can be a number from 1 to 99. 26-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 463
are placed at the end of the list. You cannot selectively add ACL entries to a specific ACL. However, you can use no permit and no deny access-list configuration mode commands to remove entries from a named ACL. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-15 - Cisco 3845 | Software Guide - Page 464
such as an application (identified by an IP address/mask pair and a port number). • You can control logging messages. configuration mode. The name cannot contain a space or quotation mark and must begin with a letter. 26-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 465
)# end Switch# show ip access-lists Extended IP access list deny_access 10 deny tcp any any time-range new_year_day_2006 (inactive) Extended IP access list may_access 10 permit tcp any any time-range workhours (inactive) OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26 - Cisco 3845 | Software Guide - Page 466
want to configure when the line type is specified. The range is from 0 to 16. Restrict incoming and outgoing connections between a particular virtual terminal line (into a device) and the addresses in an access list. 26-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 467
message when you apply it. end Return to privileged EXEC mode. show running-config Display the access list configuration. copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-19 - Cisco 3845 | Software Guide - Page 468
/1 Router(config-if)# ip access-group 2 in Note When you apply the ip access-group interface configuration command numbers of packets to be sent to the CPU, the switch performance can be negatively affected. 26-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 469
5 60 permit tcp source source-wildcard destination destination-wildcard range 15 160 permit tcp source source-wildcard destination destination-wildcard range 115 1660 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-21 - Cisco 3845 | Software Guide - Page 470
Cisco IOS Security Configuration Guide, Release 12.2 and to the Configuring IP Services" section in the "IP Addressing and Services" chapter of the Cisco IOS IP Configuration Guide confidential payroll data. All users can access Server A, but Server B has restricted access. Use router ACLs to do - Cisco 3845 | Software Guide - Page 471
Configuring end Switch# show access-lists Standard IP ip end Switch# show access-lists Extended IP access list 106 10 permit ip any 172.20.128.64 0.0.0.31 Switch(config)# interface gigabitethernet0/1 Switch(config-if)# ip access-group 106 in Numbered ip -if)# ip access-group not want IP hosts to - Cisco 3845 | Software Guide - Page 472
Configuring Network Security with ACLs SMTP uses TCP port 25 on one end of the connection and a random port number on the other end. The same port numbers are used throughout the life the router to the )# deny ip any any Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 473
ip access-group strict in Commented IP ACL Entries In this example of a numbered Logging Two variations of logging are supported on router ACLs. The log keyword sends -if)# ip access-group stan1 in Switch(config-if)# end Switch# 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-25 - Cisco 3845 | Software Guide - Page 474
3 interfaces or to Layer 2 interfaces configured with service instances. For more information about the supported non-IP protocols in the mac access-list extended command, see the command reference for this release. 26-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 475
| vines-echo |vines-ip | xns-idp-A non-IP protocol. • cos cos-An IEEE 802.1Q cost of service number from 0 to 7 used to set priority. end Return to privileged EXEC mode. show access-lists [number | name] Show the access list configuration. copy running-config startup-config (Optional) Save - Cisco 3845 | Software Guide - Page 476
supported only in the inbound direction. Although you can enter this command on a Layer 2 port that has a service instance, the command is rejected with a warning message when you apply it. end for network security. 26-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 477
is tested against the first entry in the VLAN map. If it matches, the action specified for that part of the VLAN map is taken. If there is no match, the packet is tested against the next entry in the map. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-29 - Cisco 3845 | Software Guide - Page 478
no vlan access-map name number global configuration command to delete a single sequence entry from within the map. Use the no action access-map configuration command to enforce the default action, which is to forward. 26-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 479
that for specific purposes. ip address 101 Switch(config-access-map)# action forward Switch(config-access-map)# exit Switch(config)# vlan access-map drop-ip-default 20 Switch(config-access-map)# match ip address igmp-match OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 480
decnet-iv or vines-ip protocols • Drop all other non-IP packets • Forward all IP packets Switch(config)# mac default 20 Switch(config-access-map)# match mac address good-hosts Switch(config-access-map)# action forward 26-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 481
Step 3 Step 4 Command configure terminal vlan filter mapname vlan-list list show running-config copy running-config startup-config Purpose Enter global configuration mode. Apply the VLAN map entry point, Switch A. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-33 - Cisco 3845 | Software Guide - Page 482
)# exit Switch(config)# vlan access-map map2 20 Switch(config-access-map)# match ip address match_all Switch(config-access-map)# action forward Then, apply VLAN access map map2 .1.1.8 in VLAN 10 should not have access. 26-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 483
match ip address SERVER1_ACL router ACL configuration, the packet flow is denied. Note When you use router ACLs with VLAN maps, packets that require logging on the router ACLs are not logged if they are denied by a VLAN map. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 484
the full-flow mode and the ACL contains both IP ACEs and TCP/UDP/ICMP ACEs with Layer 4 information, put the Layer 4 ACEs at the end of the list. This gives priority to the filtering of traffic based on IP addresses. 26-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 485
26-7 shows how ACLs are applied on routed packets. For routed packets, the ACLs are applied in this order: 1. VLAN map for input VLAN 2. Input router ACL 3. Output router ACL 4. VLAN map for output VLAN OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 26-37 - Cisco 3845 | Software Guide - Page 486
26-8 Applying ACLs on Multicast Packets VLAN 10 map Input router ACL Output router ACL VLAN 20 map Frame Host A (VLAN 10) Routing function Host B (VLAN 20) Host C (VLAN 10) VLAN 10 Packet VLAN 20 101360 26-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 487
of one or all current IP and MAC address access lists or a specific access list (numbered or named). Displays the contents of all current IP access lists or a specific IP access list (numbered or named). Displays detailed configuration and status of an interface. If IP is enabled on the interface - Cisco 3845 | Software Guide - Page 488
Displaying IPv4 ACL Configuration Chapter 26 Configuring Network Security with ACLs 26-40 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 489
:" http://www.cisco.com/en/US/docs/ios/qos/command/reference/qos_book.html For complete syntax and usage information for the platform-specific commands used in this chapter, see the command reference for this release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-1 - Cisco 3845 | Software Guide - Page 490
that is leaving a port. The switch supports these scheduling and traffic-limiting features: class-based weighted fair queuing (CBWFQ), class-based traffic shaping these topics: • Modular QoS CLI Configuration, page 27-3 27-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 491
-map configuration mode. • A traffic class-Use the class policy-map configuration command to enter the name of the traffic class used to classify traffic to the specified policy, and enter policy-map class configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 492
or an EFP service instance. Use the service-policy interface configuration command to attach Configure scheduling by using the bandwidth or the priority command. - Configure traffic shaping by using the shape command. 27-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 493
. QoS supports the use of either value because DSCP values are backward-compatible with IP precedence values. IP precedence values range from 0 to 7. DSCP values range from 0 to 63. MPLS EXP values range from 0 to 7. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-5 - Cisco 3845 | Software Guide - Page 494
supported only for outer and inner VLAN, or outer and inner CoS matches for QinQ packets and is rejected for all other mutually exclusive match criteria. You can configure only one match entry in a match-all class map 27-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 495
delivers IP packets in four different AF classes: AF11-13 (the highest), AF21-23, AF31-33, and AF41-43 (the lowest). Each AF class could be allocated a specific amount of buffer space and drop probabilities, specified by OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27 - Cisco 3845 | Software Guide - Page 496
the customer CoS into the service provider network. By default, the switch supports C-CoS to S-CoS propagation for QinQ. When you configure QinQ, you can also set the S-CoS from C-DSCP. Configuring CoS matching on EFPs configured for tunneling: • On service instances configured for 802.1Q tunneling - Cisco 3845 | Software Guide - Page 497
switch supports only DSCP, time-range, and ToS. See the "Using ACLs to Classify Traffic" section on page 27-28 for more specific information. When you define a class map with the ACL, you can add the class to a policy. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27 - Cisco 3845 | Software Guide - Page 498
match the EXP bits on input, set a QoS group, and then match that QoS group on output to obtain the required QoS behavior. 27-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 499
a customer, the service provider can set the MPLS experimental field. The IP header remains available for the customer's use, and the QoS of an IP packet is not changed as the packet travels through the MPLS network. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-11 - Cisco 3845 | Software Guide - Page 500
is performed before any label processing on the packet. On output, the match is performed on the final packet after all label operations are performed. See the "Configuring MPLS and EoMPLS QoS" section on page 27-53. 27-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 501
. To support QoS between label edge routers (LERs), you set the experimental bits in both the virtual connection and the tunnel labels. EoMPLS QoS classification occurs on ingress, and you can match on Layer 3 parameters (such as IP or DSCP), and Layer 2 parameters (CoS). See the "Configuring MPLS - Cisco 3845 | Software Guide - Page 502
relative and absolute importance of the packet. The marking function can use information from the policing function or directly from the classification function. 27-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 503
map for all supported QoS markings (CoS, IP DSCP, IP precedence, and QoS groups). A set command unconditionally marks the packets that match a specific class. You then attach the policy map to an interface or service instance as an input policy map. You can simultaneously configure actions to modify - Cisco 3845 | Software Guide - Page 504
consider the type of traffic being sent when you configure bandwidth and queue-limit: • A large buffer (queue limit) can better accommodate bursty traffic without packet loss, but at the cost of increased latency. 27-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 505
However, there is no limit to the number of qualifiers that you can map to these thresholds. • You can configure a third threshold value to set the maximum Weighted Fair Queuing, page 27-19 • Priority Queuing, page 27-20 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 506
Switch(config-pmap-c)# service-policy child Switch(config-pmap-c)# exit Switch(config-pmap)# exit Switch(config)# interface gigabitthernet0/1 Switch(config-if)# service-policy output parent Switch(config-if)# exit 27-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 507
exit Class-Based Weighted Fair Queuing You can configure class-based weighted fair queuing (CBWFQ configure bandwidth as percentage of remaining bandwidth when priority is configured for another class in the output policy map. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 508
have the same basic structure but differ in the characteristics that they regulate. Figure 27-8 shows the relationship of input and output policies. 27-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 509
, Class level IP ACLs, IPv4 DSCP or Precedence, MPLS EXP Match any (only) Tail drop (queue-limit) or weighted tail drop based on outer CoS, IPv4 DSCP or precedence, MPLS EXP, QoS group or discard class Class level OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-21 - Cisco 3845 | Software Guide - Page 510
class-default in the entire policy map. You can attach an output policy map to any or all targets on the switch. The switch supports configuration and attachment of a unique output policy map for each port or service instance. 27-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL - Cisco 3845 | Software Guide - Page 511
or for traffic to the CPU. QoS treatment is set by default. • Cisco IP-SLAs Probes, page 27-23 • CPU Traffic, page 27-23 Cisco IP-SLAs Probes For information about Cisco IP service level agreements (IP SLAs), see the "Understanding Cisco IOS IP SLAs" section on page 31-1. The QoS treatment for - Cisco 3845 | Software Guide - Page 512
a service policy to an EFP that belongs to a port channel interface. • When a configured policer rate, policer burst-size, or queue-rate cannot be achieved in hardware within 1 percent, the configuration is rejected. 27-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 513
limit is reached. Configuring Input Policy Maps • Configuring Input Class Maps, page 27-26 • Using ACLs to Classify Traffic, page 27-28 • Configuring Class-Based Marking, page 27-32 • Configuring Policing, page 27-34 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-25 - Cisco 3845 | Software Guide - Page 514
is rejected for all other mutually exclusive match criteria. • (Optional) Use the match-any keyword to perform a logical OR of all matching statements under this class map. One or more match criteria must be matched. 27-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 515
Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of the appropriate command to delete an existing class map or remove a match criterion. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-27 - Cisco 3845 | Software Guide - Page 516
to become invalid, the policy is detached from the target. • "Creating IP Standard ACLs" section on page 27-29 • "Creating IP Extended ACLs" section on page 27-29 • "Creating Layer 2 MAC ACLs" section on page 27-31 27-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 517
, igmp, ipinip, tcp, and udp. • For source and destination address, the supported entries are ip-address, any, or host. • For match criteria, the supported keywords are dscp or tos. You can also specify a time-range. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-29 - Cisco 3845 | Software Guide - Page 518
an access list, use the no access-list access-list-number global configuration command. This example shows how to create an ACL that permits IP traffic from any source to any destination that has the DSCP value set to 32: Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 519
non-IP traffic: Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Command configure terminal supported. end show access-lists [access-list-number | access-list-name] copy running-config startup-config Purpose Enter global configuration 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-31 - Cisco 3845 | Software Guide - Page 520
-default to match all unclassified packets, and enter policy-map class configuration mode. If you enter a class-map name, you must have already created the class map by using the class-map global configuration command. 27-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 521
overlaps the value configured for a set ip dscp class in a later class, then the earlier configuration is always matched. Step 5 Step 6 Step 7 end show policy-map [policy-map-name [class class-map-name]] copy running-config startup-config • For mpls experimental imposition exp-number, enter the - Cisco 3845 | Software Guide - Page 522
already created the class map by using the class-map global configuration command. Create a policy map by entering the policy map name, and enter policy-map configuration mode. By default, no policy maps are defined. 27-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 523
the number of 2000. The default is 250 ms. configuring multiple actions, press ENTER after the police command, and enter policy-map class police configuration mode (config-pmap-c-police) mode to specify the actions to take. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 524
is the default. Note If you are configuring a single action for conformed and exceeded packets, you can specify them in the same line. If configuring multiple actions, press ENTER after the conform-action command. 27-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 525
-transmit value-set the IP precedence value to a new value, and send the packet. The range is 0 to 7. • set-qos-transmit value-set the QoS group number to a new value, service-policy input video-policy Switch(config-if)# exit OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 526
service instance 1 Ethernet Switch (config-if-srv)# service- configuration command. Create a policy map by entering the policy map name, and enter policy-map configuration mode. By default, no class maps are defined. 27-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 527
. By default, no or the number of acceptable configuring multiple actions, press ENTER after the police command, and enter policy-map class police configuration mode (config-pmap-c-police) mode to specify the actions to take. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 528
must enter an action to take. end Return to privileged EXEC mode. show policy-map [policy-map-name] Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. 27-40 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 529
match criterion with one or more match statements entered in the class-map configuration mode. In an output policy, the match criteria acts on the packet on the wire after any VLAN rewrite mapping operations on egress. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-41 - Cisco 3845 | Software Guide - Page 530
class-map configuration mode. By default, no class maps are defined. Note The match-all keyword • (Optional) Use the match-all keyword to perform a logical AND of all is supported only for cos and match cos inner. 27-42 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 531
Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of the appropriate command to delete an existing class map or remove a match criterion. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-43 - Cisco 3845 | Software Guide - Page 532
a policy map by entering the policy map name, and enter policy-map configuration mode. Enter a child class-map name or class-default to match all unclassified packets, and enter policy-map class configuration mode. 27-44 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 533
map is divided among the classes in the same proportion as the CIR rates. If the CIR rate of a class is configured as 0, that class is not eligible for any excess bandwidth and, as a result, receives no bandwidth. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-45 - Cisco 3845 | Software Guide - Page 534
10000 Switch(config-pmap-c)# exit Switch(config-pmap)# class class-default Switch(config-pmap-c)# bandwidth 10000 Switch(config-pmap-c)# exit Switch -pmap-c)# bandwidth 1000 Switch(config-pmap-c)# service-policy phb 27-46 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 535
default} Step 4 shape average {target bps | percent value} Step 5 Step 6 Step 7 end show policy-map [policy-map-name [class class-map-name]] copy running-config startup-config Purpose Enter global configuration exit OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-47 - Cisco 3845 | Software Guide - Page 536
example. Switch(config)# policy-map out-policy-parent Switch(config-pmap)# class class-default Switch(config-pmap-c)# shape average 90000000 Switch(config-pmap-c)# service-policy out-policy Switch(config-pmap-c)# exit 27-48 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 537
service to the class. • When priority is configured in an output policy map without the police command, you can only configure 11 end show policy-map copy running-config startup-config Purpose Enter global configuration mode. 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-49 - Cisco 3845 | Software Guide - Page 538
a scheduling action (bandwidth, shape average, or priority) before you go to Step 5 to configure queue-limit. • If you enter class-default, you can omit Step 4. Configure a scheduling action for the traffic class. 27-50 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 539
command-line help, the packets keyword is not supported. end show policy-map [policy-map-name [class class-map-name]] copy running-config startup-config Purpose Specify the queue size for the 10 is assigned a qu OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-51 - Cisco 3845 | Software Guide - Page 540
to the class traffic is classified into class-default, which is configured with 10 percent of the total available bandwidth interface gigabitethernet0/1 Switch(config-if)# service-policy output gold-policy Switch(config- Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 541
MPLS packets is to relay the IP Precedence bits into the EXP bits of the virtual-connection and tunnel labels. You can change the default behavior for VLAN- or port-based EoMPLS by applying a hierarchical QoS policy. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-53 - Cisco 3845 | Software Guide - Page 542
these steps on the ingress router: • Configure a class map to classify IP packets according to their DSCP or IP precedence classification. • Configure a policy map to mark MPLS packets (write their classification into the MPLS experimental field). • Attach the service policy to the input interface - Cisco 3845 | Software Guide - Page 543
and ends where there is label disposition. The switch supports three tunnelling modes: • uniform mode • short-pipe mode • pipe mode For additional information, see "MPLS DiffServ Tunneling Modes" at this URL: http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftdtmode.html OL-23400-01 - Cisco 3845 | Software Guide - Page 544
terminal interface interface-id Step 3 Step 4 Step 5 Step 6 service-policy {input | output} policy-map-name end show policy-map [policy-map-name] [class class-map-name] copy running-config startup-config Purpose Enter global configuration mode. Specify the port to attach to the policy map, and - Cisco 3845 | Software Guide - Page 545
or output policy maps, or policy-map class. Display QoS policy map information for policy maps attached to EFP service instances. Display the configured class maps, policy maps, table maps, and aggregate policers. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 27-57 - Cisco 3845 | Software Guide - Page 546
Statistics include the number of packets that match each specified traffic stream, the corresponding configured action, such default (match-any) 0 packets, 0 bytes 5 minute offered rate 0 bps, drop rate 0 bps Match: any 27-58 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 547
describes how to configure EtherChannels on Layer 2 and Layer 3 ports on the Cisco ME 3800X and ME 3600X switch. EtherChannel provides fault-tolerant high-speed links between switches, routers, and servers. You can use it to increase the bandwidth between the wiring closets and the data center, and - Cisco 3845 | Software Guide - Page 548
configure up to 8 Gbps (8 ports of 1 Gbps), depending on the number of supported data traffic as would any other single link. The port configuration does not change, but the port does not participate in the EtherChannel. 28-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 549
-channel interface number corresponds to the one specified with the channel-group interface configuration command. Figure 28-2 Relationship of Physical Ports, Logical Port Channels, and Channel Groups Logical port-channel Channel-group binding 101238 OL-23400-01 Physical ports Cisco ME 3800X - Cisco 3845 | Software Guide - Page 550
in an EtherChannel, apply the configuration commands to the port-channel interface. Port Aggregation Protocol The Port Aggregation Protocol (PAgP) is a Cisco-proprietary protocol that can be run only on Cisco switches and on those switches licensed by vendors to support PAgP. PAgP facilitates the - Cisco 3845 | Software Guide - Page 551
supporting LACP and the capabilities of each port. It then dynamically groups similarly configured ports into a single logical link (channel or aggregate port). Similarly configured , trunking state and VLAN numbers. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 28-5 - Cisco 3845 | Software Guide - Page 552
ports send and receive LACP PDUs on the lowest numbered VLAN. In Layer 2 EtherChannels, the first port in This is a manual configuration, and ports on both ends of the EtherChannel must have the same configuration. If the Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 553
a channel is going only to a single MAC address, using the destination-MAC address always chooses the same link in the channel. Using source addresses or IP addresses might result in better load balancing. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 28-7 - Cisco 3845 | Software Guide - Page 554
with source-based forwarding enabled EtherChannel Cisco router with destination-based forwarding enabled 101239 Configuring EtherChannels • Default EtherChannel Configuration, page 28-9 • EtherChannel Configuration Guidelines, page 28-9 • Configuring Layer 2 EtherChannels, page 28-10 (required - Cisco 3845 | Software Guide - Page 555
configure an EtherChannel in both the PAgP and LACP modes. EtherChannel groups running PAgP and LACP can coexist on the same switch. Individual EtherChannel groups can run either PAgP or LACP, but they cannot interoperate. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 556
with a service instance. Assign all ports as static-access ports in the same VLAN, or configure them as trunks. If you configure the port as a static-access port, assign it to only one VLAN. The range is 1 to 4094. 28-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 557
Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. To remove a port from the EtherChannel group, use the no channel-group interface configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 28-11 - Cisco 3845 | Software Guide - Page 558
terminal interface port-channel port-channel-number Step 3 Step 4 Step 5 Step 6 Step 7 ip address ip-address mask end show etherchannel channel-group-number detail copy running-config startup-config Purpose Enter global configuration mode. Specify the port-channel logical interface, and enter - Cisco 3845 | Software Guide - Page 559
the same type. Up to eight ports can be active, and up to eight ports can be in standby mode. Ensure that there is no IP address assigned to the physical port. Put the port into Layer 3 mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 28-13 - Cisco 3845 | Software Guide - Page 560
and the "LACP Modes" section on page 28-5. end Return to privileged EXEC mode. show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. 28-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 561
terminal port-channel load-balance {dst-ip | dst-mac | src-dst-ip | src-dst-mac | src-ip | src-mac} end show etherchannel load-balance copy running-config startup-config Purpose Enter global configuration mode. Configure an EtherChannel load-balancing method. The default is src-mac. Select one of - Cisco 3845 | Software Guide - Page 562
be configured the same at both ends of must manually set configure terminal interface interface-id Purpose Enter global configuration mode. Specify the port for transmission, and enter interface configuration mode. 28-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 563
Configuring EtherChannels Command Step 3 pagp learn-method physical-port Step 4 pagp port-priority priority Step 5 Step 6 Step 7 end show running-config or show pagp channel-group-number internal copy running-config startup-config Purpose Select the PAgP learning method. By default - Cisco 3845 | Software Guide - Page 564
end show running-config or show lacp sys-id copy running-config startup-config Purpose Enter global configuration mode. Configure the LACP system priority. For priority, the range is 1 to 65535. The default fails. 28-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 565
vlan none Switch (config-if)# service instance 1 Ethernet Switch (config-if-srv)# encapsulation untagged Switch (config-if-srv)# l2protocol peer lacp Switch (config-if-srv)# bridge-domain 10 Switch (config-if-srv)# end OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 28-19 - Cisco 3845 | Software Guide - Page 566
and traffic counters by using the clear lacp {channel-group-number counters | counters} privileged EXEC command. For detailed information about the fields in the displays, see the command reference for this release. 28-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 567
configuration information, see the Cisco IOS IP Configuration Guide, Release 12.2 For complete syntax and usage information for the commands used in this chapter, see these command references: • Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2 • Cisco IOS IP - Cisco 3845 | Software Guide - Page 568
by using a routing protocol Steps for Configuring Routing By default, IPv4 routing is disabled on the switch, and you must enable it before routing can take place. For detailed IP routing configuration information, see the Cisco IOS IP Configuration Guide, Release 12.2 In the following procedures - Cisco 3845 | Software Guide - Page 569
Address Resolution Protocol (ARP) cache. Encapsulation: Standard Ethernet-style ARP. Timeout: 14400 seconds (4 hours). 255.255.255.255 (all ones). Enabled. Disabled. Disabled (all IP directed broadcasts are dropped). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-3 - Cisco 3845 | Software Guide - Page 570
mode, and specify the Layer 3 interface to configure. Remove the interface from Layer 2 configuration mode (if it is a physical interface). Configure the IP address and IP subnet mask. Return to privileged EXEC mode. 29-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 571
packet, the router forwards it to the best supernet route. If you disable classless routing and a router receives packets destined for a subnet of a network with no network default route, the router discards the packet. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-5 - Cisco 3845 | Software Guide - Page 572
default route, the router discards the packet. Figure 29-3 No IP configure terminal no ip classless end Purpose Enter global configuration mode. Disable classless routing behavior. Return to privileged EXEC mode. 29-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 573
segment as the router interface. Use the ip rarp-server address interface configuration command to identify the server. For more information on RARP, see the Cisco IOS Configuration Fundamentals Configuration Guide, Release 12.2. You can perform these tasks to configure address resolution: • Define - Cisco 3845 | Software Guide - Page 574
To remove an entry from the ARP cache, use the no arp ip-address hardware-address type global configuration command. To remove all nonstatic entries from the ARP cache, use the clear arp-cache privileged EXEC command. 29-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 575
mode. Verify the configuration on the interface or all interfaces. (Optional) Save your entries in the configuration file. To disable proxy ARP on the interface, use the no ip proxy-arp interface configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-9 - Cisco 3845 | Software Guide - Page 576
is disabled: Step 1 Step 2 Step 3 Step 4 Command configure terminal ip default-gateway ip-address end show ip redirects Step 5 copy running-config startup-config Purpose Enter global configuration mode. Set up a default gateway (router). Return to privileged EXEC mode. Display the address of the - Cisco 3845 | Software Guide - Page 577
, so it is important to first change the maxadvertinterval value, before manually changing either the holdtime or minadvertinterval values. Use the no ip irdp interface configuration command to disable IRDP routing. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-11 - Cisco 3845 | Software Guide - Page 578
can include an access list to control which broadcasts are forwarded. When an access list is specified, only IP packets permitted by the access list are eligible to be translated. Return to global configuration mode. 29-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 579
in the Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2 lists the ports that are forwarded by default if you do not specify any UDP ports. If you do not specify any UDP ports when you configure the forwarding of UDP broadcasts, you are configuring the router to - Cisco 3845 | Software Guide - Page 580
address Step 4 Step 5 Step 6 end show ip interface [interface-id] copy running-config startup-config Purpose Enter global configuration mode. Enter interface configuration mode, and specify the interface to configure. Enter a broadcast address different from the default, for example 128.1.255.255 - Cisco 3845 | Software Guide - Page 581
UDP datagrams. Return to privileged EXEC mode. Verify your entry. (Optional) Save your entry in the configuration file. To disable this feature, use the no ip forward-protocol turbo-flood global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-15 - Cisco 3845 | Software Guide - Page 582
you must enable IP routing. Beginning in privileged EXEC mode, follow these steps to enable IP routing: Step 1 Step 2 Command configure terminal ip routing Purpose Enter global configuration mode. Enable IP routing. 29-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 583
commands, such as specifying the networks to route with the network (RIP) router configuration command. For information on specific protocols, see sections later in this chapter and to the Cisco IOS IP Configuration Guide, Release 12.2. Return to privileged EXEC mode. Verify your entries. (Optional - Cisco 3845 | Software Guide - Page 584
RIP Parameters To configure RIP, you enable RIP routing for a network and optionally configure other parameters. On the Cisco ME switch, RIP configuration commands are ignored until you configure the network number. 29-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 585
sent. By default, packets in a multiple-packet RIP update have no delay added between packets. If you are sending packets to a lower-speed device, you can add an interpacket delay in the range of 8 to 50 milliseconds. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-19 - Cisco 3845 | Software Guide - Page 586
13 Step 14 Command end show ip protocols copy running-config startup-config Purpose Return to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To turn off the RIP routing process, use the no router rip global configuration command. To display the - Cisco 3845 | Software Guide - Page 587
-id Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. To disable IP summarization, use the no ip summary-address rip router configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-21 - Cisco 3845 | Software Guide - Page 588
). The minimum configuration would use all default parameter values, no authentication, and interfaces assigned to areas. If you customize your environment, you must ensure coordinated configuration of all routers. 29-22 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 589
another): 110. and dist3 (routes from other routing domains): 110. Disabled. All outgoing link-state advertisements (LSAs) are flooded to the interface. Disabled. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-23 - Cisco 3845 | Software Guide - Page 590
(NSF) Awareness document at this URL: http://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/ftosnsfa.html Configuring Basic OSPF Parameters Enabling OSPF requires that you create an OSPF routing process, specify the range of IP addresses to be associated with the routing process, and - Cisco 3845 | Software Guide - Page 591
) Explicitly specify the cost of sending a packet on the interface. (Optional) Specify the number of seconds between link state advertisement transmissions. The range is 1 to 65535 seconds. The default is 5 seconds. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-25 - Cisco 3845 | Software Guide - Page 592
12 Step 13 Step 14 end show ip ospf interface [interface-name] show ip ospf neighbor detail Step 15 copy running-config startup-config Purpose (Optional) Set the estimated number of seconds to wait before sending a link state update packet. The range is 1 to 65535 seconds. The default is 1 second - Cisco 3845 | Software Guide - Page 593
process-id Step 3 neighbor ip-address [priority number] [poll-interval seconds] Step 4 Step 5 Step 6 end show ip ospf [process-id] copy running-config startup-config Purpose Enter global configuration mode. Configure an OSPF routing process and enter router configuration mode. Specify an OSPF - Cisco 3845 | Software Guide - Page 594
interface information. copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of the ip ospf network command to return to the default network type for the media. 29-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 595
ip ospf [process-id [area-id]] database Display lists of information related to the OSPF database for a specific router. Step 10 copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 596
these steps to configure these OSPF parameters: Step 1 Step 2 Command configure terminal router ospf process-id Purpose Enter global configuration mode. Enable OSPF routing, and enter router configuration mode. 29-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 597
12 end Return to privileged EXEC mode. Step 13 show ip ospf [process-id [area-id]] database Display lists of information related to the OSPF database for a specific router. For some of the keyword options, see the "Monitoring OSPF" section on page 29-33. Step 14 copy running-config startup-config - Cisco 3845 | Software Guide - Page 598
29 Configuring IP Unicast Routing Beginning in privileged EXEC mode, follow these steps to configure OSPF LSA pacing: Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Command configure terminal router ospf process-id timers lsa-group-pacing seconds end show running-config copy running-config startup - Cisco 3845 | Software Guide - Page 599
ip ospf database privileged EXEC command options and for explanations of fields in the resulting display, see the Cisco IOS IP IP packet has traversed 15 routers and the next hop to the destination was learned through EIGRP. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 600
EIGRP Parameters, page 29-36 • Configuring EIGRP Interfaces, page 29-37 • Configuring EIGRP Route Authentication, page 29-38 • Configuring EIGRP Stub Routing, page 29-39 • Monitoring and Maintaining EIGRP, page 29-40 29-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 601
default metric. The metric includes: • Bandwidth: 0 or greater kbps. • Delay (tens of microseconds): 0 or any positive number that is a multiple of 39.1 nanoseconds. • Reliability: any number metro IP access image. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-35 - Cisco 3845 | Software Guide - Page 602
automatic summarization of subnet routes into network-level routes. ip summary-address eigrp autonomous-system-number address mask (Optional) Configure a summary aggregate. end Return to privileged EXEC mode. 29-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 603
show ip eigrp interface Display which interfaces EIGRP is active on and information about EIGRP relating to those interfaces. copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29 - Cisco 3845 | Software Guide - Page 604
. Step 13 copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no forms of these commands to disable the feature or to return the setting to the default value. 29-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 605
EIGRP stub routing, see "Configuring EIGRP Stub Routing" part of the Cisco IOS IP Configuration Guide, Volume 2 of 3: Routing Protocols, Release 12.2 from the Cisco.com page under Documentation > Cisco IOS Software > 12.2 Mainline > Configuration Guides. OL-23400-01 Cisco ME 3800X and 3600X Switch - Cisco 3845 | Software Guide - Page 606
Step 6 Step 7 Command configure terminal router eigrp 1 network network-number eigrp stub [receive-only | connected | static | summary] end show ip eigrp neighbor detail copy running-config startup-config Purpose Enter global configuration mode. Configure a remote or distribution router to run an - Cisco 3845 | Software Guide - Page 607
chapter in the Cisco IOS IP and IP Routing Configuration Guide. For details about BGP commands and keywords, see the "IP Routing Protocols" part of the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2. For a list of BGP commands that are visible but not supported by the - Cisco 3845 | Software Guide - Page 608
of a network number, a list of IP Routing Protocols" part of the Cisco IOS IP Configuration Guide, Release 12.2. For details about specific commands, see the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2.For a list of BGP commands that are visible but not supported - Cisco 3845 | Software Guide - Page 609
life; 60 minutes. BGP router ID The IP address of a loopback interface if one is configured or the highest IP address configured for a physical interface on the router. Default Disabled. IP prefix list None defined. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29- - Cisco 3845 | Software Guide - Page 610
Disabled. Timers Keepalive: 60 seconds; holdtime: 180 seconds. 1. NSF = Nonstop Forwarding 2. BGP NSF Awareness can be enabled for IPv4 on switches with the metro IP access image by enabling Graceful Restart. 29-44 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 611
AS number, and enter router configuration mode. The AS number can be from 1 to 65535, with 64512 to 65535 designated as private autonomous numbers. Configure a network as local to this AS, and enter it in the BGP table. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29 - Cisco 3845 | Software Guide - Page 612
. These examples show how to configure BGP on the routers in Figure 29-5. Router A: Switch(config)# router bgp 100 Switch(config-router)# neighbor 129.213.1.1 remote-as 200 Router B: Switch(config)# router bgp 200 29-46 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 613
IOS IP Configuration Guide, Release 12.2. For details about specific commands, see the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2. See Appendix C, "Unsupported Commands in Cisco IOS Release 12.2(52)EY," for a list of BGP commands that are visible but not supported - Cisco 3845 | Software Guide - Page 614
best path and inserts that path in the IP routing table. If BGP multipath support is enabled and the EBGP paths are learned from the same neighboring autonomous systems, multiple paths are installed in the IP routing 29-48 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 615
ignore Purpose Enter global configuration mode. Enable a BGP routing process, assign it an AS number, and enter router configuration mode. (Optional) Configure the router to ignore AS path length in selecting a route. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-49 - Cisco 3845 | Software Guide - Page 616
) Configure the number of paths to be added to the IP routing table. The default is to only enter the best path in the routing table. The range is from 1 to 8. Having multiple paths allows load balancing among the paths. end Return to privileged EXEC mode. show ip bgp show ip bgp neighbors - Cisco 3845 | Software Guide - Page 617
route map: Step 1 Step 2 Command configure terminal router bgp autonomous-system Purpose Enter global configuration mode. Enable a BGP routing process, assign it an AS number, and enter router configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-51 - Cisco 3845 | Software Guide - Page 618
name} filter-list {access-list-number | name} {in | out | weight weight} end show ip bgp neighbors [paths regular-expression] copy running-config startup-config Purpose Enter global configuration mode. Define a BGP-related access list. Enter BGP router configuration mode. Establish a BGP filter - Cisco 3845 | Software Guide - Page 619
le le-value] number to the entry. end Return to privileged EXEC mode. show ip prefix list [detail | summary] name Verify the configuration by displaying information default, all destinations belong to the general Internet OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 620
Cisco default community format is in the format NNAA. In the most recent RFC for BGP, a community takes the form AA:NN, where the first part is the AS number and the second part is a 2-byte number. end Return to privileged EXEC mode. 29-54 Cisco ME 3800X and 3600X Switch Software Configuration - Cisco 3845 | Software Guide - Page 621
the neighbor is not on a directly connected segment. The multihop session is not established if the only route to the multihop peer's address is the default route (0.0.0.0). OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-55 - Cisco 3845 | Software Guide - Page 622
peer group, use the neighbor shutdown router configuration command. To enable a previously existing neighbor or neighbor peer group that had been disabled, use the no neighbor shutdown router configuration command. 29-56 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 623
mask advertise-map map-name aggregate-address address mask attribute-map map-name end show ip bgp neighbors [advertised-routes] copy running-config startup-config Purpose Enter global configuration mode. Enter BGP router configuration mode. Create an aggregate entry in the BGP routing table. The - Cisco 3845 | Software Guide - Page 624
end Return to privileged EXEC mode. show ip bgp neighbor Verify the configuration. show ip bgp network copy running-config startup-config (Optional) Save your entries in the configuration file. Configuring peers. 29-58 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 625
-system Enter BGP router configuration mode. bgp dampening Enable BGP route dampening. bgp dampening half-life reuse suppress max-suppress [route-map map] (Optional) Change the default values of route dampening factors. end Return to privileged EXEC mode. show ip bgp flap-statistics - Cisco 3845 | Software Guide - Page 626
see the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2. Table 29-11 IP BGP Clear and Show Commands Command clear ip bgp address clear ip bgp * clear ip bgp peer-group tag show ip bgp prefix show ip bgp cidr-only show ip bgp community [community-number] [exact] show - Cisco 3845 | Software Guide - Page 627
information for the commands used in this chapter, see the Cisco IOS Apollo Domain, Banyan VINES, DECnet, ISO CLNS and XNS Command Reference, Release 12.2, use the IOS command reference master index, or search online. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-61 - Cisco 3845 | Software Guide - Page 628
command. Use the is-type command also to configure a different router instance as a Level 2 router. Note For more detailed information about IS-IS, see the "IP Routing Protocols" chapter of the Cisco IOS IP Configuration Guide, Release 12.2. For complete syntax and usage information for - Cisco 3845 | Software Guide - Page 629
-capable router to be maintained during the switchover process. This feature is automatically enabled and requires no configuration. For more information on this feature, see the Integrated IS-IS Nonstop Forwarding (NSF) Awareness Feature Guide at this URL: http://www.cisco.com/en/US/docs/ios/12_2t - Cisco 3845 | Software Guide - Page 630
IS-IS, all routers act as Level 1 and Level 2 routers (by default). Router A Switch(config)# clns routing Switch(config)# router isis Switch(config-router)# net 49.0001.0000.0000.000a.00 Switch(config-router)# exit 29-64 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 631
ip router isis Switch(config-if)# clns router isis Switch(config-router)# exit Configuring IS-IS Global Parameters • You can force a default route into an IS-IS routing domain by configuring a default will still occur. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-65 - Cisco 3845 | Software Guide - Page 632
time that LSP packets remain in the router database without being refreshed. The range is from 1 to 65535 seconds. The default is 1200 seconds (20 minutes). After the specified time interval, the LSP packet is deleted. 29-66 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 633
, use the no default-information originate router configuration command. Use the no area-password or no domain-password router configuration command to disable passwords. To disable LSP MTU settings, use the no lsp mtu router configuration command. To return OL-23400-01 Cisco ME 3800X and 3600X - Cisco 3845 | Software Guide - Page 634
Layer 3 mode. (Optional) Configure the metric (or cost) for the specified interface. The range is from 0 to 63. The default is 10. If no level is entered, the default is to apply to both Level 1 and Level 2 routers. 29-68 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 635
, the default is Level 1 and Level 2. Return to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return to the default settings, use the no forms of the commands. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-69 - Cisco 3845 | Software Guide - Page 636
. Display all route maps configured or only the one specified. Discover the paths taken to a specified destination by packets in the network. Display the routing table in which the specified CLNS destination is found. 29-70 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 637
routers start converging on it. Figure 29-7 Breaking an OSPF Neighbor Relationship OSPF 3 BFD 172.18.0.1 Router A 172.16.10.2 4 OSPF neighbors X BFD neighbors X 2 1 X 172.16.10.1 OSPF 3 BFD Router B 172.17.0.1 127845 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 638
You also need to confirm that Cisco Express Forwarding (CEF) is enabled (the default) on participating switches. For more detailed configuration, see the Bidirectional Forwarding Detection feature module at this URL: http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html For details on - Cisco 3845 | Software Guide - Page 639
. Specify an interface for a BFD session, and enter interface configuration mode. Only physical interfaces support BFD. Remove the interface from Layer 2 configuration mode. Configure the IP address and IP subnet mask. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-73 - Cisco 3845 | Software Guide - Page 640
When you start BFD sessions for OSPF, OSPF must be running on all participating devices.You can enable BFD support for OSPF by enabling it globally on all OSPF interfaces or by enabling it on one or more interfaces. 29-74 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 641
disable it on specific interfaces: Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Step 8 Step 9 Command configure terminal router ospf process- id bfd all-interfaces exit interface interface-id ip ospf bfd disable end show bfd neighbors [detail] copy running-config startup-config Purpose Enter - Cisco 3845 | Software Guide - Page 642
it on specific interfaces: Step 1 Step 2 Step 3 Command configure terminal router is-is area-tag bfd all-interfaces Step 4 exit Step 5 Step 6 Step 7 interface interface-id ip router isis isis bfd disable Step 8 Step 9 Step 10 end show bfd neighbors [detail] copy running-config startup-config - Cisco 3845 | Software Guide - Page 643
mode, follow these steps to enable BGP BFD: Step 1 Step 2 Command configure terminal router bgp as-tag Purpose Enter global configuration mode. Specify a BGP autonomous system, and enter router configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-77 - Cisco 3845 | Software Guide - Page 644
enabled on all interfaces. If HSRP support has been manually disabled, you can reenable it in interface or global configuration mode. All participating devices must have HSRP enabled and CEF enabled (the default). 29-78 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 645
-number] ip [ip-address] [secondary]] standby bfd exit standby bfd all-interfaces end show standby neighbors copy running-config startup-config Purpose Enter global configuration mode. Specify an interface for a BFD session, and enter interface configuration mode. Only physical interfaces support - Cisco 3845 | Software Guide - Page 646
can support two or more VPNs with overlapping IP addresses. • Understanding Multi-VRF CE, page 29-80 • Default Multi-VRF CE Configuration, page 29-82 • Multi-VRF CE Configuration Guidelines, page 29-82 • Configuring VRFs, page 29-83 • Configuring VRF-Aware Services, page 29-84 • Configuring a VPN - Cisco 3845 | Software Guide - Page 647
. Figure 29-8 shows a configuration using Cisco ME switches as multiple virtual CEs. This scenario is suited for customers who have low bandwidth requirements for their VPN service, for example, small companies. In this case, multi-VRF CE support is required in the Cisco ME switches. Because multi - Cisco 3845 | Software Guide - Page 648
in all PE routers within a VPN community. • VPN forwarding-transports all traffic between all VPN community members across a VPN service-provider network. Default Multi-VRF CE Configuration Table 29-14 shows the default VRF configuration. Table 29-14 Default VRF Configuration Feature VRF Maps - Cisco 3845 | Software Guide - Page 649
IP routing. Name the VRF, and enter VRF configuration mode. Create a VRF table by specifying a route distinguisher. Enter either an AS number and an arbitrary number (xxx:y) or an IP address and arbitrary number (A.B.C.D:y) OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 650
VRF-aware. Any configured VRF in the system can be specified for a VRF-aware service. VRF-Aware services are implemented in platform-independent modules. VRF means multiple routing instances in Cisco IOS. Each platform has its own limit on the number of VRFs it supports. VRF-aware services have the - Cisco 3845 | Software Guide - Page 651
configure VRF-aware services for HSRP. For complete syntax and usage information for the commands, refer to the switch command reference for this release and the Cisco IOS Switching Services Command Reference, Release 12.2. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 652
you want to use a VRF table that is attached to an interface, say E1/0, you need to configure the CLI ip [t]ftp source-interface E1/0 to inform [t]ftp to use a specific routing table. In this example, the VRF table is 29-86 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 653
-interface interface-type interface-number end Purpose Enter global configuration mode. Specify the source IP address for TFTP connections. Return to privileged EXEC mode. Configuring a VPN Routing Session Routing within the VPN can be configured with any supported routing protocol (RIP, OSPF - Cisco 3845 | Software Guide - Page 654
remote-as as-number neighbor address activate end show ip bgp [ipv4] [neighbors] copy running-config startup-config Purpose Enter global configuration mode. Configure the BGP routing process with the AS number passed to other BGP routers, and enter router configuration mode. Specify a network - Cisco 3845 | Software Guide - Page 655
Switch(config-if)# ip vrf forwarding v12 Switch(config-if)# ip address 8.8.2.8 255.255.255.0 Switch(config-if)# exit Switch(config)# interface gigabitethernet0/5 Switch(config-if)# switchport trunk encapsulation dot1q OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-89 - Cisco 3845 | Software Guide - Page 656
activate Switch(config-router-af)# network 8.8.2.0 mask 255.255.255.0 Switch(config-router-af)# exit Switch(config-router)# address-family ipv4 vrf vl1 Switch(config-router-af)# redistribute ospf 1 match internal 29-90 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 657
-target import 100:1 Router(config-vrf)# exit Router(config)# ip vrf v2 Router(config-vrf)# rd 100:2 Router(config-vrf)# route-target export 100:2 Router(config-vrf)# route-target import 100:2 Router(config-vrf)# exit OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-91 - Cisco 3845 | Software Guide - Page 658
associated with a VRF. Display information about the defined VRF instances. For more information about the information in the displays, refer to the Cisco IOS Switching Services Command Reference, Release 12.2. 29-92 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 659
Routing Protocol-Independent Commands" chapter of the Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols, Release 12.2. These sections contain this configuration information: • Configuring Cisco Express Forwarding, page 29-93 • Configuring the Number of Equal-Cost Routing Paths, page - Cisco 3845 | Software Guide - Page 660
Enter router configuration mode. Set the maximum number of parallel paths for the protocol routing table. The range is from 1 to 8; the default is 4 for most IP routing protocols, but only 1 for BGP. Return to privileged EXEC mode. 29-94 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 661
Step 6 Command show ip protocols copy running-config startup-config Purpose Verify the setting in the Maximum path field. (Optional) Save your entries in the configuration file. Use the no maximum-paths router configuration command to restore the default value. Configuring Static Unicast Routes - Cisco 3845 | Software Guide - Page 662
route to a network as the static default route: Step 1 Step 2 Step 3 Step 4 Command configure terminal ip default-network network number end show ip route Step 5 copy running-config startup-config Purpose Enter global configuration mode. Specify a default network. Return to privileged EXEC mode - Cisco 3845 | Software Guide - Page 663
that specific policy configurations need not be repeated within the same route map. The switch supports the continue clause for outbound policies. For more information about using the route map continue clause, see the BGP Route-Map Continue Support for an Outbound Policy feature guide for Cisco IOS - Cisco 3845 | Software Guide - Page 664
match ip next-hop {access-list-number | access-list-name} [...access-list-number | ...access-list-name] Match a next-hop router address passed by one of the access lists specified (numbered from to a local BGP path. 29-98 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 665
, use the no route-map map tag global configuration command or the no match or no set route-map configuration commands. You can distribute routes from one routing domain into another and control route distribution. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-99 - Cisco 3845 | Software Guide - Page 666
map-tag] [weight weight] [subnets] Step 4 default-metric number Step 5 default-metric bandwidth delay reliability loading mtu Step 6 end Step 7 show route-map Step 8 copy running-config startup-config Purpose Enter global configuration mode. Enter router configuration mode. Redistribute routes - Cisco 3845 | Software Guide - Page 667
default Step 5 no passive-interface interface type Step 6 network network-address Step 7 end Step 8 copy running-config startup-config Purpose Enter global configuration mode. Enter router configuration updates: OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-101 - Cisco 3845 | Software Guide - Page 668
end Step 5 show ip protocols Step 6 copy running-config startup-config Purpose Enter global configuration mode. Enter router configuration mode. Define an administrative distance. weight-The administrative distance as an integer from 10 to 255. Used alone, weight specifies a default administrative - Cisco 3845 | Software Guide - Page 669
authentication key information. copy running-config startup-config (Optional) Save your entries in the configuration file. To remove the key chain, use the no key chain name-of-chain global configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 29-103 - Cisco 3845 | Software Guide - Page 670
the routing table. Display the current state of the routing table in summary form. Display supernets. Display the routing table used to switch IP traffic. Display all route maps configured or only the one specified. 29-104 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 671
any single router. Note For complete syntax and usage information for the commands used in this chapter, see the switch command reference for this release and the Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2. • Understanding HSRP, page 30-1 • Configuring HSRP - Cisco 3845 | Software Guide - Page 672
uninterrupted service to users on Host C's segment that need to communicate with users on Host B's segment and also continues to perform its normal function of handling packets between the Host A segment and Host B. 30-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 673
time. - HSRPv2 has a different packet format than HRSPv1. A switch running HSRPv1 cannot identify the physical router that sent a hello packet because the source MAC address of the router is the virtual MAC address. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 30-3 - Cisco 3845 | Software Guide - Page 674
30-2 MHSRP Load Sharing Active router for group 1 Standby router for group 2 Router A 10.0.0.1 Active router for group 2 Standby router for group 1 Router B 10.0.0.2 121235 Client 1 Client 2 Client 3 Client 4 30-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 675
. For more information, see the "Configuring Layer 3 EtherChannels" section on page 28-12. • All Layer 3 interfaces must have IP addresses assigned to them. See the "Configuring Layer 3 Interfaces" section on page 9-19. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 30-5 - Cisco 3845 | Software Guide - Page 676
neither router is designated as a secondary or standby router and no priorities are set, the primary IP addresses are compared and the higher IP address is the active router, with the next highest as the standby router. 30-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 677
Step 8 Command end show standby [interface-id [group]] copy running-config startup-config Purpose Return to privileged EXEC mode. Verify the configuration. (Optional) Save your entries in the configuration file. Use the no standby [group-number] ip [ip-address] interface configuration command to - Cisco 3845 | Software Guide - Page 678
-priority-Enter the amount by which the hot standby priority for the router is decremented or incremented when the interface goes down or comes back up. The default value is 10. end Return to privileged EXEC mode. 30-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 679
type number [interface-priority] interface configuration command to remove the tracking. This example activates a port, sets an IP address and a priority of 120 (higher than the default value), and waits for 300 seconds (5 minutes) before attempting to become the active router: Switch# configure - Cisco 3845 | Software Guide - Page 680
string interface configuration command to delete an authentication string. Use the no standby [group-number] timers hellotime holdtime interface configuration command to restore timers to their default values. 30-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 681
is redirected by ICMP to the real MAC address of a router and that router later fails, packets from the host are lost. For more information, see the Cisco IOS IP Configuration Guide, Release 12.2. Displaying HSRP Configurations From privileged EXEC mode, use this command to display HSRP settings - Cisco 3845 | Software Guide - Page 682
sent in 00:00:02.262 Hot standby IP address is 172.20.138.51 configured Active router is local Standby router is unknown expired Standby virtual mac address is 0000.0c07.ac64 Name is test Chapter 30 Configuring HSRP 30-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 683
, and understand network performance. Cisco IOS IP SLAs can perform network assessments, verify quality of service (QoS), ease the deployment of new services, and assist with network troubleshooting. For more information about IP SLAs, see the Cisco IOS IP SLAs Configuration Guide, Release 12.4T - Cisco 3845 | Software Guide - Page 684
problems and saves troubleshooting time. • Multiprotocol Label Switching (MPLS) performance monitoring and network verification (if the switch supports MPLS) This section includes this information about IP SLAs functionality: • Using Cisco IOS IP SLAs to Measure Network Performance, page 31-2 • IP - Cisco 3845 | Software Guide - Page 685
, see the operation-specific chapters in the Cisco IOS IP SLAs Configuration Guide at this URL: http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide/12_4t/sla_12_4t_book.html Note The switch does not support IP SLAs Voice over IP (VoIP) service levels using the gatekeeper registration - Cisco 3845 | Software Guide - Page 686
(such as Telnet or HTTP). You cannot configure the IP SLAs responder on non-Cisco devices and Cisco IOS IP SLAs can send operational packets only to services native to those devices. Response Time Computation for IP SLAs Switches and routers can take tens of milliseconds to process incoming packets - Cisco 3845 | Software Guide - Page 687
SLAs-Multiple Operation Scheduling" chapter of the Cisco IOS IP SLAs Configuration Guide at this URL: http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide/12_4t/sla_12_4t_book.html IP SLAs Operation Threshold Monitoring To support successful service level agreement monitoring, you must have - Cisco 3845 | Software Guide - Page 688
the Cisco IOS IP SLAs Configuration Guide, Release 12.4T at this URL: http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide/12_4t/sla_12_4t_book.html Note that not all of the IP SLAs commands or operations described in this guide are supported on the switch. The switch supports IP service - Cisco 3845 | Software Guide - Page 689
Chapter 31 Configuring Cisco IOS IP SLAs Operations Configuring IP SLAs Operations Supported Operation Types Type of Operation to Perform: 802.1agEcho Type of Operation to Perform: 802.1agJitter Type of Operation to Perform: dhcp Type of Operation to Perform: dns Type of Operation to Perform: echo - Cisco 3845 | Software Guide - Page 690
UDP jitter operation on the source device: Step 1 Step 2 Command configure terminal ip sla operation-number Purpose Enter global configuration mode. Create an IP SLAs operation, and enter IP SLAs configuration mode. 31-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 691
operation in memory when it is not actively collecting information. The range is 0 to 2073600 seconds, the default is 0 seconds (never ages out). • (Optional) recurring-Set the operation to automatically run every day. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 31-9 - Cisco 3845 | Software Guide - Page 692
Chapter 31 Configuring Cisco IOS IP SLAs Operations Step 7 Step 8 Step 9 Command end show ip sla configuration [operation-number] copy running-config startup-config Purpose Return to privileged EXEC mode. (Optional) Display configuration values, including all defaults for all IP SLAs operations - Cisco 3845 | Software Guide - Page 693
collecting information. The range is 0 to 2073600 seconds; the default is 0 seconds (never ages out). • (Optional) recurring-Set the operation to automatically run every day. end Return to privileged EXEC mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 31-11 - Cisco 3845 | Software Guide - Page 694
Monitoring IP SLAs Operations Chapter 31 Configuring Cisco IOS IP SLAs Operations Step 8 Step 9 Command show ip sla configuration [operation-number] copy running-config startup-config Purpose (Optional) Display configuration values including all defaults for all IP SLAs operations or a specified - Cisco 3845 | Software Guide - Page 695
global information about Cisco IOS IP SLAs. show ip sla authentication Display IP SLAs authentication information. show ip sla configuration [entry-number] Display configuration values including all defaults for all IP SLAs operations or a specific operation. show ip sla enhanced-history - Cisco 3845 | Software Guide - Page 696
Monitoring IP SLAs Operations Chapter 31 Configuring Cisco IOS IP SLAs Operations 31-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 697
also supports IP Service Level Agreements (SLAs) for CFM. This chapter provides information about configuring CFM, E-LMI, and the Ethernet OAM protocol. For complete command and configuration information for Ethernet OAM,CFM, and E-LMI, see the Cisco IOS Carrier Ethernet Configuration Guide at this - Cisco 3845 | Software Guide - Page 698
32-5 • Configuration Error List, page 32-5 • IP SLAs Support for CFM, page 32-6 • IP SLAs Support for CFM as shown in Figure 32-1, a service-provider domain would be larger than performs operations on a per-domain basis. 32-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 699
A maintenance association (MA) identifies a service that can be uniquely identified within the frames. There are two types of maintenance points: • Maintenance end points (MEPs) are points at the edge of the domain 23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-3 - Cisco 3845 | Software Guide - Page 700
that allow MEPs to discover other MEPs within a domain and allow MIPs to discover MEPs. CC messages are configured to a domain or VLAN. Enter the continuity-check Ethernet service configuration command to enable CCM. 32-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 701
messages) and expected MEPs (by configuration) for a service. It verifies that all endpoints of a multipoint service are operational. The crosscheck function is performed only one time and is initiated from the command-line interface (CLI). CFM 802.1ag also supports static remote MEPs or static RMEP - Cisco 3845 | Software Guide - Page 702
MEPs. For more information about IP SLAs operation with CFM, see the IP SLAs for Metro-Ethernet feature module at this URL: http://www.cisco.com/en/US/docs/ios/12_2sr/12_2srb/feature/guide/sr_meth.html Configuring Ethernet CFM Configuring Ethernet CFM requires configuring the CFM domain. You can - Cisco 3845 | Software Guide - Page 703
size in number of entry lines. The range is from 1 to 4095; the default is 100 lines. • (Optional) For hold-time, enter the maximum cache hold time in minutes. The range is from 1 to 65535; the default is 100 minutes. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-7 - Cisco 3845 | Software Guide - Page 704
100 ms, 1 second, 10 seconds, 1 minute and 10 minutes. The default is 10 seconds. Note Because faster CCM rates are more CPU-intensive, we do not recommend configuring a large number of MEPs running at 100 ms intervals. 32-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 705
is a MEP for the service in another domain at the next lower active level. (Optional) Set the number of minutes that data from a missing maintenance end point is kept before it is purged. The range is 1 to 65535; the default is 100 minutes. Return to global configuration mode. Specify an interface - Cisco 3845 | Software Guide - Page 706
is started. The range is 1 to 65535; the default is 30 seconds. Define a CFM domain, set the domain level, and enter ethernet-cfm configuration mode for the domain. The maintenance level number range is 0 to 7. 32-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 707
any} | port} show ethernet cfm maintenance-points remote crosscheck show ethernet cfm errors [configuration] copy running-config startup-config Purpose Define a customer service maintenance association name or number or VPN ID to be associated with the domain, and a VLAN ID, and enter ethernet-cfm - Cisco 3845 | Software Guide - Page 708
mep mpid identifier continuity-check static rmep end show ethernet cfm maintenance-points remote static show ethernet cfm errors [configuration] copy running-config startup-config Purpose Define a customer service maintenance association name or number or a VPN ID to be associated with the domain - Cisco 3845 | Software Guide - Page 709
a port MEP, and enter ethernet-cfm-service configuration mode. • ma-name-a string of no more than 100 characters that identifies the MAID. • ma-number-a value from 0 to 65535. • vpn-id vpn-enter a VPN ID as the ma-name. Define the static remote maintenance end point identifier in the domain and - Cisco 3845 | Software Guide - Page 710
] [service-up] end Return to privileged EXEC mode. show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of each command to remove a configuration or to return to the default settings. 32-14 Cisco - Cisco 3845 | Software Guide - Page 711
2500 to 10000 milliseconds (ms). The default is 2500 ms. ethernet cfm alarm service provider VLAN ID or IDs as a VLAN-ID (1 to 4094), a range of VLAN-IDs separated by a hyphen, or a series of VLAN IDs separated by comma. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 712
module at this URL: http://www.cisco.com/en/US/docs/ios/12_2sr/12_2srb/feature/guide/sr_meth.html For detailed information about configuring IP SLAs operations, see the Cisco IOS IP SLAs Configuration Guide, Release 12.4T at this URL: http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide - Cisco 3845 | Software Guide - Page 713
(Optional) Specify the amount of time in ms that the IP SLAs operation waits for a response from its request packet. The range is 0 to 604800000; the default value is 5000. exit Return to global configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-17 - Cisco 3845 | Software Guide - Page 714
}] end show ip sla configuration [operation-number] copy running-config startup-config Purpose Schedule the time parameters for the IP SLAs operation. • operation-number-Enter the IP SLAs operation number. • (Optional) ageout seconds-Enter the number of seconds to keep the operation in memory when - Cisco 3845 | Software Guide - Page 715
) Specify the amount of time in milliseconds that the IP SLAs operation waits for a response from its request packet. The range is 0 to 604800000; the default value is 5000. exit Return to global configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-19 - Cisco 3845 | Software Guide - Page 716
}] end show ip sla configuration [operation-number] copy running-config startup-config Purpose Schedule the time parameters for the IP SLAs operation. • operation-number-Enter the IP SLAs operation number. • (Optional) ageout seconds-Enter the number of seconds to keep the operation in memory when - Cisco 3845 | Software Guide - Page 717
test1 lck Index Level Services Archive(min) 1 5 1 100 2 3 1 100 3 3 3 100 4 3 1 100 5 2 1 100 6 1 1 100Total Services : 1 This is an LCK Expiry Threshold: 3.5 Level to transmit LCK: Default OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-21 - Cisco 3845 | Software Guide - Page 718
show ip sla configuration [entry-number] show ip sla ethernet-monitor configuration [entry-number] show ip sla statistics [entry-number | aggregated | details] Purpose Displays configuration values including all defaults for all IP SLAs operations or a specific operation. Displays the configuration - Cisco 3845 | Software Guide - Page 719
It also supports Dying Gasp PDUs based on loss of power. • Remote loopback mode to ensure link quality with a remote peer during installation or troubleshooting. In this , loopback control, or vendor-specific OAM PDUs. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-23 - Cisco 3845 | Software Guide - Page 720
interface interface-id Step 3 ethernet oam Purpose Enter global configuration mode. Define an interface to configure as an OAM interface, and enter interface configuration mode. Enable Ethernet OAM on the interface. 32-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 721
on an interface: Step 1 Step 2 Command configure terminal interface interface-id Purpose Enter global configuration mode. Define an interface to configure as an OAM interface, and enter interface configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-25 - Cisco 3845 | Software Guide - Page 722
mode. Enable the interface to support link monitoring. This is the default. You need to enter this command only if it has been disabled by previously entering the no ethernet oam link-monitor supported command. 32-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 723
number of frames. The range is 0 to 65535. The default is 1. • Enter window frames to set the a polling window size in number of frames. The range is 1 to 65535; each value is a multiple of 10000 frames. The default is 1000. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 724
is visible on the switch and you are allowed to enter it, but it is not supported.Enter the no form of the commands to disable the configuration. Use the no form of each command to disable the threshold setting. 32-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 725
also set the template to put the interface in error-disabled state if any high thresholds are exceeded. These steps are optional and can be performed in any sequence or repeated to configure different options. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-29 - Cisco 3845 | Software Guide - Page 726
in number of symbols. The range is 0 to 65535. It must be lower than the high threshold. • Enter window symbols to set the window size (in number of symbols) of the polling period. The range is 1 to 65535 symbols. 32-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 727
frames. The range is 1 to 900. The default is 1. • Enter window frames to set the a polling window size in number of frames. The range is 100 to 9000; each value is a multiple of 100 milliseconds. The default is 1000. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-31 - Cisco 3845 | Software Guide - Page 728
services available on the CE port. E-LMI interoperates with an OAM protocol, such as CFM, that runs within the provider network to collect OAM status. CFM runs at the provider maintenance level (UPE to UPE with up MEPs at the UNI). 32-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 729
or ports that belong to an EtherChannel. • You cannot configure E-LMI on VLAN interfaces. • You must enter the ethernet lmi ce global configuration command to enable the switch or interface in customer-edge mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-33 - Cisco 3845 | Software Guide - Page 730
configuration command to globally disable E-LMI. Use the no form of the ethernet lmi interface configuration command with keywords to disable E-LMI on the interface or to return the timers to the default settings. 32-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 731
service commands to show current status on the device. Customer-Edge Device Configuration This example shows the commands necessary to configure E-LMI on the CE device. The switch can only be configured loopback mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-35 - Cisco 3845 | Software Guide - Page 732
• Ethernet OAM and CFM Configuration Example, page 32-36 For more information about CFM and interaction with Ethernet OAM, see the Ethernet Connectivity Fault Management feature module at this URL: http://www.cisco.com/en/US/docs/ios/12_2sx/12_2sxh/feature/guide/sxh_cfm.html Enabling Ethernet OAM - Cisco 3845 | Software Guide - Page 733
01 Switch# config t Switch(config)# interface gigabitethernet0/1 Switch(config-if)# switchport trunk allowed vlan 10 Switch(config-if)# switchport mode trunk Switch(config-if)# ethernet oam remote-loopback supported sec) Service ID Cisco ME 3800X and 3600X Switch Software Configuration Guide 32-37 - Cisco 3845 | Software Guide - Page 734
OAM Interaction Chapter 32 Configuring Ethernet OAM, CFM, and 4 0015.633f.6900 10 UP Gi0/1 Age(sec) Service ID 27 blue Switch PE2: Switch# show ethernet cfm .00a3.3780 10 TEST Gi1/1/1 Total Remote MEPs: 1 Age(sec) Service ID 8 blue In addition, if you shut down the CE1 interface that - Cisco 3845 | Software Guide - Page 735
of which hosts are members. • Protocol-Independent Multicast (PIM) protocol is used among routers and multilayer switches to track which multicast packets to forward to each other and to their directly connected LANs. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-1 - Cisco 3845 | Software Guide - Page 736
multicast data streams from on the location or number of members in a routers on a subnet). In some old host IP stacks, leave messages might be destined to the group IP address rather than to the all-routers address. 33-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 737
same group in PIMv1. • A bootstrap router (BSR) provides a fault-tolerant, automated RP discovery and distribution mechanism that enables routers and multilayer switches to dynamically learn the group-to-RP mappings. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-3 - Cisco 3845 | Software Guide - Page 738
Cisco's Implementation of IP Multicast Routing Chapter 33 Configuring IP more flexible hello packet format replaces the query packet to encode RP. This join message travels router-by-router toward the root, constructing a Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 739
upgrade to the IP services feature set. You must also configure EIGRP stub routing when configuring PIM stub routing on the switch. For more information, see the "Configuring EIGRP Stub Routing" section on page 29-39. The redundant PIM stub router topology is not supported. The redundant topology - Cisco 3845 | Software Guide - Page 740
command, see the Cisco IOS IP Command Reference, Volume 3 Release 12.2: http://www.cisco.com/en/US/docs/ios/12_2/ipmulti/command/reference/1rfindx3.html#LTR_I Auto-RP This proprietary feature eliminates the need to manually configure the RP information in every router and multilayer switch in - Cisco 3845 | Software Guide - Page 741
Configuring IP Multicast Routing Understanding Cisco's Implementation of IP Multicast Routing domain. These messages travel hop-by-hop through the network to all routers and switches, which store the RP information in the BSR message in their local RP cache. The routers routers router router perform 01 - Cisco 3845 | Software Guide - Page 742
interoperate with Cisco PIM v1 devices)) • Monitoring the RP Mapping Information, page 33-32 (optional) • Troubleshooting PIMv1 and PIMv2 Interoperability Problems, page 33-32 (optional) Default Multicast Routing Configuration Table 33-2 shows the default multicast routing configuration. Table 33 - Cisco 3845 | Software Guide - Page 743
Chapter 33 Configuring IP Multicast Routing Configuring IP Multicast Routing Table 33-2 Default Multicast Routing Configuration (continued) Feature Candidate BSRs Candidate RPs Shortest-path tree threshold rate PIM router query message interval Default Setting Disabled. Disabled. 0 kbps. 30 - Cisco 3845 | Software Guide - Page 744
perform IP router might send join messages toward the source to build a source-based distribution tree. By default, multicast routing is disabled, and there is no default mode setting. This procedure is required. 33-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 745
distributed global configuration command. To return to the default PIM version, use the no ip pim version interface configuration command. To disable PIM on an interface, use the no ip pim interface configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33 - Cisco 3845 | Software Guide - Page 746
(config-if)# no switchport Switch(config-if)# ip address 3.1.1.2 255.255.255.0 Switch(config-if)# ip pim sparse-dense-mode Switch(config-if)# exit Switch(config)# interface vlan100 Switch(config-if)# ip pim passive 33-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 747
multicast source-specific mode (PIM-SSM) PIM-SSM is the routing protocol that supports the implementation of SSM and is derived from PIM sparse mode (PIM-SM). • Internet Group Management Protocol version 3 (IGMPv3) OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-13 - Cisco 3845 | Software Guide - Page 748
reports, which are supported only in IGMP version 3. SSM IP Address Range SSM can coexist with the ISM service by applying the SSM delivery model to a configured subset of the IP multicast group address range. Cisco IOS software allows SSM configuration for the IP multicast address range of - Cisco 3845 | Software Guide - Page 749
by older IGMP snooping switches. For more information about switching issues related to IGMP (especially with CGMP), refer to the "Configuring IGMP Version 3" section of the "Configuring IP Multicast Routing" chapter. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-15 - Cisco 3845 | Software Guide - Page 750
. Display whether a multicast group supports SSM service or whether a source-specific host report was received. Configuring Source Specific Multicast Mapping The Source Specific Multicast (SSM) mapping feature supports SSM transition when supporting SSM on the end system is impossible or unwanted - Cisco 3845 | Software Guide - Page 751
changes, the router leaves the current sources associated with the joined groups. Go to this URL for additional information on SSM mapping: http://www.cisco.com/en/US/docs/ios/12_3t/12_3t2/feature/guide/gtssmma.html OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-17 - Cisco 3845 | Software Guide - Page 752
DNS-based SSM mapping is configured, the router constructs a domain name that includes the group address and performs a reverse lookup into the DNS. The router looks up IP address resource records and uses them as the source addresses associated with this group. SSM mapping supports up to 20 sources - Cisco 3845 | Software Guide - Page 753
by using each configured ip igmp ssm-map static command. The switch associates up to 20 sources per group. Return to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-19 - Cisco 3845 | Software Guide - Page 754
- DNS servers for redundancy, if required. end Return to privileged EXEC mode. show running-config Verify your entries. copy running-config startup-config (Optional) Save your entries in the configuration file. 33-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 755
directly connected to the router and that were learned through IGMP. Display the default domain name, the style of name lookup service, a list of ://www.cisco.com/en/US/docs/ios/12_3t/12_3t2/feature/guide/gtssmma.html OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-21 - Cisco 3845 | Software Guide - Page 756
1 Step 2 Command configure terminal ip pim rp-address ip-address [access-list-number] [override] Purpose Enter global configuration mode. Configure the address of a PIM RP. By default, no PIM RP address is configured. You must configure the IP address of RPs on all routers and multilayer switches - Cisco 3845 | Software Guide - Page 757
Chapter 33 Configuring IP Multicast Routing Configuring IP Multicast Routing Step 3 Step 4 Step 5 Step 6 Command access-list access-list-number {deny | permit} source [source-wildcard] end show running-config copy running-config startup-config Purpose Create a standard access list, repeating the - Cisco 3845 | Software Guide - Page 758
number from 1 to 99. If no access list is configured, the RP is used for all groups. • For interval seconds, specify how often the announcement messages must be sent. The default is 60 seconds. The range is 1 to 16383. 33-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 759
configured on any device, this problem can be addressed later. In those routers or multilayer switches already configured with the ip pim accept-rp command, you must enter the command again to accept the newly advertised RP. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 760
configured router from masquerading as a candidate RP and causing problems. Beginning in privileged EXEC mode, follow these steps to filter incoming RP announcement messages. This procedure is optional. Step 1 Step 2 Command configure terminal ip pim rp-announce-filter rp-list access-list-number - Cisco 3845 | Software Guide - Page 761
Chapter 33 Configuring IP Multicast Routing Configuring IP Multicast Routing Step 3 Command access-list access-list-number {deny | permit} source [source-wildcard] Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Create a standard access list, repeating - Cisco 3845 | Software Guide - Page 762
. Neighboring PIMv2 domain Layer 3 switch PIMv2 sparse-mode network BSR messages BSR messages BSR Layer 3 switch Configure the ip pim bsr-border command on this interface. Neighboring PIMv2 domain 101243 33-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 763
source [source-wildcard] Step 3 interface interface-id Step 4 Step 5 Step 6 Step 7 ip multicast boundary access-list-number end show running-config copy running-config startup-config Purpose Enter global configuration mode. Create a standard access list, repeating the command as many times as - Cisco 3845 | Software Guide - Page 764
from other vendors, any device can be used as an RP. • In a network of Cisco PIMv1 routers, Cisco PIMv2 routers, and routers from other vendors, configure only Cisco PIMv2 routers and multilayer switches as RPs. 33-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 765
configure terminal ip pim rp-candidate interface-id [group-list access-list-number] Step 3 access-list access-list-number {deny | permit} source [source-wildcard] Step 4 Step 5 Step 6 end show running-config copy running-config startup-config Purpose Enter global configuration mode. Configure - Cisco 3845 | Software Guide - Page 766
between different versions of DRs and RPs. Make sure the RPs are interacting with the DRs properly (by responding with register-stops and forwarding decapsulated data packets from registers). 33-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 767
to Router A. 6. By default, reception of the first data packet prompts Router C to send a join message toward the source. 7. When Router C receives data on (S,G), it sends a prune message for the source up the shared tree. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 768
data packet arrives at the last-hop router (Router C in Figure 33-5). This change occurs because the ip pim spt-threshold global configuration command controls that timing. The shortest-path tree requires more memory . 33-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 769
5 Step 6 end show ip igmp interface [interface-id] copy running-config startup-config Purpose Enter global configuration mode. Specify the interface to be configured, and enter interface configuration mode. Configure the frequency at which the switch sends PIM router-query messages. The default is - Cisco 3845 | Software Guide - Page 770
CPU performance because the CPU will receive all data traffic for the group address. Beginning in privileged EXEC mode, follow these steps to configure the switch to be a member of a group. This procedure is optional. 33-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 771
subnet serviced by an interface can join. By default, all groups are allowed on an interface. For access-list-number, specify an IP standard access list number. The range is 1 to 99. Return to global configuration mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33 - Cisco 3845 | Software Guide - Page 772
Optional IGMP Features Chapter 33 Configuring IP Multicast Routing Step 5 Command access-list access-list-number {deny | permit} source [source-wildcard] Step 6 Step 7 Step 8 end show ip igmp interface [interface-id] copy running-config startup-config Purpose Create a standard access - Cisco 3845 | Software Guide - Page 773
6 end show ip igmp interface [interface-id] copy running-config startup-config Purpose Enter global configuration mode. Specify the interface to be configured, and enter interface configuration mode. Configure the frequency at which the designated router sends IGMP host-query messages. By default - Cisco 3845 | Software Guide - Page 774
to privileged EXEC mode. Verify your entries. (Optional) Save your entries in the configuration file. To return to the default setting, use the no ip igmp query-max-response-time interface configuration command. 33-40 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 775
5 Step 6 end show ip igmp interface [interface-id] copy running-config startup-config Purpose Enter global configuration mode. Specify the interface to be configured, and enter interface configuration mode. Configure the switch as a statically connected member of a group. By default, this feature - Cisco 3845 | Software Guide - Page 776
id Step 3 Step 4 Step 5 Step 6 ip sdr listen end show running-config copy running-config startup-config Purpose Enter global configuration mode. Specify the interface to be enabled for sdr, and enter interface configuration mode. Enable sdr listener support. Return to privileged EXEC mode. Verify - Cisco 3845 | Software Guide - Page 777
Configuring IP Multicast Routing Configuring Optional Multicast Routing Features Configuring an IP , TTL thresholds are not supported by the switch. You a boundary is defined, no multicast data packets are allowed to flow across 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-43 - Cisco 3845 | Software Guide - Page 778
Step 5 Step 6 Step 7 ip multicast boundary access-list-number end show running-config copy running-config startup-config Purpose Enter global configuration mode. Create a standard access or suspected to be invalid. 33-44 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 779
specific statistics, such as the contents of IP routing tables, caches, and databases. Note The switch does not support per-route statistics. You can display information to learn resource utilization and solve network problems -01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 33-45 - Cisco 3845 | Software Guide - Page 780
which neighboring multicast devices are peering with it. Display IP multicast packet rate and loss information. Trace the path from a source to a destination branch for a multicast distribution tree for a given group. 33-46 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 781
the MPLS backbone to accept Layer 2 traffic by configuring the label-edge routers (LERs) at both ends of the MPLS backbone. Note For more information about MPLS, see the "Multiprotocol Label Switching" section of the Cisco IOS Switching Services Configuration Guide for Release 12.2 t this URL: http - Cisco 3845 | Software Guide - Page 782
IEEE 802.1Q tunneling, see the "Configuring Ethernet Virtual Connections (EVCs)" chapter. • For information about configuring H-VPLS on Cisco 7600 routers, see the "Configuring Multiprotocol Label Switching on the Optical Services Modules" section in the OSM Configuration Note, 12.2SX at: http://www - Cisco 3845 | Software Guide - Page 783
The egress edge router removes the label. The ME 3800X and ME 3600X switches perform these operations: • Push The ingress switch adds one or more labels. • Pop The egress switch removes a label and forwards the packet. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-3 - Cisco 3845 | Software Guide - Page 784
VPN does not require tunnels and encryption for network privacy. • Centralized service-MPLS VPNs are seen as private intranets, which allows delivery of targeted IP services to a group of users represented by a VPN. 34-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 785
3 VPN 2 122010 CE Each VPN contains customer devices attached to the customer-edge (CE) devices. The customer devices use VPNs to exchange information between devices, and the provider routers (P) are not aware of the VPNs. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 786
define support for address families other than IPv4. It does this in a way that ensures that the routes for a given VPN are learned only by other members of that VPN, which enables members of the VPN to communicate with each other. 34-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 787
by default. For more information about CEF, see the "Configuring Cisco Express Forwarding" section on page 29-93. • The switch supports MPLS forwarding on the following interfaces: - Routed ports - SVIs - Routed EtherChannels OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 788
all routers and connected interfaces are enabled for MPLS. Use the no mpls ip global configuration command to disable MPLS on the switch. Use the no mpls label protocol ldp global configuration command to disable LDP. 34-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 789
11 ip address ip address Step 12 end Step 13 show ip vrf Step 14 show ip route vrf show ip cef vrf vrf-name Step 15 copy running-config startup-config Purpose Enter global configuration mode. Enable IP routing (required only if routing is disabled). Enter VRF configuration mode, and define the VPN - Cisco 3845 | Software Guide - Page 790
ip routing router bgp autonomous-system-number Step 4 Step 5 no bgp default ipv4-unicast neighbor {ip-address | peer-group-name} remote-as as-number Step 6 Step 7 Step 8 Step 9 neighbor {ip-address | peer-group-name} update-source interface-id end show ip bgp neighbor copy running-config startup - Cisco 3845 | Software Guide - Page 791
3 Command configure terminal router bgp autonomous-system-number address-family ipv4 Step 4 Step 5 Step 6 neighbor ip-address activate end show ip bgp [ipv4] [neighbors] [vpnv4] Step 7 copy running-config startup-config Purpose Enter global configuration mode. Enter router configuration mode - Cisco 3845 | Software Guide - Page 792
end show ip bgp [ipv4] [neighbors] Step 10 Step 11 Step 12 show ip bgp vpnv4 vrf vrf-name show ip route vrf vrf-name copy running-config startup-config Purpose Enter global configuration mode. Configure the BGP routing process with the AS number passed to other BGP routers, and enter router - Cisco 3845 | Software Guide - Page 793
-number [metric] [transparent] end show ip rip database [network-prefix] Step 13 Step 14 Step 15 show ip bgp vpnv4 vrf vrf-name show ip route vrf vrf-name copy running-config startup-config Purpose Enter global configuration mode. Enable RIP routing, and enter router configuration mode. Configure - Cisco 3845 | Software Guide - Page 794
-VRF static route on the PE router. router bgp as-number Configure IPv4 address-family. address-family ipv4 [unicast] vrf vrf-name Step 4 Step 5 Step 6 Step 7 Step 8 redistribute connected or network network-number [mask network-mask] [route-map map-name] end show ip bgp vpnv4 vrf vrf-name show - Cisco 3845 | Software Guide - Page 795
destination: 16.2.1.1 VPN-IPv4 Net RD:16.2/16 P2 Next hop:PE3 Label 42 PE3 Step 3 IP destination: 16.2.1.1 Label 42 Step 4 destination: CE2 P3 IP destination: CE2 16.2.1.1 16.2/16 VPN A, site 2 101099 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-15 - Cisco 3845 | Software Guide - Page 796
! interface Vlan100 ip vrf forwarding A ip address 100.1.1.1 255.255.255.0 end This example shows a Layer 3 VPN configured using non-switchport port mode: Switch# show run interface g0/24 interface GigabitEthernet0/24 34-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 797
A ip address 100.1.1.1 255.255.255.0 end For information about load balancing, see this URL: http://www.cisco.com/en/US/docs/routers/7600/ios/12.2SR/configuration/guide/pfc3mpls.html#wp134 7055 Understanding MPLS Traffic Engineering and Fast Reroute This section describes the switch support of - Cisco 3845 | Software Guide - Page 798
for Layer 3 VPN traffic by entering the mpls ip interface configuration command on the tunnel interface. The switch does not support LDP over TE tunnels for Layer 2 VPN traffic. • Traffic forwarding to the TE tunnel using static routing • TE autoroute, which installs the routers announced by the - Cisco 3845 | Software Guide - Page 799
a router to dynamically build backup tunnels when they are needed so that you do not need to configure them manually. To configure backup autotunnel, enter the mpls traffic-eng auto-tunnel backup router configuration command. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 800
more information on MPLS TE, see this URL: http://www.cisco.com/en/US/docs/ios/mpls/configuration/guide/12_4/mp_12_4_book.html Beginning in privileged EXEC mode, follow these steps to configure MPLS TE and configure an interface to support RSVP-based tunnel signalling and IGP flooding: Step 1 Step - Cisco 3845 | Software Guide - Page 801
Chapter 34 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS Configuring MPLS Traffic Engineering and Fast Reroute Command Step 6 ip rsvp bandwidth bandwidth Step 7 Step 8 Step 9 ip rsvp signalling hello end copy running-config startup-config Purpose Enable RSVP for IP on an interface and the - Cisco 3845 | Software Guide - Page 802
loopback0 Step 5 metric-style wide Step 6 Step 7 Step 8 end show mpls traffic-eng show ip ospf mpls traffic-eng copy running-config startup-config Purpose Enter global configuration mode. Enable IS-IS or OSPF routing, and enter router configuration mode. Turn on MPLS traffic engineering for IS - Cisco 3845 | Software Guide - Page 803
file. Enter the no tunnel mode mpls traffic-eng global configuration command to disable MPLS traffic engineering or the no ip explicit-path global configuration command to remove the IP explicit path configuration. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-23 - Cisco 3845 | Software Guide - Page 804
neighbor and unnecessarily triggering fast reroute, we recommend configuring a minimum frequency of 200 ms. ip rsvp signalling hello Enable Hello signalling on the interface. end Return to privileged EXEC mode. 34-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 805
. Step 8 end Return to privileged EXEC mode. Step 9 show interface tunnel tunnel-num Verify the configuration. Step 10 copy running-config startup-config (Optional) Save your entries in the configuration file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-25 - Cisco 3845 | Software Guide - Page 806
address. The default interface is Loopback0. mpls traffic-eng auto-tunnel primary config mpls ip Enable Label Distribution Protocol (LDP) on primary autotunnels. end Return to privileged EXEC mode. show interface tunnel tunnel-num Verify the configuration. copy running-config startup-config - Cisco 3845 | Software Guide - Page 807
backbone. • At the other end of the MPLS backbone, the egress PE router receives the packet and de-encapsulates IEEE 802.1Q tunneling enables service providers to use a single VLAN to support customers who have multiple VLANs, 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-27 - Cisco 3845 | Software Guide - Page 808
mode trunk Switch(config-if)# no keepalive Switch(config-if)# service instance 1 ethernet Switch(config-if)# encapsulation untagged Switch(config-if)# l2protocol tunnel cdp Switch(config-if)# bridge-domain 102 34-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 809
.12.12 300 encapsulation mpls end Packets sent from the remote PE have an outer VLAN with any VLAN number and VLAN 11. The outer VLAN number is popped at this PE, and the packets are sent out from EFP 1 with VLAN 11. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-29 - Cisco 3845 | Software Guide - Page 810
includes this information about configuring EoMPLS on a switch used as a provider-edge router: • Default EoMPLS Configuration, page 34-31 • EoMPLS Configuration Guidelines, page 34-31 • Configuring EoMPLS, page 34-31 34-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 811
is globally enabled by default. • For VLAN-based EoMPLS, you must configure VLANs on the switch. • EoMPLS operation between two provider-edge routers requires an LDP session between the routers. The IP address used by each router as its LDP router ID must be reachable through IP by the other. Use - Cisco 3845 | Software Guide - Page 812
end Return to privileged EXEC mode. Step 9 show mpls l2transport vc Verify the configuration. Step 10 copy running-config startup-config (Optional) Save your entries in the configuration an IP address 10.0.0.1/32, and PE2 has IP address 20.0.01/32. Both provider-edge routers are configured with - Cisco 3845 | Software Guide - Page 813
Hello: 51.51.51.51(LDP Id) -> 2.2.2.2 Status TLV support (local/remote) : enabled/unknown (no remote binding) Label/status state machine : local standby, AC-ready, LnuRnd Last local dataplane status rcvd: no fault OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-33 - Cisco 3845 | Software Guide - Page 814
encapsulations. For information about L2VPN interworking, see the L2VPN Interworking feature module at this URL: http://www.cisco.com/en/US/docs/ios/mpls/configuration/guide/mp_l2vpn_intrntwkg.html Note that the switch does not support ATM interfaces, Point-to-Point Protocol (PPP), or frame relay as - Cisco 3845 | Software Guide - Page 815
! Switch(config-if) service instance 2 ethernet Switch(config-if) description case 101 Switch(config-if) encapsulation dot1q 13 Switch(config-if) rewrite ingress tag pop 1 symmetric Switch(config-if) bridge-domain 100 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-35 - Cisco 3845 | Software Guide - Page 816
configured with the EoMPLS tunnel, it also establishes a targeted LDP session to advertise the virtual-connection label it associated to the VC ID. This establishes an EoMPLS tunnel between switch PE1 and switch PE2. 34-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 817
remote provider edge (PE) router or of the link between the PE and customer edge (CE) routers. For more information see this URL: http://www.cisco.com/en/US/docs/ios/wan/configuration/guide/wan_l2vpn_pw_red_ps6441_TSD_Pro ducts_Configuration_Guide_Chapter.html OL-23400-01 Cisco ME 3800X and 3600X - Cisco 3845 | Software Guide - Page 818
Forcing a Manual Switchover to the Backup Pseudowire VC, page 34-40 • Monitoring L2VPN Pseudowire Redundancy, page 34-40 Configuration Guidelines Follow these guidelines when configuring L2 VPN pseudowire redundancy: 34-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 819
(VC) and enter xconnect configuration mode. backup peer peer-router-ip-address vcid [pw-class default is 0. • If you enter never, the switchback to the primary pseudowire never occurs. end Return to privileged EXEC mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 820
Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS Step 7 show xconnect all Step 8 copy running-config startup-config Verify the configuration. (Optional) Save your entries in the configuration file. This example shows how to configure pseudowire redundancy as a switchover to the peer with the IP - Cisco 3845 | Software Guide - Page 821
customer switches connected to PE2. Figure 34-8 H-VPLS Configuration Example Control plane Directed LDP CE LDP CE PE-CLE PE-POP PE-POP PE-CLE PE1 PE2 Data plane 802.1Q tunnel EoMPLS MPLS 802.1Q 101095 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-41 - Cisco 3845 | Software Guide - Page 822
Chapter 34 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS Understanding MPLS OAM MPLS OAM helps service providers monitor label-switched paths (LSPs) and quickly isolate MPLS forwarding problems to assist with fault detection and troubleshooting in an MPLS network. The switch supports these MPLS - Cisco 3845 | Software Guide - Page 823
. VPN end points are automatically discovered and ping or traceroute actions are automatically generated for each provider edge router. • For more information on configuring the LSP Health Monitor, go to this URL: http://www.cisco.com/en/US/docs/ios/ipsla/configuration/guide/sla_lsp_mon_autodisc - Cisco 3845 | Software Guide - Page 824
and performance between the provider-edge routers. You can manually configure IP SLAs LSP ping or traceroute, or you can configure it using the IP SLAs Health Monitor. • When you manually configure LSP ping or traceroute, you explicitly specify the FEC you want to validate, for example, a VPN end - Cisco 3845 | Software Guide - Page 825
: http://www.cisco.com/en/US/docs/ios/mpls/configuration/guide/mp_em_multipath_tree_ps10591_TSD _Products_Configuration_Guide_Chapter.html Configuring MPLS OAM and IP SLAs MPLS This section includes this information about configuring MPLS OAM s on a switch: • Default MPLS OAM Configuration, page 34 - Cisco 3845 | Software Guide - Page 826
do not enter the repeat keyword, the packet is sent 5 times. • (Optional) reply dscp dscp-value-Specify a specific class of service (CoS) in an echo reply by providing a differentiated services code point (DSCP) value. 34-46 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 827
Chapter 34 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS Configuring MPLS OAM and IP SLAs MPLS Command Purpose • (Optional) reply mode {ipv4 | router-alert}-Specify the reply mode for the echo request packet. Enter ipv4 to reply with an IPv4 UDP packet (the default) or router-alert to reply - Cisco 3845 | Software Guide - Page 828
-Specify the output interface for the echo request. • (Optional) nexthop ip-address-Force packets to go through the specified next-hop address. • (Optional) flags fec-Request FEC stack checking at the transit router. 34-48 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 829
with the label stack imposed as the number of bytes in each ping. The range is from 40 to 18024. The default is 100. • (Optional) sweep minimum maximum size-increment -Send a number of packets of different sizes. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-49 - Cisco 3845 | Software Guide - Page 830
34, "Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS." For detailed information about IP SLAs commands, see the command reference at this URL: http://www.cisco.com/en/US/docs/ios/ipsla/command/reference/sla_book.html 34-50 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 831
Add an explicit null label to all echo request packets of an IP SLAs operation. lsp-selector ip-address (Optional) Specify the local host IP address used to select the IP SLAs operation LSP. The default is 127.0.0.1. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-51 - Cisco 3845 | Software Guide - Page 832
) Specify the differentiated services codepoint (DSCP) value for an echo reply packet of an IP SLAs operation. The default value is 0. (Optional) Specify the IP SLAs echo request reply mode as ipv4 or router-alert. The default is IPv4 UDP packet. (Optional) Specify the protocol data size for an - Cisco 3845 | Software Guide - Page 833
configuration [operation-number] Show the configured LSP monitoring operations. Step 25 copy running-config startup-config (Optional) Save your entries in the configuration file. Step 26 show ip sla mpls-lsp-monitor summary Display a summary of IP SLAs LSP MPLS status. OL-23400-01 Cisco - Cisco 3845 | Software Guide - Page 834
request packet header. The range is 0 to 7; the default value is 0. request-data-size bytes (Optional) Specify the protocol data size for an IP SLAs request packet. The range is 100 to 1500; the default is 100 bytes. 34-54 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 835
. Step 15 copy running-config startup-config (Optional) Save your entries in the configuration file. Step 16 show ip sla statistics [operation-number] Display the statistics of a scheduled LSP monitoring operation. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-55 - Cisco 3845 | Software Guide - Page 836
an echo reply. The range is from 0 to 7. The default is 0. • (Optional) reply dscp dscp-value-Specify a specific class of service (CoS) in an echo reply by providing a differentiated services code point (DSCP) value. 34-56 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 837
an explicit null label to all echo request packets of an IP SLAs Health Monitor operation. (Optional) Set the number of hours for which LSP discovery group statistics are maintained for an LSP Health Monitor operation. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-57 - Cisco 3845 | Software Guide - Page 838
. Exit IP SLAs MPLS LSP monitor path discover configuration mode and return to auto IP SLA MPLS parameter configuration mode. Exit auto IP SLA MPLS parameter configuration mode and returns to global configuration mode. 34-58 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 839
should start after the entered time has elapsed. Step 17 end Return to privileged EXEC mode. Step 18 show ip sla mpls-lsp-monitor configuration [operation-number] Show the configured LSP monitoring operations. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-59 - Cisco 3845 | Software Guide - Page 840
Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS Command Step 19 copy running-config startup-config Step 20 show ip sla monitor mpls-lsp-monitor collection-statistics [group-id] show ip of the LDP discovery process. 34-60 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 841
Chapter 34 Configuring MPLS, MPLS VPN, MPLS OAM, and used to assign a QoS map to network prefixes that match a standard IP access list. Display tunnels announced to the IGP, including interface, destination, tunnels. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 34-61 - Cisco 3845 | Software Guide - Page 842
Monitoring and Maintaining MPLS and EoMPLS Chapter 34 Configuring MPLS, MPLS VPN, MPLS OAM, and EoMPLS 34-62 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 843
and resolve software problems related to the Cisco IOS software on the Cisco ME 3800X and ME 3600X switch. You can use the command-line interface (CLI) to identify and solve problems. Additional troubleshooting information related to hardware is provided in the hardware installation guide. Note For - Cisco 3845 | Software Guide - Page 844
Troubleshooting Recovering from a Lost or Forgotten Password The default configuration for the switch allows an end user to recover from a lost password by interrupting the boot process during power not support the break keys. To see that list go to: http://www.cisco.com/en/US/products/hw/routers/ - Cisco 3845 | Software Guide - Page 845
switch file system appears: Directory of flash: 13 drwx 192 11 -rwx 5825 18 -rwx 720 Mar 01 1993 22:30:48 image-name-mz.122-50-EX Mar 01 1993 22:31:59 config.text Mar 01 1993 02:21:30 vlan.dat OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35-3 - Cisco 3845 | Software Guide - Page 846
re-enable the interface, enter the interface vlan vlan-id global configuration command, and specify the VLAN ID of the shutdown interface. With the switch in interface configuration mode, enter the no shutdown command. 35-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 847
flash memory: switch: dir flash: The switch file system appears: Directory of flash: 13 drwx 192 Mar 01 1993 22:30:48 image-name-mz.122-50-SE 16128000 bytes total (10003456 bytes free) Boot the system: Switch: boot OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35 - Cisco 3845 | Software Guide - Page 848
one of these guidelines when changing the settings for duplex and speed: • Let both ports autonegotiate both speed and duplex. • Manually set the speed and duplex parameters for the ports on both ends of the connection. 35-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 849
, see the system message guide for this release. If you are using a non-Cisco SFP module, remove the SFP module from the switch, and replace it with a Cisco module. After inserting a Cisco SFP module, use the errdisable recovery cause gbic-invalid global configuration command to verify the port - Cisco 3845 | Software Guide - Page 850
POWER SUPPLY 1 Temperature Shutdown Threshold: 110.0000 Degree Celsius FAN TRAY 2: No Temperature Information Provided For more information, see the command reference for this release. Using Ping The switch supports IP 35-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 851
the physical path. - If an ARP entry does not exist, the switch sends an ARP query and tries to resolve the IP address. If the IP address is not resolved, the path is not identified, and an error message appears. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35-9 - Cisco 3845 | Software Guide - Page 852
the Time To Live (TTL) field in the IP header to cause routers and servers to generate specific return messages. Traceroute starts by sending a User a destination port number that is unused locally, it sends an ICMP 35-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 853
supported in this release. This example shows how to perform a traceroute to an IP host: Switch# traceroute ip msec Switch# The display shows the hop count, IP address of the router, and the round-trip time in milliseconds for 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35-11 - Cisco 3845 | Software Guide - Page 854
is supported only on the copper Ethernet 10/100/1000 ports. Using Debug Commands • Enabling Debugging on a Specific Feature, page 13 • Enabling All-System Diagnostics, page 13 • Redirecting Debug and Error Message Output, page 14 35-12 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 855
only to troubleshoot specific problems or during troubleshooting sessions with Cisco technical support staff. It performance or even render it unusable. In virtually all cases, it is best to use more specific debug commands. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 856
number at the end of its filename) by entering the show tech-support privileged EXEC command. You also can access the file by using any command that can copy or display files, such as the more or the copy privileged EXEC command. 35-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 857
or a specific file system, use the copy logging onboard module 1 destination privileged EXEC command. Caution We recommend that you keep OBFL enabled and that you do not remove the data stored in the flash memory. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35-15 - Cisco 3845 | Software Guide - Page 858
Logging Chapter 35 Troubleshooting Beginning in privileged EXEC mode, follow these steps to enable and configure OBFL. Note that OBLF is enabled by default; you need to enable it only if it has been disabled. Step 1 Step 2 Command configure terminal hw-module module [slot-number] logging onboard - Cisco 3845 | Software Guide - Page 859
reset reason : 0x0 Current reset timestamp : 03/01/1993 00:05:43 Current slot : 1 Current uptime : 0 years 0 weeks 2 days 6 hours 0 minutes Reset | | Reason | Count | No historical data to display OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 35-17 - Cisco 3845 | Software Guide - Page 860
1.50V 6 1.508 Nominal Range Sensor ID No historical data to display For more information about using the commands in Table 35-2 and for examples of OBFL data, see the command reference for this release. 35-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 861
privileged EXEC command. Table 36-1 Diagnostic Tests Test ID Number 1 2 3 4 5 Test Name TestPortAsicMem [B*D*R**] TestPortAsicCam [B*D*R**] TestPortAsicLoopback[B*D*R**] TestPortLoopback [B*D*R**] TestFpga [B*D*R**] OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 36-1 - Cisco 3845 | Software Guide - Page 862
See Table 36-1. • test-id-range-A range of test ID numbers separated by a hyphen or commas. • all-All of the specific day and time and verify the schedule: Switch(config)# diagnostic schedule test 1 on Dec 4 2008 10:22 36-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 863
command in the command reference for this release. Running Online Diagnostic Tests After you configure online diagnostics, you can manually start diagnostic tests or display the test results. You can also see the tests configured for the switch and the tests that have already run. • Starting Online - Cisco 3845 | Software Guide - Page 864
to display the test ID list. See Table 36-1. • test-id-Enter the ID number of the test. Use the show diagnostic content privileged EXEC command to display the test ID Test results: (. = Pass, F = Fail, U = Untested) 36-4 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 865
: Begin POST: EMAC Loopback Tests : End, Status Passed For more examples of other show diagnostic command outputs, see the "Examples" section of the show diagnostic command in the command reference for this release. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide 36-5 - Cisco 3845 | Software Guide - Page 866
Running Online Diagnostic Tests Chapter 36 Configuring Online Diagnostics 36-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 867
-ENTITY-FRU-CONTROL-MIB • CISCO-ENTITY-SENSOR MIB • CISCO-ETHER-CFM-MIB • CISCO-FLASH-MIB • CISCO-HSRP-MIB • CISCO-IETF-PW-MIB • CISCO-IMAGE-MIB • CISCO-MEMORY-POOL-MIB • CISCO-NAC-NAD-MIB • CISCO-PAE-MIB • CISCO-PAGP-MIB OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide A-1 - Cisco 3845 | Software Guide - Page 868
4 Step 5 Use FTP to access the server ftp.cisco.com. Log in with the username anonymous. Enter your e-mail username when prompted for the password. At the ftp> prompt, change directories to /pub/mibs/v1 and /pub/mibs/v2. Cisco ME 3800X and 3600X Switch Software Configuration Guide A-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 869
Appendix A Supported MIBs Using FTP to Access the MIB Files Step 6 Use the get MIB_filename command to obtain a copy of the MIB file. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide A-3 - Cisco 3845 | Software Guide - Page 870
Using FTP to Access the MIB Files Appendix A Supported MIBs Cisco ME 3800X and 3600X Switch Software Configuration Guide A-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 871
Cisco IOS Configuration Fundamentals Command Reference, Release 12.2. • Working with the Flash File System, page B-1 • Working with Configuration software image and configuration files. The default flash file system on the -01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-1 - Cisco 3845 | Software Guide - Page 872
, including the running configuration. tftp:-TFTP network server. xmodem:-Obtain the file from a network machine by using the Xmodem protocol. ymodem:-Obtain the file from a network machine by using the Ymodem protocol. Cisco ME 3800X and 3600X Switch Software Configuration Guide B-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 873
Cisco IOS File System, Configuration Files, and Software Images Working with the Flash File System Setting the Default File System You can specify the file system or directory that the system uses as the default a specific file. 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-3 - Cisco 3845 | Software Guide - Page 874
startup-config keyword shortcuts. For example, the copy running-config startup-config command saves the currently running configuration file to the NVRAM section of flash memory to be used as the configuration ]/filename Cisco ME 3800X and 3600X Switch Software Configuration Guide B-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 875
Specifically, you cannot copy these combinations: • From a running configuration to a running configuration • From a startup configuration to a startup configuration the default flash memory device: Switch# delete myconfig OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-5 - Cisco 3845 | Software Guide - Page 876
B Working with the Cisco IOS File System, Configuration Files, and Software name of the tar file to create. These options are supported: • For the local flash file system, the syntax is for the local or network file system. These options are supported: • For the local flash file system, the syntax - Cisco 3845 | Software Guide - Page 877
display the contents of a switch tar file that is in flash memory: Switch# archive tar /table flash:image-name.tar info (219 alias for the local file system. These options are supported: • For the local flash file system, the syntax 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-7 - Cisco 3845 | Software Guide - Page 878
entered to customize the function of the Cisco IOS software. A way to create a basic configuration file is to use the setup program or to enter the setup privileged EXEC command. For more information, see Chapter 3, "Assigning the Switch IP Address and Default Gateway." You can copy (download - Cisco 3845 | Software Guide - Page 879
but not save the configuration by using the copy running-config startup-config privileged EXEC command. The running configuration is saved in DRAM; the startup configuration is stored in the NVRAM section of flash memory. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-9 - Cisco 3845 | Software Guide - Page 880
daemon after modifying the /etc/inetd.conf and /etc/services files. To restart the daemon, either stop the inetd router to route traffic between subnets. Check connectivity to the TFTP server by using the ping command. B-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 881
console port or a Telnet session. Download the configuration file from the TFTP server to configure the switch. Specify the IP address or hostname of the TFTP server and :startup-config tftp:[[[//location]/directory]/filename] OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 882
by using FTP, the Cisco IOS software sends the first valid username in this list: • The username specified in the copy command if a username is specified. • The username set by the ip ftp username username global configuration command if the command is configured. • Anonymous. The switch sends - Cisco 3845 | Software Guide - Page 883
]@]location]/directory] to the running configuration or to the startup configuration /filename] system:running-config file. or copy ftp:[[[//[username[:password]@]location]/directory] /filename] nvram:startup-config OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-13 - Cisco 3845 | Software Guide - Page 884
configuration mode. This step is required only if you override the default remote username or password (see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. B-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 885
with the Cisco IOS File System, Configuration Files, and Software Images Working with Configuration Files Step 6 Step 7 Command Purpose end Return to privileged EXEC mode. copy system:running-config Using FTP, store the switch running or startup configuration ftp:[[[//[username[:password - Cisco 3845 | Software Guide - Page 886
switch IP address translates to Switch1.company.com, the .rhosts file for User0 on the RCP server should contain this line: Switch1.company.com Switch1 For more information, see the documentation for your RCP server. B-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 887
from the netadmin1 directory on the remote server with an IP address of 172.16.101.101 to the startup configuration: Switch# configure terminal Switch(config)# ip rcmd remote-username netadmin1 Switch(config)# end Switch# copy rcp: nvram:startup-config Address of remote host [255.255.255.255]? 172 - Cisco 3845 | Software Guide - Page 888
the configuration information from the startup configuration. If you reboot the switch with no startup configuration, the switch enters the setup program so that you can reconfigure the switch with all new settings. B-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 889
a file. By default, the switch prompts for confirmation on destructive file operations. For more information about the file prompt command, see the Cisco IOS Command Reference for Release 12.2. Caution You cannot restore a file after it has been deleted. Replacing and Rolling Back Configurations The - Cisco 3845 | Software Guide - Page 890
configuration). Otherwise, the configuration replacement operation fails. • Make sure that the switch also has sufficient free memory to execute the configuration replacement or rollback configuration commands. B-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 891
device. • When using the configure replace command, you must specify a saved configuration as the replacement configuration file for the running configuration. The replacement file must be a complete configuration generated by a Cisco IOS device (for example, a configuration generated by the copy - Cisco 3845 | Software Guide - Page 892
Appendix B Working with the Cisco IOS File System, Configuration Files, and Software Images Performing a Configuration Replacement or Rollback Operation Beginning in privileged EXEC mode, follow these steps to replace the running configuration file with a saved configuration file: Step 1 Step - Cisco 3845 | Software Guide - Page 893
the directory name in flash memory where the image is stored. You can also use the dir filesystem: privileged EXEC command to see the directory names of other software images that you might have stored in flash memory. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-23 - Cisco 3845 | Software Guide - Page 894
privileged EXEC command, we recommend using the archive download-sw and archive upload-sw privileged EXEC commands to download and upload software image files. B-24 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 895
Cisco IOS File System, Configuration Files, and Software Images Working with Software Images These sections contain this configuration .conf and /etc/services files. To restart the do not have a router to route traffic between 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-25 - Cisco 3845 | Software Guide - Page 896
Working with the Cisco IOS File System, Configuration Files, and Software Images Downloading an Image File By Using TFTP You can download a new image file and replace the current you must specify the /overwrite option. B-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 897
image to the TFTP server. • For //location, specify the IP address of the TFTP server. • For /directory/image-name server by uploading these files in order: info, the Cisco IOS image, and the web management files. After these files 01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-27 - Cisco 3845 | Software Guide - Page 898
, the Cisco IOS software sends configured to accept the FTP write request from you. Use the ip ftp username and ip router to route traffic between subnets. Check connectivity to the FTP server by using the ping command. B-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 899
is required only if you override the default remote username or password (see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. Return to privileged EXEC mode. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-29 - Cisco 3845 | Software Guide - Page 900
memory with the downloaded image. • The /reload option reloads the system after downloading the image unless the configuration on page B-28. • For @location, specify the IP address of the FTP server. • For directory/image- Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 901
Enter global configuration mode. This step is required only if you override the default remote username or password (see Steps 4, 5, and 6). ip ftp username username (Optional) Change the default remote username. ip ftp password password (Optional) Change the default password. end Return to - Cisco 3845 | Software Guide - Page 902
will be copying files must support RCP. The RCP copy server by using RCP, the Cisco IOS software sends the first valid username ip rcmd remote-username username global configuration command if the command is entered. B-32 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 903
, perform Steps 1 through 5 and go to Step 7. Command Step 1 Purpose Verify that the RCP server is properly configured by referring to the "Preparing to Download or Upload an Image File By Using RCP" section on page B-32. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 904
Cisco IOS File System, Configuration Files, and Software Images Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Command configure terminal ip rcmd remote-username username end configuration mode. This step is required only if you override the default specify the IP address of configuration the IP address - Cisco 3845 | Software Guide - Page 905
switch through the console port or a Telnet session. Enter global configuration mode. This step is required only if you override the default remote username (see Steps 4 and 5). (Optional) Specify the remote username. OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide B-35 - Cisco 3845 | Software Guide - Page 906
IOS image, and the web management files. After these files are uploaded, the upload algorithm creates the tar file format. Caution For the download and upload algorithms to operate properly, do not rename image names. B-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 907
Service (QoS) Commands, page C-7 • RADIUS Commands, page C-8 • Simple Network Management Protocol (SNMP) Commands, page C-8 • Spanning Tree Commands, page C-8 • VLAN Commands, page C-9 • Other Unsupported Commands, page C-9 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 908
arp probe Hot Standby Routing Protocol (HSRP) Commands Global Configuration Mode interface Async interface BVI interface Dialer interface Group-Async interface Lex interface Virtual-Template interface Virtual-Tokenring Cisco ME 3800X and 3600X Switch Software Configuration Guide C-2 OL-23400-01 - Cisco 3845 | Software Guide - Page 909
it. Global Configuration Mode All ip dvmrp commands ip multicast-routing vrf vrf-name ip pim accept-rp ip pim register-rate-limit Interface Configuration Mode All ip dvmrp commands ip igmp helper-address ip-address OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide C-3 - Cisco 3845 | Software Guide - Page 910
count ip cef traffic-statistics [load-interval seconds] [update-rate seconds]] ip flow-aggregation ip flow-cache ip flow-export ip gratuitous-arps ip local ip reflexive-list router iso-igrp router mobile router odr Cisco ME 3800X and 3600X Switch Software Configuration Guide C-4 OL-23400-01 - Cisco 3845 | Software Guide - Page 911
Commands in Cisco IOS Release 12.2(52)EY Interface Configuration Mode dampening ip accounting ip load-sharing [per-packet] ip mtu bytes ip ospf dead-interval minimal hello-multiplier multiplier ip unnumbered type number All ip security commands BGP Router Configuration Mode default-information - Cisco 3845 | Software Guide - Page 912
in Cisco IOS Release 12.2(52)EY Multiprotocol Label Switching (MPLS) Commands Privileged EXEC or User EXEC Mode debug ip rsvp hello [bfd | detail | stats] debug ip rsvp attributes tunnel mpls traffic-eng path-selection Cisco ME 3800X and 3600X Switch Software Configuration Guide C-6 OL-23400-01 - Cisco 3845 | Software Guide - Page 913
Because BGP/MBGP is not supported, use the ip msdp peer command instead of this command.) NetFlow Commands Global Configuration Mode ip flow-aggregation cache ip flow-cache entries Quality of Service (QoS) Commands Global Configuration Mode priority-list OL-23400-01 Cisco ME 3800X and 3600X Switch - Cisco 3845 | Software Guide - Page 914
RADIUS Commands Appendix C Unsupported Commands in Cisco IOS Release 12.2(52)EY Interface Configuration Mode priority-group RADIUS Commands Global Configuration Mode aaa authentication feature default enable aaa authentication feature default line aaa nas port extended authentication command - Cisco 3845 | Software Guide - Page 915
inspection All clear ip dhcp snooping commands All clear ipv6 commands Debug Commands All debug dot1x commands All debug ip dhcp snooping commands debug ip verify source packet All debug platform commands VLAN Commands OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide C-9 - Cisco 3845 | Software Guide - Page 916
service compress-config Interface Configuration Mode All dot1x commands All ip arp inspection commands All ip dhcp snooping commands ip sticky-arp ignore ip verify source [tracking | vlan] transmit-interface type number C-10 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 917
traffic for QoS 27-28 OL-23400-01 INDEX comments in 26-18 compiling 26 26-20 host keyword 26-12, 27-30 IP creating 26-7 implicit deny 26-9, 26-13, 26-7 matching criteria 26-7 named 26-14 numbers 26-8 terminal lines, setting on 26-18 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-1 - Cisco 3845 | Software Guide - Page 918
-VLAN list 10-12 Any Transport over MPLS See AToM area border routers See ABRs area routing IS-IS 29-61 ISO IGRP 29-61 ARP configuring 29-7 defined 1-4, 5-30, 29-7 encapsulation 29-9 static cache configuration 29-7 IN-2 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 919
34-10 default configuration 29-43, 29-72, 29-73 described 29-42 enabling 29-45 monitoring 29-60 multipath support 29-48 neighbors, types of 29-45 path selection 29-48 peers, configuring 29-55 prefix filtering 29-52 resetting sessions 29-47 route dampening 29-59 route maps 29-50 Cisco ME 3800X - Cisco 3845 | Software Guide - Page 920
configuring 6-7 support 6-5 blocking packets 19-5 booting boot loader, function of 3-2 boot process 3-1 manually 3-19 specific image 3-19 boot loader accessing 3-20 described 3-2 environment variables 3-20 prompt 3-20 trap-door mechanism 3-2 bootstrap router configuring 20-2 default configuration - Cisco 3845 | Software Guide - Page 921
MEPs 32-4 child policies, QoS 27-18 CIDR 29-57 Cisco Configuration Engine 1-3 Cisco Data Collection MIB 25-1 Cisco Discovery Protocol See CDP Cisco Express Forwarding See CEF Cisco IOS File System See IFS Cisco IOS IP SLAs 31-1 Cisco Process MIB 25-1 CiscoWorks 2000 1-3, 25-4 CIST regional root See - Cisco 3845 | Software Guide - Page 922
leave timer, IGMP 18-5 configuration files archiving B-19 clearing the startup configuration B-19 creating using a text editor B-10 default name 3-18 deleting a stored configuration B-19 described B-8 downloading IN-6 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 923
35-14 crosscheck, CFM 32-5, 32-10 cryptographic software image Kerberos 8-31 SSH 8-36 customer edge devices 29-80 customer-edge devices and VPNs 34-4, 34-6 MPLS 34-5 D data collection, bulk statistics 25-20 daylight saving time 5-13 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-7 - Cisco 3845 | Software Guide - Page 924
-MAC address forwarding, EtherChannel 28-7 device discovery protocol 20-1, 21-1 DHCP-based autoconfiguration client request message exchange 3-4 configuring client side 3-4 DNS 3-8 relay device 3-8 server side 3-7 IN-8 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 925
for IP address information 3-7 for receiving the configuration file 3-7 overview 3-4 relationship to BOOTP 3-4 relay support 1-3, 1-8 support for 1-3 DHCP-based autoconfiguration and image update configuring 3-11 to ?? understanding 3-5 to 3-6 diagnostic schedule command 36-2 Differentiated Services - Cisco 3845 | Software Guide - Page 926
CE device 32-34 default configuration 32-33 defined 32-32 enabling 32-34 information 32-33 monitoring 32-35 enable password 8-3 enable secret password 8-3 encapsulation, in pseudowire redundancy 34-33 encapsulation on service instances 11-4 encapsulation types supported 11-5 encryption for passwords - Cisco 3845 | Software Guide - Page 927
adding 10-7 defaults and ranges 10-5 modifying 10-7 EVC broadcast domain 11-1 configuration guidelines 11-8 creating 11-3 default configuration 11-8 supported features 11-2 external neighbors, BGP 29-45 F Fast Convergence 17-3 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-11 - Cisco 3845 | Software Guide - Page 928
command output 2-8 filters, IP See ACLs, IP flash device, number of B-1 Flex Link Multicast Fast Convergence 17-3 Flex Links configuration guidelines 17-8 configuring 17-8, 17-9 configuring preferred VLAN 17-11 configuring VLAN load balancing 17-10 default configuration 17-7 description 17-1 link - Cisco 3845 | Software Guide - Page 929
leave timer, described 18-5 configurable leave timer, procedures 18-9 configuring the switch as a member of a group 33-36 statically connected member 33-41 controlling access to groups 33-37 default configuration 33-36 OL-23400-01 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-13 - Cisco 3845 | Software Guide - Page 930
criteria 27-22 interface number 9-6 range macros 9-8 interface command 9-6 interface configuration, REP 16-9 interface configuration mode 2-2 interfaces configuration guidelines, duplex and speed 9-14 configuring IN-14 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 931
address 29-14 ip cef distributed command 29-93 IP directed broadcasts 29-12 ip igmp profile command 18-14 IP information assigned manually 3-15 through DHCP-based autoconfiguration 3-4 default configuration 3-3 IP multicast routing addresses all-hosts 33-2 all-multicast-routers 33-2 host group - Cisco 3845 | Software Guide - Page 932
-45 LSP Health Monitor, configuring 34-51 manually configuring CFM ping or jitter 32-16 manually configuring LSP ping 34-54 manually configuring LSP traceroute 34-54 measuring network performance 31-2 monitoring 31-12 IN-16 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 933
26-14 standard, creating 26-9 IRDP configuring 29-11 definition 29-10 support for 1-8 IS-IS addresses 29-61 area routing 29-61 default configuration 29-62 monitoring 29-70 show commands 29-70 support for 1-8 system routing 29-61 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-17 - Cisco 3845 | Software Guide - Page 934
34-37 label binding 34-3 labels, MPLS 34-2 label switching router See LSR LACP See EtherChannel Layer 2 interfaces, default configuration 9-13 Layer 2 traceroute and ARP 35-9 and CDP 35-9 broadcast traffic 35-9 described 35-9 IP addresses and subnets 35-9 MAC addresses and VLANs 35-9 multicast - Cisco 3845 | Software Guide - Page 935
building the address table 5-20 default configuration 5-21 disabling learning 5-29 discovering 5-30 displaying 5-29 dynamic learning 5-20 removing 5-21 in ACLs 26-26 IP address association 29-7 static adding 5-27 allowing 5-28, 5-29 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-19 - Cisco 3845 | Software Guide - Page 936
autonegotiation 35-6 module number 9-6 monitoring access groups 26-39 BGP 29-60 cables for unidirectional links 22-1 CDP 20-5 CEF 29-94 EIGRP 29-40 E-LMI 32-35 EoMPLS 34-60 Ethernet CFM 32-20, 32-22 Ethernet OAM 32-32 IN-20 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 937
links 34-24 routing protocol, configuring 34-22 supported features 34-18 tunnel, configuring 34-21 unsupported features 34-18 VPN configuration guidelines 34-7 labels 34-4 packet flow 34-15 MPLS OAM configuration guidelines 34-46 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-21 - Cisco 3845 | Software Guide - Page 938
CIST root 14-5 configuration guidelines 14-15, 15-5 configuring forward-delay time 14 Cisco ME 3800X and 3600X Switch Software Configuration Guide operations between regions 14-3 default configuration 14-14 default optional feature configuration change 14-6 instances supported 13-9 interface state - Cisco 3845 | Software Guide - Page 939
29-92 OL-23400-01 monitoring 29-92 network components 29-82 packet-forwarding process 29-82 support for 1-8 N named IPv4 ACLs 26-14 NameSpace Mapper See NSM native VLAN configuring 10-13 default 10-13 neighbor discovery/recovery, EIGRP 29-34 neighbor offset numbers, REP 16-4 neighbors, BGP - Cisco 3845 | Software Guide - Page 940
broadcast messages 5-6 peer 5-5 server 5-5 default configuration 5-4 displaying the configuration 5-11 overview 5-2 restricting access creating an access group 5-8 disabling NTP services per interface 5-10 source IP address, configuring 5-10 stratum 5-2 support for 1-4 synchronizing devices 5-5 time - Cisco 3845 | Software Guide - Page 941
shared tree 33-4 overview 33-4 prune messages 33-4 RPF lookups 33-8 stub routing configuration guidelines 33-12 enabling 33-12 overview 33-5 support for 1-8 versions interoperability 33-9 troubleshooting interoperability problems 33-32 v2 improvements 33-3 ping, LSP 34-43 ping mpls ipv4 command 34 - Cisco 3845 | Software Guide - Page 942
guidelines 34-38 monitoring 34-40 pseudowires, defined 34-37 pseudowire switchover, manually configuring 34-40 PVST+ 802.1Q trunking interoperability 13-10 described 13-9 instances supported 13-9 Q QoS basic model 27-2 IN-26 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 943
service policies 27-56 WTD 27-50 congestion avoidance 27-2, 27-15 congestion management 27-2, 27-17 default configuration 27-24 implicit deny 27-9 input policy maps 27-22 IP 27-20 support for specific 8-28 configuring accounting 8-27 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-27 - Cisco 3845 | Software Guide - Page 944
16-9 configuring SyncE workaround 6-10 convergence 16-4 default configuration 16-7 for timing loop prevention 6-3 manual preemption, configuring 16-13 monitoring 16-14 neighbor offset numbers 16-4 open segment 16-2 IN-28 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 945
collecting group Ethernet 23-5 collecting group history 23-5 support for 1-9 root guard described 15-3 enabling 15-9 support for 1-5 root switch MSTP 14-17 STP 13-14 route calculation timers, OSPF 29-30 route dampening, BGP 29-59 Cisco ME 3800X and 3600X Switch Software Configuration Guide IN-29 - Cisco 3845 | Software Guide - Page 946
numbers in log messages 24-7 service instance configuration mode 11-4 configuring 11-9 creating 11-3 defined 11-3 encapsulation 11-4 service-policy command attaching policy maps 27-4 using 27-56 service-provider network IN-30 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL - Cisco 3845 | Software Guide - Page 947
20-1 SNMP accessing MIB variables with 25-4 agent described 25-4 disabling 25-8 and IP SLAs 31-2 authentication level 25-11 community strings configuring 25-8 overview 25-4 OL-23400-01 configuration examples 25-21 default configuration 25-7 engine ID 25-7 groups 25-7, 25-10 host 25-7 ifIndex values - Cisco 3845 | Software Guide - Page 948
33-21 standby ip command 30-6 standby links 17-2 standby router 30-1 standby timers, HSRP 30-10 startup configuration booting manually 3-19 specific image 3-19 clearing B-19 configuration file automatically downloading 3-18 specifying the filename 3-18 default boot configuration 3-18 static access - Cisco 3845 | Software Guide - Page 949
switch 13-15 spanning-tree mode 13-12 switch priority 13-19 counters, clearing 13-22 OL-23400-01 Index default configuration 13-11 default optional feature configuration 15-5 designated port, defined 13-3 designated switch, defined 13-3 disabling 13-13 displaying status 13-22 EtherChannel guard - Cisco 3845 | Software Guide - Page 950
logging system clock configuring daylight saving time 5-13 manually 5-11 summer time 5-13 time zones 5-12 displaying the time and date 5-12 overview 5-1 See also NTP system message logging default configuration 24-3 IN-34 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 951
8-16 OL-23400-01 authentication key 8-13 authorization 8-16 login authentication 8-14 default configuration 8-13 displaying the configuration 8-17 identifying the server 8-13 limiting the services to the user 8-16 operation of 8-12 overview 8-10 support for 1-6 tracking services accessed by user - Cisco 3845 | Software Guide - Page 952
port priorities 10-14, 10-15 native VLAN for untagged traffic 10-13 parallel 10-15 twisted-pair Ethernet, detecting unidirectional links 22-1 U UDLD configuration guidelines 22-4 default configuration 22-4 disabling IN-36 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 953
daemon configuration 24-11 facilities supported 24-12 OL-23400-01 Index message logging configuration service See VPLS Virtual Private Network See VPN Virtual Private Networks See VPNs virtual router 30-1, 30-2 vlan.dat file 10-3 VLAN 1 Cisco ME 3800X and 3600X Switch Software Configuration Guide - Cisco 3845 | Software Guide - Page 954
networks 29-80 routes 29-81 VPN routing and forwarding table See VRF VPNs benefits 34-4 configuring 34-9 described 34-4 IPv4 prefix 34-6 MPLS 34-7 routes 34-4, 34-6 VRF configuration 34-9 defining 29-82 elements 34-4 IN-38 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01 - Cisco 3845 | Software Guide - Page 955
MPLS VPNs 34-4 tables 29-80 VRF-aware services ARP 29-85 configuring 29-84 ftp 29-86 HSRP 29-85 ping 29-85 SNMP 29-85 syslog 29-86 tftp 29-86 traceroute 29-86 W weighted tail drop See WTD WTD configuring 27-50 described 27-15 support for 1-7 X xconnect command 34-39 OL-23400-01 Cisco - Cisco 3845 | Software Guide - Page 956
Index IN-40 Cisco ME 3800X and 3600X Switch Software Configuration Guide OL-23400-01
-
1 -
2 -
3 -
4 -
5 -
6 -
7 -
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152
-
153
-
154
-
155
-
156
-
157
-
158
-
159
-
160
-
161
-
162
-
163
-
164
-
165
-
166
-
167
-
168
-
169
-
170
-
171
-
172
-
173
-
174
-
175
-
176
-
177
-
178
-
179
-
180
-
181
-
182
-
183
-
184
-
185
-
186
-
187
-
188
-
189
-
190
-
191
-
192
-
193
-
194
-
195
-
196
-
197
-
198
-
199
-
200
-
201
-
202
-
203
-
204
-
205
-
206
-
207
-
208
-
209
-
210
-
211
-
212
-
213
-
214
-
215
-
216
-
217
-
218
-
219
-
220
-
221
-
222
-
223
-
224
-
225
-
226
-
227
-
228
-
229
-
230
-
231
-
232
-
233
-
234
-
235
-
236
-
237
-
238
-
239
-
240
-
241
-
242
-
243
-
244
-
245
-
246
-
247
-
248
-
249
-
250
-
251
-
252
-
253
-
254
-
255
-
256
-
257
-
258
-
259
-
260
-
261
-
262
-
263
-
264
-
265
-
266
-
267
-
268
-
269
-
270
-
271
-
272
-
273
-
274
-
275
-
276
-
277
-
278
-
279
-
280
-
281
-
282
-
283
-
284
-
285
-
286
-
287
-
288
-
289
-
290
-
291
-
292
-
293
-
294
-
295
-
296
-
297
-
298
-
299
-
300
-
301
-
302
-
303
-
304
-
305
-
306
-
307
-
308
-
309
-
310
-
311
-
312
-
313
-
314
-
315
-
316
-
317
-
318
-
319
-
320
-
321
-
322
-
323
-
324
-
325
-
326
-
327
-
328
-
329
-
330
-
331
-
332
-
333
-
334
-
335
-
336
-
337
-
338
-
339
-
340
-
341
-
342
-
343
-
344
-
345
-
346
-
347
-
348
-
349
-
350
-
351
-
352
-
353
-
354
-
355
-
356
-
357
-
358
-
359
-
360
-
361
-
362
-
363
-
364
-
365
-
366
-
367
-
368
-
369
-
370
-
371
-
372
-
373
-
374
-
375
-
376
-
377
-
378
-
379
-
380
-
381
-
382
-
383
-
384
-
385
-
386
-
387
-
388
-
389
-
390
-
391
-
392
-
393
-
394
-
395
-
396
-
397
-
398
-
399
-
400
-
401
-
402
-
403
-
404
-
405
-
406
-
407
-
408
-
409
-
410
-
411
-
412
-
413
-
414
-
415
-
416
-
417
-
418
-
419
-
420
-
421
-
422
-
423
-
424
-
425
-
426
-
427
-
428
-
429
-
430
-
431
-
432
-
433
-
434
-
435
-
436
-
437
-
438
-
439
-
440
-
441
-
442
-
443
-
444
-
445
-
446
-
447
-
448
-
449
-
450
-
451
-
452
-
453
-
454
-
455
-
456
-
457
-
458
-
459
-
460
-
461
-
462
-
463
-
464
-
465
-
466
-
467
-
468
-
469
-
470
-
471
-
472
-
473
-
474
-
475
-
476
-
477
-
478
-
479
-
480
-
481
-
482
-
483
-
484
-
485
-
486
-
487
-
488
-
489
-
490
-
491
-
492
-
493
-
494
-
495
-
496
-
497
-
498
-
499
-
500
-
501
-
502
-
503
-
504
-
505
-
506
-
507
-
508
-
509
-
510
-
511
-
512
-
513
-
514
-
515
-
516
-
517
-
518
-
519
-
520
-
521
-
522
-
523
-
524
-
525
-
526
-
527
-
528
-
529
-
530
-
531
-
532
-
533
-
534
-
535
-
536
-
537
-
538
-
539
-
540
-
541
-
542
-
543
-
544
-
545
-
546
-
547
-
548
-
549
-
550
-
551
-
552
-
553
-
554
-
555
-
556
-
557
-
558
-
559
-
560
-
561
-
562
-
563
-
564
-
565
-
566
-
567
-
568
-
569
-
570
-
571
-
572
-
573
-
574
-
575
-
576
-
577
-
578
-
579
-
580
-
581
-
582
-
583
-
584
-
585
-
586
-
587
-
588
-
589
-
590
-
591
-
592
-
593
-
594
-
595
-
596
-
597
-
598
-
599
-
600
-
601
-
602
-
603
-
604
-
605
-
606
-
607
-
608
-
609
-
610
-
611
-
612
-
613
-
614
-
615
-
616
-
617
-
618
-
619
-
620
-
621
-
622
-
623
-
624
-
625
-
626
-
627
-
628
-
629
-
630
-
631
-
632
-
633
-
634
-
635
-
636
-
637
-
638
-
639
-
640
-
641
-
642
-
643
-
644
-
645
-
646
-
647
-
648
-
649
-
650
-
651
-
652
-
653
-
654
-
655
-
656
-
657
-
658
-
659
-
660
-
661
-
662
-
663
-
664
-
665
-
666
-
667
-
668
-
669
-
670
-
671
-
672
-
673
-
674
-
675
-
676
-
677
-
678
-
679
-
680
-
681
-
682
-
683
-
684
-
685
-
686
-
687
-
688
-
689
-
690
-
691
-
692
-
693
-
694
-
695
-
696
-
697
-
698
-
699
-
700
-
701
-
702
-
703
-
704
-
705
-
706
-
707
-
708
-
709
-
710
-
711
-
712
-
713
-
714
-
715
-
716
-
717
-
718
-
719
-
720
-
721
-
722
-
723
-
724
-
725
-
726
-
727
-
728
-
729
-
730
-
731
-
732
-
733
-
734
-
735
-
736
-
737
-
738
-
739
-
740
-
741
-
742
-
743
-
744
-
745
-
746
-
747
-
748
-
749
-
750
-
751
-
752
-
753
-
754
-
755
-
756
-
757
-
758
-
759
-
760
-
761
-
762
-
763
-
764
-
765
-
766
-
767
-
768
-
769
-
770
-
771
-
772
-
773
-
774
-
775
-
776
-
777
-
778
-
779
-
780
-
781
-
782
-
783
-
784
-
785
-
786
-
787
-
788
-
789
-
790
-
791
-
792
-
793
-
794
-
795
-
796
-
797
-
798
-
799
-
800
-
801
-
802
-
803
-
804
-
805
-
806
-
807
-
808
-
809
-
810
-
811
-
812
-
813
-
814
-
815
-
816
-
817
-
818
-
819
-
820
-
821
-
822
-
823
-
824
-
825
-
826
-
827
-
828
-
829
-
830
-
831
-
832
-
833
-
834
-
835
-
836
-
837
-
838
-
839
-
840
-
841
-
842
-
843
-
844
-
845
-
846
-
847
-
848
-
849
-
850
-
851
-
852
-
853
-
854
-
855
-
856
-
857
-
858
-
859
-
860
-
861
-
862
-
863
-
864
-
865
-
866
-
867
-
868
-
869
-
870
-
871
-
872
-
873
-
874
-
875
-
876
-
877
-
878
-
879
-
880
-
881
-
882
-
883
-
884
-
885
-
886
-
887
-
888
-
889
-
890
-
891
-
892
-
893
-
894
-
895
-
896
-
897
-
898
-
899
-
900
-
901
-
902
-
903
-
904
-
905
-
906
-
907
-
908
-
909
-
910
-
911
-
912
-
913
-
914
-
915
-
916
-
917
-
918
-
919
-
920
-
921
-
922
-
923
-
924
-
925
-
926
-
927
-
928
-
929
-
930
-
931
-
932
-
933
-
934
-
935
-
936
-
937
-
938
-
939
-
940
-
941
-
942
-
943
-
944
-
945
-
946
-
947
-
948
-
949
-
950
-
951
-
952
-
953
-
954
-
955
-
956
 |
 |
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
Cisco ME 3800X and 3600X Switch
Software Configuration Guide
Cisco IOS Release 12.2(52)EY
October 2010
Text Part Number: OL-23400-01