Cisco WS-C4003 Software Guide

Cisco WS-C4003 - Catalyst 4000 Chassis Switch Manual

Get Cisco WS-C4003 - Catalyst 4000 Chassis Switch PDF manuals and user guides View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals

Cisco WS-C4003 manual content summary:

  • Cisco WS-C4003 | Software Guide - Page 1
    Software Configuration Guide Catalyst 4000 Family Catalyst 2948G Catalyst 2980G Software Releases 6.3 and 6.4 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order
  • Cisco WS-C4003 | Software Guide - Page 2
    THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. This document is to be used in conjunction with the Software Configuration Guide and the Command Reference for your switch. CCIP, the Cisco Arrow logo, the Cisco Powered Network mark, the Cisco Systems
  • Cisco WS-C4003 | Software Guide - Page 3
    xxviii Technical Assistance Center xxviii Cisco TAC Web Site xxix Cisco TAC Escalation Center xxix Getting Started Product Overview 1-1 Catalyst 4000 Family Switches 1-1 Catalyst 2948G Switch 1-2 Catalyst 2980G Switch 1-2 Supervisor Engine Software 1-3 Using the Command-Line Interface 2-1 Overview
  • Cisco WS-C4003 | Software Guide - Page 4
    Switching Frames Between Segments 4-2 Building the Address Table 4-2 Default Ethernet and Fast Ethernet Configuration 4-2 Configuring Ethernet and Fast Ethernet Ports 4-3 Setting the Port Name 4-3 Setting the Port Priority Level 4-4 Setting the Port Speed 4-4 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 5
    4-6 Checking Connectivity 4-7 Configuring Gigabit Ethernet Switching 5-1 Understanding How Gigabit Ethernet Works 5-1 Configuration 6-4 Hardware Support for EtherChannel 6-4 Configuration Information 6-9 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 6
    Protocols Work 7-1 How a Topology Is Created 7-2 How a Switch or Port Becomes the Root Switch or Root Port 7-3 How Bridge Protocol Data Units Work 7-3 Spanning a MISTP Instance 7-21 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 vi 78-12647
  • Cisco WS-C4003 | Software Guide - Page 7
    Switch 7-27 Configuring a Primary Root Switch 7-27 Configuring a Secondary Root Switch 7-28 Configuring a Root Switch to Improve Convergence 7-29 Using Root Guard-Preventing Switches 8-9 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 8
    VTP 9-10 10 C H A P T E R Configuring VLANs 10-1 Understanding How VLANs Work 10-1 VLAN Default Configuration 10-3 VLAN Configuration Guidelines 10-3 Configuring VLANs 10-3 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 viii 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 9
    VLAN 10-4 Assigning Switch Ports to a VLAN Support 11 Software Requirements 12-2 Default VMPS and Dynamic Port Configuration 12-2 Dynamic Port VLAN Membership and VMPS Configuration Guidelines 12-3 Contents 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 10
    Port Membership 12-6 Troubleshooting VMPS and Dynamic Port VLAN Membership 12-6 Troubleshooting VMPS 12-6 Troubleshooting Dynamic Port VLAN Membership 13-8 Disabling GVRP Globally 13-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 x 78-12647
  • Cisco WS-C4003 | Software Guide - Page 11
    15-7 Checking CGMP Statistics 15-7 Disabling CGMP Fast-Leave Processing 15-8 Disabling CGMP 15-8 Configuring GMRP 15-8 GMRP Software Requirements 15-9 Default GMRP Configuration 15-9 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xi
  • Cisco WS-C4003 | Software Guide - Page 12
    Statistics 15-14 Clearing GMRP Statistics 15-15 Disabling GMRP on the Switch 15-15 Configuring Multicast Router Ports and Group Entries 15-16 Specifying the IP Permit List 17-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xii 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 13
    Filtering 18-3 Disabling Protocol Filtering 18-3 Monitoring and Managing the Switch Checking Port Status and Connectivity 19-1 Checking Module Status 19 20-1 Configuring CDP 20-2 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xiii
  • Cisco WS-C4003 | Software Guide - Page 14
    Switch TopN Reports 21-1 Understanding How Switch TopN Reports Works 21-1 Overview of Switch TopN Reports 21-1 Running Switch TopN Reports without the Background Option 21-2 Running Switch 23-3 Secuirty Models and Levels 23 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 15
    Understanding How RMON Works 24-1 Enabling RMON 24-2 Viewing RMON Data 24-2 Supported RMON and RMON2 MIB Objects 24-2 Configuring SPAN and RSPAN 25-1 Understanding How Configuration Examples 25-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 16
    Switch Access Using AAA 27-1 Understanding How Authentication Works 27-1 Authentication Overview 27-2 Understanding How Login Authentication Works 27-2 Understanding How Local Authentication Works 27-2 Understanding How TACACS+ Authentication Works 27-3 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 17
    Login Authentication 27-12 Setting Authentication Login Attempts on the Switch 27-12 Setting Authentication Login Attempts for Privileged Mode 27- Time 27-27 Clearing RADIUS Servers 27-28 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xvii
  • Cisco WS-C4003 | Software Guide - Page 18
    40 Setting and Enabling Automatic Reauthentication of the Supplicant 27-41 Manually Reauthenticating the Supplicant 27-42 Enabling Multiple Hosts 27-42 Disabling Authorization 27-50 xviii Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-
  • Cisco WS-C4003 | Software Guide - Page 19
    the Switch to Ignore the NVRAM Configuration 28-6 Setting the BOOT Environment Variable 28-7 Setting the BOOT Environment Variable 28-7 Clearing the BOOT Environment Variable Settings 28-7 Contents 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 20
    the Variable Settings 28-8 Displaying the Switch Boot Configuration 28-9 Working with System Software Images 29-1 Software Image Naming Conventions 29-1 Downloading System Software Images to the Switch Using TFTP 29-1 Understanding How TFTP Software Image Downloads Work 29-2 Preparing to Download
  • Cisco WS-C4003 | Software Guide - Page 21
    31-6 Preparing to Download a Configuration File Using rcp 31-6 Configuring the Switch Using a File on an rcp Server 31-6 Uploading Configuration Files to an -7 Configuring syslog Servers 33-7 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xxi
  • Cisco WS-C4003 | Software Guide - Page 22
    Time Adjustment 35-5 Disabling the Daylight Saving Time Adjustment 35-7 Clearing the Time Zone 35-7 Clearing NTP Servers 35-7 Disabling NTP 35-8 Appendix Acronyms A-1 xxii Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 23
    for this manual, how it is organized, the document conventions, and how to obtain additional documentaion and technical support. Audience This guide is for experienced network administrators who are responsible for configuring and maintaining Catalyst enterprise LAN switches. Organization The
  • Cisco WS-C4003 | Software Guide - Page 24
    Link Detection (UDLD) protocol on the switch. Chapter 23 Configuring SNMP Describes how to configure the Simple Network Management Protocol (SNMP) on the switch. xxiv Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 25
    2926G Series, 2948G, and 2980G Switches • Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches • Layer 3 Switching Software Configuration Guide-Catalyst 5000 Family, 4000 Family, 2926G Series, 2926 Series, 2948G, and 2980G Switches • System Message Guide-Catalyst 6000
  • Cisco WS-C4003 | Software Guide - Page 26
    of a line of code indicates a comment line. Indicates that screen output not relevant to the example was removed to save space and preserve clarity. xxvi Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 27
    account representative by calling Cisco Systems Corporate Headquarters (California, U.S.A.) at 408 526-7208 or, elsewhere in North America, by calling 800 553-NETS (6387). 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xxvii
  • Cisco WS-C4003 | Software Guide - Page 28
    who need technical assistance with a Cisco product, technology, or solution. Two levels of support are available: the Cisco TAC Web Site and the Cisco TAC Escalation Center. xxviii Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 29
    of Cisco support services to which your company is entitled: for example, SMARTnet, SMARTnet Onsite, or Network Supported Accounts (NSA). When you call the center, please have available your service agreement number and your product serial number. 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 30
    Obtaining Technical Assistance Preface Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 xxx 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 31
    PART 1 Getting Started
  • Cisco WS-C4003 | Software Guide - Page 32
  • Cisco WS-C4003 | Software Guide - Page 33
    4000 family switches. Table 1-1 Catalyst 4000 Family Switches Product Number WS-C4003 Chassis Description Catalyst 4003 • Modular 3-slot chassis • 12-Gbps backplane • Optional redundant power supplies 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 34
    refer to the Catalyst 2948G and 2980G Installation Guide. Table 1-2 describes the Catalyst 2948G switch. Table 1-2 Catalyst 2948G Switch Product Number WS-C2948G Chassis Description Catalyst 2948G • Fixed configuration switch • 12-Gbps backplane • Optional redundant power supplies • Two 1000BASE
  • Cisco WS-C4003 | Software Guide - Page 35
    Chapter 1 Product Overview Supervisor Engine Software Table 1-3 Catalyst 2980G Switch Product Number WS-C2980G Chassis Description Catalyst 2980G • Fixed configuration switch • 12-Gbps backplane • Optional redundant power supplies • Two 1000BASE-X (GBIC) Gigabit Ethernet ports • 80 10/100BASE-TX
  • Cisco WS-C4003 | Software Guide - Page 36
    Supervisor Engine Software Chapter 1 Product Overview Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 1-4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 37
    , refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. For descriptions of the commands used to configure the Route Switch Module (RSM) and Route Switch Feature Card (RSFC), refer to the Cisco IOS software command reference publications. This chapter
  • Cisco WS-C4003 | Software Guide - Page 38
    cases the default gateway) for the switch. For information about setting the IP address and default gateway, see Chapter 3, "Configuring the Switch IP Address and Default Gateway." Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 2-2 78-12647
  • Cisco WS-C4003 | Software Guide - Page 39
    the "Switch CLI Command Modes" section on page 2-3. Switch CLI Command Modes The switch CLI supports two switch. You will see the user level command-line prompt: Enter Password: Console> 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 40
    Interface Step 3 To disconnect from the switch CLI, enter the exit command. Console> exit Session Disconnected... Cisco Systems Console Fri Aug 27 1999, without the question mark (?). Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 2-4 78
  • Cisco WS-C4003 | Software Guide - Page 41
    ? to display a list of commands that begin with a specific set of characters. Do not insert a space between the mark (?). Command-Line Editing The switch CLI supports a number of command line editing Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 42
    you enter co and press the Tab key, the system completes the command as configure because it is the only command that matches the criteria. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 2-6 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 43
    port 1. On the Catalyst 4912G, the Catalyst 2948G, and the Catalyst 2980G switches, the left-most switch port is numbered 2/1 instead of 1/1 because logically the ports are located on module 2. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 44
    in the following example: 172.16.10.1 If DNS is configured properly on the switch, you can use IP host names instead of IP addresses. For information on configuring on page 26-7. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 2-8 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 45
    switch port 10: . Module 1 Passed Power-on-self-test for Module 2: WS-X4148 Port status: (. = Pass, F = Fail) 1: . 2: . 3: . 4: . 5: . 6: . 7: . 9: . 10: . 11: . 12: . 13: . 14: . 15: . 17: . 18: . 19: . 20: . 21: . 22: . 23: . 8: . 16: . 24: . 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 46
    Power-on-self-test for Module 3: WS-X4306 Port status: (. = Pass, F = Fail, ? = no GBIC) 1: . 2: . 3: . 4: ? 5: ? 6: ? Module 3 Passed Exiting Off-line Diagnostics IP address for Catalyst 2-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 47
    tree, Cisco Discovery Protocol (CDP), and VLAN membership. The out-of-band management interfaces (me1 and sl0) are not connected to the switching fabric and do not participate in any of these functions. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 48
    is the default for a new switch or a switch whose configuration file has been cleared using the clear config all command. DHCP and RARP requests are only broadcast out the sc0 interface. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-2 78
  • Cisco WS-C4003 | Software Guide - Page 49
    ignored. Table 3-1 Supported DHCP Options Code 1 2 3 6 12 15 28 33 42 Option Subnet mask Time offset Router Domain name server Host name Domain name Broadcast address Static route NTP servers 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 50
    3 Configuring the Switch IP Address and Default Gateway Table 3-1 Supported DHCP Options (continued fail as well). If you reset or power cycle a switch with a RARP-obtained IP address, the on the switch. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 51
    sc0) Interface IP Address Before you can Telnet to the switch or use Simple Network Management Protocol (SNMP) to manage the switch, you must assign an IP address to either the 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-5
  • Cisco WS-C4003 | Software Guide - Page 52
    . The me1 interface is present only on the Catalyst 4000 family, Catalyst 2948G, and Catalyst 2980G switches. You can specify the subnet mask (netmask) 52.31 Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-6 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 53
    route all This example shows how to configure three default gateways on the switch and how to verify the default gateway configuration: Console> (enable) set Unreachable 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-7
  • Cisco WS-C4003 | Software Guide - Page 54
    , you will lose the console port connection. Use Telnet to access the switch, enter privileged mode, and enter the slip detach command to restore the console port connection. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-8 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 55
    10.1.1.255 Console> (enable) slip attach Console Port now running SLIP. Console> (enable) slip detach SLIP detached on Console port. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-9
  • Cisco WS-C4003 | Software Guide - Page 56
    MAC address of the switch to the IP configuration information for the switch. (With DHCP, this step is necessary only if using the manual or automatic allocation .25.254 3-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 57
    Chapter 3 Configuring the Switch IP Address and Default Gateway Renewing and Releasing a DHCP-Assigned IP Address Console> (enable) : 00:90:0c:5a:8f:ff Done Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 3-11
  • Cisco WS-C4003 | Software Guide - Page 58
    Renewing and Releasing a DHCP-Assigned IP Address Chapter 3 Configuring the Switch IP Address and Default Gateway 3-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 59
    PART 2 Configuring Ethernet Switching
  • Cisco WS-C4003 | Software Guide - Page 60
  • Cisco WS-C4003 | Software Guide - Page 61
    switches support simultaneous, parallel conversations between Ethernet segments. Switched connections between Ethernet segments last only for the duration of the packet. New connections can be made between different segments for the next packet. 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 62
    and Fast Ethernet Switching The Catalyst enterprise LAN switches solve congestion problems caused by high for each port on the switches (Gigabit Ethernet ports only support full duplex). Normally, Ethernet None Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 63
    can assign names to the ports on Ethernet and Fast Ethernet modules to facilitate switch administration. To assign a name to a port, perform this task in privileged 1/1 name set. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 4-3
  • Cisco WS-C4003 | Software Guide - Page 64
    level of each port. When ports request access to the switching bus simultaneously, the switch uses port priority level to determine the order in which to mismatch will result. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 4-4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 65
    Chapter 4 Configuring Ethernet and Fast Ethernet Switching Configuring Ethernet and Fast Ethernet Ports Note If the port 2/1 half Port 2/1 set to half-duplex. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 4-5
  • Cisco WS-C4003 | Software Guide - Page 66
    Ethernet and Fast Ethernet Switching Configuring a Timeout Period into errdisable state, the port has to be manually reenabled. The errdisable timeout feature allows you to mismatch Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 67
    want to test. Trace the hop-by-hop route of packets from the switch to a remote host located out the port you want to test. traceroute 10.1.2.3) 3 ms * 2 ms Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 4-7
  • Cisco WS-C4003 | Software Guide - Page 68
    Configuring Ethernet and Fast Ethernet Ports Chapter 4 Configuring Ethernet and Fast Ethernet Switching Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 4-8 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 69
    this chapter, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these sections: • is called a pause frame. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 5-1
  • Cisco WS-C4003 | Software Guide - Page 70
    devices. Table 5-1 Send Capability by Switch Type, Module, and Ports Switch Type Catalyst 4000 Catalyst 4000 Catalyst 4000 Catalyst 4000 Catalyst 4000 Catalyst 2948G Catalyst 2980 Module Ports All modules except WS-X4418-GB, All ports except for the WS-X4412-2GB-T, and oversubscribed ports
  • Cisco WS-C4003 | Software Guide - Page 71
    describe how the Catalyst 4000 family oversubscribed Gigabit Ethernet modules work: • Oversubscribed Gigabit Ethernet Overview, page 5-4 • Oversubscribed Gigabit Ethernet Example, page 5-5 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 72
    port group increases the total available bandwidth and provides redundancy with quick failover for links to servers and hosts that support the Port Aggregation Protocol (PAgP). Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 5-4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 73
    server switching module (WS- switch CAUTION THIS ASSEMBLY CONTAINS ELECTROSTATICSENSITIVE DEVICES 0% 100% 18069 Gigabit EtherChannel bundles Server A Server B Workstation 1 Workstation 3 Server D Workstation 4 Server C Workstation 2 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 74
    control • Oversubscribed Gigabit Ethernet ports (ports 3-18 on WS-X4418-GB): Flow control set to desired for receive configure Gigabit Ethernet switching ports on the Catalyst enterprise LAN switches: • Setting the Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 75
    for each port. When two ports simultaneously request access to the switching bus, the switch uses the priority level to determine the order in which the ports 1000 1000BASESX 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 5-7
  • Cisco WS-C4003 | Software Guide - Page 76
    Configuring Gigabit Ethernet Chapter 5 Configuring Gigabit Ethernet Switching Last-Time-Cleared Tue enable) show port negotiation 2/1 Port Link Negotiation Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 5-8 78-
  • Cisco WS-C4003 | Software Guide - Page 77
    the port you want to test. traceroute host If the host is unresponsive, check the IP address show interface and default gateway configured on the switch. show ip route 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 5-9
  • Cisco WS-C4003 | Software Guide - Page 78
    Gigabit Ethernet Chapter 5 Configuring Gigabit Ethernet Switching This example shows how to ping a 3 ms 3 ms 4 somehost.company.com (10.1.2.3) 3 ms * 2 ms Console> (enable) 5-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 79
    Catalyst 4000 Family Installation Guide. Note For complete syntax and usage information for the commands used in this chapter, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 80
    administrative group number manually or let the system software assign the next in NVRAM and remain the same after the switch is reset or power cycled. EtherChannel IDs are not saved in channel. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 81
    -order bits of the source and destination Media Access Control (MAC) addresses of each frame. The frame distribution method is not configurable. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-3
  • Cisco WS-C4003 | Software Guide - Page 82
    supported number switch performance. • Make sure port security is disabled on channeled ports. If you enable port security on a channeled port, the port shuts down when it receives packets with source addresses that do not match the secure address of the port. Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 83
    as an EtherChannel, verify the EtherChannel capabilities for the module or switch you are configuring. show port capabilities [mod_num[/port_num]] Create an on 57 835 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-5
  • Cisco WS-C4003 | Software Guide - Page 84
    WS-C4000 3/6 069003103(5500) 3/6 WS-C4000 Console> (enable) Defining an EtherChannel Administrative Group You can define an EtherChannel administrative group manually 3/6 Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 85
    Device-ID Port-ID Platform group 20 1/1 20 1/2 066510644(cat26-lnf(NET25)) 2/1 WS-C6009 Console> (enable) Console> (enable) set channel cost 768 12 Port(s) cost 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-7
  • Cisco WS-C4003 | Software Guide - Page 86
    ID Platform group 20 1/1 20 1/2 066510644(cat26-lnf(NET25)) 2/1 WS-C6009 Console> (enable) Console> (enable) set channel vlancost 768 12 No ports channelling Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-8 78
  • Cisco WS-C4003 | Software Guide - Page 87
    : Console> (enable) show port channel info Switch Frame Distribution Method: mac both Port Status Channel 3/5 069003103(5500) 3/5 WS-C4000 3/6 069003103(5500) 3/6 WS-C4000 Port Trunk-status Trunk 12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 88
    0 Channel Rcv-Octet Xmit-Octet 835 11283708 14942104 Channel Dely-Exced MTU-Exced In-Discard Lrn-Discrd In-Lost Out-Lost 835 0 0 0 0 0 0 Console> (enable) 6-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 89
    shows how to configure a four-port Fast EtherChannel link between two switches. Figure 6-1 shows two switches connected through four 100BASE-TX Fast Ethernet ports. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-11
  • Cisco WS-C4003 | Software Guide - Page 90
    to full-duplex. Switch_B> (enable) Confirm the channeling status of the switches using the show port channel command. Switch_A> (enable) show port channel 1/3 left bridge port 1/3 6-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-
  • Cisco WS-C4003 | Software Guide - Page 91
    shows how to configure a two-port Gigabit EtherChannel link between two switches. Figure 6-2 shows two switches connected through four 1000BASE-SX Gigabit Ethernet ports. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-13
  • Cisco WS-C4003 | Software Guide - Page 92
    the ports on both ends of the EtherChannel bundle on. The switches will not negotiate an EtherChannel port bundle automatically in on mode. Port 3/2 joined bridge port 3/1-2 6-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 93
    Neighbor mode status device port 3/1 connected on channel WS-C4003 JAB023806JR( 2/1 3/2 connected on channel WS-C4003 JAB023806JR( 2/2 Switch_B> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 6-15
  • Cisco WS-C4003 | Software Guide - Page 94
    EtherChannel Configuration Examples Chapter 6 Configuring Fast EtherChannel and Gigabit EtherChannel 6-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 95
    PART 3 Spanning Tree
  • Cisco WS-C4003 | Software Guide - Page 96
  • Cisco WS-C4003 | Software Guide - Page 97
    Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. How Spanning Tree Protocols Work This section describes the specific functions that are common to all spanning tree protocols. Cisco -02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 98
    . A spanning tree protocol uses BPDUs to elect the root switch and root port for the switched network, as well as the root port and designated port for each switched segment. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-2 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 99
    not directly forwarded by the switch, but the receiving switch uses the information in the frame to calculate a BPDU, and if the topology changes, initiates a BPDU transmission. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-3
  • Cisco WS-C4003 | Software Guide - Page 100
    the switch for each type of port when you use the short method to calculate the port cost. Table 7-1 Default Port Cost Values Using the Short Method Port Speed 10 Mbps 100 Mbps 1 Gbps Default Cost Value 100 19 4 Default Range 1 to 65535 1 to 65535 1 to 65535 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 101
    the bandwidth of the port. You can also manually assign port costs between 1-200,000,000. software release 5.4(2) or later releases. At any given time each port on a switch using STP is in one of these states: 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 102
    tree, every switch in the network goes through the blocking state and the transitory states of listening and learning at power up. If properly both learning and forwarding are enabled. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-6
  • Cisco WS-C4003 | Software Guide - Page 103
    : • Discards frames received from the attached segment. • Discards frames switched from another port for forwarding. • Does not incorporate station location into messages. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-7
  • Cisco WS-C4003 | Software Guide - Page 104
    Discards frames received from the attached segment. • Discards frames switched from another port for forwarding. • Does not incorporate station and responds to network management messages. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 105
    • Discards frames received from the attached segment. • Discards frames switched from another port for forwarding. • Incorporates station location into its management messages. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-9
  • Cisco WS-C4003 | Software Guide - Page 106
    Forwards frames received from the attached segment. • Forwards frames switched from another port for forwarding. • Incorporates station location information nonoperational. 7-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 107
    to network management messages. Understanding PVST+ and MISTP Modes Catalyst 4000 family switches provide two proprietary spanning tree modes based on the IEEE , page 7-18 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-11
  • Cisco WS-C4003 | Software Guide - Page 108
    Ethernet, and Gigabit Ethernet port-based VLANs on Catalyst 4000 family switches. PVST+ runs on each VLAN on the switch, ensuring that each has a loop-free path avoid problems. 7-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 109
    your Catalyst 4000 family switches to avoid problems in the spanning tree topology. When MAC address reduction is enabled on Catalyst 4000 family switches, it the Catalyst 6000 Software Configuration Guide. Using PVST+ PVST+ is the default spanning tree mode for Catalyst 4000 family switches. These
  • Cisco WS-C4003 | Software Guide - Page 110
    between 0 and 65535. The VLAN bridge ID priority becomes that value. • When the switch is in PVST+ mode with MAC address reduction enabled, you can enter one of 16 the VLAN. 7-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 111
    Channel_id 1/1 1 not-connected 4 32 disabled 0 1/2 1 not-connected 4 32 disabled 0 2/1 1 not-connected 100 32 disabled 0 2/2 1 not-connected 100 32 disabled 0 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-15
  • Cisco WS-C4003 | Software Guide - Page 112
    mode: Step 1 Step 2 Task Configure the port cost for a switch port. Verify the port cost setting. Command set spantree portcost {mod/port State Cost Prio Portfast Channel_id 7-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 113
    2/4 1 not-connected 100 32 disabled 0 Configuring PVST+ Default Port Cost Mode If any switch in your network is using a port speed of 10 Gb or over and the network is . 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-17
  • Cisco WS-C4003 | Software Guide - Page 114
    switch is in PVST+ mode, you can set the port priority for a trunking port in a VLAN. The port with the lowest priority value for a specific portvlancost 2/3 cost 20000 1-5,12 7-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 115
    using PVST+, you must first enable MISTP-PVST+ mode on each switch on which you intend to use MISTP so that PVST+ BPDUs can flow through the switches while you configure them. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-19
  • Cisco WS-C4003 | Software Guide - Page 116
    if you change from MISTP to either PVST+ or MISTP-PVST+ mode. Reduce the number of configured VLAN ports on your switch to no more than 4,500 to avoid losing connectivity. 7-20 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 117
    the optional keyword config, to display the list of mappings configured on the local switch. Note MAC addresses are not displayed when the keyword config is specified. To -00 - 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-21
  • Cisco WS-C4003 | Software Guide - Page 118
    You can set the bridge ID priority for a MISTP instance when the switch is in MISTP or MISTP-PVST+ mode. The bridge priority value is combined 1 forwarding 200000 32 disabled 0 7-22 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 119
    priority for a switch port. Verify the port priority setting. Command set spantree portpri mod_num/port_num priority [instance] show spantree mistp-instance instance [mod_num/port_num] active 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 120
    a switch port. specific MISTP instance forwards frames for that instance. The possible port instance range is 0 to 63. If all ports have the same priority value for a MISTP instance, the port with the lowest port number forwards frames for that instance. 7-24 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 121
    Spantree 2 enabled. Console> (enable) show spantree mistp-instance 2 Instance 2 Spanning tree mode MISTP Spanning tree type ieee Spanning tree instance enabled . . . 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-25
  • Cisco WS-C4003 | Software Guide - Page 122
    Mapping VLANs to a MISTP Instance When you are using MISTP-PVST+ or MISTP on a switch, you must map at least one VLAN to a MISTP instance in order for MISTP-PVST+ map the VLAN. 7-26 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 123
    conflict, you must manually remove the incorrect mapping(s) from the root switch. The remaining entry switch, all of the VLANs mapped to it have all of their ports forwarding, and the instance BPDUs are flooded. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 124
    seconds. VLANs 1-10 bridge hello time set to 2 seconds. VLANs 1-10 bridge forward delay set to 9 seconds. Switch is now the root switch for active VLANs 1-6. Console> (enable) 7-28 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 125
    Switch is now the root switch for active Instances 1-6. Console> (enable) Configuring a Secondary Root Switch You can set a secondary root switch on a VLAN when the switch . 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-29
  • Cisco WS-C4003 | Software Guide - Page 126
    You can set these parameters on the Catalyst 4000 family switches without modifying the switches. Note Switch ports can be set for improved convergence vlan] mistp-instance [instances] 7-30 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 127
    not specify a VLAN when the switch is in PVST+ mode, VLAN 1 is assumed, oif you do not specify a MISTP instance when the switch is in MISTP mode, MISTP instance 1 is assumed. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-31
  • Cisco WS-C4003 | Software Guide - Page 128
    and listening states. The timeout value is the forward delay parameter of the switches. 15 seconds Configuring Hello Time Enter the set spantree hello command to change seconds. 7-32 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 129
    instance to 25 seconds: Console> (enable) set spantree maxage 25 mistp-instance 1 Instance 1 max aging time set to 25 seconds. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-33
  • Cisco WS-C4003 | Software Guide - Page 130
    change how spanning tree performs BPDU skewing statistics gathering, enter the set spantree bpdu-skewing command. The bpdu-skewing command is disabled by default. 7-34 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 131
    Console> (enable) show spantree summary Root switch for vlans: 1 BPDU skewing detection enabled for the bridge BPDU skewed for vlans: 1 Portfast bpdu-guard disabled for bridge. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 7-35
  • Cisco WS-C4003 | Software Guide - Page 132
    VLAN Blocking Listening Learning Forwarding STP Active 1 6 4 2 0 12 Blocking Listening Learning Forwarding STP Active Total 6 4 2 0 12 Console> (enable) 7-36 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 133
    PortFast on switch ports connected to a single workstation or server to allow those devices to connect to the network immediately, instead of waiting for the port to transition from the listening and learning states to the forwarding state. 78-12647-02 Software Configuration Guide-Catalyst 4000
  • Cisco WS-C4003 | Software Guide - Page 134
    port connected to another networking device, such as a switch, you can create network loops. When the switch powers up, or when a device is connected to a 4/1 523 blocking 19 20 enabled Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 8-2
  • Cisco WS-C4003 | Software Guide - Page 135
    PortFast mode is supported only on manually put the interface back in service. Note When enabled on the switch switch: • Enabling PortFast BPDU Guard, page 8-4 • Disabling PortFast BPDU Guard, page 8-5 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 136
    bpdu-guard enabled on this switch. Console> (enable) show spantree summary Root switch for vlans: none. Portfast STP Active Total 0 0 0 85 85 Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 8-4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 137
    shows how to disable PortFast BPDU guard on the switch and verify the configuration: Console > (enable) set Forwarding STP Active Total 0 0 0 85 85 Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 8-5
  • Cisco WS-C4003 | Software Guide - Page 138
    -filter enabled on this switch. Console> (enable) show spantree portfast Portfast BPDU guard is disabled. Portfast BPDU filter is disabled. Vlan Blocking Listening Learning Forwarding STP Active Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 139
    how to disable PortFast BPDU filtering on the switch and verify the configuration: Console> (enable) set Forwarding STP Active Total 0 0 0 85 85 Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 8-7
  • Cisco WS-C4003 | Software Guide - Page 140
    of which is forwarding at any given time. Specifically, an uplink group consists of the root port Switch A (Root) Switch B L1 L2 Link failure Switch C L3 UplinkFast transitions port directly to forwarding state 11242 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 141
    UplinkFast on the switch. Step 2 Verify that UplinkFast is enabled. Command set spantree uplinkfast enable [rate station_update_rate] [all-protocols {off | on}] show spantree uplinkfast [vlans] 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 142
    , port cost, and port-VLAN cost values on the switch. Note When you disable UplinkFast, it affects all VLANs on the switch. You cannot disable UplinkFast on a per-VLAN basis. 8-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 143
    , the switch makes all ports on which it received an inferior BPDU its designated ports and moves them out of the blocking state (if they were in blocking state), through the listening and learning states, and into the forwarding state. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 144
    that it is the root switch. However, the other switches ignore these inferior BPDUs and the new switch learns that Switch B is the designated bridge to Switch A, the root switch. 8-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 145
    on the switch and how to verify the configuration: Console> (enable) set spantree backbonefast enable Backbonefast enabled for all VLANs Console> (enable) show spantree backbonefast Backbonefast is enabled. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 146
    on the switch and how to verify the configuration: Console> (enable) set spantree backbonefast disable Backbonefast enabled for all VLANs Console> (enable) show spantree backbonefast Backbonefast is disable. Console> (enable) 8-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G
  • Cisco WS-C4003 | Software Guide - Page 147
    switch. Follow these guidelines when using loop guard: • You cannot enable loop guard on PortFast-enabled or dynamic VLAN ports. • You cannot enable PortFast on loop guard-enabled ports. • You cannot enable loop guard if root guard is enabled. 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 148
    recommend that you enable loop guard on root ports and alternate root ports on access switches. • Root guard forces a port to be always designated as the root port. or a VLAN. 8-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 149
    loop guard feature on a per-port basis. To enable loop guard on the switch, perform this task in privileged mode: Step 1 Step 2 Task Enable loop guard . Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 8-17
  • Cisco WS-C4003 | Software Guide - Page 150
    Configuring Loop Guard Chapter 8 Configuring Spanning Tree PortFast, UplinkFast, and BackboneFast, and Loop Guard 8-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 151
    PART 4 Configuring VLANs and VLAN Trunks
  • Cisco WS-C4003 | Software Guide - Page 152
  • Cisco WS-C4003 | Software Guide - Page 153
    Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter problems, such as duplicate VLAN names, incorrect VLAN-type specifications page 9-3 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 154
    switches, which update their VTP and VLAN configurations as necessary except when in transparent mode. The following global configuration information is distributed in VTP advertisements: • VLAN IDs (802.1Q) • VTP domain name • VTP configuration revision number Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 155
    from the host connected to Switch 1. Switch 1 floods the broadcast and every switch in the network receives it, even though Switches 3, 5, and 6 have no ports in the Red VLAN. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 9-3
  • Cisco WS-C4003 | Software Guide - Page 156
    Switch 2 and port 4 on Switch 4). Figure 9-2 Flooding Traffic with VTP Pruning Switch 4 Port 2 Flooded traffic is pruned Port 4 Switch 5 Switch 2 Port 5 Red VLAN Port 1 S5813 Switch 6 Switch 3 Switch Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 157
    password to each switch in the domain. • A VTP version 2-capable switch can operate in the same VTP domain as a switch running VTP version • Configuring VTP Pruning, page 9-9 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 9-5
  • Cisco WS-C4003 | Software Guide - Page 158
    2 Step 3 Task Define the VTP domain name. Place the switch in VTP client mode. Verify the VTP configuration. Command set vtp domain name set vtp mode client show vtp domain Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 9-6 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 159
    disabled by default on VTP version 2-capable switches. When you enable VTP version 2 on a switch, every VTP version 2-capable switch in the VTP domain also will enable version 2. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 9-7
  • Cisco WS-C4003 | Software Guide - Page 160
    switch in the VTP domain supports version 2. To enable VTP version 2, perform this task in privileged mode: Step 1 Step 2 Task Enable VTP version 2 on the switch modified Console> (enable) Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 161
    2-1000 are pruning eligible.) clear vtp pruning vlan_range (Optional) Make specific VLANs pruning eligible set vtp pruneeligible vlan_range on the device. Verify 2/1 1-1005 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 162
    VTP statistics for the switch. Command show vtp statistics This example shows how to display VTP statistics on the switch: Console> (enable) non-pruning-capable device 0 0 9-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 163
    on the same LAN segment. VLANs allow you to group ports on a switch to limit unicast, multicast, and broadcast traffic flooding. Flooded traffic originating from networks. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 10-1
  • Cisco WS-C4003 | Software Guide - Page 164
    routed. Port VLAN membership on the switch is assigned manually on a port-by-port basis. When you assign switch ports to VLANs using this method, switch software requires a different VLAN number for each media type. 10-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 165
    numbers are always ISL VLAN identifiers and not 802.1Q VLAN identifiers. Note The Catalyst 4000 family switch 10/100 Ethernet switching modules support auxiliary VLANs in software release 5.5(1) and later. You can plug an externally powered IP phone into a 10/100 port and then add that port to an
  • Cisco WS-C4003 | Software Guide - Page 166
    2 Task Assign one or more switch ports to a VLAN. Verify the port VLAN membership. Command set vlan vlan_num mod_num/port_num show vlan [vlan_num] show port [mod_num[/port_num]] 10-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 167
    corresponding ISL VLAN. 802.1Q VLAN numbers greater than 1000 must be mapped to an ISL VLAN in order to be recognized and forwarded by Cisco switches. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 10-5
  • Cisco WS-C4003 | Software Guide - Page 168
    : • You can configure up to seven 802.1Q-to-ISL VLAN mappings on the switch. • You must map 802.1Q VLANs to Ethernet-type ISL VLANs. • Do not entry deleted Console> (enable) 10-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 169
    with a common set of supporting VLANs that are used to create the private VLAN structure. You can configure private VLANs and normal VLANs from the same Catalyst 4000 family switch. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 170
    a series of community VLANs. You must define each supporting VLAN switches by trunking the primary, isolated, and any community VLANs to other switches that support private VLANs. In an Ethernet-switched Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 171
    you cannot change the VTP mode to client or server mode, because VTP does not support private VLAN types and mapping propagation. • You can configure VLANs as primary, isolated 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 10-9
  • Cisco WS-C4003 | Software Guide - Page 172
    manually double check the STP configuration to ensure that the primary, isolated, and community VLANs spanning tree topologies match. • If you enable MAC address reduction on a Catalyst 4000 series switch are not supported in Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 173
    command. Note Ports do not have to be on the same switch as long as the switches are trunk connected and the private VLAN has not been removed 7,901: 4/3 Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 10-11
  • Cisco WS-C4003 | Software Guide - Page 174
    STEHops Backup CRF 1q VLAN Primary Secondary Secondary-Type Ports 7 902 Isolated 4/4-6 Console> (enable) show pvlan Primary Secondary Secondary-Type Ports 10-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 175
    promiscuous port(s) are deleted. To delete a private VLAN, perform this task in privileged mode: Task Delete a primary VLAN. Command clear vlan primary_vlan 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 10-13
  • Cisco WS-C4003 | Software Guide - Page 176
    on the promiscuous port(s) are deleted. To delete a VLAN on the switch, perform this task in privileged mode: Task Delete an isolated or and 902 on 3/2-5 Console> (enable) 10-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 177
    another networking device such as a router or a switch. Trunks carry the traffic of multiple VLANs over a single link and allow you to extend VLANs across an entire network. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-1
  • Cisco WS-C4003 | Software Guide - Page 178
    and Gigabit Ethernet Ports The Catalyst 4000, 2948G, and 2980G switches support IEEE 802.1Q-802.1Q DTP frames. You must configure the neighboring port manually as a trunk port to establish a trunk port supports. 11-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 179
    connected to non-switch devices if you do not intend to trunk across those links. When manually enabling trunking on a link to a Cisco router, use the nonegotiate keyword to cause the port to become a trunk but not generate DTP frames. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 180
    of non-Cisco 802.1Q switches. The non-Cisco 802.1Q cloud separating the Cisco switches is treated as a single broadcast segment between all switches connected to the non-Cisco 802.1Q cloud through 802.1Q trunks. 11-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 181
    Cisco switches to the non-Cisco 802.1Q cloud. • If you are connecting multiple Cisco switches to a non-Cisco not support 802.1Q encapsulation. To determine whether your hardware supports 802. Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-5
  • Cisco WS-C4003 | Software Guide - Page 182
    vlans a trunk. (Optional) Add specific VLANs to the allowed set trunk mod_num/port_num vlans VLANs list for a trunk. Verify the allowed VLAN list for the trunk. show trunk [mod_num/port_num] 11-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 183
    , page 11-8 • Load-Sharing VLAN Traffic over Parallel Trunks Example, page 11-11 • 802.1Q Nonegotiate Trunk Configuration Example, page 11-18 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-7
  • Cisco WS-C4003 | Software Guide - Page 184
    Ports Note For examples of configuring trunk links between switches and routers, refer to the Layer 3 Switching Software Configuration Guide-Catalyst 5000 Family, 4000 Family, 2926G Series, 2926 Series, 2948G, and 2980G Switches publication. 802.1Q Trunk over Gigabit EtherChannel Link Example
  • Cisco WS-C4003 | Software Guide - Page 185
    Channel Neighbor Neighbor mode status device port 3/3 connected auto channel WS-C4003 JAB023806(Sw 2/3 3/4 connected auto channel WS-C4003 JAB023806(Sw 2/4 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-9
  • Cisco WS-C4003 | Software Guide - Page 186
    Native vlan ----------1 1 1 1 Port -------- 2/3 2/4 2/5 2/6 Vlans allowed on trunk 1-1005 1-1005 1-1005 1-1005 Port Vlans allowed and active in management domain 11-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 187
    a fault-tolerant configuration. Figure 11-2 shows a parallel trunk configuration between two switches, using the Fast Ethernet uplink ports on the supervisor engine. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-11
  • Cisco WS-C4003 | Software Guide - Page 188
    VTP and VLAN configuration on Switch 1 by entering the show vtp domain and show vlan commands: Switch_1> (enable) show vtp domain Domain Name Domain Index VTP Version Local Mode Password 11-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 189
    Specifying the desirable mode on the Switch 1 ports causes the ports on Switch 2 to negotiate to become trunk links (assuming that the Switch 2 uplinks are in the default 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-13
  • Cisco WS-C4003 | Software Guide - Page 190
    After the network stabilizes, check the spanning tree state of each trunk port on Switch 1 by entering the show spantree command. Trunk 1 is forwarding for all VLANs. Trunk . 11-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 191
    configured for those VLANs on Switch 1: Switch_2> (enable) set spantree portvlanpri 1/2 1 40 Port 1/2 vlans 1-39,41-1004 using portpri 32. Port 1/2 vlans 40 using portpri 1. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-15
  • Cisco WS-C4003 | Software Guide - Page 192
    tree converges to use the new configuration. Check the spanning tree port states on Switch 1 by entering the show spantree command. The Group 1 VLANs should be forwarding load-sharing. 11-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 193
    VLANs 10, 20, 30, 40, 50, and 60: port-VLAN priority 32 (blocking) Catalyst 4000 Switch 1 Catalyst 4000 Switch 2 1/1 1/2 1/1 1/2 43992 Trunk 1 VLANs 10, 20, 30, 40, 50, -method 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 194
    43994 Port 1/1 Trunk Type: 802.1Q Trunk Mode: nonegotiate Port 4/1 Trunk Type: 802.IQ Trunk Mode: auto Blocking 4000 X 4000 Switch 1 Port-type Switch 2 inconsistency 11-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 195
    problem on Switch 2 by entering the the show spantree and show spantree statistics commands. The configuration mismatch exists until the port on Switch 2 is properly configured. Switch -02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 11-19
  • Cisco WS-C4003 | Software Guide - Page 196
    trunk and show spantree commands: Switch 2> (enable) show trunk 4/1 Port Mode Encapsulation 4/1 nonegotiate dot1q Status -----------trunking Native vlan ----------1 11-20 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 197
    and not pruned 4/1 1005 Switch 2> (enable) show spantree Cisco Discovery Protocol (CDP), VLAN Trunking Protocol (VTP), Port Aggregation Protocol (PAgP), Dynamic Trunking Protocol (DTP), and so forth. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 198
    not pruned 8/1 2-6,10,20,50,100,152,200,300,400,500,521,524,570,776,802,850,917,999,1 003,1005 Console> (enable) 11-22 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 199
    Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these sections: • Understanding How VMPS Works, page 12-1 • VMPS and Dynamic Port Hardware and Software accept client requests. If you reset or power cycle the switch, the VMPS database downloads from the TFTP
  • Cisco WS-C4003 | Software Guide - Page 200
    specific hardware): • Supervisor engine software release 5.1 or later-The Catalyst 4000 family switches can function only as VMPS clients. • VMPS-capable hardware-To determine whether a specific piece of hardware supports Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 201
    : • You cannot configure a Catalyst 4000 family switch as a VMPS server. • to that VLAN. However, VMPS checks the legality of the specific host on the dynamic port after a specified period. • Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 12-3
  • Cisco WS-C4003 | Software Guide - Page 202
    be downloaded to the switch. Command show cam - - Configuring VMPS When you enable VMPS, the switch downloads the VMPS database from the TFTP or rcp server and begins accepting VMPS requests. 12-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 203
    Specify the IP address of the VMPS server (the switch with VMPS enabled). Verify the VMPS server specification. Configure dynamic port VLAN membership assignment to a port port. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 12-5
  • Cisco WS-C4003 | Software Guide - Page 204
    to insufficient resources. The switch does not have sufficient resources to run the database. You can fix this problem by increasing the dynamic random level vmps 3 command. 12-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 205
    Membership with VMPS Configuration Examples Troubleshooting Dynamic Port VLAN Membership is stored on a TFTP server accessible to the switch configured as the VMPS server. !VMPS File Format Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 12-7
  • Cisco WS-C4003 | Software Guide - Page 206
    stations are connected to these clients: - Switch 2 - Switch 9 • The database configuration file is called Bldg-G.db and is stored on a TFTP server with IP address 172.20.22.7. 12-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 207
    segment Switch 5 172.20.26.154 Switch 6 172.20.26.155 Switch 7 172.20.26.156 Switch 8 172.20.26.157 Client Switch 9 End station 2 172.20.26.158 Secondary VMPS Server 3 Switch 10 172.20.26.159 43996 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 208
    : • Voice traffic to and from the IP phone (auxiliary VLAN) • Data traffic to and from the PC connected to the switch through the access port of the IP phone (native VLAN) 12-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 209
    Cisco voice-over-IP networks, refer to the "Configuring a Voice-over-IP Network" chapter in the Catalyst 6000 Family Software Configuration Guide the auxiliary VLAN ID is not dynamic, you need to configure it manually. As you manually configure the auxiliary VLAN ID, the VMPS server is queried for
  • Cisco WS-C4003 | Software Guide - Page 210
    the native VLAN ID: Console> (enable) set port auxiliaryvlan 5/10 223 Auxiliary vlan cannot be set to 223 as PVID=223. Console> (enable) 12-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 211
    : • Supervisor engine software release 5.1 or later releases • IEEE 802.1Q-capable switching modules (refer to the documentation for your hardware, or use the show port capabilities command) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 212
    GVRP Statistics, page 13-7 • Clearing GVRP Statistics, page 13-8 • Disabling GVRP on Individual 802.1Q Trunk Ports, page 13-8 • Disabling GVRP Globally, page 13-8 13-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 213
    participants) You can configure the static GVRP port-state on any 802.1Q-capable switch ports, regardless of the global GVRP enable state or whether the port is an 802 . 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 13-3
  • Cisco WS-C4003 | Software Guide - Page 214
    This example shows how to enable dynamic VLAN creation on the switch: Console> (enable) set gvrp dynamic-vlan-creation enable Dynamic VLAN creation enabled. Console> (enable) 13-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 215
    to configure GVRP registration modes on switch ports: • Setting GVRP Normal .1Q trunk port in fixed registration mode allows manual creation and registration of VLANs, prevents VLAN deregistration Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 216
    (STP) topology reconfiguration on a port connected to a device that does not support per-VLAN STP, configure the GVRP active applicant state on the port. Ports used if desired. 13-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 217
    switch, perform this task: Task Display GVRP statistics. Command show gvrp statistics [mod_num/port_num] This example shows how to display GVRP statistics for port 1/1: Console> (enable) show gvrp statistics 1/1 Join Empty Received: 0 78-12647-02 Software Configuration Guide-Catalyst 4000
  • Cisco WS-C4003 | Software Guide - Page 218
    > (enable) Disabling GVRP Globally To disable GVRP globally on the switch, perform this task in privileged mode: Task Disable GVRP on the switch. Command set gvrp disable 13-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 219
    Chapter 13 Configuring GVRP This example shows how to disable GVRP globally on the switch: Console> (enable) set gvrp disable GVRP disabled Console> (enable) Configuring GVRP 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 13-9
  • Cisco WS-C4003 | Software Guide - Page 220
    Configuring GVRP Chapter 13 Configuring GVRP 13-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 221
    PART 5 Directing and Filtering Traffic
  • Cisco WS-C4003 | Software Guide - Page 222
  • Cisco WS-C4003 | Software Guide - Page 223
    of service (CoS) values to frames at ingress ports. If traffic is tagged with a CoS vlaue at the ingress port, the switch forwards the value. If traffic is native, then the switch can rewrite the CoS tag. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 224
    cannot carry CoS values. CoS values range between zero (low priority) and seven (high priority). • Classification is the selection of traffic to be marked. 14-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 225
    switch with the default CoS value configured for the entire switch. You cannot mark traffic on a per-port basis. Note The Catalyst 4000 family, 2948G, and 2980G switches support 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 14-3
  • Cisco WS-C4003 | Software Guide - Page 226
    Software Requirements QoS requires supervisor engine software release 5.2 or later releases. Use the show port capabilities command to determine the specific QoS support when necessary. 14-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 227
    mode: Step 1 Step 2 Task Set the CoS value for the switch. Verify the CoS value of the switch. Command set qos defaultcos cos-value show qos info [runtime | config (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 14-5
  • Cisco WS-C4003 | Software Guide - Page 228
    of transmit queues and the number of drop thresholds supported on the port. For example, the 2q1t port type supports two transmit queues and one drop threshold. The > (enable) 14-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 229
    disables QoS, since QoS is disabled by default. Disabling QoS To disable QoS, perform this task in privileged mode: Task Disable QoS on the switch. Command set qos disable 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 14-7
  • Cisco WS-C4003 | Software Guide - Page 230
    Configuring QoS This example shows how to disable QoS: Console> (enable) set qos disable QoS is disabled. Console> (enable) Chapter 14 Configuring QoS 14-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 231
    This chapter describes how to configure multicast services, including Cisco Group Management Protocol (CGMP), Internet Group Management Protocol (IGMP) snooping, and GARP Multicast Registration Protocol (GMRP) on the Catalyst enterprise LAN switches. Note For complete syntax and usage information
  • Cisco WS-C4003 | Software Guide - Page 232
    How Multicasting Works Chapter 15 Configuring Multicast Services CGMP and IGMP software components run on both the Cisco router and the switch. A CGMP/IGMP-capable IP multicast router sees all IGMP packets and can inform the switch when specific hosts join or leave IP multicast groups
  • Cisco WS-C4003 | Software Guide - Page 233
    is Layer 3-protocol independent, which allows it to support the multicast traffic of any Layer 3 protocol (such as IP, IPX, and so forth). GMRP software components run on both the switch and on the host (Cisco is not a source for GMRP host software). On the host, GMRP is typically used with IGMP
  • Cisco WS-C4003 | Software Guide - Page 234
    Multicast Services Configuring CGMP These sections describe how to configure CGMP: • CGMP Hardware and Software switch. Verify that CGMP is enabled. Command set cgmp enable show cgmp statistics [vlan_num] 15-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 235
    Services Configuring CGMP This example shows how to enable CGMP and verify the configuration: Console> (enable) set cgmp enable CGMP support CGMP fast-leave processing on the switch. Verify that CGMP fast-leave Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 236
    Services Displaying Multicast Router Information When you enable CGMP, the switch port 3/1 indicates that the entry was configured manually): Console> (enable) show multicast router CGMP enable) 15-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 237
    Multicast Services This example shows how to display information about all multicast groups on the switch: Console> (enable) show multicast group CGMP enabled IGMP disabled VLAN 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 238
    Individual Switch Ports, page 15-10 • Enabling GMRP Forward-All Option, page 15-11 • Disabling GMRP Forward-All Option, page 15-11 • Configuring GMRP Registration, page 15-12 • Setting the GARP Timers, page 15-13 • Displaying GMRP Statistics, page 15-14 15-8 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 239
    Global GMRP Configuration: GMRP Feature is currently enabled on this switch. GMRP Timers (milliseconds): Join = 200 Leave = 600 LeaveAll = 10000 Port based GMRP Configuration: 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 15-9
  • Cisco WS-C4003 | Software Guide - Page 240
    mode: Step 1 Step 2 Task Disable GMRP on individual switch ports. Verify the configuration. Command set port gmrp disable mod_num/port_num show gmrp configuration 15-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 241
    Multicast Services Configuring option on a port, a copy of all multicast traffic registered on the switch is forwarded to that port. We recommend enabling the forward-all option 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 15-
  • Cisco WS-C4003 | Software Guide - Page 242
    mode continues to register multicast groups that are specific to the port. You must return the port switch. GMRP Timers (milliseconds): Join = 200 Leave = 600 LeaveAll = 10000 Port based GMRP Configuration: 15-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 243
    Chapter 15 Configuring Multicast Services Configuring GMRP GMRP-Status Registration switch, not just GMRP. (For example, GVRP uses the same timers.) You can modify the default GARP timer values on the switch. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 244
    statistics for VLAN 23: Console> show gmrp statistics 23 GMRP Statistics for vlan : Total valid GMRP Packets Received:500 Join Empties:200 15-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 245
    Multicast Services Configuring GMRP switch. Command set gmrp disable This example shows how to disable GMRP globally on the switch: Console> (enable) set gmrp disable GMRP disabled. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 246
    Services Configuring Multicast Router Ports and Group Entries These sections describe how to manually switch automatically learns to which ports a multicast router is connected. However, if desired, you can manually 16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 247
    Command Disable specific manually configured multicast clear multicast router mod_num/port_num router ports. Disable all manually configured multicast . Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 15-17
  • Cisco WS-C4003 | Software Guide - Page 248
    Configuring Multicast Router Ports and Group Entries Chapter 15 Configuring Multicast Services 15-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 249
    Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This filter traffic destined to or received from a specific host based on the host MAC address. This Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 16-1
  • Cisco WS-C4003 | Software Guide - Page 250
    specify the secure MAC address for the port manually or have the port dynamically configure the MAC secure MAC address on another port on the switch, the port in restrictive mode shuts down Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 251
    based on a host MAC address, so that packets tagged with a specific source MAC address are discarded. When you specify a MAC address filter with Port Security, page 16-8 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 16-3
  • Cisco WS-C4003 | Software Guide - Page 252
    manually specify the secure MAC address: Console> (enable) set port security 2/1 enable 00-90-2b-03-34-08 Port 2/1 port security enabled with 00-90-2b-03-34-08 as the secure mac address Trunking disabled for Port 2/1 due to Security Mode Console> (enable) 16-4 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 253
    time be secured. Console> (enable) set port security 4/7 age 600 Secure address age time set to 600 minutes for port 4/7. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 16-5
  • Cisco WS-C4003 | Software Guide - Page 254
    from insecure hosts: Console> (enable) set port security 4/7 violation restrict Port security violation on port 4/7 will cause insecure packets to be dropped. Console> (enable) 16-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 255
    3/24 disabled restrict 20 300 10 disabled 921 Port Num-Addr Secure-Src-Addr Age-Left Last-Src-Addr Shutdown/Time-Left 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 16-7
  • Cisco WS-C4003 | Software Guide - Page 256
    vlan show cam static | permanent This example shows how to create a filter for a specific MAC address: Console> (enable) set cam static filter 00-02-03-04-05-06 task in privileged mode: 16-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 257
    1: Total ports: 2 Total MAC address(es): 2 Total global address space used (out of 1024): 0 Status: installed Module 3: Module does not support port security feature Module 6: 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 16-9
  • Cisco WS-C4003 | Software Guide - Page 258
    : 48 Total MAC address(es): 48 Total global address space used (out of 1024): 0 Status: installed Console> (enable) Chapter 16 Configuring Port Security 16-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 259
    permit prevents inbound Telnet and SNMP access to the switch from unauthorized source IP addresses. All other TCP/IP services (such as IP traceroute and IP ping) continue to . 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 17-1
  • Cisco WS-C4003 | Software Guide - Page 260
    > (enable) set ip permit 172.20.52.32 255.255.0.0 snmp 172.20.52.32 with mask 255.255.0.0 added to Snmp permit list. 17-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 261
    before clearing IP permit entries or host addresses. To enable IP permit list on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 list enabled. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 17-3
  • Cisco WS-C4003 | Software Guide - Page 262
    the IP permit list on the switch, perform this task in privileged mode: Step 1 Step 2 Task Disable the IP permit list on the switch. Verify the IP permit list lists. 17-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 263
    or host addresses. This action prevents your connection from being dropped by the switch you are configuring in case you clear your current IP address. To clear > (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 17-5
  • Cisco WS-C4003 | Software Guide - Page 264
    Configuring the IP Permit List Chapter 17 Configuring the IP Permit List 17-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 265
    as Spanning Tree Protocol (STP) and Cisco Discovery Protocol (CDP), are not affected the port transmits packets of the specific protocol group. The switch detects the traffic, adds the port Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 18-1
  • Cisco WS-C4003 | Software Guide - Page 266
    For example, if a host that supports both IP and Internetwork Packet Exchange (IPX) is connected to a switch port configured as auto for IPX, Protocol Filtering, page 18-3 18-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 267
    : Step 1 Step 2 Step 3 Task Command Enable protocol filtering on the switch. set protocolfilter enable Set the protocol membership of the desired ports. set port on this switch. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 268
    Configuring Protocol Filtering Chapter 18 Configuring Protocol Filtering 18-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 269
    PART 6 Monitoring and Managing the Switch
  • Cisco WS-C4003 | Software Guide - Page 270
  • Cisco WS-C4003 | Software Guide - Page 271
    . You must apply configuration commands to the appropriate module. For example, on a Catalyst 2948G series switch, the 24 Fast Ethernet ports belong logically to module 2. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 19-1
  • Cisco WS-C4003 | Software Guide - Page 272
    Catalyst 2948G switch: Console> (enable) show module Mod Slot Ports Module-Type Model Status 11 0 Switching Supervisor WS-X2948 ok 2 1 50 10/100/1000 Ethernet WS No disabled 16 19-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 273
    Admin Oper Detected mWatt mA @51V 2/1 none none - - - - - Port Security Violation Shutdown-Time Age-Time Max-Addr Trap IfIndex 2/1 disabled shutdown 0 0 1 disabled 15 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 19-3
  • Cisco WS-C4003 | Software Guide - Page 274
    in a switch using the Model WS-X4148 Port 2/2 Type 10/100BaseTX Speed auto,10,100 Duplex half,full Trunk encap type 802.1Q Trunk mode on,off,desirable,auto,nonegotiate Channel 2/1-48 Flow control no 19-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 275
    UDLD Inline power AuxiliaryVlan port capabilities 3/5 Model WS-X4148 Port 3/5 Type switch, perform this task in privileged mode: Task Open a Telnet session to a remote host. Command telnet host [port] 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 276
    crypto key. See Chapter 29, "Working with System Software Images," for the software image naming conventions used for the encryption images. The SSH feature provides security for Telnet sessions to the switch. SSH is supported for remote logins to the switch only. Telnet sessions initiated from the
  • Cisco WS-C4003 | Software Guide - Page 277
    Kerberos to authenticate to the switch, you will not be able to use the secure shell encryption feature. To enable SSH on the switch, perform this task in privileged (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 19-7
  • Cisco WS-C4003 | Software Guide - Page 278
    switch. supports the -s parameter, which allows you to specify the packet size and packet count. In privileged executive mode, the ping command allows you to specify the packet size, packet count, and the wait time. 19-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 279
    progress, press Ctrl-C. Executing Ping To ping another device on the network from the switch, perform one of these tasks in normal or privileged mode: Task Ping a remote =2 ms 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 19-9
  • Cisco WS-C4003 | Software Guide - Page 280
    source and destination belong to multiple VLANs and you specify MAC addresses, you can also specify a VLAN. • The source and destination switches must belong to the same VLAN. 19-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 281
    . Switches can specific return messages. Traceroute starts by sending a User Datagram Protocol (UDP) datagram to the destination host with the TTL field set to 1. If a router finds a TTL value of 1 or 0, it 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 282
    , 1440 byte packets 1 10.1.1.1 (10.1.1.1) 2 ms 2 ms 2 ms 1 ms 2 ms 2 ms 2 10.1.1.100 (10.1.1.100) 2 ms 4 ms 3 ms 3 ms 3 ms 3 ms Console> (enable) 19-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 283
    only. Cisco devices do not forward CDP packets. When new CDP information is received, old information is discarded. Default CDP Configuration Table 20-1 shows the default CDP configuration. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 284
    mode: Step 1 Step 2 Task Set the CDP global enable state on the switch. Verify the CDP configuration. Command set cdp {enable | disable} show cdp Time : 180 Console> (enable) 20-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 285
    or disable CDP on a per-port basis. You must enable CDP globally before the switch will transmit CDP messages on any ports. To change the CDP enable state on a Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 286
    CDP message interval specifies how often the switch will transmit CDP messages to directly connected Cisco devices. To change the default CDP message connected Cisco devices, enter the show cdp neighbors command. 20-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 287
    .52.36 Holdtime: 132 sec Capabilities: TRANSPARENT_BRIDGE SWITCH Version: WS-C2948 Software, Version McpSW: 5.1(57) NmpSW: 5.1(1) Copyright (c) 1995-1999 by Cisco Systems, Inc. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 20-5
  • Cisco WS-C4003 | Software Guide - Page 288
    Configuring CDP Platform: WS-C2948 Port-ID (Port on Neighbors's Device): 2/2 VTP Management Domain: Lab_Network Native VLAN: 522 Duplex: full Console> (enable) Chapter 20 Configuring CDP 20-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 289
    to collect and analyze data for each physical port on a switch. The Switch TopN Reports utility collects the following data for each physical port: -overflow errors (buf-ovflw) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 21-1
  • Cisco WS-C4003 | Software Guide - Page 290
    Pressing Ctrl-C does not terminate the process. Completed Switch TopN reports remain available for viewing until you remove them using the clear top {all | report_num} command. 21-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 291
    example shows how to start the Switch TopN Reports utility in the foreground: Console> (enable) show top 5 pkts Start Time: 06/16/1998,17:26:38 End Time: 06/16/1998,17:27:09 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 21
  • Cisco WS-C4003 | Software Guide - Page 292
    reports. Command clear top {all | report_num} Note The clear top all command does not clear pending Switch TopN reports. Only the reports that have completed are cleared. 21-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 293
    TopN Reports This example shows how to remove a specific Switch TopN report and how to remove all stored reports: Console> (enable 5 killed by Console//. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 21-5
  • Cisco WS-C4003 | Software Guide - Page 294
    Running and Viewing Switch TopN Reports Chapter 21 Using Switch TopN Reports 21-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 295
    Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these sections: • Understanding How UDLD Works, page 22-1 • UDLD Software cause a variety of problems, including spanning-tree Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 296
    , or Gigabit Ethernet fiber-optic switching modules • For copper links: - Supervisor engine software release 5.2 or later releases - Ethernet or Fast Ethernet copper switching modules 22-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 297
    UDLD globally on the switch, perform this task in privileged mode: Step 1 Step 2 Task Enable UDLD globally on the switch. Verify the configuration. Command Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 22-3
  • Cisco WS-C4003 | Software Guide - Page 298
    mode: Step 1 Step 2 Task Disable UDLD on a specific port. Verify the configuration. Command set udld disable mod_num/port_num switch: Console> (enable) set udld disable UDLD disabled globally Console> (enable) 22-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 299
    its use is recommended only for point-to-point links between Cisco switches running software release 5.4(3) or later releases. With aggressive mode enabled, when show udld 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 22-5
  • Cisco WS-C4003 | Software Guide - Page 300
    example shows how to verify that UDLD aggressive mode is enabled on the switch: Console> (enable) show udld port 4/1 UDLD : enabled Message Interval: the show udld command output. 22-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-
  • Cisco WS-C4003 | Software Guide - Page 301
    disabled), shutdown (unidirectional link has been detected and the port disabled), or bidirectional (bidirectional link has been detected and the port disabled). 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 22-7
  • Cisco WS-C4003 | Software Guide - Page 302
    Configuring UDLD Chapter 22 Configuring UDLD 22-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 303
    in this chapter, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these sections: • SNMPv2c engine. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 23-1
  • Cisco WS-C4003 | Software Guide - Page 304
    (DES-56) algorithm. security model-The security strategy used by the SNMP agent. Currently, Cisco IOS supports three security models: SNMPv1, SNMPv2c, and SNMPv3 of the group. 23-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 305
    a group. • A group defines the access policy for a set of users. • SNMP objects refer to an access policy for reading, writing, and creating. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 23-3
  • Cisco WS-C4003 | Software Guide - Page 306
    . • A group also defines the security model and security level for its users. SNMP ifindex categories: • Managed devices (such as a switch) • SNMP agents and MIBs, including Remote When power supply errors occur 23-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 307
    " section on page 23-13). The switch supports up to 20 trap receivers through the RMON2 trap destination table. Configure the RMON2 trap destination table from the NMS. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 23-5
  • Cisco WS-C4003 | Software Guide - Page 308
    supported by the Catalyst enterprise LAN switches, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. Note For enhanced SNMP features in software 23-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 309
    SNMP engine is made up of four components, as shown in Figure 23-1: • Dispatcher • Message Processing Subsystem • Security Subsystem • Access Control Subsystem 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 23-7
  • Cisco WS-C4003 | Software Guide - Page 310
    then passes the message to the appropriate Message Processing Model. The Dispatcher is also responsible for dispatching PDUs to of modules, each supporting a different version of SNMP. 58568 23-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 311
    Processing Subsystem. Depending on the services required, the Security Subsystem may support one or more distinct security models. So far, the only defined security model is the User-Based Security Model 12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 312
    the "Using CiscoWorks2000" section on page 23-13). The switch supports up to 20 trap receivers through the RMON2 trap destination security model. {security-model v1 | v2 | v3} [volatile | nonvolatile] 23-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 313
    nonvolatile. Console> (enable) set snmp targetparams p2 user guestuser2 security-model v3 message-processing v3 privacy Snmp target params was set to p2 v3 nonvolatile. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 23-11
  • Cisco WS-C4003 | Software Guide - Page 314
    to remove access for guestgroup: Console> (enable) clear snmp acc guestgroup security-model v3 authentication Cleared snmp access guestgroup version v3 level authentication. 23-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 315
    , manage, and troubleshoot a switched internetwork. For more information, see the following publications: • Getting Started with Resource Manager Essentials • Getting Started with CWSI Campus 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 316
    Using CiscoWorks2000 Chapter 23 Configuring SNMP 23-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 317
    RMON agent allows the switch to monitor network traffic from all ports simultaneously at the data-link layer of the OSI model without requiring a dedicated monitoring probe or network analyzer. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 318
    Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches). Supported RMON and RMON2 MIB Objects Table 24-1 lists the RMON and RMON2 MIB objects supported by the supervisor engine software. 24-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 319
    (18) Engine Supervisor ...mib-2(1).rmon(16).probeConfig(19) Engine Supported RMON and RMON2 MIB Objects Definition Source Counters for packets, configurations. RFC 2021 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 24-3
  • Cisco WS-C4003 | Software Guide - Page 320
    Supported RMON and RMON2 MIB Objects Chapter 24 Configuring RMON 24-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 321
    used in this chapter, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these major sections: • 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-1
  • Cisco WS-C4003 | Software Guide - Page 322
    network to the switching bus), unless you specifically enable the port. If incoming traffic is enabled for the destination port, it is switched in the native by the destination port. 25-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 323
    ports: • Gigabit uplink ports on the WS-4013 Supervisor II • Gigabit uplink ports on the 2980G-A • Gigabit ports on the WS-4232-L3 module The SPAN line in the RSPAN VLANs. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-3
  • Cisco WS-C4003 | Software Guide - Page 324
    not support monitoring of BPDU packets). SPAN and RSPAN Session Limits You can configure (and store in NVRAM) up to five SPAN sessions in a Catalyst 4000 family switch: to it. 25-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 325
    that passes through the switch. • You can have up to five SPAN sessions running at the same time with any combination of ingress and egress sessions. • You cannot configure SPAN on sc0. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 326
    : Port 2/1-2 Direction : transmit/receive Incoming Packets: disabled Learning : enabled Filter : - Status : active Total local span sessions: 1 Console> (enable) 25-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 327
    > (enable) set span 3/4 3/5 both filter 50,850 Overwrote Port 3/5 to monitor transmit/receive traffic of Port 3/4 Incoming Packets disabled. Learning enabled. Console> (enable) sh span Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-7
  • Cisco WS-C4003 | Software Guide - Page 328
    or other Cisco switches in the end-to-end path for RSPAN traffic. Understanding How RSPAN Work Note See the "Understanding How SPAN and RSPAN Work" section on page 25-1 for concepts and terminology that apply to both SPAN and RSPAN configuration. 25-8 Software Configuration Guide-Catalyst 4000
  • Cisco WS-C4003 | Software Guide - Page 329
    ports and the destination port across multiple switches. • A port cannot serve as an RSPAN source port or RSPAN destination port while designated as an RSPAN reflector port. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-9
  • Cisco WS-C4003 | Software Guide - Page 330
    , or manually delete the RSPAN VLAN from all trunks that do not need to carry the RSPAN traffic. Once the RSPAN VLAN is created, you configure the source and destination switches using the set rspan command. 25-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 331
    Task Configure RSPAN source ports. Use this command on each of the source switches participating in RSPAN. Verify the RSPAN configuration. Command set rspan source {mod/ : - 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-11
  • Cisco WS-C4003 | Software Guide - Page 332
    destination ports. Use this command on each of the destination switches participating in RSPAN. Verify the RSPAN configuration. Command set Destination Destination : Port 3/1 25-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 333
    you want to continue (y/n) [n]? y Disabled monitoring of all source(s) on the switch for remote span. Console> (enable) This example shows how to disable one Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 25-13
  • Cisco WS-C4003 | Software Guide - Page 334
    already set up RSPAN VLAN 901 for this session on all the switches using the set vlan vlan_num rspan command. With VTP enabled in the network, you can from an RSPAN session. 25-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 335
    Switch Switch D 1/1 1/2 Destination switch (data center) T1 1/2 Switch C 2/1.5 3/1 2/1 2/2 3/2 Probe Intermediate switch (distribution) T2 1/2 Switch A 4/1 4/2 4/3 T3 1/1 Source switch(es) Switch 02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 336
    Configuring RSPAN Chapter 25 Configuring SPAN and RSPAN 25-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 337
    PART 7 Administering the Switch
  • Cisco WS-C4003 | Software Guide - Page 338
  • Cisco WS-C4003 | Software Guide - Page 339
    server on the switch If the DNS lookup is successful, the DNS host name of the switch is configured as the system name of the switch and is saved in NVRAM (the domain name is removed). 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 340
    manually configured the prompt using the set prompt command. The switch performs a DNS lookup for the system name whenever one of the following occurs: • when the switch is initialized (power 26-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 341
    to set the system prompt the switch: Console> (enable) set prompt WS-C4008 WS-C4008 Modem Baud Traffic Peak Peak-Time disable 9600 0% 0% Mon Jun 11 2001, 07:26:48 Power Capacity of the Chassis: 1 supply 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 342
    the # symbol as the beginning and ending delimiter, but you can use any character for the delimiter. Console> (enable) set banner motd # Welcome to the Catalyst 4012 Switch! 26-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 343
    and help prevent typing errors when you are configuring or monitoring the switch. For the name argument, specify a name for the command alias. Slot Ports Module-Type Model Sub Status 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 344
    Using Command Aliases Chapter 26 Administering the Switch 33 6 1000BaseX Ethernet WS-X4306 no ok Mod Module-Name Serial Mon Jun 26 2000, 08:53:49 Console> (enable) 26-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 345
    ARP Entries To enable your Catalyst LAN switch to communicate with devices that do even after a system reset. Because most hosts support dynamic resolution, you usually do not need to Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 26-7
  • Cisco WS-C4003 | Software Guide - Page 346
    Configuring Permanent and Static ARP Entries Chapter 26 Administering the Switch To configure a static or permanent ARP entry, perform permanent Permanent ARP entries cleared. 26-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 347
    If no subnet mask is specified, the default (classful) mask is used. The switch uses the longest-match network address in the IP routing table to determine which gateway Interface 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 348
    switch. specific time and include a reason for the reset: Console> (enable) reset at 23:00 08/18 Software upgrade to 5.3(1) Reset scheduled at 23:00:00, Sat Aug 18 2001. Reset reason: Software upgrade to 6.3(1). Proceed with scheduled reset? (y/n) [n]? y 26-10 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 349
    power management feature is designed to support an optimized Catalyst 4006 chassis consisting of a WS-X4013 supervisor engine and four WS-X4148-RJ or WS-X4148-RJ21 modules operating in 1+1 redundancy mode. Additional configurations are possible. 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 350
    power supplies must be of the same wattage. The Catalyst 4000 family switches allow you to mix AC-input and DC-input power supplies in the same chassis. For detailed information on supported power supply configurations for each chassis, refer to the Catalyst 4000 Family Installation Guide. Catalyst
  • Cisco WS-C4003 | Software Guide - Page 351
    power than a single power supply can supply: • WS-X4013 supervisor engine-110W • Two WS-X4148-RJ modules in slots 2 and 3-65W each (130W total) • Two WS-X4448-GB-LX modules in slots 4 and 5-90W each (180W total) • Fan box-25W 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 352
    server switching 1000BASE-X (GBIC) Gigabit Ethernet 80 50 WS-4418-GB Catalyst 4006 Backplane Channel Module WS-X4019 10 10 48-port 10/100 Fast Ethernet RJ-45 WS-X4148-RJ 65 40 Catalyst 4003 and 4006 Layer 3 Services Module WS-X4232-L3 120 70 26-14 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 353
    show environment power Power Budget is : 2 supplies Power Available to the System: 750 Watts (62.06 Amps @12V) Power Drawn from the System: 490 Watts (40.10 Amps @12V) Remaining Power: 260 Watts (21.08 Amps @12V). . . Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 354
    status of the switch is included in the report: Console> (enable) write tech-support 172.20.32.10 techsupport.txt Upload tech-report to techsupport.txt on 172.20.32.10 (y/n) [n]? y / Finished network upload. (67784 bytes) Console> (enable) 26-16 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 355
    this chapter, refer to the Command Reference-Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches. This chapter consists of these sections: Works, page 27-7 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-1
  • Cisco WS-C4003 | Software Guide - Page 356
    the password. The user is only allowed a specific number of attempts to successfully log in to the switch. If the user fails to authorize the password authentication methods fail. 27-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 357
    + configuration can use any or all of the three services. When the TACACS+ server receives the packet, it the client and server. If you configure a key on the switch, it must be the same as the one configured on the Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 358
    "Remote Authentication Dial In User Service (RADIUS)." You can configure the following RADIUS parameters on the switch: • Enable or disable RADIUS terms used in Kerberos. 27-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 359
    ) Service credential SRVTAB Ticket granting ticket (TGT) Definition Applications and services that have been modified to support the Kerberized login procedure cannot be used. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-5
  • Cisco WS-C4003 | Software Guide - Page 360
    log in to the switch, the switch takes care of authentication to the KDC on behalf of the login client. However, the user password is now transferred in clear text from the login client to the switch. 27-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 361
    If the decryption is successful, you are authenticated to the switch. 5. If you want to access other network services, the KDC must be contacted directly for authentication. To 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-7
  • Cisco WS-C4003 | Software Guide - Page 362
    specific system port. PDU Protocol data unit. RADIUS Remote Access Dial In User Service. Supplicant PAE (Referred to as the "supplicant") entity that requests access to the LAN/switch services entity 27-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 363
    has extensions that support encapsulation of EAP frames built into it. 802.1x Parameters Configurable on the Switch You can configure these 802.1x parameters on the switch: • Force-Authorized, Force-Unauthorized, or Automatic 802.1x port control • Enable or disable multiple hosts on a specific port
  • Cisco WS-C4003 | Software Guide - Page 364
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Authentication Default Configuration Table 27-3 authentication server retransmission time 30 seconds 27-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 365
    1x is only supported on Ethernet switched port analyzer (SPAN) destination port; and you cannot configure SPAN destination on an 802.1x port. However, you can configure an 802.1x port as a SPAN source port. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 366
    attempt {count} [console | telnet] Enable login lockout time on the switch. Use the console or telnet keywords if you want to enable local authentication disabled enabled(primary) - 27-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-
  • Cisco WS-C4003 | Software Guide - Page 367
    on the switch: • Enabling Local Authentication, page 27-14 • Setting the Login Password, page 27-14 • Setting the Enable Password, page 27-15 • Disabling Local Authentication, page 27-15 • Recovering a Lost Password, page 27-16 78-12647-02 Software Configuration Guide-Catalyst 4000 Family
  • Cisco WS-C4003 | Software Guide - Page 368
    To enable local authentication on the switch, perform this task in privileged mode software release 5.4 remain non-case sensitive. You must reset the password after installing release 5.4 to activate case sensitivity. 27-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 369
    or TACACS+ is not configured correctly, or if the RADIUS or TACACS+ server is not online, you may be unable to log in to the switch. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-15
  • Cisco WS-C4003 | Software Guide - Page 370
    complete Steps 3 to 7 within 30 seconds of a power cycle or the recovery will fail. If you lost . Enter the reset system command to reboot the switch. At the "Enter Password" prompt, press Return Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 371
    one or more TACACS+ servers before you enable TACACS+ authentication on the switch. The first server you specify is the primary server, unless you explicitly make enabled(primary) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 372
    -17. You can enable TACACS+ authentication for login and enable access to the switch. If desired, you can use the console and telnet keywords to specify that Session Telnet Session 27-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 373
    Chapter 27 Configuring Switch Access Using AAA Configuring Authentication tacacs enabled(primary) enabled( + configuration. Command set tacacs timeout seconds show tacacs 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-19
  • Cisco WS-C4003 | Software Guide - Page 374
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA This example shows how to on the switch. set tacacs directedrequest enable Verify the TACACS+ configuration. show tacacs 27-20 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 375
    Disable TACACS+ directed request on the switch. set tacacs directedrequest disable Verify the show tacacs This example shows how to clear a specific TACACS+ server from the configuration: Console> (enable Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 376
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Clearing the TACACS+ Key To clear the TACACS+ key, perform ) enabled(primary) Console> (enable) 27-22 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 377
    These sections describe how to configure RADIUS authentication on the switch. • Specifying RADIUS Servers, page 27-23 • Enabling enable) Auth-port -----------1812 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-23
  • Cisco WS-C4003 | Software Guide - Page 378
    After you log in to the Catalyst 6000 family switch with your assigned username and password (john/hello), you can enter enable mode using the password assigned to the $enab15$ user. If your RADIUS server does not support the $enab15$ username, you can set the service-type attribute (attribute 6) to
  • Cisco WS-C4003 | Software Guide - Page 379
    Chapter 27 Configuring Switch Access Using AAA Configuring Authentication tacacs radius local Console> (enable) 20.52.3 primary Console> (enable) Auth-port -----------1812 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-25
  • Cisco WS-C4003 | Software Guide - Page 380
    the RADIUS Retransmit Count You can specify the number of times the switch will attempt to contact a RADIUS server before the next configured server is retransmit count show radius 27-26 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 381
    the dead time interval (such as other users attempting to log in to the switch) are not sent to a RADIUS server marked dead. Configuring a dead time speeds Session Telnet Session 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 382
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA tacacs disabled disabled radius enabled(primary Telnet Session tacacs disabled disabled 27-28 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 383
    Chapter 27 Configuring Switch Access Using AAA Configuring Authentication radius local disabled disabled enabled(primary) primary) enabled(primary) Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-29
  • Cisco WS-C4003 | Software Guide - Page 384
    CISCO.EDU is created: /usr/local/sbin/kdb5_util create -r CISCO.EDU -s Add the switch to the database. The following example adds a switch called Cat4012 to the CISCO.EDU database: ank host/Cat4012.cisco.edu@CISCO Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 385
    services that are registered to a Kerberos server. To authenticate a user defined in the Kerberos database, the switch must know the host name or IP address of the host running the KDC and the name of the Kerberos realm. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 386
    [email protected] 0 932423923 1 1 8 01;;8>00>50;0=0=0 Console> (enable) Specifying a Kerberos Server You can specify to the switch which KDC to use in a specific [port-number] 27-32 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 387
    SRVTAB directly into the switch, create an entry for each Kerberos principal (service) on the switch. The entries are maintained in the SRVTAB table. The maximum size of the table is 20 entries. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 388
    can enter the SRVTAB directly into the switch. set kerberos srvtab entry kerberos-principal /[email protected] 0 932423923 1 1 8 03;;5>00>50;0=0=0 Srvtab Entry 2:host/[email protected] -34 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 389
    the switch so that Kerberos clients are mandatory for users to authenticate to other network services: Console> (enable) set kerberos clients mandatory Kerberos clients set to mandatory Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 390
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Disabling Credentials Forwarding To clear the : Kerberos SRVTAB Entries Console> (enable) 27-36 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 391
    [email protected] 0 933974942 1 1 8 12151>>3>11 Console> (enable) To clear the DES key, perform this task in privileged mode: Task Clear a DES key from the switch. Command 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-37
  • Cisco WS-C4003 | Software Guide - Page 392
    display and clear Kerberos configurations on the switch: • show kerberos • show kerberos /[email protected] 0 932423923 1 1 8 03;;5>00>50;0=0=0 Srvtab Entry 2:host/[email protected] ) 27-38 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 393
    Manually specific requirements required by 802.1x. To enable 802.1x authentication for individual ports, see the "Enabling and Initializing 802.1x Authentication for Individual Ports" section on page 27-40. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 394
    the switch. For specific port. Initialize 802.1x on the same port. Verify the 802.1x configuration. Command set port dot1x mod/port port-control auto set port dot1x mod/port initialize show port dot1x mod/port config 27-40 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 395
    27 Configuring Switch Access connected to a specific port. To manually reauthenticate the supplicant connected to a specific port, see the "Manually Reauthenticating the Supplicant" enabled 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 396
    on a specific port. Command set port dot1x mod/port multiple-host disable This example shows how to disable access for multiple hosts on port 1 on module 4: Console> (enable) set port dot1x 4/1 multiple-host disable Port 4/1 multiple hosts not allowed. 27-42 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 397
    Chapter 27 Configuring Switch Access Using AAA Configuring Authentication Setting the Quiet Period When the authenticator frame. Command set dot1x supp-timeout seconds 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-43
  • Cisco WS-C4003 | Software Guide - Page 398
    Chapter 27 Configuring Switch Access Using AAA the back-end authenticator each time it receives a specific number of frames. When the back-end authenticator does set to 4. 27-44 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 399
    Chapter 27 Configuring Switch Access Using AAA Configuring Authentication Resetting the 802.1x Configuration trace may affect the operation of the system. Use with caution. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-45
  • Cisco WS-C4003 | Software Guide - Page 400
    Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Using the show Commands You on a specific port on a specific module. Command show port dot1x statistics mod/port 27-46 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 401
    for both login and enable access on the console port. Any user with access to the directly connected terminal can access the switch using the login and enable passwords. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-47
  • Cisco WS-C4003 | Software Guide - Page 402
    172.20.52.10 Switch Console port connection 18927 Workstation A Terminal This example shows how to configure the switch so that TACACS+ > (enable) Status ------primary 27-48 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 403
    Your switch supports TACACS+ and RADIUS authorization to control access to the switch. feature is enabled for EXEC mode, the user must supply a valid username and password pair to access the Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 404
    on the switch. • If you have enabled authorization for configuration commands only, the switch verifies Service-Type access, the NAS authenticates you and logs you in to privileged mode if authentication succeeds. 27-50 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 405
    These guidelines apply when configuring authorization on the switch: • TACACS+ authorization is disabled by switch. • Enabling TACACS+ Authorization, page 27-52 • Disabling TACACS+ Authorization, page 27-53 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 406
    Using AAA Enabling TACACS+ Authorization To enable TACACS+ authorization on the switch, perform this task in privileged mode: Step 1 Step 2 commands: config: tacacs+ deny 27-52 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 407
    deny deny - Disabling TACACS+ Authorization To disable TACACS+ authorization on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Step Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27
  • Cisco WS-C4003 | Software Guide - Page 408
    switch, the switch registers a request with the TACACS+ daemon. The TACACS+ daemon determines if the user is authorized to use the feature and sends a response either executing the command or denying access. 27-54 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 409
    TACACS+ authorization is enabled for enable mode access to the switch for both Telnet and console connections, authorizing configuration commands: RADIUS Servers, page 27-57 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-55
  • Cisco WS-C4003 | Software Guide - Page 410
    accounting methods to monitor access to the switch: • TACACS+ accounting • RADIUS accounting The accounting protocol operates in a client-server model, using TCP for transport. The NAS acts as 56 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3
  • Cisco WS-C4003 | Software Guide - Page 411
    ), the switch can generate two types of records: • Start records-Include partial information of the event (when the event started, type of service, and traffic disabled disabled 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 412
    to suppress accounting when an unknown user with no username accesses the switch by using the set accounting suppress null-username enable command. Note default accounting configuration. 27-58 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 413
    Guidelines These guidelines apply when configuring accounting on the switch: • Configure RADIUS and TACACS+ servers before enabling set accounting suppress null-username enable 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-59
  • Cisco WS-C4003 | Software Guide - Page 414
    Configuring Accounting Chapter 27 Configuring Switch Access Using AAA Step 6 Step 7 Task Configure accounting 0 0 0 Command 0 0 0 System 1 0 0 Console> (enable) 27-60 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 415
    Using AAA Configuring Accounting Disabling Accounting To disable accounting on the switch, perform this task in privileged mode: Step 1 Step 2 Traffic: Starts Stops Active 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-61
  • Cisco WS-C4003 | Software Guide - Page 416
    TACACS+ Example Network Topology TACACS+ server 172.20.52.10 Switch Console port connection 18927 Workstation A Terminal In this example, Frequency: periodic, Interval = 120 27-62 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 417
    Chapter 27 Configuring Switch Access Using AAA Accounting information: Active Accounted actions on tty0, 0 0 0 System 1 0 0 Console> (enable) Accounting Example 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-63
  • Cisco WS-C4003 | Software Guide - Page 418
    Accounting Example Chapter 27 Configuring Switch Access Using AAA 27-64 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 419
    switch is powered up or reset, the ROM-monitor code is executed. Depending on the nonvolatile RAM (NVRAM) configuration, the switch either stays in ROM-monitor mode or loads the supervisor engine system code. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 420
    commands. If it cannot boot any image in the BOOT environment variable list, the switch remains in ROM-monitor mode. The exact booting sequence is defined by the ROM monitor. 28-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 421
    files used to configure the switch at startup. For information on specifying recurrence or nonrecurrence, see the "Setting CONFIG_FILE Recurrence" section on page 28-5. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 28
  • Cisco WS-C4003 | Software Guide - Page 422
    images switch will use at the next startup by setting the boot field in the configuration register. This command affects only the configuration register bits that control the boot field and leaves the remaining bits unaltered. 28-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 423
    next restart and the switch is configured using the specified configuration files. The NVRAM configuration is retained after subsequent restarts (unless you again set the CONFIG_FILE variable). 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 424
    ignore-config enable at startup. This example shows how to set the switch to ignore the NVRAM configuration at the next startup: Console> (enable) ROM monitor Console> (enable) 28-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 425
    Modifying the Switch Boot Configuration of these tasks in privileged mode: Task Clear a specific image from the BOOT environment variable. Clear the entire BOOT > (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 28-7
  • Cisco WS-C4003 | Software Guide - Page 426
    task in privileged mode (depending on your supervisor engine and switch type): Task Command Specify the list of configuration files to CONFIG_FILE variable = Console> (enable) 28-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 427
    28 Modifying the Switch Boot Configuration Displaying the Switch Boot Configuration Displaying the Switch Boot Configuration To boot: image specified by the boot system commands Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 428
    Displaying the Switch Boot Configuration Chapter 28 Modifying the Switch Boot Configuration 28-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 429
    system software images to the switch supervisor engine and to intelligent modules: • Understanding How TFTP Software Image Downloads Work, page 29-2 • Preparing to Download an Image Using TFTP, page 29-2 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 430
    the file to download. On those platforms that support the Flash file system, you are also prompted for the Flash device to which to copy the file and the destination filename. 29-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 431
    Chapter 29 Working with System Software Images Downloading System Software Images to the Switch Using TFTP Note The Catalyst 4000 family, 2948G, and 2980G switches have only one Flash device (bootflash). The switch downloads the image file from the TFTP server, and the image is copied to the
  • Cisco WS-C4003 | Software Guide - Page 432
    ,13:53:45:SYS-5:Module 3 is online Console> show version 1 Mod Port Model Serial # Versions 1 0 WS-X4012 JAB03130104 Hw : 1.5 Gsp: 6.1(1.4) Nmp: 6.1(1) Console> 29-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 433
    steps: Step 1 Step 2 Log into the switch through the console port or a Telnet session. Upload the software image to the TFTP server using the copy flash tftp command. When prompted, specify the TFTP server address and destination filename. On platforms that support the Flash file systems, you are
  • Cisco WS-C4003 | Software Guide - Page 434
    image file to the appropriate rcp directory on the workstation. Log into the switch through the console port or through a Telnet session. If you log in using Telnet, your Telnet session disconnects when you reset the switch to run the new software. 29-6 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 435
    the version of the code on the switch. Sample rcp Download Procedures This example shows a complete rcp download procedure of a supervisor engine software image: Console> (enable) show version 1 Mod Port Model Serial # Versions 1 2 WS-X5530 007451586 Hw : 1.3 Fw : 3.1.2 Fw1: 3.1(2) Sw
  • Cisco WS-C4003 | Software Guide - Page 436
    13:53:45:SYS-5:Module 3 is online Console> show version 1 Mod Port Model Serial # Versions 1 0 WS-X4012 JAB03130104 Hw : 1.5 Gsp: 6.1(1.4) Nmp: 6.1(0.104) Console> 29-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 437
    the specific username. Uploading Software Images to an rcp Server Use this procedure to upload a software image on a switch to an rcp server for storage: Step 1 Step 2 Log into the switch through 12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 438
    Uploading System Software Images to an rcp Server Chapter 29 Working with System Software Images 29-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 439
    of useful commands to help you manage system image and configuration files. The Catalyst 4000 family, 2948G, and 2980G switches have one Flash device: bootflash. Note device. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 30-1
  • Cisco WS-C4003 | Software Guide - Page 440
    . Note VLAN commands are not saved as part of the configuration file when the switch is operating in text mode with the VTP mode set to server. To set configuration changes. 30-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 441
    list of files on a Flash device. Command dir [[m/]device:][filename] dir [[m/]device:][filename] deleted dir [[m/]device:][filename] all dir [[m/]device:][filename] long 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 30-3
  • Cisco WS-C4003 | Software Guide - Page 442
    image or configuration file from a Flash device to a TFTP or rcp server • Configure the switch using a configuration file on a Flash device or on a TFTP or rcp server • Copy the current configuration to a Flash device or to a TFTP or rcp server 30-4 Software Configuration Guide-Catalyst 4000
  • Cisco WS-C4003 | Software Guide - Page 443
    running configuration to Flash memory: Console> (enable) copy config flash Flash device [bootflash]? bootflash: Name of file to copy to []? 4012_config.cfg 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 30-5
  • Cisco WS-C4003 | Software Guide - Page 444
    has been copied successfully. Console> (enable) This example shows how to upload an image from a remote host into Flash using rcp: Console> (enable) copy rcp flash cfg Console> (enable) 30-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 445
    .4-4-1.bin CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC CCCCCCCCCCCCCCC File bootflash:cat4000.4-4-1.bin verified OK Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 30-7
  • Cisco WS-C4003 | Software Guide - Page 446
    Using the Flash File System Chapter 30 Using the Flash File System 30-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 447
    switch by entering the set password and set enablepass commands. Enter a blank line after the set password and set enablepass commands. The passwords are saved in the configuration file as clear text. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G
  • Cisco WS-C4003 | Software Guide - Page 448
    .com end Configuring the Switch Using a File in Flash Memory You can configure the switch using a file stored in Flash memory. The procedure varies depending on your switch platform. 31-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78
  • Cisco WS-C4003 | Software Guide - Page 449
    running configuration or to a Flash device: • Preparing to Download a Configuration File Using TFTP, page 31-4 • Configuring the Switch Using a File on a TFTP Server, page 31-4 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 31-3
  • Cisco WS-C4003 | Software Guide - Page 450
    the TFTP server is configured properly. • Ensure that the switch has a route to the TFTP server. The switch and the server must be in the same subnetwork if you > (enable) 31-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 451
    to the TFTP server. This example shows how to upload the running configuration on a switch, to a TFTP server for storage: Console> (enable) copy config tftp IP address > (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 452
    the workstation acting as the rcp server supports the remote shell (rsh). • Ensure that the switch has a route to the rcp server. The switch and the server must be in the line. 31-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 453
    the switch configuration to the rcp server using either the copy config rcp or the write host file [rcp] command. Specify the IP address or host name of the rcp server and the destination filename. The file is uploaded to the rcp server. 78-12647-02 Software Configuration Guide-Catalyst 4000
  • Cisco WS-C4003 | Software Guide - Page 454
    running configuration on a switch, to an rcp server Task Clear the configuration for a specific module. Command clear config mod_num problem. To resolve the inconsistency, clear the configuration on the problem module. 31-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 455
    on a specific module: Console> (enable) clear config 2 This command will clear module 2 configuration. Do you want to continue (y/n) [n]? y Module 2 configuration cleared. Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 456
    Clearing the Configuration Chapter 31 Working with Configuration Files 31-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 457
    switch engines • Full-mesh connectivity between switch engines • Reduced internal traffic congestion The switch acceleration feature is supported on Catalyst 4006 switches SE3. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 32-1
  • Cisco WS-C4003 | Software Guide - Page 458
    two additional modes are supported. Figure 32-1 shows the possible configurations. Figure 32-1 Switch Acceleration Configuration Modes A that switch acceleration is configured on the supervisor engine. 32-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G,
  • Cisco WS-C4003 | Software Guide - Page 459
    by providing multilink load balancing between the switch engines. A Backplane Channel module also allows you to retain the Gigabit Ethernet uplinks on the supervisor engine. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 32-3
  • Cisco WS-C4003 | Software Guide - Page 460
    SEs. Note If you want to keep the uplink connections, do not enable switch acceleration on the supervisor engine. You can insert or remove a Backplane Channel by default. 32-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 461
    switch first initializes, the network is not connected until the initialization completes. Therefore, messages redirected to a syslog server are delayed up to 90 seconds. Table 33-1 describes the facility types supported by the system message logs. 78-12647-02 Software Configuration Guide-Catalyst
  • Cisco WS-C4003 | Software Guide - Page 462
    tcp telnet tftp udld vmps vtp Definition Cisco Discovery Protocol Dynamic Trunking Protocol Dual Ring Protocol VTP pruning Quality of Service RADIUS authentication Remote supported by the system message logs. 33-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 463
    This example shows typical switch system messages (at system startup): 1999 Apr 16 10:01:26 %MLS-5-MLSENABLED:IP Multilayer switching is enabled 1999 Apr joined bridge port 3/2 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 33-3
  • Cisco WS-C4003 | Software Guide - Page 464
    Logging These sections describe how to configure system message logging on the switch: • Configuring Session Logging Settings, page 33-4 • Configuring the given Telnet session. 33-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 465
    for the specified facilities. If you do not use the default keyword, the specified severity level applies only to the current session. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 33-5
  • Cisco WS-C4003 | Software Guide - Page 466
    to set the logging buffer size to 200 messages: Console> (enable) set logging buffer 200 System logging buffer size set to Console> (enable) 33-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 467
    of the condition being logged. You can set UNIX systems to receive all messages from the switch. Create the log file by entering these commands at the UNIX shell prompt: $ touch noalias] 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 468
    To display the current system message logging configuration, perform this task: Task Display the current system message logging configuration. Command show logging [noalias] 33-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 469
    command to display the messages in the switch logging buffer. If you do not specify number_of_messages, the default is to display the last 20 messages in the buffer (-20). 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 33-9
  • Cisco WS-C4003 | Software Guide - Page 470
    Configuring System Message Logging To display the messages in the switch logging buffer, perform one of these tasks: Task Command joined bridge port 3/1-2 Console> (enable) 33-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 471
    IP addresses through the DNS protocol from a DNS server. When you configure DNS on the switch, you can substitute the host name for the IP address with all IP commands, such 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 34
  • Cisco WS-C4003 | Software Guide - Page 472
    DNS, page 34-3 Setting Up and Enabling DNS To set up and enable DNS on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Task status ------- primary 34-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-
  • Cisco WS-C4003 | Software Guide - Page 473
    . Command set ip dns disable show ip dns [noalias] This example shows how to disable DNS on the switch: Console> (enable) set ip dns disable DNS is disabled Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 34-3
  • Cisco WS-C4003 | Software Guide - Page 474
    Configuring DNS Chapter 34 Configuring DNS 34-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 475
    when system logs are created and other time-specific events occur. An NTP server must be accessible by the client switch. NTP uses the User Datagram Protocol (UDP) each pair of 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 35-1
  • Cisco WS-C4003 | Software Guide - Page 476
    because the information flow is one-way only. Cisco's implementation of NTP does not support stratum 1 service; it is not possible to connect to a -7 • Disabling NTP, page 35-8 35-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 477
    NTP server. You can configure up to ten server addresses per client. To configure the switch in NTP client mode, perform this task in privileged mode: Step 1 Step 2 [noalias] 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 35-3
  • Cisco WS-C4003 | Software Guide - Page 478
    system running NTP. When you enable the authentication feature, the client switch will send time-of-day requests only to trusted NTP servers. configuration. show ntp [noalias] 35-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647
  • Cisco WS-C4003 | Software Guide - Page 479
    String Console> (enable) Setting the Time Zone You can specify a time zone for the switch to display the time in that time zone. You must enable NTP before you set year. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 35-5
  • Cisco WS-C4003 | Software Guide - Page 480
    (enable) To enable the daylight saving time clock adjustment to a nonrecurring specific date, perform this task in privileged mode: Step 1 Step 2 Task 21 2002, 05:30:00 35-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 481
    Servers To remove an NTP server address from the NTP servers table on the switch, perform this task in privileged mode: Step 1 Step 2 Task Specify the NTP . Console> (enable) 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 35-7
  • Cisco WS-C4003 | Software Guide - Page 482
    disable show ntp [noalias] This example shows how to disable NTP client mode on the switch: Console> (enable) set ntp client disable NTP Client mode disabled Console> (enable) 35-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 483
    PART 8 Appendix
  • Cisco WS-C4003 | Software Guide - Page 484
  • Cisco WS-C4003 | Software Guide - Page 485
    /translation Address Resolution Protocol ATM switch processor Asynchronous Transfer Mode B BDPU BRF BUS Bridge Protocol Data Unit Bridge Relay Function broadcast and unknown server 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 486
    inter-switch link data movement processor Domain Name System Department of Defense Dual Ring Protocol destination service access point Dynamic Trunking Protocol dedicated token ring; data terminal ready Appendix A Acronyms Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 487
    Attribute Registration Protocol Gigabit Interface Converter GARP Multicast Registration Protocol Gigabit Switch Platform GARP VLAN Registration Protocol H HDX half duplex 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 A-3
  • Cisco WS-C4003 | Software Guide - Page 488
    network LAN Emulation local-area transport Link Control Protocol LAN Emulation Client LAN Emulation Configuration Server link error monitor link error rate Appendix A Acronyms Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 A-4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 489
    Base media-independent interface multilayer switching Multilayer Switching Protocol multilayer switching-route processor multi-mode Maintenance -bused spare NetFlow Data Export 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 A-5
  • Cisco WS-C4003 | Software Guide - Page 490
    LAN Switching Next Hop Client Next Hop Resolution Protocol Next Hop Server Network Management Processor Network-Network Interface network service physical sublayer protocol independent multicast Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 491
    route processor Route Switch Module S SAID SAMBA SAP SAR Security Association Identifier synergy advanced multipurpose bus arbiter service access point segmentation and reassembly 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 492
    Network Management Protocol Switched Port Analyzer source-route bridging source-route transparent bridging Service-Specific Connection Oriented Protocol Industry Association type-length value Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 493
    TrCRF TRT TTL TTY U UART UBR UDLD UDP UNI UTC type of service Token Ring Bridge Relay Function Token Ring Concentrator Relay Function token rotation Virtual Path Identifier 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 A-9
  • Cisco WS-C4003 | Software Guide - Page 494
    VQP VTP W WRED WRR VLAN Query Protocol VLAN Trunk Protocol Weighted Random Early Detect Weighted Round Robin Appendix A Acronyms A-10 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 495
    membership 12-10 software support 10-3 B BackboneFast adding a switch (figure) 8-15 disabling 8-14 displaying statistics 8-14 enabling 8-13 overview 8-11 Backplane Channel module 32-3 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 496
    and 26-9 Cisco Discovery Protocol See CDP Cisco Group Management switch accessing 2-2 designating IP addresses 2-8 designating IP aliases 2-8 designating MAC addresses 2-8 designating modules 2-7 designating ports 2-7 IN-2 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 497
    system message logging settings 33-5 conventions, document xxvi CoS configuring default switch values 14-5 drop thresholds mapping 14-6 transmit 14-3 Layer 2 34-2 overview 34-1 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 IN-3
  • Cisco WS-C4003 | Software Guide - Page 498
    support 6-4 modes 6-3 overview 6-1 PAgP and 6-2 port costs 6-7 port-VLAN costs 6-7 See also Fast EtherChannel; Gigabit EtherChannel Ethernet autonegotiation 4-5 checking connectivity 4-7 default configuration 4-2 overview 4-1 IN-4 Software Configuration Guide-Catalyst 4000 Family, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 499
    15-11 enabling globally 15-9 enabling per-port 15-10 overview 15-3 registration 15-12 to 15-13 setting timers 15-13 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 IN-5
  • Cisco WS-C4003 | Software Guide - Page 500
    3-10 static routes 26-9 VLANs and 10-2 IP aliases creating 26-7 designating 2-8 IP multicast CGMP and 15-4 GMRP and 15-8 group entries 15-16 IN-6 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 501
    overview 19-11 ISL mapping 802.1Q VLANs 10-5 overview 11-1 supported switches (table) 11-4 isolated ports definition 10-8 K Kerberos authentication configuration 19-6 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 IN-7
  • Cisco WS-C4003 | Software Guide - Page 502
    configuring 3-6 message-of-the-day See login banner metric values, switch TopN reports (table) 21-2 MIBs Network Analysis Module and 24-2 Network Time Protocol See NTP IN-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-
  • Cisco WS-C4003 | Software Guide - Page 503
    15-4 protocol filtering and 18-1 NMS SPAN, configuring 25-1 normal mode, switch CLI 2-3 NTP clearing time zone 35-7 configuring broadcast-client mode 35-3 100 Fast Ethernet 4-4 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 IN-9
  • Cisco WS-C4003 | Software Guide - Page 504
    power budget setting 26-15 power management switch CLI 2-3 promiscuous ports definition 10-8 prompt configuring 26-2 overview 26-1 protocol filtering configuring 18-3 default configuration 18-2 overview 18-1 protocol support Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 505
    Service See RARP RMON enabling 24-2 overview 24-1 supported MIB objects 24-2 viewing data 24-2 ROM disabling 7-30 enabling 7-30 root switch configuring primary 7-27 configuring secondary 7-28 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • Cisco WS-C4003 | Software Guide - Page 506
    -4 overview 23-4 supported RMON MIB objects 24-2 SNMPv3 configuring 23-10 definitions 23-10 overview 23-7 software images downloading using rcp status reports, system 26-16 IN-12 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02
  • Cisco WS-C4003 | Software Guide - Page 507
    contact, setting 26-3 system images downloading using rcp 29-6 downloading using TFTP 29-2 switch specifying startup 28-1 uploading 29-9 uploading 29-5 system location, setting 26-3 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and
  • Cisco WS-C4003 | Software Guide - Page 508
    mode 30-2 TFTP downloading software images 29-2 uploading configuration files 31-5 uploading software images 29-5 time, setting 26-4 time exceeded messages 19-12 timers configuring forward delay 7-30 IN-14 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases
  • Cisco WS-C4003 | Software Guide - Page 509
    -7 software images 29-5, 29-9 supervisor 29-9 user sessions disconnecting 19-8 monitoring 19-7 V virtual LANs See VLANs VLAN-based SPAN See VSPAN VLAN filtering trunk 25-4 VLAN Management Policy Server See VMPS 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst
  • Cisco WS-C4003 | Software Guide - Page 510
    example 12-8 overview 12-1 troubleshooting 12-7 error messages (table) 12-6 overview 12-1 troubleshooting 12-6 VMPS database creating 9-7 overview 9-3 W write tech support command 26-16 IN-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348
  • 349
  • 350
  • 351
  • 352
  • 353
  • 354
  • 355
  • 356
  • 357
  • 358
  • 359
  • 360
  • 361
  • 362
  • 363
  • 364
  • 365
  • 366
  • 367
  • 368
  • 369
  • 370
  • 371
  • 372
  • 373
  • 374
  • 375
  • 376
  • 377
  • 378
  • 379
  • 380
  • 381
  • 382
  • 383
  • 384
  • 385
  • 386
  • 387
  • 388
  • 389
  • 390
  • 391
  • 392
  • 393
  • 394
  • 395
  • 396
  • 397
  • 398
  • 399
  • 400
  • 401
  • 402
  • 403
  • 404
  • 405
  • 406
  • 407
  • 408
  • 409
  • 410
  • 411
  • 412
  • 413
  • 414
  • 415
  • 416
  • 417
  • 418
  • 419
  • 420
  • 421
  • 422
  • 423
  • 424
  • 425
  • 426
  • 427
  • 428
  • 429
  • 430
  • 431
  • 432
  • 433
  • 434
  • 435
  • 436
  • 437
  • 438
  • 439
  • 440
  • 441
  • 442
  • 443
  • 444
  • 445
  • 446
  • 447
  • 448
  • 449
  • 450
  • 451
  • 452
  • 453
  • 454
  • 455
  • 456
  • 457
  • 458
  • 459
  • 460
  • 461
  • 462
  • 463
  • 464
  • 465
  • 466
  • 467
  • 468
  • 469
  • 470
  • 471
  • 472
  • 473
  • 474
  • 475
  • 476
  • 477
  • 478
  • 479
  • 480
  • 481
  • 482
  • 483
  • 484
  • 485
  • 486
  • 487
  • 488
  • 489
  • 490
  • 491
  • 492
  • 493
  • 494
  • 495
  • 496
  • 497
  • 498
  • 499
  • 500
  • 501
  • 502
  • 503
  • 504
  • 505
  • 506
  • 507
  • 508
  • 509
  • 510
Corporate Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 526-4100
Software Configuration Guide
Catalyst 4000 Family
Catalyst 2948G
Catalyst 2980G
Software Releases 6.3 and 6.4
Customer Order Number: DOC-7812647=
Text Part Number: 78-12647-02