Section |
Page |
Catalyst 6000 Family Software Configuration Guide |
1 |
contents |
3 |
Audience |
27 |
Organization |
27 |
Related Documentation |
29 |
Conventions |
30 |
Obtaining Documentation |
31 |
Cisco.com |
31 |
Documentation CD-ROM |
31 |
Ordering Documentation |
31 |
Documentation Feedback |
32 |
Obtaining Technical Assistance |
32 |
Cisco.com |
32 |
Technical Assistance Center |
32 |
Cisco TAC Website |
33 |
Cisco TAC Escalation Center |
33 |
Obtaining Additional Publications and Information |
34 |
Product Overview |
35 |
Command-Line Interfaces |
37 |
Catalyst Command-Line Interface |
37 |
ROM-Monitor Command-Line Interface |
37 |
Switch Command-Line Interface |
38 |
Accessing the Switch CLI |
38 |
Accessing the CLI through the Console Port |
38 |
Accessing the CLI through Telnet |
39 |
Accessing the MSFC from the Switch |
39 |
Accessing the MSFC from the Console Port |
40 |
Accessing the MSFC from a Telnet Session |
40 |
Working With the Command-Line Interface |
41 |
Switch CLI Command Modes |
41 |
Designating Modules, Ports, and VLANs on the Command Line |
41 |
Designating MAC Addresses, IP Addresses, and IP Aliases |
42 |
Command Line Editing |
42 |
History Substitution |
43 |
Accessing Command Help |
44 |
MSFC Command-Line Interface |
44 |
Cisco IOS Command Modes |
44 |
Getting a List of IOS Commands and Syntax |
45 |
Cisco IOS Command-Line Interface |
46 |
Accessing Cisco IOS Configuration Mode |
46 |
Viewing and Saving the Cisco IOS Configuration |
47 |
Bringing Up an MSFC Interface |
47 |
Configuring the Switch IP Address and Default Gateway |
49 |
Understanding the Switch Management Interfaces |
49 |
Understanding Automatic IP Configuration |
50 |
Automatic IP Configuration Overview |
50 |
Understanding How DHCP Works |
50 |
Understanding How BOOTP and RARP Work |
51 |
Preparing to Configure the IP Address and Default Gateway |
52 |
Booting the MSFC for the First Time |
52 |
Default IP Address and Default Gateway Configuration |
53 |
Assigning the In-Band (sc0) Interface IP Address |
53 |
Configuring Default Gateways |
54 |
Configuring the SLIP (sl0) Interface on the Console Port |
55 |
Using BOOTP, DHCP, or RARP to Obtain an IP Address |
57 |
Renewing and Releasing a DHCP-Assigned IP Address |
58 |
Configuring Ethernet, Fast Ethernet, and Gigabit Ethernet Switching |
59 |
Understanding How Ethernet Works |
59 |
Switching Frames Between Segments |
60 |
Building the Address Table |
60 |
Understanding How Port Negotiation Works |
60 |
Default Ethernet, Fast Ethernet, and Gigabit Ethernet Configuration |
61 |
Setting the Port Configuration |
62 |
Setting the Port Name |
62 |
Setting the Port Speed |
63 |
Setting the Port Duplex Mode |
63 |
Configuring IEEE 802.3X Flow Control |
64 |
Enabling and Disabling Port Negotiation |
65 |
Changing the Default Port Enable State |
65 |
Setting the Port Debounce Timer |
66 |
Configuring a Timeout Period for Ports in errdisable State |
67 |
Configuring the Jumbo Frame Feature |
69 |
Configuring the Jumbo Frame Feature on the Supervisor Engine |
69 |
Configuring the Jumbo Frame Feature on MSFC2 |
70 |
Checking Connectivity |
71 |
Configuring Ethernet VLAN Trunks |
73 |
Understanding How VLAN Trunks Work |
73 |
Trunking Overview |
73 |
Trunking Modes and Encapsulation Types |
74 |
802.1Q Trunk Restrictions |
76 |
Default Trunk Configuration |
77 |
Configuring a Trunk Link |
77 |
Configuring an ISL Trunk |
77 |
Configuring an 802.1Q Trunk |
78 |
Configuring an ISL/802.1Q Negotiating Trunk Port |
79 |
Defining the Allowed VLANs on a Trunk |
79 |
Disabling a Trunk Port |
80 |
Example VLAN Trunk Configurations |
81 |
ISL Trunk Configuration Example |
81 |
ISL Trunk Over EtherChannel Link Example |
82 |
802.1Q Trunk Over EtherChannel Link Example |
85 |
Load-Sharing VLAN Traffic Over Parallel Trunks Example |
88 |
Disabling VLAN 1 on Trunks |
95 |
Disabling VLAN 1 on a Trunk Link |
95 |
Configuring EtherChannel |
97 |
Understanding How EtherChannel Works |
97 |
Understanding Administrative Groups |
98 |
Understanding EtherChannel IDs |
98 |
Understanding Port Aggregation Protocol |
98 |
Understanding Frame Distribution |
99 |
EtherChannel Configuration Guidelines |
100 |
Configuring EtherChannel |
101 |
Configuring an EtherChannel |
101 |
Setting the EtherChannel Port Mode |
101 |
Setting the EtherChannel Port Path Cost |
102 |
Setting the EtherChannel VLAN Cost |
102 |
To set the EtherChannel VLAN cost, perform this task in privileged mode: |
103 |
Configuring EtherChannel Frame Distribution |
104 |
Displaying EtherChannel Traffic Utilization |
104 |
Displaying Outgoing Ports for a Specified Address or Layer 4 Port Number |
104 |
Disabling an EtherChannel |
105 |
Configuring IEEE 802.1Q Tunneling |
107 |
Understanding How 802.1Q Tunneling Works |
107 |
802.1Q Tunneling Configuration Guidelines |
108 |
Configuring Support for 802.1Q Tunneling |
109 |
Configuring the Switch to Support 802.1Q Tunneling |
109 |
Configuring 802.1Q Tunnel Ports |
110 |
Clearing 802.1Q Tunnel Ports |
110 |
Removing Global Support for 802.1Q Tunneling |
110 |
Configuring Spanning Tree |
113 |
Understanding How Spanning Tree Protocols Work |
113 |
Understanding How a Topology is Created |
114 |
Understanding How a Switch Becomes the Root Switch |
115 |
Understanding How Bridge Protocol Data Units Work |
115 |
Calculating and Assigning Port Costs |
116 |
Calculating the Port Cost Using the Short Method |
116 |
Calculating the Port Cost Using the Long Method |
117 |
Calculating the Port Cost for Aggregate Links |
117 |
Spanning Tree Port States |
117 |
Blocking State |
119 |
Listening State |
119 |
Learning State |
120 |
Forwarding State |
122 |
Disabled State |
123 |
Understanding PVST+ and MISTP Modes |
123 |
PVST+ Mode |
124 |
MISTP Mode |
124 |
MISTP-PVST+ Mode |
125 |
Bridge Identifiers |
125 |
MAC Address Allocation |
125 |
MAC Address Reduction |
125 |
Using PVST+ |
127 |
Default PVST+ Configuration |
127 |
Setting the PVST+ Bridge ID Priority |
128 |
Configuring the PVST+ Port Cost |
129 |
Configuring the PVST+ Port Priority |
130 |
Configuring the PVST+ Default Port Cost Mode |
130 |
Configuring the PVST+ Port Cost for a VLAN |
131 |
Configuring the PVST+ Port Priority for a VLAN |
132 |
Disabling the PVST+ Mode on a VLAN |
132 |
Using MISTP-PVST+ or MISTP |
134 |
Default MISTP and MISTP-PVST+ Configuration |
135 |
Setting MISTP-PVST+ Mode or MISTP Mode |
135 |
Configuring an MISTP Instance |
137 |
Configuring the MISTP Bridge ID Priority |
137 |
Configuring the MISTP Port Cost |
138 |
Configuring the MISTP Port Priority |
138 |
Configuring the MISTP Port Instance Cost |
139 |
Configuring the MISTP Port Instance Priority |
139 |
Enabling an MISTP Instance |
140 |
Mapping VLANs to an MISTP Instance |
141 |
Determining MISTP Instances-VLAN Mapping Conflicts |
142 |
Unmapping VLANs from an MISTP Instance |
142 |
Disabling MISTP-PVST+ or MISTP |
143 |
Configuring a Root Switch |
143 |
Configuring a Primary Root Switch |
143 |
Configuring a Secondary Root Switch |
144 |
Configuring a Root Switch to Improve Convergence |
145 |
Using Root Guard-Preventing Switches from Becoming Root |
146 |
Configuring Spanning Tree Timers |
147 |
Configuring the Hello Time |
147 |
Configuring the Forward Delay Time |
148 |
Configuring the Maximum Aging Time |
148 |
Understanding How BPDU Skewing Works |
149 |
Configuring BPDU Skewing |
150 |
Configuring Spanning Tree PortFast, UplinkFast, BackboneFast, and Loop Guard |
153 |
Understanding How PortFast Works |
154 |
Understanding How PortFast BPDU Guard Works |
154 |
Understanding How PortFast BPDU Filter Works |
154 |
Understanding How UplinkFast Works |
155 |
Understanding How BackboneFast Works |
156 |
Understanding How Loop Guard Works |
157 |
Configuring PortFast |
159 |
Enabling PortFast |
160 |
Disabling PortFast |
160 |
Configuring PortFast BPDU Guard |
161 |
Enabling PortFast BPDU Guard |
161 |
Disabling PortFast BPDU Guard |
162 |
Configuring PortFast BPDU Filter |
163 |
Enabling PortFast BPDU Filter |
163 |
Disabling PortFast BPDU Filter |
164 |
Configuring UplinkFast |
165 |
Enabling UplinkFast |
165 |
Disabling UplinkFast |
166 |
Configuring BackboneFast |
167 |
Enabling BackboneFast |
167 |
Displaying BackboneFast Statistics |
168 |
Disabling BackboneFast |
168 |
Configuring Loop Guard |
169 |
Enabling Loop Guard |
169 |
Disabling Loop Guard |
169 |
Configuring VTP |
171 |
Understanding How VTP Works |
171 |
Understanding the VTP Domain |
172 |
Understanding VTP Modes |
172 |
Understanding VTP Advertisements |
172 |
Understanding VTP Version 2 |
173 |
Understanding VTP Pruning |
173 |
Default VTP Configuration |
175 |
VTP Configuration Guidelines |
175 |
Configuring VTP |
176 |
Configuring a VTP Server |
176 |
Configuring a VTP Client |
176 |
Disabling VTP (VTP Transparent Mode) |
177 |
Enabling VTP Version 2 |
178 |
Disabling VTP Version 2 |
179 |
Enabling VTP Pruning |
179 |
Disabling VTP Pruning |
180 |
Displaying VTP |
180 |
Configuring VLANs |
183 |
Understanding How VLANs Work |
183 |
VLAN Ranges |
184 |
Configurable VLAN Parameters |
185 |
Default VLAN Configuration |
186 |
Configuring Normal-Range VLANs |
187 |
Normal-Range VLAN Configuration Guidelines |
187 |
Creating Normal-Range VLANs |
187 |
Modifying Normal-Range VLANs |
188 |
Configuring Extended-Range VLANs |
188 |
Extended-Range VLAN Configuration Guidelines |
189 |
Creating Extended-Range VLANs |
189 |
Mapping VLANs to VLANs |
190 |
Mapping Reserved VLANs to Nonreserved VLANs |
191 |
Deleting Reserved-to-Nonreserved VLAN Mappings |
192 |
Mapping 802.1Q VLANs to ISL VLANs |
192 |
Deleting 802.1Q-to-ISL VLAN Mappings |
193 |
Assigning Switch Ports to a VLAN |
194 |
Deleting a VLAN |
195 |
Configuring Private VLANs |
195 |
Understanding How Private VLANs Work |
196 |
Private VLAN Configuration Guidelines |
197 |
Creating a Primary Private VLAN |
200 |
Viewing the Port Capability of a Private VLAN Port |
203 |
Deleting a Private VLAN |
204 |
Deleting an Isolated, Community, or Two-Way Community VLAN |
204 |
Deleting a Private VLAN Mapping |
205 |
Private VLAN Support on the MSFC |
205 |
Configuring FDDI VLANs |
206 |
Configuring Token Ring VLANs |
206 |
Understanding Token Ring TrBRF VLANs |
207 |
Understanding Token Ring TrCRF VLANs |
207 |
Token Ring VLAN Configuration Guidelines |
209 |
Creating or Modifying a Token Ring TrBRF VLAN |
209 |
Creating or Modifying a Token Ring TrCRF VLAN |
210 |
Configuring InterVLAN Routing |
213 |
Understanding How InterVLAN Routing Works |
213 |
Configuring InterVLAN Routing on the MSFC |
214 |
MSFC Routing Configuration Guidelines |
214 |
Configuring IP InterVLAN Routing on the MSFC |
215 |
Configuring IPX InterVLAN Routing on the MSFC |
215 |
Configuring AppleTalk InterVLAN Routing on the MSFC |
216 |
Configuring MSFC Features |
216 |
Local Proxy ARP |
217 |
WCCP Layer 2 Redirection |
217 |
Auto State Feature |
217 |
Displaying the Auto State Configuration |
218 |
Disabling the Auto State Feature |
219 |
Configuring CEF for PFC2 |
221 |
Understanding How Layer 3 Switching Works |
221 |
Layer 3 Switching Overview |
222 |
Understanding Layer 3-Switched Packet Rewrite |
222 |
Understanding IP Unicast Rewrite |
223 |
Understanding IPX Unicast Rewrite |
223 |
Understanding IP Multicast Rewrite |
224 |
Understanding CEF for PFC2 |
224 |
CEF for PFC2 Overview |
224 |
Understanding Forwarding Decisions |
225 |
Understanding the FIB |
225 |
Understanding the Adjacency Table |
226 |
Partially and Completely Switched Multicast Flows |
227 |
CEF for PFC2 Examples |
227 |
Understanding NetFlow Statistics |
229 |
NetFlow Statistics Overview |
229 |
NetFlow Table Entry Aging |
230 |
Flow Masks |
230 |
Default CEF for PFC2 Configuration |
230 |
CEF for PFC2 Configuration Guidelines and Restrictions |
231 |
Configuring CEF for PFC2 |
232 |
Displaying Layer 3-Switching Entries on the Supervisor Engine |
232 |
Configuring CEF on the MSFC2 |
234 |
Configuring IP Multicast on the MSFC2 |
234 |
Enabling IP Multicast Routing Globally |
234 |
Enabling IP PIM on an MSFC2 Interface |
235 |
Configuring the IP MMLS Global Threshold |
235 |
Enabling IP MMLS on MSFC Interfaces |
235 |
Displaying IP Multicast Information |
236 |
Displaying IP Multicast Information on the MSFC2 |
236 |
Displaying IP MMLS Interface Information |
236 |
Displaying the IP Multicast Routing Table |
237 |
Displaying IP Multicast Details |
237 |
Using Debug Commands |
239 |
Using Debug Commands on the SCP |
239 |
Displaying IP Multicast Information on the Supervisor Engine |
240 |
Displaying IP Multicast Statistics |
240 |
Clearing IP Multicast Statistics |
241 |
Displaying IP Multicast Entries |
241 |
Configuring NetFlow Statistics |
242 |
Specifying the NetFlow Table Entry Aging-Time Value |
243 |
Specifying NetFlow Table IP Entry Fast Aging Time and Packet Threshold Values |
244 |
Setting the Minimum Statistics Flow Mask |
244 |
Excluding IP Protocol Entries from the NetFlow Table |
245 |
Displaying NetFlow Statistics |
245 |
Clearing NetFlow IP and IPX Statistics |
246 |
Clearing All NetFlow Statistics |
247 |
Clearing NetFlow IP Statistics |
247 |
Clearing NetFlow IPX Statistics |
248 |
Clearing NetFlow Statistics Totals |
248 |
Displaying NetFlow Statistics Debug Information |
248 |
Configuring MLS |
249 |
Understanding How Layer 3 Switching Works |
249 |
Understanding Layer 3-Switched Packet Rewrite |
250 |
Understanding IP Unicast Rewrite |
250 |
Understanding IPX Unicast Rewrite |
251 |
Understanding IP Multicast Rewrite |
251 |
Understanding MLS |
252 |
Understanding MLS Flows |
252 |
Understanding the MLS Cache |
253 |
MLS Cache |
253 |
Unicast Traffic |
253 |
Multicast Traffic |
253 |
MLS Cache Aging |
253 |
MLS Cache Size |
254 |
Understanding Flow Masks |
254 |
Flow Mask Modes |
254 |
Flow Mask Mode and show mls entry Command Output |
255 |
Partially and Completely Switched Multicast Flows |
256 |
MLS Examples |
256 |
Default MLS Configuration |
258 |
Configuration Guidelines and Restrictions |
259 |
IP MLS |
259 |
Maximum Transmission Unit Size |
259 |
Restrictions on Using IP Routing Commands with IP MLS Enabled |
260 |
IP MMLS |
260 |
IP MMLS Supervisor Engine Guidelines and Restrictions |
260 |
IP MMLS MSFC Configuration Restrictions |
261 |
Unsupported IP MMLS Features |
261 |
IPX MLS |
261 |
IPX MLS Interaction with Other Features |
261 |
IPX MLS and Maximum Transmission Unit Size |
262 |
Configuring MLS |
262 |
Configuring Unicast MLS on the MSFC |
262 |
Disabling and Enabling Unicast MLS on an MSFC Interface |
262 |
Displaying MLS Information on the MSFC |
263 |
Using Debug Commands on the MSFC |
264 |
Using Debug Commands on the SCP |
264 |
Configuring MLS on Supervisor Engine 1 |
265 |
Specifying MLS Aging-Time Value |
265 |
Specifying IP MLS Fast Aging Time and Packet Threshold Values |
266 |
Setting the Minimum IP MLS Flow Mask |
267 |
Displaying CAM Entries on the Supervisor Engine |
268 |
Displaying MLS Information |
269 |
Displaying IP MLS Cache Entries |
270 |
Displaying All MLS Entries |
270 |
Displaying MLS Entries for a Specific IP Destination Address |
271 |
Displaying IPX MLS Entries for a Specific IPX Destination Address |
271 |
Displaying Entries for a Specific IP Source Address |
272 |
Displaying Entries for a Specific IP Flow |
272 |
Displaying IPX MLS Entries for a Specific MSFC |
273 |
Clearing MLS Cache Entries |
274 |
Clearing IPX MLS Cache Entries |
274 |
Displaying IP MLS Statistics |
274 |
Displaying IP MLS Statistics by Protocol |
275 |
Displaying Statistics for MLS Cache Entries |
275 |
Clearing MLS Statistics |
276 |
Displaying MLS Debug Information |
276 |
Configuring IP MMLS |
276 |
Configuring IP MMLS on the MSFC |
276 |
Enabling IP Multicast Routing Globally |
277 |
Enabling IP PIM on MSFC Interfaces |
277 |
Configuring the IP MMLS Global Threshold |
278 |
Enabling IP MMLS on MSFC Interfaces |
278 |
Displaying IP MMLS Interface Information |
279 |
Displaying the IP Multicast Routing Table |
279 |
Monitoring IP MMLS on the MSFC |
280 |
Using Debug Commands on the IP MMLS MSFC |
281 |
Using Debug Commands on the SCP |
282 |
Displaying Global IP MMLS Information on the Supervisor Engine |
282 |
Displaying IP MMLS Configuration Information |
282 |
Displaying IP MMLS Statistics |
283 |
Clearing IP MMLS Statistics |
284 |
Displaying IP MMLS Entries |
284 |
Configuring NDE |
287 |
Understanding How NDE Works |
287 |
Overview of NDE and Integrated Layer 3 Switching Management |
287 |
Traffic Statistics Data Collection |
288 |
Using NDE Filters |
289 |
Default NDE Configuration |
289 |
Configuring NDE |
289 |
Usage Guidelines |
290 |
Specifying an NDE Collector |
290 |
Specifying an NDE Destination Address on the MSFC |
291 |
Specifying an NDE Source Address on the MSFC |
291 |
Enabling NDE |
292 |
Specifying a Destination Host Filter |
292 |
Specifying a Destination and Source Subnet Filter |
292 |
Specifying a Destination TCP/UDP Port Filter |
293 |
Specifying a Source Host and Destination TCP/UDP Port Filter |
293 |
Specifying a Protocol Filter |
294 |
Specifying Protocols for Statistics Collection |
294 |
Removing Protocols for Statistics Collection |
294 |
Clearing the NDE Flow Filter |
295 |
Disabling NDE |
295 |
Removing the NDE IP Address |
295 |
Displaying the NDE Configuration |
296 |
Configuring Access Control |
297 |
Understanding How ACLs Work |
297 |
Hardware Requirements |
298 |
Supported ACLs |
298 |
QoS ACLs |
298 |
Cisco IOS ACLs |
299 |
VACLs |
299 |
VACL Overview |
299 |
ACEs Supported in VACLs |
300 |
Handling Fragmented and Unfragmented Traffic |
301 |
Applying Cisco IOS ACLs and VACLs on VLANs |
303 |
Bridged Packets |
303 |
Routed Packets |
303 |
Multicast Packets |
304 |
Using Cisco IOS ACLs in your Network |
305 |
Hardware and Software Handling of Cisco IOS ACLs with PFC |
306 |
Security Cisco IOS ACLs |
307 |
Reflexive ACLs |
307 |
TCP Intercept |
307 |
Policy Routing |
308 |
WCCP |
308 |
NAT |
308 |
Unicast RPF Check |
308 |
Bridge-Groups |
308 |
Hardware and Software Handling of Cisco IOS ACLs with PFC2 |
308 |
Security Cisco IOS ACLs |
309 |
Reflexive ACLs |
310 |
TCP Intercept |
310 |
Policy Routing |
310 |
WCCP |
310 |
NAT |
311 |
Unicast RPF Check |
311 |
Bridge-Groups |
311 |
Using VACLs with Cisco IOS ACLs |
311 |
Guidelines for Configuring Cisco IOS ACLs and VACLs on the Same VLAN Interface |
312 |
Using the Implicit Deny Action |
312 |
Grouping Actions Together |
312 |
Limiting the Number of Actions |
312 |
Avoiding Layer 4 Port Information |
313 |
Estimating Merge Results |
313 |
Examples |
313 |
Example 1 |
313 |
Example 2 |
314 |
Example 3 |
314 |
Example 4 |
314 |
Example 5 |
315 |
Example 6 |
315 |
Example 7 |
315 |
Guidelines for Using Layer 4 Operations |
316 |
Determining Layer 4 Operation Usage |
316 |
Determining Logical Operation Unit Usage |
317 |
Using VACLs in your Network |
318 |
Wiring Closet Configuration |
318 |
Redirecting Broadcast Traffic to a Specific Server Port |
319 |
Restricting the DHCP Response for a Specific Server |
320 |
Denying Access to a Server on Another VLAN |
321 |
Restricting ARP Traffic |
322 |
Configuring ACLs on Private VLANs |
322 |
Capturing Traffic Flows |
323 |
Unsupported Features |
323 |
Configuring VACLs |
324 |
VACL Configuration Guidelines |
324 |
VACL Configuration Summary |
325 |
Configuring VACLs From the CLI |
325 |
Creating an IP VACL and Adding ACEs |
326 |
Creating an IPX VACL and Adding ACEs |
328 |
Creating a Non-IP Version 4/Non-IPX VACL (MAC VACL) and Adding ACEs |
330 |
Committing ACLs |
331 |
Mapping a VACL to a VLAN |
331 |
Showing the Contents of a VACL |
332 |
Showing VACL-to-VLAN Mapping |
332 |
Clearing the Edit Buffer |
333 |
Removing ACEs from Security ACLs |
333 |
Clearing the Security ACL Map |
333 |
Displaying VACL Management Information |
334 |
Capturing Traffic Flows on Specified Ports |
334 |
Configuration Guidelines |
334 |
Configuration Examples |
335 |
Configuring VACL Logging |
336 |
Configuration Guidelines |
336 |
Configuration Examples |
337 |
Configuring and Storing VACLs and QoS ACLs in Flash Memory |
338 |
Automatically Moving the VACL and QoS ACL Configuration to Flash Memory |
339 |
Manually Moving the VACL and QoS ACL Configuration to Flash Memory |
340 |
Running with the VACL and QoS ACL Configuration in Flash Memory |
341 |
Moving the VACL and QoS ACL Configuration Back to NVRAM |
342 |
Redundancy Synchronization Support |
342 |
Interacting with High Availability |
342 |
Configuring Policy-Based Forwarding |
342 |
Understanding How Policy-Based Forwarding Works |
343 |
Hardware and Software Requirements |
343 |
Configuring Policy-Based Forwarding |
344 |
Enabling PBF and Specifying a MAC Address for the PFC2 |
344 |
Configuring VACLs for PBF |
346 |
Displaying PBF Information |
348 |
Clearing Entries in PBF VACLs |
348 |
Rolling Back Adjacency Table Entries in the Edit Buffer |
349 |
Configuring Hosts for PBF |
349 |
Linux |
350 |
Sun Workstation |
350 |
PBF Limitations |
350 |
Sun Workstation Limitations |
350 |
MS-Windows/NT/2000 Hosts |
351 |
Policy-Based Forwarding Configuration Example |
351 |
Configuring GVRP |
355 |
Understanding How GVRP Works |
355 |
Default GVRP Configuration |
356 |
GVRP Configuration Guidelines |
356 |
Configuring GVRP |
356 |
Enabling GVRP Globally |
357 |
Enabling GVRP on Individual 802.1Q Trunk Ports |
357 |
Enabling GVRP Dynamic VLAN Creation |
358 |
Configuring GVRP Registration |
359 |
Configuring GVRP Normal Registration |
359 |
Configuring GVRP Fixed Registration |
359 |
Configuring GVRP Forbidden Registration |
360 |
Configuring GVRP VLAN Declarations from Blocking Ports |
360 |
Setting the GARP Timers |
361 |
Displaying GVRP Statistics |
362 |
Clearing GVRP Statistics |
362 |
Disabling GVRP on Individual 802.1Q Trunk Ports |
362 |
Disabling GVRP Globally |
363 |
Configuring Dynamic Port VLAN Membership with VMPS |
365 |
Understanding How VMPS Works |
365 |
Default VMPS and Dynamic Port Configuration |
366 |
Dynamic Port VLAN Membership and VMPS Configuration Guidelines |
367 |
Configuring VMPS and Dynamic Port VLAN Membership |
367 |
Creating the VMPS Database |
368 |
Configuring VMPS |
369 |
Configuring Dynamic Ports on VMPS Clients |
369 |
Administering and Monitoring VMPS |
370 |
Configuring Static VLAN Port Membership |
371 |
Troubleshooting VMPS and Dynamic Port VLAN Membership |
372 |
Troubleshooting VMPS |
372 |
Troubleshooting Dynamic Port VLAN Membership |
372 |
Dynamic Port VLAN Membership with VMPS Configuration Examples |
373 |
VMPS Database Configuration File Example |
373 |
Dynamic Port VLAN Membership Configuration Example |
374 |
Dynamic Port VLAN Membership with Auxiliary VLANs |
376 |
Configuration Guidelines |
377 |
Configuring Dynamic Port VLAN Membership with Auxiliary VLANs |
377 |
Checking Port Status and Connectivity |
379 |
Checking Module Status |
379 |
Checking Port Status |
380 |
Checking Port Capabilities |
382 |
Using Telnet |
382 |
Using Secure Shell Encryption for Telnet Sessions |
383 |
Monitoring User Sessions |
384 |
Using Ping |
385 |
Understanding How Ping Works |
385 |
Executing Ping |
386 |
Using Layer 2 Traceroute |
387 |
Layer 2 Traceroute Usage Guidelines |
387 |
Identifying a Layer 2 Path |
388 |
Using IP Traceroute |
388 |
Understanding How IP Traceroute Works |
388 |
Executing IP Traceroute |
389 |
Administering the Switch |
391 |
Setting the System Name and System Prompt |
391 |
Setting the Static System Name and Prompt |
392 |
Setting the Static System Name |
392 |
Setting the Static System Prompt |
393 |
Clearing the System Name |
393 |
Setting the System Contact and Location |
393 |
Setting the System Clock |
394 |
Creating a Login Banner |
394 |
Configuring a Login Banner |
395 |
Clearing the Login Banner |
395 |
Defining Command Aliases |
395 |
Defining IP Aliases |
396 |
Configuring Static Routes |
397 |
Configuring Permanent and Static ARP Entries |
398 |
Scheduling a System Reset |
399 |
Scheduling a Reset at a Specific Time |
400 |
Scheduling a Reset Within a Specified Amount of Time |
400 |
Power Management |
401 |
Enabling or Disabling Power Redundancy |
401 |
Using the CLI to Power Modules Up or Down |
403 |
Determining System Power Requirements |
404 |
Environmental Monitoring |
406 |
Environmental Monitoring Using CLI Commands |
406 |
LED Indications |
406 |
Displaying System Status Information for Technical Support |
407 |
Generating a System Status Report |
408 |
Using System Dump Files |
408 |
Enabling and Disabling the Core Dump |
408 |
Specifying the Core Image Filename |
409 |
Displaying the Stack Dump |
409 |
Configuring Switch Access Using AAA |
411 |
Understanding How Authentication Works |
411 |
Authentication Overview |
412 |
Understanding How Login Authentication Works |
412 |
Understanding How Local Authentication Works |
412 |
Understanding How TACACS+ Authentication Works |
413 |
Understanding How RADIUS Authentication Works |
414 |
Understanding How Kerberos Authentication Works |
414 |
Using Kerberized Login Procedure |
416 |
Using a Non-Kerberized Login Procedure |
417 |
Understanding How 802.1x Authentication Works |
417 |
Traffic Control |
419 |
Authentication Server |
419 |
802.1x Parameters Configurable on the Switch |
419 |
Configuring Authentication |
419 |
Authentication Default Configuration |
420 |
Authentication Configuration Guidelines |
421 |
Configuring Login Authentication |
422 |
Setting Authentication Login Attempts on the Switch |
422 |
Setting Authentication Login Attempts for the Privileged Mode |
423 |
Configuring Local Authentication |
423 |
Enabling Local Authentication |
424 |
Setting the Login Password |
424 |
Setting the Enable Password |
425 |
Disabling Local Authentication |
425 |
Recovering a Lost Password |
426 |
Configuring TACACS+ Authentication |
427 |
Specifying TACACS+ Servers |
427 |
Enabling TACACS+ Authentication |
428 |
Specifying the TACACS+ Key |
429 |
Specifying the TACACS+ Timeout Interval |
429 |
Specifying the TACACS+ Login Attempts |
430 |
Enabling TACACS+ Directed Request |
431 |
Disabling TACACS+ Directed Request |
431 |
Clearing TACACS+ Servers |
432 |
Clearing the TACACS+ Key |
432 |
Disabling TACACS+ Authentication |
433 |
Configuring RADIUS Authentication |
433 |
Specifying RADIUS Servers |
434 |
Specifying the RADIUS Key |
434 |
Enabling RADIUS Authentication |
435 |
Specifying the RADIUS Timeout Interval |
437 |
Specifying the RADIUS Retransmit Count |
437 |
Specifying the RADIUS Deadtime |
438 |
Clearing RADIUS Servers |
439 |
Clearing the RADIUS Key |
439 |
Disabling RADIUS Authentication |
440 |
Configuring Kerberos Authentication |
441 |
Configuring a Kerberos Server |
441 |
Enabling Kerberos |
442 |
Defining the Kerberos Local Realm |
443 |
Specifying a Kerberos Server |
443 |
Mapping a Kerberos Realm to a Host Name or DNS Domain |
444 |
Copying SRVTAB Files |
444 |
Deleting an SRVTAB Entry |
445 |
Enabling Credentials Forwarding |
446 |
Disabling Credentials Forwarding |
447 |
Defining and Clearing a Private DES Key |
448 |
Encrypting a Telnet Session |
448 |
Displaying and Clearing Kerberos Configurations |
449 |
Configuring 802.1x Authentication |
450 |
Enabling 802.1x Globally |
450 |
Disabling 802.1x Globally |
451 |
Enabling and Initializing 802.1x Authentication for Individual Ports |
451 |
Setting and Enabling Automatic Reauthentication of the Supplicant |
452 |
Manually Reauthenticating the Supplicant |
452 |
Enabling Multiple Hosts |
453 |
Disabling Multiple Hosts |
453 |
Setting the Quiet Period |
453 |
Setting the Authenticator-to-Supplicant Retransmission Time for EAP-Request/Identity Frames |
454 |
Setting the Back-End Authenticator-to-Supplicant Retransmission Time for EAP-Request Frames |
454 |
Setting theBack-End Authenticator-to-Authentication-Server Retransmission Time for Transport Layer Packets |
455 |
Setting the Back-End Authenticator-to-Supplicant Frame-Retransmission Number |
455 |
Resetting the 802.1x Configuration Parameters to the Default Values |
455 |
Using the show Commands |
456 |
Authentication Example |
458 |
Understanding How Authorization Works |
459 |
Authorization Overview |
459 |
Authorization Events |
459 |
TACACS+ Primary Options and Fallback Options |
460 |
TACACS+ Command Authorization |
460 |
RADIUS Authorization |
461 |
Configuring Authorization |
461 |
TACACS+ Authorization Default Configuration |
461 |
TACACS+ Authorization Configuration Guidelines |
461 |
Configuring TACACS+ Authorization |
462 |
Enabling TACACS+ Authorization |
462 |
Disabling TACACS+ Authorization |
463 |
Configuring RADIUS Authorization |
465 |
Enabling RADIUS Authorization |
465 |
Disabling RADIUS Authorization |
465 |
Authorization Example |
465 |
Understanding How Accounting Works |
466 |
Accounting Overview |
466 |
Accounting Events |
467 |
Specifying When to Create Accounting Records |
467 |
Specifying RADIUS Servers |
468 |
Updating the Server |
469 |
Suppressing Accounting |
469 |
Configuring Accounting |
469 |
Accounting Default Configuration |
469 |
Accounting Configuration Guidelines |
470 |
Configuring Accounting |
470 |
Enabling Accounting |
470 |
Disabling Accounting |
471 |
Accounting Example |
473 |
Configuring Redundancy |
475 |
Understanding How Supervisor Engine Redundancy Works |
476 |
Configuring Redundant Supervisor Engines |
477 |
Synchronization Process Initiation |
478 |
Redundant Supervisor Engine Configuration Guidelines and Restrictions |
478 |
Verifying Standby Supervisor Engine Status |
479 |
Forcing a Switchover to the Standby Supervisor Engine |
480 |
High Availability |
482 |
High-Availability Overview |
482 |
High-Availability Supported Features |
483 |
Versioning Overview |
484 |
CLI Commands |
485 |
Enabling or Disabling High Availability |
485 |
Enabling or Disabling High-Availability Versioning |
485 |
Showing High-Availability Settings and Operational Status |
486 |
Loading a Different (but Compatible) Image on the Standby Supervisor Engine |
487 |
Supervisor Engine Synchronization Examples |
488 |
Synchronizing the Runtime Image with the Bootstring |
488 |
Example 1: Runtime image not synchronized |
488 |
Example 2: File copied, bootstring changed, standby supervisor engine reset |
488 |
Example 3: File not copied, bootstring changed, standby supervisor engine reset |
489 |
Example 4: Oldest bootflash file deleted, bootflash squeezed |
489 |
Synchronizing the Boot Images on the Active and Standby Supervisor Engines |
490 |
Example 1: Unable to allocate the boot image |
490 |
Example 2: File copied, bootflash modified, standby supervisor engine not reset |
491 |
Example 3: File not copied, bootstring modified, standby supervisor engine not reset |
491 |
Example 4: File copied, oldest file deleted, bootflash squeezed, bootstring modified, standby supervisor engine not reset |
492 |
MSFC Redundancy |
492 |
Dual MSFC Redundancy |
493 |
Hardware and Software Requirements |
493 |
Layer 3 Redundancy for a Single Chassis |
493 |
Routing Protocol Peering |
494 |
Access Control List Configuration |
496 |
Dual MSFC Operational Model for Redundancy and Load Sharing |
496 |
Understanding Failure Scenarios |
498 |
Failure Case 1: Designated MSFC #1 Fails |
499 |
Failure Case 2: Nondesignated MSFC #2 Fails |
499 |
Failure Case 3: Active Sup #1 Fails |
500 |
Failure Case 4: Standby Sup #2 Fails |
500 |
Failure Case 5: New or Previously Failed Supervisor Comes Back Online |
500 |
Configuring Redundancy with HSRP |
500 |
Configuration Examples |
502 |
Example 1-Two Chassis with One Supervisor Engine and One MSFC Each |
502 |
Example 2-Single Chassis with Dual Supervisor Engines and MSFCs |
503 |
Example 3-Double Chassis with Dual Supervisor Engines and MSFCs |
504 |
MSFC Configuration Synchronization Overview |
506 |
Configuration Synchronization States |
507 |
alt Keyword Usage |
507 |
Enabling or Disabling Configuration Synchronization |
508 |
High-Availability Redundancy Configuration Examples |
509 |
Scenario 1: Enabling Configuration Synchronization on Both MSFCs |
509 |
Scenario 2: Disabling Configuration Synchronization on the Designated MSFC |
512 |
Scenario 3: Designated MSFC Comes Up |
513 |
Scenario 4: Nondesignated MSFC Comes Up |
513 |
Config Sync AdminStatus is Enabled |
513 |
Config Sync AdminStatus is Disabled |
513 |
Scenario 5: Designated MSFC Goes Down |
514 |
Single Router Mode Redundancy |
515 |
Hardware and Software Requirements |
515 |
Configuration Guidelines |
516 |
Configuring Single Router Mode Redundancy |
516 |
Upgrading Images with Single Router Mode Enabled |
518 |
Getting Out of Single Router Mode |
519 |
Manual-Mode MSFC Redundancy |
519 |
Hardware and Software Requirements |
520 |
Guidelines for Configuring Manual-Mode MSFC Redundancy |
520 |
Accessing the Standby MSFC |
521 |
Manually Booting the MSFC |
521 |
Setting the MSFC Configuration Register |
521 |
MSFC Recovery Procedures |
522 |
Option 1: If You Have Physical Access to the Switch |
522 |
Option 2: If You Have Remote Access Only to the Switch |
522 |
Modifying the Switch Boot Configuration |
525 |
Understanding How the Switch Boot Configuration Works |
525 |
Understanding the Boot Process |
525 |
Understanding the ROM Monitor |
526 |
Understanding the Configuration Register |
526 |
Understanding the BOOT Environment Variable |
527 |
Understanding the CONFIG_FILE Environment Variable |
527 |
Default Switch Boot Configuration |
528 |
Setting the Configuration Register |
529 |
Setting the Boot Field in the Configuration Register |
529 |
Setting the ROM-Monitor Console-Port Baud Rate |
530 |
Setting CONFIG_FILE Recurrence |
531 |
Setting CONFIG_FILE Overwrite |
531 |
Setting CONFIG_FILE Synchronization |
532 |
Setting the Switch to Ignore the NVRAM Configuration |
533 |
Setting the Configuration Register Value |
534 |
Setting the BOOT Environment Variable |
534 |
Setting the BOOT Environment Variable |
534 |
Clearing the BOOT Environment Variable Settings |
535 |
Setting the CONFIG_FILE Environment Variable |
535 |
Setting the CONFIG_FILE Environment Variable |
535 |
Clearing the CONFIG_FILE Environment Variable Settings |
536 |
Displaying the Switch Boot Configuration |
536 |
Working With the Flash File System |
537 |
Understanding How the Flash File System Works |
537 |
Working with the Flash File System |
537 |
Setting the Default Flash Device |
538 |
Setting the Text File Configuration Mode |
538 |
Listing the Files on a Flash Device |
539 |
Copying Files |
540 |
Deleting Files |
542 |
Restoring Deleted Files |
543 |
Verifying a File Checksum |
543 |
Formatting a Flash Device |
544 |
Working with System Software Images |
545 |
Software Image Naming Conventions |
545 |
Downloading Software Images to the Switch With TFTP |
546 |
Understanding How TFTP Software Image Downloads Work |
546 |
Preparing to Download an Image Using TFTP |
546 |
Downloading Supervisor Engine Images Using TFTP |
547 |
Downloading Switching Module Images Using TFTP |
548 |
TFTP Download Procedures Example |
549 |
Supervisor Image TFTP Download Example |
549 |
Single Module Image TFTP Download Example |
550 |
Multiple Module Image TFTP Download Example |
551 |
Uploading System Software Images to a TFTP Server |
552 |
Preparing to Upload an Image to a TFTP Server |
552 |
Uploading Software Images to a TFTP Server |
553 |
Downloading System Software Images Using rcp |
553 |
Preparing to Download an Image Using rcp |
553 |
Downloading Supervisor Engine Images Using rcp |
554 |
Downloading Switching Module Images Using rcp |
554 |
Example rcp Download Procedures |
555 |
Supervisor Image rcp Download Example |
555 |
Single Module Image rcp Download Example |
557 |
Multiple Module Image rcp Download Example |
557 |
Uploading System Software Images to an rcp Server |
558 |
Preparing to Upload an Image to an rcp Server |
559 |
Uploading Software Images to an rcp Server |
559 |
Downloading Software Images Over a Serial Connection on the Console Port |
559 |
Preparing to Download an Image Using Kermit |
560 |
Downloading Software Images Using Kermit (PC Procedure) |
560 |
Downloading Software Images Using Kermit (UNIX Procedure) |
561 |
Example Serial Software Image Download Procedures |
562 |
PC Serial Download Procedure Example |
563 |
UNIX Workstation Serial Download Procedure Example |
564 |
Downloading a System Image Using Xmodem or Ymodem |
565 |
Working with Configuration Files |
567 |
Working with Configuration Files on the Switch |
567 |
Creating and Using Configuration File Guidelines |
567 |
Creating a Configuration File |
568 |
Downloading Configuration Files to the Switch Using TFTP |
569 |
Preparing to Download a Configuration File Using TFTP |
569 |
Configuring the Switch Using a File on a TFTP Server |
569 |
Configuring the Switch Using a File on a Flash Device |
570 |
Uploading Configuration Files to a TFTP Server |
571 |
Preparing to Upload a Configuration File to a TFTP Server |
571 |
Uploading a Configuration File to a TFTP Server |
571 |
Copying Configuration Files Using rcp |
572 |
Downloading Configuration Files from an rcp Server |
572 |
Preparing to Download a Configuration File Using rcp |
572 |
Configuring the Switch Using a File on an rcp Server |
573 |
Uploading Configuration Files to an rcp Server |
573 |
Preparing to Upload a Configuration File to an rcp Server |
574 |
Uploading a Configuration File to an rcp Server |
574 |
Clearing the Configuration |
574 |
Working with Configuration Files on the MSFC |
575 |
Uploading the Configuration File to a TFTP Server |
576 |
Uploading the Configuration File to the Supervisor Engine Flash PC Card |
577 |
Downloading the Configuration File from a Remote Host |
577 |
Downloading the Configuration File from the Supervisor Engine Flash PC Card |
579 |
Configuring System Message Logging |
581 |
Understanding How System Message Logging Works |
581 |
System Log Message Format |
583 |
Default System Message Logging Configuration |
584 |
Configuring System Message Logging |
584 |
Enabling and Disabling Session Logging Settings |
585 |
Setting the System Message Logging Levels |
586 |
Enabling and Disabling the Logging Time Stamp Enable State |
586 |
Setting the Logging Buffer Size |
586 |
Configuring the syslog Daemon on a UNIX syslog Server |
587 |
Configuring syslog Servers |
587 |
Displaying the Logging Configuration |
589 |
Displaying System Messages |
590 |
Configuring DNS |
591 |
Understanding How DNS Works |
591 |
DNS Default Configuration |
591 |
Configuring DNS |
592 |
Setting Up and Enabling DNS |
592 |
Clearing a DNS Server |
593 |
Clearing the DNS Domain Name |
593 |
Disabling DNS |
593 |
Configuring CDP |
595 |
Understanding How CDP Works |
595 |
Default CDP Configuration |
596 |
Configuring CDP |
596 |
Setting the CDP Global Enable and Disable States |
596 |
Setting the CDP Enable and Disable States on a Port |
597 |
Setting the CDP Message Interval |
598 |
Setting the CDP Holdtime |
598 |
Displaying CDP Neighbor Information |
599 |
Configuring UDLD |
601 |
Understanding How UDLD Works |
601 |
Default UDLD Configuration |
602 |
Configuring UDLD |
603 |
Enabling UDLD Globally |
603 |
Enabling UDLD on Individual Ports |
603 |
Disabling UDLD on Individual Ports |
604 |
Disabling UDLD Globally |
604 |
Specifying the UDLD Message Interval |
604 |
Enabling UDLD Aggressive Mode |
605 |
Displaying the UDLD Configuration |
605 |
Configuring NTP |
607 |
Understanding How NTP Works |
607 |
NTP Default Configuration |
608 |
Configuring NTP |
608 |
Enabling NTP in Broadcast-Client Mode |
609 |
Configuring NTP in Client Mode |
609 |
Configuring Authentication in Client Mode |
610 |
Setting the Time Zone |
611 |
Enabling the Daylight Saving Time Adjustment |
611 |
Disabling the Daylight Saving Time Adjustment |
613 |
Clearing the Time Zone |
613 |
Clearing NTP Servers |
613 |
Disabling NTP |
614 |
Configuring Broadcast Suppression |
615 |
Understanding How Broadcast Suppression Works |
615 |
Configuring Broadcast Suppression |
616 |
Enabling Broadcast Suppression |
617 |
Disabling Broadcast Suppression |
618 |
Configuring Layer 3 Protocol Filtering |
619 |
Understanding How Layer 3 Protocol Filtering Works |
619 |
Default Layer 3 Protocol Filtering Configuration |
620 |
Configuring Layer 3 Protocol Filtering |
620 |
Enabling Layer 3 Protocol Filtering |
621 |
Disabling Layer 3 Protocol Filtering |
621 |
Configuring the IP Permit List |
623 |
Understanding How the IP Permit List Works |
623 |
IP Permit List Default Configuration |
624 |
Configuring the IP Permit List |
624 |
Adding IP Addresses to the IP Permit List |
624 |
Enabling the IP Permit List |
625 |
Disabling the IP Permit List |
626 |
Clearing an IP Permit List Entry |
626 |
Configuring Port Security |
629 |
Understanding How Port Security Works |
629 |
Allowing Traffic Based on the Host MAC Address |
629 |
Restricting Traffic Based on the Host MAC Address |
630 |
Port Security Configuration Guidelines |
631 |
Configuring Port Security |
631 |
Enabling Port Security |
631 |
Setting the Maximum Number of Secure MAC Addresses |
632 |
Setting the Port Security Age Time |
633 |
Clearing MAC Addresses |
633 |
Specifying the Security Violation Action |
634 |
Setting the Shutdown Timeout |
634 |
Disabling Port Security |
635 |
Restricting Traffic Based on a Host MAC Address |
635 |
Displaying Port Security |
636 |
Configuring SNMP |
639 |
SNMP Terminology |
639 |
Understanding SNMP |
641 |
Security Models and Levels |
642 |
SNMP ifindex Persistence Feature |
643 |
Understanding How SNMPv1 and SNMPv2c Works |
643 |
Using Managed Devices |
643 |
Using SNMP Agents and MIBs |
643 |
Using CiscoWorks2000 |
644 |
Understanding SNMPv3 |
645 |
SNMP Entity |
645 |
Dispatcher |
645 |
Message Processing Subsystem |
646 |
Security Subsystem |
646 |
Access Control Subsystem |
647 |
Applications |
647 |
Configuring SNMPv1 and SNMPv2c |
648 |
SNMPv1 and SNMPv2c Default Configuration |
648 |
Configuring SNMPv1 and SNMPv2c from an NMS |
648 |
Configuring SNMPv1 and SNMPv2c from the CLI |
648 |
Configuring SNMPv3 |
649 |
SNMPv3 Default Configuration |
649 |
Configuring SNMPv3 from an NMS |
649 |
Configuring SNMPv3 from the CLI |
650 |
Configuring RMON |
653 |
Understanding How RMON Works |
653 |
Enabling RMON |
654 |
Viewing RMON Data |
654 |
Supported RMON and RMON2 MIB Objects |
654 |
Configuring SPAN and RSPAN |
657 |
Understanding How SPAN and RSPAN Works |
657 |
SPAN Session |
658 |
Destination Port |
658 |
Source Port |
658 |
Ingress SPAN |
659 |
Egress SPAN |
659 |
VSPAN |
659 |
Trunk VLAN Filtering |
660 |
SPAN Traffic |
660 |
SPAN and RSPAN Session Limits |
660 |
Configuring SPAN |
661 |
SPAN Hardware Requirements |
661 |
Understanding How SPAN Works |
661 |
SPAN Configuration Guidelines |
662 |
Configuring SPAN from the CLI |
663 |
Configuring RSPAN |
664 |
RSPAN Hardware Requirements |
665 |
Understanding How RSPAN Works |
665 |
RSPAN Configuration Guidelines |
666 |
Configuring RSPAN |
667 |
RSPAN Configuration Examples |
670 |
Configuring a Single RSPAN Session |
670 |
Modifying an Active RSPAN Session |
671 |
Adding RSPAN Source Ports in Intermediate Switches |
671 |
Configuring Multiple RSPAN Sessions |
672 |
Adding Multiple Network Analyzers to an RSPAN Session |
673 |
Using Switch TopN Reports |
675 |
Understanding How the Switch TopN Reports Utility Works |
675 |
TopN Reports Overview |
675 |
Running Switch TopN Reports without the Background Option |
676 |
Running Switch TopN Reports with the Background Option |
676 |
Running and Viewing Switch TopN Reports |
677 |
Configuring Multicast Services |
681 |
Understanding How Multicasting Works |
681 |
Multicasting and Multicast Services Overview |
682 |
Understanding How IGMP Snooping Works |
682 |
Joining a Multicast Group |
683 |
Constraining Multicast Traffic |
683 |
Leaving a Multicast Group |
683 |
IGMP Fast-Leave Processing |
684 |
Understanding How GMRP Works |
684 |
Understanding How RGMP Works |
685 |
Suppressing Multicast Traffic |
685 |
Nonreverse Path Forwarding Multicast Fast Drop |
685 |
Enabling Installation of Directly Connected Subnets |
686 |
Configuring IGMP Snooping |
686 |
Default IGMP Snooping Configuration |
687 |
Enabling IGMP Snooping |
687 |
Specifying IGMP Snooping Mode |
688 |
Enabling IGMP Rate Limiting |
688 |
Enabling IGMP Fast-Leave Processing |
689 |
Displaying Multicast Router Information |
689 |
Displaying Multicast Group Information |
690 |
Displaying IGMP Snooping Statistics |
691 |
Disabling IGMP Fast-Leave Processing |
692 |
Disabling IGMP Snooping |
692 |
Configuring GMRP |
692 |
GMRP Software Requirements |
693 |
Default GMRP Configuration |
693 |
Enabling GMRP Globally |
693 |
Enabling GMRP on Individual Switch Ports |
694 |
Disabling GMRP on Individual Switch Ports |
694 |
Enabling GMRP Forward-All Option |
695 |
Disabling GMRP Forward-All Option |
695 |
Configuring GMRP Registration |
696 |
Setting Normal Registration |
696 |
Setting Fixed Registration |
696 |
Setting Forbidden Registration |
697 |
Setting the GARP Timers |
697 |
Displaying GMRP Statistics |
699 |
Clearing GMRP Statistics |
699 |
Disabling GMRP Globally on the Switch |
699 |
Configuring Multicast Router Ports and Group Entries |
700 |
Specifying Multicast Router Ports |
700 |
Configuring Multicast Groups |
701 |
Clearing Multicast Router Ports |
701 |
Clearing Multicast Group Entries |
702 |
Configuring RGMP |
702 |
Configuring RGMP on the Supervisor Engine |
702 |
Default RGMP Configuration |
702 |
Enabling and Disabling RGMP |
702 |
Displaying RGMP Group Information |
703 |
Displaying RGMP VLAN Statistics |
703 |
Displaying Ports Connected to RGMP-Capable Routers |
704 |
Clearing RGMP Statistics |
705 |
RGMP-Related CLI Commands |
705 |
Configuring RGMP on the MSFC |
705 |
Displaying Multicast Protocol Status |
705 |
Configuring QoS |
707 |
Understanding How QoS Works |
707 |
Definitions |
708 |
Flowcharts |
709 |
QoS Feature Set Summary |
714 |
Ethernet Ingress Port Features |
715 |
Layer 3 Switching Engine Features |
715 |
Layer 2 Switching Engine Features |
715 |
Ethernet Egress Port Features |
715 |
Single-Port ATM OC-12 Switching Module Features |
715 |
Multilayer Switch Feature Card (MSFC or MSFC2) |
715 |
Ethernet Ingress Port Marking, Scheduling, Congestion Avoidance, and Classification |
716 |
Overview |
716 |
Marking at Untrusted Ports |
717 |
Marking at Trusted Ports |
717 |
Ethernet Ingress Port Scheduling and Congestion Avoidance |
717 |
Receive Queues |
717 |
Ingress Scheduling |
717 |
Ingress Congestion Avoidance |
717 |
Ethernet Ingress Port Classification Features with a Layer 3 Switching Engine |
719 |
Classification, Marking, and Policing with a Layer 3 Switching Engine |
720 |
Internal DSCP Values |
721 |
Internal DSCP Sources |
721 |
Egress DSCP and CoS Sources |
721 |
ACLs |
721 |
Named ACLs |
722 |
IP ACE Layer 3 Classification Criteria |
722 |
IP ACE Layer 4 Protocol Classification Criteria |
723 |
IP ACE Layer 4 TCP Classification Criteria |
723 |
IP ACE Layer 4 UDP Classification Criteria |
724 |
IP ACE Layer 4 ICMP Classification Criteria |
724 |
IP ACE Layer 4 IGMP Classification Criteria |
725 |
IPX ACE Classification Criteria |
725 |
MAC ACE Layer 2 Classification Criteria |
726 |
Default ACLs |
726 |
Marking Rules |
727 |
Policing Rules |
728 |
PFC2 Policing Decisions |
729 |
Attaching ACLs |
729 |
Final Layer 3 Switching Engine CoS and ToS Values |
730 |
Classification and Marking with a Layer 2 Switching Engine |
730 |
Ethernet Egress Port Scheduling, Congestion Avoidance, and Marking |
730 |
Overview |
731 |
Transmit Queues |
731 |
Scheduling and Congestion Avoidance |
731 |
2q2t Ports |
732 |
1p2q2t Ports |
732 |
1p3q1t Ports |
732 |
Marking |
733 |
QoS Statistics Data Export |
733 |
QoS Default Configuration |
734 |
Configuring QoS |
736 |
Enabling QoS |
737 |
Enabling Port-Based or VLAN-Based QoS |
738 |
Configuring the Trust State of a Port |
738 |
Configuring the CoS Value for a Port |
739 |
Creating Policing Rules |
740 |
Deleting Policing Rules |
742 |
Creating or Modifying ACLs |
743 |
ACL Names |
743 |
ACE Name, Marking Rule, Policing, and Filtering Syntax |
743 |
Named IP ACLs |
744 |
Source and Destination IP Addresses and Masks |
744 |
Port Operator Parameters |
744 |
Precedence Parameter Options |
744 |
IP ACEs for TCP Traffic |
745 |
IP ACEs for UDP Traffic |
745 |
IP ACEs for ICMP Traffic |
746 |
IP ACEs for IGMP Traffic |
746 |
IP ACLs for Other Layer 4 Protocols |
747 |
IP ACEs for Any IP Traffic |
747 |
Modifying the Default IP ACL |
748 |
Creating or Modifying Named IPX ACLs |
748 |
Creating or Modifying Named MAC ACLs |
749 |
Creating or Modifying the Default IPX and MAC ACLs |
750 |
Deleting Named ACLs |
750 |
Reverting to Default Values in Default ACLs |
750 |
Discarding Uncommitted ACLs |
751 |
Committing ACLs |
751 |
Attaching ACLs to Interfaces |
752 |
Detaching ACLs from Interfaces |
752 |
Mapping a CoS Value to a Host Destination MAC Address/VLAN Pair |
753 |
Deleting a CoS Value to a Host Destination MAC Address/VLAN Pair |
753 |
Enabling or Disabling Microflow Policing of Bridged Traffic |
754 |
Configuring Standard Receive-Queue Tail-Drop Thresholds |
754 |
Configuring 2q2t Port Standard Transmit-Queue Tail-Drop Thresholds |
755 |
Configuring Standard Transmit-Queue WRED-Drop Thresholds |
755 |
Allocating Bandwidth Between Standard Transmit Queues |
756 |
Configuring the Receive-Queue Size Ratio |
757 |
Configuring the Transmit-Queue Size Ratio |
757 |
Mapping CoS Values to Drop Thresholds |
758 |
Associating 1q4t, 2q2t Ports |
758 |
Associating 1p1q4t, 1p2q2t Ports |
758 |
1p1q4t Receive Queues |
758 |
1p2q2t Transmit Queues |
759 |
Associating 1p1q0t, 1p3q1t Ports |
759 |
1p1q0t Receive Queues |
759 |
1p3q1t Transmit Queues |
760 |
Reverting to CoS Map Defaults |
760 |
Configuring DSCP Value Maps |
761 |
Mapping Received CoS Values to Internal DSCP Values |
761 |
Mapping Received IP Precedence Values to Internal DSCP Values |
762 |
Mapping Internal DSCP Values to Egress CoS Values |
762 |
Mapping DSCP Markdown Values |
763 |
Displaying QoS Information |
764 |
Displaying QoS Statistics |
765 |
Reverting to QoS Defaults |
766 |
Disabling QoS |
766 |
Configuring COPS Support |
766 |
Port ASICs |
767 |
Understanding QoS Policy |
767 |
Selecting COPS as the QoS Policy Source |
767 |
Selecting Locally Configured QoS Policy |
768 |
Enabling Use of Locally Configured QoS Policy |
768 |
Assigning Port Roles |
769 |
Removing Roles from Port ASICs |
769 |
Deleting Roles |
770 |
Configuring Policy Decision Point Servers |
770 |
Deleting PDP Server Configuration |
770 |
Configuring the COPS Domain Name |
771 |
Deleting the COPS Domain Name |
771 |
Configuring the COPS Communications Parameters |
771 |
Configuring RSVP Support |
772 |
Enabling RSVP Support |
772 |
Disabling RSVP Support |
773 |
Enabling Participation in the DSBM Election |
773 |
Disabling Participation in the DSBM Election |
773 |
Configuring Policy Decision Point Servers |
774 |
Deleting PDP Server Configuration |
774 |
Configuring RSVP Policy Timeout |
775 |
Configuring RSVP Use of Local Policy |
775 |
Configuring QoS Statistics Data Export |
776 |
Enabling QoS Statistics Data Export Globally |
776 |
Enabling Per-Port QoS Statistics Data Export |
777 |
Enabling Per-Aggregate Policer QoS Statistics Data Export |
778 |
Setting the QoS Statistics Data Export Time Interval |
779 |
Configuring QoS Statistics Data Export Destination Host and UDP Port |
779 |
Displaying QoS Statistics Information |
780 |
Configuring ASLB |
781 |
Hardware and Software Requirements |
781 |
Understanding How ASLB Works |
782 |
Layer 3 Operations for ASLB |
783 |
Layer 2 Operations for ASLB |
783 |
Client-to-Server Data Forwarding |
784 |
Path 1 |
784 |
Path 2 |
784 |
Path 3-N |
784 |
Path N + 1, N + 2... |
784 |
Server-to-Client Data Forwarding |
786 |
Cabling Guidelines |
787 |
Configuring ASLB |
787 |
Configuring the LocalDirector Interfaces |
787 |
ASLB Configuration Guidelines |
788 |
Routers |
788 |
Servers |
788 |
IP Addresses |
789 |
Supervisor Engine |
789 |
Backup LocalDirector Configuration (Optional) |
789 |
MSFC and Multilayer Switching |
790 |
NetFlow Data Export |
790 |
VLANs |
790 |
Switch Port Configuration |
790 |
Configuring ASLB from the CLI |
791 |
Configuring the Switch Ports Connected to the LocalDirector |
791 |
Enabling and Disabling ASLB |
791 |
Specifying Server Virtual-IP Addresses and TCP Ports for Acceleration |
792 |
Specifying MAC Addresses for Participating Routers |
792 |
Specifying a MAC Address for the LocalDirector |
793 |
Specifying the Router VLAN and the LocalDirector Port on the VLAN |
793 |
Specifying the Server VLAN and the LocalDirector Port on the VLAN |
794 |
Configuring UDP Aging |
794 |
Committing the ASLB Configuration |
794 |
Displaying the ASLB Configuration |
795 |
Displaying the ASLB MLS Entries |
796 |
Displaying the ASLB MLS Statistics |
797 |
Clearing the ASLB Configuration |
798 |
ASLB Configuration Example |
799 |
ASLB Redundant Configuration Example |
801 |
IP Addresses |
802 |
MAC Addresses |
803 |
Catalyst 6000 Family Switch 1 Configuration |
803 |
Catalyst 6000 Family Switch 2 Configuration |
803 |
Router 1 Configuration |
803 |
Router 2 Configuration |
804 |
LocalDirector Configuration |
804 |
Troubleshooting the ASLB Configuration |
805 |
Configuring the Switch Fabric Modules |
807 |
Understanding How the Switch Fabric Module Works |
807 |
Configuring and Monitoring the Switch Fabric Module |
808 |
Configuring a Fallback Option |
809 |
Configuring the Switching Mode |
809 |
Switch Fabric Redundancy |
810 |
Monitoring the Switch Fabric Module |
810 |
Displaying the Module Information |
810 |
Displaying the Fabric Channel Counters |
811 |
Displaying the Fabric Channel Switching Mode and Channel Status |
811 |
Displaying the Fabric Channel Utilization |
812 |
Displaying the Backplane Traffic and Fabric Channel Input and Output |
813 |
Displaying Switching Mode Configuration |
814 |
Configuring the LCD Banner |
814 |
Configuring a VoIP Network |
817 |
Hardware and Software Requirements |
817 |
Understanding How a VoIP Network Works |
818 |
Cisco IP Phone 7960 |
818 |
Example 1-Single Cisco IP Phone 7960 |
819 |
Example 2-Single PC |
819 |
Example 3-One Cisco IP Phone 7960 and One PC |
819 |
Example 4-Two Cisco IP Phone 7960s and One PC |
820 |
Cisco CallManager |
820 |
Access Gateways |
820 |
Analog Station Gateway |
820 |
Analog Trunk Gateway |
821 |
Digital Trunk Gateway |
822 |
Converged Voice Gateway |
823 |
How a Call Is Made |
823 |
Understanding How VLANs Work |
824 |
Configuring VoIP on a Switch |
825 |
Voice-Related CLI Commands |
825 |
Configuring Per-Port Power Management |
826 |
Using show Commands to Display Module Type and Version Information |
827 |
Power Management Modes |
828 |
Unpowered Phone |
829 |
Power Requirements |
829 |
Wall-Powered Phones |
829 |
Powering Off the Phone |
830 |
Phone Removal |
830 |
High-Availability Support |
830 |
Phone Detection Summary |
830 |
Error Detection and Handling |
832 |
Device is Powered but Link is Not Up |
832 |
Port is Unable to Provide Inline Power to the Device |
832 |
Not Enough Available Power to Power the Device |
832 |
Power Supply Configured from Nonredundant to Redundant |
832 |
Power Supply Configured from Redundant to Nonredundant |
832 |
Setting the Power Mode of a Port or Group of Ports |
833 |
Setting the Default Power Allocation for a Port |
833 |
Displaying the Power Status for Modules and Individual Ports |
833 |
Displaying the Power Status for Modules and Individual Ports |
834 |
Configuring Auxiliary VLANs on Catalyst LAN Switches |
835 |
Understanding Auxiliary VLANs |
835 |
Auxiliary VLAN Configuration Guidelines |
836 |
Configuring Auxiliary VLANs |
836 |
Verifying Auxiliary VLAN Configuration |
837 |
Configuring the Access Gateways |
837 |
Configuring Port Voice Interface |
837 |
Displaying Port Voice Interface |
838 |
Displaying FDL Statistics |
839 |
Displaying the Port Configuration for Individual Ports |
840 |
8-Port T1/E1 PSTN Interface Module |
840 |
8-Port T1/E1 PSTN Interface Module Configured for Trancoding/Conferencing |
841 |
24-Port FXS Analog Interface Module |
842 |
Displaying Active Call Information |
843 |
Configuring QoS in the Cisco IP Phone 7960 |
845 |
Understanding How QoS Works in the Cisco IP Phone 7960 |
846 |
Configuring QoS in the Cisco IP Phone 7960 |
846 |
Setting the Phone Access Port Trust Mode |
847 |
Setting the Phone Access Port CoS Value |
847 |
Verifying the Phone Access Port QoS Configuration |
847 |