Section |
Page |
About this Guide |
33 |
Objectives |
33 |
Audience |
33 |
Conventions |
34 |
Information Symbols |
34 |
Related Documents |
34 |
Configuration Fundamentals |
35 |
Accessing the Command Line |
35 |
CLI Modes |
36 |
Navigating CLI Modes |
37 |
The do Command |
40 |
Undoing Commands |
40 |
Obtaining Help |
41 |
Entering and Editing Commands |
41 |
Command History |
42 |
Filtering show Command Outputs |
43 |
Multiple Users in Configuration mode |
44 |
Getting Started |
45 |
Default Configuration |
46 |
Configure a Host Name |
47 |
Access the System Remotely |
47 |
Access the C-Series and E-Series Remotely |
47 |
Configure the Management Port IP Address |
48 |
Configure a Management Route |
48 |
Configure a Username and Password |
48 |
Access the S-Series Remotely |
49 |
Configure the Enable Password |
50 |
Configuration File Management |
50 |
Copy Files to and from the System |
51 |
Important Points to Remember |
51 |
Save the Running-configuration |
52 |
View Files |
53 |
View Configuration Files |
54 |
File System Management |
55 |
View command history |
56 |
Upgrading and Downgrading FTOS |
56 |
System Management |
57 |
Configure Privilege Levels |
57 |
Create a Custom Privilege Level |
57 |
Removing a command from EXEC mode |
58 |
Move a command from EXEC Privilege mode to EXEC mode |
58 |
Allow Access to CONFIGURATION mode commands |
58 |
Allow Access to INTERFACE, LINE, ROUTE-MAP, and ROUTER mode |
58 |
Apply a Privilege Level to a Username |
61 |
Apply a Privilege Level to a Terminal Line |
61 |
Configure Logging |
61 |
Log Messages in the Logging Buffer |
62 |
Configuration Task List for System Log Management |
62 |
Disable System Logging |
62 |
Send System Messages to a Syslog Server |
63 |
Configure a Unix System as a Syslog Server |
63 |
Change System Logging Settings |
63 |
Display the Logging Buffer and the Logging Configuration |
64 |
Configure a UNIX Logging Facility Level |
66 |
Synchronize Log Messages |
67 |
Enable Timestamp on Syslog Messages |
67 |
File Transfer Services |
68 |
Configuration Task List for File Transfer Services |
68 |
Enable FTP server |
68 |
Configure FTP server parameters |
68 |
Configure FTP client parameters |
69 |
Terminal Lines |
69 |
Deny and Permit Access to a Terminal Line |
69 |
Configure Login Authentication for Terminal Lines |
70 |
Time out of EXEC Privilege Mode |
71 |
Telnet to Another Network Device |
72 |
Lock CONFIGURATION mode |
72 |
Viewing the Configuration Lock Status |
73 |
Recovering from a Forgotten Password |
74 |
Recovering from a Forgotten Enable Password |
75 |
Recovering from a Forgotten Password on S-Series |
76 |
Recovering from a Failed Start |
77 |
802.1ag |
79 |
Ethernet CFM |
79 |
Maintenance Domains |
80 |
Maintenance Points |
80 |
Maintenance End Points |
81 |
Implementation Information |
82 |
Configure CFM |
82 |
Related Configuration Tasks |
82 |
Enable Ethernet CFM |
83 |
Create a Maintenance Domain |
83 |
Create a Maintenance Association |
84 |
Create Maintenance Points |
84 |
Create a Maintenance End Point |
84 |
Create a Maintenance Intermediate Point |
85 |
MP Databases |
85 |
MP Database Persistence |
86 |
Continuity Check Messages |
87 |
Enable CCM |
88 |
Enable Cross-checking |
88 |
Loopback Message and Response |
88 |
Linktrace Message and Response |
88 |
Link Trace Cache |
89 |
Enable CFM SNMP Traps. |
90 |
Display Ethernet CFM Statistics |
91 |
802.3ah |
93 |
Link Layer OAM Overview |
93 |
Link Layer OAMPDUs |
94 |
OAMPDU Flags |
94 |
Link Layer OAM Operational Modes |
95 |
Link Layer OAM Discovery |
95 |
Link Layer OAM Events |
96 |
Remote Loopback |
96 |
Implementation Information |
96 |
Configure Link Layer OAM |
97 |
Related Configuration Tasks |
97 |
Enable Link Layer OAM |
97 |
Adjust the OAMPDU Transmission Parameters |
99 |
Link Performance Event Monitoring |
99 |
Enable Error Monitoring |
99 |
Set Threshold Values |
100 |
Symbol Errors per Second |
100 |
Frame Errors per Second |
101 |
Frame Errors per Frame Period |
101 |
Error Seconds per Time Period |
101 |
Execute an Action upon Exceeding the High Threshold |
102 |
Remote Failure Indication |
102 |
Remote Loopback |
103 |
Display Link Layer OAM Configuration and Statistics |
104 |
Manage Link Layer OAM |
106 |
Enable MIB Retrieval Support/Function |
106 |
Adjust the Size of the Link OAM Event Log |
106 |
802.1X |
107 |
Protocol Overview |
107 |
The Port-authentication Process |
109 |
EAP over RADIUS |
110 |
RADIUS Attributes for 802.1 Support |
111 |
Configuring 802.1X |
111 |
Related Configuration Tasks |
111 |
Important Points to Remember |
112 |
Enabling 802.1X |
112 |
Configuring Request Identity Re-transmissions |
114 |
Configuring a Quiet Period after a Failed Authentication |
114 |
Forcibly Authorizing or Unauthorizing a Port |
115 |
Re-Authenticating a Port |
116 |
Periodic Re-Authentication |
116 |
Configuring Timeouts |
117 |
Dynamic VLAN Assignment with Port Authentication |
119 |
Guest and Authentication-Fail VLANs |
121 |
Configuring a Guest VLAN |
121 |
Configuring an Authentication-Fail VLAN |
122 |
Multi-Host Authentication |
123 |
Multi-Supplicant Authentication |
125 |
MAC Authentication Bypass |
127 |
MAB in Single-host and Multi-Host Mode |
128 |
MAB in Multi-Supplicant Authentication Mode |
128 |
Dynamic CoS with 802.1X |
130 |
IP Access Control Lists (ACL), Prefix Lists, and Route-maps |
133 |
Overview |
133 |
IP Access Control Lists (ACLs) |
134 |
CAM Profiling, CAM Allocation, and CAM Optimization |
134 |
CAM Profiling |
135 |
User Configurable CAM Allocation |
135 |
CAM optimization |
136 |
Test CAM Usage |
136 |
Implementing ACLs on FTOS |
137 |
ACLs and VLANs |
137 |
ACL Optimization |
137 |
Determine the order in which ACLs are used to classify traffic |
138 |
IP Fragment Handling |
138 |
IP fragments ACL examples |
139 |
Layer 4 ACL rules examples |
139 |
Configure a standard IP ACL |
140 |
Configure an extended IP ACL |
143 |
Configure filters with sequence number |
143 |
Configure filters without sequence number |
145 |
Established Flag |
146 |
Configuring Layer 2 and Layer 3 ACLs on an Interface |
146 |
Assign an IP ACL to an Interface |
147 |
Counting ACL Hits |
148 |
Configuring Ingress ACLs |
149 |
Configuring Egress ACLs |
149 |
Egress Layer 3 ACL Lookup for Control-plane IP Traffic |
150 |
Configuring ACLs to Loopback |
151 |
Applying an ACL on Loopback Interfaces |
151 |
IP Prefix Lists |
153 |
Implementation Information |
153 |
Configuration Task List for Prefix Lists |
153 |
Configure a prefix list |
154 |
Use a prefix list for route redistribution |
156 |
ACL Resequencing |
157 |
Resequencing an ACL or Prefix List |
158 |
Route Maps |
160 |
Implementation Information |
160 |
Important Points to Remember |
161 |
Configuration Task List for Route Maps |
161 |
Create a route map |
161 |
Configure route map filters |
163 |
Configure a route map for route redistribution |
166 |
Configure a route map for route tagging |
167 |
Continue clause |
167 |
Bidirectional Forwarding Detection |
169 |
Protocol Overview |
169 |
How BFD Works |
170 |
BFD packet format |
170 |
BFD sessions |
173 |
BFD three-way handshake |
173 |
Session state changes |
174 |
Important Points to Remember |
175 |
Configuring Bidirectional Forwarding Detection |
175 |
Configuring BFD for Physical Ports |
176 |
Related configuration tasks |
176 |
Enabling BFD globally |
176 |
Establishing a session on physical ports |
176 |
Changing physical port session parameters |
178 |
Disabling and re-enabling BFD |
179 |
Configuring BFD for Static Routes |
180 |
Related configuration tasks |
180 |
Establishing sessions for static routes |
180 |
Changing static route session parameters |
181 |
Disabling BFD for static routes |
181 |
Configuring BFD for OSPF |
182 |
Related configuration tasks |
182 |
Establishing sessions with OSPF neighbors |
182 |
Changing OSPF session parameters |
184 |
Disabling BFD for OSPF |
184 |
Configuring BFD for BGP |
185 |
Prerequisites |
185 |
Establishing sessions with BGP neighbors |
185 |
Disabling BFD for BGP |
187 |
Using BFD in a BGP Peer Group |
187 |
Displaying BFD for BGP Information |
188 |
Configuring BFD for IS-IS |
193 |
Related configuration tasks |
193 |
Establishing sessions with IS-IS neighbors |
193 |
Changing IS-IS session parameters |
194 |
Disabling BFD for IS-IS |
195 |
Configuring BFD for VRRP |
195 |
Related configuration tasks |
195 |
Establishing sessions with all VRRP neighbors |
195 |
Establishing VRRP sessions on VRRP neighbors |
196 |
Changing VRRP session parameters |
197 |
Disabling BFD for VRRP |
198 |
Configuring BFD for VLANs |
198 |
Related configuration tasks |
199 |
Establishing sessions with VLAN neighbors |
199 |
Changing session parameters |
200 |
Disabling BFD for VLANs |
200 |
Configuring BFD for Port-Channels |
201 |
Related configuration tasks |
201 |
Establishing sessions on port-channels |
201 |
Changing port-channel session parameters |
202 |
Disabling BFD for port-channels |
202 |
Configuring Protocol Liveness |
203 |
Troubleshooting BFD |
203 |
Border Gateway Protocol IPv4 (BGPv4) |
205 |
Protocol Overview |
206 |
Autonomous Systems (AS) |
206 |
Sessions and Peers |
208 |
Establishing a session |
208 |
Peer Groups |
209 |
Route Reflectors |
209 |
Confederations |
210 |
Communities |
210 |
BGP Attributes |
211 |
Best Path Selection Criteria |
211 |
Best Path selection details |
212 |
Weight |
214 |
Local Preference |
214 |
Multi-Exit Discriminators (MEDs) |
214 |
Origin |
215 |
AS Path |
216 |
Next Hop |
217 |
Multiprotocol BGP |
217 |
Implementing BGP with FTOS |
217 |
Advertise IGP cost as MED for redistributed routes |
217 |
Ignore Router-ID for some best-path calculations |
218 |
4-Byte AS Numbers |
218 |
AS4 Number Representation |
219 |
Dynamic AS Number Notation application |
220 |
AS Number Migration |
221 |
BGP4 Management Information Base (MIB) |
223 |
Important Points to Remember |
223 |
Configuration Information |
224 |
BGP Configuration |
225 |
Defaults |
225 |
Configuration Task List for BGP |
225 |
Enable BGP |
226 |
Configure AS4 Number Representations |
230 |
Configure Peer Groups |
232 |
BGP fast fall-over |
235 |
Configure passive peering |
238 |
Maintain existing AS numbers during an AS migration |
239 |
Allow an AS number to appear in its own AS path |
240 |
Enable graceful restart |
241 |
Filter on an AS-Path attribute |
243 |
Redistribute routes |
246 |
Configure IP community lists |
247 |
Manipulate the COMMUNITY attribute |
250 |
Change MED attribute |
251 |
Change LOCAL_PREFERENCE attribute |
252 |
Change NEXT_HOP attribute |
253 |
Change WEIGHT attribute |
253 |
Enable multipath |
254 |
Filter BGP routes |
254 |
Configure BGP route reflectors |
257 |
Aggregate routes |
258 |
Configure BGP confederations |
258 |
Enable route flap dampening |
259 |
Change BGP timers |
263 |
BGP neighbor soft-reconfiguration |
263 |
Route map continue |
265 |
MBGP Configuration |
266 |
BGP Regular Expression Optimization |
267 |
Retain NH in BGP Advertisement |
267 |
Debugging BGP |
267 |
Storing Last and Bad PDUs |
268 |
Capturing PDUs |
269 |
PDU Counters |
271 |
Sample Configurations |
271 |
Content Addressable Memory |
281 |
Content Addressable Memory |
281 |
CAM Profiles |
282 |
Microcode |
284 |
CAM Profiling for ACLs |
285 |
Boot Behavior |
286 |
When to Use CAM Profiling |
287 |
Important Points to Remember |
288 |
Differences Between EtherScale and TeraScale |
288 |
Select CAM Profiles |
288 |
CAM Allocation |
289 |
Test CAM Usage |
290 |
View CAM Profiles |
291 |
View CAM-ACL settings |
291 |
View CAM Usage |
292 |
Configure IPv4Flow Sub-partitions |
293 |
Configure Ingress Layer 2 ACL Sub-partitions |
295 |
Return to the Default CAM Configuration |
297 |
CAM Optimization |
298 |
Applications for CAM Profiling |
298 |
LAG Hashing |
298 |
LAG Hashing based on Bidirectional Flow |
299 |
CAM profile for the VLAN ACL group feature |
299 |
Troubleshoot CAM Profiling |
299 |
CAM Profile Mismatches |
299 |
QoS CAM Region Limitation |
300 |
Configuration Replace and Rollback |
301 |
Archived Files |
301 |
Configuring Configuration Replace and Rollback |
302 |
Related Configuration Tasks |
302 |
Important Points to Remember |
302 |
Enabling the Archive Service |
302 |
Archiving a Configuration File |
303 |
Viewing the Archive Directory |
303 |
Replacing the Current Running Configuration |
303 |
Rolling Back to the Previous Configuration |
304 |
Configuring an Archive File Maximum |
305 |
Configuring Auto-archive |
306 |
Copying and Deleting an Archive File |
307 |
Viewing and Editing the Contents of an Archive File |
307 |
Viewing the Difference between Configuration Files |
308 |
Dynamic Host Configuration Protocol |
311 |
Protocol Overview |
311 |
DHCP Packet Format and Options |
312 |
Assigning an IP Address using DHCP |
313 |
Implementation Information |
314 |
Configuration Tasks |
314 |
Configure the System to be a DHCP Server |
314 |
Configuration Tasks |
315 |
Related Configuration Tasks |
315 |
Configure the Server for Automatic Address Allocation |
315 |
Create an IP Address Pool |
315 |
Exclude Addresses from the Address Pool |
316 |
Specify an Address Lease Time |
316 |
Specify a Default Gateway |
316 |
Enable DHCP Server |
317 |
Configure a Method of Hostname Resolution |
317 |
Address Resolution using DNS |
317 |
Address Resolution using NetBIOS WINS |
318 |
Allocate Addresses to BOOTP Clients |
318 |
Create Manual Binding Entries |
318 |
Check for Address Conflicts |
319 |
DHCP Clear Commands |
320 |
Configure the System to be a Relay Agent |
320 |
Configure Secure DHCP |
321 |
Option 82 |
322 |
DHCP Snooping |
322 |
Enable DCHP snooping |
323 |
Add a static entry in the binding table |
324 |
Clear the binding table |
324 |
Display the contents of the binding table |
324 |
Drop DHCP packets on snooped VLANs only |
325 |
Dynamic ARP Inspection |
325 |
Bypass the ARP Inspection |
327 |
Source Address Validation |
327 |
IP Source Address Validation |
328 |
DHCP MAC Source Address Validation |
328 |
IP+MAC Source Address Validation |
328 |
Equal Cost Multi-Path |
331 |
ECMP for Flow-based Affinity (E-Series) |
331 |
Configurable Hash Algorithm (E-Series) |
331 |
Deterministic ECMP Next Hop |
332 |
Configurable Hash Algorithm Seed |
332 |
Configurable ECMP Hash Algorithm (C- and S-Series) |
334 |
Force10 Resilient Ring Protocol |
335 |
Protocol Overview |
335 |
Ring Status |
336 |
Ring Checking |
336 |
Ring Failure |
337 |
Ring Restoration |
337 |
Multiple FRRP Rings |
337 |
Member VLAN Spanning Two Rings Connected by One Switch |
337 |
Important FRRP Points |
338 |
Important FRRP Concepts |
339 |
Implementing FRRP |
340 |
FRRP Configuration |
341 |
Create the FRRP group |
341 |
Configure the Control VLAN |
341 |
Configure and add the Member VLANs |
343 |
Set FRRP Timers |
344 |
Clear FRRP counters |
344 |
Show FRRP configuration |
345 |
Show FRRP information |
345 |
Troubleshooting FRRP |
345 |
Configuration Checks |
345 |
Sample Configuration and Topology |
345 |
Force10 Service Agent |
347 |
Implementation Information |
347 |
Configure Force10 Service Agent |
348 |
Related Configuration Tasks |
348 |
Enable Force10 Service Agent |
348 |
Specify an SMTP Server for FTSA |
349 |
Provide an Administrator E-mail Address |
349 |
FTSA Messaging Service |
350 |
Enable the FTSA Messaging Service |
350 |
Add Additional Recipients of FTSA E-mails |
351 |
Encrypt FTSA Messages |
352 |
Create a PGP5 encryption key |
353 |
Provide Administrator Contact Information |
353 |
Set the Frequency of FTSA Type 3 Messages |
354 |
Generate FTSA Type 4 Messages |
354 |
Set Parameters FTSA Type 5 Messages |
354 |
FTSA Message Types |
355 |
FTSA Policies |
357 |
Create an FTSA Policy Test List |
358 |
Choose test conditions for a policy test list |
358 |
Set the match criterion for test lists |
361 |
Create a Policy Action List |
361 |
Add actions to a policy action list |
362 |
Create a Policy and Assign a Test and Action List |
363 |
Additional Policy Configurations |
364 |
FTSA Policy Sample Configurations |
364 |
Line card state-change policy configuration |
364 |
Excessive CRC-error policy configuration |
369 |
Debugging FTSA |
371 |
GARP VLAN Registration Protocol |
373 |
Protocol Overview |
373 |
Important Points to Remember |
373 |
Configuring GVRP |
374 |
Related Configuration Tasks |
375 |
Enabling GVRP Globally |
375 |
Enabling GVRP on a Layer 2 Interface |
376 |
Configuring GVRP Registration |
376 |
Configuring a GARP Timer |
377 |
High Availability |
379 |
Component Redundancy |
380 |
RPM Redundancy |
380 |
Boot the chassis with a single RPM |
380 |
Boot the chassis with dual RPMs |
381 |
Automatic and manual RPM failover |
382 |
Communication between RPMs |
383 |
Support for RPM redundancy by FTOS version |
384 |
RPM synchronization |
385 |
RPM redundancy configuration tasks |
385 |
Online Insertion and Removal |
387 |
RPM Online Insertion and Removal |
387 |
Line Card Online Insertion and Removal |
387 |
Pre-configure a line card slot |
388 |
Replace a line card |
389 |
Hitless Behavior |
389 |
Graceful Restart |
390 |
Software Resiliency |
390 |
Runtime System Health Check |
391 |
SFM Channel Monitoring |
391 |
Software Component Health Monitoring |
392 |
System Health Monitoring |
392 |
Failure and Event Logging |
392 |
Trace Log |
392 |
Core Dumps |
392 |
System Log |
393 |
Hot-lock Behavior |
393 |
Warm Upgrade |
393 |
Configure Cache Boot |
394 |
Cache Boot Pre-requisites |
394 |
Select the Cache Boot Image |
396 |
In-Service Modular Hot-Fixes |
398 |
Process Restartability |
399 |
Internet Group Management Protocol |
403 |
IGMP Implementation Information |
403 |
IGMP Protocol Overview |
403 |
IGMP version 2 |
404 |
Joining a Multicast Group |
404 |
Leaving a Multicast Group |
405 |
IGMP version 3 |
405 |
Joining and Filtering Groups and Sources |
406 |
Leaving and Staying in Groups |
407 |
Configuring IGMP |
408 |
Related Configuration Tasks |
408 |
Viewing IGMP Enabled Interfaces |
408 |
Selecting an IGMP Version |
409 |
Viewing IGMP Groups |
409 |
Adjusting Timers |
410 |
Adjusting Query and Response Timers |
410 |
Adjusting the IGMP Querier Timeout Value |
410 |
Configuring a Static IGMP Group |
411 |
Enabling IGMP Immediate-leave |
411 |
IGMP Snooping |
412 |
IGMP Snooping Implementation Information |
412 |
Configuring IGMP Snooping |
412 |
Related Configuration Tasks |
412 |
Enabling IGMP Immediate-leave |
412 |
Disabling Multicast Flooding |
413 |
Specifying a Port as Connected to a Multicast Router |
413 |
Configuring the Switch as Querier |
413 |
Adjusting the Last Member Query Interval |
414 |
Fast Convergence after MSTP Topology Changes |
414 |
Designating a Multicast Router Interface |
414 |
Interfaces |
415 |
Basic Interface Configuration: |
415 |
Advanced Interface Configuration: |
415 |
Interface Types |
416 |
View Basic Interface Information |
416 |
Enable a Physical Interface |
418 |
Physical Interfaces |
419 |
Configuration Task List for Physical Interfaces |
419 |
Overview of Layer Modes |
420 |
Configure Layer 2 (Data Link) Mode |
420 |
Configure Layer 3 (Network) Mode |
421 |
Management Interfaces |
423 |
Configure Management Interfaces on the E-Series and C-Series |
423 |
Important Things to Remember — virtual-ip |
424 |
Configure Management Interfaces on the S-Series |
424 |
Displaying Information on a Management Interface |
425 |
VLAN Interfaces |
426 |
Loopback Interfaces |
427 |
Null Interfaces |
427 |
Port Channel Interfaces |
428 |
Port channel definition and standards |
428 |
Port channel benefits |
428 |
Port channel implementation |
428 |
10/100/1000 Mbps interfaces in port channels |
429 |
Configuration task list for port channel interfaces |
430 |
Create a port channel |
430 |
Add a physical interface to a port channel |
431 |
Reassign an interface to a new port channel |
433 |
Configure the minimum oper up links in a port channel (LAG) |
434 |
Add or remove a port channel from a VLAN |
434 |
Assign an IP address to a port channel |
435 |
Delete or disable a port channel |
435 |
Load balancing through port channels |
436 |
E-Series load-balancing |
436 |
IPv4, IPv6, and non-IP traffic handling on the E-Series |
438 |
C-Series and S-Series load-balancing |
438 |
Hash algorithm |
439 |
Bulk Configuration |
440 |
Interface Range |
440 |
Bulk Configuration Examples |
441 |
Create a single-range |
441 |
Create a multiple-range |
441 |
Exclude duplicate entries |
441 |
Exclude a smaller port range |
441 |
Overlap port ranges |
442 |
Commas |
442 |
Add ranges |
442 |
Interface Range Macros |
443 |
Define the Interface Range |
443 |
Choose an Interface-range Macro |
444 |
Monitor and Maintain Interfaces |
444 |
Maintenance using TDR |
445 |
Link Debounce Timer |
446 |
Important Points to Remember about Link Debounce Timer |
446 |
Assign a debounce time to an interface |
447 |
Show debounce times in an interface |
447 |
Disable ports when one only SFM is available (E300 only) |
447 |
Disable port on one SFM |
448 |
Link Dampening |
448 |
Important Points to Remember |
448 |
Enable Link Dampening |
449 |
Clear Dampening Counters |
449 |
Link Dampening Support for XML |
450 |
Configure MTU size on an Interface |
450 |
Ethernet Pause Frames |
450 |
Threshold Settings |
451 |
Enable Pause Frames |
452 |
Configure MTU Size on an Interface |
453 |
Port-pipes |
454 |
Auto-Negotiation on Ethernet Interfaces |
455 |
Setting speed and duplex mode of Ethernet Interfaces |
455 |
Setting Auto-Negotiation Options |
456 |
Adjust the keepalive timer |
457 |
View Advanced Interface Information |
457 |
Display Only Configured Interfaces |
457 |
Configure Interface Sampling Size |
458 |
Dynamic Counters |
460 |
Clear interface counters |
461 |
IPv4 Addressing |
463 |
IP Addresses |
463 |
Implementation Information |
464 |
Configuration Task List for IP Addresses |
464 |
Assign IP addresses to an interface |
464 |
Configure static routes |
466 |
Configure static routes for the management interface |
467 |
Directed Broadcast |
468 |
Resolution of Host Names |
468 |
Enable dynamic resolution of host names |
468 |
Specify local system domain and a list of domains |
469 |
DNS with traceroute |
470 |
ARP |
471 |
Configuration Task List for ARP |
471 |
Configure static ARP entries |
471 |
Enable Proxy ARP |
472 |
Clear ARP cache |
472 |
ARP Learning via Gratuitous ARP |
473 |
ARP Learning via ARP Request |
474 |
Configurable ARP Retries |
475 |
ICMP |
475 |
Configuration Task List for ICMP |
475 |
Enable ICMP unreachable messages |
476 |
Enable ICMP redirects |
476 |
UDP Helper |
476 |
Configuring UDP Helper |
477 |
Important Points to Remember about UDP Helper |
477 |
Enabling UDP Helper |
477 |
Configuring a Broadcast Address |
478 |
Configurations Using UDP Helper |
478 |
UDP Helper with Broadcast-all Addresses |
479 |
UDP Helper with Subnet Broadcast Addresses |
479 |
UDP Helper with Configured Broadcast Addresses |
480 |
UDP Helper with No Configured Broadcast Addresses |
481 |
Troubleshooting UDP Helper |
481 |
IPv6 Addressing |
483 |
Protocol Overview |
483 |
Extended Address Space |
484 |
Stateless Autoconfiguration |
484 |
IPv6 Headers |
485 |
Version (4 bits) |
485 |
Traffic Class (8 bits) |
486 |
Flow Label (20 bits) |
486 |
Payload Length (16 bits) |
486 |
Next Header (8 bits) |
486 |
Hop Limit (8 bits) |
487 |
Source Address (128 bits) |
487 |
Destination Address (128 bits) |
487 |
Extension Header fields |
487 |
Hop-by-Hop Options header |
488 |
Addressing |
488 |
Link-local Addresses |
489 |
Static and Dynamic Addressing |
489 |
Implementing IPv6 with FTOS |
490 |
ICMPv6 |
492 |
Path MTU Discovery |
492 |
IPv6 Neighbor Discovery |
493 |
IPv6 Neighbor Discovery of MTU packets |
494 |
Advertise Neighbor Prefixes |
494 |
QoS for IPv6 |
494 |
IPv6 Multicast |
495 |
SSH over an IPv6 Transport |
495 |
Configuration Task List for IPv6 |
496 |
Change your CAM-Profile on an E-Series system |
496 |
Adjust your CAM-Profile on an C-Series or S-Series |
497 |
Assign an IPv6 Address to an Interface |
498 |
Assign a Static IPv6 Route |
499 |
Telnet with IPv6 |
499 |
SNMP over IPv6 |
500 |
Show IPv6 Information |
500 |
Show an IPv6 Interface |
501 |
Show IPv6 Routes |
502 |
Show the Running-Configuration for an Interface |
504 |
Clear IPv6 Routes |
504 |
Intermediate System to Intermediate System |
507 |
Protocol Overview |
507 |
IS-IS Addressing |
508 |
Multi-Topology IS-IS |
509 |
Transition Mode |
509 |
Interface support |
509 |
Adjacencies |
510 |
Graceful Restart |
510 |
Timers |
510 |
Implementation Information |
511 |
Configuration Information |
512 |
Configuration Task List for IS-IS |
513 |
Enable IS-IS |
513 |
Configure Multi-Topology IS-IS (MT IS-IS) |
516 |
Configure Multi-Topology IS-IS (MT IS-IS) |
517 |
Configure IS-IS Graceful Restart |
517 |
Change LSP attributes |
520 |
Configure IS-IS metric style and cost |
521 |
Configuring the distance of a route |
523 |
Change the IS-type |
523 |
Control routing updates |
524 |
Distribute Routes |
525 |
Redistribute routes |
527 |
Configure authentication passwords |
529 |
Set the overload bit |
529 |
Debug IS-IS |
530 |
IS-IS Metric Styles |
531 |
Configure Metric Values |
532 |
Maximum Values in the Routing Table |
532 |
Changing the IS-IS Metric Style in One Level Only |
532 |
Leaking from One Level to Another |
534 |
Sample Configuration |
535 |
Link Aggregation Control Protocol |
541 |
Introduction to Dynamic LAGs and LACP |
541 |
Important Points to Remember |
542 |
LACP modes |
543 |
LACP Configuration Commands |
543 |
LACP Configuration Tasks |
544 |
Create a LAG |
544 |
Configure the LAG interfaces as dynamic |
544 |
Set the LACP long timeout |
545 |
Monitor and Debugging LACP |
546 |
Shared LAG State Tracking |
546 |
Configure Shared LAG State Tracking |
547 |
Important Points about Shared LAG State Tracking |
548 |
Configure LACP as Hitless |
549 |
LACP Basic Configuration Example |
549 |
Configuring a LAG on ALPHA |
550 |
Summary of the configuration on ALPHA |
554 |
Summary of the configuration on BRAVO |
555 |
Layer 2 |
559 |
Managing the MAC Address Table |
559 |
Clear the MAC Address Table |
560 |
Set the Aging Time for Dynamic Entries |
560 |
Set the Aging Time for Dynamic Entries on a VLAN |
560 |
Configure a Static MAC Address |
561 |
Display the MAC Address Table |
561 |
MAC Learning Limit |
562 |
mac learning-limit dynamic |
563 |
mac learning-limit station-move |
563 |
mac learning-limit no-station-move |
564 |
mac learning-limit sticky |
564 |
The sticky-MAC learning feature is supported on platforms: c s. |
564 |
Displaying MAC Learning-Limited Interfaces |
566 |
Learning Limit Violation Actions |
566 |
Station Move Violation Actions |
566 |
Recovering from Learning Limit and Station Move Violations |
567 |
Per-VLAN MAC Learning Limit |
567 |
NIC Teaming |
569 |
MAC Move Optimization |
570 |
Microsoft Clustering |
570 |
Default Behavior |
570 |
Configuring the Switch for Microsoft Server Clustering |
571 |
Enable and Disable VLAN Flooding |
572 |
Configuring Redundant Pairs |
573 |
Important Points about Configuring Redundant Pairs |
574 |
Restricting Layer 2 Flooding |
576 |
Far-end Failure Detection |
577 |
FEFD state changes |
577 |
Important Points to Remember |
578 |
Configuring FEFD |
578 |
Enable FEFD Globally |
578 |
Enable FEFD on an Interface |
579 |
Debugging FEFD |
580 |
During an RPM Failover |
581 |
Link Layer Discovery Protocol |
583 |
802.1AB (LLDP) Overview |
583 |
Protocol Data Units |
583 |
Optional TLVs |
585 |
Management TLVs |
585 |
Organizationally Specific TLVs |
585 |
IEEE Organizationally Specific TLVs |
585 |
TIA-1057 (LLDP-MED) Overview |
586 |
TIA Organizationally Specific TLVs |
587 |
LLDP-MED Capabilities TLV |
588 |
LLDP-MED Network Policies TLV |
589 |
Extended Power via MDI TLV |
590 |
Configuring LLDP |
591 |
Related Configuration Tasks |
591 |
Important Points to Remember |
591 |
LLDP Compatibility |
591 |
CONFIGURATION versus INTERFACE Configurations |
591 |
Enabling LLDP |
592 |
Disabling and Undoing LLDP |
592 |
Advertising TLVs |
592 |
Viewing the LLDP Configuration |
594 |
Viewing Information Advertised by Adjacent LLDP Agents |
594 |
Configuring LLDPDU Intervals |
595 |
Configuring Transmit and Receive Mode |
596 |
Configuring a Time to Live |
597 |
Debugging LLDP |
598 |
Relevant Management Objects |
599 |
Multicast Listener Discovery |
605 |
Protocol Overview |
605 |
MLD Version 1 |
605 |
MLD Querier Router |
606 |
Joining a Multicast Group |
606 |
Leaving a Multicast Group |
607 |
MLD version 2 |
607 |
Implementation Information |
608 |
Enabling MLD |
608 |
Related MLD Configuration Tasks |
608 |
Change MLD Timer Values |
609 |
Reduce Host Response Burstiness |
609 |
Reduce Leave Latency |
609 |
Last Member Query Interval |
610 |
Explicit Tracking |
610 |
Configure a Static Group |
610 |
Display the MLD Group Table |
611 |
Clear MLD Groups |
611 |
Change the MLD Version |
611 |
Debug MLD |
611 |
MLD Snooping |
611 |
Enable MLD Snooping |
612 |
Disable MLD Snooping on a VLAN |
612 |
Configure the Switch as a Querier |
612 |
Disable Multicast Flooding |
612 |
Specify a Port as Connected to a Multicast Router |
612 |
Enable Snooping Explicit Tracking |
613 |
Display the MLD Snooping Table |
613 |
MLDv2 Snooping |
613 |
Port Inheritance on Mixed MLD Mode VLANs |
613 |
Multicast Source Discovery Protocol |
615 |
Protocol Overview |
615 |
Implementation Information |
616 |
Configuring Multicast Source Discovery Protocol |
617 |
Related Configuration Tasks |
617 |
Enable MSDP |
622 |
Manage the Source-active Cache |
622 |
View the Source-active Cache |
623 |
Limit the Source-active Cache |
623 |
Clear the Source-active Cache |
623 |
Enable the Rejected Source-active Cache |
623 |
Accept Source-active Messages that fail the RFP Check |
624 |
Limit the Source-active Messages from a Peer |
626 |
Prevent MSDP from Caching a Local Source |
627 |
Prevent MSDP from Caching a Remote Source |
628 |
Prevent MSDP from Advertising a Local Source |
629 |
Log Changes in Peership States |
630 |
Terminate a Peership |
630 |
Clear Peer Statistics |
631 |
Debug MSDP |
632 |
MSDP with Anycast RP |
632 |
Reducing Source-active Message Flooding |
634 |
Specify the RP Address Used in SA Messages |
634 |
MSDP Sample Configurations |
638 |
Multiple Spanning Tree Protocol |
643 |
Protocol Overview |
643 |
Implementation Information |
644 |
Configure Multiple Spanning Tree Protocol |
644 |
Related Configuration Tasks |
644 |
Enable Multiple Spanning Tree Globally |
645 |
Add and Remove Interfaces |
645 |
Create Multiple Spanning Tree Instances |
645 |
Influence MSTP Root Selection |
647 |
Interoperate with Non-FTOS Bridges |
647 |
Modify Global Parameters |
648 |
Modify Interface Parameters |
650 |
Configure an EdgePort |
651 |
Configure a Root Guard |
652 |
Configure a Loop Guard |
653 |
Flush MAC Addresses after a Topology Change |
654 |
Displaying STP Guard Configuration |
654 |
MSTP Sample Configurations |
655 |
Debugging and Verifying MSTP Configuration |
660 |
Multicast Features |
663 |
Implementation Information |
663 |
Enable IP Multicast |
663 |
Multicast with ECMP |
664 |
Implementation Information |
665 |
Multicast Policies |
665 |
IPv4 Multicast Policies |
665 |
Limit the Number of Multicast Routes |
666 |
Prevent a Host from Joining a Group |
667 |
Rate Limit IGMP Join Requests |
669 |
Prevent a PIM Router from Forming an Adjacency |
669 |
Prevent a Source from Registering with the RP |
669 |
Prevent a PIM Router from Processing a Join |
670 |
Using a Static Multicast MAC Address |
671 |
IPv6 Multicast Policies |
673 |
Limit the Number of IPv6 Multicast Routes |
673 |
Prevent an IPv6 Neighbor from Forming an Adjacency |
673 |
Prevent an IPv6 Source from Registering with the RP |
674 |
Prevent an IPv6 PIM Router from Processing an IPv6 Join |
674 |
Multicast Traceroute |
674 |
Multicast Quality of Service |
675 |
Optimize the E-Series for Multicast Traffic |
675 |
Allocate More Buffer Memory for Multicast WRED |
676 |
Allocate More Bandwidth to Multicast using Egress WFQ |
676 |
Tune the Central Scheduler for Multicast |
676 |
Object Tracking |
677 |
Object Tracking Overview |
677 |
Tracking Layer 2 Interfaces |
678 |
Tracking Layer 3 Interfaces |
679 |
Tracking IPv4 and IPv6 Routes |
679 |
Tracking Route Reachability |
679 |
Tracking a Metric Threshold |
679 |
Setting Tracking Delays |
680 |
VRRP Object Tracking |
680 |
Object Tracking Configuration |
681 |
Tracking a Layer 2 Interface |
681 |
Tracking a Layer 3 Interface |
682 |
Tracking an IPv4/IPv6 Route |
684 |
Tracking Route Reachability |
685 |
Tracking a Metric Threshold |
686 |
Displaying Tracked Objects |
688 |
Open Shortest Path First (OSPFv2 and OSPFv3) |
691 |
Protocol Overview |
692 |
Autonomous System (AS) Areas |
692 |
Area Types |
693 |
Networks and Neighbors |
694 |
Router Types |
694 |
Backbone Router (BR) |
695 |
Area Border Router (ABR) |
696 |
Autonomous System Border Router (ASBR) |
696 |
Internal Router (IR) |
696 |
Designated and Backup Designated Routers |
696 |
Link-State Advertisements (LSAs) |
697 |
Virtual Links |
698 |
Router Priority and Cost |
698 |
Implementing OSPF with FTOS |
699 |
Graceful Restart |
700 |
Fast Convergence (OSPFv2, IPv4 only) |
701 |
Multi-Process OSPF (OSPFv2, IPv4 only) |
701 |
Processing SNMP and Sending SNMP Traps |
702 |
RFC-2328 Compliant OSPF Flooding |
702 |
OSPF ACK Packing |
703 |
OSPF Adjacency with Cisco Routers |
703 |
Configuration Requirements |
704 |
Configuration Task List for OSPFv2 (OSPF for IPv4) |
704 |
Enable OSPFv2 |
705 |
Enable Multi-Process OSPF |
707 |
Assign an OSPFv2 area |
708 |
Enable OSPFv2 on interfaces |
709 |
Configure stub areas |
711 |
Configure OSPF Stub-Router Advertisement |
712 |
Enable passive interfaces |
713 |
Enable fast-convergence |
714 |
Change OSPFv2 parameters on interfaces |
715 |
Enable OSPFv2 authentication |
717 |
Enable OSPFv2 graceful restart |
717 |
Configure virtual links |
719 |
Filter routes |
720 |
Redistribute routes |
721 |
Troubleshooting OSPFv2 |
722 |
Sample Configurations for OSPFv2 |
725 |
Basic OSPFv2 Router Topology |
725 |
Configuration Task List for OSPFv3 (OSPF for IPv6) |
726 |
Enable IPv6 Unicast Routing |
727 |
Assign IPv6 addresses on an interface |
727 |
Assign Area ID on interface |
727 |
Assign OSPFv3 Process ID and Router ID Globally |
728 |
Configure stub areas |
728 |
Configure Passive-Interface |
729 |
Redistribute routes |
730 |
Configure a default route |
730 |
Enable OSPFv3 graceful restart |
731 |
OSPFv3 Authentication Using IPsec |
734 |
OSPFv3 Authentication using IPsec: Configuration Notes |
735 |
Configuring IPsec Authentication on an Interface |
736 |
Configuring IPsec Encryption on an Interface |
737 |
Configuring IPsec Authentication for an OSPFv3 Area |
738 |
Configuring IPsec Encryption for an OSPFv3 Area |
739 |
Displaying OSPFv3 IPsec Security Policies |
740 |
Troubleshooting OSPFv3 |
744 |
PIM Dense-Mode |
747 |
Implementation Information |
747 |
Protocol Overview |
747 |
Refusing Multicast Traffic |
748 |
Requesting Multicast Traffic |
749 |
Configure PIM-DM |
750 |
Related Configuration Tasks |
750 |
Enable PIM-DM |
750 |
PIM Sparse-Mode |
755 |
Implementation Information |
755 |
Protocol Overview |
756 |
Requesting Multicast Traffic |
756 |
Refusing Multicast Traffic |
756 |
Sending Multicast Traffic |
757 |
Important Points to Remember |
757 |
Configure PIM-SM |
757 |
Related Configuration Tasks |
758 |
Enable PIM-SM |
758 |
Configurable S,G Expiry Timers |
759 |
Configure a Static Rendezvous Point |
760 |
Override Bootstrap Router Updates |
761 |
Elect an RP using the BSR Mechanism |
762 |
Configure a Designated Router |
763 |
Create Multicast Boundaries and Domains |
763 |
Set a Threshold for Switching to the SPT |
764 |
PIM-SM Graceful Restart |
764 |
First Packet Forwarding for Lossless Multicast |
765 |
Monitoring PIM |
766 |
PIM-SM and IGMP Snooping: Usage Notes |
766 |
PIM-SM Snooping |
767 |
Feature Overview |
768 |
Configuration Notes and Restrictions |
769 |
PIM-SM Snooping Example |
770 |
PIM-SM Snooping Configuration |
772 |
Enable PIM Snooping |
772 |
Disable PIM Designated-Router Flooding |
772 |
Verify PIM-SM Snooping |
773 |
PIM Source-Specific Mode |
777 |
Implementation Information |
779 |
Important Points to Remember |
779 |
Configure PIM-SM |
779 |
Related Configuration Tasks |
779 |
Enable PIM-SSM |
780 |
Use PIM-SSM with IGMP version 2 Hosts |
780 |
Power over Ethernet |
785 |
Configuring Power over Ethernet |
786 |
Related Configuration Tasks |
787 |
Enabling PoE on a Port |
787 |
Manage Ports using Power Priority and the Power Budget |
789 |
Determine the Power Priority for a Port |
789 |
power-inline mode |
790 |
Extended Power-via-MDI TLV |
790 |
Determine the Affect of a Port on the Power Budget |
791 |
Monitor the Power Budget |
792 |
Manage Power Priorities |
792 |
Recover from a Failed Power Supply |
793 |
Power Additional PoE Ports on the S-Series |
794 |
Deploying VOIP |
795 |
Create VLANs for an Office VOIP Deployment |
795 |
Configure LLDP-MED for an Office VOIP Deployment |
796 |
Configure Quality of Service for an Office VOIP Deployment |
797 |
Honor the incoming DSCP value |
797 |
Honor the incoming dot1p value |
797 |
Classifying VOIP traffic and applying QoS policies |
798 |
Policy-based Routing |
801 |
Overview |
801 |
Implementing Policy-based Routing with FTOS |
803 |
Non-contiguous bitmasks for PBR |
803 |
Hot-Lock PBR |
803 |
Configuration Task List for Policy-based Routing |
804 |
Create a Redirect List |
804 |
Create a Rule for a Redirect-list |
805 |
PBR Exceptions (Permit) |
807 |
Apply a Redirect-list to an Interface using a Redirect-group |
808 |
Show Redirect List Configuration |
809 |
Sample Configuration |
810 |
Port Monitoring |
813 |
Important Points to Remember |
813 |
Port Monitoring on E-Series |
814 |
E-Series TeraScale |
815 |
E-Series ExaScale |
815 |
Port Monitoring on C-Series and S-Series |
816 |
Configuring Port Monitoring |
819 |
Flow-based Monitoring |
820 |
Remote Port Mirroring |
821 |
Remote Port Mirroring Example |
821 |
Configuring Remote Port Mirroring |
822 |
Configuration Notes |
822 |
Restrictions |
824 |
Configuration Procedure |
824 |
Displaying Remote-Port Mirroring Configurations |
828 |
Sample Configuration: Remote Port Mirroring |
829 |
Private VLANs |
831 |
Important Points to Remember |
832 |
Configure Private VLANs |
832 |
Related Configuration Tasks |
833 |
Configure PVLAN Ports |
833 |
Place PVLAN Ports in a Secondary VLAN |
833 |
Place the Secondary VLANs in a Primary VLAN |
834 |
Private VLAN show Commands |
834 |
Per-VLAN Spanning Tree Plus |
835 |
Protocol Overview |
835 |
Implementation Information |
836 |
Configure Per-VLAN Spanning Tree Plus |
836 |
Related Configuration Tasks |
836 |
Enable PVST+ |
837 |
Disable PVST+ |
837 |
Influence PVST+ Root Selection |
837 |
Modify Global PVST+ Parameters |
840 |
Modify Interface PVST+ Parameters |
840 |
Configure an EdgePort |
841 |
Configure a Root Guard |
843 |
Configure a Loop Guard |
844 |
PVST+ in Multi-vendor Networks |
845 |
PVST+ Extended System ID |
845 |
Displaying STP Guard Configuration |
846 |
PVST+ Sample Configurations |
847 |
Quality of Service |
849 |
Implementation Information |
851 |
Port-based QoS Configurations |
852 |
Set dot1p Priorities for Incoming Traffic |
852 |
Honor dot1p Priorities on Ingress Traffic |
853 |
Priority-tagged Frames on the Default VLAN |
853 |
Configure Port-based Rate Policing |
854 |
Configure Port-based Rate Limiting |
855 |
Configure Port-based Rate Shaping |
856 |
Policy-based QoS Configurations |
857 |
Classify Traffic |
857 |
Create a Layer 3 class map |
857 |
Create a Layer 2 class map |
858 |
Determine the order in which ACLs are used to classify traffic |
859 |
Set DSCP values for egress packets based on flow |
859 |
Display configured class maps and match criteria |
859 |
Create a QoS Policy |
861 |
Create an input QoS policy |
861 |
Create an output QoS policy |
862 |
Create Policy Maps |
864 |
Create Input Policy Maps |
864 |
Apply an input policy map to an interface |
868 |
Create Output Policy Maps |
868 |
QoS Rate Adjustment |
869 |
Strict-priority Queueing |
870 |
Weighted Random Early Detection |
870 |
Create WRED Profiles |
871 |
Apply a WRED profile to traffic |
871 |
Configure WRED for Storm Control |
871 |
Display Default and Configured WRED Profiles |
872 |
Display WRED Drop Statistics |
872 |
Allocating Bandwidth to Multicast Queues |
873 |
Pre-calculating Available QoS CAM Space |
874 |
Viewing QoS CAM Entries |
875 |
Routing Information Protocol |
877 |
Protocol Overview |
877 |
RIPv1 |
877 |
RIPv2 |
878 |
Implementation Information |
878 |
Configuration Information |
878 |
Configuration Task List for RIP |
879 |
Enable RIP globally |
879 |
Configure RIP on interfaces |
880 |
Control RIP routing updates |
881 |
Set send and receive version |
882 |
Generate a default route |
884 |
Summarize routes |
884 |
Control route metrics |
885 |
Debug RIP |
885 |
RIP Configuration Example |
886 |
Configuring RIPv2 on Core 2 |
887 |
Core 2 Output |
887 |
RIP Configuration on Core 3 |
889 |
Core 3 RIP Output |
889 |
RIP Configuration Summary |
891 |
Remote Monitoring |
893 |
Implementation |
893 |
Fault Recovery |
894 |
Set rmon alarm |
895 |
Configure an RMON event |
896 |
Configure RMON collection statistics |
897 |
Configure RMON collection history |
898 |
Enable an RMON MIB collection history group |
898 |
Rapid Spanning Tree Protocol |
899 |
Protocol Overview |
899 |
Configuring Rapid Spanning Tree |
899 |
Related Configuration Tasks |
899 |
Important Points to Remember |
900 |
Configure Interfaces for Layer 2 Mode |
900 |
Enable Rapid Spanning Tree Protocol Globally |
901 |
Add and Remove Interfaces |
904 |
Modify Global Parameters |
904 |
Modify Interface Parameters |
906 |
Configure an EdgePort |
906 |
Influence RSTP Root Selection |
908 |
SNMP Traps for Root Elections and Topology Changes |
908 |
Fast Hellos for Link State Detection |
909 |
Configure a Root Guard |
910 |
Configure a Loop Guard |
911 |
Displaying STP Guard Configuration |
912 |
Security |
913 |
AAA Accounting |
913 |
Configuration Task List for AAA Accounting |
914 |
Enable AAA Accounting |
914 |
Suppress AAA Accounting for null username sessions |
915 |
Configure Accounting of EXEC and privilege-level command usage |
915 |
Configure AAA Accounting for terminal lines |
915 |
Monitor AAA Accounting |
915 |
AAA Authentication |
917 |
Configuration Task List for AAA Authentication |
917 |
Configure login authentication for terminal lines |
917 |
Configure AAA Authentication login methods |
918 |
Enable AAA Authentication |
919 |
AAA Authentication—RADIUS |
919 |
Server-side configuration |
920 |
AAA Authorization |
920 |
Privilege Levels Overview |
920 |
Configuration Task List for Privilege Levels |
921 |
Configure a username and password |
921 |
Configure the enable password command |
922 |
Configure custom privilege levels |
922 |
Specify LINE mode password and privilege |
924 |
Enable and disabling privilege levels |
925 |
RADIUS |
925 |
RADIUS Authentication and Authorization |
926 |
Idle Time |
927 |
ACL |
927 |
Auto-command |
928 |
Set access to privilege levels through RADIUS |
928 |
Configuration Task List for RADIUS |
928 |
Define a aaa method list to be used for RADIUS |
928 |
Apply the method list to terminal lines |
929 |
Specify a RADIUS server host |
929 |
Set global communication parameters for all RADIUS server hosts |
930 |
Monitor RADIUS |
931 |
TACACS+ |
931 |
Configuration Task List for TACACS+ |
931 |
Choose TACACS+ as the Authentication Method |
931 |
Monitor TACACS+ |
933 |
TACACS+ Remote Authentication and Authorization |
933 |
Command Authorization |
935 |
Protection from TCP Tiny and Overlapping Fragment Attacks |
935 |
SCP and SSH |
935 |
Using SCP with SSH to copy a software image |
937 |
Secure Shell Authentication |
938 |
Important Points to Remember for SSH Authentication |
938 |
SSH Authentication by Password |
938 |
RSA Authentication of SSH |
939 |
Host-based SSH Authentication |
939 |
Client-based SSH Authentication |
940 |
Troubleshooting SSH |
941 |
Telnet |
941 |
Trace Lists |
942 |
Configuration Tasks for Trace Lists |
942 |
Creating a trace list |
942 |
Apply trace lists |
947 |
VTY Line and Access-Class Configuration |
948 |
VTY Line Local Authentication and Authorization |
948 |
VTY Line Remote Authentication and Authorization |
949 |
VTY MAC-SA Filter Support |
949 |
Service Provider Bridging |
951 |
VLAN Stacking |
951 |
Important Points to Remember |
952 |
Configure VLAN Stacking |
953 |
Related Configuration Tasks |
953 |
Create Access and Trunk Ports |
953 |
Enable VLAN-Stacking for a VLAN |
954 |
Configure the Protocol Type Value for the Outer VLAN Tag |
954 |
FTOS Options for Trunk Ports |
955 |
VLAN Stacking in Multi-vendor Networks |
956 |
VLAN Stacking with E-Series TeraScale Systems |
956 |
TPID 0x8100 on E-Series TeraScale Systems |
957 |
VLAN Stacking with E-Series ExaScale Systems |
958 |
VLAN Stacking with C-Series and S-Series |
959 |
VLAN Stacking Packet Drop Precedence |
962 |
Enable Drop Eligibility |
963 |
Honor the Incoming DEI Value |
963 |
Mark Egress Packets with a DEI Value |
964 |
Dynamic Mode CoS for VLAN Stacking |
965 |
Layer 2 Protocol Tunneling |
967 |
Implementation Information |
969 |
Enable Layer 2 Protocol Tunneling |
970 |
Specify a Destination MAC Address for BPDUs |
970 |
Rate-limit BPDUs on the E-Series |
970 |
Rate-limit BPDUs on the C-Series and S-Series |
971 |
Debug Layer 2 Protocol Tunneling |
971 |
Provider Backbone Bridging |
971 |
sFlow |
973 |
Overview |
973 |
Implementation Information |
974 |
Important Points to Remember |
974 |
Enable and Disable sFlow |
975 |
Enable and Disable on an Interface |
975 |
sFlow Show Commands |
976 |
Show sFlow Globally |
976 |
Show sFlow on an Interface |
976 |
Show sFlow on a Line Card |
977 |
Configure Collectors |
978 |
Polling Intervals |
978 |
Sampling Rate |
979 |
Sub-sampling |
979 |
Back-off Mechanism |
980 |
sFlow on LAG ports |
980 |
Extended sFlow |
980 |
Important Points to Remember |
982 |
Simple Network Management Protocol |
983 |
Protocol Overview |
983 |
Implementation Information |
983 |
Configure Simple Network Management Protocol |
983 |
Related Configuration Tasks |
984 |
Important Points to Remember |
984 |
Create a Community |
984 |
Read Managed Object Values |
985 |
Write Managed Object Values |
986 |
Configure Contact and Location Information using SNMP |
987 |
Subscribe to Managed Object Value Updates using SNMP |
988 |
Copy Configuration Files Using SNMP |
990 |
Manage VLANs using SNMP |
997 |
Create a VLAN |
997 |
Assign a VLAN Alias |
997 |
Display the Ports in a VLAN |
997 |
Add Tagged and Untagged Ports to a VLAN |
999 |
Enable and Disable a Port using SNMP |
1001 |
Fetch Dynamic MAC Entries using SNMP |
1001 |
Deriving Interface Indices |
1003 |
Monitor Port-channels |
1004 |
Troubleshooting SNMP Operation |
1005 |
SONET/SDH |
1007 |
Packet Over SONET (POS) Interfaces |
1007 |
Important Points to Remember |
1007 |
Configuring POS Interfaces |
1008 |
Encapsulation |
1008 |
Configuring Maximum Transmission Unit (MTU) |
1009 |
10GE WAN Physical Interface |
1009 |
SONET Alarm Reporting |
1010 |
SONET TRAP Example |
1013 |
SONET Syslog Example |
1013 |
Events that Bring Down a SONET Interface |
1013 |
SONET Port Recovery Mechanism |
1014 |
SONET MIB |
1015 |
SONET Traps |
1015 |
Stacking S-Series Switches |
1019 |
S-Series Stacking Overview |
1019 |
High Availability on S-Series Stacks |
1019 |
Management Unit Selection on S-Series Stacks |
1020 |
MAC Addressing on S-Series Stacks |
1021 |
Management Access on S-Series Stacks |
1025 |
Important Points to Remember |
1026 |
S-Series Stacking Installation Tasks |
1026 |
Create an S-Series Stack |
1026 |
Stacking Cable Redundancy |
1028 |
LED Status Indicators on an S-Series Stack |
1029 |
Add a Unit to an S-Series Stack |
1029 |
Remove a Unit from an S-Series Stack |
1032 |
Merge Two S-Series Stacks |
1034 |
Split an S-Series Stack |
1035 |
S-Series Stacking Configuration Tasks |
1035 |
Assign Unit Numbers to Units in an S-Series Stack |
1035 |
Create a Virtual Stack Unit on an S-Series Stack |
1036 |
Display Information about an S-Series Stack |
1036 |
Influence Management Unit Selection on an S-Series Stack |
1039 |
Manage Redundancy on an S-Series Stack |
1039 |
Reset a Unit on an S-Series Stack |
1039 |
Monitor an S-Series Stack with SNMP |
1040 |
Troubleshoot an S-Series Stack |
1040 |
Recover from Stack Link Flaps |
1040 |
Recover from a Card Problem State on an S-Series Stack |
1041 |
Recover from a Card Mismatch State on an S-Series Stack |
1041 |
Broadcast Storm Control |
1043 |
Storm Control Overview |
1043 |
Situations that Can Lead to Packet Storms |
1043 |
Implementation Information |
1044 |
Broadcast Storm Control |
1044 |
Layer 3 Broadcast Storm Control |
1044 |
Enable Broadcast Storm Control on an Interface |
1045 |
Enable Broadcast Storm Control on all Interfaces |
1045 |
Layer 2 Broadcast Storm Control |
1045 |
Multicast Storm Control |
1046 |
Storm Control Show Commands |
1046 |
Spanning Tree Protocol |
1049 |
Protocol Overview |
1049 |
Configuring Spanning Tree |
1049 |
Related Configuration Tasks |
1050 |
Important Points to Remember |
1050 |
Configuring Interfaces for Layer 2 Mode |
1051 |
Enabling Spanning Tree Protocol Globally |
1052 |
Adding an Interface to the Spanning Tree Group |
1054 |
Removing an Interface from the Spanning Tree Group |
1054 |
Modifying Global Parameters |
1055 |
Modifying Interface STP Parameters |
1056 |
Enabling PortFast |
1056 |
Preventing Network Disruptions with BPDU Guard |
1057 |
STP Root Selection |
1059 |
STP Root Guard |
1060 |
Root Guard Scenario |
1060 |
Root Guard Configuration |
1063 |
SNMP Traps for Root Elections and Topology Changes |
1063 |
Configuring Spanning Trees as Hitless |
1064 |
STP Loop Guard |
1064 |
Loop Guard Scenario |
1064 |
Loop Guard Configuration |
1067 |
Displaying STP Guard Configuration |
1068 |
System Time and Date |
1069 |
Network Time Protocol |
1069 |
Protocol Overview |
1070 |
Implementation Information |
1071 |
Configuring Network Time Protocol |
1071 |
Related Configuration Tasks |
1071 |
Enable NTP |
1072 |
Set the Hardware Clock with the Time Derived from NTP |
1073 |
Configure NTP broadcasts |
1073 |
Disable NTP on an interface |
1073 |
Configure a source IP address for NTP packets |
1074 |
Configure NTP authentication |
1075 |
FTOS Time and Date |
1077 |
Configuring time and date settings |
1077 |
Set the time and date for the switch hardware clock |
1078 |
Set the time and date for the switch software clock |
1078 |
Set the timezone |
1080 |
Set daylight savings time |
1080 |
Set Daylight Saving Time Once |
1081 |
Set Recurring Daylight Saving Time |
1082 |
Uplink Failure Detection (UFD) |
1085 |
Feature Description |
1085 |
How Uplink Failure Detection Works |
1086 |
UFD and NIC Teaming |
1087 |
Important Points to Remember |
1088 |
Configuring Uplink Failure Detection |
1089 |
Clearing a UFD-Disabled Interface |
1090 |
Displaying Uplink Failure Detection |
1092 |
Sample Configuration: Uplink Failure Detection |
1095 |
Upgrade Procedures |
1097 |
Find the upgrade procedures |
1097 |
Get Help with upgrades |
1097 |
VLAN |
1099 |
Virtual LAN Overview |
1099 |
Port-based VLANs |
1100 |
VLAN Tagging |
1101 |
Default VLAN |
1102 |
Implementation Information |
1102 |
Configuring VLANs |
1102 |
Related Configuration Tasks |
1102 |
Related Protocols and Topics |
1103 |
Create a VLAN |
1103 |
Assign Interfaces to VLANs |
1104 |
Enable Routing between VLANs |
1105 |
Use a Native VLAN on Trunk Ports |
1106 |
Change the Default VLAN ID |
1107 |
Set the Null VLAN as the Default VLAN |
1107 |
Enable VLAN Interface Counters |
1108 |
Virtual Routing and Forwarding (VRF) |
1109 |
VRF Configuration Notes |
1110 |
CAM Profiles |
1112 |
DHCP |
1114 |
IP addressing |
1114 |
VRF Configuration |
1114 |
Load the VRF CAM Profile |
1115 |
Enable VRF |
1115 |
Assign an Interface to a VRF |
1116 |
View VRF instance information |
1117 |
Connect an OSPF process to a VRF instance |
1118 |
Configure VRRP on a VRF Interface |
1118 |
Sample VRF Configuration |
1118 |
Virtual Router Redundancy Protocol (VRRP) |
1127 |
VRRP Overview |
1127 |
VRRP Benefits |
1129 |
VRRP Implementation |
1129 |
VRRP version 3 |
1130 |
VRRP Configuration |
1131 |
Create a Virtual Router |
1131 |
Assign Virtual IP addresses |
1132 |
Set VRRP Group (Virtual Router) Priority |
1135 |
Configure VRRP Authentication |
1136 |
Disable Preempt |
1137 |
Change the Advertisement interval |
1138 |
Track an Interface or Object |
1139 |
VRRP on a VRF Interface |
1142 |
Sample Configurations |
1144 |
VRRP for IPv4 Configuration |
1144 |
VRRP for IPv6 Configuration |
1146 |
VRRP in VRF Configuration |
1149 |
Non-VLAN Scenario |
1149 |
VLAN Scenario |
1151 |
Displaying a VRRP in VRF Configuration |
1154 |
FTOS XML Feature |
1155 |
XML Functionality |
1155 |
The Form of XML Requests and Responses |
1156 |
Request Format |
1156 |
Response Format |
1157 |
The Configuration Request and Response |
1157 |
The “Show” Request and Response |
1158 |
Configuration Task List |
1158 |
Run an FTOS XML session |
1159 |
Configure a standard ACL |
1161 |
Configure an extended ACL |
1161 |
Apply an IP ACL |
1161 |
Create an egress ACL and apply rules to the ACL |
1162 |
XML Error Conditions and Reporting |
1162 |
Summary of XML Limitations |
1162 |
Error Messages |
1162 |
Examples of Error Conditions |
1163 |
XML parsing error |
1163 |
XML schema error |
1164 |
XML command error |
1164 |
XML application error |
1164 |
Using display xml as a Pipe Option |
1165 |
C-Series Debugging and Diagnostics |
1167 |
Switch Fabric overview |
1168 |
Switch Fabric link monitoring |
1168 |
Runtime hardware status monitoring |
1170 |
Inter-CPU timeouts |
1172 |
Bootup diagnostics |
1173 |
Recognizing bootup failure |
1173 |
Troubleshoot bootup failure |
1173 |
Environmental monitoring |
1173 |
Recognize an overtemperature condition |
1174 |
Troubleshoot an overtemperature condition |
1174 |
Recognize an under-voltage condition |
1175 |
Troubleshoot an under-voltage condition |
1175 |
Trace logs |
1175 |
Automatic trace log updates |
1176 |
Save a hardware log to a file on the flash |
1176 |
Manual reload messages |
1177 |
CP software exceptions |
1178 |
Command history |
1178 |
Clearing the command history |
1179 |
Advanced debugging commands |
1179 |
debug commands |
1179 |
show hardware commands |
1180 |
Recognizing a High CPU Condition |
1181 |
Troubleshoot a high CPU condition |
1181 |
Monitoring hardware components with SNMP |
1182 |
Hardware watchdog timer |
1183 |
Offline diagnostics |
1184 |
Configuration task list |
1184 |
Important points to remember |
1184 |
Take the line card offline |
1185 |
Run offline diagnostics |
1185 |
View offline diagnostic test results |
1185 |
Bring the line card online |
1188 |
Buffer tuning |
1189 |
When to tune buffers |
1190 |
Buffer tuning commands |
1191 |
Use a pre-defined buffer profile |
1194 |
Sample configuration |
1194 |
E-Series TeraScale Debugging and Diagnostics |
1197 |
Overview |
1198 |
System health checks |
1198 |
Runtime dataplane loopback check |
1198 |
Disable RPM-SFM walk |
1200 |
RPM-SFM bring down |
1201 |
Manual loopback test |
1201 |
Power the SFM on/off |
1202 |
Reset the SFM |
1204 |
SFM channel monitoring |
1204 |
Respond to PCDFO events |
1205 |
Inter-CPU timeouts |
1206 |
Debug commands |
1208 |
Hardware watchdog timer |
1208 |
Show hardware commands |
1209 |
Offline diagnostics |
1209 |
Important points to remember |
1210 |
Offline configuration task list |
1210 |
Parity error detection and correction |
1211 |
Enable parity error correction |
1211 |
Recognize a transient parity error |
1212 |
Recognize a non-recoverable parity error |
1213 |
Trace logs |
1214 |
Buffer full condition |
1214 |
Manual reload condition |
1215 |
CP software exceptions |
1215 |
View trace buffer content |
1215 |
Write the contents of the trace buffer |
1216 |
Clear the trace buffer |
1216 |
Recognize a high CPU condition |
1217 |
Configure an action upon a hardware error |
1217 |
Buffer traffic manager hardware errors |
1217 |
Flexible packet classifier hardware errors |
1218 |
Line card MAC hardware errors |
1218 |
Core dumps |
1218 |
RPM core dumps |
1218 |
Line card core dumps |
1219 |
S-Series Debugging and Diagnostics |
1221 |
Offline diagnostics |
1221 |
Important Points to Remember |
1222 |
Running Offline Diagnostics |
1222 |
Trace logs |
1225 |
Auto Save on Crash or Rollover |
1226 |
Hardware watchdog timer |
1226 |
Buffer tuning |
1226 |
Deciding to tune buffers |
1228 |
Buffer tuning commands |
1229 |
Using a pre-defined buffer profile |
1231 |
Sample buffer profile configuration |
1231 |
Troubleshooting packet loss |
1232 |
Displaying Drop Counters |
1232 |
Dataplane Statistics |
1234 |
Displaying Stack Port Statistics |
1236 |
Displaying Stack Member Counters |
1236 |
Application core dumps |
1237 |
Mini core dumps |
1237 |
Standards Compliance |
1239 |
IEEE Compliance |
1239 |
RFC and I-D Compliance |
1240 |
General Internet Protocols |
1240 |
General IPv4 Protocols |
1241 |
General IPv6 Protocols |
1242 |
Border Gateway Protocol (BGP) |
1243 |
Open Shortest Path First (OSPF) |
1243 |
Intermediate System to Intermediate System (IS-IS) |
1244 |
Routing Information Protocol (RIP) |
1244 |
Multiprotocol Label Switching (MPLS) |
1245 |
Multicast |
1246 |
Network Management |
1247 |
MIB Location |
1251 |