Section |
Page |
About this Guide |
23 |
Objectives |
23 |
Audience |
23 |
Conventions |
24 |
Information Symbols |
24 |
Related Documents |
24 |
Configuration Fundamentals |
25 |
Accessing the Command Line |
25 |
CLI Modes |
26 |
Navigating CLI Modes |
27 |
The do Command |
30 |
Undoing Commands |
30 |
Obtaining Help |
31 |
Entering and Editing Commands |
31 |
Command History |
32 |
Filtering show Command Outputs |
33 |
Multiple Users in Configuration mode |
34 |
Getting Started |
35 |
Console access |
35 |
Serial console |
36 |
Accessing the RJ-45 console port with a DB-9 adapter |
36 |
USB-B console |
37 |
Default Configuration |
39 |
Configure a Host Name |
40 |
Access the System Remotely |
40 |
Access the C-Series and E-Series and the S60 Remotely |
40 |
Configure the Management Port IP Address |
41 |
Configure a Management Route |
41 |
Configure a Username and Password |
41 |
Access the S-Series Remotely |
42 |
Configure the Enable Password |
43 |
Configuration File Management |
43 |
Copy Files to and from the System |
44 |
Important Points to Remember |
44 |
Save the Running-configuration |
45 |
View Files |
46 |
View Configuration Files |
47 |
File System Management |
48 |
View command history |
49 |
Upgrading and Downgrading FTOS |
49 |
Management |
51 |
Configure Privilege Levels |
51 |
Create a Custom Privilege Level |
51 |
Removing a command from EXEC mode |
52 |
Move a command from EXEC privilege mode to EXEC mode |
52 |
Allow Access to CONFIGURATION mode commands |
52 |
Allow Access to INTERFACE, LINE, ROUTE-MAP, and ROUTER mode |
52 |
Apply a Privilege Level to a Username |
55 |
Apply a Privilege Level to a Terminal Line |
55 |
Configure Logging |
55 |
Log Messages in the Internal Buffer |
56 |
Configuration Task List for System Log Management |
56 |
Disable System Logging |
56 |
Send System Messages to a Syslog Server |
57 |
Configure a Unix System as a Syslog Server |
57 |
Change System Logging Settings |
57 |
Display the Logging Buffer and the Logging Configuration |
58 |
Configure a UNIX logging facility level |
60 |
Synchronize log messages |
61 |
Enable timestamp on syslog messages |
61 |
File Transfer Services |
62 |
Configuration Task List for File Transfer Services |
62 |
Enable FTP server |
63 |
Configure FTP server parameters |
63 |
Configure FTP client parameters |
64 |
Terminal Lines |
64 |
Deny and Permit Access to a Terminal Line |
64 |
Configure Login Authentication for Terminal Lines |
65 |
Time out of EXEC Privilege Mode |
66 |
Telnet to Another Network Device |
67 |
Lock CONFIGURATION mode |
68 |
Viewing the Configuration Lock Status |
69 |
Recovering from a Forgotten Password on the S60 |
69 |
Recovering from a Forgotten Enable Password on the S60 |
70 |
Recovering from a Failed Start on the S60 |
71 |
802.1ag |
73 |
Ethernet CFM |
73 |
Maintenance Domains |
74 |
Maintenance Points |
74 |
Maintenance End Points |
75 |
Implementation Information |
76 |
Configure CFM |
76 |
Related Configuration Tasks |
76 |
Enable Ethernet CFM |
77 |
Create a Maintenance Domain |
77 |
Create a Maintenance Association |
78 |
Create Maintenance Points |
78 |
Create a Maintenance End Point |
78 |
Create a Maintenance Intermediate Point |
79 |
MP Databases |
79 |
MP Database Persistence |
80 |
Continuity Check Messages |
81 |
Enable CCM |
82 |
Enable Cross-checking |
82 |
Loopback Message and Response |
82 |
Linktrace Message and Response |
82 |
Link Trace Cache |
83 |
Enable CFM SNMP Traps. |
84 |
Display Ethernet CFM Statistics |
85 |
802.1X |
87 |
Protocol Overview |
87 |
The Port-authentication Process |
88 |
EAP over RADIUS |
89 |
RADIUS Attributes for 802.1 Support |
90 |
Configuring 802.1X |
91 |
Related Configuration Tasks |
91 |
Important Points to Remember |
91 |
Enabling 802.1X |
91 |
Configuring Request Identity Re-transmissions |
93 |
Configuring a Quiet Period after a Failed Authentication |
94 |
Forcibly Authorizing or Unauthorizing a Port |
95 |
Re-authenticating a Port |
96 |
Periodic Re-authentication |
96 |
Configuring Timeouts |
97 |
Dynamic VLAN Assignment with Port Authentication |
98 |
Guest and Authentication-fail VLANs |
99 |
Configuring a Guest VLAN |
100 |
Configuring an Authentication-fail VLAN |
100 |
Access Control Lists (ACL), Prefix Lists, and Route-maps |
103 |
Overview |
103 |
IP Access Control Lists (ACLs) |
104 |
CAM Profiling, CAM Allocation, and CAM Optimization |
104 |
CAM Profiling |
105 |
User Configurable CAM Allocation |
105 |
CAM optimization |
106 |
Test CAM Usage |
106 |
Implementing ACLs on FTOS |
107 |
ACLs and VLANs |
107 |
ACL Optimization |
107 |
Determine the order in which ACLs are used to classify traffic |
107 |
IP Fragment Handling |
108 |
IP fragments ACL examples |
109 |
Layer 4 ACL rules examples |
109 |
Configure a standard IP ACL |
110 |
Configure an extended IP ACL |
113 |
Configure filters with sequence number |
113 |
Configure filters without sequence number |
115 |
Configuring Layer 2 and Layer 3 ACLs on an Interface |
116 |
Assign an IP ACL to an Interface |
117 |
Counting ACL Hits |
118 |
Configuring Ingress ACLs |
118 |
Configuring Egress ACLs |
119 |
Egress Layer 3 ACL Lookup for Control-plane IP Traffic |
120 |
Configuring ACLs to Loopback |
121 |
Applying an ACL on Loopback Interfaces |
121 |
IP Prefix Lists |
122 |
Implementation Information |
123 |
Configuration Task List for Prefix Lists |
123 |
Configure a prefix list |
123 |
Use a prefix list for route redistribution |
126 |
ACL Resequencing |
127 |
Resequencing an ACL or Prefix List |
128 |
Route Maps |
129 |
Implementation Information |
129 |
Important Points to Remember |
129 |
Configuration Task List for Route Maps |
130 |
Create a route map |
130 |
Configure route map filters |
132 |
Configure a route map for route redistribution |
135 |
Configure a route map for route tagging |
136 |
Continue clause |
136 |
Border Gateway Protocol IPv4 (BGPv4) |
137 |
Protocol Overview |
138 |
Autonomous Systems (AS) |
138 |
Sessions and Peers |
140 |
Establishing a session |
140 |
Peer Groups |
141 |
Route Reflectors |
141 |
Confederations |
142 |
Communities |
142 |
BGP Attributes |
143 |
Best Path Selection Criteria |
143 |
Best Path selection details |
144 |
Weight |
146 |
Local Preference |
146 |
Multi-Exit Discriminators (MEDs) |
146 |
Origin |
147 |
AS Path |
148 |
Next Hop |
149 |
Multiprotocol BGP |
149 |
Implementing BGP with FTOS |
149 |
Advertise IGP cost as MED for redistributed routes |
149 |
Ignore Router-ID for some best-path calculations |
150 |
4-Byte AS Numbers |
150 |
AS4 Number Representation |
151 |
Dynamic AS Number Notation application |
152 |
AS Number Migration |
153 |
BGP4 Management Information Base (MIB) |
155 |
Important Points to Remember |
155 |
Configuration Information |
156 |
BGP Configuration |
157 |
Defaults |
157 |
Configuration Task List for BGP |
157 |
Enable BGP |
158 |
Configure AS4 Number Representations |
162 |
Configure Peer Groups |
164 |
BGP fast fall-over |
167 |
Configure passive peering |
170 |
Maintain existing AS numbers during an AS migration |
171 |
Allow an AS number to appear in its own AS path |
172 |
Enable graceful restart |
173 |
Filter on an AS-Path attribute |
175 |
Redistribute routes |
178 |
Configure IP community lists |
179 |
Manipulate the COMMUNITY attribute |
182 |
Change MED attribute |
183 |
Change LOCAL_PREFERENCE attribute |
184 |
Change NEXT_HOP attribute |
185 |
Change WEIGHT attribute |
185 |
Enable multipath |
186 |
Filter BGP routes |
186 |
Configure BGP route reflectors |
189 |
Aggregate routes |
190 |
Configure BGP confederations |
190 |
Enable route flap dampening |
191 |
Change BGP timers |
195 |
BGP neighbor soft-reconfiguration |
195 |
Route map continue |
197 |
MBGP Configuration |
198 |
BGP Regular Expression Optimization |
199 |
Debugging BGP |
199 |
Storing Last and Bad PDUs |
200 |
Capturing PDUs |
201 |
PDU Counters |
203 |
Sample Configurations |
203 |
Bare Metal Provisioning 2.0 |
213 |
Prerequisites |
213 |
Restrictions |
214 |
Overview |
214 |
Jumpstart mode |
215 |
DHCP Server |
215 |
DHCP Configuration |
215 |
MAC-Based IP assignment |
216 |
DHCP Retry Mechanism |
217 |
File Server |
218 |
Domain Name Server |
218 |
Switch boot and set-up behavior in Jumpstart Mode |
218 |
Content Addressable Memory |
221 |
Content Addressable Memory |
221 |
CAM Profiles |
222 |
Microcode |
224 |
CAM Profiling for ACLs |
224 |
Boot Behavior |
225 |
When to Use CAM Profiling |
227 |
Important Points to Remember |
227 |
Select CAM Profiles |
227 |
CAM Allocation |
228 |
Test CAM Usage |
229 |
View CAM Profiles |
230 |
View CAM-ACL settings |
230 |
View CAM Usage |
231 |
Configure IPv4Flow Sub-partitions |
232 |
Configure Ingress Layer 2 ACL Sub-partitions |
234 |
Return to the Default CAM Configuration |
236 |
CAM Optimization |
237 |
Applications for CAM Profiling |
237 |
LAG Hashing |
237 |
LAG Hashing based on Bidirectional Flow |
238 |
CAM profile for the VLAN ACL group feature |
238 |
Troubleshoot CAM Profiling |
238 |
CAM Profile Mismatches |
238 |
QoS CAM Region Limitation |
239 |
Dynamic Host Configuration Protocol (DHCP) |
241 |
Protocol Overview |
241 |
DHCP Packet Format and Options |
242 |
Assigning an IP Address using DHCP |
243 |
Implementation Information |
244 |
Configuration Tasks |
244 |
Configure the System to be a DHCP Server |
245 |
Configuration Tasks |
245 |
Related Configuration Tasks |
245 |
Configure the Server for Automatic Address Allocation |
246 |
Create an IP Address Pool |
246 |
Exclude Addresses from the Address Pool |
246 |
Specify an Address Lease Time |
246 |
Specify a Default Gateway |
247 |
Enable DHCP Server |
247 |
Configure a Method of Hostname Resolution |
248 |
Address Resolution using DNS |
248 |
Address Resolution using NetBIOS WINS |
248 |
Create Manual Binding Entries |
249 |
Debug DHCP server |
249 |
DHCP Clear Commands |
249 |
Configure the System to be a Relay Agent |
250 |
Configure the System for User Port Stacking |
251 |
Configure Secure DHCP |
251 |
Option 82 |
251 |
DHCP Snooping |
252 |
Enable DCHP snooping |
253 |
Add a static entry in the binding table |
253 |
Clear the binding table |
253 |
Display the contents of the binding table |
253 |
Drop DHCP packets on snooped VLANs only |
254 |
Dynamic ARP Inspection |
255 |
Bypass the ARP Inspection |
257 |
Source Address Validation |
257 |
IP Source Address Validation |
257 |
DHCP MAC Source Address Validation |
258 |
IP+MAC Source Address Validation |
258 |
Force10 Resilient Ring Protocol |
261 |
Protocol Overview |
261 |
Ring Status |
262 |
Ring Checking |
262 |
Ring Failure |
263 |
Ring Restoration |
263 |
Multiple FRRP Rings |
263 |
Member VLAN Spanning Two Rings Connected by One Switch |
263 |
Important FRRP Points |
264 |
Important FRRP Concepts |
265 |
Implementing FRRP |
266 |
FRRP Configuration |
267 |
Create the FRRP group |
267 |
Configure the Control VLAN |
267 |
Configure and add the Member VLANs |
269 |
Set FRRP Timers |
270 |
Clear FRRP counters |
270 |
Show FRRP configuration |
271 |
Show FRRP information |
271 |
Troubleshooting FRRP |
271 |
Configuration Checks |
271 |
Sample Configuration and Topology |
271 |
GARP VLAN Registration Protocol |
275 |
Protocol Overview |
275 |
Important Points to Remember |
275 |
Configuring GVRP |
276 |
Related Configuration Tasks |
277 |
Enabling GVRP Globally |
277 |
Enabling GVRP on a Layer 2 Interface |
278 |
Configuring GVRP Registration |
278 |
Configuring a GARP Timer |
279 |
Internet Group Management Protocol |
281 |
IGMP Implementation Information |
281 |
IGMP Protocol Overview |
282 |
IGMP version 2 |
282 |
Joining a Multicast Group |
282 |
Leaving a Multicast Group |
283 |
IGMP version 3 |
283 |
Joining and Filtering Groups and Sources |
284 |
Leaving and Staying in Groups |
285 |
Configuring IGMP |
286 |
Related Configuration Tasks |
286 |
Viewing IGMP Enabled Interfaces |
286 |
Selecting an IGMP Version |
287 |
Viewing IGMP Groups |
287 |
Adjusting Timers |
288 |
Adjusting Query and Response Timers |
288 |
Adjusting the IGMP Querier Timeout Value |
288 |
Configuring a Static IGMP Group |
289 |
Enabling IGMP Immediate-leave |
289 |
IGMP Snooping |
290 |
IGMP Snooping Implementation Information |
290 |
Configuring IGMP Snooping |
290 |
Related Configuration Tasks |
290 |
Enabling IGMP Immediate-leave |
290 |
Disabling Multicast Flooding |
291 |
Specifying a Port as Connected to a Multicast Router |
291 |
Configuring the Switch as Querier |
291 |
Adjusting the Last Member Query Interval |
292 |
Fast Convergence after MSTP Topology Changes |
292 |
Designating a Multicast Router Interface |
292 |
Interfaces |
293 |
Basic Interface Configuration: |
293 |
Advanced Interface Configuration: |
293 |
Interface Types |
294 |
View Basic Interface Information |
294 |
Enable a Physical Interface |
296 |
Physical Interfaces |
297 |
Configuration Task List for Physical Interfaces |
297 |
Overview of Layer Modes |
298 |
Configure Layer 2 (Data Link) Mode |
298 |
Configure Layer 3 (Network) Mode |
299 |
Management Interfaces |
300 |
Configure Management Interfaces on the E-Series and C-Series and on the S60 |
300 |
Important Things to Remember — virtual-ip |
301 |
Configure Management Interfaces on the S-Series |
302 |
VLAN Interfaces |
303 |
Loopback Interfaces |
304 |
Null Interfaces |
304 |
Port Channel Interfaces |
305 |
Port channel definition and standards |
305 |
Port channel benefits |
305 |
Port channel implementation |
305 |
10/100/1000 Mbps interfaces in port channels |
306 |
Configuration task list for port channel interfaces |
307 |
Create a port channel |
307 |
Add a physical interface to a port channel |
308 |
Reassign an interface to a new port channel |
310 |
Configure the minimum oper up links in a port channel (LAG) |
311 |
Add or remove a port channel from a VLAN |
311 |
Assign an IP address to a port channel |
312 |
Delete or disable a port channel |
312 |
Load balancing through port channels |
313 |
E-Series load-balancing |
313 |
IPv4, IPv6, and non-IP traffic handling on the E-Series |
315 |
C-Series and S-Series load-balancing |
315 |
Hash algorithm |
316 |
Bulk Configuration |
317 |
Interface Range |
317 |
Bulk Configuration Examples |
318 |
Create a single-range |
318 |
Create a multiple-range |
318 |
Exclude duplicate entries |
318 |
Exclude a smaller port range |
318 |
Overlap port ranges |
319 |
Commas |
319 |
Add ranges |
319 |
Interface Range Macros |
319 |
Define the Interface Range |
320 |
Choose an Interface-range Macro |
320 |
Monitor and Maintain Interfaces |
320 |
Maintenance using TDR |
322 |
Link Debounce Timer |
323 |
Important Points to Remember about Link Debounce Timer |
323 |
Assign a debounce time to an interface |
324 |
Show debounce times in an interface |
324 |
Disable ports when one only SFM is available (E300 only) |
324 |
Disable port on one SFM |
325 |
Link Dampening |
325 |
Important Points to Remember |
325 |
Enable Link Dampening |
326 |
Clear Dampening Counters |
326 |
Link Dampening Support for XML |
327 |
Configure MTU size on an Interface |
327 |
Ethernet Pause Frames |
327 |
Threshold Settings |
328 |
Enable Pause Frames |
329 |
Configure MTU Size on an Interface |
330 |
Port-pipes |
331 |
Auto-Negotiation on Ethernet Interfaces |
332 |
Setting speed and duplex mode of Ethernet Interfaces |
332 |
Setting Auto-Negotiation Options |
333 |
Adjust the keepalive timer |
334 |
View Advanced Interface Information |
334 |
Display Only Configured Interfaces |
334 |
Configure Interface Sampling Size |
335 |
Dynamic Counters |
336 |
Clear interface counters |
338 |
IPv4 Addressing |
339 |
IP Addresses |
339 |
Implementation Information |
340 |
Configuration Task List for IP Addresses |
340 |
Assign IP addresses to an interface |
340 |
Configure static routes |
342 |
Configure static routes for the management interface |
343 |
Directed Broadcast |
344 |
Resolution of Host Names |
344 |
Enable dynamic resolution of host names |
344 |
Specify local system domain and a list of domains |
345 |
DNS with traceroute |
346 |
ARP |
346 |
Configuration Task List for ARP |
347 |
Configure static ARP entries |
347 |
Enable Proxy ARP |
348 |
Clear ARP cache |
348 |
ARP Learning via Gratuitous ARP |
349 |
ARP Learning via ARP Request |
350 |
Configurable ARP Retries |
351 |
ICMP |
351 |
Configuration Task List for ICMP |
351 |
Enable ICMP unreachable messages |
351 |
Enable ICMP redirects |
352 |
UDP Helper |
352 |
Configuring UDP Helper |
352 |
Important Points to Remember about UDP Helper |
353 |
Enabling UDP Helper |
353 |
Configuring a Broadcast Address |
353 |
Configurations Using UDP Helper |
354 |
UDP Helper with Broadcast-all Addresses |
354 |
UDP Helper with Subnet Broadcast Addresses |
355 |
UDP Helper with Configured Broadcast Addresses |
356 |
UDP Helper with No Configured Broadcast Addresses |
356 |
Troubleshooting UDP Helper |
357 |
IPv6 Addressing |
359 |
Protocol Overview |
359 |
Extended Address Space |
360 |
Stateless Autoconfiguration |
360 |
IPv6 Headers |
361 |
Version (4 bits) |
361 |
Traffic Class (8 bits) |
362 |
Flow Label (20 bits) |
362 |
Payload Length (16 bits) |
362 |
Next Header (8 bits) |
362 |
Hop Limit (8 bits) |
363 |
Source Address (128 bits) |
363 |
Destination Address (128 bits) |
363 |
Extension Header fields |
363 |
Hop-by-Hop Options header |
364 |
Addressing |
364 |
Link-local Addresses |
365 |
Static and Dynamic Addressing |
365 |
Implementing IPv6 with FTOS |
366 |
ICMPv6 |
368 |
Path MTU Discovery |
368 |
IPv6 Neighbor Discovery |
369 |
IPv6 Neighbor Discovery of MTU packets |
370 |
QoS for IPv6 |
370 |
IPv6 Multicast |
370 |
SSH over an IPv6 Transport |
371 |
Configuration Task List for IPv6 |
371 |
Change your CAM-Profile on an E-Series system |
372 |
Adjust your CAM-Profile on an C-Series or S-Series |
373 |
Assign an IPv6 Address to an Interface |
374 |
Assign a Static IPv6 Route |
375 |
Telnet with IPv6 |
375 |
SNMP over IPv6 |
376 |
Show IPv6 Information |
376 |
Show an IPv6 Interface |
377 |
Show IPv6 Routes |
378 |
Show the Running-Configuration for an Interface |
380 |
Clear IPv6 Routes |
380 |
iSCSI Optimization |
383 |
iSCSI Optimization Overview |
383 |
Detection and Auto-configuration for Dell EqualLogic Arrays |
384 |
Detection and Port Configuration for Dell Compellent Arrays |
385 |
Auto-detection of Dell Compellent |
386 |
Enabling and Disabling iSCSI Optimization |
386 |
Default iSCSI Optimization Values |
387 |
iSCSI Optimization Prerequisites |
387 |
Configuring iSCSI Optimization |
387 |
Displaying iSCSI Optimization Information |
387 |
Link Aggregation Control Protocol |
389 |
Introduction to Dynamic LAGs and LACP |
389 |
Important Points to Remember |
390 |
LACP modes |
390 |
LACP Configuration Commands |
391 |
LACP Configuration Tasks |
391 |
Create a LAG |
391 |
Configure the LAG interfaces as dynamic |
392 |
Set the LACP long timeout |
393 |
Monitor and Debugging LACP |
393 |
Shared LAG State Tracking |
394 |
Configure Shared LAG State Tracking |
394 |
Important Points about Shared LAG State Tracking |
396 |
Configure LACP as Hitless |
396 |
LACP Basic Configuration Example |
397 |
Configuring a LAG on ALPHA |
398 |
Summary of the configuration on ALPHA |
401 |
Summary of the configuration on BRAVO |
402 |
Layer 2 |
407 |
Managing the MAC Address Table |
407 |
Clear the MAC Address Table |
407 |
Set the Aging Time for Dynamic Entries |
408 |
Set the Aging Time for Dynamic Entries on a VLAN |
408 |
Configure a Static MAC Address |
408 |
Display the MAC Address Table |
409 |
MAC Learning Limit |
409 |
mac learning-limit dynamic |
410 |
mac learning-limit station-move |
410 |
mac learning-limit no-station-move |
411 |
Learning Limit Violation Actions |
411 |
Station Move Violation Actions |
411 |
Recovering from Learning Limit and Station Move Violations |
412 |
Per-VLAN MAC Learning Limit |
412 |
NIC Teaming |
414 |
MAC Move Optimization |
415 |
Microsoft Clustering |
415 |
Default Behavior |
416 |
Configuring the Switch for Microsoft Server Clustering |
417 |
Enable and Disable VLAN Flooding |
417 |
Configuring Redundant Pairs |
418 |
Important Points about Configuring Redundant Pairs |
418 |
Restricting Layer 2 Flooding |
420 |
Far-end Failure Detection |
420 |
FEFD state changes |
421 |
Important Points to Remember |
422 |
Configuring FEFD |
422 |
Enable FEFD Globally |
422 |
Enable FEFD on an Interface |
423 |
Debugging FEFD |
424 |
During an RPM Failover |
425 |
Link Layer Discovery Protocol |
427 |
802.1AB (LLDP) Overview |
427 |
Protocol Data Units |
427 |
Optional TLVs |
428 |
Management TLVs |
429 |
Organizationally Specific TLVs |
429 |
IEEE Organizationally Specific TLVs |
429 |
TIA-1057 (LLDP-MED) Overview |
430 |
TIA Organizationally Specific TLVs |
431 |
LLDP-MED Capabilities TLV |
432 |
LLDP-MED Network Policies TLV |
433 |
Extended Power via MDI TLV |
434 |
Configuring LLDP |
434 |
Related Configuration Tasks |
434 |
Important Points to Remember |
435 |
LLDP Compatibility |
435 |
CONFIGURATION versus INTERFACE Configurations |
435 |
Enabling LLDP |
436 |
Disabling and Undoing LLDP |
436 |
Advertising TLVs |
436 |
Viewing the LLDP Configuration |
438 |
Viewing Information Advertised by Adjacent LLDP Agents |
438 |
Configuring LLDPDU Intervals |
439 |
Configuring Transmit and Receive Mode |
440 |
Configuring a Time to Live |
441 |
Debugging LLDP |
442 |
Relevant Management Objects |
443 |
Multiple Spanning Tree Protocol |
449 |
Protocol Overview |
449 |
Implementation Information |
450 |
Configure Multiple Spanning Tree Protocol |
450 |
Related Configuration Tasks |
450 |
Enable Multiple Spanning Tree Globally |
451 |
Add and Remove Interfaces |
451 |
Create Multiple Spanning Tree Instances |
451 |
Influence MSTP Root Selection |
453 |
Interoperate with Non-FTOS Bridges |
453 |
Modify Global Parameters |
454 |
Modify Interface Parameters |
455 |
Configure an EdgePort |
456 |
Flush MAC Addresses after a Topology Change |
457 |
MSTP Sample Configurations |
458 |
Debugging and Verifying MSTP Configuration |
462 |
Multicast Features |
465 |
Implementation Information |
465 |
Enable IP Multicast |
465 |
Multicast with ECMP |
466 |
Implementation Information |
467 |
First Packet Forwarding for Lossless Multicast |
467 |
Multicast Policies |
468 |
IPv4 Multicast Policies |
468 |
Limit the Number of Multicast Routes |
468 |
Prevent a Host from Joining a Group |
469 |
Rate Limit IGMP Join Requests |
471 |
Prevent a PIM Router from Forming an Adjacency |
471 |
Prevent a Source from Registering with the RP |
471 |
Prevent a PIM Router from Processing a Join |
473 |
IPv6 Multicast Policies |
473 |
Limit the Number of IPv6 Multicast Routes |
473 |
Prevent an IPv6 Neighbor from Forming an Adjacency |
474 |
Prevent an IPv6 Source from Registering with the RP |
474 |
Prevent an IPv6 PIM Router from Processing an IPv6 Join |
474 |
Multicast Traceroute |
475 |
Multicast Quality of Service |
475 |
Optimize the E-Series for Multicast Traffic |
476 |
Allocate More Buffer Memory for Multicast WRED |
476 |
Allocate More Bandwidth to Multicast using Egress WFQ |
476 |
Tune the Central Scheduler for Multicast |
476 |
Open Shortest Path First (OSPFv2 and OSPFv3) |
479 |
Protocol Overview |
480 |
Autonomous System (AS) Areas |
480 |
Area Types |
481 |
Networks and Neighbors |
482 |
Router Types |
482 |
Backbone Router (BR) |
483 |
Area Border Router (ABR) |
484 |
Autonomous System Border Router (ASBR) |
484 |
Internal Router (IR) |
484 |
Designated and Backup Designated Routers |
484 |
Link-State Advertisements (LSAs) |
485 |
Virtual Links |
486 |
Router Priority and Cost |
486 |
Implementing OSPF with FTOS |
487 |
Graceful Restart |
488 |
Grace Period |
488 |
Fast Convergence (OSPFv2, IPv4 only) |
488 |
Multi-Process OSPF (OSPFv2, IPv4 only) |
488 |
Processing SNMP and Sending SNMP Traps |
489 |
RFC-2328 Compliant OSPF Flooding |
489 |
OSPF ACK Packing |
490 |
OSPF Adjacency with Cisco Routers |
490 |
Configuration Information |
491 |
Configuration Task List for OSPFv2 (OSPF for IPv4) |
491 |
Enable OSPFv2 |
492 |
Enable Multi-Process OSPF |
494 |
Assign an OSPFv2 area |
495 |
Enable OSPFv2 on interfaces |
495 |
Configure stub areas |
497 |
Enable passive interfaces |
498 |
Enable fast-convergence |
500 |
Change OSPFv2 parameters on interfaces |
501 |
Enable OSPFv2 authentication |
503 |
Enable graceful restart |
503 |
Configure virtual links |
505 |
Filter routes |
507 |
Redistribute routes |
508 |
Troubleshooting OSPFv2 |
509 |
Configuration Task List for OSPFv3 (OSPF for IPv6) |
511 |
Enable IPv6 Unicast Routing |
512 |
Assign IPv6 addresses on an interface |
512 |
Assign Area ID on interface |
512 |
Assign OSPFv3 Process ID and Router ID Globally |
513 |
Configure stub areas |
513 |
Configure Passive-Interface |
514 |
Redistribute routes |
515 |
Configure a default route |
515 |
Troubleshooting OSPFv3 |
516 |
Sample Configurations for OSPFv2 |
517 |
Basic OSPFv2 Router Topology |
517 |
PIM Sparse-Mode |
519 |
Implementation Information |
519 |
Protocol Overview |
519 |
Requesting Multicast Traffic |
520 |
Refusing Multicast Traffic |
520 |
Sending Multicast Traffic |
520 |
Important Points to Remember |
521 |
Configure PIM-SM |
521 |
Related Configuration Tasks |
521 |
Enable PIM-SM |
522 |
Configurable S,G Expiry Timers |
523 |
Configure a Static Rendezvous Point |
524 |
Override Bootstrap Router Updates |
525 |
Configure a Designated Router |
525 |
Create Multicast Boundaries and Domains |
526 |
PIM-SM Graceful Restart |
526 |
Monitoring PIM |
527 |
PIM Source-Specific Mode |
529 |
Implementation Information |
531 |
Important Points to Remember |
531 |
Configure PIM-SM |
531 |
Related Configuration Tasks |
531 |
Enable PIM-SSM |
532 |
Use PIM-SSM with IGMP version 2 Hosts |
532 |
Power over Ethernet |
537 |
Configuring Power over Ethernet |
538 |
Related Configuration Tasks |
539 |
Enabling PoE on a Port |
539 |
Manage Ports using Power Priority and the Power Budget |
541 |
Determine the Power Priority for a Port |
541 |
power-inline mode |
542 |
Extended Power-via-MDI TLV |
543 |
Determine the Affect of a Port on the Power Budget |
543 |
Monitor the Power Budget |
544 |
Manage Power Priorities |
545 |
Recover from a Failed Power Supply |
546 |
Power Additional PoE Ports on the S-Series |
547 |
Deploying VOIP |
547 |
Create VLANs for an Office VOIP Deployment |
548 |
Configure LLDP-MED for an Office VOIP Deployment |
548 |
Port Monitoring |
551 |
Important Points to Remember |
551 |
Port Monitoring on E-Series |
552 |
E-Series TeraScale |
552 |
E-Series ExaScale |
553 |
Port Monitoring on C-Series and S-Series |
553 |
Configuring Port Monitoring |
556 |
Flow-based Monitoring |
558 |
Private VLANs |
561 |
Private VLAN Concepts |
562 |
Private VLAN Commands |
563 |
Private VLAN Configuration Task List |
564 |
Creating PVLAN ports |
564 |
Creating a Primary VLAN |
565 |
Creating a Community VLAN |
566 |
Creating an Isolated VLAN |
566 |
Private VLAN Configuration Example |
567 |
Inspecting the Private VLAN Configuration |
568 |
Per-VLAN Spanning Tree Plus |
571 |
Protocol Overview |
571 |
Implementation Information |
572 |
Configure Per-VLAN Spanning Tree Plus |
572 |
Related Configuration Tasks |
572 |
Enable PVST+ |
573 |
Disable PVST+ |
573 |
Influence PVST+ Root Selection |
573 |
Modify Global PVST+ Parameters |
575 |
Modify Interface PVST+ Parameters |
576 |
Configure an EdgePort |
577 |
PVST+ in Multi-vendor Networks |
578 |
PVST+ Extended System ID |
578 |
PVST+ Sample Configurations |
579 |
Quality of Service |
583 |
Implementation Information |
585 |
Port-based QoS Configurations |
585 |
Set dot1p Priorities for Incoming Traffic |
586 |
Honor dot1p Priorities on Ingress Traffic |
586 |
Priority-tagged Frames on the Default VLAN |
587 |
Configure Port-based Rate Policing |
587 |
Configure Port-based Rate Limiting |
588 |
Configure Port-based Rate Shaping |
589 |
Policy-based QoS Configurations |
589 |
Classify Traffic |
590 |
Create a Layer 3 class map |
590 |
Create a Layer 2 class map |
591 |
Determine the order in which ACLs are used to classify traffic |
591 |
Set DSCP values for egress packets based on flow |
592 |
Display configured class maps and match criteria |
592 |
Create a QoS Policy |
594 |
Create an input QoS policy |
594 |
Create an output QoS policy |
595 |
Create Policy Maps |
596 |
Create Input Policy Maps |
597 |
Apply an input policy map to an interface |
600 |
Create Output Policy Maps |
600 |
QoS Rate Adjustment |
601 |
Strict-priority Queueing |
602 |
Weighted Random Early Detection |
602 |
Create WRED Profiles |
603 |
Apply a WRED profile to traffic |
603 |
Configure WRED for Storm Control |
603 |
Display Default and Configured WRED Profiles |
604 |
Display WRED Drop Statistics |
604 |
Allocating Bandwidth to Multicast Queues |
605 |
Pre-calculating Available QoS CAM Space |
606 |
Viewing QoS CAM Entries |
607 |
Configure Quality of Service for an Office VOIP Deployment |
607 |
Honor the incoming DSCP value |
607 |
Honor the incoming dot1p value |
608 |
Classifying VOIP traffic and applying QoS policies |
608 |
Routing Information Protocol |
611 |
Protocol Overview |
611 |
RIPv1 |
611 |
RIPv2 |
612 |
Implementation Information |
612 |
Configuration Information |
612 |
Configuration Task List for RIP |
613 |
Enable RIP globally |
613 |
Configure RIP on interfaces |
614 |
Control RIP routing updates |
615 |
Set send and receive version |
616 |
Generate a default route |
618 |
Summarize routes |
619 |
Control route metrics |
619 |
Debug RIP |
620 |
RIP Configuration Example |
620 |
Configuring RIPv2 on Core 2 |
621 |
Core 2 Output |
621 |
RIP Configuration on Core 3 |
623 |
Core 3 RIP Output |
623 |
RIP Configuration Summary |
625 |
Remote Monitoring |
627 |
Implementation |
627 |
Fault Recovery |
628 |
Set rmon alarm |
629 |
Configure an RMON event |
630 |
Configure RMON collection statistics |
631 |
Configure RMON collection history |
632 |
Enable an RMON MIB collection history group |
632 |
Rapid Spanning Tree Protocol |
633 |
Protocol Overview |
633 |
Configuring Rapid Spanning Tree |
633 |
Related Configuration Tasks |
633 |
Important Points to Remember |
634 |
Configure Interfaces for Layer 2 Mode |
634 |
Enable Rapid Spanning Tree Protocol Globally |
635 |
Add and Remove Interfaces |
638 |
Modify Global Parameters |
638 |
Modify Interface Parameters |
639 |
Configure an EdgePort |
640 |
Influence RSTP Root Selection |
641 |
SNMP Traps for Root Elections and Topology Changes |
642 |
Fast Hellos for Link State Detection |
642 |
Security |
643 |
AAA Accounting |
643 |
Configuration Task List for AAA Accounting |
644 |
Enable AAA Accounting |
644 |
Suppress AAA Accounting for null username sessions |
645 |
Configure Accounting of EXEC and privilege-level command usage |
645 |
Configure AAA Accounting for terminal lines |
645 |
Monitor AAA Accounting |
645 |
AAA Authentication |
646 |
Configuration Task List for AAA Authentication |
646 |
Configure login authentication for terminal lines |
647 |
Configure AAA Authentication login methods |
647 |
Enable AAA Authentication |
648 |
AAA Authentication—RADIUS |
648 |
Server-side configuration |
649 |
AAA Authorization |
649 |
Privilege Levels Overview |
649 |
Configuration Task List for Privilege Levels |
650 |
Configure a username and password |
650 |
Configure the enable password command |
651 |
Configure custom privilege levels |
652 |
Specify LINE mode password and privilege |
654 |
Enable and disabling privilege levels |
654 |
RADIUS |
655 |
RADIUS Authentication and Authorization |
655 |
Idle Time |
656 |
ACL |
656 |
Auto-command |
656 |
Set access to privilege levels through RADIUS |
656 |
Configuration Task List for RADIUS |
656 |
Define a aaa method list to be used for RADIUS |
657 |
Apply the method list to terminal lines |
657 |
Specify a RADIUS server host |
658 |
Set global communication parameters for all RADIUS server hosts |
658 |
Monitor RADIUS |
659 |
TACACS+ |
659 |
Configuration Task List for TACACS+ |
659 |
Choose TACACS+ as the Authentication Method |
660 |
Monitor TACACS+ |
661 |
TACACS+ Remote Authentication and Authorization |
661 |
Command Authorization |
663 |
Protection from TCP Tiny and Overlapping Fragment Attacks |
663 |
SCP and SSH |
663 |
Using SCP with SSH to copy a software image |
665 |
Secure Shell Authentication |
666 |
Important Points to Remember for SSH Authentication |
666 |
SSH Authentication by Password |
666 |
RSA Authentication of SSH |
667 |
Host-based SSH Authentication |
667 |
Client-based SSH Authentication |
668 |
Troubleshooting SSH |
669 |
Telnet |
669 |
Trace Lists |
670 |
Configuration Tasks for Trace Lists |
670 |
Creating a trace list |
670 |
Apply trace lists |
675 |
VTY Line and Access-Class Configuration |
676 |
VTY Line Local Authentication and Authorization |
676 |
VTY Line Remote Authentication and Authorization |
677 |
VTY MAC-SA Filter Support |
677 |
Service Provider Bridging |
679 |
VLAN Stacking |
679 |
Important Points to Remember |
680 |
Configure VLAN Stacking |
680 |
Related Configuration Tasks |
680 |
Create Access and Trunk Ports |
681 |
Enable VLAN-Stacking for a VLAN |
681 |
Configure the Protocol Type Value for the Outer VLAN Tag |
682 |
FTOS Options for Trunk Ports |
683 |
Debug VLAN Stacking |
684 |
VLAN Stacking in Multi-vendor Networks |
684 |
VLAN Stacking with E-Series TeraScale Systems |
684 |
TPID 0x8100 on E-Series TeraScale Systems |
685 |
VLAN Stacking with E-Series ExaScale Systems |
686 |
VLAN Stacking with C-Series and S-Series |
687 |
VLAN Stacking Packet Drop Precedence |
690 |
Enable Drop Eligibility |
691 |
Honor the Incoming DEI Value |
691 |
Mark Egress Packets with a DEI Value |
692 |
Dynamic Mode CoS for VLAN Stacking |
692 |
Layer 2 Protocol Tunneling |
695 |
Implementation Information |
697 |
Enable Layer 2 Protocol Tunneling |
697 |
Specify a Destination MAC Address for BPDUs |
698 |
Rate-limit BPDUs on the E-Series |
698 |
Rate-limit BPDUs on the C-Series and S-Series |
698 |
Debug Layer 2 Protocol Tunneling |
699 |
Provider Backbone Bridging |
699 |
sFlow |
701 |
Overview |
701 |
Implementation Information |
702 |
Important Points to Remember |
702 |
Enable and Disable sFlow |
703 |
Enable and Disable on an Interface |
703 |
sFlow Show Commands |
704 |
Show sFlow Globally |
704 |
Show sFlow on an Interface |
704 |
Show sFlow on a Line Card |
705 |
Specify Collectors |
706 |
Polling Intervals |
706 |
Sampling Rate |
706 |
Sub-sampling |
707 |
Back-off Mechanism |
708 |
sFlow on LAG ports |
708 |
Extended sFlow |
708 |
Important Points to Remember |
709 |
Simple Network Management Protocol |
711 |
Protocol Overview |
711 |
Implementation Information |
711 |
Configure Simple Network Management Protocol |
711 |
Related Configuration Tasks |
712 |
Important Points to Remember |
712 |
Create a Community |
712 |
Read Managed Object Values |
713 |
Write Managed Object Values |
714 |
Configure Contact and Location Information using SNMP |
714 |
Subscribe to Managed Object Value Updates using SNMP |
715 |
Copy Configuration Files Using SNMP |
718 |
Manage VLANs using SNMP |
724 |
Create a VLAN |
724 |
Assign a VLAN Alias |
724 |
Display the Ports in a VLAN |
725 |
Add Tagged and Untagged Ports to a VLAN |
727 |
Enable and Disable a Port using SNMP |
728 |
Fetch Dynamic MAC Entries using SNMP |
728 |
Deriving Interface Indices |
730 |
Spanning Tree Protocol |
733 |
Protocol Overview |
733 |
Configuring Spanning Tree |
733 |
Related Configuration Tasks |
733 |
Important Points to Remember |
734 |
Configuring Interfaces for Layer 2 Mode |
735 |
Enabling Spanning Tree Protocol Globally |
736 |
Adding an Interface to the Spanning Tree Group |
738 |
Removing an Interface from the Spanning Tree Group |
738 |
Modifying Global Parameters |
739 |
Modifying Interface STP Parameters |
740 |
Enabling PortFast |
740 |
Preventing Network Disruptions with BPDU Guard |
741 |
STP Root Selection |
743 |
SNMP Traps for Root Elections and Topology Changes |
744 |
Configuring Spanning Trees as Hitless |
744 |
Stacking S-Series Switches |
745 |
S-Series Stacking Overview |
745 |
High Availability on S-Series Stacks |
745 |
Management Unit Selection on S-Series Stacks |
746 |
MAC Addressing on S-Series Stacks |
747 |
Management Access on S-Series Stacks |
751 |
Important Points to Remember |
752 |
S-Series Stacking Installation Tasks |
752 |
Create an S-Series Stack |
752 |
Stacking Cable Redundancy |
754 |
LED Status Indicators on an S-Series Stack |
755 |
Add a Unit to an S-Series Stack |
755 |
Remove a Unit from an S-Series Stack |
758 |
Merge Two S-Series Stacks |
760 |
Split an S-Series Stack |
761 |
S-Series Stacking Configuration Tasks |
761 |
Assign Unit Numbers to Units in an S-Series Stack |
761 |
Create a Virtual Stack Unit on an S-Series Stack |
762 |
Display Information about an S-Series Stack |
762 |
Influence Management Unit Selection on an S-Series Stack |
765 |
Manage Redundancy on an S-Series Stack |
765 |
Reset a Unit on an S-Series Stack |
765 |
Monitor an S-Series Stack with SNMP |
766 |
Troubleshoot an S-Series Stack |
766 |
Recover from Stack Link Flaps |
766 |
Recover from a Card Problem State on an S-Series Stack |
767 |
Recover from a Card Mismatch State on an S-Series Stack |
767 |
Storm Control |
769 |
Configure Storm Control |
769 |
Configure storm control from INTERFACE mode |
769 |
Configure storm control from CONFIGURATION mode |
770 |
System Time and Date |
771 |
Network Time Protocol |
771 |
Protocol Overview |
772 |
Implementation Information |
773 |
Configuring Network Time Protocol |
773 |
Related Configuration Tasks |
773 |
Enable NTP |
774 |
Set the Hardware Clock with the Time Derived from NTP |
775 |
Configure NTP broadcasts |
775 |
Disable NTP on an interface |
775 |
Configure a source IP address for NTP packets |
776 |
Configure NTP authentication |
777 |
FTOS Time and Date |
779 |
Configuring time and date settings |
779 |
Set the time and date for the switch hardware clock |
780 |
Set the time and date for the switch software clock |
780 |
Set the timezone |
781 |
Set daylight savings time |
782 |
Set Daylight Saving Time Once |
783 |
Set Recurring Daylight Saving Time |
784 |
Upgrade Procedures |
787 |
Find the upgrade procedures |
787 |
Get Help with upgrades |
787 |
Virtual LANs (VLAN) |
789 |
Default VLAN |
790 |
Port-Based VLANs |
791 |
VLANs and Port Tagging |
791 |
Configuration Task List for VLANs |
792 |
Create a port-based VLAN |
792 |
Assign interfaces to a VLAN |
793 |
Assign an IP address to a VLAN |
796 |
VLAN Interface Counters |
796 |
Native VLANs |
796 |
Enable Null VLAN as the Default VLAN |
797 |
Virtual Router Redundancy Protocol (VRRP) |
799 |
VRRP Overview |
799 |
VRRP Benefits |
801 |
VRRP Implementation |
801 |
VRRP Configuration |
802 |
Configuration Task List for VRRP |
802 |
Create a Virtual Router |
802 |
Assign Virtual IP addresses |
803 |
Set VRRP Group (Virtual Router) Priority |
805 |
Configure VRRP Authentication |
806 |
Disable Preempt |
807 |
Change the Advertisement interval |
808 |
Track an Interface |
809 |
Sample Configurations |
810 |
S-Series Debugging and Diagnostics |
813 |
Offline diagnostics |
813 |
Important Points to Remember |
814 |
Running Offline Diagnostics |
814 |
Trace logs |
817 |
Auto Save on Crash or Rollover |
818 |
Last restart reason (S60) |
818 |
show hardware commands (S60) |
818 |
Hardware watchdog timer |
820 |
Buffer tuning |
820 |
Deciding to tune buffers |
822 |
Buffer tuning commands |
823 |
Using a pre-defined buffer profile |
825 |
Sample buffer profile configuration |
825 |
Multicast Buffering on the S60 |
826 |
Troubleshooting packet loss |
827 |
Displaying Drop Counters |
828 |
Dataplane Statistics |
829 |
Displaying Stack Port Statistics |
831 |
Displaying Stack Member Counters |
831 |
Application core dumps |
832 |
Mini core dumps |
832 |
Standards Compliance |
835 |
IEEE Compliance |
835 |
RFC and I-D Compliance |
836 |
General Internet Protocols |
836 |
General IPv4 Protocols |
837 |
General IPv6 Protocols |
838 |
Border Gateway Protocol (BGP) |
839 |
Open Shortest Path First (OSPF) |
840 |
Intermediate System to Intermediate System (IS-IS) |
841 |
Routing Information Protocol (RIP) |
842 |
Multiprotocol Label Switching (MPLS) |
842 |
Multicast |
843 |
Network Management |
844 |
MIB Location |
849 |