HP GbE2c HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu
HP GbE2c - Blc Layer 2/3 Fiber SFP Option Manual
UPC - 808736802215
View all HP GbE2c manuals
Add to My Manuals
Save this manual to your list of manuals |
HP GbE2c manual content summary:
- HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 1
HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Guide Part number: 418119-003 Third edition: December 2006 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 2
HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP the U.S. and other countries. Cisco® is a registered trademark of Cisco Systems, Inc. and/or its affiliates - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 3
...10 Using the command line interfaces ...10 Configuring an IP interface...11 Using the Browser-based Interface...11 Using Simple Network Management Protocol 12 SNMP v1.0 ...12 SNMP v3.0 ...12 Default configuration ...12 User configuration...13 View based configurations ...14 Configuring SNMP trap - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 4
numbers ...43 Viewing and configuring PVIDs...44 VLAN tagging ...44 VLANs and IP interfaces...47 VLAN topologies and design considerations 47 VLAN configuration rules ...47 Multiple VLANS with tagging ...47 Configuring the example network...49 FDB static entries...54 Trunking support for FDB static - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 5
configuration (CLI example) ...82 802.1p configuration (BBI example) ...83 Queuing and scheduling...86 Basic IP routing IP routing benefits ...87 Routing between IP subnets ...87 Example of subnet routing ...89 Using VLANs 95 Default...95 Metric...95 Authentication ...95 RIP configuration example... - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 6
and backup 112 Summarizing routes...112 Default routes ...112 Virtual links ...113 Router ID...114 Authentication ...114 Host routes for load balancing...115 OSPF features not supported in this release 116 OSPF configuration examples ...116 Example 1: Simple OSPF domain (CLI example 116 Example - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 7
Other network troubleshooting techniques 162 Console and Syslog messages ...162 Ping ...162 Trace route...163 Statistics and state information ...163 Customer support tools ...163 Index Accessing the switch 7 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 8
troubleshooting techniques. Additional references Additional information about installing and configuring the switch is available in the following guides, which are available at http://www.hp.com/go/bladesystem/documentation. • HP GbE2c Ethernet Blade Switch for c-Class BladeSystem User Guide • HP - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 9
VLAN 4095. No other interfaces can be associated with VLAN 4095. You can configure the IP address of the management interface manually or through Dynamic Host Control Protocol (DHCP). • Gateway 4-This gateway is the default gateway for the management interface. • STG 128-If the GbE2c is configured - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 10
applications. For more information on establishing console connectivity to the switch, see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem User Guide. Connecting through Telnet By default, Telnet is enabled on the switch. Once the IP parameters are configured, you can access the CLI - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 11
menu (see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide or ISCLI Guide.) If you are using a DHCP server that also does BOOTP, you do not have to configure the MAC address. If you do not have a BOOTP server, you must manually configure an IP address. The following - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 12
switch, see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide. Default configuration The switch software has two users by default. Both the users 'adminmd5' and 'adminsha' have access to all the MIBs supported by the switch. 1. username 1: adminmd5/password adminmd5 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 13
GbE2c supports two authentication algorithms: MD5 and SHA, as specified in the following command: /cfg/sys/ssnmp/snmpv3/usm /auth md5|sha 1. To configure a user with name 'admin,' authentication type MD5, and authentication password of 'admin,' privacy option DES with privacy password of 'admin - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 14
11.33.1.2.2.3" (L2 information) /c/sys/ssnmp/snmpv3/view 10 name "usr" tree " 1.3.6.1.4.1.11.2.3.7.11.33.1.2.3.2" (L3 statistics) /c/sys/ssnmp/snmpv3/view 11 name "usr" tree " 1.3.6.1.4.1.11.2.3.7.11.33.1.2.3.3" (L3 information) CLI oper equivalent To configure an SNMP user equivalent to the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 15
switch. 3. Configure an entry in the notify table. /c/sys/ssnmp/snmpv3/notify 10 name v1trap tag v1trap (Assign user to the notify table) 4. Specify the IP address and other trap parameters in the Target Address( targetAddr) and Target Parameters (targetParam) tables. Use the following command - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 16
traps) (Assign user to the access group) (Assign user to the notify table) (Define an IP address to send traps) (Specify SNMPv3 traps to send) (Set the authentication level) For more information on using SNMP, see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 17
See the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem User Guide for a complete list of supported MIBs. Secure access to the switch Secure switch management is needed for environments that perform significant management functions across the Internet. The following are some of the functions - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 18
server checks the request against the user ID database. 4. Using RADIUS protocol, the authentication server instructs the switch to grant or deny administrative access. Configuring RADIUS on the switch (CLI example) To configure RADIUS on the switch, do the following: 1. Turn RADIUS authentication - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 19
RADIUS on the switch (BBI example) 1. Configure RADIUS parameters. a. Click the Configure context button. b. Open the System folder, and select Radius. c. Enter the IP address of the primary and secondary RADIUS servers, and enter the RADIUS secret for each server. Enable the RADIUS server - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 20
connecting to the RADIUS server before it declares the server down. • Supports user-configurable RADIUS application port. The default is 1645/User Datagram Protocol (UDP)-based on RFC 2138. Port 1812 is also supported. • Allows network administrator to define privileges for one or more specific - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 21
access the switch via the console port, by using noradius and the administrator password, whether backdoor/secure backdoor are enabled or not. The default value for backdoor and secure backdoor access through Telnet/SSH/HTTP/HTTPS is disabled. All user privileges, other than those assigned to the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 22
permission to use a particular command. TACACS+ authentication features Authentication is the action of determining the identity of a user, and is generally done when the user first attempts to log in to a device or gain access to its services. Switch software supports ASCII inbound login to the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 23
record and track software logins, configuration changes, and interactive commands. The switch supports the following TACACS+ accounting attributes: • protocol (console/telnet/ssh/http) • start_time • stop_time • elapsed_time NOTE: When using the browser-based Interface, the TACACS+ Accounting Stop - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 24
on the switch (BBI example) 1. Configure TACACS+ authentication for the switch. a. Click the Configure context button. b. Open the System folder, and select Tacacs+. c. Enter the IP address of the primary and secondary TACACS+ servers, and enter the TACACS+ secret. Enable TACACS+. d. Click - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 25
of data on the network. On a switch, SCP is used to download and upload the switch configuration via secure channels. By default, SCP is disabled on the switch. The switch implementation of SSH is based on version 1.5 and version 2.0, and supports SSH clients from version 1.0 through version - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 26
: Secure Shell can be configured using the console port only. SSH menus do not display if you access the switch using Telnet or the Browser-based Interface. Enabling or disabling SCP apply and save Enter the following commands from the switch CLI to enable the SCP putcfg_apply and putcfg_apply_save - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 27
command to log in to the switch: ssh @ For example: >> # ssh [email protected] Downloading configuration from the switch using SCP Enter the following command to download the switch configuration using SCP. You will be prompted for a password: scp @ - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 28
a later time. When the SSH server is first enabled and applied, the switch automatically generates the RSA host and server keys and is stored in the flash memory. To configure RSA host and server keys, first connect to the switch console connection (commands are not available via Telnet connection - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 29
enter the user Class of Service (cos) command, and select one of the available options. >> User ID 1 # cos 4. Enable the user ID. >> # /cfg/sys/access/user/uid /ena Once an end user account is configured and enabled, the user can login to the switch using the username/password - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 30
applications described in this guide, from the context of the embedded switch/server environment. For specific information on how to configure ports for speed, auto-negotiation, and duplex modes, see the port commands in the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 31
a link from Server 2 into one trunk group. • Any physical switch port can belong to only one trunk group. • Trunking from non-HP devices must comply with Cisco® EtherChannel® technology. • All trunk member ports must be assigned to the same VLAN configuration before the trunk can be enabled. • All - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 32
. Prior to configuring each switch in this example, you must connect to the appropriate switch CLI as the administrator. For details about accessing and using any of the commands described in this example, see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide. Ports - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 33
2) (Add port 22 to trunk group 2) (Enable trunk group 2) (Make your changes active) (Save for restore after reboot) NOTE: In this example, two switches are used. Any third-party device supporting link aggregation should be configured manually. Connection problems could arise when using automatic - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 34
Configuring trunk groups (BBI example) 1. Configure trunk groups. a. Click the Configure context button on the Toolbar. b. Open the Layer 2 folder, and select Trunk Groups. c. Click a Trunk Group number to select it. Ports and trunking 34 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 35
d. Enable the Trunk Group. To add ports, select each port in the Ports Available list, and click Add. e. Click Submit. 2. Apply, verify, and save the configuration. 3. Examine the trunking information on each switch. f. Click the Dashboard context button on the Toolbar. Ports and trunking 35 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 36
state. Configurable Trunk Hash algorithm This feature allows you to configure the particular parameters for the GbE2c Trunk Hash algorithm instead of having to utilize the defaults. You can configure new default behavior for Layer 2 traffic and Layer 3 traffic, using the CLI menu cfg/l2/thash - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 37
based on the switch's MAC address and the system priority assigned in the CLI. • Admin key-A port's Admin key is an integer value (1-65535) that you can configure in the CLI. Each GbE2c port that participates in the same LACP trunk group must have the same admin key value. The Admin key is local - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 38
LACP Use the following procedure to configure LACP for port 20 and port 21 to participate in link aggregation. 1. Set the LACP mode on port 20. >> # /cfg/l2/lacp/port 20 >> LACP port 20# mode active (Select port 20) (Set port 20 to LACP active mode) 2. Define the admin key on port 20. Only - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 39
to all ports of the GbE2c Ethernet Blade Switch. The following topics are discussed in this section: • Extensible Authentication Protocol over LAN • 802.1x Authentication Process • 802.1x Port States • Supported RADIUS Attributes • Configuration Guidelines Extensible authentication protocol over - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 40
frame to the switch authenticator, which forwards the frame encapsulated in a RADIUS packet to the server. The Radius server chooses an EAP-supported 1x-enabled client connects to a port that is not 802.1x-controlled, the client initiates the authentication process by sending an EAPOL-Start frame. - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 41
the port. Use the 802.1x Global Configuration Menu (/cfg/l2/8021x/global) to configure 802.1x authentication for all ports in the switch. Use the 802.1x Port Menu (/cfg/l2/8021x/port x) to configure a single port. Supported RADIUS attributes The GbE2c 802.1x Authenticator relies on external RADIUS - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 42
to another GbE2c, and if 802.1x is enabled on both switches, the two connected ports must be configured in force-authorized mode. • The 802.1x standard has optional provisions for supporting dynamic virtual LAN assignment via RADIUS tunneling attributes, for example, Tunnel-Type (=VLAN), Tunnel - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 43
IP Interfaces • VLAN Topologies and Design Considerations NOTE: Basic VLANs can be configured during initial switch configuration. More comprehensive VLAN configuration can be done from the command line interface. See the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 44
. VLAN tagging The switch supports IEEE 802.1Q VLAN tagging, providing standards-based VLAN support for Ethernet systems. Tagging places the VLAN identifier in the frame header, allowing each port to belong to multiple VLANs. When you configure multiple VLANs on a port, you must also enable tagging - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 45
port configuration of your switch model. When you configure VLANs, you configure the switch ports as tagged or untagged members of specific VLANs. See the following figures. In the following figure, the untagged incoming packet is assigned directly to VLAN 2 (PVID = 2). Port 5 is configured as - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 46
tagged packet is stripped (untagged) as it leaves the switch through port 7, which is configured as an untagged member of VLAN 2. Figure 7 802.1Q tagging (after 802.1Q tag assignment) NOTE: Using the /boot/conf factory command resets all ports to VLAN 1 (except port 19) and all other settings to the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 47
example, if all IP interfaces are left on VLAN 1 (the default), and all ports are configured for VLAN 2, and then switch management features are effectively cut off. To remedy this, keep all ports used for remote switch management on the default VLAN and assign an IP interface to the default VLAN - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 48
with tagging Component Description Switch 1 Switch 2 Blade Server #1 Blade Server #2 PC #1 PC #2 Switch 1 is configured for VLANS 1, 2, and 3. Port 1 is tagged to accept traffic from VLANs 1 and 2. Ports 17 and 18 are tagged members of a trunk that accepts traffic from VLANs 1 and 3. Port 20 is - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 49
tagging enabled. NOTE: All PCs connected to a tagged port must have an Ethernet adapter with VLAN-tagging capability installed. Configuring the example network These examples describe how to configure ports and VLANs on Switch 1 and Switch 2. Configuring ports and VLANs on Switch 1 (CLI example - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 50
VLANs on Switch 2 (CLI example) To configure ports and VLANs on Switch 2, do the following: 1. On Switch 2, enable VLAN tagging on the necessary ports. Port 4 (connection to server 2) remains untagged, so it is not configured below. Main# /cfg/port 2 >> Port 2# tag e Current VLAN tag support - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 51
(Apply the port configurations) (Save the port configurations) The external Layer 2 switches should also be configured for VLANs and tagging. Configuring ports and VLANs on Switch 1 (BBI example) To configure ports and VLANs on Switch 1, do the following: 1. On the switch 1, enable VLAN tagging on - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 52
c. Click a port number to select it. d. Enable the port and enable VLAN tagging. e. Click Submit. VLANs 52 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 53
LANs folder, and select Add VLAN. b. Enter the VLAN name, VLAN ID number, and enable the VLAN. To add ports, select each port in the Ports Available list and click Add. Since all ports are configured for VLAN 1 by default, configure only those ports that belong to VLAN 2. The crosslink ports 17 and - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 54
to perform a lookup. A FDB static entry is a MAC address associated with a specific port and VLAN. The switch supports 128 static entries. Static entries are manually configured, using the following command: /cfg/l2/fdb/static FDB static entries are permanent, so the FDB Aging value does not apply - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 55
the "RSTP and MSTP" chapter in this guide. Bridge Protocol Data Units To create a spanning tree, the application switch generates a configuration Bridge Protocol Data Unit (BPDU), which it then forwards out of its ports. All switches in the Layer 2 network participating in the spanning tree gather - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 56
adding ports to VLANs. Add the VLAN to the STG using the command /cfg/l2/stp /add . Creating a VLAN When you create a VLAN, then that VLAN automatically belongs to STG 1, the default STG. If you want the VLAN in another STG, you must move the VLAN by assigning it to another - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 57
switch supports a maximum of 128 Spanning Tree Groups (STGs). Multiple STGs provide multiple data paths, which can be used for load-balancing and redundancy. You enable independent links on two switches using multiple STGs by configuring each path with a different VLAN and then assigning each VLAN - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 58
all configured VLANs until individual VLANs are explicitly assigned to other Spanning Tree Groups. Except for the default Spanning Tree Group 1, which may contain more than one VLAN, Spanning Tree Groups 2-128 may contain only one VLAN each. NOTE: Each instance of Spanning Tree Group is enabled by - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 59
) (Save the port configurations) Configuring Switch 2 (CLI example) 1. Configure port and VLAN membership as described in the "Configuring ports and VLANs on Switch 2 (CLI example)" section in the "VLANs" chapter of this guide. 2. Add VLAN 2 to Spanning Tree Group 2. >> /cfg/l2/stp 2 >> Spanning - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 60
and set the Switch Spanning Tree State to on. To add a VLAN to the Spanning Tree Group, select the VLAN in the VLANs Available list, and click Add. VLAN 2 is automatically removed from Spanning Tree Group 1. d. Scroll down, and click Submit. 3. Apply, verify, and save the configuration. Port Fast - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 61
and path cost are set to their default values for all STP groups. Configuring Fast Uplink Convergence Use the following CLI commands to enable Fast Uplink Convergence on external ports: >> # /cfg/l2/upfast ena (Enable Fast Uplink convergence) >> Layer 2# apply (Make your changes active - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 62
operational status Enabled Enabled Enabled Enabled Disabled STP port state Blocking Listening Learning Forwarding Disabled RSTP port state Discarding Discarding Learning Forwarding Discarding Port type and link type Spanning Tree Configuration includes the following parameters to support RSTP and - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 63
, using the Command Line Interface (CLI) or the Browser-based Interface (BBI). Configuring Rapid Spanning Tree (CLI example) 1. Configure port and VLAN membership on the switch, as described in the "Configuring ports and VLANs (CLI example)" section in the "VLANs" chapter of this guide. 2. Set the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 64
c. Select RSTP mode, and set the MSTP/RSTP state to ON. d. Click Submit. 3. Apply, verify, and save the configuration. RSTP and MSTP 64 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 65
the Command Line Interface (CLI) or the Browser-based Interface (BBI). Configuring Multiple Spanning Tree Protocol (CLI example) 1. Configure port and VLAN membership on the switch, as described in the "Configuring ports and VLANs (CLI example)" section in the "VLANs" chapter of this guide. 2. Set - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 66
Group 2) (Add VLAN 2) (Apply the configurations) Configuring Multiple Spanning Tree Protocol (BBI example) 1. Configure port and VLAN membership on the switch, as described in the "Configuring ports and VLANs (BBI example)" section in the "VLANs" chapter of this guide. 2. Configure MSTP general - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 67
3. Configure Common Internal Spanning Trees (CIST) bridge parameters. a. Open the MSTP/RSTP folder, and select CIST-Bridge. b. Enter the Bridge Priority, Maximum Age, and Forward Delay values. c. Click Submit. RSTP and MSTP 67 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 68
4. Configure Common Internal Spanning Tree (CIST) port parameters. a. Open the MSTP/RSTP folder, and select CIST-Ports. b. Click a port number to select it. RSTP and MSTP 68 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 69
c. Enter the Port Priority, Path Cost, and select the Link Type. Set the CIST Port State to ON. d. Click Submit. 5. Apply, verify, and save the configuration. RSTP and MSTP 69 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 70
those specified in a traffic pattern, the policy instructs the GbE2c to perform specified actions on each packet that passes through it. The packets are assigned to different Class of Service (COS) queues and scheduled for transmission. The basic GbE2c QoS model works as follows: • Classify traffic - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 71
• Source MAC address/mask • Destination MAC address/mask • VLAN number/mask • Ethernet type • Ethernet Priority, which is the IEEE 802.1p Priority • IPv4 • Source IP address/mask • Destination IP address/mask • Type of Service value • IP protocol number: The protocol number or name as shown in the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 72
Number 69 70 TCP/UDP Application tftp gopher Number 161 162 TCP/UDP Application snmp snmptrap Number 1985 TCP/UDP Application Table 16 Well-krown TCP flag values Flag URG ACK PSH RST SYN FIN Value 0x0020 0x0010 0x0008 0x0004 0x0002 0x0001 • Packet Format • Ethernet format (eth2, SNAP, LLC - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 73
Packet format Source IP Address Destination IP Address IP protocol TCP source port TCP destination port TCP flags IP Type of Service Egress port Source MAC address Source IP address Ethernet type VLAN ID 802.1p Packet format Destination MAC address Destination IP address Ethernet type VLAN ID 802.1p - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 74
assigned and enabled on a per-port basis. Each ACL can be used by itself or in combination with other ACLs or ACL Groups on a given switch port. ACLs can be grouped in the following manner: • Access Control Lists The GbE2c supports of service to data streams through user-configurable parameters. - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 75
enable statistics (cfg/acl/acl x/stats ena) for each ACL that you want to monitor. ACL configuration examples Configure Access Control Lists (CLI example) The following configuration examples illustrate how to use Access Control Lists (ACLs) to block traffic. These basic configurations illustrate - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 76
on port 20 with source IP from the class 100.10.1.0/24 and destination IP 200.20.1.116 is denied. Example 3: Use this configuration to block traffic from a source that is destined for a specific egress port. >> Main# /cfg/acl/acl 1 (Define ACL 1) >> ACL 1# ethernet/smac 002100000000 ffffffffffff - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 77
c. Configure the ACL parameters. Set the Filter Action to Deny, the Ethernet Type to IPv4, and the Destination IP Address to 100.10.1.116. d. Click Submit. Quality of Service 77 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 78
2. Apply, verify, and save the configuration. 3. Add ACL 1 to port 1. a. Click the Configure context button on the Toolbar. b. Select Switch Ports (click the underlined text, not the folder). c. Select a port. Quality of Service 78 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 79
d. Add the ACL to the port. e. Click Submit. 4. Apply, verify, and save the configuration. Quality of Service 79 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 80
Services (DS) field in the IP header is an octet, and the first six bits, called the DS Code Point (DSCP), can provide QoS functions. Each packet carries its own QoS state in the DSCP. There are 64 possible DSCP values (0-63). Figure 12 Layer 3 IPv4 packet The GbE2c Class 1 Class 2 Class 3 Class - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 81
The scheduling scheme is Weight Round Robin (WRR), with user-configurable weight from 0 to 15 for a COSq. The GbE2c has two output Class of Service queues (COSq). The IEEE 802.1p standard uses eight levels of priority (0-7). Priority 7 is assigned to highest priority network traffic, such as OSPF or - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 82
of Service queues (COSq), and COSq scheduling weights. >> 802.1p# cur Current priority to COS queue configuration: Number of COSq: 2 Priority COSq Weight 0 0 1 1 0 1 2 0 1 3 0 1 4 1 2 5 1 2 6 1 2 7 1 2 802.1p configuration (CLI example) 1. Configure a port's default - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 83
802.1p configuration (BBI example) 1. Configure a port's default 802.1p priority. a. Click the Configure context button on the Toolbar. b. Select Switch Ports (click the underlined text, not the folder). c. Select a port. Quality of Service 83 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 84
d. Set the 802.1p priority value. e. Click Submit. 2. Map the 802.1p priority value to a COS queue. a. Click the Configure context button on the Toolbar. b. Open the 802.1p folder, and select Priority - CoS. Quality of Service 84 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 85
c. Select an 802.1p priority value. d. Select a Class of Service queue (CoSQ) to correlate with the 802.1p priority value. e. Click Submit. 3. Set the COS queue scheduling weight. a. Click the Configure context button on the Toolbar. b. Open the 802.1p folder, and select CoS - Weight. Quality of - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 86
queue (CoS). d. Enter a value for the weight of the Class of Service queue. e. Click Submit. f. Apply, verify, and save the configuration. Queuing and scheduling The GbE2c has two output Class of Service queues (COSq) per port (0-1), into which each packet is placed. Each packet's 802.1p priority - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 87
• Example of Subnet Routing • Defining IP Address Ranges for the Local Route Cache • Dynamic Host Configuration Protocol NOTE: IP Routing features are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. IP routing benefits The GbE2c uses a combination of configurable IP switch interfaces - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 88
server pools on different subnets still burdens the routers. This problem is solved by using GbE2c switches with built-in IP routing capabilities. Cross-subnet LAN traffic can now be routed within the switches with wire speed Layer 2 switching performance. This not only eases the load on the router - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 89
to configuring, you must be connected to the switch Command Line Interface (CLI) as the administrator. NOTE: For details about accessing and using any of the menu commands described in this example, see the HP c-Class GbE2c Ethernet Blade Switch Command Reference Guide. 1. Assign an IP address - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 90
IP interfaces are configured using the following commands at the CLI: >> # /cfg/l3/if 1 (Select IP interface 1) >> IP Interface 1# addr 205.21.17.3 (Assign IP address) >> IP Interface 1# ena (Enable IP interface 1) >> IP Interface 1# ../if 2 (Select IP interface 2) >> IP Interface 2# addr - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 91
, as shown in the following procedure, you could create one VLAN for the client trunks, one for the routers, and one for the servers. In this example, you are adding to the previous configuration. 1. Determine which switch ports and IP interfaces belong to which VLANs. The following table adds port - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 92
network. In the DHCP environment, the switch acts as a relay agent. The DHCP relay feature (/cfg/l3/bootp) enables the switch to forward a client request for an IP address to two BOOTP servers with IP addresses that have been configured on the switch. When a switch receives a UDP broadcast on port - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 93
off (Globally turn BOOTP relay off) >> Bootstrap Protocol Relay# cur (Display current configuration) Additionally, DHCP Relay functionality can be assigned on a per interface basis. Use the following command to enable the Relay functionality: >> # /cfg/l3/if /relay ena Basic IP routing 93 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 94
metric value) to a destination. For more information see The Configuration Menu, Routing Information Protocol Configuration (/cfg/l3/rip) in the HP c-Class GbE2c Ethernet Blade Switch Command Reference Guide. RIPv1 RIP version 1 use broadcast User Datagram Protocol (UDP) data packets for the regular - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 95
default route to forward those packets. Metric The metric field contains a configurable value between 1 and 15 (inclusive) which specifies the current metric for the interface messages are ignored when authentication is enabled (cfg/l3/rip/if x/auth password); otherwise, the routing information from - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 96
cfg/l2/vlan 3/ena >> VLAN 3# add 21 (Enable VLAN 3) (Add port 21 to VLAN 3) Port 21 is an UNTAGGED port and its current PVID is 1. Confirm changing PVID from 1 to 3 [y/n]: y 2. Add IP interfaces to VLANs. >> Main# cfg/l3/if 2/ena (Enable interface 2) >> IP Interface 2# addr 102.1.1.1 (Define IP - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 97
Snooping Configuration example Overview Internet Group Management Protocol (IGMP) is used by IP Multicast routers switch does not receive an IGMP Membership Report message within the query-response-interval • If no multicast routers have been learned on that port. With FastLeave enabled on the VLAN - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 98
Command Line Interface (CLI) or the Browser-based Interface (BBI). Configuring IGMP Snooping (CLI example) 1. Configure port and VLAN membership on the switch, as described in the "Configuring ports and VLANs (CLI example)" section in the "VLANs" chapter. 2. Add VLANs to IGMP Snooping and enable - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 99
information) VLAN ---------- 1 Port ----------- 23 Version L)earnt/(S)tatic V2 S These commands display information about IGMP Groups and Mrouters learned through IGMP Snooping. Configuring IGMP Filtering (CLI example) 1. Enable IGMP Filtering on the switch. >> /cfg/l3/igmp/igmpflt - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 100
24 filtering: enabled >>IGMP Port 24# add 1 (Add IGMP Filter 1 to the port) >>IGMP Port 24# apply (Make your changes active Configuring a Static Mrouter (CLI example) 1. Configure a port to which the static Mrouter is connected, and enter the appropriate VLAN. >> /cfg/l3/igmp/mrouter (Select - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 101
c. Enable IGMP Snooping. d. Click Submit. 3. Apply, verify, and save the configuration. IGMP Snooping 101 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 102
Configuring IGMP Filtering (BBI example) 1. Configure IGMP Snooping. 2. Enable IGMP Filtering. a. Click the Configure context button. b. Open the IGMP folder, and select IGMP Filters (click the underlined text, not the folder). c. Enable IGMP Filtering globally. d. Click Submit. IGMP Snooping 102 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 103
3. Define the IGMP Filter. a. Select Layer 3 > IGMP > IGMP Filters > Add Filter. b. Enable the IGMP Filter. Assign the range of IP multicast addresses and the filter action (allow or deny). c. Click Submit. IGMP Snooping 103 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 104
4. Assign the filter to a port and enable IGMP Filtering on the port. a. Select Layer 3 > IGMP > IGMP Filters > Switch Ports. b. Select a port from the list. IGMP Snooping 104 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 105
. 5. Apply, verify, and save the configuration. Configuring a Static Multicast Router (BBI example) 1. Configure Static Mrouter. a. Click the Configure context button. b. Open the Switch folder and select IP Menu > IGMP > IGMP Static Mrouter. c. Enter a port number, VLAN ID number, and IGMP version - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 106
2. Apply, verify, and save the configuration. IGMP Snooping 106 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 107
-by-step instructions on configuring different configuration examples: • Creating a simple OSPF domain • Creating virtual links • Summarizing routes NOTE: OSPF is available only on the GbE2c Layer 2/3 Ethernet Blade Switch. OSPF overview OSPF is designed for routing traffic within a single IP domain - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 108
within the local area. • Area Border Router (ABR)-a router that has interfaces in multiple areas. ABRs maintain one LSDB for each connected area and disseminate routing information between areas. • Autonomous System Boundary Router (ASBR)-a router that acts as a gateway between the OSPF domain - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 109
enabling every router in that AS to reach every other router and destination within that AS. When a routing device advertises routes to boundary routers on other autonomous systems, it is effectively committing to carry data to the IP space represented in the route being advertised. For example - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 110
parameters can be configured through the Command Line Interface (CLI), Browser-Based Interface (BBI) for GbE2c Ethernet Blade Switches, or through SNMP. For more information, see "Accessing the Switch." The CLI supports the following parameters: interface output cost, interface priority, dead and - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 111
to a network, you must assign the OSPF area index to an IP interface that participates in the area. The format for the command is as follows: >> # /cfg/l3/ospf/if /aindex For example, the following commands could be used to configure IP interface 14 for a presence on - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 112
and a Backup Designated Router (BDR) is elected in case the DR fails. DR and BDR elections are made through the hello process. The election can be influenced by assigning a priority value to the OSPF interfaces on the switch. The command is as follows: >>#/cfg/l3/ospf/if /prio - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 113
choices in an area, you can manually configure a metric value on each ABR. The metric assigns a priority to the ABR for its selection as the priority default route in an area. The following command is used for setting the metric value: >> # /cfg/l3/ospf/default - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 114
in the figure use the following commands: 1. Enable OSPF authentication for Area 0 on switches 1, 2, and 3. >> # /cfg/l3/ospf/aindex 0/auth password 2. Configure a simple text password up to eight characters for each OSPF IP interface in Area 0 on switches 1, 2, and 3. >> # /cfg/l3/ospf/if 1 >> OSPF - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 115
Interface 3 # mdkey 1 7. Enable OSPF MD5 authentication for Area 2 on switch 4. >> # /cfg/l3/ospf/aindex 2/auth md5 8. Configure MD5 key for the virtual link between Area 2 and Area 0 on switches 2 and 4. >> # /cfg/l3/ospf/md5key 2/key packard 9. Assign MD5 key ID to OSPF virtual link on switches - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 116
of the basic steps for configuring OSPF on the GbE2c is listed here. Detailed instructions for each of the steps is covered in the following sections: • Configure IP interfaces. One IP interface is required for each desired network (range of IP addresses) being assigned to an OSPF area on the switch - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 117
Interface 2 # enable(Enable the stub area interface) 7. Apply and save the configuration changes. >> OSPF Interface 2 # apply (Global command to apply all changes) >> OSPF Interface 2 # save (Global command to save all changes) Example 1: Simple OSPF domain (BBI example) 1. Configure IP interfaces - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 118
c. Configure an IP interface. Enter the IP address, subnet mask, and enable the interface. d. Click Submit. 2. Apply, verify, and save the configuration. OSPF 118 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 119
3. Enable OSPF. a. Open the OSPF Routing Protocol folder, and select General. b. Enable OSPF. c. Click Submit. OSPF 119 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 120
4. Configure OSPF Areas. a. Open the OSPF Areas folder, and select Add OSPF Area. b. Configure the OSPF backbone area 0. c. Click Submit. OSPF 120 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 121
d. Select Add OSPF Area. e. Configure the OSPF area 1. f. Click Submit. OSPF 121 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 122
5. Configure OSPF Interfaces. a. Open the OSPF Interfaces folder, and select Add OSPF Interface. OSPF 122 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 123
b. Configure the OSPF Interface 1, and attach it to the backbone area 0. c. Click Submit. d. Select Add OSPF Interface. OSPF 123 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 124
. Instead, area 2 will be connected to the backbone via a virtual link through area 1. The virtual link must be configured at each endpoint. Figure 22 Configuring a virtual link Configuring OSPF for a virtual link on Switch A 1. Configure IP interfaces on each network that will be attached to the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 125
enable (Enable interface 2) 2. Configure the router ID. A router ID is required when configuring virtual links. Later, when configuring the other end of the virtual link on Switch B, the router ID specified here will be used as the target virtual neighbor (nbr) address >> IP Interface 2 # /cfg/l3 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 126
when configuring virtual links. This router ID should be the same one specified as the target virtual neighbor (nbr) on Switch A. >> IP Interface 2 # /cfg/l3/rtrid 10.10.14.1(Set static router ID) 3. Enable OSPF. >> IP# /cfg/l3/ospf/on 4. Define the backbone. This version of GbE2c software - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 127
In this example, routes in the range 36.128.200.0 through 36.128.200.255 are kept private. Follow this procedure to configure OSPF support on Switch A and Switch B, as shown in the figure. 1. Configure IP interfaces for each network which will be attached to OSPF areas. >> # /cfg/l3/if 1 (Select - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 128
the following commands to verify the OSPF configuration on your switch: • /info/l3/ospf/general • /info/l3/ospf/nbr • /info/l3/ospf/dbase/dbsum • /info/l3/ospf/route • /stats/l3/route See the HP c-Class GbE2c Ethernet Blade Switch Command Reference Guide for information on the above commands. OSPF - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 129
9: Events RMON group 1-statistics The switch supports collection of Ethernet statistics as outlined in the RMON statistics MIB, in reference to etherStatsTable. You can enable RMON statistics on a per-port basis, and you can view them using the following command: /stat/port x/rmon. RMON statistics - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 130
: 1046 etherStatsPkts256to511Octets: 619 etherStatsPkts512to1023Octets: 7283 etherStatsPkts1024to1518Octets: 38 Configuring RMON Statistics (BBI example) 1. Configure ports. a. Click the Configure context button. b. Select Switch Ports (click the underlined text, not the folder - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 131
2. Select a port. 3. Enable RMON on the port. 4. Click Submit. Remote monitoring 131 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 132
which to monitor, which corresponds to the port number (1-24). History sampling is done per port, by utilizing the interface number to specify the port number. Configure RMON History (CLI example) 1. Enable RMON on each port where you wish to collect RMON History. >> /cfg/port 23/rmon >> Port 23 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 133
RMON History (BBI example) 1. Configure an RMON History group. a. Click the Configure context button. b. Open the Switch folder, and select RMON > History > Add History Group. 2. Configure RMON History Group parameters. 3. Click Submit. 4. Apply, verify, and save the configuration. Remote monitoring - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 134
The RMON Alarm group allows you to define a set of thresholds used to determine network performance. When a configured threshold is crossed, an alarm is generated. For example, you can configure the switch to issue an alarm if more than 1,000 CRC errors occur during a 10-minute time interval. Each - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 135
RMON Alarms (CLI example 2) 1. Configure the RMON Alarm parameters to track ICMP messages. >> /cfg/rmon/alarm 5 (Select triggers event index 5. Configure RMON Alarms (BBI example 1) 1. Configure an RMON Alarm group. a. Click the Configure context button. b. Open the Switch folder, and select RMON - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 136
RMON Alarm Group parameters to check ifInOctets on port 20 once every hour. Enter a rising limit of two billion, and a rising event index of 6. This configuration creates an RMON alarm that checks ifInOctets on port 20 once every hour. If the statistic exceeds two billion, an alarm is generated that - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 137
RMON Alarms (BBI example 2) 1. Configure an RMON Alarm group. a. Click the Configure context button. b. Open the Switch folder, and select RMON > Alarm > Add Alarm Group. c. Configure RMON Alarm Group parameters to check icmpInEchos, with a polling interval of 60, a rising limit of 200, and - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 138
commands to correlate an event index to an alarm. RMON events use SNMP and syslogs to send notifications. Therefore, an SNMP trap host must be configured of type RMON that corresponds to the event. Configuring RMON Events (CLI example) 1. Configure the RMON Event parameters. >> /cfg/rmon/event - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 139
RMON Events (BBI example 1) 1. Configure an RMON Event group. a. Click the Configure context button. b. Open the Switch folder, and select RMON > Event > Add Event Group. c. Configure RMON Event Group parameters. This configuration creates an RMON event that sends a SYSLOG message each time - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 140
(VRRP). VRRP is available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Uplink Failure Detection Uplink Failure Detection (UFD) is designed to support Network Adapter Teaming on HP server blades. For details about Network Adapter Teaming on HP ProLiant server blades, see the white paper at the - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 141
to Disable) is supported on each switch (all VLANs and Spanning Tree Groups). • An LtM can be either one uplink port or one Multi-Link trunk group of uplink ports. • Ports that are already members of a trunk group are not allowed to be assigned to an LtM. • A trunk group configured as an LtM can - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 142
to port 1 and port 2 on Blade Switch 1. NIC 3 and NIC 4 are connected to port 1 and port 2 on Blade Switch 2. Configuring UFD on Switch 1 (CLI example) 1. Assign uplink ports (20-24) to be monitored for communication failure. >> Main# /cfg/ufd/fdp ena (Enable Failure Detection Pair) >> FDP# ltm - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 143
Uplink Failure Detection (BBI example) 1. Configure Uplink Failure Detection. a. Click the Configure context button. b. Open the Switch folder, and select Uplink Failure Detection (click the underlined text, not the folder). c. Turn Uplink Failure Detection on, and then select FDP. High availability - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 144
Enable the FDP. Select ports in the LtM Ports Available list, and click Add to place the ports into the Link to Monitor (LtM). Select ports in the LtD Ports Available list, and click Add to place the ports into the Link to Disable (LtD). e. Click Submit. 2. Apply, verify, and save the configuration - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 145
routers to share an IP interface across the routers. VIRs provide a single Destination IP (DIP) for upstream routers to reach various servers, and provide a virtual default Gateway for the server blades. NOTE: VRRP is available only on the GbE2c Layer 2/3 Ethernet Blade Switch. VRRP components Each - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 146
switch sits by idly until a failure calls it into action. Service providers now demand that vendors' equipment support redundant configurations where all devices can process traffic when they are healthy, increasing site throughput and decreasing user response times when no device has failed. GbE2c - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 147
, preemption must be enabled. GbE2c software can track the attributes listed in the following table: Table 24 VRRP tracking parameters Parameter Number of IP interfaces on the switch that are active ("up") /cfg/l3/vrrp/track/ifs Number of active ports on the same VLAN /cfg/l3/vrrp/track/ports - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 148
goals. High availability configurations GbE2c Ethernet Blade Switches offer flexibility in implementing redundant configurations. This section discusses the Active-Active configuration. Active-Active configuration The following figure shows an example configuration, where two switches are used as - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 149
/l2/vlan 10 >> VLAN 10# ena >> VLAN 10# add 20 >> VLAN 10# .. >> Layer 2# vlan 20 >> VLAN 20# ena >> VLAN 20# add 21 (Select VLAN 10) (Enable VLAN 10) (Add port 20 to VLAN 10) (Select VLAN 20) (Enable VLAN 20) (Add port 21 to VLAN 20) 2. Configure client and server interfaces. /cfg/l3/if 1 >> IP - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 150
/l2/vlan 10 >> VLAN 10# ena >> VLAN 10# add 20 >> VLAN 10# .. >> Layer 2# vlan 20 >> VLAN 20# ena >> VLAN 20# add 21 (Select VLAN 10) (Enable VLAN 10) (Add port 20 to VLAN 10) (Select VLAN 20) (Enable VLAN 20) (Add port 21 to VLAN 20) 2. Configure client and server interfaces. /cfg/l3/if 1 >> IP - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 151
Tree Protocol globally. Apply and save changes. /cfg/l2/stg 1/off >> Spanning Tree Group 1# apply >> Spanning Tree Group 1# save (Turn off STG) Task 1: Configure Switch A (BBI example) 1. Configure ports and VLANs. a. Click the Configure context button. b. Open the Virtual LANs folder, and - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 152
port 21 as a member of VLAN 20. Enable each VLAN. d. Click Submit. 2. Configure the following client and server interfaces: • IF 1 IP address = 192.168.1.100 Subnet mask = 255.255.255.0 VLAN 10 • IF 2 IP address = 10.10.12.1 Subnet mask = 255.255.255.0 VLAN 20 • IF 3 IP address = 10.10.12.1 Subnet - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 153
b. Configure an IP interface. Enter the IP address, subnet mask, and VLAN membership. Enable the interface. c. Click Submit. 3. Configure the default gateways. Each default gateway points to one of the Layer 2 routers. a. Open the Default Gateways folder, and select Add Default Gateway. High - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 154
b. Configure the IP address for each default gateway. Enable the default gateways. c. Click Submit. 4. Turn on VRRP and configure two Virtual Interface routers. a. Open the Virtual Router Redundancy Protocol folder, and select General. High availability 154 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 155
b. Enable VRRP processing. c. Click Submit. d. Open the Virtual Routers folder, and select Add Virtual Router. High availability 155 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 156
e. Configure the IP address for Virtual Router 1 (VR1). Enable tracking on ports, and set the priority to 101. Enable The Virtual Router. f. Click Submit. g. Select Add Virtual Router. High availability 156 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 157
h. Configure the IP address for Virtual Router 2 (VR2). Enable tracking on ports, but set the priority to 100 (default value). Enable The Virtual Router. i. Click Submit. 5. Turn off Spanning Tree globally. a. Open the Spanning Tree Groups folder, and select Add Spanning Tree Group. High - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 158
b. Enter Spanning Tree Group ID 1 and set the Switch Spanning Tree State to off. c. Click Submit. 6. Apply, verify, and save the configuration. High availability 158 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 159
-oriented problem. Any traffic in or out of one or more ports can be mirrored to a single monitoring port to which a network monitor can be attached. Port Mirroring can be used as a troubleshooting tool or to enhance the security of your network. For example, an Intrusion Detection Service (IDS - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 160
configuration. >> PortMirroring# cur Port mirroring is enabled Monitoring Ports Mirrored Ports 1 none 2 none 3 none 4 none 5 none : : 17 none 18 none 20(23, in) (11, out) 21 none : (Apply the configuration) (Save the configuration) (Display the current settings) Troubleshooting - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 161
(BBI example) 1. Configure Port Mirroring. a. Click the Configure context button. b. Open the Switch folder, and select Port-Based Port Mirroring (click the underlined text, not the folder). c. Click a port number to select a monitoring port. d. Click Add Mirrored Port. Troubleshooting tools 161 - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 162
informative messages when state changes and system problems occur. Syslog messages can be viewed by using the /info/sys/log command. For more information on interpreting syslog messages, see the HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide. Ping To verify station-to - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 163
HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide Customer support tools The following diagnostics tools are not user-configurable and should be performed through HP technical support. • Offline Diagnostics-This tool is used for troubleshooting suspected switch hardware - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 164
; IP interfaces example configuration, 90 IP subnets: routing; IP subnets, 88; routing, 89 IP subnets, VLANs, 43 J fragmenting jumbo frames: fragmenting to normal size; routing, 87 L LACP, 37 Link Aggregation Control Protocol, 37 logical segment, 43 LSAs, 109 M Main Menu, command line interface (CLI - HP GbE2c | HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Application Gu - Page 165
host and server keys, 28; supported clients, 25 SSH/SCP configuring, 26 Static MRouter, configuring (CLI example), 100 Static Multicast Router, configuring (BBI example), 105 statistics, 163 switch management: security, 17; via IP interface, 47 switch ports VLANs membership, 44 syslog messages, 162
Application Guide
Part number: 418119-003
Third edition: December 2006
HP GbE2c Ethernet Blade Switch for c-Class BladeSystem