Asante Technologies 40240-40480-10G User Manual

IntraCore 40240/40480-10G
Layer 3 Gigabit Stackable Ethernet Switch
User’s Manual
A
A
IC40240-10G/IC40480-10G
(P/N 99-00837/99-00836)
sante Networks
47709 Fremont Blvd., Fremont, CA 94538 USA
SALES
408-435-8388
TECHNICAL SUPPORT
408-435-8388: Worldwide
www.asante.com/support
support@asante.com
Copyright © 2009 Asante. All rights reserved. No part of this document, or any associated artwork, product design, or design concept may be copied or reproduced in whole or in part by any means without the express written consent of
sante. Asante and IntraCore are registered trademarks and the Asante logo, AsanteCare, Auto-Uplink, and IntraCare are trademarks of Asante. All other brand names or product names are trademarks or registered trademarks of their respective holders. All features and specifications are subject to change without prior notice. Rev. D7.9 7/4/2009
Management Guide
IntraCore 40240-10G Gigabit Ethernet Switch
• Stackable Layer 3 Switch
• 20 10/100/1000BASE-T (RJ-45) Ports,
• 4 Gigabit Combination Ports (RJ-45/SFP),
• 2 10-Gigabit Extender Module Slots,
• 2 Stacking Ports
IntraCore 40480-10G Gigabit Ethernet Switch
• Stackable Layer 3 Switch
• 44 10/100/1000BASE-T (RJ-45) Ports,
• 4 Gigabit Combination Ports (RJ-45/SFP),
• 2 10-Gigabit Extender Module Slots,
• 2 Stacking Ports
IC40240-10G (99-00837) IC40480-10G (99-00836)
About This Manual
Purpose
This guide gives specific information on how to operate and use the management functions of the switch.
Audience
The guide is intended for use by network administrators who are responsible for operating and maintaining network equipment; consequently, it assumes a basic working knowledge of general switch functions, the Internet Protocol (IP), and Simple Network Management Protocol (SNMP).
Conventions
The following conventions are used throughout this guide to show information: Note: Emphasizes important information or calls your attention to related features or instructions. Caution: Alerts you to a potential hazard that could cause loss of data, or damage the system or equipment.
Warning: Alerts you to a potential hazard that could cause personal injury.
Related Publications
The following publication details the hardware features of the switch, including the physical and performance-related characteristics, and how to install the switch: The Installation Guide Also, as part of the switch’s software, there is an online web-based help that describes all management related features.
Revision History
This section summarizes the changes in each revision of this manual.
June 2009 Revision
This is the first release of this manual.
ii
Contents
Section I: Getting Started
Chapter 1: Introduction 1-1
Key Features 1-1 Description of Software Features 1-2 System Defaults 1-7
Chapter 2: Initial Configuration 2-1
Connecting to the Switch 2-1
Configuration Options 2-1 Required Connections 2-2 Remote Connections 2-3
Stack Operations 2-3
Selecting the Stack Master 2-3 Selecting the Backup Unit 2-4 Recovering from Stack Failure or Topology Change 2-4
Broken Link for Line and Wrap-around Topologies 2-4 Resilient IP Interface for Management Access 2-5
Resilient Configuration 2-5 Renumbering the Stack 2-5 Ensuring Consistent Code is Used Across the Stack 2-5
Basic Configuration 2-6
Console Connection 2-6 Setting Passwords 2-7 Setting an IP Address 2-7
Manual Configuration 2-8
Dynamic Configuration 2-11 Enabling SNMP Management Access 2-13
Community Strings (for SNMP version 1 and 2c clients) 2-13
Trap Receivers 2-14
Configuring Access for SNMP Version 3 Clients 2-15
Managing System Files 2-15
Saving Configuration Settings 2-16
Section II: Switch Management
Chapter 3: Configuring the Switch 3-1
Using the Web Interface 3-1 Navigating the Web Browser Interface 3-2
Home Page 3-2 Configuration Options 3-3 Panel Display 3-3
iii
Contents
Main Menu 3-4
Chapter 4: Basic Management Tasks 4-1
Displaying System Information 4-1 Displaying Switch Hardware/Software Versions 4-3 Displaying Bridge Extension Capabilities 4-4 Setting the Switch’s IP Address (IP Version 4) 4-5
Manual Configuration 4-7 Using DHCP/BOOTP 4-8
Setting the Switch’s IP Address (IP Version 6) 4-9
Configuring an IPv6 Address 4-9 Configuring an IPv6 General Network Prefix 4-15
Configuring Neighbor Detection Protocol and Static Entries 4-17 Configuring Support for Jumbo Frames 4-21 Managing Firmware 4-21
Downloading System Software from a Server 4-22 Saving or Restoring Configuration Settings 4-24
Downloading Configuration Settings from a Server 4-25 Console Port Settings 4-26 Telnet Settings 4-28 Configuring Event Logging 4-30
System Log Configuration 4-30
Remote Log Configuration 4-31
Displaying Log Messages 4-33
Sending Simple Mail Transfer Protocol Alerts 4-33 Renumbering the Stack 4-35 Resetting the System 4-36 Setting the System Clock 4-36
Setting the Current Time 4-37
Configuring SNTP 4-37
Setting the Time Zone 4-39
Configuring Summer Time 4-40
Chapter 5: Simple Network Management Protocol 5-1
Enabling the SNMP Agent 5-2 Setting Community Access Strings 5-3 Specifying Trap Managers and Trap Types 5-4 Configuring SNMPv3 Management Access 5-7
Setting a Local Engine ID 5-7
Specifying a Remote Engine ID 5-8
Configuring SNMPv3 Users 5-9
Configuring Remote SNMPv3 Users 5-11
Configuring SNMPv3 Groups 5-13
Setting SNMPv3 Views 5-17
iv
Contents
Chapter 6: User Authentication 6-1
Configuring User Accounts 6-1 Configuring Local/Remote Logon Authentication 6-2 Configuring HTTPS 6-5
Replacing the Default Secure-site Certificate 6-7
Configuring the Secure Shell 6-8
Generating the Host Key Pair 6-10 Importing User Public Keys 6-12
Configuring the SSH Server 6-14 Configuring Port Security 6-16 Configuring 802.1X Port Authentication 6-18
Displaying 802.1X Global Settings 6-19
Configuring 802.1X Global Settings 6-20
Configuring Port Settings for 802.1X 6-20
Displaying 802.1X Statistics 6-24 Filtering IP Addresses for Management Access 6-26
Chapter 7: Access Control Lists 7-1
Configuring Access Control Lists 7-1
Setting the ACL Name and Type 7-1
Configuring a Standard IPv4 ACL 7-2
Configuring an Extended IPv4 ACL 7-3
Configuring a MAC ACL 7-6
Configuring a Standard IPv6 ACL 7-7
Configuring an Extended IPv6 ACL 7-8 Binding a Port to an Access Control List 7-11
Chapter 8: Port Configuration 8-1
Displaying Connection Status 8-1 Configuring Interface Connections 8-3 Creating Trunk Groups 8-6
Statically Configuring a Trunk 8-7
Enabling LACP on Selected Ports 8-8
Configuring LACP Parameters 8-10
Displaying LACP Port Counters 8-13
Displaying LACP Settings and Status for the Local Side 8-14
Displaying LACP Settings and Status for the Remote Side 8-16 Setting Broadcast Storm Thresholds 8-17 Configuring Port Mirroring 8-19 Configuring Rate Limits 8-20 Showing Port Statistics 8-22
Chapter 9: Address Table Settings 9-1
Setting Static Addresses 9-1 Displaying the Address Table 9-2 Changing the Aging Time 9-4
v
Contents
Chapter 10: Spanning Tree Algorithm 10-1
Displaying Global Settings 10-3 Configuring Global Settings 10-6 Displaying Interface Settings 10-10 Configuring Interface Settings 10-13 Configuring Multiple Spanning Trees 10-16 Displaying Interface Settings for MSTP 10-19 Configuring Interface Settings for MSTP 10-20
Chapter 11: VLAN Configuration 11-1
IEEE 802.1Q VLANs 11-1
Enabling or Disabling GVRP (Global Setting) 11-4 Displaying Basic VLAN Information 11-4 Displaying Current VLANs 11-5 Creating VLANs 11-6 Adding Static Members to VLANs (VLAN Index) 11-7 Adding Static Members to VLANs (Port Index) 11-9 Configuring VLAN Behavior for Interfaces 11-10
Configuring IEEE 802.1Q Tunneling 11-12
Enabling QinQ Tunneling on the Switch 11-16 Adding an Interface to a QinQ Tunnel 11-17
Configuring Private VLANs 11-18
Enabling Private VLANs 11-19 Configuring Uplink and Downlink Ports 11-19
Configuring Protocol-Based VLANs 11-20
Configuring Protocol Groups 11-20 Mapping Protocols to VLANs 11-21
Chapter 12: Link Layer Discovery Protocol 12-1
Setting Basic LLDP Timing Attributes 12-1 Configuring LLDP Interface Attributes 12-3 Displaying LLDP Local Device Information 12-5 Displaying LLDP Remote Port Information 12-8 Displaying LLDP Remote Information Details 12-9 Displaying Device Statistics 12-11 Displaying Detailed Device Statistics 12-13
Chapter 13: Class of Service 13-1
Layer 2 Queue Settings 13-1
Setting the Default Priority for Interfaces 13-1 Mapping CoS Values to Egress Queues 13-3 Selecting the Queue Mode 13-5 Setting the Service Weight for Traffic Classes 13-6
Layer 3/4 Priority Settings 13-7
Mapping Layer 3/4 Priorities to CoS Values 13-7 Selecting IP Precedence/DSCP Priority 13-7
vi
Contents
Mapping IP Precedence 13-8
Mapping DSCP Priority 13-10
Mapping IP Port Priority 13-11
Chapter 14: Quality of Service 14-1
Configuring Quality of Service Parameters 14-1
Configuring a Class Map 14-2
Creating QoS Policies 14-4
Attaching a Policy Map to Ingress Queues 14-7
Chapter 15: Multicast Filtering 15-1
Layer 2 IGMP (Snooping and Query) 15-2
Configuring IGMP Snooping and Query Parameters 15-3
Enabling IGMP Immediate Leave 15-5
Displaying Interfaces Attached to a Multicast Router 15-6
Specifying Static Interfaces for a Multicast Router 15-7
Displaying Port Members of Multicast Services 15-8
Assigning Ports to Multicast Services 15-9
Chapter 16: Domain Name Service 16-1
Configuring General DNS Service Parameters 16-1 Configuring Static DNS Host to Address Entries 16-3 Displaying the DNS Cache 16-5
Chapter 17: Dynamic Host Configuration Protocol 17-1
Configuring DHCP Relay Service 17-1 Configuring the DHCP Server 17-2
Enabling the Server, Setting Excluded Addresses 17-3
Configuring Address Pools 17-4
Displaying Address Bindings 17-9
Chapter 18: Configuring Router Redundancy 18-1
Virtual Router Redundancy Protocol 18-2
Configuring VRRP Groups 18-2
Displaying VRRP Global Statistics 18-7
Displaying VRRP Group Statistics 18-8
Chapter 19: IP Routing 19-1
Overview 19-1
Initial Configuration 19-1 IP Switching 19-2
Routing Path Management 19-3
Routing Protocols 19-4 Basic IP Interface Configuration 19-4 Configuring IP Routing Interfaces 19-5 Address Resolution Protocol 19-8
Basic ARP Configuration 19-9
Configuring Static ARP Addresses 19-11
vii
Contents
Displaying Dynamically Learned ARP Entries 19-12 Displaying Local ARP Entries 19-13 Displaying ARP Statistics 19-14
Displaying Statistics for IP Protocols 19-16
IP Statistics 19-16 ICMP Statistics 19-17 UDP Statistics 19-19
TCP Statistics 19-20 Configuring Static Routes 19-21 Displaying the Routing Table 19-22
Chapter 20: Unicast Routing 20-1
Configuring the Routing Information Protocol 20-2
Configuring General Protocol Settings 20-3
Specifying Network Interfaces for RIP 20-5
Configuring Network Interfaces for RIP 20-6
Redistributing Routing Information from Other Domains 20-9
Displaying RIP Information and Statistics 20-11 Configuring the Open Shortest Path First Protocol 20-14
Configuring General Protocol Settings 20-15
Configuring OSPF Areas 20-19
Configuring Area Ranges (Route Summarization for ABRs) 20-23
Configuring OSPF Interfaces 20-25
Configuring Virtual Links 20-29
Configuring Network Area Addresses 20-31
Configuring Summary Addresses (for External AS Routes) 20-33
Redistributing External Routes 20-35
Configuring NSSA Settings 20-36
Displaying Link State Database Information 20-38
Displaying Information on Border Routers 20-40
Displaying Information on Neighbor Routers 20-41
Section III: Command Line Interface
Chapter 21: Overview of the Command Line Interface 21-1
Using the Command Line Interface 21-1
Accessing the CLI 21-1
Console Connection 21-1
Telnet Connection 21-1 Entering Commands 21-3
Keywords and Arguments 21-3
Minimum Abbreviation 21-3
Command Completion 21-3
Getting Help on Commands 21-3
Showing Commands 21-4
viii
Contents
Partial Keyword Lookup 21-5 Negating the Effect of Commands 21-5 Using Command History 21-5 Understanding Command Modes 21-6 Exec Commands 21-6 Configuration Commands 21-7 Command Line Processing 21-9
Command Groups 21-10
Chapter 22: General Commands 22-1
enable 22-1 disable 22-2 configure 22-2 show history 22-3 reload 22-4 prompt 22-4 end 22-4 exit 22-5 quit 22-5
Chapter 23: System Management Commands 23-1
Device Designation Commands 23-1
hostname 23-1 switch renumber 23-2
System Status Commands 23-3
show startup-config 23-3 show running-config 23-5 show system 23-7 show users 23-8 show version 23-8
Frame Size Commands 23-9
jumbo frame 23-9
File Management Commands 23-10
copy 23-11 delete 23-13 dir 23-14 whichboot 23-15 boot system 23-16
Line Commands 23-17
line 23-17 login 23-18 password 23-19 timeout login response 23-20 exec-timeout 23-20 password-thresh 23-21 silent-time 23-22
ix
Contents
databits 23-22
parity 23-23
speed 23-23
stopbits 23-24
disconnect 23-24
show line 23-25 Event Logging Commands 23-26
logging on 23-26
logging history 23-27
logging host 23-28
logging facility 23-28
logging trap 23-29
clear log 23-29
show logging 23-30
show log 23-31 SMTP Alert Commands 23-32
logging sendmail host 23-32
logging sendmail level 23-33
logging sendmail source-email 23-33
logging sendmail destination-email 23-34
logging sendmail 23-34
show logging sendmail 23-35 Time Commands 23-35
sntp client 23-36
sntp server 23-37
sntp poll 23-37
sntp update-time 23-38
show sntp 23-38
clock timezone 23-39
clock timezone-predefined 23-39
clock summer-time (date) 23-40
clock summer-time (predefined) 23-41
clock summer-time (recurring) 23-42
show clock 23-43
calendar set 23-44
show calendar 23-44
Chapter 24: SNMP Commands 24-1
snmp-server 24-2 show snmp 24-2 snmp-server community 24-3 snmp-server contact 24-4 snmp-server location 24-4 snmp-server host 24-5 snmp-server enable traps 24-7
x
Contents
snmp-server engine-id 24-8 show snmp engine-id 24-9 snmp-server view 24-10 show snmp view 24-11 snmp-server group 24-11 show snmp group 24-12 snmp-server user 24-14 show snmp user 24-15
Chapter 25: User Authentication Commands 25-1
User Account Commands 25-1
username 25-2 enable password 25-3
Authentication Sequence 25-4
authentication login 25-4 authentication enable 25-5
RADIUS Client 25-6
radius-server host 25-6 radius-server port 25-7 radius-server key 25-7 radius-server retransmit 25-8 radius-server timeout 25-8 show radius-server 25-8
TACACS+ Client 25-9
tacacs-server host 25-9 tacacs-server port 25-10 tacacs-server key 25-10 show tacacs-server 25-11
Web Server Commands 25-11
ip http port 25-11 ip http server 25-12 ip http secure-server 25-12 ip http secure-port 25-13
Telnet Server Commands 25-14
ip telnet server 25-14
Secure Shell Commands 25-15
ip ssh server 25-17 ip ssh timeout 25-18 ip ssh authentication-retries 25-19 ip ssh server-key size 25-19 delete public-key 25-20 ip ssh crypto host-key generate 25-20 ip ssh crypto zeroize 25-21 ip ssh save host-key 25-21 show ip ssh 25-22
xi
Contents
show ssh 25-22
show public-key 25-23 Port Security Commands 25-24
port security 25-25
802.1X Port Authentication 25-26
dot1x system-auth-control 25-27
dot1x default 25-27
dot1x max-req 25-27
dot1x port-control 25-28
dot1x operation-mode 25-29
dot1x re-authenticate 25-30
dot1x re-authentication 25-30
dot1x timeout quiet-period 25-31
dot1x timeout re-authperiod 25-31
dot1x timeout tx-period 25-32
show dot1x 25-32 Management IP Filter Commands 25-35
management 25-35
show management 25-36
Chapter 26: Access Control List Commands 26-1
IPv4 ACLs 26-1
access-list ip 26-2
permit, deny (Standard IPv4 ACL) 26-2
permit, deny (Extended IPv4 ACL) 26-3
show ip access-list 26-5
ip access-group 26-6
show ip access-group 26-6 IPv6 ACLs 26-7
access-list ipv6 26-7
permit, deny (Standard IPv6 ACL) 26-8
permit, deny (Extended IPv6 ACL) 26-9
show ipv6 access-list 26-11
ipv6 access-group 26-11
show ipv6 access-group 26-12 MAC ACLs 26-12
access-list mac 26-12
permit, deny (MAC ACL) 26-13
show mac access-list 26-15
mac access-group 26-15
show mac access-group 26-16 ACL Information 26-16
show access-list 26-16
show access-group 26-17
xii
Contents
Chapter 27: Interface Commands 27-1
interface 27-1 description 27-2 speed-duplex 27-3 negotiation 27-4 capabilities 27-4 flowcontrol 27-5 media-type 27-6 shutdown 27-7 switchport broadcast packet-rate 27-7 clear counters 27-8 show interfaces status 27-9 show interfaces counters 27-10 show interfaces switchport 27-11
Chapter 28: Link Aggregation Commands 28-1
channel-group 28-2 lacp 28-3 lacp system-priority 28-4 lacp admin-key (Ethernet Interface) 28-5 lacp admin-key (Port Channel) 28-6 lacp port-priority 28-6 show lacp 28-7
Chapter 29: Mirror Port Commands 29-1
port monitor 29-1 show port monitor 29-2
Chapter 30: Rate Limit Commands 30-1
rate-limit 30-1
Chapter 31: Address Table Commands 31-1
mac-address-table static 31-1 clear mac-address-table dynamic 31-2 show mac-address-table 31-3 mac-address-table aging-time 31-4 show mac-address-table aging-time 31-4
Chapter 32: LLDP Commands 32-1
lldp 32-2 lldp holdtime-multiplier 32-3 lldp notification-interval 32-3 lldp refresh-interval 32-4 lldp reinit-delay 32-5 lldp tx-delay 32-5 lldp admin-status 32-6 lldp notification 32-6
xiii
Contents
lldp basic-tlv management-ip-address 32-7 lldp basic-tlv port-description 32-8 lldp basic-tlv system-capabilities 32-8 lldp basic-tlv system-description 32-9 lldp basic-tlv system-name 32-9 lldp dot1-tlv proto-ident 32-10 lldp dot1-tlv proto-vid 32-10 lldp dot1-tlv pvid 32-11 lldp dot1-tlv vlan-name 32-11 lldp dot3-tlv link-agg 32-12 lldp dot3-tlv mac-phy 32-12 lldp dot3-tlv max-frame 32-13 lldp dot3-tlv poe 32-13 show lldp config 32-14 show lldp info local-device 32-15 show lldp info remote-device 32-16 show lldp info statistics 32-18
Chapter 33: Spanning Tree Commands 33-1
spanning-tree 33-2 spanning-tree mode 33-2 spanning-tree forward-time 33-4 spanning-tree hello-time 33-4 spanning-tree max-age 33-5 spanning-tree priority 33-6 spanning-tree pathcost method 33-6 spanning-tree transmission-limit 33-7 spanning-tree mst-configuration 33-7 mst vlan 33-8 mst priority 33-9 name 33-9 revision 33-10 max-hops 33-11 spanning-tree spanning-disabled 33-11 spanning-tree cost 33-12 spanning-tree port-priority 33-13 spanning-tree edge-port 33-13 spanning-tree portfast 33-14 spanning-tree link-type 33-15 spanning-tree mst cost 33-16 spanning-tree mst port-priority 33-17 spanning-tree protocol-migration 33-17 show spanning-tree 33-18 show spanning-tree mst configuration 33-20
xiv
Contents
Chapter 34: VLAN Commands 34-1
GVRP and Bridge Extension Commands 34-1
bridge-ext gvrp 34-2 show bridge-ext 34-2 switchport gvrp 34-3 show gvrp configuration 34-3 garp timer 34-4 show garp timer 34-5
Editing VLAN Groups 34-5
vlan database 34-5 vlan 34-6
Configuring VLAN Interfaces 34-7
interface vlan 34-7 switchport mode 34-8 switchport acceptable-frame-types 34-9 switchport ingress-filtering 34-9 switchport native vlan 34-10 switchport allowed vlan 34-11 switchport forbidden vlan 34-12
Displaying VLAN Information 34-12
show vlan 34-13
Configuring IEEE 802.1Q Tunneling 34-14
dot1q-tunnel system-tunnel-control 34-15 switchport dot1q-tunnel mode 34-15 switchport dot1q-tunnel tpid 34-16 show dot1q-tunnel 34-17
Configuring Private VLANs 34-18
pvlan 34-18 show pvlan 34-19
Configuring Protocol-based VLANs 34-20
protocol-vlan protocol-group (Configuring Groups) 34-20 protocol-vlan protocol-group (Configuring Interfaces) 34-21 show protocol-vlan protocol-group 34-22 show interfaces protocol-vlan protocol-group 34-22
Chapter 35: Class of Service Commands 35-1
Priority Commands (Layer 2) 35-1
queue mode 35-2 switchport priority default 35-3 queue bandwidth 35-4 queue cos-map 35-4 show queue mode 35-5 show queue bandwidth 35-6 show queue cos-map 35-6
xv
Contents
Priority Commands (Layer 3 and 4) 35-7
map ip port (Global Configuration) 35-7
map ip port (Interface Configuration) 35-8
map ip precedence (Global Configuration) 35-8
map ip precedence (Interface Configuration) 35-9
map ip dscp (Global Configuration) 35-10
map ip dscp (Interface Configuration) 35-10
show map ip port 35-11
show map ip precedence 35-12
show map ip dscp 35-13
Chapter 36: Quality of Service Commands 36-1
class-map 36-2 match 36-3 rename 36-4 description 36-4 policy-map 36-5 class 36-5 set 36-6 police 36-7 service-policy 36-8 show class-map 36-9 show policy-map 36-9 show policy-map interface 36-10
Chapter 37: Multicast Filtering Commands 37-1
IGMP Snooping Commands 37-1
ip igmp snooping 37-1
ip igmp snooping vlan static 37-2
ip igmp snooping version 37-2
ip igmp snooping immediate-leave 37-3
show ip igmp snooping 37-4
show mac-address-table multicast 37-4 IGMP Query Commands 37-5
ip igmp snooping querier 37-5
ip igmp snooping query-count 37-6
ip igmp snooping query-interval 37-7
ip igmp snooping query-max-response-time 37-7
ip igmp snooping router-port-expire-time 37-8 Static Multicast Routing Commands 37-9
ip igmp snooping vlan mrouter 37-9
show ip igmp snooping mrouter 37-10
Chapter 38: Domain Name Service Commands 38-1
ip host 38-1 clear host 38-2
xvi
Contents
ip domain-name 38-3 ip domain-list 38-3 ip name-server 38-4 ip domain-lookup 38-5 show hosts 38-6 show dns 38-7 show dns cache 38-7 clear dns cache 38-8
Chapter 39: DHCP Commands 39-1
DHCP Client 39-1
ip dhcp client-identifier 39-1 ip dhcp restart client 39-2
DHCP Relay 39-3
ip dhcp restart relay 39-3 ip dhcp relay server 39-4
DHCP Server 39-5
service dhcp 39-5 ip dhcp excluded-address 39-6 ip dhcp pool 39-6 network 39-7 default-router 39-8 domain-name 39-8 dns-server 39-9 next-server 39-9 bootfile 39-10 netbios-name-server 39-10 netbios-node-type 39-11 lease 39-11 host 39-12 client-identifier 39-13 hardware-address 39-14 clear ip dhcp binding 39-14 show ip dhcp binding 39-15
Chapter 40: Router Redundancy Commands 40-1
Virtual Router Redundancy Protocol Commands 40-1
vrrp ip 40-2 vrrp authentication 40-3 vrrp priority 40-3 vrrp timers advertise 40-4 vrrp preempt 40-5 show vrrp 40-6 show vrrp interface 40-8 show vrrp router counters 40-9 show vrrp interface counters 40-9
xvii
Contents
clear vrrp router counters 40-10
clear vrrp interface counters 40-10
Chapter 41: IP Interface Commands 41-1
Basic IP Configuration 41-1
ip address 41-3
ip default-gateway 41-4
show ip interface 41-5
show ip redirects 41-5
ping 41-6
ipv6 enable 41-7
ipv6 general-prefix 41-8
show ipv6 general-prefix 41-9
ipv6 address 41-9
ipv6 address autoconfig 41-10
ipv6 address eui-64 41-12
ipv6 address link-local 41-13
show ipv6 interface 41-14
ipv6 default-gateway 41-17
show ipv6 default-gateway 41-17
ipv6 mtu 41-18
show ipv6 mtu 41-19
show ipv6 traffic 41-19
clear ipv6 traffic 41-25
ping ipv6 41-25
ipv6 neighbor 41-26
ipv6 nd dad attempts 41-27
ipv6 nd ns interval 41-29
show ipv6 neighbors 41-30
clear ipv6 neighbors 41-32 Address Resolution Protocol (ARP) 41-32
arp 41-32
arp timeout 41-33
clear arp-cache 41-34
show arp 41-34
ip proxy-arp 41-35
Chapter 42: IP Routing Commands 42-1
Global Routing Configuration 42-1
ip routing 42-1
ip route 42-2
clear ip route 42-3
show ip route 42-3
show ip host-route 42-4
show ip traffic 42-5
xviii
Contents
Routing Information Protocol (RIP) 42-5
router rip 42-6 default-metric 42-7 timers basic 42-8 network 42-9 neighbor 42-9 version 42-10 redistribute 42-11 ip rip receive version 42-12 ip rip send version 42-13 ip split-horizon 42-14 ip rip authentication key 42-14 ip rip authentication mode 42-15 show rip globals 42-16 show ip rip 42-16
Open Shortest Path First (OSPF) 42-18
router ospf 42-19 router-id 42-20 compatible rfc1583 42-20 default-information originate 42-21 timers spf 42-22 area range 42-23 area default-cost 42-24 summary-address 42-24 redistribute 42-25 network area 42-26 area stub 42-27 area nssa 42-28 area virtual-link 42-30 ip ospf authentication 42-32 ip ospf authentication-key 42-33 ip ospf message-digest-key 42-34 ip ospf cost 42-35 ip ospf dead-interval 42-36 ip ospf hello-interval 42-36 ip ospf priority 42-37 ip ospf retransmit-interval 42-38 ip ospf transmit-delay 42-38 show ip ospf 42-39 show ip ospf border-routers 42-40 show ip ospf database 42-41 show ip ospf interface 42-49 show ip ospf neighbor 42-50 show ip ospf summary-address 42-51 show ip ospf virtual-links 42-51
xix
Contents
Section IV: Appendices
Appendix A: Software Specifications A-1
Software Features A-1 Management Features A-2 Standards A-2 Management Information Bases A-3
Appendix B: Troubleshooting B-1
Problems Accessing the Management Interface B-1 Using System Logs B-2
Glossary
Index
xx
Tables
Table 1-1 Key Features 1-1 Table 1-2 System Defaults 1-7 Table 3-1 Web Page Configuration Buttons 3-3 Table 3-2 Switch Main Menu 3-4 Table 4-1 Logging Levels 4-30 Table 5-1 SNMPv3 Security Models and Levels 5-2 Table 5-2 Supported Notification Messages 5-14 Table 6-1 HTTPS System Support 6-6 Table 6-2 802.1X Statistics 6-24 Table 8-1 LACP Port Counters 8-13 Table 8-2 LACP Internal Configuration Information 8-14 Table 8-3 LACP Neighbor Configuration Information 8-16 Table 8-4 Port Statistics 8-22 Table 10-4 Recommended STA Path Cost Range 10-14 Table 10-5 Default STA Path Costs 10-14 Table 10-9 Recommended STA Path Cost Range 10-21 Table 10-10 Default STA Path Costs 10-21 Table 13-1 Mapping CoS Values to Egress Queues 13-3 Table 13-2 CoS Priority Levels 13-3 Table 13-3 Mapping IP Precedence 13-8 Table 13-4 Mapping DSCP Priority 13-10 Table 19-1 Address Resolution Protocol 19-8 Table 19-2 ARP Statistics 19-14 Table 19-3 IP Statistics 19-16 Table 19-4 ICMP Statistics 19-17 Table 19-5 USP Statistics 19-19 Table 19-6 TCP Statistics 19-20 Table 20-1 RIP Information and Statistics 20-11 Table 21-1 General Command Modes 21-6 Table 21-2 Configuration Command Modes 21-8 Table 21-3 Keystroke Commands 21-9 Table 21-4 Command Group Index 21-10 Table 22-1 General Commands 22-1 Table 23-1 System Management Commands 23-1 Table 23-2 Device Designation Commands 23-1 Table 23-3 System Status Commands 23-3 Table 23-4 Frame Size Commands 23-9 Table 23-5 Flash/File Commands 23-10 Table 23-6 File Directory Information 23-15 Table 23-7 Line Commands 23-17 Table 23-8 Event Logging Commands 23-26 Table 23-9 Logging Levels 23-27
xxi
Ta b le s
Table 23-10 show logging flash/ram - display description 23-30 Table 23-11 show logging trap - display description 23-31 Table 23-12 SMTP Alert Commands 23-32 Table 23-13 Time Commands 23-35 Table 24-1 SNMP Commands 24-1 Table 24-2 show snmp engine-id - display description 24-9 Table 24-3 show snmp view - display description 24-11 Table 24-4 show snmp group - display description 24-13 Table 24-5 show snmp user - display description 24-15 Table 25-1 Authentication Commands 25-1 Table 25-2 User Access Commands 25-1 Table 25-3 Default Login Settings 25-2 Table 25-4 Authentication Sequence Commands 25-4 Table 25-5 RADIUS Client Commands 25-6 Table 25-6 TACACS+ Client Commands 25-9 Table 25-7 Web Server Commands 25-11 Table 25-8 HTTPS System Support 25-13 Table 25-9 Telnet Server Commands 25-14 Table 25-10 Secure Shell Commands 25-15 Table 25-11 show ssh - display description 25-22 Table 25-12 Port Security Commands 25-24 Table 25-13 802.1X Port Authentication Commands 25-26 Table 25-14 IP Filter Commands 25-35 Table 26-1 Access Control List Commands 26-1 Table 26-2 IPv4 ACL Commands 26-1 Table 26-3 IPv6 ACL Commands 26-7 Table 26-4 MAC ACL Commands 26-12 Table 26-5 ACL Information Commands 26-16 Table 27-1 Interface Commands 27-1 Table 27-2 show interfaces switchport - display description 27-11 Table 28-1 Link Aggregation Commands 28-1 Table 28-2 show lacp counters - display description 28-8 Table 28-3 show lacp internal - display description 28-8 Table 28-4 show lacp neighbors - display description 28-9 Table 28-5 show lacp sysid - display description 28-10 Table 29-1 Mirror Port Commands 29-1 Table 30-1 Rate Limit Commands 30-1 Table 31-1 Address Table Commands 31-1 Table 33-1 Spanning Tree Commands 33-1 Table 33-2 Recommended STA Path Cost Range 33-12 Table 33-3 Default STA Path Costs 33-12 Table 34-1 VLAN Commands 34-1 Table 34-2 GVRP and Bridge Extension Commands 34-1 Table 34-3 Commands for Editing VLAN Groups 34-5 Table 34-4 Commands for Configuring VLAN Interfaces 34-7
xxii
Ta b le s
Table 34-5 Commands for Displaying VLAN Information 34-12 Table 34-7 Private VLAN Commands 34-18 Table 34-8 Protocol-based VLAN Commands 34-20 Table 35-1 Priority Commands 35-1 Table 35-2 Priority Commands (Layer 2) 35-1 Table 35-3 Default CoS Priority Levels 35-5 Table 35-4 Priority Commands (Layer 3 and 4) 35-7 Table 35-5 Mapping IP Precedence to CoS Values 35-9 Table 35-6 Mapping IP DSCP to CoS Values 35-11 Table 36-1 Quality of Service Commands 36-1 Table 37-1 Multicast Filtering Commands 37-1 Table 37-2 IGMP Snooping Commands 37-1 Table 37-3 IGMP Query Commands 37-5 Table 37-4 Static Multicast Routing Commands 37-9 Table 38-1 DNS Commands 38-1 Table 38-2 show dns cache - display description 38-7 Table 39-1 DHCP Commands 39-1 Table 39-2 DHCP Client Commands 39-1 Table 39-3 DHCP Relay Commands 39-3 Table 39-4 DHCP Server Commands 39-5 Table 40-1 Router Redundancy Commands 40-1 Table 40-2 VRRP Commands 40-1 Table 40-3 show vrrp - display description 40-7 Table 40-4 show vrrp brief - display description 40-8 Table 41-1 IP Interface Commands 41-1 Table 41-2 Basic IP Configuration Commands 41-1 Table 41-3 show ipv6 interface - display description 41-15 Table 41-4 show ipv6 mtu - display description 41-19 Table 41-5 show ipv6 traffic - display description 41-21 Table 41-6 show ipv6 neighbors - display description 41-31 Table 41-7 Address Resolution Protocol Commands 41-32 Table 42-1 IP Routing Commands 42-1 Table 42-2 Global Routing Configuration Commands 42-1 Table 42-3 show ip route - display description 42-4 Table 42-4 show ip host-route - display description 42-4 Table 42-5 Routing Information Protocol Commands 42-5 Table 42-6 show rip globals - display description 42-16 Table 42-7 show ip rip - display description 42-17 Table 42-8 Open Shortest Path First Commands 42-18 Table 42-9 show ip ospf - display description 42-39 Table 42-10 show ip ospf border-routers - display description 42-40 Table 42-11 show ip ospf database - display description 42-42 Table 42-12 show ip ospf asbr-summary - display description 42-43 Table 42-13 show ip ospf database-summary - display description 42-44 Table 42-14 show ip ospf external - display description 42-45
xxiii
Ta b le s
Table 42-15 show ip ospf network - display description 42-46 Table 42-16 show ip ospf router - display description 42-47 Table 42-17 show ip ospf summary - display description 42-48 Table 42-18 show ip ospf interface - display description 42-49 Table 42-19 show ip ospf neighbor - display description 42-50 Table 42-20 show ip ospf virtual-links - display description 42-51 Table B-1 Troubleshooting Chart B-1
xxiv
Figures
Figure 3-1 Home Page 3-2 Figure 3-2 Front Panel Indicators 3-3 Figure 4-1 System Information 4-2 Figure 4-2 Switch Information 4-3 Figure 4-3 Displaying Bridge Extension Configuration 4-5 Figure 4-4 IPv4 Interface Configuration - Manual 4-7 Figure 4-5 Default Gateway 4-7 Figure 4-6 IPv4 Interface Configuration - DHCP 4-8 Figure 4-7 IPv6 Interface Configuration 4-14 Figure 4-8 IPv6 General Prefix Configuration 4-16 Figure 4-9 IPv6 Neighbor Detection and Neighbor Cache 4-19 Figure 4-10 Configuring Support for Jumbo Frames 4-21 Figure 4-11 Copy Firmware 4-22 Figure 4-12 Setting the Startup Code 4-23 Figure 4-13 Deleting Files 4-23 Figure 4-14 Downloading Configuration Settings for Start-Up 4-25 Figure 4-15 Setting the Startup Configuration Settings 4-25 Figure 4-16 Configuring the Console Port 4-27 Figure 4-17 Configuring the Telnet Interface 4-29 Figure 4-18 System Logs 4-31 Figure 4-19 Remote Logs 4-32 Figure 4-20 Displaying Logs 4-33 Figure 4-21 Enabling and Configuring SMTP Alerts 4-34 Figure 4-22 Renumbering the Stack 4-36 Figure 4-23 Resetting the System 4-36 Figure 4-24 Current Time 4-37 Figure 4-25 SNTP Configuration 4-38 Figure 4-26 Clock Time Zone 4-39 Figure 4-27 Summer Time 4-41 Figure 5-1 Enabling the SNMP Agent 5-2 Figure 5-2 Configuring SNMP Community Strings 5-3 Figure 5-3 Configuring SNMP Trap Managers 5-6 Figure 5-4 Setting the SNMPv3 Engine ID 5-7 Figure 5-5 Setting an Engine ID 5-8 Figure 5-6 Configuring SNMPv3 Users 5-10 Figure 5-7 Configuring Remote SNMPv3 Users 5-12 Figure 5-8 Configuring SNMPv3 Groups 5-16 Figure 5-9 Configuring SNMPv3 Views 5-17 Figure 6-1 User Accounts 6-2 Figure 6-2 Authentication Server Settings 6-4 Figure 6-3 HTTPS Settings 6-6 Figure 6-4 HTTPS Settings 6-7
xxv
Figures
Figure 6-5 SSH Host-Key Settings 6-11 Figure 6-6 SSH User Public-Key Settings 6-13 Figure 6-7 SSH Server Settings 6-15 Figure 6-8 Port Security 6-17 Figure 6-9 802.1X Global Information 6-19 Figure 6-10 802.1X Global Configuration 6-20 Figure 6-11 802.1X Port Configuration 6-22 Figure 6-12 802.1X Port Statistics 6-25 Figure 6-13 IP Filter 6-27 Figure 7-1 Selecting ACL Type 7-2 Figure 7-2 ACL Configuration - Standard IPv4 7-3 Figure 7-3 ACL Configuration - Extended IPv4 7-5 Figure 7-4 ACL Configuration - MAC 7-7 Figure 7-5 ACL Configuration - Standard IPv6 7-8 Figure 7-6 ACL Configuration - Extended IPv6 7-10 Figure 7-7 ACL Port Binding 7-11 Figure 8-1 Port - Port Information 8-1 Figure 8-2 Port - Port Configuration 8-5 Figure 8-3 Static Trunk Configuration 8-7 Figure 8-4 LACP Trunk Configuration 8-9 Figure 8-5 LACP - Aggregation Port 8-11 Figure 8-6 LACP - Port Counters Information 8-13 Figure 8-7 LACP - Port Internal Information 8-15 Figure 8-8 LACP - Port Neighbors Information 8-16 Figure 8-9 Port Broadcast Control 8-18 Figure 8-10 Mirror Port Configuration 8-19 Figure 8-11 Rate Limit Configuration 8-21 Figure 8-12 Port Statistics 8-25 Figure 9-1 Static Addresses 9-2 Figure 9-2 Dynamic Addresses 9-3 Figure 9-3 Address Aging 9-4 Figure 10-1 STA Information 10-4 Figure 10-2 STA Global Configuration 10-9 Figure 10-3 STA Port Information 10-12 Figure 10-6 STA Port Configuration 10-15 Figure 10-7 MSTP VLAN Configuration 10-17 Figure 10-8 MSTP Port Information 10-19 Figure 10-11 MSTP Port Configuration 10-21 Figure 11-1 Globally Enabling GVRP 11-4 Figure 11-2 VLAN Basic Information 11-4 Figure 11-3 VLAN Current Table 11-5 Figure 11-4 VLAN Static List - Creating VLANs 11-7 Figure 11-5 VLAN Static Table - Adding Static Members 11-8 Figure 11-6 VLAN Static Membership by Port 11-9 Figure 11-7 VLAN Port Configuration 11-11
xxvi
Loading...
+ 762 hidden pages