Cisco Catalyst 2950, 2950 24 - Catalyst Switch, 2950G 48 - Catalyst Switch - Stackable Software Manual
Catalyst 2950 Desktop Switch Software
Configuration Guide
Cisco IOS Release 12.1(6)EA2b
March, 2002
Corporate Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 526-4100
Customer Order Number: DOC-7811380=
Text Part Number: 78-11380-03
gy gy y
N
i
t
A
S
L
r
A
b
THE SPECIFICATIONS AND INFORMATION REGARDING TH E PRODUCTS I N THIS M ANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL
STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT
WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MU ST TAKE F ULL RESPON SIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATIO N PACKET T HAT
SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY T HIS REFERENCE . IF YOU A RE UNABLE TO LO CATE THE SOFTWARE LICENSE
OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The Cisco implementation of T CP head er com pressi on is an adaptation of a program developed by the University of Califor nia, B erkeley ( UCB ) as par t of U CB’s public
domain version of the UNI X oper atin g sy stem. All rights reserved. Cop yright © 1981, Regents of the Uni versi ty of California.
NOTWITHSTANDING ANY OTHER WARRANTY HER EIN, ALL DO CUME NT FILES AN D SOFT WARE OF THE SE SUPP LIERS ARE PROV IDED “AS IS” WITH
ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLI ERS DISCLAI M ALL WARRAN TIES, EX PRESSED OR IMPLIED, INCLUDING, WITHOUT
LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A P ARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF
DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR I TS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING,
WITHOUT LIMITATION,LOST PROFITS ORLOSS ORDAMAGE TO DATAARISING OUT OFTHE USE OR INABILITY TOUSE THIS MAN UAL , EVEN IFCISCO
OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POS SIBILIT Y OF SUC H DAMAGES .
etworking Academy logo, Cisco Unity, Fast Step, Follow Me Browsing, FormShare, FrameShare, IGX, Internet Quotient, IP/VC, iQ Breakthrough, iQ Expertise, iQ FastTrack, the
Q Logo, iQ Net Readiness Scorecard, MGX, the Networkers logo, ScriptBuilder, ScriptShare, SMARTnet, TransPath, Voice LAN, Wavelength Router, and WebViewer are
rademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, and Discover All That’s Possible are service marks of Cisco Systems, Inc.; and Aironet,
SIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco
ystems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, FastHub, FastSwitch, GigaStack, IOS, IP/TV,
ightStream, MICA, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing, RateMUX, Registrar, SlideCast, StrataView Plus, Stratm, SwitchProbe, TeleRouter, and VCO are
egistered trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries.
ll other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship
etween Cisco and any other company. (0110R)
Catalyst 2950 Desktop Sw it ch Softw are Configuration Guide
Copyright © 2002, Cisco System s, Inc.
All rights reserved.
Preface xvii
Audience xvii
Purpose xvii
Organization xviii
Conventions xix
Related Publications xx
Obtaining Documentation xx
World Wide Web xx
Documentation CD-ROM xxi
Ordering Documenta tion xxi
Documentation Feedback xxi
Obtaining Technical Assistance xxi
Cisco.com xxii
Technical Assistance Center xxii
Cisco TAC Web Site xxii
Cisco TAC Escalation Center xxiii
CONTENTS
CHAPTER
CHAPTER
1 Overview 1-1
Features 1-1
Management Options 1-6
Management Interf ace Options 1-6
Advantages of Using CMS and Clustering Switches 1-7
Network Configura tion Examples 1-8
Design Concepts for Using the Switch 1-8
Small to Medium-Sized Network Configuration 1-10
Collapsed Backbone and Switch Cluster Configuration 1-12
Large Campus Configuration 1-13
2 Getting Started with CMS 2-1
Features 2-2
Front Panel View 2-4
Cluster Tree 2-5
Front-Panel Ima ges 2-6
Redundant Power System LED 2-7
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
iii
Contents
Port Modes and LEDs 2-8
VLAN Membership Modes 2-9
Topology View 2-10
Topology Icons 2-12
Device and Link Labe ls 2-13
Colors in the Topol ogy View 2-14
Topology Display Options 2-14
Menus and Toolbar 2-15
Menu Bar 2-15
Toolbar 2-20
Front Panel View Popup Menus 2-21
Device Popup Menu 2-21
Port Popup Menu 2-21
Topology View Popup Menus 2-22
Link Popup Menu 2-22
Device Popup Menus 2-23
Interaction Modes 2-25
Guide Mode 2-25
Expert Mode 2-25
Wizards 2-26
Tool Tips 2-26
Online Help 2-27
CMS Window Components 2-28
Host Name List 2-28
Tabs, Lists, and Tables 2-29
Icons Used in Windows 2-29
Buttons 2-29
Accessing CMS 2-30
Access Modes in CMS 2-31
Verifying Your Changes 2-32
Change Notification 2-32
Error Checking 2-32
Saving Your Changes 2-32
Using Different Versions of CMS 2-33
Where to Go Next 2-33
Catalyst 2950Desktop Switch Software Configuration Guide
iv
78-11380-03
Contents
CHAPTER
3 Using the Command-Line Interface 3-1
IOS Command Modes 3-1
Getting Help 3-3
Abbreviating Commands 3-3
Using no and default Forms of Commands 3-4
Understanding CLI Messages 3-4
Using Command History 3-5
Changing the Command Hi story Buffer Size 3-5
Recalling Commands 3-5
Disabling the Command History Feature 3-5
Using Editing Fea tures 3-6
Enabling and Disabling Editing Features 3-6
Editing Commands through Keystrokes 3-6
Editing Command Lines that Wrap 3-7
Searching and Filtering Output of show and more Commands 3-8
Accessing the CLI 3-9
Accessing the CLI from a Browser 3-9
CHAPTER
CHAPTER
Saving Configuration Changes 3-10
Where to Go Next 3-10
4 General Switch Administration 4-1
Basic IP Connectivity to the Switch 4-1
Switch Software Releases 4-2
Console Port Acces s 4-2
Telnet Access to the CLI 4-2
HTTP Access to CMS 4-3
SNMP Network Management Platforms 4-4
SNMP Versions 4-4
Using FTP to Access the MIB Files 4-5
Using SNMP to Access MIB Variables 4-5
Default Settings 4-6
5 Clustering Switches 5-1
Understanding Switch Clusters 5-2
Command Switch Characteristics 5-2
Standby Command Switch Characteristics 5-3
Candidate and Member Switches Characteristics 5-3
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
v
Contents
Planning a Switch Cluster 5-4
Automatic Discovery of Cluster Candidates and Members 5-4
Discovery through CDP Hops 5-5
Discovery through Non-CDP-Capable and Noncluster-Capable Devices 5-6
Discovery through the Same Management VLAN 5-7
Discovery through Different Management VLANs 5-8
Discovery of Newly Installed Switches 5-9
HSRP and Standby Command Switches 5-10
Virtual IP Addres s es 5-11
Automatic Recovery of Cluster Configuration 5-11
Consideration s for Cluster Standby Groups 5-12
IP Addresses 5-13
Host Names 5-14
Passwords 5-14
SNMP Community Strings 5-14
TACACS+ 5-15
Access Modes in CMS 5-15
Management VLAN 5-15
LRE Profiles 5-16
Availability of Switch-Specific Features in Switch Clusters 5-16
CHAPTER
Creating a Switch Cluster 5-16
Enabling a Command Switch 5-17
Adding Member Switches 5-18
Creating a Cluster Standby Group 5-20
Verifying a Switch Cl uster 5-22
Using the CLI to Manage Switch Clusters 5-23
Catalyst1900 and Catalyst 2820 CLI Considerations 5-23
Using SNMP to Manage Switch Clusters 5-24
6 Configuring the System 6-1
Changing IP Information 6-1
Manually Assigning and Removing Switch IP Information 6-2
Using DHCP-Based Autoconfiguration 6-2
Understanding DHCP-Based Autoconfiguration 6-3
DHCP Client Request Process 6-3
Configuring the DHCP Server 6-4
Configuring the TFTP Server 6-5
Configuring th e Domain Name and the DNS 6-5
Configuring the Relay Device 6-6
Catalyst 2950Desktop Switch Software Configuration Guide
vi
78-11380-03
Obtaining Configuration Files 6-7
Example Configuration 6-8
Changing the Password 6-10
Setting the System Date and Time 6-11
Configuring Daylight Saving Time 6-11
Configuring the Network Time Protocol 6-11
Configuring the Switch as an NTP Client 6-11
Enabling NTP Authentication 6-11
Configuring the Switch for NTP Broadcast-Client Mode 6-12
Configuring SNMP 6-12
Disabling and Enabling SNMP 6-12
Entering Community Strings 6-12
Adding Trap Managers 6-12
Configuring CDP 6-13
Configuring CDP for Extended Discovery 6-14
Contents
Managing the ARP Table 6-14
Managing the MAC Address Tables 6-15
MAC Addresses and VLANs 6-15
Changing the Addres s Aging Time 6-16
Removing Dynamic Address Entries 6-16
MAC Address Notification 6-17
Enabling Notification of Learned or Deleted MAC Addresses 6-17
Adding Secure Addresses 6-18
Removing Secure Addresses 6-18
Adding and Removing Static Address Entries 6-18
Configuring Static Addresses for EtherChann el Port Groups 6-19
Configuring TACACS+ 6-20
Configuring the TACACS+ Server Host 6-20
Configuring Login Authentication 6-21
Specifying TACACS+ Authorization for Privileged EXEC Access and Network Services 6-22
Starting TACACS+ Accounting 6-22
Configuring a Switch for Local AAA 6-23
Controlling Switc h Access with RADIUS 6-24
Understanding RADIUS 6-24
RADIUS Operation 6-25
Configuring RADIUS 6-26
Default RADIUS Configu ration 6-26
Identifying the RADIUS Server Host 6-27
Configuring RADI US Login Authentication 6-29
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
vii
Contents
Defining AAA Server Groups 6-31
Configuring RADIUS Authorization for Privilege d EXEC Access and Network Services 6-33
Starting RADIUS Accounting 6-34
Configuring Set tings for All RADIUS Servers 6-35
Configuring the Switch to Use Vendor-Specific RADIUS Attributes 6-35
Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 6-36
Displaying the RADIUS Configuration 6-37
CHAPTER
7 Configuring 802.1X Port-Based Authentication 7-1
Understanding 80 2.1X Port-Based Authenticati on 7-1
Device Roles 7-2
Authentication Initiation and Message Exchange 7-3
Ports in Authorized and Unauthorized States 7-4
Supported Topologies 7-5
Configuring 802.1X Authentication 7-6
Default 802.1X Configuration 7-6
802.1X Configur ation Guidelines 7-7
Enabling 802.1X Authentication 7-8
Configuring th e Switch-to-RADIUS-Server Communication 7-9
Enabling Periodic Re-Authentication 7-10
Manually Re-Authe nticating a Client Connected to a Port 7-11
Changing the Quiet Period 7-11
Changing the Switch-to-Client Retransmission Time 7-12
Setting the Switch-to-Client Frame-Retransmission Number 7-13
Enabling Multiple Hosts 7-13
Resetting the 802.1X Configuration to the Defa ult Values 7-14
Displaying 802.1X Statistics and Status 7-14
CHAPTER
8 Configuring VLANs 8-1
Overview 8-1
Management VLANs 8-3
Changing the Manageme nt VLAN for a New Switch 8-3
Changing the Management VLAN Through a Telnet Connection 8-4
Assigning VLAN Port Membership Modes 8-4
VLAN Membership Combinations 8-6
Assigning Static-Access Ports to a VLAN 8-7
Using VTP 8-7
The VTP Domain 8-7
VTP Modes and Mode Transitions 8-7
Catalyst 2950Desktop Switch Software Configuration Guide
viii
78-11380-03
VTP Advertisements 8-8
VTP Version 2 8-9
VTP Pruning 8-9
VTP Configuration Guidelines 8-10
Domain Names 8-10
Passwords 8-10
Upgrading from Previous Software Releases 8-11
VTP Version 8-11
Default VTP Confi guration 8-11
Configuring VTP 8-12
Configuring VTP Server Mode 8-12
Configuring VTP Client Mode 8-12
Disabling VTP (VTP Transparent Mode) 8-13
Enabling VTP Version 2 8-14
Disabling VTP Version 2 8-14
Enabling VTP Pruning 8-15
Monitoring VTP 8-15
Contents
VLANs in the VTP Database 8-15
Token Ring VLANs 8-16
VLAN Configuration Gui delines 8-16
Default VLAN Configuration 8-16
Configuring VLANs in the VTP Database 8-17
Adding a VLAN 8-18
Modifying a VL A N 8-18
Deleting a VLAN from th e Database 8-18
Assigning Static-Access Ports to a VLAN 8-19
How VLAN Trunks Work 8-20
IEEE 802.1Q Confi guration Considerations 8-21
Trunks Interacting with Other Features 8-21
Configuring a Trunk Port 8-22
CLI: Disabling a Trunk Port 8-22
CLI: Defining the Allowed VLANs on a Trunk 8-23
Changing the Pruning-Eligible List 8-23
Configuring the Native VLAN for Untagged Traffic 8-24
Load Sharing Using STP 8-24
Load Sharing Using STP Port Priorities 8-25
Configuring STP Port Priorities and Load Sharing 8-25
Load Sharing Using STP Path Cost 8-27
How the VMPS Works 8-28
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
ix
Contents
Dynamic Port VLAN Membership 8-29
VMPS Databa se Configuration File 8-29
VMPS Configuration Guidelines 8-31
Default VMPS Configuration 8-31
Configuring Dyna mic VLAN Membership 8-31
Configuring Dyna mic Ports on VMPS Clients 8-32
Reconfirming VLAN Membe rships 8-33
Changing the Reconfirmation Interval 8-33
Changing the Retry Count 8-33
Administering and Monitoring the VMPS 8-34
Troubleshooting Dynamic Port VLAN Membership 8-34
Dynamic Port VLAN Membership Configuration Example 8-34
CHAPTER
9 Configuring STP 9-1
Understanding Basic STP Features 9-1
Supported STP Instances 9-2
STP Overview 9-2
Election of the Root Switch 9-3
Bridge Protocol Data Units 9-3
STP Timers 9-4
Creating the STP Topology 9-4
STP Interface States 9-5
Blocking State 9-6
Listening State 9-7
Learning State 9-7
Forwarding State 9-7
Disabled State 9-7
MAC Address Allocation 9-8
STP Address Management 9-8
STP and IEEE 802.1Q Tr unks 9-8
STP and Redundant Connectivity 9-8
Accelerated Aging to Retain Connectivity 9-9
Understanding Advanced STP Features 9-9
Understanding Po rt Fast 9-10
Understanding BPD U Guard 9-10
Understanding UplinkFast 9-11
Understanding Cross-Stack UplinkFast 9-12
How CSUF Works 9-13
Events that Cause Fast Convergence 9-14
Catalyst 2950Desktop Switch Software Configuration Guide
x
78-11380-03
Limitations 9-15
Connecting the Stack Ports 9-15
Understanding BackboneFast 9-17
Understanding Root Guard 9-19
Configuring Basic STP Features 9-20
Default STP Confi guration 9-20
Disabling STP 9-21
Configuring the Root Switch 9-21
Configuring a Secondary Root Switch 9-23
Configuring STP Port Priority 9-24
Configuring STP Path Cost 9-25
Configuring the Switch Priority of a VLAN 9-26
Configuring the Hello Time 9-27
Configuring th e Forwarding-Delay Time for a VLAN 9-27
Configuring the Maximum-Aging Time for a VLAN 9-28
Configuring STP for Use in a Cascaded Cluster 9-28
Displaying STP Status 9-29
Contents
CHAPTER
Configuring Advanced STP Features 9-30
Configuring Port Fast 9-30
Configuring BPDU Gu ard 9-31
Configuring Upl inkFast for Use with Redundant Links 9-32
Configuring Cross-Stack UplinkFast 9-33
Configuring BackboneFast 9-34
Configuring Root Guard 9-34
10 Configuring the Switch Ports 10-1
Changing the Port Speed and Duplex Mode 10-1
Connecting to Devi ces That Do Not Autonegotiate 10-2
Setting Speed and Duplex Parameters 10-2
Configuring IEEE 802.3X Flow Control 10-3
Configuring Flooding Controls 10-4
Enabling Storm Control 10-4
Disabling Storm Control 10-5
Configuring Protected Ports 10-5
Enabling Port Se cu rity 10-6
Defining the Maximum Secure Address Count 10-7
Enabling Port Se cu rity 10-7
Disabling Port Security 10-8
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xi
Contents
Understanding the EtherChannel 10-8
Understanding Po rt-Channel Interfaces 10-9
Understanding th e Port Aggregation Protocol 10-10
PAgP Modes 10-10
Physical Learners and Aggregate-Port Learners 10-11
PAgP Interaction with Other Features 10-12
Understanding Lo ad Balancing and Forwarding Methods 10-12
Default EtherCha nnel Configuration 10-13
EtherChannel Configuration Guidelines 10-14
Configuring EtherChannels 10-14
Configuring EtherChannel Load Balancing 10-16
Configuring the PAgP Learn Method and Priority 10-17
Displaying Ethe rChannel and PAgP Status 10-17
Configuring UniDirectional Link Detection 10-18
Understanding SPA N 10-18
SPAN Concepts and Termi nology 10-19
SPAN Session 10-19
Traffic Types 10-19
Source Port 10-20
Destination Por t 10-20
SPAN Traffic 10-21
SPAN Interaction with Other Features 10-21
CHAPTER
Configuring SPAN 10-22
SPAN Configuration Gui delines 10-22
Creating a SPAN Session and Specifying Ports to Monitor 10-23
Removing Ports from a SPAN Sess io n 10-24
Displaying SPAN Status 10-25
11 Configuring IGMP Snooping and MVR 11-1
Understanding and Configuring IGMP Snooping 11-1
Enabling or Disabling IGMP Snooping 11-2
CLI: Enabling or Disabling IGMP Snooping 11-2
Immediate-Leave Processing 11-3
CLI: Enabling IGMP Immediate-Leave Processing 11-3
Setting the Snooping Method 11-4
Joining a Multicast Group 11-4
Statically Confi guring a Host to Join a Group 11-5
CLI: Statical ly Configuring a Interface to Join a Group 11-6
Catalyst 2950Desktop Switch Software Configuration Guide
xii
78-11380-03
Leaving a Multicast Group 11-6
CLI: Configuring a Multicast Router Port 11-7
Understanding Multi cast VLAN Registration 11-7
Using MVR in a Multicast Television Application 11-8
Configuration Guidelines and Limitations 11-10
Default MVR Configuration 11-10
Configuring MVR Global Parameters 11-10
Configuring MV R Interfaces 11-12
Displaying MVR 11-14
Contents
CHAPTER
12 Configuring Network Security with ACLs 12-1
Understanding ACLs 12-1
ACLs 12-2
Handling Fragmented and Unfragmented Traffic 12-3
Understanding Access Control Parameters 12-4
Guidelines for Configuring ACLs on the Catalyst 2950 Switches 12-5
Configuring ACLs 12-6
Unsupported Feat ures 12-6
Creating Standard and Extended IP ACLs 12-7
ACL Numbers 12-7
Creating a Numbered Standard ACL 12-8
Creating a Numbered Extended ACL 12-9
Creating Named Standard and Extended ACLs 12-12
Including Comments About Entries in ACLs 12-14
Applying the ACL to an Interface or Terminal Line 12-15
Displaying ACLs 12-16
Displaying Access Groups 12-17
Examples for Compiling ACLs 12-18
Creating Named MAC Extended ACLs 12-20
Creating MAC Access Groups 12-21
CHAPTER
13 Configuring QoS 13-1
Understanding QoS 13-2
Basic QoS Model 13-3
Classification 13-4
Classification Based on QoS ACLs 13-5
Classification Based on Class Maps and Policy Maps 13-5
Policing and Marking 13-6
Mapping Tables 13-7
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xiii
Contents
Queueing and Scheduling 13-8
How Class of Service Works 13-8
Port Priority 13-8
Port Scheduling 13-8
CoS and WRR 13-8
Configuring QoS 13-9
Default QoS Config uration 13-9
Configuratio n Guidelines 13-10
Configuring Classification Using Port Trust States 13-10
Configuring the Trust State on Ports within the Q oS Domain 13-11
Configuring the CoS Value for an Interface 13-13
Configuring a QoS Policy 13-13
Classifying Tr affic by Using ACLs 13-14
Classifying Tr affic by Using Class Maps 13-17
Classifying, Policing, and Marking Traffic by Usi ng Policy Maps 13-18
Configuring CoS Map s 13-21
Configuring the CoS-to-DSCP Map 13-21
Configuring the DSCP-to-CoS Map 13-22
Configuring CoS an d WRR 13-23
CLI: Configuring CoS Priority Queues 13-24
Configuring WR R 13-24
CHAPTER
Displaying QoS Information 13-25
QoS Configuration Examples 13-25
QoS Configuration for the Common Wiring Closet 13-26
QoS Configuration for the Intelligent Wiring Closet 13-27
13-28
14 Troubleshooting 14-1
Avoiding Configuration Conflicts 14-1
Avoiding Autonegotiation Mismatches 14-2
Troubleshooting CMS Sessions 14-3
Copying Configur ation Files to Troubleshoot Configuration Problems 14-4
Recovery Procedu res 14-5
Recovering from Lost Member Connectivity 14-5
Recovering from a Comma nd Switch Failure 14-5
Replacing a Failed Command Switch with a Cluster Member 14-6
Replacing a Failed Command Switch with Another Switch 14-7
Recovering from a Fa iled Command Switch Without HSRP 14-8
Recovering from a Lost or Forgotten Password 14-9
Catalyst 2950Desktop Switch Software Configuration Guide
xiv
78-11380-03
Recovering from Cor rupted Software 14-10
Debug Commands 14-11
Enabling Debuggi ng on a Specific Feature 14-11
Enabling All-System Diagnostics 14-12
Redirecting Debu g and Error Message Output 14-12
Contents
APPENDIX
APPENDIX
I
NDEX
A Error Mess ages for Security and QoS Configurations A-1
B System Messages B-1
How to Read System Messages B-1
Error Message Traceback Reports B-3
Error Messages and Recovery Procedures B-3
Chassis Message B-3
CMP Messages B-3
Environment Messag es B-4
GigaStack Messages B-4
Link Message B-5
RTD Messages B-5
Storm Control Messages B-6
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xv
Contents
Catalyst 2950Desktop Switch Software Configuration Guide
xvi
78-11380-03
Audience
Preface
The Catalyst 2 950 Desktop Switch Softw are Configuration Guide is for the network manager
responsible for configuring the Ca talyst 2950 switches, hereafter referred to as the switches. Before
using this guide, you sh ould be familiar with the concepts and terminology of Ethernet and local area
networking.
Purpose
This guide provides information abo ut configuring and trou ble shooting a switch o r switch clusters. I t
includes descriptions of the management interface options and the features supported by the s witch
software. The Catalyst 295 0 sw itch i s supp orted by either the standard software image or the enh ance d
softwareimage. The enhanced software image provides a richer set of features, including access control
lists (ACLs) and enhance d quality of servi ce ( QoS) features.
The enhanced so ftwar e i mage supports these switches:
• Catalyst 2950C-24
• Catalyst 2950G-12-E I
• Catalyst 2950G-24-E I
• Catalyst 2950G-24-E I-DC
• Catalyst 2950G-48-E I
• Catalyst 2950T-24
The standard software image supports these switches:
• Catalyst 2950-12
• Catalyst 2950-24
Use this guide with other d ocume nts for informat ion about these to pics:
• Requirements—This guide assumes that you have met the hardware and software requirements and
cluster compatibility requirements described in the release notes.
• Start-up information—This guide assu mes that you have assigned switch IP i nform ation and
passwords by using the setup program described in the release notes.
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xvii
Organization
Preface
• Cluster Management Suite (CMS) information—This guide provides an overview of the CMS
web-based, switch management in terface. For information about CMS re quire ments and the
proceduresforbrowser and plug-in configuration and accessing CMS, refer to the release notes. For
CMS field-level window descriptions and procedures, refer to the CMS online he lp.
• Cluster configuration—This guide provides information about planning for, creating, and
maintaining switch clusters. Because configuring switch clusters is most easily performed through
CMS, this guide does not provide the command-line interface (CLI) procedures. For the cluster
commands, refer to the Catalyst 2 950 Desktop Switch Comm and Reference.
• CLI command information—This guide provides an overview for u si ng the CLI. For com plet e
syntax and usa ge information about the com ma nds that have been spe cificall y created or changed
for the Catalyst 2950 switches, refe r to the Catalyst 2950 Desktop Switch Command Reference.
Note This gui de does not repeat the conc e pts and CLI procedures provided in the stand ar d Cisco IOS Release
12.1 documentat ion. For information a bo ut t he standard IOS Release 12.1 commands, refe r to the IOS
documentation s et available from the Ci sco.c om home page a t Service and Support > Technical
Documents
Software drop-down list.
. On the Cisco Product Documentation home page, select Release 12.1 from the C isco IOS
Organization
The organization of this guide is as follows:
Chapter 1, “Overv i ew,” lists th e software feat ur es of this rele a se and provides examples of h ow the
switch can be deployed in a network.
Chapter 2, “Getting Started with CMS,” d es cr ib es the Clus ter Managem en t Suite (CMS ) web-based,
switch management interface. For inform ation on configuring your web browser and accessing CMS,
refer to the release notes. For field-level description s of all CMS w indows and pro cedu res for usi ng the
CMS windows, refer to the online help.
Chapter 3, “Using the Comman d-L ine Int erface, ” describes how to access the command modes, use the
command-lineinterface (CLI), and describes CLI messages thatyou mightreceive. It also describes how
to get help, abbreviate commands, use no and default fo rms of commands, use command history and
editing features, and how to search and filter the output of show and more commands.
Chapter 4, “General Switch Administration,” includes the switch-configuration default settings and
information a bout software relea ses, accessing the management interfaces, an d u si ng Simple Network
Management Protoco l (SNM P).
Chapter 5, “Clustering Switches,” describes switch clusters and the considerations for creating and
maintaining them. The online help provides the CMS procedures for configuring switch clusters.
Configuring switch clusters is most easily performed through CMS; therefore, CLI procedures are not
provided. Cluster commands are described in the Catalyst 2950 Desktop Switch Command Reference.
Chapter 6, “Configuring the System,” provides the co nside rati ons and CLI p roce dures for configuring
switch-wide settings. The online help provides the CMS procedures for configuring switch-wide
settings.
Chapter 7, “Configuring 802.1X Port- Based Authentication ,” provides the c onsiderations and CLI
procedures for configuring 802.1X port-based auth entic atio n . Th e onl ine help provides t he CMS
procedures.
Chapter 8, “Configuring VLANs,” provides the considerations and CLI procedures for configuring
VLANs. The onli ne help provides the CMS procedures.
Catalyst 2950Desktop Switch Software Configuration Guide
xviii
78-11380-03
Preface
Conventions
Chapter 9, “Configuring STP,” provides the conside rati ons a nd CL I proc edure s fo r co nfiguring basic and
advanced spanning- tree features. T he online help provides the C MS procedures.
Chapter 10, “Configuring the Switch Ports,” provides the considerations and CLI pro cedu res for
configuring the swi tch ports. The onli ne h elp provides the CM S pr oced ures for configuring t he sw itch
ports.
Chapter 11, “Configuring IGMP Snooping and MVR,” provides the cons id erat ion s and CL I proce dures
for configuring Internet Group Management Protocol (IGMP) snooping. It also describes Multicast
VLAN Registration (MVR), a local IGMP snooping feature available on the switch. The online help
provides the CMS procedures .
Chapter 12, “Configuring Network Security with ACLs,” provides the considerations and CLI
procedures for configuring network security by using access control lists (ACLs). It describes how to
apply ACLs to interface s a nd provides examples. The online help p rovid es t he CM S procedures.
Chapter 13, “Configuring QoS,” pr ovides the conside ratio ns and CLI procedures for configuring quality
of service (QoS). With this feature, you can providepreferentialtreatmentto certain types of traffic. The
online help pr ovides the CMS procedur es.
Chapter 14, “Troubleshooting,” describes how to identify and resolve software problems related to the
IOS s oftware.
Appendix A, “Error Messag es for Security and QoS Co nfigurati ons” lists the CLI error mess ag es for
configuring security using ACLs and fo r configuring QoS.
Appendix B, “System Messages,” lists the IOS system messages for the switch.
Conventions
This guide uses these conventions to convey instructions and information:
Command descriptions use these conventions:
Interactive examples use these conventions:
Notes, cautions, and tips use these conventions and symbols:
• Commands and keywords are in boldface text.
• Arguments for wh ich you supply values are in italic.
• Square brackets ([ ]) indicate optional elem ents.
• Braces ({ }) group required choices, and vertical bars ( | ) separate the alternative elements.
• Braces and vertical bars within square brackets ([{ | }]) indicatea required choice within an optional
element.
• Terminal se ssions and system displ ays a re in screen font.
• Information you enter is in boldface screen font.
• Nonprinting characters, such as passwords or tabs, are in angle brackets (< >).
Note Means reader take note. Notes contain helpful suggestions or references to materials not contained in
this manual.
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xix
Related Publications
Caution Means reader be careful. In this si tuati on, you might d o s omet hing that could re sult in equipment
damage or loss of data.
Tip Means the following will h elp you solve a problem. The tips in forma tion might not be troubleshooting
or even an action, but could be u seful information.
Related Publications
These documen ts provide complete information about the switch and are available from thi s
Cisco.com site:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/index.htm
You can order printed copie s of docume nts wi th a DOC- xxxxxx= number from the Cisco.c om site s and
from the telephone numbers listed in the “Obtain ing Docu mentatio n” sectiononpagexx.
Preface
• Release Notes for the Catalyst 2950 Switch ( not orderable but i s available o n Cisco.com)
Note Switch requi rem ents and procedures for in itial configurations and software upgr a des tend t o change and
therefore appear only in the release note s. Befo re inst alling, co nfigurin g, or upgra ding the sw itch, re fer
to the release notes on Cisco.com for the latest information.
• Catalyst 2950 Des ktop Switch Software Configuration Guide, (order number DOC-7811380=)
• Catalyst 2 950 Desktop Switch Command Reference, (order number DOC-78 113 81=)
• Catalyst 2 950 Desktop Switch Hardware Installation Guide (order number DOC-781 1157= )
• Catalyst GigaStack Gigab it Interface Converter Hardware Installation Guide
(order number DOC-786460=)
Obtaining Documentation
The following section s expl ain how to obtain doc umen tati on from Cisco Syst ems.
World Wide Web
You can access the most cur rent Cisco documentati on on the World Wide Web at the following URL :
http://www.cisco.com
Translated documentation is available at the following URL:
http://www.cisco.com/public/countries_languages.shtml
Catalyst 2950Desktop Switch Software Configuration Guide
xx
78-11380-03
Preface
Documentation CD-ROM
Cisco documentation and additional literature are available in a Cisco Documentation CD-ROM
package, whi ch i s s hip ped with your prod uc t. T he Documentatio n CD -ROM is up date d m on thl y a nd m ay
be more curre nt than printed documentatio n. The CD-ROM package is available as a s ingl e unit or
through an annual subscription.
Ordering Documentation
Cisco documentation is available in this ways:
• Registered Cisco Dir ect Customers can order Cisco product docum ent ation from the Ne tworkin g
Products MarketPlace:
http://www.cisco.com/cgi-bin/order/order_root.pl
• RegisteredCisco.comusers can order the Documentation CD-ROMthrough the online Subscription
Store:
http://www.cisco.com/go/subscription
Obtaining Technical Assistance
• Nonregistered Cisc o.co m u ser s ca n o rd er doc um enta tion through a loc al a cco unt r ep resen tat ive by
calling Cisco corporate headquarters (California, USA) at 408 526-7208 or, elsewhere in North
America, by calling 800 553-NETS (6387).
Documentation Feedback
If you are read ing Ci sco p rod uct documentation on the WorldWideWeb, you can send us your comments
by completing the online survey.When you display the document listing for this platform, click Give Us
Your Feedback. Af ter you display the survey, select the manual that you wi sh to comment on. Click
Submit to send your comments to the Cisc o d oc ument ati on group.You can e-mail your commen ts to
bug-doc@cisco.com.
To submit your comments by mail, use t he r esponse card behind the front cover of your document, or
write to the following address:
Cisco Systems
Attn: Document Resource C onn ect ion
170 West Tasman Drive
San Jose, CA 95134-9883
We appreciate your comments.
Obtaining Technical Assistanc e
Cisco provides Cisco.c om as a starting point for all technical assistanc e. Customers and pa rtn ers c an
obtain documen tation, troubleshooting tips, and sa mpl e co nfigurati ons from online tools by using the
Cisco Technical Assistance Center (TAC) Web Site. Cisco.com registeredusers havecomplete access to
the technical support resources on the Cisco TAC Web Site.
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xxi
Obtaining Technical As sistance
Cisco.com
Preface
Cisco.com is the foundation of a suite of i ntera ct ive, networked services that provides im medi ate, ope n
access to Cisco inform atio n, net workin g solut ions, se rvi ces, pr ogr ams, a nd re source s at any t ime, fr om
anywhere in the world.
Cisco.com is a highly integrat ed Internet appli cati on and a powerful, easy-to-use tool that provide s a
broad range of features and servi ces to help you to
• Streamline business p rocesses and improve produ ctivity
• Resolve technical issues with online supp ort
• Download and test software packages
• Order Cisco lea rning materials and merchandise
• Register for online skill assessment, tr aining, and certification programs
You can self-register on Cisco.com to obtain customized information and service. To access Cisco.com,
go to the following URL:
http://www.cisco.com
Technical Assistance Center
The Cisco TAC is available to all customers who need technical assistance with a Cisco product,
technology, or solution. Two types of support a re available through the C isco TAC: the Cisco TAC
Web Site and the Cisco TAC Escalation Center.
Inquiries to Ci sco TAC are categorized according to the urgency of the issue:
• Priority level 4 (P4)—You need information or assistance concerning Cisco product capabilities,
product installation , or basic produc t c onfigurat ion.
• Priority level 3 (P3)—Your network performance is degraded. Network functionality is noticeably
impaired, but most business operations continue.
• Priority level 2 (P2)—Your pro ductio n network is severely d egraded , affecting significant aspects
of business operations. N o work aroun d is available.
• Priority level1 (P1)—Your p roduc tion network is down, and a critical impact t o business operati ons
will occur if service is not restore d quickly. No workaround is available.
Which Cisco TAC resource you choose i s based on the priority o f th e problem and the conditions of
service contracts, when applicable.
Cisco TAC Web Site
The Cisco TAC WebSiteallows you to resolve P3 and P4 issues yourself, saving both cost and tim e. The
site provides around-the-clock access to online tools, knowledge bases, and software. To access the
CiscoTACWebSite,gotothefollowingURL:
http://www.cisco.com/tac
All customers, partners, and resellers who have a valid Cisco services contract have complete access to
the technical su pport resources on the Cisco TAC Web Site. The Cisco TAC Web Site requires a
Cisco.com login I D a nd password. If you have a valid service contract but do not have a login ID or
password, go to th e fo llowing UR L t o register:
http://www.cisco.com/register/
Catalyst 2950Desktop Switch Software Configuration Guide
xxii
78-11380-03
Preface
If you cannot re solve yo ur technical issues by using the Cisco TAC Web Site, and you are a Cisco.com
registered user, you can open a case online by using the TAC Case Open tool at the following URL:
http://www.cisco.com/tac/caseopen
If you have Interne t a cces s, it is recom mende d that you op en P3 and P4 cases through t he Cisco TAC
Web Site.
Cisco TAC Escalation Center
The Cisco TAC Escalation Center addresses issues that are classified as priority level 1 or priority
level 2 ; t hese classifications ar e assigned when severe network degradation significantly i mpac ts
business operation s. When you contact the TAC Escalati on Center wit h a P1 or P2 proble m, a Cisco TAC
engineer will automatically open a case.
To obta in a directory of toll-free Cisco TAC tele ph one numbers for your countr y, go to the following
URL:
http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml
Before calling , please ch eck with your network operations center to determine the level of Cisco supp ort
services to which your company is entitled; for example, SMARTnet, SMARTnet Onsite, or Network
Supported Accounts (NSA). In add ition , please have available your service agreement number and your
product serial n umb er.
Obtaining Technical Assistance
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
xxiii
Obtaining Technical As sistance
Preface
Catalyst 2950Desktop Switch Software Configuration Guide
xxiv
78-11380-03
Features
Note Some features r equi re t hat you have the enhan ced software image installed on your switch. Se e t he
CHAPTER
1
Overview
This chapter provid es these topics abou t t he C ataly st 29 50 switch software:
• Features
• Management option s
• Examples of t he Catalyst 2950 switches in d ifferent network topologi es
The Catalyst 295 0 s oftwa re su ppor ts t he s wit che s li sted in the Release Notes for the Catalyst 2950
Cisco IOS Release 12.1(6)EA2b. Table 1-1 descr ibes the features supported in this release.
“Purpose” sectiononpagexviifor a list of the switches that suppo rt this. The f ootno te for Table 1-1 lists
the features available for this software image.
78-11380-03
Note Table 4-2 on page 4-7 lists the defaults for all key features. It also includes re fere nces to wher e you can
find additional information about eac h feature.
Catalyst 2950Desktop Switch Software Configuration Guide
1-1
Chapter 1 Overview
Features
Table 1-1 Features
Ease of Use and Ease of Deployment
• Cluster Management Suite (CMS) software for simplified switch and switch cluster management through a web
browser, such a s Netscape Commun icat or or Microsoft In ter net Explorer, from anywhere i n y our intranet
• Switch clustering technology used with CMS for
–
Unified configuration, monitoring, authentication, and software upgrade of multiple switches (refer to the r elease
notes for a list of eligible cluster members).
–
Automatic discovery of candidate switches and creation of clusters of up to 16 switches that can be managed
through a sin gle IP address.
–
Extended discovery of cluster candidates that are not directly connected to the command switch.
• Hot Standby Router Protocol (HSRP) for command-swi tch redundancy. The redundant comma nd switches used for
HSRP must have compatible software releases.
Note See the “Advantages of Using CMS and Clustering Sw itc he s” sectiononpage1-7. Refer to the release notes for the
CMS, cluster hardware, software, a nd browser requirements.
Performance
• Autosensing of speed on the 10/100 ports and autonegotiation of duplex mode on all switch ports for optimizing
bandwidth
• IEEE 802.3x flow control on Gigabit ports operating i n full-duplex mode
• Fast EtherCha nn el and Gigabit EtherChannel for enhanced fault tole ranc e and for provid ing up to 2 G bps of bandwidth
between sw itc hes, routers, and servers
• Support for mini-jumbo frames. The Catalyst 2950 switches running Cisco IOS Release12.1(6)EA2 or later support frame
sizes 1500 to 1530 bytes
• Per-port broadcast storm control for preventing faulty end stat ion s f rom d egradin g overall system performanc e w ith
broadcast storm s
• Port Aggregation Protocol (PAgP) for automatic creation of EtherChannel links
• Internet Group Management P rotoc ol (IGMP) snooping support to limit flooding of IP multica st traffic
• Multicast VLAN registration (MVR) to continuously send multicast streams in a multicast VLAN, but to isolate the
streams from subscriber VLAN s for bandwidth a nd security reaso ns
• Protected port ( private VLAN edge port) option for restricting the forwarding of traffic to d esignated p orts on the same
switch
• Dynamic address learning for enhanced securi ty
Catalyst 2950Desktop Switch Software Configuration Guide
1-2
78-11380-03
Chapter 1 Overview
Features
Table 1-1 Features (continued)
Manageability
• Dynamic Host Configuration Protocol (DHCP)-based autoconfiguration for automatically configuring the switch
during startup with IP address information and a configuration file that it receives during DHCP-base d
autoconfiguration
Note DHCP r ep lace s the Bootstrap Protocol (BOOTP) feature autoconfiguration to ensure retrieval of configuration files
by unicast TFTP messages. BO OTP is available in earlier software releases f or this switch.
• Address Resolution Pro toco l (ARP) for ide ntifyi ng a swit ch throu gh its IP addr ess and it s corr espond in g MAC address
• Cisco Dis covery Protocol (CDP) versions 1 and 2 for network to pology discovery and ma pping between the switch a nd
other Cisco devices on the ne twork
• Network Time Protocol (NTP) for providin g a consistent tim estam p t o all switches f rom an external sour ce
• Directed unica st r eques ts to a Trivial File Transfer Protocol (TFTP) server for obtaining software upgrades from a TFTP
server
• Default configura tion storage in Flash memory to ensure that the switch ca n be conn ec ted to a network and can forward
traffic with minimal user intervention
• In-band man ag em en t access throug h a CMS w eb-ba se d session
• In-band man ag emen t access throug h up to 16 simultaneous Telnet conne ct ions for multipl e command-line interface
(CLI)-based se ssions over the network
• In-band manag em en t a cce ss through Simple Network Mana gem ent Protocol (SNMP) set and get requests
• Out-of-bandmanagementaccess through the switch console port to a directly-attached terminal or to a remote terminal
through a serial connection and a modem
Note For additional desc rip tions of the mana gement interfaces, see the “Management Options” sectiononpage1-6.
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
1-3
Chapter 1 Overview
Features
Table 1-1 Features (continued)
Redundancy
• HSRP for comma nd switch redundancy
• UniDirectional link detection (UDLD) on all Ethernet ports for detecting and disabling unidirectional links on
fiber-optic interfaces caused by incorrect fiber-optic wiring or port faults
• IEEE 802.1d Spanning Tree Protocol (STP) for redundant backbone co nne ctio ns and loop- fre e networks. ST P has these
features
–
Per-VLAN Spanning Tree (PVST) for balancing load across virtual LANs (VLANs)
–
Port Fast mode for elimin ating f orward delay by enabling a port to immediately change from a blocking st ate t o a
forwarding s tat e
–
UplinkFast, cross-stack UplinkFast, and BackboneFast for fast convergence afte r a spanning-tre e topology change
and for achieving load balancing between redund ant uplinks, inclu ding Gigabit uplinks and cross-stack Gigabit
uplinks
–
STP root guard for preventing switc hes outside the n etwor k c ore from becomin g th e STP root
Note A Catalyst 2 950 switch can sup port up to 64 spanning-tree ins tanc es (see Table 8-1 on page 8-2).
VLAN Support
• Catalyst 2950 switches suppo rt 2 50 por t-based V LANs for assigning users to VLANs associated with appropria te
network resources, traffic patterns, and bandwidth.
Note The Catalyst 2950-12 and Catalyst 2950 -24 switches supp ort only 64 port -base d VLANs.
• IEEE 802.1Q trunking protocol on all ports for network moves, adds, and changes; management and control of
broadcast a nd multicast traffic; and network secur ity by establi shing VLAN groups fo r high-security users and network
resources
• VLAN Membership Policy Server (VMPS) for dynamic VLAN membership
• VLAN Trunking Protocol (VTP) pruning for reducing network traffic by restricting flooded trafficto links destined for
stations receiving the traffic
• Dynamic Trunking Pro toc ol (DTP) for negotiating trun king on a link between two devices and for negotiating the type
of trunking encapsulation (802.1Q) to be used
Catalyst 2950Desktop Switch Software Configuration Guide
1-4
78-11380-03
Chapter 1 Overview
Features
Table 1-1 Features (continued)
Security
• Bridge Protocol Data Unit (BPDU) Guard for shutting down a Port Fast-configured port when an invalid configuration
occurs
• Protected port o ption for restricting the forwarding of traffic to designated ports on the same switch
• Password-protected access (read-only and read-write access) to management interfaces ( CMS and CLI) for protection
against unauthori zed configuration cha nges
• Multilevel security for a choice of security level, notification, and resulting actions
• MAC-based p ort- level security for restricting the use of a switch port to a specific group of source addresses and
preventing switch acces s f rom unauthorized st ations
• Terminal Access Controll er A ccess Control System Plus (TACACS+), a proprietar y fea ture for managing network
security through a TACACS server
• 802.1X port-b ased authenticat ion to prevent unauthoriz ed devices from gain ing access to th e network
• Standard and extended IP access control lists (ACLs) for defining security policies
Quality of Service and Class of Service
Classification
•
IP Differentiated Services Code Point (IP DSCP) and class of service (CoS) marking priorities on a per-port basis for
protecting the performance of mission-critical applications
• Flow-based packet classification (classification based on information in the MAC, IP, and TCP/UDP headers) for
high-performance quality of service at the network edge, allowing for differentiated service levelsfor different types of
network traffic and for prioritizing mission-critical traffic in the network
1
1
1
1
• Support for IE EE 802.1P CoS s che du ling for classification and preferenti al treatment of high-priority voice traffic
Policing
• Traffic-policing policies on the switch port for allocating the amount of the port bandwidth to a specific traffic flow
• Policing traffic flows to restrict specific applications or traffic flows to metered, predefined rates
• Up to 60 policers on ingress Gigabit-capable Ethernet ports
Up to six polic ers o n ingress 10/100 ports
1
Granularity of 1 Mbps on 10/ 100 ports and 8 Mbps on 10/10 0/100 0 ports
• Out-of-profile markdown for packets that exceed bandwidth utilization limits
1
1
1
1
Egress Policing and Scheduling of Egress Queues
Four egress queues o n all switch ports. Support for strict priority and weighted r oun d-robin (WRR) CoS po lici es
•
1
78-11380-03
Catalyst 2950Desktop Switch Software Configuration Guide
1-5
Chapter 1 Overview
Management Options
Table 1-1 Features (continued)
Monitoring
• Switch LEDs that provide visual port and switch status
• Switch Port Analyzer (SPAN) for complete traffic monitoring on any port
• Four groups (hist ory, statistics, a larms, and events) of embe dded remote monitor ing (RMON) agent s for network
monitoring and traffic analysis
• MAC address notification for tr acking the MAC addresses that the switch has learned or removed
• Syslog facility for logging system messages about authentication or authorization errors, resource issues, and time-out
events
1. This feature is available only on a switch running the enhanced software image.
Management Options
The Catalyst 2 950 switches are d esign ed for plug-and-pl ay operation: you o nly need to assig n ba sic IP
information to the switch and connect it to the other devices in your network. If you have specific
network needs, you can configure an d moni tor the sw itch—on an individual basis or as part of a switch
cluster—through i ts various manag em en t interfaces.
This section discusses these topics:
• Interface options for manag ing the switches
• Advantages of clustering switches and using CMS
Management Interface Options
You can configure and monitor i ndividual switches and switch clusters by using these interfaces:
• CMS—CMS is a graphical user interface that can be launched from anywhere in your network
through a we b b rowser suc h as Netscape Communicator or Microsoft I nter net Explorer. C MS is
already installed on the switch. Using CMS, you can configure and m on itor a standalone switc h, a
specific cluster member, or an entire switch cluster. You can also display network topologies to
gather link information and to display switch images to modify switch and port level settings.
For more information about CMS, see Chapter 2, “Getting Started with CMS.”
• CLI—The sw itch IOS CLI so ftwar e is enhanced to support d esk top- switc hing features. You can
configure and monitor the switch and switch cluster members from the CLI. Youcan access the CLI
either by connecting your management station directly to the s witch console port or by using Telnet
from a remote management station.
For more informati on about the C LI, s ee Chapter 3, “Using t he Co mm an d-Li ne I nter face.”
• SNMP—SNMP provides a means to mo nitor and control the switch a nd switch cluster members.
You can manage switch configuration settings, performance, security,andcollect statisticsby using
SNMP management applicati ons such as CiscoWorks2000 LAN Management Suite (LMS) and HP
OpenView.
Catalyst 2950Desktop Switch Software Configuration Guide
1-6
78-11380-03
Loading...