Cisco CSS 11501 - Content Services Switch, CSS 11506, CSS 11503, CSS 11501 Getting Started Manual

Download

Page 1

Cisco Content Services Switch Getting Started Guide

Software Version 7.40 August 2004

Corporate Headquarters

Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 526-4100

Text Part Number: OL-6037-01

Page 2

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

CCSP, the Cisco Square Bridge logo, Cisco Unity, Follow Me Browsing, FormShare, and StackWise are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, and iQuick Study are service marks of Cisco Systems, Inc.; and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, GigaDrive, GigaStack, HomeLink, Internet Quotient, IOS, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, LightStream, Linksys, MeetingPlace, MGX, the Networkers logo, Networking Academy, Network Registrar, Packe t, PIX, Post-Routing, Pre-Routing, ProConnect, RateMUX, Registrar, ScriptShare, SlideCast, SMARTnet, StrataView Plus, SwitchProbe, TeleRouter, The Fastest Way to Increase Your Internet Quotient, TransPath, and VCO are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0406R)

Cisco Content Services Switch Getting Started Guide

Page 3

Preface xi

Audience xii

How to Use This Guide xii

Related Documentation

In addition to this document, the CSS documentation set includes the following:

Document Title Description

Related Documentation

Release Note for the Cisco 11500 Series Content Services Switch

Cisco 11500 Series Content Services Switch Hardware Installation Guide

Cisco Content Services Switch Administration Guide

This release note provides information on operating considerations, caveats, and command-line interface (CLI) commands for the Cisco 11500 series CSS.

This guide provides information for installing, cabling, and powering the Cisco 11500 series CSS. In addition, this guide provides information about CSS specifications, cable pinouts, and hardware troubleshooting.

This guide describes how to perform administrative tasks on the CSS, including upgrading your CSS software and configuring the following:

• Logging, including displaying log messages

and interpreting sys.log messages

• User profile and CSS parameters

• SNMP

• RMON

• XML documents to configure the CSS

OL-6037-01

• CSS scripting language

• Offline Diagnostic Monitor (Offline DM)

Cisco Content Services Switch Getting Started Guide

xiii

Page 14

Related Documentation

Preface

Document Title Description

Cisco Content Services Switch Routing and Bridging Configuration Guide

Cisco Content Services Switch Content Load-Balancing Configuration Guide

This guide describes how to perform routing and bridging configuration tasks on the CSS, including:

• Management ports, interfaces, and circuits

• Spanning-tree bridging

• Address Resolution Protocol (ARP)

• Routing Information Protocol (RIP)

• Internet Protocol (IP)

• Open Shortest Path First (OSPF) protocol

• Cisco Discovery Protocol (CDP)

• Dynamic Host Configuration Protocol (DHCP)

relay agent

This guide describes how to perform CSS content load-balancing configuration tasks, including:

• Flow and port mapping

• Services

• Service, global, and script keepalives

xiv

• Source groups

• Loads for services

• Dynamic Feedback Protocol (DFP)

• Owners

• Content rules

• Sticky parameters

• HTTP header load balancing

• Content caching

• Content replication

Cisco Content Services Switch Getting Started Guide

OL-6037-01

Page 15

Preface

Related Documentation

Document Title Description

Cisco Content Services Switch Global Server Load-Balancing Configuration Guide

Cisco Content Services Switch Redundancy Configuration Guide

Cisco Content Services Switch Security Configuration Guide

This guide describes how to perform CSS global load-balancing configuration tasks, including:

• Domain Name System (DNS)

• DNS Sticky

• Content Routing Agent

• Client-Side Accelerator

• Network proximity

This guide describes how to perform CSS redundancy configuration tasks, including:

• VIP and virtual interface redundancy

• Adaptive session redundancy

• Box-to-box redundancy

This guide describes how to perform CSS security configuration tasks, including:

• Controlling access to the CSS

• Secure Shell Daemon protocol

OL-6037-01

Cisco Content Services Switch SSL Configuration Guide

• Radius

• TAC ACS +

• Firewall load balancing

This guide describes how to perform CSS SSL configuration tasks, including:

• SSL certificate and keys

• SSL termination

• Back-end SSL

• SSL initiation

Cisco Content Services Switch Getting Started Guide

Page 16

Symbols and Conventions

Preface

Document Title Description

Cisco Content Services Switch Command Reference

Cisco Content Services Switch Device Management User’s Guide

Symbols and Conventions

This guide uses the following symbols and conventions to identify different types of information.

Caution A caution means that a specific action you take could cause a loss of data or

adversely impact use of the equipment.

This reference provides an alphabetical list of all CLI commands including syntax, options, and related commands.

This guide describes how to use the Device Management user interface, an HTML-based Web-based application that you use to configure and manage your CSS.

xvi

Warning

Note A note provides important related information, reminders, and recommendations.

A warning describes an action that could cause you physical harm or damage the equipment.

Bold text indicates a command in a paragraph.

Courier text indicates text that appears on a command line, including the CLI

prompt.

Courier bold text indicates commands and text you enter in a command line.

Italic text indicates the first occurrence of a new term, book title, emphasized text, and variables for which you supply values.

1. A numbered list indicates that the order of the list items is important.

a. An alphabetical list indicates that the order of the secondary list items is

important.

Cisco Content Services Switch Getting Started Guide

OL-6037-01

Page 17

Preface

• A bulleted list indicates that the order of the list topics is unimportant.

–

An indented list indicates that the order of the list subtopics is unimportant.

Obtaining Documentation

Cisco documentation and additional literature are available on Cisco.com. Cisco also provides several ways to obtain technical assistance and other technical resources. These sections explain how to obtain technical information from Cisco Systems.

Cisco.com

Obtaining Documentation

You can access the most current Cisco documentation at this URL:

http://www.cisco.com/univercd/home/home.htm

You can access the Cisco website at this URL:

http://www.cisco.com

You can access international Cisco websites at this URL:

http://www.cisco.com/public/countries_languages.shtml

Ordering Documentation

You can find instructions for ordering documentation at this URL:

http://www.cisco.com/univercd/cc/td/doc/es_inpck/pdi.htm

You can order Cisco documentation in these ways:

• Registered Cisco.com users (Cisco direct customers) can order Cisco product

documentation from the Ordering tool:

http://www.cisco.com/en/US/partner/ordering/index.shtml

OL-6037-01

Cisco Content Services Switch Getting Started Guide

xvii

Page 18

Documentation Feedback

• Nonregistered Cisco.com users can order documentation through a local

account representative by calling Cisco Systems Corporate Headquarters (California, USA) at 408 526-7208 or, elsewhere in North America, by calling 800 553-NETS (6387).

Documentation Feedback

You can send comments about technical documentation to bug-doc@cisco.com.

You can submit comments by using the response card (if present) behind the front cover of your document or by writing to the following address:

Cisco Systems Attn: Customer Document Ordering 170 West Tasman Drive San Jose, CA 95134-9883

Preface

We appreciate your comments.

Obtaining Technical Assistance

For all customers, partners, resellers, and distributors who hold valid Cisco service contracts, Cisco Technical Support provides 24-hour-a-day, award-winning technical assistance. The Cisco Technical Support Website on Cisco.com features extensive online support resources. In addition, Cisco Technical Assistance Center (TAC) engineers provide telephone support. If you do not hold a valid Cisco service contract, contact your reseller.

Cisco Content Services Switch Getting Started Guide

xviii

OL-6037-01

Page 19

Preface

Cisco Technical Support Website

The Cisco Technical Support Website provides online documents and tools for troubleshooting and resolving technical issues with Cisco products and technologies. The website is available 24 hours a day, 365 days a year at this URL:

http://www.cisco.com/techsupport

Access to all tools on the Cisco Technical Support Website requires a Cisco.com user ID and password. If you have a valid service contract but do not have a user ID or password, you can register at this URL:

http://tools.cisco.com/RPF/register/register.do

Submitting a Service Request

Obtaining Technical Assistance

Using the online TAC Service Request Tool is the fastest way to open S3 and S4 service requests. (S3 and S4 service requests are those in which your network is minimally impaired or for which you require product information.) After you describe your situation, the TAC Service Request Tool automatically provides recommended solutions. If your issue is not resolved using the recommended resources, your service request will be assigned to a Cisco TAC engineer. The TAC Service Request Tool is located at this URL:

http://www.cisco.com/techsupport/servicerequest

For S1 or S2 service requests or if you do not have Internet access, contact the Cisco TAC by telephone. (S1 or S2 service requests are those in which your production network is down or severely degraded.) Cisco TAC engineers are assigned immediately to S1 and S2 service requests to help keep your business operations running smoothly.

To open a service request by telephone, use one of the following numbers:

Asia-Pacific: +61 2 8446 7411 (Australia: 1 800 805 227) EMEA: +32 2 704 55 55 USA: 1 800 553 2447

For a complete list of Cisco TAC contacts, go to this URL:

http://www.cisco.com/techsupport/contacts

OL-6037-01

Cisco Content Services Switch Getting Started Guide

xix

Page 20

Obtaining Additional Publications and Information

Definitions of Service Request Severity

To ensure that all service requests are reported in a standard format, Cisco has established severity definitions.

Severity 1 (S1)—Your network is “down,” or there is a critical impact to your business operations. You and Cisco will commit all necessary resources around the clock to resolve the situation.

Severity 2 (S2)—Operation of an existing network is severely degraded, or significant aspects of your business operation are negatively affected by inadequate performance of Cisco products. You and Cisco will commit full-time resources during normal business hours to resolve the situation.

Severity 3 (S3)—Operational performance of your network is impaired, but most business operations remain functional. You and Cisco will commit resources during normal business hours to restore service to satisfactory levels.

Preface

Severity 4 (S4)—You require information or assistance with Cisco product capabilities, installation, or configuration. There is little or no effect on your business operations.

Obtaining Additional Publications and Information

Information about Cisco products, technologies, and network solutions is available from various online and printed sources.

• Cisco Marketplace provides a variety of Cisco books, reference guides, and

logo merchandise. Visit Cisco Marketplace, the company store, at this URL:

http://www.cisco.com/go/marketplace/

• The Cisco Product Catalog describes the networking products offered by

Cisco Systems, as well as ordering and customer support services. Access the Cisco Product Catalog at this URL:

http://cisco.com/univercd/cc/td/doc/pcat/

• Cisco Press publishes a wide range of general networking, training and

certification titles. Both new and experienced users will benefit from these publications. For current Cisco Press titles and other information, go to Cisco Press at this URL:

http://www.ciscopress.com

Cisco Content Services Switch Getting Started Guide

OL-6037-01

Page 21

Preface

Obtaining Additional Publications and Information

• Packet magazine is the Cisco Systems technical user magazine for

maximizing Internet and networking investments. Each quarter, Packet delivers coverage of the latest industry trends, technology breakthroughs, and Cisco products and solutions, as well as network deployment and troubleshooting tips, configuration examples, customer case studies, certification and training information, and links to scores of in-depth online resources. You can access Packet magazine at this URL:

http://www.cisco.com/packet

• iQ Magazine is the quarterly publication from Cisco Systems designed to

help growing companies learn how they can use technology to increase revenue, streamline their business, and expand services. The publication identifies the challenges facing these companies and the technologies to help solve them, using real-world case studies and business strategies to help readers make sound technology investment decisions. You can access iQ Magazine at this URL:

http://www.cisco.com/go/iqmagazine

• Internet Protocol Journal is a quarterly journal published by Cisco Systems

for engineering professionals involved in designing, developing, and operating public and private internets and intranets. You can access the Internet Protocol Journal at this URL:

http://www.cisco.com/ipj

• World-class networking training is available from Cisco. You can view

current offerings at this URL:

http://www.cisco.com/en/US/learning/index.html

OL-6037-01

Cisco Content Services Switch Getting Started Guide

xxi

Page 22

Obtaining Additional Publications and Information

Preface

Cisco Content Services Switch Getting Started Guide

xxii

OL-6037-01

Page 23

CHAPTER

Booting, Logging In, and Getting Started

This chapter describes how to boot the CSS for the first time and on a routine basis, and how to log in. It also covers using the configuration script, which initiates automatically when you log in and the CSS does not detect an existing startup-config file. Information in this chapter applies to all CSS models, except where noted.

This chapter contains the following major sections:

• Booting and Logging In Quick Start

• Booting the CSS on a Routine Basis

OL-6037-01

• Logging in to the CSS

• Using the Configuration Script

• Rebooting the CSS

• Shutting Down the CSS

Cisco Content Services Switch Getting Started Guide

1-1

Page 24

Chapter 1 Booting, Logging In, and Getting Started

Booting and Logging In Quick Start

Table 1-1 is a quick start configuration table designed to simplify the CSS boot

and login process. For a complete description of each process, see the sections following Tab l e 1- 1.

Table 1-1 Boot and Login Quick Start

Task and Command Example

1. When booting the CSS for the first time, the CSS performs hardware

initialization and power-on diagnostics, and then prompts you to:

–

Configure the IP address, subnet mask, and default gateway for the Ethernet management port

–

Change the default administrative login name (admin) and password (

system)

–

Password-protect the Offline Diagnostic Monitor (Offline DM) menu

2. When you power up the CSS on a routine basis, the boot process:

–

Displays the software version and build number

–

Performs hardware initialization and power-on self tests

–

Provides access to the Offline DM menu

–

Prompts you to log in to the CSS

3. Log in to the CSS using the default administrative username (admin) and

password (system), or the username and password assigned to you.

4. When you log in to the CSS and it does not detect an existing startup-config

file, the CSS automatically initiates the configuration script. During the running of the configuration script, the CSS prompts you to enter the following information:

–

IP address and subnet mask for circuit VLAN1 (all interfaces are assigned to VLAN1 by default)

–

IP address for the default gateway

–

IP addresses for the servers

–

Virtual IP address (VIP) for the content rule

See the “Using the Configuration Script” section for details.

Cisco Content Services Switch Getting Started Guide

1-2

OL-6037-01

Page 25

Chapter 1 Booting, Logging In, and Getting Started

Booting the CSS for the First Time

Upon bootup, the CSS initially:

• Performs hardware initialization and power-on diagnostics (as described in

the “Booting the CSS on a Routine Basis” section)

• Prompts you to:

–

Configure the IP address, subnet mask, and default gateway for the Ethernet management port, used for CSS configuration and Ethernet management only; this port does not route traffic

–

Change the default administrative login name (admin) and password (

system)

–

Password-protect the Offline Diagnostic Monitor (Offline DM) menu

This sections includes the following procedures:

Booting the CSS for the First Time

• Entering Your Software License Key

• Configuring the Ethernet Management Port

• Changing the Default Username and Password

• Password Protecting the Offline DM Menu

Entering Your Software License Key

When the CSS completes hardware initialization and power-on diagnostics, the CSS prompts you to accept the license agreement. You must accept the license agreement or you cannot log in to the CSS.

If, during the initial CSS order placement, you purchased the Enhanced feature set, the Secure Management option (which includes Secure Shell Host and SSL strong encryption for the Device Management software), or the Proximity Database software option, locate the software Claim Certificate in the accessory kit. Follow the instructions on the Claim Certificate to obtain a license key from Cisco Systems for the additional software feature.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-3

Page 26

Booting the CSS for the First Time

After you receive the software license key, use the license command to enter the license key. At the prompt, enter the license key. To install the Enhanced feature set license key:

1. Log in to the CSS and enter the license command.

# license

2. Enter the 12-digit Enhanced feature set software license key. For example:

Enter the Software License Key (q to quit): nnnnnnnnnnnn

The Enhanced feature set license key is now properly installed and the feature set is activated.

Note After you enter the software license key for the Proximity Database software

option, you must reboot the CSS for the license key to take effect.

Chapter 1 Booting, Logging In, and Getting Started

Configuring the Ethernet Management Port

Once you enter a valid license key at the boot prompt, the CSS displays the following message and prompt:

Use the Ethernet management port IP address to access the Content Services Switch for configuration and management only. This port does not route traffic and is not associated with VLAN circuits.

The current address setting (0.0.0.0) disables the Ethernet Management port.

Do you wish to configure a valid address for the Ethernet management port [y/n]?

Cisco Content Services Switch Getting Started Guide

1-4

OL-6037-01

Page 27

Chapter 1 Booting, Logging In, and Getting Started

Enter one of the following:

• y to configure an IP address, subnet mask, and default gateway for the

Ethernet management port. The CSS prompts you for an IP address, a subnet mask, then a default gateway. You must enter a valid IP address or the CSS repeats the prompt until you do.

Enter IP Address [0.0.0.0]: Enter Subnet Mask [0.0.0.0]: Enter Default Gateway [0.0.0.0]:

Note The Ethernet management port IP address must be on a different subnet

from any other CSS VLAN circuit subnet. If you do not make this IP address unique, you will not be able to access the port.

• n to accept the default IP address (0.0.0.0), subnet mask (0.0.0.0), and

gateway (0.0.0.0) and to disable the port. The CSS does not prompt you for an IP address, subnet mask, and default gateway.

Booting the CSS for the First Time

The Ethernet management port default IP address of 0.0.0.0 disables the Ethernet management port. To enable the Ethernet management port, specify the ip address command in boot mode (see Chapter 2, Configuring CSS Basics) or use the Offline DM menu (refer to the Cisco Content Services Switch Administration Guide).

Changing the Default Username and Password

The CSS allows you to change the default username and password. We recommend that you change them to safeguard the CSS against unauthorized logins.

Access to this device is allowed using the default username and password. For enhanced security we recommend that you change the defaults. Do you want to change the defaults now (yes,no):

Enter one of the following:

• yes to change the username and password. The CSS prompts you for the

following information and password confirmation.

Enter <administrator> username: Enter <administrator> password: Confirm <administrator> password:

• no to keep the default username and password.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-5

Page 28

Chapter 1 Booting, Logging In, and Getting Started

Booting the CSS for the First Time

To change the default username and password from the CLI, see Chapter 2,

Configuring CSS Basics, for details.

Password Protecting the Offline DM Menu

The CSS prompts you to password-protect the Offline DM menu.

Set Password Protection for Offline Diagnostic Monitor menu (yes,no)

Caution Use care when password protecting the Offline DM menu and ensure that you

write down the new password. If you lose the new password, it cannot be recovered and you will be unable to access the Offline DM Main menu. The only solution, at that point, is to contact the Cisco Technical Assistance Center (TAC) at 1-800-553-2447 or 1-408-526-7209. You can also e-mail TAC at tac@cisco.com.

Enter one of the following:

• yes to password protect the Offline DM menu. When you password protect

the Offline DM menu, you need to enter the administrative username and password each time you access the menu.

The administrative username and password are required to access the Offline Diagnostic Monitor menu.

Initializing the disk...........OK

Refer to the Cisco Content Services Switch Administration Guide for information on the Offline DM menu options.

• no to disable password protection on the Offline DM menu.

The CSS prompts you to access the Offline DM menu.

Would you like to access the Offline Diagnostic Monitor? (Y <cr>)

Enter y to access the Offline DM menu. If you do not wish to access the Offline DM menu after seeing this message, wait for the CSS to boot.

Cisco Content Services Switch Getting Started Guide

1-6

OL-6037-01

Page 29

Chapter 1 Booting, Logging In, and Getting Started

Booting the CSS on a Routine Basis

When you power up a CSS, the boot process:

• Displays the software version and build number

• Performs hardware initialization and power-on self tests

• Provides access to the Offline DM menu

• Prompts you to log in to the CSS

The duration of the boot process depends on the CSS startup configuration and, with the CSS 11503 and CSS 11506, the number of modules in the chassis.

When you boot the CSS, it initializes the hardware and performs power-on self tests. The CSS displays the following messages (shown for the CSS 11503 and CSS 11506):

Booting the CSS on a Routine Basis

Operational boot flash. Attaching interrupt handlers...Done. Master SCM. Built Jun 22 2002 @ 15:14:20 Version x.xx Build xx

Note After the CSS begins to boot (approximately 15 seconds) the CSS allows you to

access the Offline DM menu. The Offline DM Main menu allows you to set the boot configuration, display the boot configuration, select Advanced Options, or reboot the system. Refer to the Cisco Content Services Switch Administration Guide for detailed information on using Offline DM.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-7

Page 30

Booting the CSS on a Routine Basis

The hardware then goes through a series of power-on self tests. The asterisks that appear indicate the completion of each test.

Press <ESC> to enter the Diagnostic Monitor * * * * * * * * * * * * * *... Ran 1 times, x tests. Detected 0 errors.

During the power-on self tests, the Status LEDs blink and change color to indicate the stages of the boot process. The left Status LED is bicolor, green or red. The right Status LED is amber.

The Ethernet connectors on the CSS 11501 and the 8- and 16-port Fast Ethernet Modules on the CSS 11503 or CSS 11506 do not contain Status LEDs. Each Ethernet connector has Link and Duplex LEDs to indicate the state of the connection.

Table 1-2 defines the boot states and the blinking patterns of the Status LEDs.

Chapter 1 Booting, Logging In, and Getting Started

Table 1-2 Status LEDs Boot Definitions

State Sequence LED Color LED State

1. The CSS powers up, scans flash, and performs a

Amber Fast blink

power-on self test.

The CSS powers on and a self test detects an

Red Solid

error.

2. The CSS 11501 or a module in the CSS 11503 or

Amber Slow blink

CSS 11506 is offline and active.

3. The CSS 11501 or a module in the CSS 11503 or

Amber Solid

CSS 11506 is online and not active.

In the CSS 11506, a passive SCM LED remains in this state and color.

Cisco Content Services Switch Getting Started Guide

1-8

OL-6037-01

Page 31

Chapter 1 Booting, Logging In, and Getting Started

Table 1-2 Status LEDs Boot Definitions (continued)

State Sequence LED Color LED State

Logging in to the CSS

4. The CSS 11501, or a module in the CSS 11503

Green Solid

or CSS 11506, is on line and active.

The CSS 11501 or a module in the CSS 11503 or

Red Blinking CSS 11506 (except a Fast Ethernet Module) failed.

In the CSS 11503 or 11506, if:

• A Fast Ethernet Module fails, all of the Link

and Duplex LEDs blink simultaneously.

• The master SCM in slot 1 detects a module

failure, its Status LED is green and blinks slowly.

• The master SCM in slot 1 fails, the CSS does

not boot unless there is a passive SCM in slot 2.

5. Disk activity Green Variable

blinking

If an error occurs during a power-on self-test, the console displays an error message, increments the detected error counter, and continues to the next test until the CSS completes all of the power-on self tests. See Appendix A,

Troubleshooting the Boot Process, for more information on boot errors and

messages.

Logging in to the CSS

After the CSS completes the boot process, it displays the login banner, copyright, and login prompt.

When a startup-config file is present, the CSS displays the message:

CTRL-C to abort running the startup-config

OL-6037-01

Press

Cisco Content Services Switch Getting Started Guide

1-9

Page 32

Logging in to the CSS

Note If the CSS does not detect an existing startup-config file, the CSS automatically

Chapter 1 Booting, Logging In, and Getting Started

initiates the configuration script (see the “Using the Configuration Script” section). The configuration script prompts you to enter configuration information. Subsequent logins to the CSS do not start the configuration script.

If you abort running the startup-config file, the CSS does not use the existing startup-config file. Aborting the use of the startup-config file enables you to log in and reconfigure the CSS to create a new running-config file. Use this feature if you misconfigure your startup-config file and the CSS becomes unusable.

When you log in from:

• A console, the CSS displays the message: Press any key to log in.

• A Telnet session, the message is not displayed.

The CSS prompts you to enter a username and password, as follows:

User Access Verification Username: Password

If you connect a console to the CSS after the CSS boots, your screen will be blank. Press Enter to display the username and password prompts.

To initially log in to the CSS, enter the default user name admin and the default password system as lowercase text, or enter the administrative username and password you configured during the boot process. For security, the CSS does not display the password. The default username admin enables you to log in with SuperUser status.

If you have not changed the default administrative username and password, we recommend that you change them to safeguard the CSS against unauthorized logins. To change the default username and password from the CLI, see Chapter 2,

Configuring CSS Basics.

Cisco Content Services Switch Getting Started Guide

1-10

OL-6037-01

Page 33

Chapter 1 Booting, Logging In, and Getting Started

Using the Configuration Script

When you log in to the CSS and it does not detect an existing startup-config file, the CSS automatically initiates the configuration script. During the running of the configuration script, the CSS prompts you to enter the following information:

• IP address and subnet mask for circuit VLAN1 (all interfaces are assigned to

VLAN1 by default)

• IP address for the default gateway

• IP addresses for the servers

• Virtual IP address (VIP) for the content rule

Based on your entries, the configuration script allows you to create services, owners, and content rules. For background information on configuring services, owners, and content rules, refer to the Cisco Content Services Switch Content Load-Balancing Configuration Guide.

Using the Configuration Script

To accept the script default values, press the Enter key at the prompts shown in the configuration script. To quit the script, enter q at any prompt. If you quit running the script, you may proceed to Chapter 2, Configuring CSS Basics, to continue the initial setup of the CSS. For information on configuring sticky cookies on the CSS, see Chapter 4, Configuring Sticky Cookies.

Note You may also initiate the configuration script manually by entering the script play

setup command.

To clear an existing running-config file, use the from SuperUser mode. To clear an existing startup-config file, use the

startup-config

command from SuperUser mode.

clear running-config command

clear

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-11

Page 34

Using the Configuration Script

The following example illustrates the configuration script including:

• Bold text to indicate user entry examples

• Explanations to help you use the script

############################################## #Setup Script for the Content Services Switch# ##############################################

Checking for Existing Config...

No startup-config was found, continue with the setup script [y/n]? y

Note: Pressing “q” after any prompt quits setup. Pressing <CR> after any [y/n] defaults to “y”.

Warning: All circuit VLAN IP addresses must be on a different subnet than the Ethernet Mgt port IP address. The existing Ethernet Mgt port IP address is: 10.0.4.251

Chapter 1 Booting, Logging In, and Getting Started

Add an IP address to VLAN1: [default = 192.168.10.1] 192.168.3.6

Add an IP subnet mask to VLAN1: [default = 255.255.255.0]

Warning: The default gateway IP address must be on the same subnet as VLAN1. VLAN1 IP address is: 192.168.3.6

Add IP address for default gateway: [default = 192.168.3.2]

192.168.3.3

Pinging the default gateway: 100% Success.

Which feature do you want to configure?

[1] Layer3 load balancing [2] Layer5 load balancing [3] Proxy cache [4] Transparent cache [5] Exit script

Cisco Content Services Switch Getting Started Guide

1-12

OL-6037-01

Page 35

Chapter 1 Booting, Logging In, and Getting Started

Table 1-3 describes each Configuration Script menu item.

Table 1-3 Configuration Script Menu Options

Menu Option Function

Layer3 Load Balancing Configure Layer 3 load balancing to enable the

Layer5 Load Balancing Configure Layer 5 load balancing to enable the

Proxy Cache Configure proxy cache to enable the CSS to use a

Using the Configuration Script

CSS to use a Virtual IP address (VIP) to load balance web traffic to web servers based on IP addresses.

CSS to use a VIP address to load balance web traffic to web servers based on URLs.

Virtual IP address (VIP) to load balance web traffic to proxy cache servers based on domain name.

Transparent Cache Configure transparent cache to enable the CSS to

redirect cacheable HTTP traffic to transparent cache servers based on IP address and port (80).

Exit Script Exit from the script and save the information you

entered to the CSS running-config file. The CSS displays the running-config file.

Refer to the following sections for details about each item in the Configuration Script menu:

• Configuring Layer 3 Load Balancing

• Configuring Layer 5 Load Balancing

• Configuring Proxy Cache

• Configuring Transparent Cache

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-13

Page 36

Using the Configuration Script

Configuring Layer 3 Load Balancing

A Layer 3 load-balancing configuration enables the CSS to use a Virtual IP address (VIP) to load balance web traffic to web servers based on IP addresses.

When you select Layer 3 load balancing, the script automatically:

• Creates an owner (L3_Owner)

• Creates a Layer 3 content rule (L3_Rule) and defines ArrowPoint Content

Awareness (ACA) as the load balance method

• Activates the services

• Activates the content rule

• Saves the running configuration to the startup-config file

The script prompts you to configure:

Chapter 1 Booting, Logging In, and Getting Started

• Service name (default name is Server1)

• Service IP address

• VIP for the content rule

To configure Layer 3 load balancing, enter

Which feature do you want to configure?

[1] Layer3 load balancing [2] Layer5 load balancing [3] Proxy cache [4] Transparent cache

Enter the number for the feature you want to configure: 1

1 at the Configuration Script menu.

To accept the script default values, press the Enter key at the prompts.

Creating Layer3 load balancing

Enter service name: [default = Server1]

Enter service IP address: [default = 192.168.10.3] 192.168.3.58

Create another service? [y/n]? y

Enter service name: [default = Server2]

Enter service IP address: [default = 192.168.10.3] 192.168.3.59

Cisco Content Services Switch Getting Started Guide

1-14

OL-6037-01

Page 37

Chapter 1 Booting, Logging In, and Getting Started

Create another service? [y/n]? n

Enter Virtual IP address for L3_Rule: [default = 192.168.10.4]

192.168.3.6

After you specify the configuration, the script automatically:

• Displays the running-config file

• Saves the running configuration to the startup-config file

Showing the Running Config

!Generated MAR 6 17:53:49

!**************** GLOBAL ***************** ip route 0.0.0.0 0.0.0.0 192.168.3.3 !**************** CIRCUIT **************** circuit VLAN1 ip address 192.168.3.6 255.255.255.0 !**************** SERVICE **************** service Server1

ip address 192.168.3.58 active

service Server2

ip address 192.168.3.59

active !**************** OWNER ****************** owner L3_Owner

content L3_Rule

add service Server1

add service Server2

vip address 192.168.3.6

balance aca

active ########################################## ## Setup Completed Successfully!!! ## ##########################################

Using the Configuration Script

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-15

Page 38

Using the Configuration Script

Configuring Layer 5 Load Balancing

A Layer 5 load-balancing configuration enables the CSS to use a VIP address to load balance web traffic to web servers based on URLs.

When you select Layer 5 load balancing, the script automatically:

• Creates an owner (L5_Owner)

• Creates a Layer 3 content rule (L3_Rule)

• Creates a Layer 5 content rule (L5_Rule) and defines:

–

Protocol TCP

–

Port 80

–

URL "/*"

–

Load balance method as ACA

Chapter 1 Booting, Logging In, and Getting Started

• Activates the services

• Activates the content rule

• Saves the running configuration to the startup-config file

The script prompts you to configure:

• Service name (default name is Server1)

• VIP for the content rule

To configure Layer 5 load balancing, enter

Which feature do you want to configure?

[1] Layer3 load balancing [2] Layer5 load balancing [3] Proxy cache [4] Transparent cache

Enter the number for the feature you want to configure: 2

2 at the Configuration Script menu..

To accept the script default values, press the Enter key at the prompts.

Creating Layer5 load balancing

Enter service name: [default= Server1]

Enter service IP address: [default = 192.168.10.3] 192.168.3.58

Cisco Content Services Switch Getting Started Guide

1-16

OL-6037-01

Page 39

Chapter 1 Booting, Logging In, and Getting Started

Create another service? [y/n]? n

Enter Virtual IP address for L5_Rule: [default = 192.168.10.4]

192.168.3.8

After you specify the configuration, the script automatically:

• Displays the running-config file

• Saves the running configuration to the startup-config file

Showing the Running Config

!Generated MAR 6 17:53:49

ip address 192.168.3.58

active !**************** OWNER ****************** owner L5_Owner content L3_Rule

add service Server1

vip address 192.168.3.8

balance aca

active content L5_Rule

add service Server1

vip address 192.168.3.8

protocol tcp

port 80

url "/*"

balance aca

active ########################################## ## Setup Completed Successfully!!! ## ##########################################

Using the Configuration Script

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-17

Page 40

Using the Configuration Script

Configuring Proxy Cache

A proxy cache configuration enables the CSS to use a Virtual IP address (VIP) to load balance web traffic to proxy cache servers based on domain name.

When you select Proxy Cache, the script automatically:

• Creates an owner (Proxy_Owner)

• Creates a content rule (Proxy_Rule) and defines:

–

Service type as proxy-cache

–

Protocol TCP

–

Port 8080

–

URL "/*"

–

Load balance method as domain

Chapter 1 Booting, Logging In, and Getting Started

–

Application type HTTP

• Activates the services

• Activates the content rule

The script prompts you to configure:

• Service name (default name is Proxy_Cache1)

• VIP for the content rule

To configure a proxy cache configuration, enter

3 at the Configuration Script

menu.

Which feature do you want to configure?

[1] Layer3 load balancing [2] Layer5 load balancing [3] Proxy cache [4] Transparent cache

Enter the number for the feature you want to configure: 3

To accept the script default values, press the Enter key at the prompts.

Creating Proxy Cache Configuration

Enter service name: [default=Proxy_Cache1]

Enter service IP address: [default = 192.168.10.3] 192.168.3.60

Cisco Content Services Switch Getting Started Guide

1-18

OL-6037-01

Page 41

Chapter 1 Booting, Logging In, and Getting Started

Create another service? [y/n]? n

Enter Virtual IP address for Proxy_Rule: [default = 192.168.10.4]

192.168.3.9

After you specify the configuration, the script automatically:

• Displays the running-config file

• Saves the running configuration to the startup-config file

Showing the Running Config !Generated MAR 6 17:53:49 !**************** GLOBAL ***************** ip route 0.0.0.0 0.0.0.0 192.168.3.3 !**************** CIRCUIT **************** circuit VLAN1 ip address 192.168.3.6 255.255.255.0 !**************** SERVICE **************** service Proxy_Cache1

ip address 192.168.3.60

type proxy-cache

port 8080

protocol tcp

active !**************** OWNER ****************** owner Proxy_Owner content Proxy_Rule

add service Proxy_Cache1

vip address 192.168.3.9

port 8080

protocol tcp

url "/*"

balance domain

application http

active

Using the Configuration Script

########################################## ## Setup Completed Successfully!!! ## ##########################################

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-19

Page 42

Using the Configuration Script

Configuring Transparent Cache

A transparent cache configuration enables the CSS to redirect cacheable HTTP traffic to transparent cache servers based on IP address and port (80). The CSS directs non-cacheable HTTP traffic to the origin servers.

When you select Transparent Cache, the script automatically:

• Creates an owner (Transparent_Owner)

• Creates a content rule (Transparent_Rule) and defines:

–

Service type as transparent-cache

–

Protocol TCP

–

Port 80

–

Extension Qualifier List (EQL) named Cacheable that contains the file

types displayed in the sample running-config file

Chapter 1 Booting, Logging In, and Getting Started

–

URL "/*" eql cacheable

–

Load balance method as domain

–

Failover type as bypass

–

Application type HTTP

• Activates the services

• Activates the content rule

The script enables you to:

• Configure a service name (Transparent_Cache1)

• Define whether to direct only cacheable content or all content to the cache

servers

To configure a transparent cache configuration, enter

4 at the Configuration Script

menu.

Which feature do you want to configure?

[1] Layer3 load balancing [2] Layer5 load balancing [3] Proxy cache [4] Transparent cache

Enter the number for the feature you want to configure: 4

Cisco Content Services Switch Getting Started Guide

1-20

OL-6037-01

Page 43

Chapter 1 Booting, Logging In, and Getting Started

To accept the script default values, press the Enter key at the prompts.

Creating Transparent Cache Configuration

Enter service name: [default = Transparent_Cache1]

Enter service IP address: [default = 0.0.0.0] 192.168.3.7 Create another service? [y/n]? n

Transparent caching can be configured to direct only cacheable content to the cache server. Non-cacheable content is sent directly to the origin server.

The alternative is to direct all traffic to the cache server regardless of whether the content is cacheable. Should only cacheable content be directed to the cache server? [y/n]?

Enter one of the following:

• y to define URL “/*” as eql-cacheable in the content rule and allow the CSS

to direct only cacheable content to the cache servers.

Using the Configuration Script

• n to define URL “/*” in the content rule and allow the CSS to direct all

content to the cache servers.

After you specify the configuration, the script automatically:

• Displays the running-config file

• Saves the running configuration to the startup-config file

Showing the Running Config

!Generated MAR 6 17:53:49

ip address 192.168.3.7

type transparent-cache

port 80

protocol tcp

active

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-21

Page 44

Using the Configuration Script

Chapter 1 Booting, Logging In, and Getting Started

!****************** EQL ****************** eql Cacheable

description "This EQL contains

extensions of cacheable content" extension pdf "Acrobat" extension fdf "Acrobat Forms Document" extension au "Sound audio/basic" extension bmp "Bitmap Image" extension z "Compressed data

application/x-compress" extension gif "GIF Image image/gif" extension html "Hypertext Markup

Language text/html" extension htm extension js "Java script

application/x-javascript" extension mocha extension jpeg "JPEG image image/jpeg" extension jpg extension jpe extension jfif extension pjpeg extension pjp extension mp2 "MPEG Audio audio/x-mpeg" extension mpa extension abs extension mpeg "MPEG Video video/mpeg" extension mpg extension mpe extension mpv extension vbs extension m1v extension pcx "PCX Image" extension txt "Plain text text/plain" extension text extension mov "QuickTime video/quicktime" extension tiff "TIFF Image image/tiff" extension tar "Unix Tape Archive

application/x-tar" extension avi "Video for Windows

video/x-msvideo" extension wav "Wave File audio/x-wav" extension gz "application/x-gzip" extension zip "ZIP file

application/x-zip-compressed"

Cisco Content Services Switch Getting Started Guide

1-22

OL-6037-01

Page 45

Chapter 1 Booting, Logging In, and Getting Started

!***************** OWNER ***************** owner Transparent_Owner content Transparent_Rule

add service Transparent_Cache1 port 80 protocol tcp url "/*" eql Cacheable or url "/*" balance domain failover bypass application http active

########################################## ## Setup Completed Successfully!!! ## ##########################################

Rebooting the CSS

Use the reboot command to reboot the CSS. This command is available in Boot mode.

Before you enter the reboot command, save an existing running-config file prior to rebooting the CSS by using the copy running-config startup-config command from SuperUser mode. If you are not in expert mode, the CSS displays the prompts to save profile and configuration changes before it reboots.

To reboot the CSS, access Boot mode and enter the reboot command. For example, enter:

(config)# boot (config-boot)# reboot

The CSS displays a prompt to verify that you want to reboot it:

Are you sure you want to reboot the system, [y/n]

Enter y to reboot the CSS.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-23

Page 46

Shutting Down the CSS

Note The CSS has a reboot alias that allows you to reboot it from any mode except User

mode. When you enter the reboot alias, the CSS changes the current mode to Boot mode and then executes the reboot command.

You must enter the entire reboot alias name to execute it. The CSS does not automatically complete the reboot alias at the command line when you enter only part of its name. For example, if you enter reb in global configuration mode, the CSS displays an invalid command message.

Shutting Down the CSS

Use the shutdown command to shut down the CSS. This command shuts down all CSS processes so you can power cycle the unit safely. The shutdown command is available in Boot mode.

Chapter 1 Booting, Logging In, and Getting Started

To shut down the CSS, access Boot mode and enter:

(config-boot)# shutdown

The CSS displays a prompt to verify that you want to shut it down:

Are you sure you want to shutdown the system, [y/n]:

Enter y to shut down the CSS.

Note The CSS has a shutdown alias that allows you to shut it down from any mode

except User mode. When you enter the shutdown alias, the CSS changes the current mode to Boot mode and then executes the shutdown command.

You must enter the entire shutdown alias name to execute it. The CSS does not automatically complete the shutdown alias at the command line when you enter only part of its name. For example, if you enter shutd in global configuration mode, the CSS displays an invalid command message.

Cisco Content Services Switch Getting Started Guide

1-24

OL-6037-01

Page 47

Chapter 1 Booting, Logging In, and Getting Started

Where to Go Next

Chapter 2, Configuring CSS Basics, describes the initial configuration procedures

for the CSS, such as changing the administrative username and password, creating usernames and passwords, configuring the Ethernet management port, specifying a static IP address and subnet mask, and changing the date and time.

Where to Go Next

OL-6037-01

Cisco Content Services Switch Getting Started Guide

1-25

Page 48

Where to Go Next

Chapter 1 Booting, Logging In, and Getting Started

Cisco Content Services Switch Getting Started Guide

1-26

OL-6037-01

Page 49

CHAPTER

Configuring CSS Basics

This chapter describes the initial configuration procedures for the CSS. Information in this chapter applies to all CSS models, except where noted.

This chapter contains the following major sections:

• Initial Setup Quick Start

• Changing the Administrative Username and Password

• Creating Usernames and Passwords

• Configuring the Ethernet Management Port

• Configuring an IP Route

OL-6037-01

• Configuring the Date, Time, and Time Zone

• Synchronizing the CSS with an SNTP Server

• Configuring a Host Name

Cisco Content Services Switch Getting Started Guide

2-1

Page 50

Initial Setup Quick Start

Table 2-1 is a quick start configuration table designed to help you configure the

CSS quickly and easily. This table provides the following basic steps:

• Log in and access config mode

• Change the default administrative username and password

• Create additional usernames and passwords to log in to the CSS (optional)

• Access boot mode to configure an IP address and subnet mask for the

Ethernet management port

• Configure a static route for destination networks that are outside the local

subnet of the CSS and the Ethernet management port (optional)

• Configure a default IP route

Chapter 2 Configuring CSS Basics

• Enter the date, time, and time zone (optional)

• Specify a Simple Network Time Protocol (SNTP) server (optional)

Once you configure the Ethernet management port IP address, you can continue to use the console port or you can use the Ethernet management port to Telnet in to the CSS and configure it remotely.

Table 2-1 Initial Setup Quick Start

Task and Command Example

1. Log in to the CSS using the default administrative username admin and

password system, or the username and password assigned to you during the boot process.

Refer to Chapter 1, Booting, Logging In, and Getting Started, for details on logging in to the CSS.

2. Access config mode.

# config (config)#

3. Change the default administrative username and password.

(config)# username-offdm bobo password secret

Cisco Content Services Switch Getting Started Guide

2-2

OL-6037-01

Page 51

Chapter 2 Configuring CSS Basics

Table 2-1 Initial Setup Quick Start (continued)

Task and Command Example

4. Create usernames and passwords to log in to the CSS (optional). The CSS

supports a maximum of 32 usernames, including the administrator and technician usernames. You can assign each user with SuperUser or User status.

(config)# username picard password “captain” superuser

5. Access boot mode to configure an IP address for the Ethernet management

port. This IP address must be on a different subnet than any other CSS virtual LAN (VLAN) circuit IP subnet or you will not be able to access the port. You must reboot the CSS for the new IP address to take effect.

(config)# boot (config-boot)# ip address 172.16.6.58

6. Configure a subnet mask for the Ethernet management port in boot mode.

Initial Setup Quick Start

(config-boot)# subnet mask 255.255.255.0

7. Exit from boot mode to config mode.

(config-boot)# exit

8. Configure a static IP route, as required.

(config)# ip route 192.168.0.0 255.255.0.0 192.168.1.1

9. Exit from config mode to configure a date. The clock date command does

not allow backspacing. If you enter a wrong date, reenter the command with the new information.

Enter the date in the format mm-dd-yy.

# clock date Enter date: [12-31-03] 12-31-03

To use the European format to specify the date (using the format of day, month, and year), access config mode and use the date

european-date

command to enable the clock date command to accept date input in the format of day, month, and year.

(config)# date european-date (config)# exit # clock date Enter date: [31-12-03] 31/12/03

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-3

Page 52

Initial Setup Quick Start

Chapter 2 Configuring CSS Basics

Table 2-1 Initial Setup Quick Start (continued)

Task and Command Example

10. Configure the time using the clock time command. The clock time

command does not allow backspacing. If you enter the wrong time, reenter the command with the new information.

Enter the time in the format hh:mm:ss.

# clock time Enter time: [15:17:33] 16:17:33

11. (Optional) Specify the time zone and Universal Time Coordinated (UTC)

offset if you are using an SNTP server to synchronize the CSS system clock.

# clock timezone EST hours 3 before-UTC

12. (Optional) Access config mode and specify the SNTP server and the polling

frequency if you are using an SNTP server to synchronize the CSS system clock.

# config (config)# sntp server 192.168.19.21 version 2 (config)# sntp poll-interval 90

13. Save your configuration changes to the running-config file (recommended).

If you do not save changes to the running-config file, all configuration changes are lost upon reboot.

(config)# exit # copy running-config startup-config

The following running-configuration example shows the results of entering the commands in Tabl e 2- 1.

!*************************** GLOBAL *************************** username picard des-password 1hbfoeqbyecclcac superuser sntp server 192.168.19.21 version 2 sntp poll-interval 90

ip route 192.168.0.0 255.255.0.0 192.168.1.1 1

Cisco Content Services Switch Getting Started Guide

2-4

OL-6037-01

Page 53

Chapter 2 Configuring CSS Basics

Changing the Administrative Username and Password

During the initial log in to the CSS you enter the default user name admin and the default password system in lowercase text. For security reasons, you should change the administrative username and password. Security on your CSS can be compromised because the administrative username and password are configured to be the same for every CSS shipped from Cisco Systems.

The administrative username and password are stored in nonvolatile random access memory (NVRAM). Each time you reboot the CSS, it reads the username and password from NVRAM and reinserts them in to the user database. SuperUser status is assigned to the administrative username by default.

You can change the administrative username and password, but because the information is stored in NVRAM, you cannot permanently delete them. If you delete the administrative username using the no username command, the CSS deletes the username from the running-config file, but restores the username from NVRAM when you reboot the CSS.

Use the username-offdm name password text command to change the administrative username or password.

Note You can also use the Security Options menu from the Offline DM menu (accessed

during the boot process) to change the administrative username and password. Refer to the Cisco Content Services Switch Administration Guide for information on the Offline DM menu.

For example, to change the default administrative username and password to a different username and password, enter.

(config)# username-offdm bobo password secret

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-5

Page 54

Creating Usernames and Passwords

You can assign each user that logs into the CSS with SuperUser or User status.

• User - Allows access to a limited set of commands that enable you to monitor

and display CSS parameters, but not change them. A User prompt ends with the > symbol.

• SuperUser - Allows access to the full set of CLI commands, including those

in User mode, that enable you to configure the CSS. A SuperUser prompt ends with the # symbol.

Use the username command to create usernames and passwords to log in to the CSS. The CSS supports a maximum of 32 usernames, including the administrator and technician usernames.

From SuperUser mode, you can enter global configuration mode and its subordinate configuration modes. If you do not specify superuser when configuring a new user, the new user has only user-level status by default.

Chapter 2 Configuring CSS Basics

Caution Creating or modifying a username and password is restricted to CSS users who

are identified as either administrators or technicians, and it is contingent on whether the restrict user-database command has been entered (refer to the Cisco Content Services Switch Security Configuration Guide).

The syntax for this global configuration mode command is:

username name [des-password|password] password {superuser}

{dir-access access}

The following example creates a SuperUser named picard with a password of captain.

(config)# username picard password “captain” superuser

The options and variables are as follows:

• name - Sets the username you want to assign or change. Enter an unquoted

text string with no spaces and a maximum of 16 characters. To see a list of existing usernames, enter username ?.

Cisco Content Services Switch Getting Started Guide

2-6

OL-6037-01

Page 55

Chapter 2 Configuring CSS Basics

• des-password - Specifies that the password you enter is the Data Encryption

Standard (DES) form of the password. Use this option only when you are creating a script or a startup configuration file. Enter a DES-encrypted, case-sensitive, unquoted text string with no spaces from 6 to 64 characters.

Note If you specify the des-password option, you must know the

• password - Specifies that the password is not encrypted on your display as

you enter it. However, the CSS DES-encrypts the password in the running-config for extra security. Use this option when you use the CLI to create users. Enter a case-sensitive, unquoted text string with no spaces from 6 to 16 characters.

Creating Usernames and Passwords

encrypted form of the password to successfully log in to the CSS. You can find the CSS encrypted password in the Global section of the running-config. To display the running-config, use the show running-config command.

• password - The text string that you enter. The CSS allows all special

characters in a password except for the percent sign (%).

• superuser - Specifies SuperUser privileges to allow a user to access

SuperUser mode. If you do not enter this option, the user can access only User mode.

• dir-access - (Optional) Defines the CSS directory access privileges for the

username. There are access privileges assigned to the seven CSS directories, in the following order: Script, Log, Root (installed CSS software), Archive, Release Root (configuration files), Core, and MIBs. By default, users have both read- and write-access privileges (B) to all seven directories. Administrators or technicians can use the dir-access option to selectively implement a set of directory access privileges for each user. Changing the access level also affects the use of the CLI commands associated with directories.

To use the dir-access option, you must first specify the restrict user-database command to implement security restrictions for the CSS user database (refer to the Cisco Content Services Switch Administration Guide).

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-7

Page 56

Creating Usernames and Passwords

• access - Specifies directory access privileges for the username. By default,

users have both read- and write-access privileges (B) to all seven directories. Enter, in order, one of the following access privilege codes for each of the seven CSS directories:

–

Figure 2-1 illustrates the directory access privileges for a username.

Figure 2-1 CSS Directory Access Privileges

NWBNNNR

Release Root directory, set to None (no directory access)

Archive directory, set to None (no directory access)

Root directory, set to both read and write-access

Log directory, set to write-only access

Script directory, set to None (no directory access)

Chapter 2 Configuring CSS Basics

R - Read-only access to the CSS directory

W - Write-only access to the CSS directory

B - Both read- and write-access privileges to the CSS directory

N - No access privileges to the CSS directory

MIBs directory, set to read-only access

Core directory, set to None (no directory access)

59110

2-8

For example, to define directory access for username picard, enter:

(config)# username picard password “captain” superuser NWBNNNR

To display a list of existing usernames, enter:

(config)# username ?

To remove an existing username, enter:

(config)# no username picard

To change a user password, reenter the username command and specify the new password. Remember to include SuperUser privileges if required. For example:

(config)# username picard password “flute” superuser

Caution The no username command removes a user permanently. Make sure you want to

perform this action because you cannot undo this command.

Cisco Content Services Switch Getting Started Guide

OL-6037-01

Page 57

Chapter 2 Configuring CSS Basics

Configuring the Ethernet Management Port

The Ethernet management port provides a connection to the CSS that allows you to perform CSS management functions. The Ethernet management port supports management functions such as secure remote login through SSH, remote login through Telnet, file transfer through active FTP, SNMP queries, HTTPS access to the Device Management user interface, SNTP, DNS, ICMP redirects, RADIUS, syslog, CDP, TACACs, and CSS configuration changes through XML.

Note When using static routes for managing the CSS from subnets beyond the

management LAN, the Ethernet management port supports the management applications listed above, except CDP, DNS, SNTP, and TACACs. For more information on static routes, see the “Configuring Static Routes for the Ethernet

Management Port” section.

The Ethernet management port also supports ping and traceroutes initiated from the CSS.

The Ethernet management port is located on the CSS 11501, CSS 11503, or CSS 11506 SCM front panels.

To access the Ethernet management port on the CSS, you must assign an IP address and a subnet mask to the port. If you want to manage the CSS from a subnet that is different from the Ethernet management port, you can configure static routes for the Ethernet management port.

If you want to use the Offline Diagnostic Monitor (Offline DM) menu to boot the CSS from an image that resides on a different subnet, you can configure a default gateway for the Ethernet management port.

Note the following considerations when configuring or using the Ethernet management port:

• Dynamic routing protocols (such as RIP and OSPF) are not supported on the

Ethernet management port.

• Packet routing or forwarding is not supported between the Ethernet

management port and the Ethernet interface ports.

• Access control lists (ACLs) are not supported on the Ethernet management

port.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-9

Page 58

Configuring the Ethernet Management Port

• You cannot specify an Ethernet management port IP address that matches or

overlaps an IP address, VIP range, or static route previously set for one of the Ethernet interface ports. If you attempt to specify an overlapping or matching IP address, the CSS displays an error message and stops you from completing the command entry.

• The Ethernet management port supports SNMP requests to retrieve CSS port

information. The CSS Enterprise MIBs, however, do not return data for the Ethernet management port.

This section includes the following procedures:

• Configuring an IP Address and Subnet Mask for the Ethernet Management

Port

• Configuring Static Routes for the Ethernet Management Port

• Configuring a Default Gateway for the Ethernet Management Port

• Discarding ICMP Redirects on the Ethernet Management Port

Chapter 2 Configuring CSS Basics

• Shutting Down the Ethernet Management Port

Configuring an IP Address and Subnet Mask for the Ethernet Management Port

To access the Ethernet management port on the CSS, you must assign an IP address and a subnet mask. When setting the Ethernet management port IP address, note that:

• The IP address must be on a different subnet than any other CSS VLAN

circuit IP subnets. If you do not make the Ethernet management port IP address unique, you cannot access the port.

• An IP address of 0.0.0.0 for the Ethernet management port is a legal setting

and disables the management port upon reboot. If you enter 0.0.0.0, and attempt to use the subnet mask command, the following message appears:

The mask cannot be set because the IP address is 0.0.0.0.

Use the ip address command to configure an IP address for the Ethernet management port. Use the subnet mask command to configure the subnet mask for the Ethernet management port. Both commands are available in boot mode. You must reboot the CSS for the new Ethernet management port IP address and subnet to take effect.

Cisco Content Services Switch Getting Started Guide

2-10

OL-6037-01

Page 59

Chapter 2 Configuring CSS Basics

The first time that you enter an IP address for the Ethernet management port, the CSS automatically configures a default subnet mask of 255.255.255.0. If you want, you can overwrite the default subnet mask with a mask that is appropriate for your application.

For example, to specify an Ethernet management port IP address, enter:

(config)# boot (config-boot)# ip address 172.16.6.58

For example, to specify an Ethernet management port subnet mask of

255.255.255.0, enter:

(config-boot)# subnet mask 255.255.254.0

Both the ip address command and the subnet mask command do not have a no form of the command. To change the IP address of the Ethernet management port, reenter the ip address command and enter the new IP address. To change the subnet mask, reenter the subnet mask command and enter the new subnet mask.

Configuring the Ethernet Management Port

Configuring Static Routes for the Ethernet Management Port

If you want to manage the CSS from a subnet that is different from the Ethernet management port, you can configure static routes for the Ethernet management port. Static route entries consist of the destination IP network address and the IP address of the next hop router. You can configure a maximum of eight static routes for the Ethernet management port.

Note When using static routes for managing the CSS from subnets beyond the

management LAN, the Ethernet management port supports the management applications listed in the “Configuring the Ethernet Management Port” section except CDP, DNS, SNTP, and TACACs.

Note the following considerations when configuring a static route for the Ethernet management port:

• The CSS does not use an internal (implicit) service for the Ethernet

management port to periodically poll the next hop address in a static route. The periodic polling of the next hop address with an ICMP echo (or ping) keepalive is performed only when you configure a static route for an Ethernet interface port.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-11

Page 60

Configuring the Ethernet Management Port

• The rip redistribute static and ospf redistribute static commands do not

advertise static routes configured on the Ethernet management port. These two commands only advertise static routes configured on the Ethernet interface ports.

Use the ip management route command to configure static routes for the Ethernet management port. This command is available in global configuration mode.

The syntax for the ip management route command is:

ip management route ip_address subnet_mask ip_address2

The variables are as follows:

• ip_address - The destination network address. Enter the IP address in

dotted-decimal notation (for example, 192.168.11.0).

• subnet_mask - The IP subnet mask. Enter the mask as either:

Chapter 2 Configuring CSS Basics

–

A prefix length in classless interdomain routing (CIDR) bit-count notation (for example, /24).

–

An IP address in dotted-decimal notation (for example, 255.255.255.0).

• ip_address2 - The next hop address for the route. Enter the IP address in

dotted-decimal notation (for example, 192.168.11.0).

For example, to configure a static route for the Ethernet management port, enter:

(config)# ip management route 172.27.59.0 /24 172.27.56.86

To disable a static route for the Ethernet management port, enter:

(config)# no ip management route 172.27.59.0 /24 172.27.56.86

Configuring a Default Gateway for the Ethernet Management Port

The Ethernet management port allows you to boot the CSS from the Offline DM menu when the boot image resides on a different subnet. Use the gateway address command to configure a default gateway for the Ethernet management port. This command is available in boot mode.

To specify a default gateway for the Ethernet management port for use in Offline DM, enter:

(config)# boot (config-boot)# gateway address 172.16.57.2

Cisco Content Services Switch Getting Started Guide

2-12

OL-6037-01

Page 61

Chapter 2 Configuring CSS Basics

Configuring the Ethernet Management Port

To disable the default gateway and set it to an IP address of 0.0.0.0, use the no form of the gateway address command. For example:

config-boot)# no gateway address

A default gateway of 0.0.0.0 for the Ethernet management port does not appear in the show boot-config command output for the CSS boot configuration.

Discarding ICMP Redirects on the Ethernet Management Port

By default, the Ethernet management port accepts all incoming ICMP redirects. If you do not configure static routes for the management port, the CSS disregards any ICMP redirect packets. However, when you configure static routes for the management port, the CSS incorporates the ICMP redirects to the port as an entry in the routing table.

To enhance security on the CSS when you configure static routes on the management port, we strongly recommend that you configure the CSS management port to discard ICMP redirects.

Note The Ethernet management port never transmits an ICMP redirect.

If you remove a static route when the management port is configured to accept ICMP redirect packets, the CSS removes from the routing table the router entry created by the ICMP redirects associated with the static route.

To configure the CSS to discard ICMP redirect packets on the Ethernet management port, enter:

(config)# ip management no-icmp-redirect

To reset the default behavior of accepting ICMP redirect packets on the Ethernet management port, enter:

(config)# no ip management no-icmp-redirect

To view whether the management port accepts or discards ICMP redirect packets, use the show ip configuration command to display the IP Management Port ICMP redirect field. When the port accepts ICMP redirects, the field entry displays enable. When the port discards ICMP redirects, the field entry displays disable.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-13

Page 62

Configuring the Ethernet Management Port

Shutting Down the Ethernet Management Port

To shut down the Ethernet management port, use the admin-shutdown or shut command.

For example:

• To shut down the Ethernet management port on the CSS 11501 with the

admin-shutdown command, enter:

(config-if[Ethernet-Mgt])# admin-shutdown

• To shut down the Ethernet management port on the CSS 11501 with the shut

command, enter:

(config-if[Ethernet-Mgt])# shut

When you use the shut command, the CSS changes the shut command to the admin-shutdown command in the running configuration.

Chapter 2 Configuring CSS Basics

Cisco Content Services Switch Getting Started Guide

2-14

OL-6037-01

Page 63

Chapter 2 Configuring CSS Basics

Configuring an IP Route

To establish IP connectivity to the CSS, a static IP route is required to connect the CSS to the next hop router. A static route consists of a destination network address and mask and the next hop to reach the destination. You can also specify a default static route (using 0.0.0.0 as the destination network address and a valid next hop address) to direct frames for which no other destination is listed in the routing table. Default static routes are useful for forwarding otherwise unrouteable packets by the CSS.

When you configure a static IP route, the CSS periodically polls the next hop router with an internal ICMP keepalive service to ensure the router is functioning properly. If the router fails, the CSS removes any entries from the routing table that point to the failed router and stops sending traffic to the failed router. When the router recovers, the CSS:

Configuring an IP Route

• Becomes aware of the router

• Reenters applicable routes in the routing table

To configure a static IP route, use the ip route command and specify one of the following:

• An IP address and prefix length; for example, 192.168.1.0 /24

• An IP address and a subnet mask; for example, 192.168.1.0 255.255.255.0

The syntax for the ip route command is:

ip route ip_address subnet mask ip_address2

The variables are as follows:

• ip_address - The destination network address. Enter the IP address in

dotted-decimal notation (for example, 192.168.11.1).

• subnet_mask - The IP subnet mask. Enter the mask as either:

–

A prefix length in CIDR bit-count notation (for example, /24)

–

An IP address in dotted-decimal notation (for example, 255.255.255.0)

• ip_address2 - The next hop address for the route. Enter the IP address in

dotted-decimal notation (for example, 192.168.11.1).

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-15

Page 64

Chapter 2 Configuring CSS Basics

Configuring the Date, Time, and Time Zone

For example, to configure a static IP route to destination network address

192.168.0.0 /16 and a next hop address of 192.168.1.1, enter:

(config)# ip route 192.168.0.0 /16 192.168.1.1

For example, to configure a default IP route using a destination address of

0.0.0.0/0 and a next hop address of 192.167.1.1, enter:

(config)# ip route 0.0.0.0 /0 192.167.1.1

Refer to the Cisco Content Services Switch Routing and Bridging Configuration Guide for complete information on configuring IP routes.

Configuring the Date, Time, and Time Zone

To set the date, time, or time zone for the CSS, use the clock command. When you enter this command, the CSS displays the current date and time.

The clock command does not allow backspacing. If you enter the wrong date, time, or time zone, you must reenter the command with the new information.

This section includes the following topics:

• Setting the Date

• Setting the European Date

• Setting the Time

• Setting the Time Zone

• Showing the Date and Time

Setting the Date

Use the clock date command to set the date. A prompt appears to show the current date in the correct format to use. Enter the month, day, and year as integers with dash characters separating them. For example, enter June 15th 2003 as 06-15-03.

Enter the new date in the format mm-dd-yy as shown:

# clock date Enter date: [12-31-03] 12-31-03

Cisco Content Services Switch Getting Started Guide

2-16

OL-6037-01

Page 65

Chapter 2 Configuring CSS Basics

Setting the European Date

Use the date european-date global configuration mode command to specify the date in the European format of day, month, and year. This command enables the clock date command to accept the date in day, month, and year, separated by slashes (/).

Enter the new date in the format dd/mm/yy as shown:

(config)# date european-date (config)# exit # clock date Enter date: [31-12-03] 31/12/03

To reset the format for the clock date command to the default of month, day, and year, enter:

(config)# no date european-date

Configuring the Date, Time, and Time Zone

Setting the Time

Use the clock time command to set the time. This command sets the time in military-time (24-hour) format. A prompt appears to show the current time in the correct format to use. Enter the hour, minutes, and seconds as integers, separated by colons.

Enter the new time in the format hh:mm:ss

# clock time Enter time: [15:12:38] 16:12:38

Setting the Time Zone

Use the clock timezone command to specify a time zone for the CSS, which synchronizes the CSS system clock with an SNTP server. The time stored in the CSS is the local time. The SNTP server calculates the Universal Time Coordinated (UTC, also known as Greenwich Mean Time) time by offsetting the time zone from the local time. If required, you can apply a negative offset to the UTC (for example, –05:-23:+00) or a positive offset to the UTC (for example, +12:+00:+00).

as shown:

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-17

Page 66

Configuring the Date, Time, and Time Zone

Use the no form of the clock timezone command to reset the time zone information to 00:00:00, and also to set the clock to the new time without the time zone offset.

Note The use of the clock timezone command assumes you are using the CSS with an

SNTP server to synchronize the CSS system UTC time to that of a designated SNTP server. Without a configured SNTP server, the time zone information is not used. See the “Synchronizing the CSS with an SNTP Server” section for details.

The syntax for the clock timezone command is:

clock timezone name hours hours {before-UTC|after-UTC} {minute

minutes {before-UTC|after-UTC}

The options and variables are as follows:

Chapter 2 Configuring CSS Basics

• timezone name - The name of the time zone. Enter a name with a maximum

of 32 characters and no spaces.

• hours hours - The hours of offset for the time zone. Enter a number from 0 to

12. Use with the before-UTC option or after-UTC option to set the offset to either a negative or positive number.

• before-UTC - The offset for UTC as a negative number. For example, if the

hour offset is 12, before-UTC sets the offset to –12.

• after-UTC - The offset for UTC as a positive number (the default offset).

• minute minutes - The minutes of offset for the time zone. Enter a number

from 0 to 59. Use with the before-UTC option or after-UTC option to set the offset to either a positive or negative number.

For example, to enter the new time zone

a –3 hour offset

# clock timezone EST hours 3 before-UTC

for Eastern Standard Time (EST) with

To set the time zone offset back to 00:00:00 (and also set the clock to the new time without the time zone offset):

# no clock timezone

Cisco Content Services Switch Getting Started Guide

2-18

OL-6037-01

Page 67

Chapter 2 Configuring CSS Basics

Showing the Date and Time

Use the show clock command to display the current date and time. For example:

# show clock

Table 2-2 describes the fields in the show clock command output.

Table 2-2 Field Descriptions for the show clock Command

Field Description

Date The configured date in the format of month, day, and

Configuring the Date, Time, and Time Zone

year; for example, the date June 15th 2003 appears as 06-15-2003.

If you use the date european-date command, the format is day, month, and year. For example, the date June 15th 2003 appears as 15-06-2003.

Time The configured time in the format of hour, minute, and

second; for example, 16:23:45.

If you configure an SNTP server, the show clock command displays the time adjusted with the time zone offset. The show clock command displays the UTC time from the SNTP server. If you configure a time zone, the show clock command displays the time adjusted with the time zone offset. For example, if the UTC time from the server is 16:30:43 and you configure a time zone negative offset of 5 hours and 30 minutes (–05:-30:+00), the displayed time becomes 11:00:43.

Timezone The configured time zone offset from an SNTP server.

All zeros (00:00:00) indicate that no offset was configured for the time zone. A negative symbol (–) indicates a negative offset to the UTC (for example,

-05:-23:+00). A positive symbol (+) indicates a positive offset to the UTC (for example, +12:+00:+00).

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-19

Page 68

Chapter 2 Configuring CSS Basics

Synchronizing the CSS with an SNTP Server

The Simple Network Time Protocol (SNTP) enables you to synchronize the computer system clocks on the Internet to that of a designated SNTP server. SNTP is a simplified, client-only version of the Network Time Protocol (NTP) that enables the CSS time-of-day to be synchronized with any SNTP server. Use the sntp command to configure SNTP on the CSS.

Accurate time-of-day is provided by synchronizing to the UTC time, which provides time within 100 milliseconds of the accurate time. You can configure information about the local time zone so the time appears correctly relative to the local time zone. The CSS can receive the time from only a single SNTP server (in unicast mode), but the CSS cannot be used to provide time services to other devices.

Before you synchronize the CSS with an SNTP server, make sure you configure the proper time zone for the CSS (for example, to EST). Also make sure the time difference between the CSS internal clock and the SNTP server clock is less than 24 hours. Otherwise, the CSS will not synchronize its clock with the SNTP server. To configure the time on the CSS, see the “Configuring the Date, Time, and Time

Zone” section for details.

For detailed information on configuring the SNTP server, consult the documentation provided with the server.

This section includes the following topics:

• Configuring the SNTP Server

• Configuring the SNTP Poll Interval

• Showing SNTP Configuration Information

Cisco Content Services Switch Getting Started Guide

2-20

OL-6037-01

Page 69

Chapter 2 Configuring CSS Basics

Configuring the SNTP Server

Use the sntp server command to specify the SNTP server. The syntax for this command is:

sntp server ip_address {version number}

The options and variables are as follows:

• server ip_address - The IP address for the SNTP server. Enter an IP address

in dotted-decimal notation (for example, 192.168.1.0).

• version number - The version number of the SNTP server. Enter a version

number between 1 and 4. The default is 1.

To configure an SNTP server (running version number 3), enter:

(config)# sntp server 192.168.19.21 version 3

Synchronizing the CSS with an SNTP Server

To remove the specified SNTP server, enter:

(config)# no sntp server

Configuring the SNTP Poll Interval

The poll interval is the time (in seconds) between successive SNTP request messages to the server. Continuous polling is critical for the CSS to obtain time from the SNTP server and ensure the local time matches the “real time” of the server. Use the sntp poll-interval command to specify the poll interval for SNTP request messages. The valid entries are 16 to 16284 seconds. The default is 64 seconds.

To specify an SNTP poll-interval of 90 seconds, enter:

(config)# sntp poll-interval 90

To return the SNTP poll-interval to the default setting of 64 seconds, enter:

(config)# no sntp poll-interval

Showing SNTP Configuration Information

To display the SNTP configuration information on the CSS, enter the show sntp global command. For example:

(config)# show sntp global

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-21

Page 70

Configuring a Host Name

Chapter 2 Configuring CSS Basics

Table 2-3 describes the fields in the show sntp global command output.

Table 2-3 Field Descriptions for the show sntp global Command

Field Description

Server Address The IP address for the SNTP server.

Version The version number of the server. The default is 1.

Poll Interval The time in seconds between SNTP request messages.

The range is 16 to 16284. The default is 64.

TimeSinceLastUpdate The time in seconds since the last server reply.

Server Status The operating status of the SNTP server, Up or Down.

Configuring a Host Name

The Host table is the static mapping of mnemonic host names to IP addresses, which is analogous to the ARP table. Use the host command to manage entries in the Host table of the CSS.

The syntax for this global configuration mode command is:

host host_name ip_address

The variables are as follows:

• host_name - The name of the host. Enter an unquoted text string with no

spaces and a length from 1 to 16 characters.

• ip_address - The address associated with the host name. Enter the IP address

in dotted-decimal notation (for example, 192.168.11.1).

To add a host to the Host table, the host name must not exist in the Host table. To change a current host address, remove the host name and then add it again to the Host table with the new address.

For example:

(config)# host CSS11501-LML 192.168.3.6

Cisco Content Services Switch Getting Started Guide

2-22

OL-6037-01

Page 71

Chapter 2 Configuring CSS Basics

To remove the existing host from the Host table, enter:

(config)# no host CSS11501-LML

To display a list of host names, enter:

(config)# show running-config global

Where to Go Next

Chapter 3, Configuring the Domain Name Service, provides information to

configure the Domain Name Service (DNS), the facility that translates host names such as myhost.mydomain.com to IP addresses.

Where to Go Next

OL-6037-01

Cisco Content Services Switch Getting Started Guide

2-23

Page 72

Where to Go Next

Chapter 2 Configuring CSS Basics

Cisco Content Services Switch Getting Started Guide

2-24

OL-6037-01

Page 73

CHAPTER

Configuring the Domain Name Service

This chapter provides information to configure the Domain Name Service (DNS), the facility that translates host names such as myhost.mydomain.com to IP addresses such as 192.168.11.1. This chapter contains the following major sections:

• Specifying a Primary DNS Server

• Using DNS Resolve

• Specifying a Secondary DNS Server

• Specifying a DNS Suffix

• Specifying UDP Traffic on the DNS Server Port

Use the show running-config global command to display DNS configurations (refer to the Cisco Content Services Switch Administration Guide).

Specifying a Primary DNS Server

To specify the primary DNS server, use the dns primary command. Enter the IP address in dotted-decimal notation (for example, 192.168.11.1) of the DNS server you want to specify as the primary DNS server.

For example:

(config)# dns primary 192.168.11.1

To remove the primary DNS server, enter:

(config)# no dns primary

Cisco Content Services Switch Getting Started Guide

OL-6037-01

3-1

Page 74

Chapter 3 Configuring the Domain Name Service

Using DNS Resolve

To resolve a host name by querying the DNS server, use the dns resolve command. Enter the host name you want to resolve in mnemonic host-name format (for example, myhost.mydomain.com).

For example:

(config)# dns resolve fred.arrowpoint.com

Specifying a Secondary DNS Server

When a primary DNS server fails, the CSS uses the secondary DNS server to resolve host names to IP addresses. Use the dns secondary command to specify a secondary DNS server. Enter the IP address of the secondary DNS server in dotted-decimal notation (for example, 192.168.11.1).

(config)# dns secondary 192.168.3.6

You can specify a maximum of two secondary servers. To specify each additional server, repeat the dns secondary command. The order in which you enter the IP addresses is the order in which they are used when the primary DNS server fails.

To remove a secondary DNS server, specify the no version of the command followed by the IP address of the DNS server you wish to remove. For example:

(config)# no dns secondary 192.168.3.6

Specifying a DNS Suffix

To specify the default suffix to use when querying the DNS facility, use the dns suffix command. Enter the default suffix as an unquoted text string with no spaces

and a maximum of 64 characters.

For example:

(config)# dns suffix arrowpoint.com

To remove the default DNS suffix, enter:

(config)# no dns suffix

Cisco Content Services Switch Getting Started Guide

3-2

OL-6037-01

Page 75

Chapter 3 Configuring the Domain Name Service

Specifying UDP Traffic on the DNS Server Port

By default, the CSS sets up flows using FCBs for DNS requests and responses. For DNS UDP traffic on port 53, use the dnsflow command to determine whether the CSS uses flow control blocks (FCBs) for DNS requests and responses. This command provides the following options:

• enable (default) - This command has been removed from the CLI. Use the

flow-state command instead. For details about the flow-state command, refer to the Cisco Content Services Switch Content Load-Balancing Configuration Guide.

• disable - This command has been deprecated (obsoleted). This option maps

to the flow-state 53 udp flow-disable nat-enable command. For details about the flow-state command, refer to the Cisco Content Services Switch Content Load-Balancing Configuration Guide.

Where to Go Next

Chapter 4, Configuring Sticky Cookies, provides information to configure CSS

sticky using cookies.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

3-3

Page 76

Where to Go Next

Chapter 3 Configuring the Domain Name Service

Cisco Content Services Switch Getting Started Guide

3-4

OL-6037-01

Page 77

CHAPTER

Configuring Sticky Cookies

This chapter provides information on CSS sticky using cookies.

• Sticky Overview

• Advanced Load-Balancing Method Using Cookies

For detailed information on services, sticky parameters and their uses, and Layer 3, Layer 4, and Layer 5 sticky, refer to the Cisco Content Services Switch Content Load-Balancing Configuration Guide.

Sticky Overview

When customers visit an e-commerce site, they usually start out by browsing the site, the Internet equivalent of window shopping. Depending on the application, the site may require that the customer become “stuck” to one server once the connection is established, or the application may not require this until the customer starts to build a shopping cart.

In either case, once the customer adds items to the shopping cart, it is important that all of the customer’s requests get directed to the same server so that all the items are contained in one shopping cart on one server. An instance of a customer's shopping cart is typically local to a particular Web server and is not duplicated across multiple servers.

OL-6037-01

Cisco Content Services Switch Getting Started Guide

4-1

Page 78

Advanced Load-Balancing Method Using Cookies

Stickiness is the association between a client and a server that the CSS maintains during a session. Stickiness enables transactions over the Web because the client must remain on the same server for the entire session. Depending on the content rule, the CSS “sticks” a client to an appropriate server after the CSS has determined which load-balancing method to use.

If the CSS determines that a client is already stuck to a particular service, then the CSS places the client request on that service, regardless of the load balancing criteria specified by the matched content rule. If the CSS determines that the client is not stuck to a particular service, it applies normal load balancing to the content request.

Client cookies uniquely identify clients to the services providing content. A cookie is a small data structure used by a server to deliver data to a Web client and request that the client store the information. In certain applications, the client returns the information to the server to maintain the state between the client and the server.

Chapter 4 Configuring Sticky Cookies

When the CSS examines a request for content and determines through content rule matching that the content is sticky, it examines any cookie or URL present in the content request. The CSS uses this information to place the content request on the appropriate server.

Advanced Load-Balancing Method Using Cookies

A content rule is “sticky” when additional sessions from the same user or client are sent to the same service as the first connection, overriding normal load balancing. By default, the advanced balancing method is disabled.

Use the advanced-balance command to specify an advanced load-balancing method for a content rule that includes stickiness. The advanced-balance command options (cookies, cookieurl, and url) use strings for sticking clients to servers. These options are beneficial when the sticky table limit is too small for your application requirements because the string methods do not use the sticky table.

Cisco Content Services Switch Getting Started Guide

4-2

OL-6037-01

Page 79

Chapter 4 Configuring Sticky Cookies

Advanced Load-Balancing Method Using Cookies

The following sections provide configuration information for:

• Sticky Based on a Configured String in an HTTP Cookie Header, using the

advance-balanced cookies command

• Sticky Based on a Cookie in a URL, using the advance-balanced url

command

• Sticky Based on a Cookie in the HTTP Header or URL, using the

advance-balanced cookieurl command

For information on additional advanced load-balancing methods including arrowpoint cookies, refer to the Cisco Content Services Switch Content Load-Balancing Configuration Guide.

Sticky Based on a Configured String in an HTTP Cookie Header

If the server returns a cookie that is static and uniquely identifies itself, use the advanced-balance cookies command. This command enables the content rule to stick a client to a server based on the configured string found in the HTTP cookie header. A content rule with a sticky configuration set to advanced-balance cookies requires all clients to enable cookies on their browser.

In the following configuration, the CSS looks for the cookie in the Cookie: field of the HTTP header:

1. The CSS looks for the configured string prefix, which is the cookie name. In

this example, the string prefix in the content rule is MyCookie=.

2. If the CSS finds the prefix, then it looks for the value that matches one of the

string values configured in one of the services. For example, the string value for service test 1 is server1. The CSS begins searching for the prefix and value at the beginning of the cookie field in the header and searches the entire field until the end of the field.

If the HTTP header spans multiple packets, the CSS searches up to 5 packets by default; however, you can configure the CSS to search up to 20 packets (refer to the global spanning-packets command for more details).

OL-6037-01

Cisco Content Services Switch Getting Started Guide

4-3

Page 80

Advanced Load-Balancing Method Using Cookies

3. If the CSS cannot find the string prefix or match the cookie value with one of

the service string values, then the CSS load balances the request according to the configured balance method (roundrobin by default). For more details on what action the CSS takes when it cannot locate the cookie header or the specified cookie string, see the content rule mode sticky-no-cookie-found-action command.

configure

!*************************** GLOBAL *************************** ip route 0.0.0.0 0.0.0.0 10.86.191.174 1

!************************* INTERFACE ************************* interface 3/2 bridge vlan 2

!************************** CIRCUIT ************************** circuit VLAN1 description "client vlan"

Chapter 4 Configuring Sticky Cookies

ip address 10.86.191.161 255.255.255.240

circuit VLAN2 description "server vlan"

ip address 10.1.1.254 255.255.0.0

!The string value configured in the service must match the value of the cookie for a particular server.

!************************** SERVICE ************************** service test1 ip address 10.1.1.1 string server1 active

service test2 ip address 10.1.1.2 string server2 active

service test3 ip address 10.1.1.3 string server3 active

Cisco Content Services Switch Getting Started Guide

4-4

OL-6037-01

Page 81

Chapter 4 Configuring Sticky Cookies

service test4 ip address 10.1.1.4 string server4 active

!The string prefix must match the cookie name. We recommend that you include the ‘=’ as part of the string prefix.

!*************************** OWNER *************************** owner test

content stickyCookie advanced-balance cookies string prefix "MyCookie=" add service test1 add service test2 add service test3 add service test4 port 80 protocol tcp active

Advanced Load-Balancing Method Using Cookies

Sticky Based on a Cookie in a URL

If the cookie is present in the URL instead of the cookie field of the HTTP header, use the advanced-balance url command. Some client applications do not accept cookies. When a site depends upon the information in the cookie, administrators sometimes modify the server application so that it appends the cookie data to the parameters section of the URL. The parameters typically follow a “?” at the end of the main data section of the URL.

In this configuration, the CSS functions in a similar manner as when using the advanced-balance cookies command; however, the CSS looks in the URL after the ‘?’ for the cookie.

Using the full configuration of the “Sticky Based on a Configured String in an

HTTP Cookie Header” section, the only difference is the advanced-balance url

command in the content rule.

!*************************** OWNER *************************** owner test

content stickyCookie advanced-balance url

OL-6037-01

Cisco Content Services Switch Getting Started Guide

4-5

Page 82

Chapter 4 Configuring Sticky Cookies

Where to Go Next

string prefix "MyCookie=" add service test1 add service test2 add service test3 add service test4 port 80 protocol tcp active

Sticky Based on a Cookie in the HTTP Header or URL

If the cookie could be in either the cookie field of the HTTP header or the URL, use the advanced-balance cookieurl command.

In this configuration, the CSS searches for the cookie first in the cookie field of the HTTP header. If the cookie field does not exist, then the CSS looks for the cookie in the URL. This command is intended for applications where some clients cannot accept cookies but others can.

Using the full configuration of the “Sticky Based on a Configured String in an

HTTP Cookie Header” section, the only difference is the advanced-balance

cookieurl command in the content rule.

!*************************** OWNER *************************** owner test

content stickyCookie advanced-balance cookieurl string prefix "MyCookie=" add service test1 add service test2 add service test3 add service test4 port 80 protocol tcp active

Where to Go Next

Chapter 5, Where to Go Next, provides information on the location of

administrative and configuration tasks, and a contents summary of the CSS administration, configuration, and user guides.

Cisco Content Services Switch Getting Started Guide

4-6

OL-6037-01

Page 83

Where to Go Next

This chapter provides information on where to go next to administer and configure the CSS. The chapter consists of the following major sections:

• CSS Tas k Topic L i st - Provides a list of administrative and configuration task

topics in alphabetical order and the location of the topic in the CSS guides.

• Comprehensive CSS Documentation List - Provides detailed outlines for each

of the CSS administration, configuration, and user guides.

CSS Task Topic List

CHAPTER

Table 5-1 provides a list of CSS administrative and configuration task topics in

alphabetical order and the location of the topics in the CSS documentation. For more concise lists of topics, refer to the index of each document.

Table 5-1 Administration and Configuration Task Topic List

Task Topic Guide and Chapter

Absolute load configuration with quick start

ACA load-balancing algorithm configuration

Accelerated domains configuration CSS Global Server Load-Balancing Configuration Guide

OL-6037-01

CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

Chapter 4, Configuring a Client-Side Accelerator

Cisco Content Services Switch Getting Started Guide

5-1

Page 84

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Chapter 5 Where to Go Next

Access Control Lists (ACLs) configuration with quick start

Access FTP, demand-based content replication and publishing and

CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

subscribing

Access to the CSS configuration CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

Access to the user interface configuration CSS Device Management User’s Guide

Chapter 2, Configuring the CSS for Device Management

ACLs with source groups configuration CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

Adaptive Session Redundancy (ASR) configuration with quick start, and show

CSS Redundancy Configuration Guide

Chapter 2, Configuring Adaptive Session Redundancy

command

Address Resolution Protocol (ARP) configuration with quick start, and show

CSS Routing and Bridging Configuration Guide

Chapter 4, Configuring the Address Resolution Protocol

command

ADI, unpack and remove an ArrowPoint Distribution Image (ADI) to a CSS disk.

Administrative access to the CSS configuration

Administrative username and password configuration

Advanced load-balancing method for sticky content configuration

Cisco Content Services Switch Getting Started Guide

5-2

CSS Administration Guide

Chapter 1, Managing the Software

CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

CSS Administration Guide

Appendix B, Using the Offline Diagnostic Monitor Menu

CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

OL-6037-01

Page 85

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Advertise a route through RIP on the CSS configuration

Application Peering Protocol (APP) configuration, and show command

CSS Routing and Bridging Configuration Guide

Chapter 5, Configuring Routing Information Protocol

CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

Application Peering Protocol-User Datagram Protocol (APP-UDP)

CSS Global Server Load-Balancing Configuration Guide

Chapter 5, Configuring Network Proximity

configuration

Application type configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Archive file configuration CSS Administration Guide

Chapter 1, Managing the Software

ARP configuration with quick start, and show command

ArrowPoint Content Awareness (ACA) load-balancing algorithm configuration

CSS Routing and Bridging Configuration Guide

Chapter 4, Configuring the Address Resolution Protocol

CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

ArrowPoint cookies configuration CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

ASR configuration with quick start, and show command

CSS Redundancy Configuration Guide

Chapter 2, Configuring Adaptive Session Redundancy

Back-end SSL configuration CSS SSL Configuration Guide

Chapter 5, Configuring Back-End SSL

Back-end SSL proxy list quick start CSS SSL Configuration Guide

Chapter 2, SSL Configuration Quick Starts

Backup CSS as a master temporarily CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-3

Page 86

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Banner (login) configuration CSS Administration Guide

Chapter 3, Configuring User Profiles

Boot configuration CSS Administration Guide

Appendix B, Using the Offline Diagnostic Monitor Menu

Chapter 5 Where to Go Next

Boot configuration with quick start and show command

CSS Administration Guide

Chapter 2, Specifying the CSS Boot Configuration

Box-to-box redundancy configuration CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

BPDU guard configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Bridge interface to a VLAN circuit configuration

CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Bypass cache configuration CSS Content Load-Balancing Configuration Guide

Chapter 12, Configuring Caching

Bypass content rules on caches configuration

CA certificates for server authentication configuration

CSS Content Load-Balancing Configuration Guide

Chapter 3, Configuring Services

CSS SSL Configuration Guide

Chapter 6, Configuring SSL Initiation

Cable redundant CSS configuration CSS Redundancy Configuration Guide

Caching configuration with quick start CSS Content Load-Balancing Configuration Guide

CDP configuration with quick start, and show command

Certificates and keys (SSL) configuration and verification

Cisco Content Services Switch Getting Started Guide

5-4

Chapter 3, Configuring Box-to-Box Redundancy

Chapter 12, Configuring Caching

CSS Routing and Bridging Configuration Guide

Chapter 7, Configuring the Cisco Discovery Protocol

CSS SSL Configuration Guide

Chapter 3, Configuring SSL Certificates and Keys

OL-6037-01

Page 87

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Circuits Virtual LAN (VLAN) configuration, and show command

Cisco Discovery Protocol (CDP) configuration with quick start, and show

CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

CSS Routing and Bridging Configuration Guide

Chapter 7, Configuring the Cisco Discovery Protocol

command

CLI prompt configuration CSS Administration Guide

Chapter 3, Configuring User Profiles

Client authentication configuration CSS SSL Configuration Guide

Chapter 4, Configuring SSL Termination

Client certificate and keys configuration CSS SSL Configuration Guide

Chapter 6, Configuring SSL Initiation

Client-Side Accelerator (CSA) configuration with quick start, and show

CSS Global Server Load-Balancing Configuration Guide

Chapter 4, Configuring a Client-Side Accelerator

command

Command history buffer configuration CSS Administration Guide

Chapter 3, Configuring User Profiles

Command scheduler configuration CSS Administration Guide

Chapter 8, Using the CSS Scripting Language.

Configuration changes, saved for subsequent CSS reboots.

Configuration synchronization configuration

Consistent weight range among services (DFP) configuration

CSS Administration Guide

Chapter 1, Managing the Software

CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

CSS Content Load-Balancing Configuration Guide

Chapter 7, Configuring Dynamic Feedback Protocol for Server Load Balancing

Console authentication configuration CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-5

Page 88

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Content API configuration CSS Administration Guide

Chapter 7, Using an XML Document to Configure the CSS

Chapter 5 Where to Go Next

Content Routing Agent (CRA) configuration with quick start, and show

CSS Global Server Load-Balancing Configuration Guide

Chapter 3, Configuring a CSS as a Content Routing Agent

command

Content rule overview CSS Content Load-Balancing Configuration Guide

Chapter 1, Content Load-Balancing Overview

Content rule-based DNS configuration with quick start and show command

CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

Content rules configuration with quick start, and show command

Content staging and replication configuration with quick start

Cookies for advanced load-balancing configuration

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Copy files from FTP server configuration CSS Administration Guide

Core dumps configuration CSS Administration Guide

CRA configuration with quick start, and show command

Critical phy configuration with quick start

Critical services configuration CSS Redundancy Configuration Guide

Cisco Content Services Switch Getting Started Guide

5-6

Chapter 1, Managing the Software

CSS Global Server Load-Balancing Configuration Guide

Chapter 3, Configuring a CSS as a Content Routing Agent

CSS Redundancy Configuration Guide

Chapter 1, Configuring VIP and Virtual Interface Redundancy

Chapter 3, Configuring Box-to-Box Redundancy

OL-6037-01

Page 89

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CRL record show command CSS SSL Configuration Guide

Chapter 7, Displaying SSL Configuration Information and Statistics

CSS Task Topic List

Crossover cable pinouts for box-to-box redundancy

CSA configuration with quick start, and show command

Demand-based content replication configuration with quick start

Denial of Service (DoS) configuration using SNMP

Destination service for source group configuration

Device Management user interface, see WebNS Device Management user interface

DFP agent configuration, and show command

CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

CSS Global Server Load-Balancing Configuration Guide

Chapter 4, Configuring a Client-Side Accelerator

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

CSS Administration Guide

Chapter 5, Configuring Simple Network Management Protocol (SNMP)

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

CSS Device Management User’s Guide

Chapter 3, Using the Device Management User Interface

CSS Content Load-Balancing Configuration Guide

Chapter 7, Configuring Dynamic Feedback Protocol for Server Load Balancing

DHCP Relay Agent configuration with quick start, and show command

Disk configuration CSS Administration Guide

OL-6037-01

CSS Routing and Bridging Configuration Guide

Chapter 8, Configuring the DHCP Relay Agent

Chapter 1, Managing the Software

CSS Administration Guide

Appendix B, Using the Offline Diagnostic Monitor Menu

Cisco Content Services Switch Getting Started Guide

5-7

Page 90

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Chapter 5 Where to Go Next

DNS configuration to a zone-based DNS content rule based configuration,

CSS Global Server Load-Balancing Configuration Guide

Chapter 2, Configuring the DNS Sticky Feature

conversion

DNS peering and DNS server configuration including DNS record

CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

DNS server forwarder CSS Global Server Load-Balancing Configuration Guide

Chapter 4, Configuring a Client-Side Accelerator

DNS Sticky configuration with quick start, and show command

CSS Global Server Load-Balancing Configuration Guide

Chapter 2, Configuring the DNS Sticky Feature

DNS-based content rule configuration CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

Domain cache configuration CSS Global Server Load-Balancing Configuration Guide

Chapter 4, Configuring a Client-Side Accelerator

Domain name content rule CSS Content Load-Balancing Configuration Guide

Domain Name System (DNS) Sticky feature, see DNS sticky

Domain qualifier list (DQL) and virtual web hosting including a quick start

Domain record configuration, DNS server

Domain records configuration, network proximity

Double-wildcard caching rule configuration

Cisco Content Services Switch Getting Started Guide

5-8

Chapter 9, Configuring Content Rules

CSS Global Server Load-Balancing Configuration Guide

Chapter 2, Configuring the DNS Sticky Feature

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

CSS Global Server Load-Balancing Configuration Guide

Chapter 5, Configuring Network Proximity

CSS Content Load-Balancing Configuration Guide

Chapter 12, Configuring Caching

OL-6037-01

Page 91

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

DQL configuration including a quick start

Dynamic Feedback Protocol (DFP) agent configuration, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

CSS Content Load-Balancing Configuration Guide

Chapter 7, Configuring Dynamic Feedback Protocol for Server Load Balancing

ECMP configuration CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

E-commerce sticky configuration CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Ethernet interface configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Expert mode configuration CSS Administration Guide

Chapter 3, Configuring User Profiles

Extension qualifier lists (EQL) configuration

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Failover handling configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

File storage locations configuration CSS Administration Guide

Chapter 1, Managing the Software

Firewall IP route configuration CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

Firewall Load Balancing (FWLB) configuration, and show command

Flow and port mapping configuration including inactivity timeouts and

CSS Security Configuration Guide

Chapter 5, Configuring Firewall Load Balancing

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

flow-state table, and show command

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-9

Page 92

Chapter 5 Where to Go Next

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Flow on the CSS overview CSS Content Load-Balancing Configuration Guide

Chapter 1, Content Load-Balancing Overview

Forward IP subnet broadcast addressed frames configuration

Fragmented IP packets flow processing configuration

FTP access for demand-based content replication and publishing and

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

subscribing

FTP connections through source groups configuration

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

FTP record configuration CSS Administration Guide

Chapter 1, Managing the Software

FTP reserved control port reclamation configuration

FWLB with VIP and virtual interface redundancy configuration

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

CSS Security Configuration Guide

Chapter 5, Configuring Firewall Load Balancing

Global keepalives configuration with quick start

Global service loads show command CSS Content Load-Balancing Configuration Guide

Global sticky database configuration with quick start, and show command

Graceful shutdown of an overloaded service configuration

Cisco Content Services Switch Getting Started Guide

5-10

CSS Content Load-Balancing Configuration Guide

Chapter 4, Configuring Service, Global, and Script Keepalives

Chapter 6, Configuring Loads for Services

CSS Global Server Load-Balancing Configuration Guide

Chapter 2, Configuring the DNS Sticky Feature

CSS Content Load-Balancing Configuration Guide

Chapter 3, Configuring Services

OL-6037-01

Page 93

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Hash algorithms for content rules configuration

Header field group configuration with quick start, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

CSS Content Load-Balancing Configuration Guide

Chapter 11, Configuring HTTP Header Load Balancing

Hot list configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

HTTP header insertion configuration CSS SSL Configuration Guide

Chapter 4, Configuring SSL Termination

HTTP header load balancing configuration with quick start, and show

CSS Content Load-Balancing Configuration Guide

Chapter 11, Configuring HTTP Header Load Balancing

command

HTTP redirection configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Implicit service for the static route next hop configuration

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

Interface configuration, and show command

Internet Protocol configuration with quick start, and show command

Inter-Switch Communications (ISC) redundant services configuration

IP equal-cost multipath (ECMP) selection algorithm and the preferred reverse egress

CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

CSS Redundancy Configuration Guide

Chapter 2, Configuring Adaptive Session Redundancy

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

path configuration

IP fragmentation configuration CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

IP source, static, and record route configuration

OL-6037-01

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

Cisco Content Services Switch Getting Started Guide

5-11

Page 94

Chapter 5 Where to Go Next

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Kal-ap-vip client and agent configuration CSS Global Server Load-Balancing Configuration Guide

Chapter 1, Configuring the CSS as a Domain Name System Server

Keepalives configuration, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 4, Configuring Service, Global, and Script Keepalives

Load configuration (absolute and relative)

Load-balancing algorithm for content rule configuration

CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Location cookie configuration CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Logging configuration, and show command

Maximum segment size (MSS) for TCP data configuration

CSS Administration Guide

Chapter 4, Using the CSS Logging Features

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

MIBs, overview CSS Administration Guide

MIBs, update CSS Administration Guide

NAT peering configuration with quick start

Network Address Translation (NAT) for the transparent cache service type configuration

Cisco Content Services Switch Getting Started Guide

5-12

Chapter 5, Configuring Simple Network Management Protocol (SNMP)

Appendix A, Upgrading Your CSS Software

CSS Content Load-Balancing Configuration Guide

Chapter 12, Configuring Caching

CSS Content Load-Balancing Configuration Guide

Chapter 3, Configuring Services

OL-6037-01

Page 95

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Network Address Translation (NAT) source group configuration

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

Network boot drive configuration CSS Administration Guide

Chapter 2, Specifying the CSS Boot Configuration

Network proximity configuration CSS Global Server Load-Balancing Configuration Guide

Chapter 5, Configuring Network Proximity

Network Qualifier Lists (NQL) for ACLs configuration

CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

noflow port mapping configuration CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

Offline Diagnostic Monitor Menu CSS Administration Guide

Appendix B, Using the Offline Diagnostic Monitor Menu

Opportunistic Layer 3 forwarding configuration

OSPF configuration with quick start, and show command

CSS Routing and Bridging Configuration Guide

Chapter 6, Configuring the Internet Protocol

CSS Routing and Bridging Configuration Guide

Chapter 3, Configuring Open Shortest Path First (OSPF)

Owner configuration, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 8, Configuring Owners

Owner overview CSS Content Load-Balancing Configuration Guide

Chapter 1, Content Load-Balancing Overview

Passive SCM configuration CSS Administration Guide

Chapter 2, Specifying the CSS Boot Configuration

Permanent TCP and UDP port connection configuration

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

Persistence configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-13

Page 96

Chapter 5 Where to Go Next

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Physical link configuration list CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

Port Fast configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Port mapping configuration (source groups)

Port mapping configuration, and show command (global and noflow)

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

Primary boot record configuration CSS Administration Guide

Chapter 2, Specifying the CSS Boot Configuration

Primary sorry server configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Processing of SSL flows by the SSL module example

Proximity domain name server (PDNS) configuration, and show command

CSS SSL Configuration Guide

Chapter 8, Examples of CSS SSL Configurations

CSS Global Server Load-Balancing Configuration Guide

Chapter 5, Configuring Network Proximity

Proxy cache configuration CSS Content Load-Balancing Configuration Guide

Chapter 12, Configuring Caching

Publishing and subscribing services configuration, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

Publishing service, associate an FTP access mechanism with a service

RADIUS configuration with quick start including authentication and authorization

Reboot the CSS CSS Administration Guide

Cisco Content Services Switch Getting Started Guide

5-14

CSS Content Load-Balancing Configuration Guide

Chapter 3, Configuring Services

CSS Security Configuration Guide

Chapter 3, Configuring the CSS as a Client of a RADIUS Server

Appendix B, Using the Offline Diagnostic Monitor Menu

OL-6037-01

Page 97

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Reclaim of reserved Telnet and FTP control ports configuration

Redirection requests for content configuration

CSS Content Load-Balancing Configuration Guide

Chapter 2, Configuring Flow and Port Mapping Parameters

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Redundancy configuration (ASR) CSS Redundancy Configuration Guide

Chapter 2, Configuring Adaptive Session Redundancy

Redundancy configuration (box-to-box) CSS Redundancy Configuration Guide

Chapter 3, Configuring Box-to-Box Redundancy

Redundancy configuration (VIP and virtual interface)

CSS Redundancy Configuration Guide

Chapter 1, Configuring VIP and Virtual Interface Redundancy

Relative load configuration with quick start, and show command

CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

Remapping configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Remote user access to the CSS including virtual and console authentication

Replication and staging configuration with quick start

CSS Security Configuration Guide

Chapter 1, Controlling CSS Access

CSS Content Load-Balancing Configuration Guide

Chapter 13, Configuring Content Replication

Reporter mode configuration CSS Redundancy Configuration Guide

Chapter 1, Configuring VIP and Virtual Interface Redundancy

Resolve domain names using the Internet through source groups configuration

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

Restore archived files CSS Administration Guide

Chapter 1, Managing the Software

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-15

Page 98

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

Chapter 5 Where to Go Next

Restrict access to the user interface configuration

CSS Device Management User’s Guide

Chapter 2, Configuring the CSS for Device Management

Reverse proxy caching configuration CSS Content Load-Balancing Configuration Guide

Chapter 12, Configuring Caching

RIP for an IP interface configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

RMON configuration with quick start, and show command

CSS Administration Guide

Chapter 6, Configuring Remote Monitoring (RMON)

Router-Discovery Protocol configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Routing Information Protocol (RIP) configuration with quick start, and show

CSS Routing and Bridging Configuration Guide

Chapter 5, Configuring Routing Information Protocol

command

RSA certificate and key generation and import quick start

CSS SSL Configuration Guide

Chapter 2, SSL Configuration Quick Starts

Save configuration changes for subsequent CSS reboots

CSS Administration Guide

Chapter 1, Managing the Software

Script keepalives configuration CSS Content Load-Balancing Configuration Guide

Chapter 4, Configuring Service, Global, and Script Keepalives

Scripts configuration, and show command

Secure management license key for SSL strong encryption

CSS Administration Guide

Chapter 8, Using the CSS Scripting Language.

CSS Device Management User’s Guide

Chapter 2, Configuring the CSS for Device Management

Secure URL rewrite configuration CSS SSL Configuration Guide

Chapter 4, Configuring SSL Termination

Cisco Content Services Switch Getting Started Guide

5-16

OL-6037-01

Page 99

Chapter 5 Where to Go Next

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

CSS Task Topic List

Serverdown failover for sticky configuration

CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Service configuration with quick start, and show command

Service in CSS ping response decision configuration

CSS Content Load-Balancing Configuration Guide

Chapter 3, Configuring Services

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Service keepalive configuration CSS Content Load-Balancing Configuration Guide

Chapter 4, Configuring Service, Global, and Script Keepalives

Service loads configuration CSS Content Load-Balancing Configuration Guide

Chapter 6, Configuring Loads for Services

Service overview CSS Content Load-Balancing Configuration Guide

Chapter 1, Content Load-Balancing Overview

Service redirection configuration CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Service source group configuration CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

Service weight configuration through content rule

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Session configuration (global) CSS Administration Guide

Chapter 3, Configuring User Profiles

Session Initiation Protocol load balancing configuration

CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Shutdown the interfaces CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Cisco Content Services Switch Getting Started Guide

OL-6037-01

5-17

Page 100

Chapter 5 Where to Go Next

CSS Task Topic List

Table 5-1 Administration and Configuration Task Topic List (continued)

Task Topic Guide and Chapter

SIP configuration with quick start CSS Content Load-Balancing Configuration Guide

Chapter 10, Configuring Sticky Parameters for Content Rules

Site certificate configuration CSS SSL Configuration Guide

Chapter 3, Configuring SSL Certificates and Keys

SNMP configuration CSS Administration Guide

Chapter 5, Configuring Simple Network Management Protocol (SNMP)

Sorry server, primary and secondary configuration

Source group configuration with quick start, and show command

Spanned packets for content rule configuration

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

CSS Content Load-Balancing Configuration Guide

Chapter 5, Source Groups for Services

CSS Content Load-Balancing Configuration Guide

Chapter 9, Configuring Content Rules

Spanning-tree bridging configuration CSS Routing and Bridging Configuration Guide

Chapter 1, Configuring Interfaces and Circuits

Spanning-tree bridging for the CSS configuration with quick start, and show command

CSS Routing and Bridging Configuration Guide

Chapter 2, Configuring Spanning-Tree Bridging for the CSS

SSH configuration, and show command CSS Security Configuration Guide

Chapter 2, Configuring the Secure Shell Daemon Protocol

SSL certificates and keys configuration CSS SSL Configuration Guide

Chapter 3, Configuring SSL Certificates and Keys

SSL client authentication configuration CSS SSL Configuration Guide

SSL flows show command CSS SSL Configuration Guide

Cisco Content Services Switch Getting Started Guide

5-18

Chapter 4, Configuring SSL Termination

Chapter 7, Displaying SSL Configuration Information and Statistics

OL-6037-01