Cisco Systems EA6500, Catalyst Switch 6500 User Manual

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release

12.1 E

Cisco IOS Release 12.1 E

Corporate Headquarters

Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 526-4100

Customer Order Number: DOC-7814099= Text Part Number: 78-14099-04

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

CCDE, CCENT, Cisco Eos, Cisco Lumin, Cisco Nexus, Cisco StadiumVision, Cisco TelePresence, the Cisco logo, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0807R)

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Preface 21

Audience 21

Organization 21

Related Documentation 23

Conventions 24

CHAPTER

1 Product Overview 1

Configuring Embedded CiscoView Support 2

Understanding Embedded CiscoView 2 Installing and Configuring Embedded CiscoView 2 Displaying Embedded CiscoView Information 3

2 Command-Line Interfaces 1

Accessing the CLI 1

Accessing the CLI through the EIA/TIA-232 Console Interface 1 Accessing the CLI through Telnet 2

Performing Command Line Processing 3

Performing History Substitution 3

Cisco IOS Command Modes 4

Displaying a List of Cisco IOS Commands and Syntax 5

ROM-Monitor Command-Line Interface 6

3 Configuring the Switch for the First Time 1

78-14099-04

Default Configuration 1

Configuring the Switch 2

Using the Setup Facility or the setup Command 2 Using Configuration Mode 10 Checking the Running Configuration Before Saving 10 Saving the Running Configuration Settings 11 Reviewing the Configuration 11 Configuring a Default Gateway 12 Configuring a Static Route 12 Configuring a BOOTP Server 14

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Protecting Access to Privileged EXEC Commands 15

Setting or Changing a Static Enable Password 15 Using the enable password and enable secret Commands 15 Setting or Changing a Line Password 16 Setting TACACS+ Password Protection for Privileged EXEC Mode 16 Encrypting Passwords 17 Configuring Multiple Privilege Levels 17

Recovering a Lost Enable Password 19

Modifying the Supervisor Engine Startup Configuration 20

Understanding the Supervisor Engine Boot Configuration 20 Configuring the Software Configuration Register 21 Specifying the Startup System Image 24 Understanding Flash Memory 24 BOOTLDR Environment Variable 25 CONFIG_FILE Environment Variable 26 Controlling Environment Variables 26

CHAPTER

4 Configuring EHSA Supervisor Engine Redundancy 1

Supervisor Engine Redundant Operation 1

Supervisor Engine Redundancy Requirements 2 Synchronizing the Supervisor Engine Configurations 3 Displaying the Supervisor Engine Redundancy 4 Copying Files to the Redundant Supervisor Engine 4

5 Configuring RPR and RPR+ Supervisor Engine Redundancy 1

Understanding Supervisor Engine Redundancy 1

Supervisor Engine Redundancy Overview 1 RPR Operation 2 RPR+ Operation 2 Supervisor Engine Synchronization 3

Supervisor Engine Redundancy Guidelines and Restrictions 4

RPR+ Guidelines and Restrictions 4 Hardware Configuration Guidelines and Restrictions 5 Restrictions 5 Configuration Mode Restrictions 6

Configuring Supervisor Engine Redundancy 6

Configuring RPR and RPR+ 6 Synchronizing the Supervisor Engine Configurations 7 Displaying the Redundancy States 8

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Performing a Fast Software Upgrade 9

Copying Files to an MSFC 10

Contents

CHAPTER

6 Configuring Interfaces 1

Understanding Interface Configuration 1

Using the Interface Command 2

Configuring a Range of Interfaces 4

Defining and Using Interface-Range Macros 6

Configuring Optional Interface Features 7

Configuring Ethernet Interface Speed and Duplex Mode 7 Configuring Jumbo Frame Support 10 Configuring IEEE 802.3Z Flow Control 14 Configuring the Port Debounce Timer 15 Adding a Description for an Interface 16

Understanding Online Insertion and Removal 17

Monitoring and Maintaining Interfaces 17

Monitoring Interface Status 17 Clearing Counters on an Interface 18 Resetting an Interface 19 Shutting Down and Restarting an Interface 19

CHAPTER

7 Configuring LAN Ports for Layer 2 Switching 1

Understanding How Layer 2 Switching Works 1

Understanding Layer 2 Ethernet Switching 1 Understanding VLAN Trunks 2 Layer 2 LAN Port Modes 4

Default Layer 2 LAN Interface Configuration 5

Layer 2 LAN Interface Configuration Guidelines and Restrictions 6

Restrictions 6 Guidelines 6

Configuring LAN Interfaces for Layer 2 Switching 7

Configuring a LAN Port for Layer 2 Switching 7 Configuring a Layer 2 Switching Port as a Trunk 8 Configuring a LAN Interface as a Layer 2 Access Port 14 Configuring a Custom IEEE 802.1Q EtherType Field Value 16

8 Configuring VTP 1

Understanding How VTP Works 1

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Understanding the VTP Domain 2 Understanding VTP Modes 2 Understanding VTP Advertisements 2 Understanding VTP Version 2 3 Understanding VTP Pruning 3

VTP Default Configuration 5

VTP Configuration Guidelines and Restrictions 5

Configuring VTP 6

Configuring VTP Global Parameters 6 Configuring the VTP Mode 8 Displaying VTP Statistics 10

CHAPTER

9 Configuring VLANs 1

Understanding How VLANs Work 1

VLAN Overview 1 VLAN Ranges 2 Configurable VLAN Parameters 3 Understanding Token Ring VLANs 3

VLAN Default Configuration 6

VLAN Configuration Guidelines and Restrictions 8

Restrictions 8 Guidelines 8

Configuring VLANs 9

VLAN Configuration Options 9 Creating or Modifying an Ethernet VLAN 10 Assigning a Layer 2 LAN Interface to a VLAN 12 Configuring the Internal VLAN Allocation Policy 12 Mapping 802.1Q VLANs to ISL VLANs 12

10 Configuring Private VLANs 1

Understanding How Private VLANs Work 1

Private VLAN Configuration Restrictions and Guidelines 2

Configuring Private VLANs 5

Configuring a VLAN as a Private VLAN 5 Associating Secondary VLANs with a Primary VLAN 6 Mapping Secondary VLANs to the Layer 3 VLAN Interface of a Primary VLAN 7 Configuring a Layer 2 Interface as a Private VLAN Host Port 8 Configuring a Layer 2 Interface as a Private VLAN Promiscuous Port 9

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Contents

CHAPTER

11 Configuring Cisco IP Phone Support 1

Understanding Cisco IP Phone Support 1

Cisco IP Phone Connections 1 Cisco IP Phone Voice Traffic 2 Cisco IP Phone Data Traffic 3 Cisco IP Phone Power Configurations 3

Default Cisco IP Phone Support Configuration 4

Cisco IP Phone Support Configuration Guidelines and Restrictions 4

Configuring Cisco IP Phone Support 5

Configuring Voice Traffic Support 5 Configuring Data Traffic Support 7 Configuring Inline Power Support 8

12 Configuring Layer 3 Interfaces 1

Configuring IP Routing and Addresses 2

Configuring IPX Routing and Network Numbers 6

Configuring AppleTalk Routing, Cable Ranges, and Zones 7

Configuring Other Protocols on Layer 3 Interfaces 8

CHAPTER

13 Configuring EtherChannels 1

Understanding How EtherChannels Work 1

EtherChannel Feature Overview 2 Understanding How EtherChannels Are Configured 2 Understanding Port Channel Interfaces 5 Understanding Load Balancing 5

EtherChannel Feature Configuration Guidelines and Restrictions 5

Configuring EtherChannels 6

Configuring Port Channel Logical Interfaces for Layer 3 EtherChannels 7 Configuring Channel Groups 8 Configuring the LACP System Priority and System ID 10 Configuring EtherChannel Load Balancing 11

14 Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling 1

Understanding How 802.1Q Tunneling Works 1

802.1Q Tunneling Configuration Guidelines and Restrictions 4 Restrictions 4 Guidelines 4

78-14099-04

Configuring 802.1Q Tunneling 5

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Preconfiguration Tasks 6 Configuring 802.1Q Tunnel Ports 6 Configuring the Switch to Tag Native VLAN Traffic 7

Understanding How Layer 2 Protocol Tunneling Works 7

Configuring Support for Layer 2 Protocol Tunneling 8

CHAPTER

15 Configuring STP and IEEE 802.1s MST 1

Understanding How STP Works 2

STP Overview 2 Understanding the Bridge ID 3 Understanding Bridge Protocol Data Units 4 Election of the Root Bridge 4 STP Protocol Timers 5 Creating the Spanning Tree Topology 5 STP Port States 6 STP and IEEE 802.1Q Trunks 12

Understanding How IEEE 802.1w RSTP Works 13

IEEE 802.1w RSTP Overview 13 RSTP Port Roles 13 RSTP Port States 14 Rapid-PVST 14

Understanding How IEEE 802.1s MST Works 14

IEEE 802.1s MST Overview 15 MST-to-PVST Interoperability 16 Common Spanning Tree 18 MST Instances 18 MST Configuration Parameters 18 MST Regions 19 Message Age and Hop Count 20

Default STP Configuration 21

STP and MST Configuration Guidelines 21

Configuring STP 22

Enabling STP 23 Enabling the Extended System ID 24 Configuring the Root Bridge 25 Configuring a Secondary Root Bridge 26 Configuring STP Port Priority 27 Configuring STP Port Cost 29 Configuring the Bridge Priority of a VLAN 30

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Configuring the Hello Time 32 Configuring the Forward-Delay Time for a VLAN 32 Configuring the Maximum Aging Time for a VLAN 33 Enabling Rapid-PVST 33

Configuring IEEE 802.1s MST 34

Enabling MST 34 Displaying MST Configurations 36 Configuring MST Instance Parameters 39 Configuring MST Instance Port Parameters 40 Restarting Protocol Migration 40

Contents

CHAPTER

16 Configuring Optional STP Features 1

Understanding How PortFast Works 2

Understanding How BPDU Guard Works 2

Understanding How PortFast BPDU Filtering Works 2

Understanding How UplinkFast Works 3

Understanding How BackboneFast Works 4

Understanding How EtherChannel Guard Works 6

Understanding How Root Guard Works 6

Understanding How Loop Guard Works 6

Enabling PortFast 8

Enabling PortFast BPDU Filtering 10

Enabling BPDU Guard 11

Enabling UplinkFast 12

Enabling BackboneFast 13

Enabling EtherChannel Guard 14

Enabling Root Guard 14

Enabling Loop Guard 15

CHAPTER

78-14099-04

17 Configuring IP Unicast Layer 3 Switching on Supervisor Engine 2 1

Understanding How Layer 3 Switching Works 1

Understanding Hardware Layer 3 Switching on PFC2 and DFCs 2 Understanding Layer 3-Switched Packet Rewrite 2

Default Hardware Layer 3 Switching Configuration 4

Layer 3 Switching Configuration Guidelines and Restrictions 4

Configuring Hardware Layer 3 Switching 5

Displaying Hardware Layer 3 Switching Statistics 6

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

CHAPTER

18 Configuring IP Multicast Layer 3 Switching 1

Understanding How IP Multicast Layer 3 Switching Works 1

IP Multicast Layer 3 Switching Overview 2 Multicast Layer 3 Switching Cache 2 IP Multicast Layer 3 Switching Flow Mask 3 Layer 3-Switched Multicast Packet Rewrite 3 Partially and Completely Switched Flows 4 Non-RPF Traffic Processing 5

Default IP Multicast Layer 3 Switching Configuration 7

IP Multicast Layer 3 Switching Configuration Guidelines and Restrictions 8

PFC2 with MSCF2 8 PFC1 with MSFC or MSCF2 8 PFC1 and PFC2 General Restrictions 9 Unsupported Features 9

Configuring IP Multicast Layer 3 Switching 9

Source Specific Multicast with IGMPv3, IGMP v3lite, and URD 10 Enabling IP Multicast Routing Globally 10 Enabling IP PIM on Layer 3 Interfaces 10 Enabling IP Multicast Layer 3 Switching on Layer 3 Interfaces 11 Configuring the Layer 3 Switching Global Threshold 11 Enabling Installation of Directly Connected Subnets 12 Enabling NetFlow-Based Rate Limiting of RPF Failures 12 Enabling CEF-Based Rate Limiting of RPF Failures 13 Enabling Shortcut-Consistency Checking 13 Configuring ACL-Based Filtering of RPF Failures 14 Displaying RPF Failure Rate-Limiting Information 14 Displaying IP Multicast Layer 3 Hardware Switching Summary 14 Displaying the IP Multicast Routing Table 16 Displaying IP Multicast Layer 3 Switching Statistics 17 Using Debug Commands 18 Clearing IP Multicast Layer 3 Switching Statistics 19

CHAPTER

19 Configuring IP Unicast Layer 3 Switching on Supervisor Engine 1 1

Understanding How IP MLS Works 2

IP MLS Overview 2 IP MLS Flows 2 Layer 3 MLS Cache 3 Flow Masks 3 Layer 3-Switched Packet Rewrite 4

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

IP MLS Operation 5

Default IP MLS Configuration 6

IP MLS Configuration Guidelines and Restrictions 6

Configuring IP MLS 6

Enabling IP MLS Globally 6 Disabling and Enabling IP MLS on a Layer 3 Interface 7 Displaying the Interface IP MLS Configuration 7 Configuring the MLS Aging-Time 8 Setting the Minimum IP MLS Flow Mask 8

Displaying IP MLS Cache Entries 9

Displaying IP MLS Information 9 Displaying IP MLS Cache Entries for a Specific Destination Address 10 Displaying Cache Entries for a Specific Source IP Address 10 Displaying Entries for a Specific IP Flow 11

Contents

CHAPTER

Clearing IP MLS Cache Entries 11

Displaying IP MLS Contention Table and Statistics 12

Troubleshooting IP MLS 14

20 Configuring IPX Unicast Layer 3 Switching on Supervisor Engine 1 1

Understanding How IPX MLS Works 2

IPX MLS Overview 2 IPX MLS Flows 2 Layer 3 MLS Cache 2 Flow Masks 3 Layer 3-Switched Packet Rewrite 3 IPX MLS Operation 4

Default IPX MLS Configuration 5

Configuration Guidelines and Restrictions 5

Configuring IPX MLS 6

Enabling IPX MLS Globally 6 Enabling IPX MLS on a Layer 3 Interface 6 Configuring the MLS Aging Time 7 Configuring the Minimum IPX MLS Flow Mask 8

78-14099-04

Displaying IPX MLS Information 8

Displaying IPX MLS Cache Entries 9 Displaying the IPX MLS Contention Table 11 Displaying IPX MLS VLAN Statistics 12

Clearing IPX MLS Cache Entries 13

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Troubleshooting IPX MLS 14

CHAPTER

21 Configuring IGMP Snooping 1

Understanding How IGMP Snooping Works 1

IGMP Snooping Overview 2 Joining a Multicast Group 2 Leaving a Multicast Group 4 Understanding IGMP Snooping Querier 5 Understanding IGMP Version 3 Support 6

Default IGMP Snooping Configuration 6

IGMP Snooping and IGMP Snooping Querier Configuration Guidelines and Restrictions 6

Guidelines 6 Restrictions 7

Enabling the IGMP Snooping Querier 7

Configuring IGMP Snooping 8

Enabling IGMP Snooping 9 Configuring IGMP Snooping Learning 10 Configuring a Multicast Router Port Statically 10 Configuring the IGMP Query Interval 11 Enabling IGMP Fast-Leave Processing 11 Configuring a Host Statically 12 Displaying IGMP Snooping Information 12

CHAPTER

22 Configuring RGMP 1

Understanding How RGMP Works 1

Default RGMP Configuration 2

RGMP Configuration Guidelines and Restrictions 2

Enabling RGMP on Layer 3 Interfaces 3

23 Configuring Network Security 1

ACL Configuration Guidelines 1

Hardware and Software ACL Support 2

Guidelines and Restrictions for Using Layer 4 Operators in ACLs 3

Determining Layer 4 Operation Usage 3 Determining Logical Operation Unit Usage 4

Configuring the Cisco IOS Firewall Feature Set 5

Cisco IOS Firewall Feature Set Support Overview 5 Firewall Configuration Guidelines and Restrictions 6

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Configuring CBAC on Catalyst 6500 Series Switches 7

Configuring MAC Address-Based Traffic Blocking 8

Configuring VLAN ACLs 8

Understanding VACLs 8 Configuring VACLs 11 Configuring VACL Logging 17

Configuring TCP Intercept 18

Configuring Unicast Reverse Path Forwarding 19

Understanding Unicast RPF Support 19 Configuring Unicast RPF 19 Enabling Self-Pinging 19 Configuring the Unicast RPF Checking Mode 20

Configuring Unicast Flood Protection 21

Configuring MAC Move Notification 22

Contents

CHAPTER

24 Configuring Denial of Service Protection 1

DoS Protection Overview 1

Configuring DoS Protection 2

Supervisor Engine DoS Protection 2 Security ACLs 2 QoS ACLs 4 Forwarding Information Base Rate-Limiting 5 ARP Throttling 5 Monitoring Packet Drop Statistics 6

25 Configuring IEEE 802.1X Port-Based Authentication 1

Understanding 802.1X Port-Based Authentication 1

Device Roles 2 Authentication Initiation and Message Exchange 3 Ports in Authorized and Unauthorized States 4 Supported Topologies 4

Default 802.1X Port-Based Authentication Configuration 5

802.1X Port-Based Authentication Guidelines and Restrictions 6

78-14099-04

Configuring 802.1X Port-Based Authentication 7

Enabling 802.1X Port-Based Authentication 7 Configuring Switch-to-RADIUS-Server Communication 8 Enabling Periodic Reauthentication 10 Manually Reauthenticating the Client Connected to a Port 11

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Initializing Authentication for the Client Connected to a Port 11 Changing the Quiet Period 11 Changing the Switch-to-Client Retransmission Time 12 Setting the Switch-to-Client Retransmission Time for EAP-Request Frames 13 Setting the Switch-to-Authentication-Server Retransmission Time for Layer 4 Packets 13 Setting the Switch-to-Client Frame Retransmission Number 14 Enabling Multiple Hosts 14 Resetting the 802.1X Configuration to the Default Values 15

Displaying 802.1X Status 15

CHAPTER

26 Configuring Port Security 1

Understanding Port Security 1

Default Port Security Configuration 2

Port Security Guidelines and Restrictions 2

Configuring Port Security 2

Configuring Port Security on an Interface 3 Configuring Port Security Aging 4

Displaying Port Security Settings 5

27 Configuring Layer 3 Protocol Filtering on Supervisor Engine 1 1

Understanding How Layer 3 Protocol Filtering Works 1

Configuring Layer 3 Protocol Filtering 2

Enabling Layer 3 Protocol Filtering 2 Configuring Layer 3 Protocol Filtering on a Layer 2 LAN Interface 3 Verifying Layer 3 Protocol Filtering Configuration 3

28 Configuring Traffic Storm Control 1

CHAPTER

Understanding Traffic Storm Control 1

Default Traffic Storm Control Configuration 2

Enabling Traffic Storm Control 2

Displaying Traffic Storm Control Settings 4

29 Configuring Broadcast Suppression 1

Understanding How Broadcast Suppression Works 1

Broadcast Suppression Configuration Guidelines and Restrictions 2

Enabling Broadcast Suppression 3

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Contents

CHAPTER

30 Configuring CDP 1

Understanding How CDP Works 1

Configuring CDP 1

Enabling CDP Globally 2 Displaying the CDP Global Configuration 2 Enabling CDP on a Port 2 Displaying the CDP Interface Configuration 3 Monitoring and Maintaining CDP 3

31 Configuring PFC QoS 1

Understanding How PFC QoS Works 1

Hardware Supported by PFC QoS 2 QoS Terminology 3 PFC QoS Feature Flowcharts 6 PFC QoS Feature Summary 11 Ingress LAN Port Features 12 PFC Marking and Policing 16 LAN Egress Port Features 21 PFC QoS Statistics Data Export 24

PFC QoS Default Configuration 25

PFC QoS Configuration Guidelines and Restrictions 31

Guidelines: 31 Restrictions 32

Configuring PFC QoS 33

Enabling PFC QoS Globally 33 Enabling Queueing-Only Mode 34 Creating Named Aggregate Policers 35 Configuring a PFC QoS Policy 37 Enabling or Disabling Microflow Policing 50 Enabling Microflow Policing of Bridged Traffic 50 Enabling or Disabling PFC Features on an Interface 51 Enabling VLAN-Based PFC QoS on Layer 2 LAN Ports 52 Configuring the Trust State of Ethernet LAN and OSM Ingress Ports 53 Configuring the Ingress LAN Port CoS Value 54 Configuring Standard-Queue Drop Threshold Percentages 54 Mapping CoS Values to Drop Thresholds 59 Allocating Bandwidth Between LAN-Port Transmit Queues 64 Setting the Receive-Queue Size Ratio on a 1p1q0t or 1p1q8t Ingress LAN Ports 64 Setting the LAN-Port Transmit-Queue Size Ratio 65

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Configuring DSCP Value Maps 66 Configuring PFC QoS Statistics Data Export 70

CHAPTER

32 Configuring UDLD 1

Understanding How UDLD Works 1

UDLD Overview 1 UDLD Aggressive Mode 2

Default UDLD Configuration 3

Configuring UDLD 3

Enabling UDLD Globally 3 Enabling UDLD on Individual LAN Interfaces 4 Disabling UDLD on Fiber-Optic LAN Interfaces 5 Configuring the UDLD Probe Message Interval 5 Resetting Disabled LAN Interfaces 6

33 Configuring NDE 1

Understanding How NDE Works 1

NDE Overview 2 NDE from the MSFC 2 NDE from the PFC 2

Default NDE Configuration 7

CHAPTER

Configuring NDE 8

Configuring NDE on the PFC 8 Configuring NDE on the MSFC 13 Displaying the NDE Address and Port Configuration 14 Configuring NDE Flow Filters 15 Displaying the NDE Configuration 17

34 Configuring Local SPAN and RSPAN 1

Understanding How Local SPAN and RSPAN Work 1

Local SPAN and RSPAN Overview 1 Local SPAN and RSPAN Sessions 3 Monitored Traffic 4 SPAN Sources 4 Destination Ports 5

Local SPAN and RSPAN Configuration Guidelines and Restrictions 5

Local SPAN and RSPAN Session Limits 5 Local SPAN and RSPAN Source and Destination Limits 6

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Local SPAN and RSPAN Guidelines and Restrictions 6 VSPAN Guidelines and Restrictions 7 RSPAN Guidelines and Restrictions 7

Configuring Local SPAN and RSPAN 8

Local SPAN and RSPAN Configuration Overview 8 Configuring RSPAN VLANs 9 Configuring Local or RSPAN Sources 9 Monitoring Specific Source VLANs on a Source Trunk Port 10 Configuring Local SPAN and RSPAN Destinations 10 Verifying the Configuration 12 Configuration Examples 13

Contents

CHAPTER

35 Configuring Web Cache Services Using WCCP 1

Understanding WCCP 2

WCCP Overview 2 Hardware Acceleration 2 Understanding WCCPv1 Configuration 3 Understanding WCCPv2 Configuration 4 WCCPv2 Features 5

Restrictions for WCCPv2 7

Configuring WCCP 7

Specifying a Version of WCCP 7 Configuring a Service Group Using WCCPv2 8 Excluding Traffic on a Specific Interface from Redirection 9 Registering a Router to a Multicast Address 10 Using Access Lists for a WCCP Service Group 10 Setting a Password for a Router and Cache Engines 11

Verifying and Monitoring WCCP Configuration Settings 12

WCCP Configuration Examples 12

Changing the Version of WCCP on a Router Example 13 Performing a General WCCPv2 Configuration Example 13 Running a Web Cache Service Example 13 Running a Reverse Proxy Service Example 14 Registering a Router to a Multicast Address Example 14 Using Access Lists Example 14 Setting a Password for a Router and Cache Engines Example 15 Verifying WCCP Settings Example 15

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

CHAPTER

36 Configuring SNMP IfIndex Persistence 1

Understanding SNMP IfIndex Persistence 1

Configuring SNMP IfIndex Persistence 1

Enabling and Disabling SNMP IfIndex Persistence Globally 2 Enabling and Disabling SNMP IfIndex Persistence on Specific Interfaces 2

Configuration Examples 3

37 Configuring the Switch Fabric Module 1

Understanding How the Switch Fabric Module Works 1

Switch Fabric Module Overview 1 Switch Fabric Module Slots 2 Switch Fabric Redundancy 2 Forwarding Decisions for Layer 3-Switched Traffic 2 Switching Modes 2

Configuring the Switch Fabric Module 3

Configuring the Switching Mode 3 Configuring Fabric-Required Mode 4 Configuring an LCD Message 5

CHAPTER

Monitoring the Switch Fabric Module 5

Displaying the Module Information 5 Displaying the Switch Fabric Module Redundancy Status 6 Displaying Fabric Channel Switching Modes 6 Displaying the Fabric Status 7 Displaying the Fabric Utilization 7 Displaying Fabric Errors 7

38 Power Management and Environmental Monitoring 1

Understanding How Power Management Works 1

Enabling or Disabling Power Redundancy 2 Using the CLI to Power Modules Off and On 3 Using the CLI to View System Power Status 3 Using the CLI to Power Cycle Modules 4 Determining System Power Requirements 4

Understanding How Environmental Monitoring Works 4

Using CLI Commands to Monitor System Environmental Status 4 Understanding LED Environmental Indications 4

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Contents

APPENDIX

INDEX

A Acronyms 1

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Contents

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Audience

Preface

This preface describes who should read the Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide, how it is organized, and its document conventions.

This guide is for experienced network administrators who are responsible for configuring and maintaining Catalyst 6500 series switches.

Organization

This guide is organized as follows:

Chapter Title Description

Chapter 1 Product Overview Presents an overview of the Catalyst 6500 series

Chapter 2 Command-Line Interfaces Describes how to use the command-line interface

Chapter 3 Configuring the Switch for the

Chapter 4 Configuring EHSA Supervisor

Chapter 5 Configuring RPR and RPR+

Chapter 6 Configuring Interfaces Describes how to configure non-layer-specific

Chapter 7 Configuring LAN Ports for Layer

Chapter 8 Configuring VTP Describes how to configure the VLAN Trunking

Chapter 9 Configuring VLANs Describes how to configure VLANs.

Chapter 10 Configuring Private VLANs Describes how to configure private VLANs.

First Time

Engine Redundancy

Supervisor Engine Redundancy

2 Switching

switches.

(CLI).

Describes how to perform a baseline configuration.

Describes how to configure EHSA supervisor engine redundancy.

Describes how to configure RPR and RPR+ supervisor engine redundancy.

features on LAN interfaces.

Describes how to configure LAN interfaces to support Layer 2 features, including VLAN trunks.

Protocol (VTP).

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Organization

Preface

Chapter Title Description

Chapter 11 Configuring Cisco IP Phone

Support

Chapter 12 Configuring Layer 3 Interfaces Describes how to configure LAN interfaces to

Chapter 13 Configuring EtherChannels Describes how to configure Layer 2 and Layer 3

Chapter 14 Configuring IEEE 802.1Q

Tunneling and Layer 2 Protocol Tunneling

Chapter 15 Configuring STP and IEEE 802.1s

MST

Chapter 16 Configuring Optional STP

Features

Chapter 17 Configuring IP Unicast Layer 3

Switching on Supervisor Engine 2

Chapter 18 Configuring IP Multicast Layer 3

Switching

Chapter 19 Configuring IP Unicast Layer 3

Switching on Supervisor Engine 1

Chapter 20 Configuring IPX Unicast Layer 3

Switching on Supervisor Engine 1

Chapter 21 Configuring IGMP Snooping Describes how to configure Internet Group

Chapter 22 Configuring RGMP Describes how to configure Router-Port Group

Chapter 23 Configuring Network Security Describes how to configure network security features

Chapter 24 Configuring Denial of Service

Protection

Chapter 25 Configuring IEEE 802.1X

Port-Based Authentication

Chapter 26 Configuring Port Security Describes how to configure port security.

Chapter 27 Configuring Layer 3 Protocol

Filtering on Supervisor Engine 1

Chapter 28 Configuring Traffic Storm Control Describes how to configure traffic storm control.

Chapter 29 Configuring Broadcast

Suppression

Chapter 30 Configuring CDP Describes how to configure Cisco Discovery Protocol

Chapter 32 Configuring UDLD Describes how to configure the UniDirectional Link

Chapter 31 Configuring PFC QoS Describes how to configure quality of service (QoS).

Describes how to configure Cisco IP Phone support.

support Layer 3 features.

EtherChannel port bundles.

Describes how to configure IEEE 802.1Q tunneling and Layer 2 protocol tunneling.

Describes how to configure the Spanning Tree Protocol (STP) and explains how STP works.

Describes how to configure the STP PortFast, UplinkFast, and BackboneFast features.

Describes how to configure IP unicast Layer 3 switching for Supervisor Engine 2.

Describes how to configure IP Multicast Multilayer Switching (MMLS).

Describes how to configure IP unicast Layer 3 switching for Supervisor Engine 1.

Describes how to configure IPX unicast Layer 3 switching for Supervisor Engine 1.

Management Protocol (IGMP) snooping.

Management Protocol (RGMP).

that are unique to the Catalyst 6500 series switches.

Describes how to configure denial of service protection.

Describes how to configure IEEE 802.1X port-based authentication.

Describes how to configure Layer 3 protocol filtering on Supervisor Engine 1.

Describes how to configure broadcast suppression.

(CDP).

Detection (UDLD) protocol.

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Preface

Chapter Title Description

Chapter 33 Configuring NDE Describes how to configure Neflow Data Export

Chapter 34 Configuring Local SPAN and

RSPAN

Chapter 35 Configuring Web Cache Services

Using WCCP

Chapter 36 Configuring SNMP IfIndex

Persistence

Chapter 37 Configuring the Switch Fabric

Module

Chapter 38 Power Management and

Environmental Monitoring

Conventions

• For information about MIBs, go to this URL:

Conventions

This document uses the following conventions:

–

Software System Error Messages

–

Debug Command Reference

–

Internetwork Design Guide

–

Internetwork Troubleshooting Guide

–

Configuration Builder Getting Started Guide

The Cisco IOS Configuration Guides and Command References are located at this URL:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/index.htm

http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml

Preface

Convention Description

boldface font Commands, command options, and keywords are in boldface.

italic font Arguments for which you supply values are in italics.

[ ] Elements in square brackets are optional.

{ x | y | z } Alternative keywords are grouped in braces and separated by vertical bars.

[ x | y | z ] Optional alternative keywords are grouped in brackets and separated by

vertical bars.

string A nonquoted set of characters. Do not use quotation marks around the

string or the string will include the quotation marks.

screen font Terminal sessions and information the system displays are in screen font.

boldface screen

Information you must enter is in boldface screen font.

font

italic screen font Arguments for which you supply values are in italic screen font.

This pointer highlights an important line of text in an example.

^ The symbol ^ represents the key labeled Control—for example, the key

combination ^D in a screen display means hold down the Control key while you press the D key.

< > Nonprinting characters, such as passwords are in angle brackets.

Notes use the following conventions:

Note Means reader take note. Notes contain helpful suggestions or references to material not covered in the

publication.

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Preface

Conventions

Cautions use the following conventions:

Caution Means reader be careful. In this situation, you might do something that could result in equipment

damage or loss of data.

Obtaining Documentation and Submitting a Service Request

For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

Subscribe to the What’s New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS version 2.0.

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

Conventions

Preface

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

CHA PTER

Product Overview

The Cisco IOS on the Catalyst 6500 Series Switches product supports the following hardware and software:

• Supervisor Engine 2, Policy Feature Card 2 (PFC2), and Multilayer Switch Feature Card 2

(MSFC2); and in Catalyst 6500 series switches:

–

Switch Fabric Module

–

Fabric-enabled switching modules

–

Fabric-enabled switching modules with a distributed forwarding card (DFC)

• Supervisor Engine 1, PFC, and MSFC or MSFC2

• All Layer 2 and Layer 3 configuration from the same user interface

• Except for VLANs, Layer 2 and Layer 3 configuration is stored in a standard IOS configuration file

Refer to the Release Notes for Cisco IOS Release 12.1 E on the Catalyst 6500 and Cisco 7600 Supervisor Engine and MSFC publication for complete information about the chassis, modules,

and software features supported by the Catalyst 6500 series switches:

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/12_1e/ol_2310.htm

The Cisco IOS on the Catalyst 6500 Series Switches product supports configuration using:

• CLI—See Chapter 2, “Command-Line Interfaces”

• SNMP—Refer to the IOS Configuration Fundamentals Configuration Guide and Command

Reference at this URL:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/index.htm

• IOS web browser interface—Refer to “Using the Cisco Web Browser” in the IOS Configuration

Fundamentals Configuration Guide and Command Reference at this URL:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/index.htm

• Embedded CiscoView—See the “Configuring Embedded CiscoView Support” section on page 1-2.

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

1-1

Configuring Embedded CiscoView Support

These sections describe the Embedded CiscoView support available with Release 12.1(20)E and later releases:

• Understanding Embedded CiscoView, page 1-2

• Installing and Configuring Embedded CiscoView, page 1-2

• Displaying Embedded CiscoView Information, page 1-3

Understanding Embedded CiscoView

The Embedded CiscoView network management system is a web-based interface that uses HTTP and SNMP to provide a graphical representation of the switch and to provide a GUI-based management and configuration interface. You can download the Java Archive (JAR) files for Embedded CiscoView at this URL:

http://www.cisco.com/kobayashi/sw-center/netmgmt/ciscoview/embed-cview-planner.shtml

Chapter 1 Product Overview

Installing and Configuring Embedded CiscoView

To install and configure Embedded CiscoView, perform the following steps:

Command Purpose

Step 1

Step 2

Step 3

Step 4

Step 5

Step 6

Step 7

Step 8

Step 9

Router# dir device_name

Router# delete device_name:cv/*

Router# squeeze device_name:

Router# archive tar /xtract tftp://

ip address of tftp server/ciscoview.tar device_name:cv

Router# dir device_name:

Router# configure terminal

Router(config)# ip http server

Router(config)# snmp-server community string ro

Router(config)# snmp-server community string rw

Displays the contents of the device.

If you are installing Embedded CiscoView for the first time, or if the CiscoView directory is empty, skip to

Step 4.

Removes existing files from the CiscoView directory.

Recovers the space in the file system.

Extracts the CiscoView files from the tar file on the TFTP server to the CiscoView directory.

Displays the contents of the device.

In a redundant configuration, repeat Step 1 through

Step 5 for the file system on the redundant supervisor

engine.

Enters global configuration mode.

Enables the HTTP web server.

Configures the SNMP password for read-only operation.

Configures the SNMP password for read/write operation.

1-2

Note The default password for accessing the switch web page is the enable-level password of the switch.

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Chapter 1 Product Overview

For more information about web access to the switch, refer to “Using the Cisco Web Browser” in the IOS Configuration Fundamentals Configuration Guide at this URL:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/fun_c/fcprt1/fcd105.htm

Displaying Embedded CiscoView Information

To display the Embedded CiscoView information, enter the following EXEC commands:

Command Purpose

Router# show ciscoview package

Router# show ciscoview version

Displays information about the Embedded CiscoView files.

Displays the Embedded CiscoView version.

Configuring Embedded CiscoView Support

78-14099-04

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

1-3

Configuring Embedded CiscoView Support

Chapter 1 Product Overview

1-4

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

+ 540 hidden pages

Cisco Systems EA6500, Catalyst Switch 6500 User Manual

CONTENTS

Audience

Preface

Organization

Related Documentation

Conventions

Product Overview

Configuring Embedded CiscoView Support

Understanding Embedded CiscoView

Installing and Configuring Embedded CiscoView

Displaying Embedded CiscoView Information