How it Works
Cisco
Loading...
SCE2020-4XGBE-SM
Configuration Manual
512 pgs4.09 Mb0

Cisco SCE2020-4XGBE-SM, SCE 2000, SCE 1000 Configuration Manual

Cisco SCE 2000 and SCE 1000 Software Configuration Guide
Release 3.5.5
June 15, 2009
Americas Headquarters
Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000
800 553-NETS (6387)
Text Part Number: OL-7827-12
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.
NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
CCDE, CCSI, CCENT, Cisco Eos, Cisco HealthPresence, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco Nurse Connect Cisco TelePresence, Cisco WebEx, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0903R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
© 2009 Cisco Systems, Inc. All rights reserved.
, Cisco Stackpower, Cisco StadiumVision,
CONTENTS
About this Guide xxxi
Introduction 3-xxxi
Document Revision History xxxi
Organization xxxiv
Related Publications xxxvi
Conventions xxxvii
Obtaining Documentation and Submitting a Service Request xxxviii
CHAPTER
CHAPTER
1 Cisco Service Control Overview 1-1
Introduction 1-1
Cisco Service Control Solution 1-1
Service Control for Broadband Service Providers 1-2
Cisco Service Control Capabilities 1-2
SCE Platform Description 1-3
Management and Collection 1-4
Network Management 1-5 Subscriber Management 1-5 Service Configuration Management 1-6 Data Collection 1-6
2 Command Line Interface 2-1
Introduction 2-1
Authorization and Command Levels (Hierarchy) 2-2
CLI Authorization Levels 2-2 CLI Command Mode Hierarchy 2-3 Prompt Indications 2-6 Navigating Between Authorization Levels and Command Modes 2-7
Configuring the Physical Ports 2-9
CLI Help Features 2-9
Partial Help 2-9 Argument Help 2-10
Navigational and Shortcut Features 2-11
Command History 2-11
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
i
Contents
Keyboard Shortcuts 2-12 Auto-Completion 2-13 FTP User Name and Password 2-13 The "do" Command: Executing Commands Without Exiting 2-14
Managing Command Output 2-14
Scrolling the Screen Display 2-15 Filtering Command Output 2-15 Redirecting Command Output to a File 2-15
Creating a CLI Script 2-16
CHAPTER
3 Operations 3-1
Introduction 3-1
Managing Configurations 3-1
Viewing Configurations 3-2
Viewing Configurations: Example 3-3 Removing the Configuration 3-3 Saving the Configuration Settings 3-4
Saving the Configuration Settings: Example 3-4 Restoring a Previous Configuration 3-5
Restoring a Previous Configuration: Example 3-6 Backing Up Configuration Files 3-6
Options 3-6
How to Create a Backup Configuration File 3-7
How to Upload a Backup Configuration File 3-7
Upgrading the SCE Platform Firmware 3-7
Upgrading SCE Platform Firmware: Example 3-8
Downgrading the SCE Platform to a Previous Version 3-8
Managing Application Files 3-9
Configuring Applications 3-9 Managing Application Files 3-9 How to Display Information about an Application File 3-10 How to Install an Application 3-10 How to Uninstall an Application 3-10 How to Upgrade an Application 3-11 How to Undo an Upgrade of an Application 3-11 How to Display the Last pqi File that was Installed 3-11
Monitoring the Operational Status of the SCE Platform 3-12
How to Display the Current Operational Status of the SCE Platform 3-13 Displaying the Current Operational Status of the SCE Platform: Example 3-13
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
ii
OL-7827-12
Displaying the SCE Platform Version Information 3-13
Displaying the SCE Platform Version Information: Example 3-13
Displaying the SCE Platform Inventory 3-14
Displaying the SCE Platform Inventory: Example 3-14
Displaying the System Uptime 3-15
Displaying the System Uptime: Example 3-15
Rebooting and Shutting Down the SCE Platform 3-15
Rebooting the SCE Platform 3-15
Rebooting the SCE Platform: Example 3-15
Shutting Down the SCE Platform 3-16
Shutting Down the SCE Platform: Examples 3-16
Contents
CHAPTER
4 Utilities 4-1
Introduction 4-1
The Setup Command 4-1
Setup Command Parameters 4-1 Entering the Setup Command 4-4 Defining Lists in the Setup Utility 4-4
Working with SCE Platform Files 4-5
Working with Directories 4-5
Working with Files 4-7
Multiple entry parameters (Lists) 4-4
How to Create a Directory 4-5 How to Delete a Directory 4-6 How to Change Directories 4-6 How to Display your Working Directory 4-6 How to List the Files in a Directory 4-6
How to Rename a File 4-7 How to Delete a File 4-7 Copying Files 4-8 How to Display File Contents 4-8 How to Unzip a File 4-9
The User Log 4-9
The Logging System 4-9
Copying the User Log 4-9 Enabling and Disabling the User Log 4-10 Viewing the User Log Counters 4-10 Viewing the User Log 4-11 Clearing the User Log 4-11
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
iii
Contents
Generating a File for Technical Support 4-11
Generating a File for Technical Support: Example 4-11
Flow Capture 4-12
Limitations 4-12 The Flow Capture Process 4-12
Configuring a Flow Capture Traffic Rule 4-13
Configuring the Flow Capture Settings 4-13
Performing the Flow Capture 4-14
Monitoring the Flow Capture 4-15
CHAPTER
5 Configuring the Management Interface and Security 5-1
Introduction 5-1
About Management Interface and Security 5-2
Configuring the Management Ports 5-2
Entering Management Interface Configuration Mode 5-3
Configuring the Management Port Physical Parameters 5-3
Setting the IP Address and Subnet Mask of the Management Interface 5-4
Options 5-4
Setting the IP Address and Subnet Mask of the Management Interface: Example 5-4 Configuring the Management Interface Speed and Duplex Parameters 5-5
Interface State Relationship to Speed and Duplex 5-5
How to Configure the Speed of the Management Interface 5-5
How to Configure the Duplex Operation of the Management Interface 5-6 Specifying the Active Management Port 5-6
Options 5-7
Specifying the Active Management Port: Example 5-7
Configuring Management Interface Redundancy 5-7
About Management Port Redundancy 5-7 How to Configure the Management Ports for Redundancy 5-8 Configuring the Fail-Over Mode 5-8
Options 5-8
How to Enable Automatic Fail-Over Mode 5-8
How to Disable Automatic Fail-Over Mode 5-9
Configuring Management Interface Security 5-9
Configuring the IP Fragment Filter 5-9
Options 5-9
How to Enable the IP Fragment Filter 5-10
How to Disable the IP Fragment Filter 5-10 Configuring the Permitted and Not-permitted IP Address Monitor 5-10
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
iv
OL-7827-12
Options 5-10
Monitoring Management Interface IP Filtering 5-11
Configuring the Available Interfaces 5-11
Configuring TACACS+ Authentication, Authorization, and Accounting 5-11
Information About TACACS+ Authentication, Authorization, and Accounting 5-12 Configuring the SCE Platform TACACS+ Client 5-15 How to Manage the User Database 5-19 Configuring AAA Login Authentication 5-22 Configuring AAA Privilege Level Authorization Methods 5-24 Configuring AAA Accounting 5-25 Monitoring TACACS+ Servers 5-25 Monitoring TACACS+ Users 5-26
Configuring Access Control Lists (ACLs) 5-26
Options 5-27 How to Add Entries to an ACL 5-28 How to Remove an ACL 5-28 How to Define a Global ACL 5-28
Configuring the Telnet Interface 5-28
How to Prevent Telnet Access 5-29 How to Assign an ACL to the Telnet Interface 5-29 How to Configure the Telnet Timeout 5-30
Configuring the SSH Server 5-30
Information About the SSH Server 5-30 Managing the SSH Server 5-31 How to Monitor the Status of the SSH Server 5-32
Enabling the SNMP Interface 5-33
How to Enable the SNMP Interface 5-33 How to Disable the SNMP Interface 5-33
Contents
Configuring and Managing the SNMP Interface 5-33
Information About the SNMP Interface 5-33
The SNMP Interface 5-34 SNMP Protocol 5-34 Security Considerations 5-35 CLI 5-35 MIBs 5-36 Configuration via SNMP 5-41
Configuring SNMP Community Strings 5-42
How to Define a Community String 5-42 How to Remove a Community String 5-43 How to Display the Configured Community Strings 5-43
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
v
Contents
Configuring SNMP Notifications 5-43
About SNMP Notifications 5-43
How to Define SNMP Hosts 5-44
Managing Passwords 5-46
About Passwords 5-47 Changing Your Password 5-47
How to Change Your Password 5-48 Verifying that the Password has been Successfully Changed 5-48 Password Encryption 5-49
How to Enable Password Encryption 5-49
How to Disable Password Encryption 5-49 Password Recovery 5-49
How to Recover the Passwords: SCOS versions before 2.5.5 5-49
How to Recover the Passwords: SCOS versions 2.5.5 or later 5-52
IP Configuration 5-52
Configuring the IP Routing Table 5-53
How to Configure the Default Gateway 5-53
How to Add an Entry to the IP Routing Table 5-54
Displaying the IP Routing Table 5-54 IP Advertising 5-55
Configuring IP Advertising 5-55
How to Display the Current IP Advertising Configuration 5-56 Configuring the IP Address of the Management Interface 5-57
Options 5-57
Configuring the IP Address of the Management Interface: Example 5-57
Configuring Time Clocks and Time Zone 5-58
How to Display the System Time 5-58
Displaying the System Time: Example 5-58 How to Display the Calendar Time 5-59
Displaying the Calendar Time: Example 5-59 How to Set the System Clock 5-59
Options 5-59
Setting the System Clock: Example 5-59 How to Set the Calendar 5-59
Options 5-60
Setting the Calendar: Example 5-60 How to Set the Time Zone 5-60
Options 5-60
Setting the Time Zone: Example 5-61
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
vi
OL-7827-12
How to Remove the Current Time Zone Setting 5-61 Configuring Daylight Saving Time 5-61
Options 5-61 Guidelines 5-62 How to Define Recurring Daylight Saving Time Transitions 5-63 How to Define Non-Recurring Daylight Saving Time Transitions 5-63 How to Cancel the Daylight Saving Time Configuration 5-63 How to Display the Current Daylight Saving Time Configuration 5-64
Configure SNTP 5-64
How to Enable the SNTP Multicast Client 5-64 How to Disable the SNTP Multicast Client 5-65 How to Enable the SNTP Unicast Client 5-65
Options 5-65 Enabling SNTP Unicast Client: Example 5-65
How to Disable the SNTP Unicast Client 5-65
How to Disable the SNTP Unicast Client and Remove All Servers 5-65 How to Remove One SNTP Server 5-66
How to Define the SNTP Unicast Update Interval 5-66
Options 5-66 Defining the SNTP Unicast Update Interval: Example 5-66
How to Display SNTP Information 5-66
Displaying SNTP Information: Example 5-67
Contents
Configuring Domain Name Server (DNS) Settings 5-67
Configuring DNS Lookup 5-67
How to Enable DNS Lookup 5-68 How to Disable DNS Lookup 5-68
Configuring Name Servers 5-68
Options 5-68 How to Define Domain Name Servers 5-68 How to Remove a Domain Name Server 5-69 How to Remove All Domain Name Servers 5-69
Adding a Host to the Host Table 5-69
Options 5-69 Adding Hosts to Removing them from the Host Table: Examples 5-69
How to Display Current DNS Settings 5-70
Displaying Current DNS Settings: Example 5-70
Configuring the Management Port Physical Parameters 5-70
Configuring the Management Interface Speed and Duplex Parameters 5-70
How to Configure the Duplex Operation of the Management Interface 5-71
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
vii
Contents
How to Configure the Speed of the Management Interface 5-71 Monitoring the Management Interface 5-72
CHAPTER
6 Configuring the Line Interface 6-1
Introduction 6-1
Line Interfaces 6-1
Flow Control and Bandwidth Considerations 6-2 Configuring the Gigabit Ethernet Line Interfaces 6-2
How to Configure a Specific Gigabit Ethernet Line Interface 6-2
How to Configure a Range of Gigabit Ethernet Line Interfaces 6-3
Tunneling Protocols 6-3
Managed VPNs 6-5 Selecting the Tunneling Mode 6-6
Configuring L2TP IP Tunnels 6-7
IPinIP Tunneling 6-7
Configuring DSCP Marking for IPinIP Tunnels 6-9
Configuring the VLAN Environment 6-10
Configuring the MPLS Environment 6-11
Configuring the L2TP Environment 6-12 Asymmetric L2 Support 6-13 Displaying the Tunneling Configuration 6-13
How to Display the IPinIP Configuration 6-14
How to Display the Logged-in VPNs 6-14
Options 6-14
How to Display the Asymmetric L2 Support Mode 6-14
Configuring VLAN Translation 6-14
VLAN Translation Features and Limitations 6-15 Setting the VLAN Translation Constant 6-16
Options 6-16
Setting the VLAN Translation Constant: Example 6-16 How to Disable VLAN Translation 6-17 How to Monitor VLAN Translation 6-17
Configuring Traffic Rules and Counters 6-17
Information About Traffic Rules and Counters 6-17
What are Traffic Rules and Counters? 6-18
Traffic Rules 6-18
Traffic Counters 6-19 Configuring Traffic Counters 6-19
How to Create a Traffic Counter 6-20
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
viii
OL-7827-12
How to Delete a Traffic Counter 6-20 How to Delete all Existing Traffic Counters 6-20
Configuring Traffic Rules 6-20
How to Create a Traffic Rule 6-20 How to Delete a Traffic Rule 6-24 How to Delete all Traffic Rules 6-24 How to Delete All Flow Control Traffic Rules 6-24
Managing Traffic Rules and Counters 6-25
How to View a Specified Traffic Rule 6-25 How to View all Traffic Rules 6-25 How to View a Specified Traffic Counter 6-25 How to View all Traffic Counters 6-26 How to Reset a Specified Traffic Counter 6-26 How to Reset all Traffic Counters 6-26
TOS Marking 6-26
How to Display the TOS Marking Configuration 6-27
Contents
CHAPTER
Counting Dropped Packets 6-27
Configuring the Hardware Packet Drop 6-27
How to Disable the Hardware Packet Drop 6-27 How to Enable the Hardware Packet Drop 6-28
7 Configuring the Connection 7-1
Introduction 7-1
Configuring the Connection Mode 7-1
Options 7-2 Configuring the Connection Mode: Examples 7-3
Monitoring the Connection Mode and Related Parameters 7-3
How to View the Current Connection Mode 7-3 How to View the SCE-ID 7-4 How to View the Current Redundancy Status of the SCE Platform 7-4 How to View Information about the Peer SCE Platform 7-5 How to View the Current Connection Status of the SCE Platform 7-5
How to Configure the Link Mode 7-5
About the Link Mode 7-6 Options 7-6
Configuring Asymmetric Routing Topology 7-7
Asymmetric Routing and Other Service Control Capabilities 7-8 Enabling Asymmetric Routing 7-8 How to Monitor Asymmetric Routing 7-8
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
ix
Contents
Monitoring Asymmetric Routing: Example 7-9
Configuring a Forced Failure 7-9
How to Force a Virtual Failure 7-9 How to Exit from a Virtual Failure 7-9
Configuring the Failure Recovery Mode 7-9
Options 7-10 Configure the Failure Recovery Mode: Examples 7-10
Example 1 7-10
Example 2 7-10
Configuring the SCE Platform/SM Connection 7-10
Configuring the Behavior of the SCE Platform in Case of Failure of the SM 7-11
Options 7-11 Configuring the SM-SCE Platform Connection Timeout 7-11
Options 7-11
Enabling and Disabling Link Failure Reflection 7-12
How to Enable Link Failure Reflection 7-12 How to Disable Link Failure Reflection 7-12 Enabling and Disabling Link Failure Reflection on All Ports 7-12
Options 7-13
How to Enable Link Failure Reflection on All Ports 7-13
How to Disable Link Failure Reflection on All Ports 7-13 Configuring Link Failure Reflection in Linecard-Aware Mode (SCE 2000 only) 7-13
How to Enable Linecard-Aware Mode 7-14
How to Disable Linecard-Aware Mode 7-14
CHAPTER
8 Raw Data Formatting: The RDR Formatter and NetFlow Exporting 8-1
Introduction 8-1
Information About the RDR Formatter and NetFlow Exporting Support 8-1
The RDR Formatter 8-2 NetFlow 8-2
NetFlow Terminology 8-2
NetFlow Exporting Support 8-3 Data Destinations 8-3
Categories 8-4
Priority 8-5
Setting DSCP for NetFlow 8-5
Forwarding Modes 8-5
Protocol 8-6
Transport Type 8-6
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
x
OL-7827-12
Configuring Data Destinations and Categories 8-6
Configuring a Data Destination 8-6
Options 8-7 Configuring the Data Destinations: Examples 8-7
Configuring the Data Categories 8-8
How to Configure a Destination and Assign Categories 8-8
Configuring the Forwarding Mode 8-12
Options 8-13 Configuring the Forwarding Mode: Example 8-13
Configuring the RDR Formatter 8-13
Options 8-13 How to Enable the RDR Formatter 8-13 How to Disable the RDR Formatter 8-14 How to Configure the Size of the RDR Formatter History Buffer 8-14
Options 8-14
Contents
Configuring the NetFlow Exporting Support 8-14
Options 8-14 How to Configure a DSCP Value for NetFlow 8-15
Options 8-15
How to Configure the Template Refresh Interval 8-15
Options 8-15
Configuring Dynamic Mapping of RDRs to Categories 8-15
How to Configuring Mappings 8-16
Options 8-16 How to Add a Mapping to a Category 8-16 How to Remove a Mapping from a Category 8-16 How to Restore the Default Mapping for a Specified RDR Tag 8-16
Displaying Data Destination Configuration and Statistics 8-17
How to the Display the Current RDR Formatter Configuration 8-17
Displaying the RDR Formatter Configuration: Example 8-17
How to the Display the Current RDR Formatter Statistics 8-18
Displaying the Current RDR Formatter Statistics: Example 8-18
Disabling the Linecard from Sending RDRs 8-19
How to Disable the Linecard from Sending RDRs 8-19 How to Enable the Linecard to Send RDRs 8-19
CHAPTER
9 Managing Subscribers 9-1
Introduction 9-1
Information About Subscribers 9-1
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xi
Contents
What is a Subscriber? 9-2 Subscriber Modes in Service Control Solutions 9-3 Subscriber Database: Capacity and Limits 9-4
Working with Large Numbers of Subscribers 9-4
Actual Maximum Number of Subscribers 9-4
Subscriber Mapping Limits 9-5 Aging Subscribers 9-5 VPN-Based Subscribers 9-5
Automatic VLAN VPNs 9-5 Synchronizing Subscriber Information in a Cascade System 9-6 Anonymous Groups and Subscriber Templates 9-7 Information About Subscriber Files 9-7
Subscriber Files 9-7
Subscriber default csv file format 9-8
Subscriber anonymous groups csv file format 9-8
Importing and Exporting Subscriber Information 9-9
Options 9-9 How to Import Subscriber Information 9-9 How to Export Subscriber Information 9-10 How to Import a Subscriber Template 9-10 How to Export a Subscriber Template 9-10
Removing Subscribers and Templates 9-10
How to Remove a Specific Subscriber 9-11
Options 9-11 How to Remove All Introduced Subscribers 9-11 How to Remove a Specific Anonymous Subscriber Group 9-12
Options 9-12 How to Remove All Anonymous Subscriber Groups 9-12 How to Remove All Anonymous Subscribers 9-12 How to Remove All Subscriber Templates 9-12
About VPN-based Subscribers 9-13 How to Remove Subscribers by Device 9-13
How to Remove Subscribers from the SM 9-13
How to Remove Subscribers from a Specified SCMP Peer Device 9-13
Creating Anonymous Groups 9-14
Defining Anonymous Groups 9-14
How to Define an Anonymous Group 9-14 Importing and Exporting Anonymous Groups 9-14
How to Import Anonymous Groups 9-15
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xii
OL-7827-12
How to Export Anonymous Groups 9-15
Monitoring Subscribers 9-15
How to Monitor the Subscriber Database 9-16
How to Display the Subscriber Database Counters 9-17 Clearing the Subscriber Database Counters 9-18
Displaying Subscribers 9-18
Displaying Subscribers: All Current Subscriber Names 9-19 Displaying Subscribers: By Subscriber Property or Prefix 9-19 Displaying Subscribers: By Mapping (IP Address, VPN, VLAN ID, or MPLS/VPN) 9-21
Displaying Subscriber Information 9-23
How to display a listing of subscriber properties 9-24 How to display complete information for a specified subscriber 9-24 How to display values of subscriber properties for a specified subscriber 9-24 How to display mappings for a specified subscriber 9-25 How to display OS counters for a specified subscriber 9-25
Displaying Anonymous Subscriber Information 9-25
How to display currently configured anonymous groups 9-26 How to display currently configured templates for anonymous groups 9-26 How to display current configuration for a specified anonymous group 9-26 How to display subscribers in a specified anonymous group 9-26 How to display all subscribers currently in anonymous groups 9-26 How to display the number of subscribers in a specified anonymous group 9-27 How to display the total number of subscribers in all anonymous groups 9-27
Managing VPNs and VPN Subscriber Mappings 9-27
How to Display VPN-related Mappings 9-27 How to Clear Upstream MPLS/VPN Mappings 9-28 How to Clear Automatic VPNs 9-29
Contents
Subscriber Traffic Processor IP Ranges 9-29
Information About Traffic Processor IP Ranges 9-29
Subscriber Mapping Modes 9-30 Subscriber Mapping Conflicts 9-30 Subscriber Rules for TIRs 9-31
How to Reserve Rules for TIRs 9-31
Options 9-31
How to Configure TIRs 9-31
Options 9-32 How to Create or Update a TIR 9-32 How to update a TIR even if subscriber mappings exist 9-32
How to Remove TIRs and Subscriber Mappings 9-32
How to Remove a Specified TIR 9-33
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xiii
Contents
How to Remove All TIRs 9-33
How to Remove Mappings from a Specified TIR 9-33
How to Remove Mappings from a Specified IP Range 9-34 How to Import and Export TIRs 9-34
About TIR csv Files 9-34
Options 9-34
How to Import TIRs from a csv File 9-35
How to Export TIRs to a csv File 9-35 How to Monitor TIRs 9-35
How to Display Traffic Processor Mappings State 9-36
How to Display Configuration of a Specified TIR 9-36
How to Display Configuration of All TIRs 9-36
How to Display Mappings Related to a Specified TIR 9-36
How to Display the Number of Subscribers with Mappings Related to a Specified TIR 9-36
How to Display Complete Subscriber Information 9-36
How to Display All Subscribers Mapped to a Specified IP Range 9-37
How to Display the Number of Subscribers Mapped to a Specified IP Range 9-37
Configuring the Actual Maximum Number of Subscribers 9-37
How to Override the Configured Capacity Option 9-37 How to Restore the Configured Capacity Option 9-38 How to Monitor the Maximum Number of Subscribers 9-38
Configuring Subscriber Aging 9-38
How to Enable Aging for Anonymous Group Subscribers 9-38 How to Enable Aging for Introduced Subscribers 9-39 How to Disable Aging for Anonymous Group Subscribers 9-39 How to Disable Aging for Introduced Subscribers 9-39 How to Set the Aging Timeout Period for Anonymous Group Subscribers 9-39
Options 9-39 How to Set the Aging Timeout Period for Introduced Subscribers 9-40
Options 9-40 How to Display Aging for Anonymous Group Subscribers 9-40 How to Display Aging for Introduced Subscribers 9-40
Configuring the SCE Platform/SM Connection 9-40
Options 9-41 Configuring the Behavior of the SCE Platform in Case of Failure of the SM 9-41
Options 9-41 Configuring the SM-SCE Platform Connection Timeout 9-42
Options 9-42
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xiv
OL-7827-12
Contents
CHAPTER
10 Redundancy and Fail-Over 10-1
Introduction 10-1
Information About Redundancy and Fail-Over 10-1
Terminology and Definitions 10-2 Redundant Topologies 10-2 In-line Dual Link Redundant Topology 10-3 Failure Detection 10-4
Link Failure Reflection 10-4
How to Configure Forced Failure 10-5
How to Force a Virtual Failure Condition 10-5 How to Exit a Virtual Failure Condition 10-5
Hot Standby and Fail-over 10-5
Hot Standby 10-5 Fail-over 10-6 Failure in the Cascade Connection 10-7 Installing a Cascaded System 10-7
Recovery 10-8
Replacing the SCE platform (manual recovery) 10-9
Manual steps: 10-9 Automatic steps (in parallel with the manual steps, requires no user intervention): 10-9
Reboot only (fully automatic recovery) 10-9
CHAPTER
CLI Commands for Cascaded Systems 10-10
Topology-Related Parameters for Redundant Topologies 10-10 Configuring the Connection Mode 10-10
Examples 10-11
Monitoring a Cascaded System 10-11
How to View the Current Connection Mode 10-11 How to View the Current Link Mode 10-11 How to View Current Link Mappings 10-11
System Upgrades 10-12
Firmware Upgrade (package installation) 10-12 Application Upgrade 10-13 Simultaneous Upgrade of Firmware and Application 10-13
11 Identifying and Preventing Distributed-Denial-Of-Service Attacks 11-1
Introduction 11-1
Attack Filtering and Attack Detection 11-1
Attack Filtering 11-2
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xv
Contents
Specific Attack Filtering 11-2 Attack Detection 11-3 Attack Detection Thresholds 11-4 Attack Handling 11-5
Subscriber Notification 11-5 Hardware Filtering 11-6
Configuring Attack Detectors 11-7
How to Enable Specific-IP Detection 11-9
Options 11-9
How to Enable Specific-IP Detection 11-9
How to Enable Specific-IP Detection for the TCP Protocol Only for all Attack Directions 11-9
How to Enable Specific-IP Detection for the TCP Protocol for Port-based Detections Only for
Dual-sided Attacks 11-10
How to Disable Specific-IP Detection for Protocols Other than TCP, UDP, and ICMP for all Attack
Directions 11-10
How to Disable Specific-IP Detection for ICMP for Single-sided Attacks Defined by the Source
IP 11-10 How to Configure the Default Attack Detector 11-10
Options 11-11
How to Define the Default Action and Optionally the Default Thresholds 11-11
How to Reinstate the System Defaults for a Selected Set of Attack Types 11-12
How to Reinstate the System Defaults for All Attack Types 11-12 Specific Attack Detectors 11-13
Options 11-13
How to Enable a Specific Attack Detector and Assign it an ACL 11-14
How to Define the Action and Optionally the Thresholds for a Specific Attack Detector 11-14
How to Define the Subscriber Notification Setting for a Specific Attack Detector 11-15
How to Define the SNMP Trap Setting for a Specific Attack Detector 11-15
How to Define the List of Destination Ports for TCP or UDP Protocols for a Specific Attack
Detector 11-15
How to Delete User-Defined Values 11-16
How to Disable a Specific Attack Detector 11-16
How to Disable All Non-default Attack Detectors 11-16
How to Disable All Attack Detectors 11-16 Sample Attack Detector Configuration 11-17
Configuring Subscriber Notifications 11-18
How to Configure the Subscriber Notification Port 11-18
Options 11-18 How to Remove the Subscriber Notification Port 11-18
Preventing and Forcing Attack Detection 11-19
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xvi
OL-7827-12
Options 11-19 Preventing Attack Filtering 11-20
How to Configure a dont-filter Setting for a Specified Situation 11-20 How to Remove a dont-filter Setting from a Specified Situation 11-20 How to Remove All dont-filter Settings 11-20
Forcing Attack Filtering 11-20
How to Configure a force-filter Setting for a Specified Situation 11-21 How to Remove a force-filter Setting from a Specified Situation 11-21 How to Remove All force-filter Settings 11-21
Monitoring Attack Filtering 11-21
Monitoring Attack Filtering Using SNMP Traps 11-21 Monitoring Attack Filtering Using CLI Commands 11-23
How to display a specified attack detector configuration 11-24 How to display the default attack detector configuration 11-25 How to display all attack detector configurations 11-26 How to display filter state (enabled or disabled) 11-26 How to display configured threshold values and actions 11-26 How to display the current counters 11-28 How to display all currently handled attacks 11-28 How to display all existing force-filter settings 11-28 How to display all existing don't-filter settings 11-28 How to display the list of ports selected for subscriber notification 11-29 How to find out whether hardware attack filtering has been activated 11-29
The Attack Log 11-29
How to View the Attack Log 11-30 How to Copy the Attack Log to a File 11-30
Contents
CHAPTER
12 Value Added Services (VAS) Traffic Forwarding 12-1
Introduction 12-1
Information About VAS Traffic Forwarding 12-1
VAS Service Goals 12-2
How VAS Traffic Forwarding Works 12-2
Requirements for VAS Servers 12-4 VAS Traffic Forwarding and SCA BB 12-5 VLAN Tags for VAS Traffic Forwarding 12-5 Service Flow 12-6 Data Flow 12-6
Non-VAS Data Flow 12-7 VAS Data Flow 12-8
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xvii
Contents
Load Balancing 12-8
Load Balancing and Subscribers 12-9
Load Balancing and Subscriber Mode 12-9
VAS Redundancy 12-9
VAS Server Failure 12-10 VAS Server Group Failure 12-10 Ethernet Switch Failure 12-10 Disabling a VAS Server 12-11
VAS Status and VAS Health Check 12-11
VAS Server States 12-12
VAS Traffic Forwarding Topologies 12-12
Single SCE Platform, Multiple VAS Servers 12-12
Data Flow 12-13 Multiple SCE Platforms, Multiple VAS Servers 12-14
SNMP Support for VAS 12-15
Interactions Between VAS Traffic Forwarding and Other SCE Platform Features 12-15
Incompatible SCE Platform Features 12-15 VAS Traffic Forwarding and DDoS Processing 12-15
Specific IP DDoS Attack Detection 12-15
Specific IP Attack filter 12-16 VAS Traffic Forwarding and Bandwidth Management 12-16
Global Controllers and VAS flows 12-16
Configuring VAS Traffic Forwarding 12-16
Configuring VAS Traffic Forwarding from the SCA BB Console 12-17 Global Options 12-17 Enabling VAS Traffic Forwarding 12-18
Options 12-18 Disabling VAS Traffic Forwarding 12-18 How to Configure the VAS Traffic Link 12-19
Options 12-19
How to Select the Link for VAS Traffic 12-19
How to Revert to the Default Link for VAS Traffic 12-19 How to Configure a VAS Server 12-20
Options 12-20
How to Enable a VAS Server 12-20
How to Disable a VAS Server 12-21
How to Restore all VAS Server Properties to Default 12-21 How to Assign a VLAN ID to a VAS Server 12-21
Options 12-21
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xviii
OL-7827-12
How to Configure the VLAN Tag Number for a Specified VAS Server 12-21 How to Remove the VLAN Tag Number from a Specified VAS Server 12-22 How to Configure the Health Check 12-22 How to Configure Pseudo IP Addresses for the Health Check Packets 12-23
How to Configure a VAS Server Group 12-25
About VAS Server Groups 12-25 How to Add and Remove Servers 12-25 How to Configure VAS Server Group Failure Parameters 12-26
Monitoring VAS Traffic Forwarding 12-28
How to Display Global VAS Status and Configuration 12-28
Example 12-28
How to Display Operational and Configuration Information for a Specific VAS Server Group 12-29
Example 12-29 How to Display Operational and Configuration Information for All VAS Server Groups 12-29 How to Display Operational and Configuration Information for a Specific VAS Server 12-29
Example 12-29 How to Display Operational and Configuration Information for All VAS Servers 12-30 How to Display the VAS Servers Used by a Specified Subscriber 12-30 How to Display Health Check Counters for a Specified VAS Server 12-30
Example 12-30 How to Display Health Check Counters for All VAS Servers 12-31 How to Clear the Health Check Counters for a Specified VAS Server 12-31 How to Clear the Health Check Counters for All VAS Servers 12-31 How to Display Bandwidth per VAS Server and VAS Direction 12-31
Example 12-31
Contents
VAS over 10G 12-32
About VAS over 10G 12-32 Data Flow in VAS over 10G Topology 12-33
VAS Data Flow: To the VAS Server 12-35
VAS Data Flow: From the VAS Server 12-36 Failover Support 12-37 Health Check in VAS over 10G Topology 12-39 Configuring VAS over 10G: General Guidelines 12-40
Configuring the 7600/6500 for VAS over 10G 12-40 Configuring VAS over 10G 12-41
How to Configure the VAS Traffic Link Auto-Select Parameters (VAS over 10G) 12-41
How to Configure the Minimum Time between Link Switches 12-42
How to Set the Active VAS Link 12-43 How to Configure Health Check for VAS over 10G 12-43
How to Configure the Health Check IP Address 12-43
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xix
Contents
How to Remove the IP Address Configuration 12-44
How to Enable the Health Check for VAS over 10G Topology 12-45
Options 12-45 How to Enable Health Check Compatibility for VAS over 10G (MGSCP) 12-45 How to Remove the Health Check Compatibility Configuration 12-45
VAS Over 10G Sample Configuration 12-46
Intelligent Traffic Mirroring 12-47
Behavioral Targeting Use Case 12-47 Traffic Mirroring and SCA BB 12-48 Mirroring Termination 12-48 Mirroring Exceptions 12-49 SCE Connectivity 12-49 Configuring Traffic Mirroring 12-50 Monitoring Traffic Mirroring 12-51 Traffic Mirroring Sample Configuration 12-52
CHAPTER
13 MPLS/VPN Support 13-1
Introduction 13-1
Service Control in the MPLS/VPN Environment 13-1
Definitions and Acronyms 13-2
What are the Challenges for Service Control for MPLS/VPN Support? 13-3
How MPLS/VPN Support Works 13-3
Flow Detection 13-3 VPN Detection 13-4 Subscriber Detection 13-4
What is an MPLS/VPN-based Subscriber? 13-4 Private IP Subscriber Support 13-5
How the Service Control MPLS/VPN Solution Works 13-5
How the Service Control MPLS/VPN Solution Works: A Summary 13-5 SCE Platform Tasks in the MPLS/VPN Solution 13-5 BGP LEG Tasks in the MPLS/VPN Solution 13-6 SM Tasks in the MPLS/VPN Solution 13-6
Service Control MPLS/VPN Concepts 13-6
Non-VPN-Based Subscribers 13-6 Bypassing Unknown VPNs 13-7 Additional MPLS Pattern Support 13-7 VPN Identifier (RD or RT) 13-8
Service Control MPLS/VPN Requirements 13-8
Topology 13-8
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xx
OL-7827-12
Capacity 13-9 Limitations 13-10 Backwards Compatibility 13-11
Configuring MPLS/VPN Support 13-11
Configuring the MPLS Environment 13-11
How to Check the Running Configuration 13-11
How to Configure the MPLS Environment 13-12 Configuring the SCE Platform for MPLS/VPN Support 13-12
Defining the PE Routers 13-12
Configuring the MAC Resolver 13-14
Monitoring the MAC Resolver 13-15 Configuring the SM for MPLS/VPN Support 13-16
how to Configure the SM for MPLS/VPN Support 13-16
How to Edit the SM Configuration File 13-16
How to Configure the SM to Allow IP Ranges 13-17
Contents
CHAPTER
Managing MPLS/VPN Support 13-17
Managing MPLS/VPN Support via SNMP 13-17
MPLS/VPN MIB Objects 13-18
MPLS/VPN Traps 13-18 Monitoring MPLS/VPN Support via SCE Platform CLI 13-18
Displaying VPN-related Mappings 13-18
Clearing Upstream VPN Mappings 13-21
Monitoring Subscriber Counters 13-22
Monitoring MPLS/VPN Counters 13-23
Monitoring the PE Routers 13-23
Monitoring Bypassed VPNs 13-24
Monitoring Non-VPN Mappings 13-24 Managing MPLS/VPN Support via SM CLU 13-24
Managing VPNs 13-25
How to Add Mappings to VPN-based Subscribers 13-27
How to Remove VPN Mappings from Subscribers 13-28
How to Monitor Subscriber MPLS/VPN Mappings 13-29
14 Managing the SCMP 14-1
Introduction 14-1
About SCMP 14-1
SCMP Terminology 14-2 Deployment Scenarios 14-3
Single ISG Router with a Single SCE Platform (1xISG – 1xSCE) 14-3
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxi
Contents
Single ISG Router with Two Cascaded SCE Platforms (1xISG – 2xSCE) 14-4 Multiple ISG Routers with Two Cascaded SCE Platforms (NxISG – 2xSCE) 14-5 Multiple ISG Routers with Multiple SCE Platforms via Load Balancing (NxISG – MxSCE) 14-6
SCMP Peer Devices 14-7
Connection Management 14-7
SCMP Subscriber Management 14-8
GUID and Subscriber ID 14-8
Configuring the SCMP 14-8
Configuring SCMP Parameters 14-9
How to Enable the SCMP 14-9 How to Disable the SCMP 14-9 Configuring the SCMP Peer Device to Push Sessions 14-9 Configuring the SCMP Peer Device to Force Each Subscriber to Single SCE Platform 14-10 How to Define the Keep-alive Interval Parameter 14-11 How to Define the Reconnect Interval Parameter 14-11 How to Define the Loss-of-Sync Timeout Parameter 14-11
Adding an SCMP Peer Device 14-12
How to Define an SCMP Peer Device 14-12 Assigning the SCMP Peer Device to an Anonymous Group 14-13
Deleting Subscribers Managed by an SCMP Peer Device 14-13
Options 14-13 Deleting an SCMP Peer Device 14-14 Defining the Subscriber ID 14-14
Options 14-15 Configuring the RADIUS Client 14-15
Options 14-16
Monitoring the SCMP Environment 14-16
Monitoring the SCMP 14-16
Options 14-16
How to display the general SCMP configuration 14-17
How to display the configuration all currently defined SCMP peer devices 14-17
How to display the configuration for a specified SCMP peer device 14-17
How to display the statistics for all SCMP peer devices 14-17
How to display the statistics for a specified SCMP peer device 14-18 Monitoring the RADIUS Client 14-18
APPENDIX
A Monitoring SCE Platform Utilization A-1
Introduction A-1
SCE Platform Utilization Indicators A-2
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxii
OL-7827-12
CPU Utilization A-2 Flows Capacity A-2 Subscribers Capacity A-2
Service Loss A-3
Monitoring Service Loss A-3
Contents
APPENDIX
B Proprietary MIB Reference B-1
Introduction B-1
pcube Enterprise MIB B-2
Application MIB Integration B-3
Application and Subscriber groups B-4 The Engage MIB (pcubeEngageMIB) B-5
MIB Updates B-5
tpServiceLoss B-6
Using this Reference B-6
pcubeModules (1.3.6.1.4.1.5655.2) B-6
pcubeSeMIB (1.3.6.1.4.1.5655.2.3) B-6
pcubeSeMIB Object Groups (1.3.6.1.4.1.5655.2.3.1.1) B-7 pcubeCompliances (1.3.6.1.4.1.5655.2.3.1.2) B-15
pcubeWorkgroup (1.3.6.1.4.1.5655.4) B-16
Notification Types B-17
operationalStatusOperationalTrap (1.3.6.1.4.1.5655.4.0.1) B-19 operationalStatusWarningTrap (1.3.6.1.4.1.5655.4.0.2) B-19 operationalStatusFailureTrap (1.3.6.1.4.1.5655.4.0.3) B-19 systemResetTrap (1.3.6.1.4.1.5655.4.0.4) B-19 chassisTempAlarmOnTrap (1.3.6.1.4.1.5655.4.0.5) B-19 chassisTempAlarmOffTrap (1.3.6.1.4.1.5655.4.0.6) B-19 chassisVoltageAlarmOnTrap (1.3.6.1.4.1.5655.4.0.7) B-20 chassisFansAlarmOnTrap (1.3.6.1.4.1.5655.4.0.8) B-20 chassisPowerSupplyAlarmOnTrap (1.3.6.1.4.1.5655.4.0.9) B-20 rdrActiveConnectionTrap (1.3.6.1.4.1.5655.4.0.10) B-20 rdrNoActiveConnectionTrap (1.3.6.1.4.1.5655.4.0.11) B-20 rdrConnectionUpTrap (1.3.6.1.4.1.5655.4.0.12) B-20 rdrConnectionDownTrap (1.3.6.1.4.1.5655.4.0.13) B-20 loggerUserLogIsFullTrap (1.3.6.1.4.1.5655.4.0.18) B-20 sntpClockDriftWarnTrap (1.3.6.1.4.1.5655.4.0.19) B-20 linkModeBypassTrap (1.3.6.1.4.1.5655.4.0.20) B-20 linkModeForwardingTrap (1.3.6.1.4.1.5655.4.0.21) B-21 linkModeCutoffTrap (1.3.6.1.4.1.5655.4.0.22) B-21
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxiii
Contents
moduleAttackFilterActivatedTrap (1.3.6.1.4.1.5655.4.0.25) B-21
moduleAttackFilterDeactivatedTrap (1.3.6.1.4.1.5655.4.0.26) B-22
moduleEmAgentGenericTrap (1.3.6.1.4.1.5655.4.0.27) B-22
linkModeSniffingTrap (1.3.6.1.4.1.5655.4.0.28) B-22
moduleRedundancyReadyTrap (1.3.6.1.4.1.5655.4.0.29) B-22
moduleRedundantConfigurationMismatchTrap (1.3.6.1.4.1.5655.4.0.30) B-22
moduleLostRedundancyTrap (1.3.6.1.4.1.5655.4.0.31) B-22
moduleSmConnectionDownTrap (1.3.6.1.4.1.5655.4.0.32) B-23
moduleSmConnectionUpTrap (1.3.6.1.4.1.5655.4.0.33) B-23
moduleOperStatusChangeTrap (1.3.6.1.4.1.5655.4.0.34) B-23
portOperStatusChangeTrap (1.3.6.1.4.1.5655.4.0.35) B-23
chassisLineFeedAlarmOnTrap (1.3.6.1.4.1.5655.4.0.36) B-23
rdrFormatterCategoryDiscardingReportsTrap (1.3.6.1.4.1.5655.4.0.37) B-23
rdrFormatterCategoryStoppedDiscardingReportsTrap (1.3.6.1.4.1.5655.4.0.38) B-23
sessionStartedTrap (1.3.6.1.4.1.5655.4.0.39) B-23
sessionEndedTrap (1.3.6.1.4.1.5655.4.0.40) B-23
sessionDeniedAccessTrap (1.3.6.1.4.1.5655.4.0.41) B-23
sessionBadLoginTrap (1.3.6.1.4.1.5655.4.0.42) B-24
illegalSubscriberMappingTrap (1.3.6.1.4.1.5655.4.0.43) B-24
loggerLineAttackLogFullTrap (1.3.6.1.4.1.5655.4.0.44) B-24
vasServerOperationalStatusChangeTrap (1.3.6.1.4.1.5655.4.0.45) B-24
pullRequestNumber (1.3.6.1.4.1.5655.4.0.46) B-24
pullRequestRetryFailedTrap (1.3.6.1.4.1.5655.4.0.47) B-24
mplsVpnTotalHWMappingsThresholdExceededTrap (1.3.6.1.4.1.5655.4.0.48) B-24 pcubeSe Objects B-25
sysOperationalStatus (1.3.6.1.4.1.5655.4.1.1.1) B-31
sysFailureRecovery (1.3.6.1.4.1.5655.4.1.1.2) B-31
sysVersion (1.3.6.1.4.1.5655.4.1.1.3) B-32
pchassisSysType (1.3.6.1.4.1.5655.4.1.2.1) B-32
pchassisPowerSupplyAlarm (1.3.6.1.4.1.5655.4.1.2.2) B-32
pchassisFansAlarm (1.3.6.1.4.1.5655.4.1.2.3) B-32
pchassisTempAlarm (1.3.6.1.4.1.5655.4.1.2.4) B-33
pchassisVoltageAlarm (1.3.6.1.4.1.5655.4.1.2.5) B-33
pchassisNumSlots (1.3.6.1.4.1.5655.4.1.2.6) B-33
pchassisSlotConfig (1.3.6.1.4.1.5655.4.1.2.7) B-34
pchassisPsuType (1.3.6.1.4.1.5655.4.1.2.8) B-34
pchassisLineFeedAlarm (1.3.6.1.4.1.5655.4.1.2.9) B-34
pmoduleTable (1.3.6.1.4.1.5655.4.1.3.1) B-35
pmoduleEntry (1.3.6.1.4.1.5655.4.1.3.1.1) B-35
pmoduleIndex (1.3.6.1.4.1.5655.4.1.3.1.1.1) B-35
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxiv
OL-7827-12
pmoduleType (1.3.6.1.4.1.5655.4.1.3.1.1.2) B-36 pmoduleNumTrafficProcessors (1.3.6.1.4.1.5655.4.1.3.1.1.3) B-36 pmoduleSlotNum (1.3.6.1.4.1.5655.4.1.3.1.1.4) B-36 pmoduleHwVersion (1.3.6.1.4.1.5655.4.1.3.1.1.5) B-36 pmoduleNumPorts (1.3.6.1.4.1.5655.4.1.3.1.1.6) B-37 pmoduleNumLinks (1.3.6.1.4.1.5655.4.1.3.1.1.7) B-37 pmoduleConnectionMode (1.3.6.1.4.1.5655.4.1.3.1.1.8) B-37 pmoduleSerialNumber (1.3.6.1.4.1.5655.4.1.3.1.1.9) B-37 pmoduleUpStreamAttackFilteringTime (1.3.6.1.4.1.5655.4.1.3.1.1.10) B-38 pmoduleUpStreamLastAttackFilteringTime (1.3.6.1.4.1.5655.4.1.3.1.1.11) B-38 pmoduleDownStreamAttackFilteringTime (1.3.6.1.4.1.5655.4.1.3.1.1.12) B-38 pmoduleDownStreamLastAttackFilteringTime (1.3.6.1.4.1.5655.4.1.3.1.1.13) B-38 pmoduleAttackObjectsClearTime (1.3.6.1.4.1.5655.4.1.3.1.1.14) B-39 pmoduleAdminStatus (1.3.6.1.4.1.5655.4.1.3.1.1.15) B-39 pmoduleOperStatus (1.3.6.1.4.1.5655.4.1.3.1.1.16) B-39 linkTable (1.3.6.1.4.1.5655.4.1.4.1) B-39 linkEntry (1.3.6.1.4.1.5655.4.1.4.1.1) B-40 linkModuleIndex (1.3.6.1.4.1.5655.4.1.4.1.1.1) B-40 linkIndex (1.3.6.1.4.1.5655.4.1.4.1.1.2) B-40 linkAdminModeOnActive (1.3.6.1.4.1.5655.4.1.4.1.1.3) B-41 linkAdminModeOnFailure (1.3.6.1.4.1.5655.4.1.4.1.1.4) B-41 linkOperMode (1.3.6.1.4.1.5655.4.1.4.1.1.5) B-41 linkStatusReflectionEnable (1.3.6.1.4.1.5655.4.1.4.1.1.6) B-42 linkSubscriberSidePortIndex (1.3.6.1.4.1.5655.4.1.4.1.1.7) B-42 linkNetworkSidePortIndex (1.3.6.1.4.1.5655.4.1.4.1.1.8) B-42 diskNumUsedBytes (1.3.6.1.4.1.5655.4.1.5.1) B-42 diskNumFreeBytes (1.3.6.1.4.1.5655.4.1.5.2) B-43 rdrFormatterEnable (1.3.6.1.4.1.5655.4.1.6.1) B-43 rdrFormatterDestTable (1.3.6.1.4.1.5655.4.1.6.2) B-43 rdrFormatterDestEntry (1.3.6.1.4.1.5655.4.1.6.2.1) B-44 rdrFormatterDestIPAddr (1.3.6.1.4.1.5655.4.1.6.2.1.1) B-44 rdrFormatterDestPort (1.3.6.1.4.1.5655.4.1.6.2.1.2) B-44 rdrFormatterDestPriority (1.3.6.1.4.1.5655.4.1.6.2.1.3) B-44 rdrFormatterDestStatus (1.3.6.1.4.1.5655.4.1.6.2.1.4) B-45 rdrFormatterDestConnectionStatus (1.3.6.1.4.1.5655.4.1.6.2.1.5) B-45 rdrFormatterDestNumReportsSent (1.3.6.1.4.1.5655.4.1.6.2.1.6) B-45 rdrFormatterDestNumReportsDiscarded (1.3.6.1.4.1.5655.4.1.6.2.1.7) B-45 rdrFormatterDestReportRate (1.3.6.1.4.1.5655.4.1.6.2.1.8) B-46 rdrFormatterDestReportRatePeak (1.3.6.1.4.1.5655.4.1.6.2.1.9) B-46 rdrFormatterDestReportRatePeakTime (1.3.6.1.4.1.5655.4.1.6.2.1.10) B-46
Contents
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxv
Contents
rdrFormatterNumReportsSent (1.3.6.1.4.1.5655.4.1.6.3) B-46
rdrFormatterNumReportsDiscarded (1.3.6.1.4.1.5655.4.1.6.4) B-47
rdrFormatterClearCountersTime (1.3.6.1.4.1.5655.4.1.6.5) B-47
rdrFormatterReportRate (1.3.6.1.4.1.5655.4.1.6.6) B-47
rdrFormatterReportRatePeak (1.3.6.1.4.1.5655.4.1.6.7) B-47
rdrFormatterReportRatePeakTime (1.3.6.1.4.1.5655.4.1.6.8) B-48
rdrFormatterProtocol (1.3.6.1.4.1.5655.4.1.6.9) B-48
rdrFormatterForwardingMode (1.3.6.1.4.1.5655.4.1.6.10) B-48
rdrFormatterCategoryTable (1.3.6.1.4.1.5655.4.1.6.11) B-48
rdrFormatterCategoryEntry (1.3.6.1.4.1.5655.4.1.6.11.1) B-49
rdrFormatterCategoryIndex (1.3.6.1.4.1.5655.4.1.6.11.1.1) B-49
rdrFormatterCategoryName (1.3.6.1.4.1.5655.4.1.6.11.1.2) B-49
rdrFormatterCategoryNumReportsSent (1.3.6.1.4.1.5655.4.1.6.11.1.3) B-49
rdrFormatterCategoryNumReportsDiscarded (1.3.6.1.4.1.5655.4.1.6.11.1.4) B-50
rdrFormatterCategoryReportRate (1.3.6.1.4.1.5655.4.1.6.11.1.5) B-50
rdrFormatterCategoryReportRatePeak (1.3.6.1.4.1.5655.4.1.6.11.1.6) B-50
rdrFormatterCategoryReportRatePeakTime (1.3.6.1.4.1.5655.4.1.6.11.1.7) B-50
rdrFormatterCategoryNumReportsQueued (1.3.6.1.4.1.5655.4.1.6.11.1.8) B-51
rdrFormatterCategoryDestTable (1.3.6.1.4.1.5655.4.1.6.12) B-51
rdrFormatterCategoryDestEntry (1.3.6.1.4.1.5655.4.1.6.12.1) B-51
rdrFormatterCategoryDestPriority (1.3.6.1.4.1.5655.4.1.6.12.1.1) B-51
rdrFormatterCategoryDestStatus (1.3.6.1.4.1.5655.4.1.6.12.1.2) B-52
loggerUserLogEnable (1.3.6.1.4.1.5655.4.1.7.1) B-52
loggerUserLogNumInfo (1.3.6.1.4.1.5655.4.1.7.2) B-52
loggerUserLogNumWarning (1.3.6.1.4.1.5655.4.1.7.3) B-52
loggerUserLogNumError (1.3.6.1.4.1.5655.4.1.7.4) B-53
loggerUserLogNumFatal (1.3.6.1.4.1.5655.4.1.7.5) B-53
loggerUserLogClearCountersTime (1.3.6.1.4.1.5655.4.1.7.6) B-53
subscribersInfoTable (1.3.6.1.4.1.5655.4.1.8.1) B-53
subscribersInfoEntry (1.3.6.1.4.1.5655.4.1.8.1.1) B-54
subscribersNumIntroduced (1.3.6.1.4.1.5655.4.1.8.1.1.1) B-54
subscribersNumFree (1.3.6.1.4.1.5655.4.1.8.1.1.2) B-54
subscribersNumIpAddrMappings (1.3.6.1.4.1.5655.4.1.8.1.1.3) B-54
subscribersNumIpAddrMappingsFree (1.3.6.1.4.1.5655.4.1.8.1.1.4) B-55
subscribersNumIpRangeMappings (1.3.6.1.4.1.5655.4.1.8.1.1.5) B-55
subscribersNumIpRangeMappingsFree (1.3.6.1.4.1.5655.4.1.8.1.1.6) B-55
subscribersNumVlanMappings (1.3.6.1.4.1.5655.4.1.8.1.1.7) B-55
subscribersNumVlanMappingsFree (1.3.6.1.4.1.5655.4.1.8.1.1.8) B-56
subscribersNumActive (1.3.6.1.4.1.5655.4.1.8.1.1.9) B-56
subscribersNumActivePeak (1.3.6.1.4.1.5655.4.1.8.1.1.10) B-56
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxvi
OL-7827-12
subscribersNumActivePeakTime (1.3.6.1.4.1.5655.4.1.8.1.1.11) B-56 subscribersNumUpdates (1.3.6.1.4.1.5655.4.1.8.1.1.12) B-57 subscribersCountersClearTime (1.3.6.1.4.1.5655.4.1.8.1.1.13) B-57 subscribersNumTpIpRangeMappings (1.3.6.1.4.1.5655.4.1.8.1.1.14) B-57 subscribersNumTpIpRangeMappingsFree (1.3.6.1.4.1.5655.4.1.8.1.1.15) B-57 subscribersNumAnonymous (1.3.6.1.4.1.5655.4.1.8.1.1.16) B-58 subscribersNumWithSessions (1.3.6.1.4.1.5655.4.1.8.1.1.17) B-58 subscribersPropertiesTable (1.3.6.1.4.1.5655.4.1.8.2) B-58 subscribersPropertiesEntry (1.3.6.1.4.1.5655.4.1.8.2.1) B-58 spIndex (1.3.6.1.4.1.5655.4.1.8.2.1.1) B-59 spName (1.3.6.1.4.1.5655.4.1.8.2.1.2) B-59 spType (1.3.6.1.4.1.5655.4.1.8.2.1.3) B-59 subscriberPropertiesValuesTable (1.3.6.1.4.1.5655.4.1.8.3) B-60 subscriberPropertiesValueEntry (1.3.6.1.4.1.5655.4.1.8.3.1) B-60 spvIndex (1.3.6.1.4.1.5655.4.1.8.3.1.1) B-60 spvSubName (1.3.6.1.4.1.5655.4.1.8.3.1.2) B-61 spvPropertyName (1.3.6.1.4.1.5655.4.1.8.3.1.3) B-61 spvRowStatus (1.3.6.1.4.1.5655.4.1.8.3.1.4) B-61 spvPropertyStringValue (1.3.6.1.4.1.5655.4.1.8.3.1.5) B-61 spvPropertyUintValue (1.3.6.1.4.1.5655.4.1.8.3.1.6) B-62 spvPropertyCounter64Value (1.3.6.1.4.1.5655.4.1.8.3.1.7) B-62 tpInfoTable (1.3.6.1.4.1.5655.4.1.9.1) B-62 tpInfoEntry (1.3.6.1.4.1.5655.4.1.9.1.1) B-63 tpModuleIndex (1.3.6.1.4.1.5655.4.1.9.1.1.1) B-63 tpIndex (1.3.6.1.4.1.5655.4.1.9.1.1.2) B-63 tpTotalNumHandledPackets (1.3.6.1.4.1.5655.4.1.9.1.1.3) B-64 tpTotalNumHandledFlows (1.3.6.1.4.1.5655.4.1.9.1.1.4) B-64 tpNumActiveFlows (1.3.6.1.4.1.5655.4.1.9.1.1.5) B-64 tpNumActiveFlowsPeak (1.3.6.1.4.1.5655.4.1.9.1.1.6) B-64 tpNumActiveFlowsPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.7) B-65 tpNumTcpActiveFlows (1.3.6.1.4.1.5655.4.1.9.1.1.8) B-65 TpNumTcpActiveFlowsPeak (1.3.6.1.4.1.5655.4.1.9.1.1.9) B-65 tpNumTcpActiveFlowsPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.10) B-65 tpNumUdpActiveFlows (1.3.6.1.4.1.5655.4.1.9.1.1.11) B-66 tpNumUdpActiveFlowsPeak (1.3.6.1.4.1.5655.4.1.9.1.1.12) B-66 tpNumUdpActiveFlowsPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.13) B-66 tpNumNonTcpUdpActiveFlows (1.3.6.1.4.1.5655.4.1.9.1.1.14) B-66 tpNumNonTcpUdpActiveFlowsPeak (1.3.6.1.4.1.5655.4.1.9.1.1.15) B-67 tpNumNonTcpUdpActiveFlowsPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.16) B-67 tpTotalNumBlockedPackets (1.3.6.1.4.1.5655.4.1.9.1.1.17) B-67
Contents
OL-7827-12
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxvii
Contents
tpTotalNumBlockedFlows (1.3.6.1.4.1.5655.4.1.9.1.1.18) B-67
tpTotalNumDiscardedPacketsDueToBwLimit (1.3.6.1.4.1.5655.4.1.9.1.1.19) B-68
tpTotalNumWredDiscardedPackets (1.3.6.1.4.1.5655.4.1.9.1.1.20) B-68
tpTotalNumFragments (1.3.6.1.4.1.5655.4.1.9.1.1.21) B-68
tpTotalNumNonIpPackets (1.3.6.1.4.1.5655.4.1.9.1.1.22) B-68
tpTotalNumIpCrcErrPackets (1.3.6.1.4.1.5655.4.1.9.1.1.23) B-69
tpTotalNumIpLengthErrPackets (1.3.6.1.4.1.5655.4.1.9.1.1.24) B-69
tpTotalNumIpBroadcastPackets (1.3.6.1.4.1.5655.4.1.9.1.1.25) B-69
tpTotalNumTtlErrPackets (1.3.6.1.4.1.5655.4.1.9.1.1.26) B-69
tpTotalNumTcpUdpCrcErrPackets (1.3.6.1.4.1.5655.4.1.9.1.1.27) B-70
tpClearCountersTime (1.3.6.1.4.1.5655.4.1.9.1.1.28) B-70
tpHandledPacketsRate (1.3.6.1.4.1.5655.4.1.9.1.1.29) B-70
tpHandledPacketsRatePeak (1.3.6.1.4.1.5655.4.1.9.1.1.30) B-70
tpHandledPacketsRatePeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.31) B-71
tpHandledFlowsRate (1.3.6.1.4.1.5655.4.1.9.1.1.32) B-71
tpHandledFlowsRatePeak (1.3.6.1.4.1.5655.4.1.9.1.1.33) B-71
tpHandledFlowsRatePeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.34) B-71
tpCpuUtilization (1.3.6.1.4.1.5655.4.1.9.1.1.35) B-72
tpCpuUtilizationPeak (1.3.6.1.4.1.5655.4.1.9.1.1.36) B-72
tpCpuUtilizationPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.37) B-72
tpFlowsCapacityUtilization (1.3.6.1.4.1.5655.4.1.9.1.1.38) B-72
tpFlowsCapacityUtilizationPeak (1.3.6.1.4.1.5655.4.1.9.1.1.39) B-73
tpFlowsCapacityUtilizationPeakTime (1.3.6.1.4.1.5655.4.1.9.1.1.40) B-73
tpServiceLoss (1.3.6.1.4.1.5655.4.1.9.1.1.41) B-73
pportTable (1.3.6.1.4.1.5655.4.1.10.1) B-73
pportEntry (1.3.6.1.4.1.5655.4.1.10.1.1) B-74
pportModuleIndex (1.3.6.1.4.1.5655.4.1.10.1.1.1) B-74
pportIndex (1.3.6.1.4.1.5655.4.1.10.1.1.2) B-74
pportType (1.3.6.1.4.1.5655.4.1.10.1.1.3) B-74
pportNumTxQueues (1.3.6.1.4.1.5655.4.1.10.1.1.4) B-75
pportIfIndex (1.3.6.1.4.1.5655.4.1.10.1.1.5) B-75
pportAdminSpeed (1.3.6.1.4.1.5655.4.1.10.1.1.6) B-75
pportAdminDuplex (1.3.6.1.4.1.5655.4.1.10.1.1.7) B-75
pportOperDuplex (1.3.6.1.4.1.5655.4.1.10.1.1.8) B-76
pportLinkIndex (1.3.6.1.4.1.5655.4.1.10.1.1.9) B-76
pportOperStatus (1.3.6.1.4.1.5655.4.1.10.1.1.10) B-76
txQueuesTable (1.3.6.1.4.1.5655.4.1.11.1) B-76
txQueuesEntry (1.3.6.1.4.1.5655.4.1.11.1.1) B-77
txQueuesModuleIndex (1.3.6.1.4.1.5655.4.1.11.1.1.1) B-77
txQueuesPortIndex (1.3.6.1.4.1.5655.4.1.11.1.1.2) B-77
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
xxviii
OL-7827-12
Loading...
+ 482 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use