Dell PowerConnect B-TI24X Quick Reference Guide
53-1002269-02
26 April 2011
PowerConnect B-Series
TI24X
Configuration Guide
Information in this document is subject to change without notice.
© 2011 Dell Inc. All rights reserved.
Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden.
Trademarks used in this text: Dell, the DELL logo, Dell OpenManage and PowerConnect are trademarks of Dell Inc.; Microsoft,
Windows and Windows Server are either trademarks or registered trademarks of Microsoft Corporation in the United States and/
or other countries.
Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or
their products. Dell Inc. disclaims any proprietary interest in trademarks and trade names other than its own.
Regulatory Model Code: TurboIron 24X
Document History
Title Publication number Summary of changes Date
PowerConnect B-Series TI24X
Configuration Guide
PowerConnect B-Series TI24X
Configuration Guide
53-1002269-01 New document March 2011
53-1002269-02 Removed deprecated
April 2011
commands, web
management and DVMRP
references.
Contents
About This Document
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxxi
Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxxi
Document conventions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxxi
Text formatting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxxi
Command syntax conventions . . . . . . . . . . . . . . . . . . . . . . . . .xxxii
Notes, cautions, and danger notices . . . . . . . . . . . . . . . . . . . .xxxii
Notice to the reader . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xxxii
Related publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .xxxii
Getting technical help or reporting errors . . . . . . . . . . . . . . . . . . . xxxiii
Contacting Dell. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxxiii
Chapter 1 Getting Familiar with Management Applications
Using the management port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
How the management port works. . . . . . . . . . . . . . . . . . . . . . . . . 1
CLI Commands for use with the management port. . . . . . . . . . . 1
Logging on through the CLI. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
On-line help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Command completion . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Scroll control. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Line editing commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Using and port number with CLI commands. . . . . . . . . . . . . . . . . . . . 5
CLI nomenclature on PowerConnectdevices . . . . . . . . . . . . . . . . 5
Searching and filtering output from CLI commands . . . . . . . . . . 5
Using special characters in regular expressions . . . . . . . . . . . . . 7
Creating an alias for a CLI command . . . . . . . . . . . . . . . . . . . . . . 9
Logging on through Brocade Network Advisor . . . . . . . . . . . . . . . . .10
Chapter 2 Configuring Basic Software Features
Configuring basic system parameters . . . . . . . . . . . . . . . . . . . . . . . .11
Entering system administration information . . . . . . . . . . . . . . .12
Configuring Simple Network Management Protocol (SNMP)
parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12
Disabling Syslog messages and traps for CLI access . . . . . . . . 16
Configuring an interface as the source for all Telnet packets . 17
Cancelling an outbound Telnet session . . . . . . . . . . . . . . . . . . .18
Specifying a Simple Network Time Protocol (SNTP) server. . . . 18
Setting the system clock . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .19
Limiting broadcast, multicast, and unknown unicast traffic. . . 21
PowerConnect B-Series TI24X Configuration Guide iii
53-1002269-02
Configuring basic port parameters . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Assigning a port name . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
Modifying port speed and duplex mode. . . . . . . . . . . . . . . . . . .25
Auto speed detect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .26
Modifying port duplex mode . . . . . . . . . . . . . . . . . . . . . . . . . . . .26
Disabling or re-enabling a port . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Disabling or re-enabling flow control . . . . . . . . . . . . . . . . . . . . .27
Auto-negotiation and advertisement of flow control . . . . . . . . .28
Configuring the Interpacket Gap (IPG) . . . . . . . . . . . . . . . . . . . . 29
Changing the Gbps fiber negotiation mode . . . . . . . . . . . . . . . .30
Modifying port priority (QoS) . . . . . . . . . . . . . . . . . . . . . . . . . . . .30
Configuring port flap dampening . . . . . . . . . . . . . . . . . . . . . . . .30
Port loop detection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .33
Chapter 3 Operations, Administration, and Maintenance
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .39
Determining the software versions installed and
running on a device. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Determining the flash image version running on the device . . 39
Determining the image versions installed in flash memory . . . 40
Flash image verification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Image file types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Upgrading software. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .42
Upgrading the boot code . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .42
Upgrading the flash code . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Boot code synchronization feature. . . . . . . . . . . . . . . . . . . . . . . 43
Using SNMP to upgrade software . . . . . . . . . . . . . . . . . . . . . . . . . . .43
Changing the block size for TFTP file transfers . . . . . . . . . . . . . . . . . 44
Rebooting. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .44
Displaying the boot preference . . . . . . . . . . . . . . . . . . . . . . . . . . . . .45
Loading and saving configuration files . . . . . . . . . . . . . . . . . . . . . . .45
Replacing the startup configuration with the
running configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Replacing the running configuration with the
startup configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .46
Logging changes to the startup-config file. . . . . . . . . . . . . . . . .46
Copying a configuration file to or from a TFTP server . . . . . . . . 47
Dynamic configuration loading . . . . . . . . . . . . . . . . . . . . . . . . . . 47
Maximum file sizes for startup-config file and running-config . 50
Scheduling a system reload . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .50
Reloading at a specific time . . . . . . . . . . . . . . . . . . . . . . . . . . . .50
Reloading after a specific amount of time. . . . . . . . . . . . . . . . . 51
Displaying the amount of time remaining
before a scheduled reload . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Canceling a scheduled reload. . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Diagnostic error codes and remedies for TFTP transfers. . . . . . . . . 51
iv PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Chapter 4 Monitoring Hardware Components
Hardware support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .53
Digital optical monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .53
Supported media . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .53
Media not supported . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .53
Supported media . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .54
Media not supported . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .54
Configuration limitations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .54
Enabling digital optical monitoring . . . . . . . . . . . . . . . . . . . . . . .54
Setting the alarm interval . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .55
Displaying information about installed media . . . . . . . . . . . . . .55
Viewing optical monitoring information . . . . . . . . . . . . . . . . . . .56
Syslog messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .58
Chapter 5 Configuring IPv6 Connectivity
IPv6 addressing overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .59
IPv6 address types. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .60
IPv6 stateless autoconfiguration . . . . . . . . . . . . . . . . . . . . . . . .62
IPv6 CLI command support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .62
Configuring an IPv6 host address on a Layer 2 switch. . . . . . . . . . .63
Configuring a global or site-local IPv6 address with a
manually configured interface ID . . . . . . . . . . . . . . . . . . . . . . . .64
Configuring a link-local IPv6 address as a
system-wide address for a switch. . . . . . . . . . . . . . . . . . . . . . . .64
Configuring the management port for an IPv6 automatic address
configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .65
Configuring basic IPv6 connectivity on a Layer 3 switch . . . . . . . . . 65
Configuring IPv6 on each router interface . . . . . . . . . . . . . . . . .65
IPv6 management (IPv6 host support) . . . . . . . . . . . . . . . . . . . . . . .68
Restricting SNMP access to an IPv6 node. . . . . . . . . . . . . . . . .68
Specifying an IPv6 SNMP trap receiver . . . . . . . . . . . . . . . . . . .68
SNMP V3 over IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .69
SNTP over IPv6. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .69
Secure Shell, SCP, and IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
IPv6 Telnet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .69
Configuring name-to-IPv6 address resolution using IPv6 DNS
resolver . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .70
Defining an IPv6 DNS entry. . . . . . . . . . . . . . . . . . . . . . . . . . . . .70
Using the IPv6 copy command . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Using the IPv6 ncopy command . . . . . . . . . . . . . . . . . . . . . . . . .73
IPv6 ping. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Configuring an IPv6 Syslog server . . . . . . . . . . . . . . . . . . . . . . . 76
Viewing IPv6 SNMP server addresses . . . . . . . . . . . . . . . . . . . . 76
Disabling router advertisement and solicitation messages . . . 77
IPv6 debug . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
Disabling IPv6 on a Layer 2 switch. . . . . . . . . . . . . . . . . . . . . . . 77
PowerConnect B-Series TI24X Configuration Guide v
53-1002269-02
Configuring IPv6 neighbor discovery . . . . . . . . . . . . . . . . . . . . . . . . .77
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .78
Neighbor solicitation and advertisement messages . . . . . . . . .78
Configuring static neighbor entries . . . . . . . . . . . . . . . . . . . . . . . . . .79
Clearing global IPv6 information . . . . . . . . . . . . . . . . . . . . . . . . . . . .79
Clearing the IPv6 cache. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .80
Clearing IPv6 neighbor information . . . . . . . . . . . . . . . . . . . . . .80
Clearing IPv6 traffic statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Displaying global IPv6 information. . . . . . . . . . . . . . . . . . . . . . . . . . .81
Displaying IPv6 cache information . . . . . . . . . . . . . . . . . . . . . . .81
Displaying IPv6 interface information. . . . . . . . . . . . . . . . . . . . .82
Displaying IPv6 neighbor information. . . . . . . . . . . . . . . . . . . . . 84
Displaying IPv6 TCP information . . . . . . . . . . . . . . . . . . . . . . . . . 85
Displaying IPv6 traffic statistics . . . . . . . . . . . . . . . . . . . . . . . . . 88
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .89
Chapter 6 Configuring Spanning Tree Protocol (STP) Related Features
STP overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .93
Configuring standard STP parameters. . . . . . . . . . . . . . . . . . . . . . . .93
STP parameters and defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
Enabling or disabling the Spanning Tree Protocol (STP) . . . . . .95
Changing STP bridge and port parameters . . . . . . . . . . . . . . . .96
STP protection enhancement . . . . . . . . . . . . . . . . . . . . . . . . . . .98
Displaying STP information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 99
Configuring STP related features . . . . . . . . . . . . . . . . . . . . . . . . . . .106
802.1W Rapid Spanning Tree (RSTP) . . . . . . . . . . . . . . . . . . . .107
802.1W Draft 3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .144
Single Spanning Tree (SSTP) . . . . . . . . . . . . . . . . . . . . . . . . . . .148
PVST/PVST+ compatibility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .150
Overview of PVST and PVST+ . . . . . . . . . . . . . . . . . . . . . . . . . .151
VLAN tags and dual mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . .152
Configuring PVST+ support . . . . . . . . . . . . . . . . . . . . . . . . . . . .153
Displaying PVST+ support information. . . . . . . . . . . . . . . . . . .153
Configuration examples. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .154
PVRST compatibility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .157
BPDU guard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .157
Enabling BPDU protection by port. . . . . . . . . . . . . . . . . . . . . . .157
Re-enabling ports disabled by BPDU guard . . . . . . . . . . . . . . .158
Displaying the BPDU guard status . . . . . . . . . . . . . . . . . . . . . .158
Example console messages . . . . . . . . . . . . . . . . . . . . . . . . . . .159
Root guard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .159
Enabling STP root guard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .160
Displaying the STP root guard . . . . . . . . . . . . . . . . . . . . . . . . . .160
Displaying the root guard by VLAN . . . . . . . . . . . . . . . . . . . . . .160
vi PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
802.1s Multiple Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . .161
Multiple spanning-tree regions . . . . . . . . . . . . . . . . . . . . . . . . . 161
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .163
Configuring MSTP mode and scope . . . . . . . . . . . . . . . . . . . . .163
Configuring additional MSTP parameters . . . . . . . . . . . . . . . .164
Chapter 7 Configuring Basic Layer 2 Features
Enabling or disabling the Spanning Tree Protocol (STP). . . . . . . . .175
Modifying STP bridge and port parameters . . . . . . . . . . . . . . .175
Changing the MAC age time and disabling MAC address learning 176
Disabling the automatic learning of MAC addresses . . . . . . . 176
Displaying the MAC address table . . . . . . . . . . . . . . . . . . . . . .177
Configuring static MAC entries. . . . . . . . . . . . . . . . . . . . . . . . . . . . .177
Multi-port static MAC address. . . . . . . . . . . . . . . . . . . . . . . . . .178
Configuring VLAN-based static MAC entries . . . . . . . . . . . . . . . . . .179
Clearing MAC address entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . .179
Enabling port-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .180
Assigning IEEE 802.1Q tagging to a port . . . . . . . . . . . . . . . . .180
Defining MAC address filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .181
Configuration notes and limitations . . . . . . . . . . . . . . . . . . . . .181
Command syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .181
Enabling logging of management traffic
permitted by MAC filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .183
Displaying and modifying system parameter default settings . . . .184
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . .184
Displaying system parameter default values . . . . . . . . . . . . . .184
Modifying system parameter default values . . . . . . . . . . . . . .186
Egress buffer thresholds for QoS priorities . . . . . . . . . . . . . . . . . . .187
Cut-Through Switching Support on PowerConnect B-Series TI24X
Switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .188
Default settings for egress buffer thresholds . . . . . . . . . . . . .188
Disabling and re-enabling the default settings
for egress buffer thresholds . . . . . . . . . . . . . . . . . . . . . . . . . . .189
Setting the egress buffer threshold for all QoS
priorities on a port or group of ports . . . . . . . . . . . . . . . . . . . .189
Setting the egress buffer threshold for a specific
QoS priority on a port or group of ports . . . . . . . . . . . . . . . . . .190
Link Fault Signaling (LFS) for 10G . . . . . . . . . . . . . . . . . . . . . . . . . .190
Jumbo frame support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .191
PowerConnect B-Series TI24X Configuration Guide vii
53-1002269-02
Chapter 8 Configuring Metro Features
Topology groups. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .193
Master VLAN and member VLANs . . . . . . . . . . . . . . . . . . . . . .193
Control ports and free ports . . . . . . . . . . . . . . . . . . . . . . . . . . .194
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . .194
Configuring a topology group . . . . . . . . . . . . . . . . . . . . . . . . . .194
Displaying topology group information . . . . . . . . . . . . . . . . . . .195
Metro Ring Protocol (MRP) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .197
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .199
MRP rings without shared interfaces (MRP Phase 1) . . . . . . .199
MRP rings with shared interfaces (MRP Phase 2). . . . . . . . . .200
Ring initialization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .202
How ring breaks are detected and healed . . . . . . . . . . . . . . . .205
Alarm RHP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .208
Master VLANs and customer VLANs. . . . . . . . . . . . . . . . . . . . .209
Configuring MRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .211
Using MRP diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .213
Displaying MRP information . . . . . . . . . . . . . . . . . . . . . . . . . . .214
MRP CLI example. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .216
Virtual Switch Redundancy Protocol (VSRP) . . . . . . . . . . . . . . . . . .218
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .220
Layer 2 and Layer 3 redundancy . . . . . . . . . . . . . . . . . . . . . . .220
Master election and failover . . . . . . . . . . . . . . . . . . . . . . . . . . .220
VSRP-Aware security features. . . . . . . . . . . . . . . . . . . . . . . . . .225
VSRP parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .225
Configuring basic VSRP parameters. . . . . . . . . . . . . . . . . . . . .228
Configuring optional VSRP parameters . . . . . . . . . . . . . . . . . .229
Displaying VSRP information. . . . . . . . . . . . . . . . . . . . . . . . . . .238
VSRP fast start . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .241
VSRP and MRP signaling. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .242
Chapter 9 Configuring Uni-Directional Link Detection (UDLD) and Protected
Link Groups
UDLD overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .245
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . .246
Enabling UDLD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .246
Changing the Keepalive interval . . . . . . . . . . . . . . . . . . . . . . . .246
Changing the Keepalive retries . . . . . . . . . . . . . . . . . . . . . . . . .247
UDLD for tagged ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .247
Displaying UDLD information . . . . . . . . . . . . . . . . . . . . . . . . . . 247
Clearing UDLD statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .249
viii PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Chapter 10 Configuring Virtual LANs (VLANs)
VLAN overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .251
Types of VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .251
Default VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .255
802.1Q tagging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .256
Spanning Tree Protocol (STP) . . . . . . . . . . . . . . . . . . . . . . . . . .258
Virtual routing interfaces. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .259
VLAN and virtual routing interface groups . . . . . . . . . . . . . . . .260
Dynamic, static, and excluded port membership . . . . . . . . . .261
Super aggregated VLANs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .263
Trunk group ports and VLAN membership . . . . . . . . . . . . . . . .263
Routing between VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .263
Virtual routing interfaces (Layer 3 Switches only) . . . . . . . . . .263
Routing between VLANs using virtual routing
interfaces (Layer 3 Switches only) . . . . . . . . . . . . . . . . . . . . . .264
Dynamic port assignment (Layer 2 Switches
and Layer 3 Switches) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .265
Assigning a different VLAN ID to the default VLAN . . . . . . . . .265
Assigning different VLAN IDs to reserved VLANs 4091 and 4092265
Assigning trunk group ports . . . . . . . . . . . . . . . . . . . . . . . . . . .266
Configuring port-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . .267
Modifying a port-based VLAN . . . . . . . . . . . . . . . . . . . . . . . . . .270
Enable spanning tree on a VLAN . . . . . . . . . . . . . . . . . . . . . . .271
Configuring IP subnet, IPX network andprotocol-based VLANs . . .272
Configuration example. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .272
Configuring an IPv6 protocol VLAN . . . . . . . . . . . . . . . . . . . . . . . . . 274
Routing between VLANs using virtual routing
interfaces (Layer 3 Switches only) . . . . . . . . . . . . . . . . . . . . . . . . . .275
Configuring uplink ports within a port-based VLAN . . . . . . . . . . . .281
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . .281
Configuration syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .281
Configuring the same IP subnet address on multiple
port-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .282
Configuring VLAN groups and virtual routing interface groups . . .285
Configuring a VLAN group . . . . . . . . . . . . . . . . . . . . . . . . . . . . .285
Configuring a virtual routing interface group . . . . . . . . . . . . . .287
Displaying the VLAN group and virtual routing
interface group information . . . . . . . . . . . . . . . . . . . . . . . . . . .288
Allocating memory for more VLANs or virtual routing interfaces288
Configuring super aggregated VLANs . . . . . . . . . . . . . . . . . . . . . . .289
Configuration note . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .292
Configuring aggregated VLANs . . . . . . . . . . . . . . . . . . . . . . . . .292
Verifying the configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . .293
Complete CLI examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .293
Configuring 802.1Q-in-Q tagging . . . . . . . . . . . . . . . . . . . . . . . . . . .296
Configuration rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .297
Enabling 802.1Q-in-Q tagging. . . . . . . . . . . . . . . . . . . . . . . . . .297
Example configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .298
PowerConnect B-Series TI24X Configuration Guide ix
53-1002269-02
Configuring private VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .300
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .301
Configuration notes and limitations for PowerConnect
devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .302
Command syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .302
CLI example for Figure 71 . . . . . . . . . . . . . . . . . . . . . . . . . . . . .304
Enabling broadcast, unregistered multicast or
unknown unicast traffic to the private VLAN on
PowerConnect device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .304
Dual-mode VLAN ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .305
Displaying VLAN information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .307
Displaying VLANs in alphanumeric order . . . . . . . . . . . . . . . . .307
Displaying system-wide VLAN information . . . . . . . . . . . . . . . .308
Displaying VLAN information for specific ports . . . . . . . . . . . .309
Chapter 11 Configuring Trunk Groups and Dynamic Link Aggregation
Trunk group overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .311
Trunk group connectivity to a server. . . . . . . . . . . . . . . . . . . . .312
Trunk group rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .312
Trunk group configuration examples . . . . . . . . . . . . . . . . . . . .313
Flexible trunk group membership. . . . . . . . . . . . . . . . . . . . . . .314
Trunk group load sharing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 314
Configuring a trunk group. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316
CLI syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .316
Example 1: Configuring the trunk groups shown in Figure 75 317
Example 2: Configuring a trunk group that spans
two Gbps Ethernet modules in a chassis device. . . . . . . . . . . 317
Example 3: Configuring a multi-slot trunk group
with one port per module . . . . . . . . . . . . . . . . . . . . . . . . . . . . .318
Example 4: Configuring a trunk group of 10 Gbps
Ethernet ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .318
Additional trunking options . . . . . . . . . . . . . . . . . . . . . . . . . . . .318
Displaying trunk group configuration information . . . . . . . . . . . . .323
Dynamic link aggregation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .324
Examples of valid LACP trunk groups . . . . . . . . . . . . . . . . . . . .325
Configuration notes and limitations . . . . . . . . . . . . . . . . . . . . .325
Adaptation to trunk disappearance . . . . . . . . . . . . . . . . . . . . .327
Flexible trunk eligibility . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .327
Enabling dynamic link aggregation. . . . . . . . . . . . . . . . . . . . . .328
How changing the VLAN membership of a port affects
trunk groups and dynamic keys . . . . . . . . . . . . . . . . . . . . . . . .330
Link aggregation parameters . . . . . . . . . . . . . . . . . . . . . . . . . .330
Displaying and determining the status of aggregate links . . . . . . .335
Events that affect the status of ports in an aggregate link. . .335
Displaying link aggregation and port status information . . . .336
Displaying LACP status information . . . . . . . . . . . . . . . . . . . . .338
Clearing the negotiated aggregate links table . . . . . . . . . . . . . . . .338
x PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring single link LACP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .338
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .339
CLI syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .339
Chapter 12 Configuring GARP VLAN Registration Protocol
GVRP overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .341
Application examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .341
Dynamic core and fixed edge . . . . . . . . . . . . . . . . . . . . . . . . . .342
Dynamic core and dynamic edge . . . . . . . . . . . . . . . . . . . . . . .343
Fixed core and dynamic edge . . . . . . . . . . . . . . . . . . . . . . . . . .343
Fixed core and fixed edge . . . . . . . . . . . . . . . . . . . . . . . . . . . . .343
VLAN names . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .344
Configuration notes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .344
Configuring GVRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .345
Changing the GVRP base VLAN ID . . . . . . . . . . . . . . . . . . . . . .345
Increasing the maximum configurable value of the
Leaveall timer. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .346
Enabling GVRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .346
Disabling VLAN advertising . . . . . . . . . . . . . . . . . . . . . . . . . . . .347
Disabling VLAN learning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .347
Changing the GVRP timers . . . . . . . . . . . . . . . . . . . . . . . . . . . .347
Converting a VLAN created by GVRP into a statically-configured
VLAN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .349
Displaying GVRP information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .349
Displaying GVRP configuration information . . . . . . . . . . . . . . .350
Displaying GVRP VLAN information. . . . . . . . . . . . . . . . . . . . . .352
Displaying GVRP statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . .354
Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . .355
Displaying GVRP diagnostic information . . . . . . . . . . . . . . . . .356
Clearing GVRP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .357
CLI examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .357
Dynamic core and fixed edge . . . . . . . . . . . . . . . . . . . . . . . . . .357
Dynamic core and dynamic edge . . . . . . . . . . . . . . . . . . . . . . .359
Fixed core and dynamic edge . . . . . . . . . . . . . . . . . . . . . . . . . .359
Fixed core and fixed edge . . . . . . . . . . . . . . . . . . . . . . . . . . . . .359
Chapter 13 Configuring Rule-Based IP Access Control Lists
ACL overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .361
Types of IP ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .361
ACL IDs and entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .361
Numbered and named ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . .362
Default ACL action . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .362
How hardware-based ACLs work . . . . . . . . . . . . . . . . . . . . . . . . . . .363
How fragmented packets are processed . . . . . . . . . . . . . . . . .363
Hardware aging of Layer 4 CAM entries . . . . . . . . . . . . . . . . . .363
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .363
PowerConnect B-Series TI24X Configuration Guide xi
53-1002269-02
Configuring standard numbered ACLs. . . . . . . . . . . . . . . . . . . . . . .364
Standard numbered ACL syntax . . . . . . . . . . . . . . . . . . . . . . . .364
Configuration example for standard numbered ACLs . . . . . . .366
Configuring standard named ACLs . . . . . . . . . . . . . . . . . . . . . . . . .366
Standard named ACL syntax. . . . . . . . . . . . . . . . . . . . . . . . . . .366
Configuration example for standard named ACLs. . . . . . . . . .368
Configuring extended numbered ACLs . . . . . . . . . . . . . . . . . . . . . .368
Extended numbered ACL syntax . . . . . . . . . . . . . . . . . . . . . . . .369
Configuration examples for extended numbered ACLs . . . . . .373
Configuring extended named ACLs . . . . . . . . . . . . . . . . . . . . . . . . . 374
Extended named ACL syntax. . . . . . . . . . . . . . . . . . . . . . . . . . .375
Configuration example for extended named ACLs. . . . . . . . . .379
Preserving user input for ACL TCP/UDP port numbers. . . . . . . . . .379
Managing ACL comment text . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .379
Adding a comment to an entry in a numbered ACL. . . . . . . . .380
Applying an ACL to a virtual interface in a protocol-
or subnet-based VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .380
Enabling ACL logging. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .381
Enabling strict control of ACL filtering of fragmented packets. . . .383
Enabling ACL support for switched traffic in the router image . . .384
Enabling ACL filtering based on VLAN membership or VE port
membership . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .384
Applying an IPv4 ACL to specific VLAN members on
a port (Layer 2 devices only) . . . . . . . . . . . . . . . . . . . . . . . . . . .385
Applying an IPv4 ACL to a subset of ports on a virtual
interface (Layer 3 devices only) . . . . . . . . . . . . . . . . . . . . . . . .385
Filtering on IP precedence and ToS values . . . . . . . . . . . . . . . . . . .386
QoS options for IP ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .387
Using an IP ACL to mark DSCP values (DSCP marking). . . . . .387
DSCP matching . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .389
ACL-based rate limiting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .389
Using ACLs to control multicast features. . . . . . . . . . . . . . . . . . . . .390
Enabling and viewing hardware usage statistics for an ACL . . . . .391
Displaying ACL information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .392
Enabling and viewing hardware usage statistics for an ACL . . . . .392
Displaying ACL information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .392
Troubleshooting ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .392
Chapter 14 Configuring Port Mirroring and Monitoring
Mirroring support by platform . . . . . . . . . . . . . . . . . . . . . . . . . . . . .395
xii PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring port mirroring and monitoring . . . . . . . . . . . . . . . . . . .395
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .395
Monitoring a port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .397
Monitoring an individual trunk port . . . . . . . . . . . . . . . . . . . . .397
ACL-based inbound mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .398
Creating an ACL-based inbound mirror clause for
PowerConnect B-Series TI24X devices . . . . . . . . . . . . . . . . . . .398
MAC filter-based mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .402
Configuring MAC filter-based mirroring on
PowerConnect B-Series TI24X devices . . . . . . . . . . . . . . . . . . .402
Chapter 15 Configuring Quality of Service
Classification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .405
Processing of classified traffic . . . . . . . . . . . . . . . . . . . . . . . . .405
QoS queues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .408
Assigning QoS priorities to traffic . . . . . . . . . . . . . . . . . . . . . . .408
Buffer allocation/threshold for QoS queues . . . . . . . . . . . . . .410
Marking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .410
Configuring DSCP-based QoS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .410
Application notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .411
Using ACLs to honor DSCP-based QoS . . . . . . . . . . . . . . . . . . .411
Configuring the QoS mappings. . . . . . . . . . . . . . . . . . . . . . . . . . . . .411
Default DSCP –> Internal forwarding priority mappings . . . . .411
Changing the DSCP –> internal forwarding priority mappings412
Changing the internal forwarding priority –> hardware
forwarding queue mappings . . . . . . . . . . . . . . . . . . . . . . . . . . .413
Scheduling. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .414
QoS Queuing methods. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414
Selecting the QoS queuing method . . . . . . . . . . . . . . . . . . . . .415
Configuring the QoS queues . . . . . . . . . . . . . . . . . . . . . . . . . . .415
Viewing QoS settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .418
Viewing DSCP-based QoS settings. . . . . . . . . . . . . . . . . . . . . . . . . .418
Chapter 16 Configuring Rate Limiting and Rate Shaping on the PowerConnect B-
Series TI24X
Rate limiting overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .421
Rate limiting in hardware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .421
How Fixed Rate Limiting works . . . . . . . . . . . . . . . . . . . . . . . . .421
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .422
Configuring a port-based rate limiting policy . . . . . . . . . . . . . .422
Configuring an ACL-based rate limiting policy . . . . . . . . . . . . .423
Displaying the fixed rate limiting configuration . . . . . . . . . . . .423
PowerConnect B-Series TI24X Configuration Guide xiii
53-1002269-02
Rate shaping overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .424
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .424
Configuring outbound rate shaping for a port . . . . . . . . . . . . .424
Configuring outbound rate shaping for a specific priority. . . .425
Configuring outbound rate shaping for a trunk port . . . . . . . .425
Displaying rate shaping configurations . . . . . . . . . . . . . . . . . .425
Chapter 17 Configuring Traffic Policies
About traffic policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .427
Configuration notes and feature limitations . . . . . . . . . . . . . . . . . .427
Maximum number of traffic policies supported on a device . . . . .428
Setting the maximum number of traffic policies supported
on a Layer 3 device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .429
ACL-based rate limiting using traffic policies. . . . . . . . . . . . . . . . . .429
Support for fixed rate limiting and adaptive rate limiting . . . .430
Configuring ACL-based fixed rate limiting . . . . . . . . . . . . . . . . .430
Configuring ACL-based adaptive rate limiting . . . . . . . . . . . . .431
Specifying the action to be taken for packets that are
over the limit. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .433
ACL and rate limit counting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .434
Enabling ACL statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .434
Enabling ACL statistics with rate limiting traffic policies. . . . .435
Viewing ACL and rate limit counters . . . . . . . . . . . . . . . . . . . . .436
Clearing ACL and rate limit counters . . . . . . . . . . . . . . . . . . . .437
Viewing traffic policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .437
Chapter 18 Configuring IP Multicast Traffic Reduction for PowerConnect B-
Series TI24X Switches
IGMP snooping overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .439
IGMP V1, V2, and V3 snooping support . . . . . . . . . . . . . . . . . .440
Queriers and non-queriers . . . . . . . . . . . . . . . . . . . . . . . . . . . .440
IGMP snooping enhancements. . . . . . . . . . . . . . . . . . . . . . . . .441
Configuration notes and feature limitations for
PowerConnect B-Series TI24X devices . . . . . . . . . . . . . . . . . . .441
PIM SM traffic snooping overview . . . . . . . . . . . . . . . . . . . . . . . . . .442
PIM SM snooping support . . . . . . . . . . . . . . . . . . . . . . . . . . . . .443
Application examples. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .443
Configuration notes and limitations . . . . . . . . . . . . . . . . . . . . .444
xiv PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring IGMP snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .445
Enabling IGMP snooping globally on the device . . . . . . . . . . .447
Configuring the IGMP mode . . . . . . . . . . . . . . . . . . . . . . . . . . .447
Configuring the IGMP version . . . . . . . . . . . . . . . . . . . . . . . . . .448
Disabling IGMP snooping on a VLAN . . . . . . . . . . . . . . . . . . . .448
Disabling transmission and receipt of IGMP packets
on a port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .449
Modifying the age interval for group membership entries . . .449
Modifying the query interval (active IGMP snooping
mode only) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .449
Modifying the maximum response time. . . . . . . . . . . . . . . . . .450
Configuring report control . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450
Modifying the wait time before stopping traffic when receiving a
leave message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450
Modifying the multicast cache age time . . . . . . . . . . . . . . . . .451
Enabling or disabling error and warning messages . . . . . . . .451
Configuring static router ports . . . . . . . . . . . . . . . . . . . . . . . . .451
Turning off static group proxy . . . . . . . . . . . . . . . . . . . . . . . . . .451
IGMP V3 membership tracking and fast leave . . . . . . . . . . . .452
Fast leave for IGMP V2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .452
Fast convergence . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .453
Configuring PIM SM snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . .453
Enabling or disabling PIM SM snooping. . . . . . . . . . . . . . . . . .453
Enabling PIM SM snooping on a VLAN . . . . . . . . . . . . . . . . . . .454
Disabling PIM SM snooping on a VLAN . . . . . . . . . . . . . . . . . .454
IGMP snooping show commands. . . . . . . . . . . . . . . . . . . . . . . . . . .454
Displaying the IGMP snooping configuration . . . . . . . . . . . . . .454
Displaying IGMP snooping errors . . . . . . . . . . . . . . . . . . . . . . .455
Displaying IGMP group information . . . . . . . . . . . . . . . . . . . . .456
Displaying IGMP snooping mcache information . . . . . . . . . . .457
Displaying software resource usage for VLANs . . . . . . . . . . . .458
Displaying the status of IGMP snooping traffic . . . . . . . . . . . .459
PIM SM snooping show commands. . . . . . . . . . . . . . . . . . . . . . . . .460
Displaying PIM SM snooping information. . . . . . . . . . . . . . . . .460
Displaying PIM SM snooping information on a Layer 2 switch460
Displaying PIM SM snooping information for a specific
group or source group pair . . . . . . . . . . . . . . . . . . . . . . . . . . . .461
Clear commands for IGMP snooping . . . . . . . . . . . . . . . . . . . . . . . .462
Clearing the IGMP mcache . . . . . . . . . . . . . . . . . . . . . . . . . . . .462
Clearing the mcache on a specific VLAN . . . . . . . . . . . . . . . . .462
Clearing traffic on a specific VLAN . . . . . . . . . . . . . . . . . . . . . .463
Clearing IGMP counters on VLANs . . . . . . . . . . . . . . . . . . . . . .463
Chapter 19 Configuring IP Multicast Protocols
Overview of IP multicasting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .465
IPv4 multicast group addresses . . . . . . . . . . . . . . . . . . . . . . . .465
Mapping of IPv4 Multicast group addresses to
Ethernet MAC addresses. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .466
Supported Layer 3 multicast routing protocols . . . . . . . . . . . .466
Multicast terms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .466
PowerConnect B-Series TI24X Configuration Guide xv
53-1002269-02
Changing global IP multicast parameters . . . . . . . . . . . . . . . . . . . .467
Changing dynamic memory allocation for IP multicast groups467
Changing IGMP V1 and V2 parameters . . . . . . . . . . . . . . . . . .468
PIM Dense . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .470
Initiating PIM multicasts on a network . . . . . . . . . . . . . . . . . . .470
Pruning a multicast tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .470
Grafts to a multicast Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . .472
PIM DM versions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .472
Configuring PIM DM. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .473
Failover time in a multi-path topology . . . . . . . . . . . . . . . . . . . 477
Modifying the TTL. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .477
PIM Sparse . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .478
PIM Sparse switch types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .478
RP paths and SPT paths . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .479
Configuring PIM Sparse. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .479
Displaying PIM Sparse configuration information
and statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .489
Passive multicast route insertion. . . . . . . . . . . . . . . . . . . . . . . . . . .501
Multicast Source Discovery Protocol (MSDP) . . . . . . . . . . . . . . . . .501
Peer Reverse Path Forwarding (RPF) flooding . . . . . . . . . . . . .503
Source active caching . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .503
Configuring MSDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .504
Designating an interface IP address as
the RP IP address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .505
Filtering MSDP source-group pairs . . . . . . . . . . . . . . . . . . . . . .506
MSDP mesh groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .509
Displaying MSDP information . . . . . . . . . . . . . . . . . . . . . . . . . .515
Clearing MSDP information. . . . . . . . . . . . . . . . . . . . . . . . . . . .519
Using ACLs to control multicast features. . . . . . . . . . . . . . . . . . . . .520
Using ACLs to limit static RP groups. . . . . . . . . . . . . . . . . . . . .520
Using ACLs to limit PIM RP candidate advertisement . . . . . . .522
Configuring a static multicast route. . . . . . . . . . . . . . . . . . . . . . . . .523
Tracing a multicast route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .525
Displaying the multicast configuration for another multicast router526
IGMP V3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .527
Default IGMP version. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .528
Compatibility with IGMP V1 and V2 . . . . . . . . . . . . . . . . . . . . .528
Globally enabling the IGMP version . . . . . . . . . . . . . . . . . . . . .528
Enabling the IGMP version per interface setting. . . . . . . . . . .528
Enabling the IGMP version on a physical port within
a virtual routing interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . .529
Enabling membership tracking and fast leave . . . . . . . . . . . .529
Setting the query interval . . . . . . . . . . . . . . . . . . . . . . . . . . . . .530
Setting the group membership time. . . . . . . . . . . . . . . . . . . . .530
Setting the maximum response time . . . . . . . . . . . . . . . . . . . .530
IGMP V3 and source specific multicast protocols . . . . . . . . . .531
Displaying IGMP V3 information on Layer 3 Switches. . . . . . .531
Clearing IGMP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535
xvi PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
IGMP Proxy. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535
Configuration notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .535
Configuring IGMP Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .536
Displaying IGMP Proxy traffic . . . . . . . . . . . . . . . . . . . . . . . . . .536
Chapter 20 Configuring LLDP
Terms used in this chapter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .537
LLDP overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .538
Benefits of LLDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .538
General operating principles . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .539
Operating modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .539
LLDP packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .540
TLV support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .540
MIB support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .543
Syslog messages. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .543
Configuring LLDP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .544
Configuration notes and considerations . . . . . . . . . . . . . . . . .544
Enabling and disabling LLDP. . . . . . . . . . . . . . . . . . . . . . . . . . .545
Changing a port LLDP operating mode . . . . . . . . . . . . . . . . . .545
Specifying the maximum number of LLDP neighbors. . . . . . .546
Enabling LLDP SNMP notifications and syslog messages . . .547
Changing the minimum time between LLDP transmissions. .548
Changing the interval between regular LLDP transmissions .548
Changing the holdtime multiplier for transmit TTL . . . . . . . . .549
Changing the minimum time between port reinitializations. .549
LLDP TLVs advertised by the device . . . . . . . . . . . . . . . . . . . . .549
Displaying LLDP statistics and configuration settings. . . . . . .555
LLDP configuration summary . . . . . . . . . . . . . . . . . . . . . . . . . .555
LLDP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .556
LLDP neighbors . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .557
LLDP neighbors detail . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .558
LLDP configuration details . . . . . . . . . . . . . . . . . . . . . . . . . . . .560
Resetting LLDP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .561
Clearing cached LLDP neighbor information. . . . . . . . . . . . . . . . . .561
Chapter 21 Configuring IP
Basic configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .563
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .563
IP interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .564
IP packet flow through a Layer 3 Switch. . . . . . . . . . . . . . . . . .564
IP route exchange protocols . . . . . . . . . . . . . . . . . . . . . . . . . . .569
IP multicast protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .569
IP interface redundancy protocols . . . . . . . . . . . . . . . . . . . . . .570
Access Control Lists and IP access policies. . . . . . . . . . . . . . .570
PowerConnect B-Series TI24X Configuration Guide xvii
53-1002269-02
Basic IP parameters and defaults – Layer 3 Switches. . . . . . . . . .570
When parameter changes take effect . . . . . . . . . . . . . . . . . . . 571
IP global parameters – Layer 3 Switches. . . . . . . . . . . . . . . . . 571
IP interface parameters – Layer 3 Switches . . . . . . . . . . . . . .575
Basic IP parameters and defaults – Layer 2 Switches. . . . . . . . . . 576
IP global parameters – Layer 2 Switches. . . . . . . . . . . . . . . . .576
Interface IP parameters – Layer 2 Switches . . . . . . . . . . . . . .578
Configuring IP parameters – Layer 3 Switches . . . . . . . . . . . . . . . .578
Configuring IP addresses. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .579
Configuring packet parameters . . . . . . . . . . . . . . . . . . . . . . . .581
Changing the router ID. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .584
Specifying a single source interface for Telnet,
TACACS/TACACS+, or RADIUS Packets . . . . . . . . . . . . . . . . . . .585
Configuring ARP parameters. . . . . . . . . . . . . . . . . . . . . . . . . . .587
Configuring forwarding parameters . . . . . . . . . . . . . . . . . . . . .592
Disabling ICMP messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . .594
Configuring static routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .596
Configuring a default network route . . . . . . . . . . . . . . . . . . . . .604
Configuring IP load sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . .605
Configuring IRDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .608
Configuring RARP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .610
Configuring UDP broadcast and IP helper parameters . . . . . .612
Configuring BootP/DHCP relay parameters . . . . . . . . . . . . . . .615
Configuring IP parameters – Layer 2 Switches . . . . . . . . . . . . . . . . 616
Configuring the management IP address and specifying
the default gateway . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .616
Configuring Domain Name Server (DNS) resolver. . . . . . . . . . 617
Changing the TTL threshold . . . . . . . . . . . . . . . . . . . . . . . . . . .619
Configuring DHCP Assist . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .619
Displaying IP configuration information and statistics . . . . . . . . . .623
Changing the network mask display to prefix format . . . . . . .623
Displaying IP information – Layer 3 Switches . . . . . . . . . . . . .623
Displaying IP information – Layer 2 Switches . . . . . . . . . . . . .637
Chapter 22 Configuring RIP
RIP overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .643
ICMP host unreachable message for undeliverable ARPs . . .643
RIP parameters and defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .643
RIP global parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .644
RIP interface parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . .644
xviii PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring RIP parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .645
Enabling RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .645
Configuring metric parameters . . . . . . . . . . . . . . . . . . . . . . . . .646
Changing the administrative distance. . . . . . . . . . . . . . . . . . .647
Configuring redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . . .647
Configuring route learning and advertising parameters . . . . .650
Changing the route loop prevention method . . . . . . . . . . . . . .651
Suppressing RIP route advertisement on a VRRP
or VRRPE backup interface . . . . . . . . . . . . . . . . . . . . . . . . . . . .652
Configuring RIP route filters . . . . . . . . . . . . . . . . . . . . . . . . . . .652
Displaying RIP filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .653
Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . . . . . .654
Chapter 23 Configuring OSPF Version 2 (IPv4)
Overview of OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .657
OSPF point-to-point Links . . . . . . . . . . . . . . . . . . . . . . . . . . . . .658
Designated routers in multi-access networks . . . . . . . . . . . . .659
Designated router election in multi-access networks . . . . . . .659
OSPF RFC 1583 and 2178 compliance . . . . . . . . . . . . . . . . . .660
Reduction of equivalent AS External LSAs . . . . . . . . . . . . . . . .661
Support for OSPF RFC 2328 Appendix E . . . . . . . . . . . . . . . . .663
Dynamic OSPF activation and configuration . . . . . . . . . . . . . .664
PowerConnect B-Series TI24X Configuration Guide xix
53-1002269-02
Configuring OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .665
Configuration rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .665
OSPF parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .665
Enable OSPF on the router . . . . . . . . . . . . . . . . . . . . . . . . . . . .666
Assign OSPF areas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .667
Assigning an area range (optional). . . . . . . . . . . . . . . . . . . . . .671
Assigning interfaces to an area . . . . . . . . . . . . . . . . . . . . . . . .671
Modify interface defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . .671
Change the timer for OSPF authentication changes. . . . . . . . 674
Block flooding of outbound LSAs on specific OSPF interfaces675
Assign virtual links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .675
Modify virtual link parameters . . . . . . . . . . . . . . . . . . . . . . . . .677
Changing the reference bandwidth for the cost on
OSPF interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .678
Define redistribution filters . . . . . . . . . . . . . . . . . . . . . . . . . . . .680
Prevent specific OSPF routes from being installed in the
IP route table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .682
Modify default metric for redistribution . . . . . . . . . . . . . . . . . .685
Enable route redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . .686
Disable or re-enable load sharing. . . . . . . . . . . . . . . . . . . . . . .687
Configure external route summarization . . . . . . . . . . . . . . . . .688
Configure default route origination. . . . . . . . . . . . . . . . . . . . . .690
Modify SPF timers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .691
Modify redistribution metric type . . . . . . . . . . . . . . . . . . . . . . .691
Modify administrative distance. . . . . . . . . . . . . . . . . . . . . . . . .692
Configure OSPF group Link State Advertisement
(LSA) pacing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .693
Modify OSPF traps generated . . . . . . . . . . . . . . . . . . . . . . . . . .693
Modify OSPF standard compliance setting . . . . . . . . . . . . . . .694
Modify exit overflow interval . . . . . . . . . . . . . . . . . . . . . . . . . . .694
Specifying the types of OSPF Syslog messages to log . . . . . .695
Clearing OSPF information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .695
Clearing OSPF neighbor information . . . . . . . . . . . . . . . . . . . .695
Clearing OSPF topology information . . . . . . . . . . . . . . . . . . . . .696
Clearing redistributed routes from the OSPF routing table. . .696
Clearing information for OSPF areas . . . . . . . . . . . . . . . . . . . .696
Displaying OSPF information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .697
Displaying general OSPF configuration information . . . . . . . .697
Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . .698
Displaying OSPF area information . . . . . . . . . . . . . . . . . . . . . .700
Displaying OSPF neighbor information. . . . . . . . . . . . . . . . . . .700
Displaying OSPF interface information. . . . . . . . . . . . . . . . . . .702
Displaying OSPF route information . . . . . . . . . . . . . . . . . . . . . .704
Displaying OSPF external link state information . . . . . . . . . . .706
Displaying OSPF link state information . . . . . . . . . . . . . . . . . .707
Displaying the data in an LSA . . . . . . . . . . . . . . . . . . . . . . . . . .707
Displaying OSPF virtual neighbor information . . . . . . . . . . . . .708
Displaying OSPF virtual link information . . . . . . . . . . . . . . . . .708
Displaying OSPF ABR and ASBR information. . . . . . . . . . . . . .708
Displaying OSPF trap status . . . . . . . . . . . . . . . . . . . . . . . . . . .709
xx PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Chapter 24 Configuring VRRP and VRRPE
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .711
Overview of VRRP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .711
Overview of VRRPE. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .716
Configuration note . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .719
Comparison of VRRP and VRRPE. . . . . . . . . . . . . . . . . . . . . . . . . . . 719
VRRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 719
VRRPE. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .719
Architectural differences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 719
VRRP and VRRPE parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . .720
Configuring basic VRRP parameters . . . . . . . . . . . . . . . . . . . . . . . .722
Configuring the Owner. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .723
Configuring a Backup. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .723
Configuration rules for VRRP. . . . . . . . . . . . . . . . . . . . . . . . . . .723
Configuring basic VRRPE parameters . . . . . . . . . . . . . . . . . . . . . . .723
Configuration rules for VRRPE . . . . . . . . . . . . . . . . . . . . . . . . .724
Note regarding disabling VRRP or VRRPE . . . . . . . . . . . . . . . . . . . .724
Configuring additional VRRP and VRRPE parameters . . . . . . . . . .724
Forcing a Master router to abdicate to a standby router . . . . . . . .731
Displaying VRRP and VRRPE information . . . . . . . . . . . . . . . . . . . .732
Displaying summary information . . . . . . . . . . . . . . . . . . . . . . .732
Displaying detailed information . . . . . . . . . . . . . . . . . . . . . . . .734
Displaying statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .739
Clearing VRRP or VRRPE statistics . . . . . . . . . . . . . . . . . . . . . .740
Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . . 740
Configuration examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .742
VRRP example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .742
VRRPE example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .743
Chapter 25 Configuring BGP4
Overview of BGP4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .745
Relationship between the BGP4 route table and the IP route table
74 6
How BGP4 selects a path for a route . . . . . . . . . . . . . . . . . . . . 747
BGP4 message types. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 748
Basic configuration and activation for BGP4 . . . . . . . . . . . . . . . . .750
Note regarding disabling BGP4. . . . . . . . . . . . . . . . . . . . . . . . .751
BGP4 parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .751
When parameter changes take effect . . . . . . . . . . . . . . . . . . .752
Memory considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .754
Memory configuration options obsoleted by dynamic memory754
PowerConnect B-Series TI24X Configuration Guide xxi
53-1002269-02
Basic configuration tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .755
Enabling BGP4 on the router . . . . . . . . . . . . . . . . . . . . . . . . . .755
Changing the router ID. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .755
Setting the local AS number . . . . . . . . . . . . . . . . . . . . . . . . . . .756
Adding a loopback interface . . . . . . . . . . . . . . . . . . . . . . . . . . .756
Adding BGP4 neighbors. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .756
Adding a BGP4 peer group . . . . . . . . . . . . . . . . . . . . . . . . . . . .763
Optional configuration tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .767
Changing the Keep Alive Time and Hold Time . . . . . . . . . . . . .767
Changing the BGP4 next-hop update timer . . . . . . . . . . . . . . .768
Enabling fast external fallover. . . . . . . . . . . . . . . . . . . . . . . . . .768
Changing the maximum number of paths for
BGP4 load sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .769
Customizing BGP4 load sharing . . . . . . . . . . . . . . . . . . . . . . . .770
Specifying a list of networks to advertise. . . . . . . . . . . . . . . . . 771
Changing the default local preference . . . . . . . . . . . . . . . . . . .772
Using the IP default route as a valid next hop for
a BGP4 route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .773
Advertising the default route. . . . . . . . . . . . . . . . . . . . . . . . . . .773
Changing the default MED (Metric) used for
route redistribution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .773
Enabling next-hop recursion . . . . . . . . . . . . . . . . . . . . . . . . . . .774
Changing administrative distances . . . . . . . . . . . . . . . . . . . . .777
Requiring the first AS to be the neighbor AS . . . . . . . . . . . . . .778
Disabling or re-enabling comparison of the AS-Path length . .778
Enabling or disabling comparison of the router IDs . . . . . . . .779
Configuring the Layer 3 Switch to always compare
Multi-Exit Discriminators (MEDs) . . . . . . . . . . . . . . . . . . . . . . .779
Treating missing MEDs as the worst MEDs . . . . . . . . . . . . . . .780
Configuring route reflection parameters . . . . . . . . . . . . . . . . .780
Aggregating routes advertised to BGP4 neighbors . . . . . . . . .784
Modifying redistribution parameters . . . . . . . . . . . . . . . . . . . . . . . .785
Redistributing connected routes. . . . . . . . . . . . . . . . . . . . . . . .785
Redistributing RIP routes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .786
Redistributing OSPF external routes. . . . . . . . . . . . . . . . . . . . .786
Redistributing static routes. . . . . . . . . . . . . . . . . . . . . . . . . . . .787
Disabling or re-enabling re-advertisement of all learned
BGP4 routes to all BGP4 neighbors . . . . . . . . . . . . . . . . . . . . .787
Redistributing IBGP routes into RIP and OSPF. . . . . . . . . . . . .788
Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .788
Filtering specific IP addresses . . . . . . . . . . . . . . . . . . . . . . . . .788
Filtering AS-paths. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .790
Filtering communities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .793
Defining IP prefix lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .795
Defining neighbor distribute lists . . . . . . . . . . . . . . . . . . . . . . .796
Defining route maps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .797
Using a table map to set the rag value. . . . . . . . . . . . . . . . . . .805
Configuring cooperative BGP4 route filtering. . . . . . . . . . . . . .806
xxii PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring route flap dampening . . . . . . . . . . . . . . . . . . . . . . . . . .809
Globally configuring route flap dampening . . . . . . . . . . . . . . .810
Using a route map to configure route flap dampening
for specific routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .810
Using a route map to configure route flap dampening for
a specific neighbor. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .811
Removing route dampening from a route. . . . . . . . . . . . . . . . .812
Removing route dampening from a neighbor routes
suppressed due to aggregation . . . . . . . . . . . . . . . . . . . . . . . .812
Displaying and clearing route flap dampening statistics . . . .814
Generating traps for BGP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .815
Displaying BGP4 information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .816
Displaying summary BGP4 information . . . . . . . . . . . . . . . . . . 816
Displaying the active BGP4 configuration . . . . . . . . . . . . . . . .818
Displaying CPU utilization statistics . . . . . . . . . . . . . . . . . . . . .819
Displaying summary neighbor information . . . . . . . . . . . . . . .820
Displaying BGP4 neighbor information. . . . . . . . . . . . . . . . . . .822
Displaying peer group information . . . . . . . . . . . . . . . . . . . . . .833
Displaying summary route information . . . . . . . . . . . . . . . . . .834
Displaying the BGP4 route table. . . . . . . . . . . . . . . . . . . . . . . .835
Displaying BGP4 route-attribute entries. . . . . . . . . . . . . . . . . .841
Displaying the routes BGP4 has placed in the
IP route table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .842
Displaying route flap dampening statistics . . . . . . . . . . . . . . .843
Displaying the active route map configuration . . . . . . . . . . . .844
Updating route information and resetting a neighbor session . . .845
Using soft reconfiguration . . . . . . . . . . . . . . . . . . . . . . . . . . . . .845
Dynamically requesting a route refresh from
a BGP4 neighbor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .848
Closing or resetting a neighbor session . . . . . . . . . . . . . . . . . .851
Clearing and resetting BGP4 routes in the IP route table . . . .851
Clearing traffic counters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .852
Clearing route flap dampening statistics. . . . . . . . . . . . . . . . . . . . .852
Removing route flap dampening . . . . . . . . . . . . . . . . . . . . . . . . . . .852
Clearing diagnostic buffers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .853
Chapter 26 Securing Access to Management Functions
Securing access methods . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .855
PowerConnect B-Series TI24X Configuration Guide xxiii
53-1002269-02
Restricting remote access to management functions . . . . . . . . . .857
Using ACLs to restrict remote access . . . . . . . . . . . . . . . . . . . .857
Defining the console idle time . . . . . . . . . . . . . . . . . . . . . . . . .859
Restricting remote access to the device to specific IP addresses860
Restricting access to the device based on IP or
MAC address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .861
Specifying the maximum number of login attempts
for Telnet access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .861
Restricting remote access to the device to specific
VLAN IDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .862
Designated VLAN for Telnet management sessions to a Layer 2
Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .863
Device management security . . . . . . . . . . . . . . . . . . . . . . . . . .863
Disabling specific access methods. . . . . . . . . . . . . . . . . . . . . .864
Setting passwords. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .865
Setting a Telnet password . . . . . . . . . . . . . . . . . . . . . . . . . . . . .866
Setting passwords for management privilege levels. . . . . . . .866
Recovering from a lost password . . . . . . . . . . . . . . . . . . . . . . .868
Displaying the SNMP community string . . . . . . . . . . . . . . . . . .869
Disabling password encryption . . . . . . . . . . . . . . . . . . . . . . . . .869
Specifying a minimum password length. . . . . . . . . . . . . . . . . .869
Setting up local user accounts. . . . . . . . . . . . . . . . . . . . . . . . . . . . .870
Enhancements to username and password . . . . . . . . . . . . . .870
Configuring a local user account . . . . . . . . . . . . . . . . . . . . . . . 874
Create password option. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .876
Changing a local user password . . . . . . . . . . . . . . . . . . . . . . . .876
Configuring TACACS/TACACS+ security . . . . . . . . . . . . . . . . . . . . . .877
How TACACS+ differs from TACACS. . . . . . . . . . . . . . . . . . . . . .877
TACACS/TACACS+ authentication, authorization,
and accounting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 877
TACACS authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .878
TACACS/TACACS+ configuration considerations . . . . . . . . . . .881
Enabling TACACS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .881
Identifying the TACACS/TACACS+ servers. . . . . . . . . . . . . . . . .882
Specifying different servers for individual AAA functions . . . .883
Setting optional TACACS/TACACS+ parameters . . . . . . . . . . . .883
Configuring authentication-method lists for TACACS/TACACS+884
Configuring TACACS+ authorization . . . . . . . . . . . . . . . . . . . . .886
Configuring TACACS+ accounting . . . . . . . . . . . . . . . . . . . . . . .889
Configuring an interface as the source for all
TACACS/TACACS+ packets. . . . . . . . . . . . . . . . . . . . . . . . . . . . .891
Displaying TACACS/TACACS+ statistics and
configuration information . . . . . . . . . . . . . . . . . . . . . . . . . . . . .891
xxiv PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Configuring RADIUS security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .892
RADIUS authentication, authorization, and accounting . . . . .893
RADIUS configuration considerations. . . . . . . . . . . . . . . . . . . .896
RADIUS configuration procedure . . . . . . . . . . . . . . . . . . . . . . .896
Configuring Dell-specific attributes on the RADIUS server . . .896
Enabling SNMP to configure RADIUS . . . . . . . . . . . . . . . . . . . .897
Identifying the RADIUS server to the device. . . . . . . . . . . . . . .898
Specifying different servers for individual AAA functions . . . .898
Configuring a RADIUS server per port . . . . . . . . . . . . . . . . . . .898
Mapping a RADIUS server to individual ports . . . . . . . . . . . . .899
Setting RADIUS parameters . . . . . . . . . . . . . . . . . . . . . . . . . . .900
Configuring authentication-method lists for RADIUS. . . . . . . .901
Configuring RADIUS authorization . . . . . . . . . . . . . . . . . . . . . .903
Configuring RADIUS accounting . . . . . . . . . . . . . . . . . . . . . . . .905
Configuring an interface as the source for all
RADIUS packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .906
Displaying RADIUS configuration information . . . . . . . . . . . . .906
Configuring authentication-method lists . . . . . . . . . . . . . . . . . . . . .907
Configuration considerations for authentication- method lists908
Examples of authentication-method lists. . . . . . . . . . . . . . . . .909
Chapter 27 Configuring SSH2 and SCP
SSH version 2 support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .911
Tested SSH2 clients. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .911
Supported features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .912
Unsupported features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .912
AES encryption for SSH2. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .912
Configuring SSH2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .913
Recreating SSH keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .914
Generating a host key pair . . . . . . . . . . . . . . . . . . . . . . . . . . . .914
Configuring DSA challenge-response authentication . . . . . . .915
Setting optional parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .917
Setting the number of SSH authentication retries . . . . . . . . .918
Deactivating user authentication . . . . . . . . . . . . . . . . . . . . . . .918
Enabling empty password logins. . . . . . . . . . . . . . . . . . . . . . . .918
Setting the SSH port number . . . . . . . . . . . . . . . . . . . . . . . . . .919
Setting the SSH login timeout value. . . . . . . . . . . . . . . . . . . . .919
Designating an interface as the source for all SSH
packets (Layer 3 code only). . . . . . . . . . . . . . . . . . . . . . . . . . . .919
Configuring the maximum idle time for SSH sessions . . . . . .920
Filtering SSH access using ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . .920
Terminating an active SSH connection . . . . . . . . . . . . . . . . . . . . . .920
Displaying SSH connection information . . . . . . . . . . . . . . . . . . . . .920
Using Secure copy with SSH2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . .922
Enabling and disabling SCP . . . . . . . . . . . . . . . . . . . . . . . . . . .922
Example file transfers using SCP . . . . . . . . . . . . . . . . . . . . . . .922
PowerConnect B-Series TI24X Configuration Guide xxv
53-1002269-02
Chapter 28 Configuring 802.1X Port Security
IETF RFC support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .925
How 802.1X port security works . . . . . . . . . . . . . . . . . . . . . . . . . . .925
Device roles in an 802.1X configuration . . . . . . . . . . . . . . . . .925
Communication between the devices . . . . . . . . . . . . . . . . . . .926
Controlled and uncontrolled ports . . . . . . . . . . . . . . . . . . . . . .928
Message exchange during authentication. . . . . . . . . . . . . . . .929
Authenticating multiple hosts connected to the same port . .931
802.1X port security and sFlow . . . . . . . . . . . . . . . . . . . . . . . .933
Configuring 802.1X port security. . . . . . . . . . . . . . . . . . . . . . . . . . .933
Configuring an authentication method list for 802.1X . . . . . .934
Setting RADIUS parameters . . . . . . . . . . . . . . . . . . . . . . . . . . .934
Configuring dynamic VLAN assignment for 802.1X ports . . . .938
Dynamically applying IP ACLs and MAC filters to
802.1X ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .941
Enabling 802.1X port security. . . . . . . . . . . . . . . . . . . . . . . . . .945
Setting the port control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .945
Configuring periodic re-authentication . . . . . . . . . . . . . . . . . . .946
Re-authenticating a port manually . . . . . . . . . . . . . . . . . . . . . .947
Setting the quiet period. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .947
Specifying the wait interval and number of EAP-request/
identity frame retransmissions from the
PowerConnect device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .947
Specifying the wait interval and number of EAP-request/
identity frame retransmissions from the RADIUS server . . . .948
Specifying a timeout for retransmission of messages to the
authentication server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .949
Initializing 802.1X on a port . . . . . . . . . . . . . . . . . . . . . . . . . . .949
Allowing access to multiple hosts. . . . . . . . . . . . . . . . . . . . . . .949
Configuring VLAN access for non-EAP-capable clients . . . . . .952
Displaying 802.1X information. . . . . . . . . . . . . . . . . . . . . . . . . . . . .953
Displaying 802.1X configuration information . . . . . . . . . . . . .953
Displaying 802.1X statistics . . . . . . . . . . . . . . . . . . . . . . . . . . .955
Clearing 802.1X statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . .956
Displaying dynamically assigned VLAN information . . . . . . . .957
Displaying information about dynamically applied
MAC filters and IP ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .958
Displaying 802.1X multiple-host authentication
information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .959
Sample 802.1X configurations. . . . . . . . . . . . . . . . . . . . . . . . . . . . .963
Point-to-point configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . .963
Hub configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .964
802.1X Authentication with dynamic VLAN assignment . . . . .965
Using multi-device port authentication and 802.1X security
on the same port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .966
Configuring Dell-specific attributes on the RADIUS server . . .967
Example configurations. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .968
xxvi PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Chapter 29 Using the MAC Port Security Feature
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .973
Local and global resources . . . . . . . . . . . . . . . . . . . . . . . . . . . .973
Configuration notes and feature limitations . . . . . . . . . . . . . . 974
Configuring the MAC port security feature . . . . . . . . . . . . . . . . . . . 974
Enabling the MAC port security feature . . . . . . . . . . . . . . . . . . 974
Setting the maximum number of secure MAC addresses
for an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .975
Setting the port security age timer . . . . . . . . . . . . . . . . . . . . . .975
Specifying secure MAC addresses . . . . . . . . . . . . . . . . . . . . . .975
Autosaving secure MAC addresses to the
startup-config file. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 976
Specifying the action taken when a security
violation occurs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 976
Clearing port security statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . .978
Clearing restricted MAC addresses. . . . . . . . . . . . . . . . . . . . . .978
Clearing violation statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . .978
Displaying port security information . . . . . . . . . . . . . . . . . . . . . . . .978
Displaying port security settings . . . . . . . . . . . . . . . . . . . . . . . .978
Displaying the secure MAC addresses . . . . . . . . . . . . . . . . . . .979
Displaying port security statistics . . . . . . . . . . . . . . . . . . . . . . .979
Displaying restricted MAC addresses on a port . . . . . . . . . . . .980
Chapter 30 Configuring Multi-Device Port Authentication
How multi-device port authentication works. . . . . . . . . . . . . . . . . .981
RADIUS authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .981
Authentication-failure actions . . . . . . . . . . . . . . . . . . . . . . . . . .982
Supported RADIUS attributes . . . . . . . . . . . . . . . . . . . . . . . . . .982
Support for dynamic VLAN assignment . . . . . . . . . . . . . . . . . .983
Support for dynamic ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . .983
Support for authenticating multiple MAC addresses
on an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .983
Using multi-device port authentication and
802.1X security on the same port . . . . . . . . . . . . . . . . . . . . . . . . . .983
Configuring Dell-specific attributes on the RADIUS server . . .984
PowerConnect B-Series TI24X Configuration Guide xxvii
53-1002269-02
Configuring multi-device port authentication . . . . . . . . . . . . . . . . .985
Enabling multi-device port authentication . . . . . . . . . . . . . . . .985
Specifying the format of the MAC addresses sent
to the RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .986
Specifying the authentication-failure action . . . . . . . . . . . . . .986
Generating traps for multi-device port authentication . . . . . .987
Defining MAC address filters. . . . . . . . . . . . . . . . . . . . . . . . . . .987
Configuring dynamic VLAN assignment . . . . . . . . . . . . . . . . . .988
Dynamically applying IP ACLs to authenticated MAC
addresses. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .990
Enabling denial of service attack protection . . . . . . . . . . . . . .992
Clearing authenticated MAC addresses. . . . . . . . . . . . . . . . . .993
Disabling aging for authenticated MAC addresses . . . . . . . . .993
Changing the hardware aging period for blocked
MAC addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .994
Specifying the aging time for blocked MAC addresses . . . . . .995
Specifying the RADIUS timeout action . . . . . . . . . . . . . . . . . . .995
Multi-device port authentication password override . . . . . . . .996
Limiting the number of authenticated MAC addresses. . . . . .997
Displaying multi-device port authentication information . . . . . . . .997
Displaying authenticated MAC address information . . . . . . . .997
Displaying multi-device port authentication configuration
information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .998
Displaying multi-device port authentication information
for a specific MAC address or port . . . . . . . . . . . . . . . . . . . . . .998
Displaying the authenticated MAC addresses . . . . . . . . . . . . .999
Displaying the non-authenticated MAC addresses . . . . . . . . .999
Displaying multi-device port authentication
information for a port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1000
Displaying multi-device port authentication settings
and authenticated MAC addresses . . . . . . . . . . . . . . . . . . . .1001
Chapter 31 Protecting Against Denial of Service Attacks
Protecting against Smurf attacks. . . . . . . . . . . . . . . . . . . . . . . . . 1005
Avoiding being an intermediary in a Smurf attack. . . . . . . . 1005
Avoiding being a victim in a Smurf attack . . . . . . . . . . . . . . 1006
Protection against ICMP attacks in PowerConnect devices 1006
Protecting against TCP SYN attacks. . . . . . . . . . . . . . . . . . . . . . . .1007
Protection against TCP-SYN attacks in PowerConnect
devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1007
TCP security enhancement . . . . . . . . . . . . . . . . . . . . . . . . . . 1008
Displaying statistics about packets dropped
because of DoS attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1009
Displaying statistics about packets dropped because of
DoS attacks in PowerConnect devices . . . . . . . . . . . . . . . . .1010
Chapter 32 Securing SNMP Access
SNMP overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1011
xxviii PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Establishing SNMP community strings . . . . . . . . . . . . . . . . . . . . .1011
Encryption of SNMP community strings . . . . . . . . . . . . . . . . .1012
Adding an SNMP community string . . . . . . . . . . . . . . . . . . . .1012
Displaying the SNMP community strings . . . . . . . . . . . . . . . .1013
Configuring your NMS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1014
Configuring SNMP version 3 . . . . . . . . . . . . . . . . . . . . . . . . . .1015
Defining the engine id . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1015
Defining an SNMP group . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1016
Defining an SNMP user account. . . . . . . . . . . . . . . . . . . . . . .1017
Defining SNMP views . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1018
SNMP version 3 traps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1019
Defining an SNMP group and specifying which
view is notified of traps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1019
Trap MIB changes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1021
Specifying an IPv6 host as an SNMP trap receiver . . . . . . . .1021
Displaying SNMP Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . 1022
Displaying the Engine ID . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1022
Displaying SNMP groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1022
Displaying user information. . . . . . . . . . . . . . . . . . . . . . . . . . 1022
Interpreting varbinds in report packets . . . . . . . . . . . . . . . . 1023
SNMP v3 Configuration examples . . . . . . . . . . . . . . . . . . . . . . . . 1023
Simple SNMP v3 configuration . . . . . . . . . . . . . . . . . . . . . . . 1023
More detailed SNMP v3 configuration . . . . . . . . . . . . . . . . . .1024
Chapter 33 Enabling the Foundry Discovery Protocol and Reading Cisco
Discovery Protocol Packets
Using FDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1025
Configuring FDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1025
Displaying FDP information. . . . . . . . . . . . . . . . . . . . . . . . . . 1026
Clearing FDP and CDP information. . . . . . . . . . . . . . . . . . . . 1029
Reading CDP packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1030
Enabling interception of CDP packets globally . . . . . . . . . . 1030
Enabling interception of CDP packets on an interface . . . . 1030
Displaying CDP information. . . . . . . . . . . . . . . . . . . . . . . . . . 1030
Clearing CDP information . . . . . . . . . . . . . . . . . . . . . . . . . . . 1032
Chapter 34 Using Syslog
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1035
Displaying Syslog messages. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1036
Enabling real-time display of Syslog messages. . . . . . . . . . 1036
Enabling real-time display for a Telnet or SSH session. . . . 1036
Show log on all terminals . . . . . . . . . . . . . . . . . . . . . . . . . . . .1037
PowerConnect B-Series TI24X Configuration Guide xxix
53-1002269-02
Configuring the Syslog service . . . . . . . . . . . . . . . . . . . . . . . . . . . .1037
Displaying the Syslog configuration . . . . . . . . . . . . . . . . . . . .1037
Disabling or re-enabling Syslog. . . . . . . . . . . . . . . . . . . . . . . .1041
Specifying a Syslog server. . . . . . . . . . . . . . . . . . . . . . . . . . . .1041
Specifying an additional Syslog server. . . . . . . . . . . . . . . . . .1041
Disabling logging of a message level . . . . . . . . . . . . . . . . . . 1042
Changing the number of entries the local buffer can hold. 1042
Changing the log facility . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1042
Displaying Interface names in Syslog messages. . . . . . . . . 1043
Displaying TCP or UDP port numbers in Syslog messages . 1044
Clearing the Syslog messages from the local buffer . . . . . . 1044
Syslog messages. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1044
Appendix A Network Monitoring
Basic management. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1069
Viewing system information . . . . . . . . . . . . . . . . . . . . . . . . . 1069
Viewing configuration information . . . . . . . . . . . . . . . . . . . . 1069
Viewing port statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1070
Viewing STP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1072
Clearing statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1072
Traffic counters for outbound traffic. . . . . . . . . . . . . . . . . . . .1073
RMON support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1076
Maximum number of entries allowed in the
RMON control table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1076
Statistics (RMON group 1). . . . . . . . . . . . . . . . . . . . . . . . . . . .1076
History (RMON group 2). . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1078
Alarm (RMON group 3). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1079
Event (RMON group 9). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1079
sFlow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1079
sFlow support for IPv6 packets. . . . . . . . . . . . . . . . . . . . . . . 1080
Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . .1081
Configuring and enabling sFlow . . . . . . . . . . . . . . . . . . . . . . 1082
Displaying sFlow information . . . . . . . . . . . . . . . . . . . . . . . . .1087
Configuring a utilization list for an uplink port . . . . . . . . . . . . . . 1090
Command syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1090
Displaying utilization percentages for an uplink . . . . . . . . . .1091
Appendix B Software Specifications
IEEE compliance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1093
RFC support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1093
Internet drafts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1098
xxx PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
Loading...