-
Catalyst 2940 Switch Software Configuration Guide, 12.1(20)EA2
-
Index
-
Preface
-
Overview
-
Using the Command-Line Interface
-
Getting Started with CMS
-
Assigning the Switch IP Address and Default Gateway
-
Clustering Switches
-
Administering the Switch
-
Configuring Switch-Based Authentication
-
Configuring 802.1X Port-Based Authentication
-
Configuring Interface Characteristics
-
Configuring SmartPort Macros
-
Configuring STP
-
Configuring MSTP
-
Configuring Optional Spanning-Tree Features
-
Configuring VLANs
-
Configuring VTP
-
Configuring Voice VLAN
-
Configuring IGMP Snooping and MVR
-
Configuring Port-Based Traffic Control
-
Configuring UDLD
-
Configuring CDP
-
Configuring SPAN
-
Configuring RMON
-
Configuring System Message Logging
-
Configuring SNMP
-
Configuring QoS
-
Configuring EtherChannels
-
Troubleshooting
-
Supported MIBs
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - L - M - N - P - Q - R - S - T - U - V - W - X -
Index
Numerics
802.1D
802.1Q
and trunk ports 9-2
configuration limitations 14-13
encapsulation 14-12
native VLAN for untagged traffic 14-17
802.1s
802.1w
802.1x
802.3x flow control 9-12
A
abbreviating commands 2-3
access control list
access-denied response, VMPS 14-22
accessing
clusters, switch 5-13
command switches 5-10
member switches 5-13
switch clusters 5-13
access list
access ports
defined 9-2
in switch clusters 5-8
accounting
with RADIUS 7-28
ACL 1-4
addresses
displaying the MAC address table 6-27
dynamic
accelerated aging 11-8
changing the aging time 6-23
default aging 11-8
defined 6-21
learning 6-22
removing 6-24
MAC, discovering 6-27
multicast STP address management 11-8
static
adding and removing 6-26
defined 6-21
address resolution 6-27
Address Resolution Protocol
advertisements
CDP 20-1
aggregated ports
aging, accelerating 11-8
aging time
accelerated
for MSTP 12-20
MAC address table 6-23
maximum
for MSTP 12-21
for STP 11-21
alarms, RMON 22-3
allowed-VLAN list 14-15
ARP table
address resolution 6-27
managing 6-27
attributes, RADIUS
vendor-proprietary 7-30
vendor-specific 7-29
audience xxi
authentication
local mode with AAA 7-31
NTP associations 6-4
RADIUS
key 7-21
login 7-23
TACACS+
defined 7-11
key 7-13
login 7-14
See also port-based authentication
authoritative time source, described 6-2
authorization
with RADIUS 7-27
authorized ports with 802.1x 8-4
autoconfiguration 4-3
automatic discovery
adding member switches 5-18
automatic discovery (continued)considerations
beyond a non-candidate device 5-6, 5-7
brand new switches 5-8
connectivity 5-4
non-CDP-capable devices 5-5
non-cluster-capable devices 5-5
creating a cluster standby group 5-20
in switch clusters 5-4
automatic recovery, clusters 5-9
autonegotiation
interface configuration guidelines 9-10
mismatches 27-10
auxiliary VLAN
B
BackboneFast
described 13-5
enabling 13-14
support for 1-3
banners
configuring
login 6-21
message-of-the-day login 6-20
default configuration 6-19
when displayed 6-19
booting
boot loader, function of 4-1
boot process 4-1
boot loader
described 4-1
trap-door mechanism 4-2
BPDU
error-disabled state 13-2
filtering 13-3
RSTP format 12-9
BPDU filtering
described 13-3
enabling 13-12
support for 1-3
BPDU guard
described 13-2
enabling 13-11
support for 1-3
broadcast storm control
configuring 18-2
disabling 18-3
browser configuration 5-1
C
cables, monitoring for unidirectional links 19-1
candidate switch
adding 5-18
automatic discovery 5-4
defined 5-3
HC 5-20
passwords 5-18
requirements 5-3
standby group 5-20
See also command switch, cluster standby group, and member switch
caution, described xxii
CC (command switch) 5-20
CDP
and trusted boundary 25-7
automatic discovery in switch clusters 5-4
configuring 20-2
default configuration 20-2
described 20-1
disabling for routing device 20-3, 20-4
CDP (continued)enabling and disabling
on an interface 20-4
on a switch 20-3
monitoring 20-5
overview 20-1
transmission timer and holdtime, setting 20-2
updates 20-2
Cisco Access Analog Trunk Gateway 1-11
Cisco CallManager software 1-11
Cisco Discovery Protocol
Cisco IOS command-line interface
Cisco IP Phones 1-11
Cisco SoftPhone software 1-11
clearing interfaces 9-15
CLI
abbreviating commands 2-3
command modes 2-1
described 1-6
editing features
enabling and disabling 2-7
keystroke editing 2-7
wrapped lines 2-8
error messages 2-5
getting help 2-3
history
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
managing clusters 5-22
no and default forms of commands 2-3
client mode, VTP 15-3
clock
clusters, switch
accessing 5-13
adding member switches 5-18
automatic discovery 5-4
automatic recovery 5-9
command switch configuration 5-17
compatibility 5-4
creating 5-17
creating a cluster standby group 5-20
described 5-1
LRE profile considerations 5-16
managing
through CLI 5-22
through SNMP 5-23
planning 5-4
planning considerations
automatic discovery 5-4
automatic recovery 5-9
CLI 5-22
host names 5-13
IP addresses 5-13
LRE profiles 5-16
management VLAN 5-15
passwords 5-13
RADIUS 5-14
switch-specific features 5-16
TACACS+ 5-14
redundancy 5-20
troubleshooting 5-22
verifying 5-21
cluster standby group
automatic recovery 5-11
considerations 5-10
creating 5-20
defined 5-2
cluster standby group (continued)requirements 5-3
virtual IP address 5-10
CMS
advantages 1-6
configuration modes 3-5
described 1-6
Front Panel view
described 3-2
menu bar, variations 3-4
operating systems and supported browsers 3-8
Topology view 3-13
wizards 3-6
command-line interface
command modes 2-1
commands
abbreviating 2-3
no and default 2-3
setting privilege levels 7-8
command switch
accessing 5-10
command switch with HSRP disabled (CC) 5-20
configuration conflicts 27-10
defined 5-2
enabling 5-17
password privilege levels 5-23
priority 5-9
recovery
from command-switch failure 5-9
from failure 27-6
from lost member connectivity 27-10
command switch (continued)replacing
with another switch 27-9
with cluster member 27-7
requirements 5-3
See also candidate switch, cluster standby group, member switch, and standby command switch
community strings
for cluster switches 24-4
in clusters 5-14
overview 24-3
SNMP 5-14
configuration conflicts, recovering from lost member connectivity 27-10
configuration examples, network
collapsed backbone and switch cluster 1-9
design concepts
network performance 1-7
network services 1-7
large campus 1-11
small to medium-sized network 1-8
configuration files
limiting TFTP server access 24-13
obtaining with DHCP 4-7
password recovery disable considerations 7-5
system contact and location information 24-12
VMPS database 14-23
configuration modes, CMS 3-5
configuration settings, saving 4-10
configure terminal command 9-5
conflicts, configuration 27-10
connectivity problems 27-11
consistency checks in VTP version 2 15-4
console port, connecting to 2-10
conventions
command xxii
for examples xxii
publication xxii
text xxii
CoS
configuring 25-2
configuring priority queues 25-9
defining 25-3
override priority 16-5
trust priority 16-6
counters, clearing interface 9-15
crashinfo file 27-16
D
daylight saving time 6-14
debugging
enabling all system diagnostics 27-15
enabling for a specific feature 27-14
redirecting error message output 27-15
using commands 27-14
default commands 2-3
default configuration
802.1x 8-6
banners 6-19
CDP 20-2
DNS 6-18
EtherChannel 26-8
IGMP filtering 17-22
IGMP snooping 17-6
IGMP throttling 17-22
initial switch information 4-3
Layer 2 interfaces 9-9
MAC address table 6-23
MSTP 12-12
MVR 17-17
NTP 6-4
optional spanning-tree features 13-10
default configuration (continued)
password and privilege level 7-2
QoS 25-4
RADIUS 7-20
RMON 22-3
RSPAN 21-5
SNMP 24-5
SPAN 21-5
STP 11-11
system message logging 23-3
system name and prompt 6-16
TACACS+ 7-13
UDLD 19-4
VLAN, Layer 2 Ethernet interfaces 14-13
VLANs 14-7
VMPS 14-23
voice VLAN 16-2
VTP 15-6
default gateway 4-10
deleting VLANs 14-9
description command 9-14
detecting indirect link failures, STP 13-5
device discovery protocol 20-1
Device Manager 3-9
DHCP-based autoconfiguration
client request message exchange 4-4
configuring
client side 4-3
DNS 4-6
relay device 4-6
server-side 4-5
TFTP server 4-5
example 4-8
lease options
for IP address information 4-5
for receiving the configuration file 4-5
overview 4-3
relationship to BOOTP 4-3
discovery, clusters
DNS
and DHCP-based autoconfiguration 4-6
default configuration 6-18
displaying the configuration 6-19
overview 6-17
setting up 6-18
documentation, related xxii
document conventions xxii
domain names
DNS 6-17
VTP 15-8
Domain Name System
downloading
image files
using CMS 3-15
duplex mode, configuring 9-10
dynamic access ports
characteristics 14-3
configuring 14-25
defined 9-2
dynamic addresses
dynamic desirable trunking mode 14-13
dynamic port VLAN membership
described 14-22
reconfirming 14-26
troubleshooting 14-28
types of connections 14-25
VMPS database configuration file 14-23
Dynamic Trunking Protocol
E
editing features
enabling and disabling 2-7
keystrokes used 2-7
wrapped lines 2-8
enable password 7-4
enable secret password 7-4
encapsulation 25-2
encryption for passwords 7-4
error messages
during command entry 2-5
setting the display destination device 23-4
severity levels 23-8
system message format 23-2
EtherChannel
automatic creation of 26-3
configuration guidelines 26-8
default configuration 26-8
destination MAC address forwarding 26-6
displaying status 26-15
forwarding methods 26-11
number of interfaces per 26-2
overview 26-1
PAgP
aggregate-port learners 26-5
compatibility with Catalyst 1900 26-12
displaying status 26-15
interaction with other features 26-6
learn method and priority configuration 26-12
modes 26-4
overview 26-3
silent mode 26-4
support for 1-2
PAgP (continued)port-channel interfaces
described 26-2
numbering of 26-2
port groups 9-3
source MAC address forwarding 26-6
EtherChannel guard
described 13-7
enabling 13-14
Ethernet VLANs
adding 14-8
defaults and ranges 14-7
modifying 14-8
events, RMON 22-3
examples
conventions for xxii
network configuration 1-7
expert mode 3-6
Express Setup 3-11
extended system ID
MSTP 12-14
Extensible Authentication Protocol over LAN 8-1
F
fallback VLAN name 14-23
fiber-optic, detecting unidirectional links 19-1
files, crashinfo
description 27-16
displaying the contents of 27-16
location 27-16
filtering show and more command output 2-9
flow control 9-12
forward-delay time
MSTP 12-20
forwarding
FTP
accessing MIB files A-2
G
GBICs
security and identification 27-11
get-bulk-request operation 24-3
get-next-request operation 24-3, 24-4
get-request operation 24-3, 24-4
get-response operation 24-3
global configuration mode 2-2
guide
audience xxi
purpose of xxi
guide mode 3-5
H
HC (candidate switch) 5-20
hello time
MSTP 12-19
STP 11-20
help, for the command line 2-3
history
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
history table, level and number of syslog messages 23-10
host names
abbreviations appended to 5-20
in clusters 5-13
hosts, limit on dynamic ports 14-28
HP OpenView 1-6
HSRP
automatic cluster recovery 5-11
cluster standby group considerations 5-10
See also clusters, cluster standby group, and standby command switch
I
ICMP ping
executing 27-12
overview 27-11
IDS, using with SPAN 21-2
IEEE 802.1p 16-1
IGMP
joining multicast group 17-3
join messages 17-3
leave processing, enabling 17-10
leaving multicast group 17-4
queries 17-3
report suppression
described 17-5
disabling 17-11
throttling action 17-22
IGMP, joining multicast group 17-3
IGMP filtering
configuring 17-22
default configuration 17-22
described 17-21
monitoring 17-27
IGMP groups
configuring the throttling action 17-25
setting the maximum number 17-24
IGMP profile
applying 17-23
configuration mode 17-22
configuring 17-23
IGMP snooping
configuring 17-6
default configuration 17-6
definition 17-1
enabling and disabling 17-7
global configuration 17-7
Immediate Leave 17-5
method 17-8
monitoring 17-13
VLAN configuration 17-7
IGMP throttling
configuring 17-25
default configuration 17-22
described 17-22
displaying action 17-27
Immediate-Leave, IGMP 17-5
ingress port scheduling 25-3
interface
number 9-4
range macros 9-7
interface configuration mode 2-2
interfaces
Cisco IOS supported 1-6
configuration guidelines 9-10
configuring 9-5
configuring duplex mode 9-10
configuring speed 9-10
counters, clearing 9-15
described 9-14
descriptive name, adding 9-14
displaying information about 9-14
flow control 9-12
IOS supported 1-5
monitoring 9-14
naming 9-14
physical, identifying 9-4
range of 9-5
restarting 9-16
interfaces (continued)shutting down 9-16
supported 9-8
types of 9-1
interfaces range macro command 9-7
Intrusion Detection System
inventory, cluster 5-21
IP addresses
cluster access 5-2
command switch 5-3, 5-10, 5-13
discovering 6-27
management VLAN 5-15
redundant clusters 5-10
standby command switch 5-10, 5-13
ip igmp profile command 17-22
IP information
assigned
manually 4-9
through DHCP-based autoconfiguration 4-3
default configuration 4-3
IP multicast routing and IGMP snooping 17-1, 17-6
IP phones
and QoS 16-1
configuring 16-3
trusted boundary for QoS 25-7
IPv4 1-1
IPv6 1-1
IP version 4 1-1
IP version 6 1-1
J
Java plug-in configuration 5-1
join messages, IGMP 17-3
L
LACP
Layer 2 frames, classification with CoS 25-1
Layer 2 interfaces, default configuration 9-9
Layer 2 traceroute
and ARP 27-13
and CDP 27-13
described 27-13
IP addresses and subnets 27-13
MAC addresses and VLANs 27-13
multicast traffic 27-13
multiple devices on a port 27-14
unicast traffic 27-13
usage guidelines 27-13
leave processing, IGMP 17-10
line configuration mode 2-2
links, unidirectional 19-1
login authentication
with RADIUS 7-23
with TACACS+ 7-14
login banners 6-19
log messages
loop guard
described 13-9
enabling 13-16
support for 1-4
LRE profiles, considerations in switch clusters 5-16
M
MAC addresses
aging time 6-23
and VLAN association 6-22
building the address table 6-22
default configuration 6-23
discovering 6-27
MAC addresses (continued)displaying 6-27
dynamic
learning 6-22
removing 6-24
static
adding 6-26
characteristics of 6-26
removing 6-26
sticky secure, adding 18-5
MAC address multicast entries, monitoring 17-13
MAC address-to-VLAN mapping 14-22
macros
management options
benefits
clustering 1-6
CMS 1-6
CLI 2-1
management VLAN
changing 5-15
considerations in switch clusters 5-6, 5-7, 5-15
discovery through different management VLANs 5-7
discovery through same management VLAN 5-6
IP address 5-15
maximum aging time
MSTP 12-21
STP 11-21
maximum hop count, MSTP 12-21
membership mode, VLAN port 14-3
member switch
adding 5-18
automatic discovery 5-4
defined 5-2
managing 5-22
passwords 5-13
recovering from lost connectivity 27-10
member switch (continued)requirements 5-3
See also candidate switch, cluster standby group, and standby command switch
menu bar,variations 3-4
messages to users through banners 6-19
MIBs
accessing files with FTP A-2
location of files A-2
overview 24-1
SNMP interaction with 24-4
supported A-1
mirroring traffic for analysis 21-1
mismatches, autonegotiation 27-10
monitoring
cables for unidirectional links 19-1
CDP 20-5
IGMP
filters 17-27
snooping 17-13
interfaces 9-14
multicast router interfaces 17-13
MVR 17-21
network traffic for analysis with probe 21-1
port
protection 18-11
port protection 18-11
speed and duplex mode 9-11
traffic flowing among switches 22-1
traffic suppression 18-11
VLANs 14-11
VMPS 14-27
MSTP
boundary ports
configuration guidelines 12-12
described 12-5
MSTP (continued)BPDU filtering
described 13-3
enabling 13-12
BPDU guard
described 13-2
enabling 13-11
CIST, described 12-3
configuration guidelines 12-12, 13-10
configuring
forward-delay time 12-20
hello time 12-19
link type for rapid convergence 12-22
maximum aging time 12-21
maximum hop count 12-21
MST region 12-13
path cost 12-18
port priority 12-17
root switch 12-14
secondary root switch 12-16
switch priority 12-19
CST
defined 12-3
operations between regions 12-3
default configuration 12-12
default optional feature configuration 13-10
displaying status 12-23
enabling the mode 12-13
EtherChannel guard
described 13-7
enabling 13-14
extended system ID
effects on root switch 12-14
effects on secondary root switch 12-16
unexpected behavior 12-15
instances supported 11-9
interface state, blocking to forwarding 13-2
interoperability and compatibility among modes 11-10
MSTP (continued)interoperability with 802.1D
described 12-5
restarting migration process 12-22
IST
defined 12-2
master 12-3
operations within a region 12-3
loop guard
described 13-9
enabling 13-16
mapping VLANs to MST instance 12-13
MST region
CIST 12-3
configuring 12-13
described 12-2
hop-count mechanism 12-4
IST 12-2
supported spanning-tree instances 12-2
overview 12-2
Port Fast
described 13-2
enabling 13-10
preventing root switch selection 13-8
root guard
described 13-8
enabling 13-15
root switch
configuring 12-15
effects of extended system ID 12-14
unexpected behavior 12-15
shutdown Port Fast-enabled port 13-2
multicast groups
and IGMP snooping 17-6
Immediate Leave 17-5
joining 17-3
leaving 17-4
static joins 17-9
multicast router interfaces, monitoring 17-13
multicast router ports, adding 17-9
Multicast VLAN Registration
Multiple Spanning Tree Protocol
MVR
configuring interfaces 17-19
default configuration 17-17
described 17-14
modes 17-18
monitoring 17-21
setting global parameters 17-18
N
native VLAN
configuring 14-17
default 14-17
network examples
collapsed backbone and switch cluster 1-9
design concepts
network performance 1-7
network services 1-7
large campus 1-11
small to medium-sized network 1-8
network management
CDP 20-1
RMON 22-1
SNMP 24-1
Network Time Protocol
no commands 2-3
nontrunking mode 14-13
normal-range VLANs
configuration modes 14-5
defined 14-1
note, described xxii
NTP
associations
authenticating 6-4
defined 6-2
enabling broadcast messages 6-7
peer 6-6
server 6-6
default configuration 6-4
displaying the configuration 6-11
overview 6-2
restricting access
creating an access group 6-9
disabling NTP services per interface 6-10
source IP address, configuring 6-10
stratum 6-2
synchronizing devices 6-6
time
services 6-2
synchronizing 6-2
P
PAgP
pass-through mode 25-8
passwords
default configuration 7-2
disabling recovery of 7-5
encrypting 7-4
overview 7-1
setting
enable 7-3
enable secret 7-4
Telnet 7-6
with usernames 7-7
VTP domain 15-8
path cost
MSTP 12-18
STP 11-18
PC (passive command switch) 5-9, 5-20
per-VLAN spanning-tree plus
physical ports 9-1
PIM-DVMRP, as snooping method 17-8
ping
character output description 27-12
executing 27-12
overview 27-11
Port Aggregation Protocol
port-based authentication
accounting services 1-4
accounting 8-4
authentication server
defined 8-2
RADIUS server 8-2
client, defined 8-2
configuration guidelines 8-7
configuring
802.1x authentication 8-8, 8-15
host mode 8-14
manual re-authentication of a client 8-12
periodic re-authentication 8-11
quiet period 8-12
RADIUS server 8-11
RADIUS server parameters on the switch 8-10
switch-to-client frame-retransmission number 8-13
switch-to-client retransmission time 8-12
default configuration 8-6
described 8-1
device roles 8-2
displaying statistics 8-17
EAPOL-start frame 8-3
EAP-request/identity frame 8-3
port-based authentication (continued)
EAP-response/identity frame 8-3
enabling 802.1x with voice VLAN 8-5
encapsulation 8-2
initiation and message exchange 8-3
per-user ACLs
AAA authorization 8-15
ports
authorization state and dot1x port-control command 8-4
authorized and unauthorized 8-4
resetting to default values 8-15
software upgrade changes 8-8
switch
as proxy 8-2
RADIUS client 8-2
topologies, supported 8-5
VLAN assignment
AAA authorization 8-15
port-channel
Port Fast
described 13-2
enabling 13-10
mode, spanning tree 14-23
support for 1-3
port membership modes, VLAN 14-3
port priority
MSTP 12-17
STP 11-17
ports
access 9-2
dynamic access 14-3
priority 25-2
protected 18-3
secure 18-5
switch 9-1
ports (continued)trunks 14-12
VLAN assignments 14-10
port security
aging 18-10
configuring 18-8
default configuration 18-7
described 18-5
displaying 18-11
sticky learning 18-5
violations 18-6
with other features 18-7
port-shutdown response, VMPS 14-22
preferential treatment of traffic
preventing unauthorized access 7-1
priority
overriding CoS 16-5
port, described 25-2
trusting CoS 16-6
private VLAN edge ports
privileged EXEC mode 2-2
privilege levels
changing the default for lines 7-9
command switch 5-23
exiting 7-10
logging into 7-10
mapping on member switches 5-23
setting a command with 7-8
pruning, VTP
enabling 15-14
enabling on a port 14-17
examples 15-5
overview 15-4
pruning-eligible list
changing 14-17
for VTP pruning 15-4
VLANs 15-14
PSTN 1-11
publications, related xxii
PVST+
802.1Q trunking interoperability 11-10
described 11-9
instances supported 11-9
Q
QoS
classification
in frames and packets 25-2
pass-through mode, described 25-8
trusted boundary, described 25-7
configuring
CoS and WRR 25-9
default port CoS value 25-6
egress queues 25-9
port trust states within the domain 25-4
trusted boundary 25-7
default configuration 25-4
ingress port scheduling 25-3
IP phones, detection and trusted settings 25-7
overview 25-1
pass-through mode 25-8
support for 1-5
trusted boundary 25-7
understanding 25-1
quality of service
queries, IGMP 17-3
R
RADIUS
attributes
vendor-proprietary 7-30
vendor-specific 7-29
configuring
accounting 7-28
authentication 7-23
authorization 7-27
communication, global 7-21, 7-29
communication, per-server 7-20, 7-21
multiple UDP ports 7-21
default configuration 7-20
defining AAA server groups 7-25
displaying the configuration 7-31
identifying the server 7-20
in clusters 5-14
limiting the services to the user 7-27
method list, defined 7-20
operation of 7-19
overview 7-18
suggested network environments 7-18
tracking services accessed by user 7-28
range
macro 9-7
of interfaces 9-6
rapid convergence 12-7
rapid per-VLAN spanning-tree plus
rapid PVST+
802.1Q trunking interoperability 11-10
described 11-9
instances supported 11-9
Rapid Spanning Tree Protocol
rcommand command 5-22
reconfirmation interval, VMPS, changing 14-26
recovery procedures 27-1
redundancy
EtherChannel 26-2
STP
backbone 11-7
path cost 14-20
port priority 14-18
redundant clusters
redundant links and UplinkFast 13-13
Remote Authentication Dial-In User Service
Remote Network Monitoring
report suppression, IGMP
described 17-5
disabling 17-11
resetting a UDLD-shutdown interface 19-6
restricting access
NTP services 6-8
overview 7-1
passwords and privilege levels 7-2
RADIUS 7-18
TACACS+ 7-10
retry count, VMPS, changing 14-27
RFC
1112, IP multicast and IGMP 17-2
1157, SNMPv1 24-2
1305, NTP 6-2
1757, RMON 22-2
1901, SNMPv2C 24-2
1902 to 1907, SNMPv2 24-2
2236, IP multicast and IGMP 17-2
2273-2275, SNMPv3 24-2
RMON
default configuration 22-3
displaying status 22-6
enabling alarms and events 22-3
groups supported 22-2
RMON (continued)overview 22-1
statistics
collecting group Ethernet 22-5
collecting group history 22-5
root guard
described 13-8
enabling 13-15
support for 1-4
root switch
MSTP 12-14
STP 11-14
RSPAN
default configuration 21-5
displaying status 21-11
interaction with other features 21-5
overview 21-1
sessions
defined 21-3
RSTP
active topology, determining 12-6
BPDU
format 12-9
processing 12-10
designated port, defined 12-6
designated switch, defined 12-6
interoperability with 802.1D
described 12-5
restarting migration process 12-22
topology changes 12-10
overview 12-6
port roles
described 12-6
synchronized 12-8
proposal-agreement handshake process 12-7
RSTP (continued)rapid convergence
described 12-7
edge ports and Port Fast 12-7
point-to-point links 12-7, 12-22
root ports 12-7
root port, defined 12-6
running configuration, saving 4-10
S
SC (standby command switch) 5-9, 5-20
secure ports, configuring 18-5
security, port 18-5
sequence numbers in log messages 23-8
server mode, VTP 15-3
service-provider network, MSTP and RSTP 12-1
set-request operation 24-4
setup program, failed command switch replacement 27-7, 27-9
severity levels, defining in system messages 23-8
show and more command output, filtering 2-9
show cdp traffic command 20-5
show cluster members command 5-22
show configuration command 9-14
show interfaces command 9-11, 9-14
show running-config command
interface description in 9-14
shutdown command on interfaces 9-16
Simple Network Management Protocol
Smartports macros
applying Cisco-default macros 10-6
applying global parameter values 10-5, 10-6
applying macros 10-5
applying parameter values 10-5, 10-7
configuration guidelines 10-3
creating 10-4
Smartports macros (continued)default configuration 10-2
defined 10-1
displaying 10-8
tracing 10-3
website 10-2
SNAP 20-1
SNMP
accessing MIB variables with 24-4
agent
described 24-3
disabling 24-6
community strings
configuring 24-7
for cluster switches 24-4
overview 24-3
configuration examples 24-13
default configuration 24-5
groups 24-8
in clusters 5-14
informs
and trap keyword 24-10
described 24-4
differences from traps 24-5
enabling 24-12
limiting access by TFTP servers 24-13
limiting system log messages to NMS 23-10
manager functions 24-3
managing clusters with 5-23
MIBs
location of A-2
supported A-1
notifications 24-4
status, displaying 24-15
system contact and location 24-12
trap manager, configuring 24-11
SNMP (continued)traps
differences from informs 24-5
enabling 24-10
enabling MAC address notification 6-24
types of 24-10
users 24-8
versions supported 24-2
snooping, IGMP 17-1
software images
recovery procedures 27-2
See also downloading and uploading
SPAN
configuration guidelines 21-6
default configuration 21-5
destination ports 21-4
displaying status 21-11
IDS 21-2
interaction with other features 21-5
monitored ports 21-3
monitoring ports 21-4
received traffic 21-3
session limits 21-5
sessions
creating 21-7
defined 21-3
removing destination (monitoring) ports 21-9
removing source (monitored) ports 21-9
specifying monitored ports 21-7
source ports 21-3
transmitted traffic 21-3
spanning tree and native VLANs 14-13
Spanning Tree Protocol
speed
configuring on interfaces 9-10
Standby Command Configuration window 5-21
standby command switch
considerations 5-10
defined 5-2
priority 5-9
requirements 5-3
virtual IP address 5-10
See also cluster standby group and HSRP
standby group, cluster
See cluster standby group and HSRP
static access ports
assigning to VLAN 14-10
static addresses
static VLAN membership 14-2
statistics
802.1x 8-17
CDP 20-5
interface 9-15
RMON group Ethernet 22-5
RMON group history 22-5
SNMP input and output 24-15
VTP 15-15
sticky learning
configuration file 18-5
defined 18-5
disabling 18-5
enabling 18-5
saving addresses 18-5
storm control
described 18-1
displaying 18-11
STP
accelerating root port selection 13-4
BackboneFast
described 13-5
enabling 13-14
BPDU filtering
described 13-3
enabling 13-12
BPDU guard
described 13-2
enabling 13-11
BPDU message exchange 11-2
configuration guidelines 11-12, 13-10
configuring
forward-delay time 11-21
hello time 11-20
maximum aging time 11-21
path cost 11-18
port priority 11-17
root switch 11-14
secondary root switch 11-16
spanning-tree mode 11-13
switch priority 11-19
counters, clearing 11-22
default configuration 11-11
default optional feature configuration 13-10
designated port, defined 11-3
designated switch, defined 11-3
detecting indirect link failures 13-5
disabling 11-13
displaying status 11-22
EtherChannel guard
described 13-7
enabling 13-14
extended system ID
affects on root switch 11-14
affects on the secondary root switch 11-16
overview 11-3
unexpected behavior 11-15
STP (continued)features supported 1-3
inferior BPDU 11-3
instances supported 11-9
interface state, blocking to forwarding 13-2
interface states
blocking 11-5
disabled 11-6
learning 11-6
listening 11-6
overview 11-4
interoperability and compatibility among modes 11-10
limitations with 802.1Q trunks 11-10
load sharing
overview 14-18
using path costs 14-20
using port priorities 14-18
loop guard
described 13-9
enabling 13-16
modes supported 11-9
multicast addresses, affect of 11-8
overview 11-2
path costs 14-20
Port Fast
described 13-2
enabling 13-10
port priorities 14-19
preventing root switch selection 13-8
protocols supported 11-9
redundant connectivity 11-7
root guard
described 13-8
enabling 13-15
root port, defined 11-3
STP (continued)root switch
affects of extended system ID 11-3, 11-14
configuring 11-14
election 11-3
unexpected behavior 11-15
shutdown Port Fast-enabled port 13-2
superior BPDU 11-3
timers, described 11-20
UplinkFast
described 13-3
enabling 13-13
stratum, NTP 6-2
summer time 6-14
SunNet Manager 1-6
switched ports 9-1
Switch Manager 3-9
switchport protected command 18-4
switch priority
MSTP 12-19
STP 11-19
syslog
system clock
configuring
daylight saving time 6-14
manually 6-12
summer time 6-14
time zones 6-13
displaying the time and date 6-12
overview 6-1
system message logging
default configuration 23-3
defining error message severity levels 23-8
disabling 23-4
displaying the configuration 23-12
system message logging (continued)enabling 23-4
facility keywords, described 23-12
level keywords, described 23-9
limiting messages 23-10
message format 23-2
overview 23-1
sequence numbers, enabling and disabling 23-8
setting the display destination device 23-4
synchronizing log messages 23-6
timestamps, enabling and disabling 23-7
UNIX syslog servers
configuring the daemon 23-11
configuring the logging facility 23-11
facilities supported 23-12
system name
default configuration 6-16
default setting 6-16
manual configuration 6-16
system prompt
default setting 6-16
manual configuration 6-17
T
TACACS+
accounting, defined 7-11
authentication, defined 7-11
authorization, defined 7-11
configuring
accounting 7-17
authentication key 7-13
authorization 7-16
login authentication 7-14
default configuration 7-13
displaying the configuration 7-17
identifying the server 7-13
in clusters 5-14
TACACS+ (continued)limiting the services to the user 7-16
operation of 7-12
overview 7-10
tracking services accessed by user 7-17
Telnet
accessing management interfaces 2-10
accessing the CLI 1-6
from a browser 2-10
setting a password 7-6
Terminal Access Controller Access Control System Plus
terminal lines, setting a password 7-6
TFTP
configuration files in base directory 4-6
configuring for autoconfiguration 4-5
limiting access by servers 24-13
time
timestamps in log messages 23-7
time zones 6-13
Token Ring VLANs
support for 14-5
VTP support 15-4
Topology view
traceroute, Layer 2
and ARP 27-13
and CDP 27-13
described 27-13
IP addresses and subnets 27-13
MAC addresses and VLANs 27-13
multicast traffic 27-13
multiple devices on a port 27-14
unicast traffic 27-13
usage guidelines 27-13
transparent mode, VTP 15-3, 15-11
trap-door mechanism 4-2
traps
configuring MAC address notification 6-24
configuring managers 24-10
defined 24-3
notification types 24-10
troubleshooting
connectivity problems 27-11
detecting unidirectional links 19-1
displaying crash information 27-16
GBIC security and identification 27-11
with CiscoWorks 24-4
with debug commands 27-14
with ping 27-11
with system message logging 23-1
trunk ports
configuring 14-15
defined 9-2
trunks
allowed-VLAN list 14-15
load sharing
setting STP path costs 14-20
using STP port priorities 14-18, 14-19
native VLAN for untagged traffic 14-17
parallel 14-20
pruning-eligible list 14-17
to non-DTP device 14-12
VLAN 1 minimization 14-16
trusted boundary 25-7
twisted-pair Ethernet, detecting unidirectional links 19-1
U
UDLD
default configuration 19-4
echoing detection mechanism 19-3
UDLD (continued)enabling
globally 19-5
per interface 19-5
link-detection mechanism 19-1
neighbor database 19-2
overview 19-1
resetting an interface 19-6
status, displaying 19-7
unauthorized ports with 802.1x 8-4
UniDirectional Link Detection protocol
UNIX syslog servers
daemon configuration 23-11
facilities supported 23-12
message logging configuration 23-11
unrecognized Type-Length-Value (TLV) support 15-4
UplinkFast
described 13-3
enabling 13-13
support for 1-3
user EXEC mode 2-2
username-based authentication 7-7
V
version-dependent transparent mode 15-4
virtual IP address
cluster standby group 5-10, 5-20
vlan.dat file 14-4
VLAN 1 minimization, support for 1-4
VLAN configuration
at bootup 14-7
saving 14-7
VLAN configuration mode 2-2, 14-6
VLAN database
and startup configuration file 14-7
and VTP 15-1
VLAN configuration saved in 14-7
VLANs saved in 14-4
vlan database command 14-6
vlan global configuration command 14-5
VLAN ID, discovering 6-27
VLAN management domain 15-2
VLAN Management Policy Server
VLAN membership
confirming 14-26
modes 14-3
VLAN Query Protocol
VLANs
adding 14-8
adding to VLAN database 14-8
aging dynamic addresses 11-8
allowed on trunk 14-15
and spanning-tree instances 14-2
configuration guidelines, normal-range VLANs 14-5
configuration options 14-5
configuring 14-1
creating in config-vlan mode 14-8
creating in VLAN configuration mode 14-9
default configuration 14-7
deleting 14-9
displaying 14-11
illustrated 14-2
modifying 14-8
native, configuring 14-17
parameters 14-4
port membership modes 14-3
static-access ports 14-10
STP and 802.1Q trunks 11-10
VLANs (continued)supported 14-2
Token Ring 14-5
trunks, VLAN 1 minimization 14-16
VTP modes 15-3
VLAN Trunking Protocol
VLAN trunks 14-12
VMPS
administering 14-27
configuration example 14-28
configuration guidelines 14-23
default configuration 14-23
description 14-21
dynamic port membership
described 14-22
reconfirming 14-26
troubleshooting 14-28
entering server address 14-25
mapping MAC addresses to VLANs 14-22
monitoring 14-27
reconfirmation interval, changing 14-26
reconfirming membership 14-26
retry count, changing 14-27
voice VLAN
Cisco 7960 phone, port connections 16-1
configuration guidelines 16-3
configuring IP phones for data traffic
override CoS of incoming frame 16-5
trust CoS priority of incoming frame 16-6
configuring ports for voice traffic in
802.1p priority tagged frames 16-4
802.1Q frames 16-4
connecting to an IP phone 16-3
default configuration 16-2
described 16-1
displaying 16-6
VQP 14-21
VTP
adding a client to a domain 15-14
and normal-range VLANs 15-1
client mode, configuring 15-10
configuration
global configuration mode 15-7
guidelines 15-8
privileged EXEC mode 15-7
requirements 15-9
saving 15-7
VLAN configuration mode 15-7
configuration mode options 15-7
configuration requirements 15-9
configuration revision number
guideline 15-14
resetting 15-15
configuring
client mode 15-10
server mode 15-9
transparent mode 15-11
consistency checks 15-4
default configuration 15-6
described 15-1
disabling 15-11
domain names 15-8
domains 15-2
modes
transitions 15-3
monitoring 15-15
passwords 15-8
pruning
disabling 15-14
enabling 15-14
examples 15-5
overview 15-4
VTP (continued)pruning-eligible list, changing 14-17
server mode, configuring 15-9
statistics 15-15
Token Ring support 15-4
transparent mode, configuring 15-11
using 15-1
version, guidelines 15-8
version 1 15-4
version 2
configuration guidelines 15-8
disabling 15-13
enabling 15-13
overview 15-4
W
Weighted Round Robin
wizards 3-6
WRR
configuring 25-9
defining 25-3
description 25-3
X
Xmodem protocol 27-2