-
Catalyst 2950 Desktop Switch Software Configuration Guide, 12.1(11)EA1
-
Index
-
Preface
-
Overview
-
Using the Command-Line Interface
-
Getting Started with CMS
-
Assigning the Switch IP Address and Default Gateway
-
Configuring IE2100 CNS Agents
-
Clustering Switches
-
Administering the Switch
-
Configuring 802.1X Port-Based Authentication
-
Configuring Interface Characteristics
-
Configuring STP
-
Configuring RSTP and MSTP
-
Configuring Optional Spanning-Tree Features
-
Configuring VLANs
-
Configuring VTP
-
Configuring Voice VLAN
-
Configuring IGMP Snooping and MVR
-
Configuring Port-Based Traffic Control
-
Configuring UDLD
-
Configuring CDP
-
Configuring SPAN and RSPAN
-
Configuring RMON
-
Configuring System Message Logging
-
Configuring SNMP
-
Configuring Network Security with ACLs
-
Configuring QoS
-
Configuring EtherChannels
-
Troubleshooting
-
Supported MIBs
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - L - M - N - O - P - Q - R - S - T - U - V - W - X -
Index
Numerics
802.1D
802.1Q
and trunk ports9-3
configuration limitations13-16
native VLAN for untagged traffic13-20
trunk mode3-8
802.1S
802.1W
802.1X
802.3Z flow control9-12
A
abbreviating commands2-3
access-class command24-20
access control entries
access-denied response, VMPS13-25
access groups, viewing24-23
accessing
clusters, switch6-16
CMS3-28
command switches6-14
HTTP port3-29
member switches6-16
switch clusters6-16
access lists
access ports
defined9-2
in switch clusters6-11
accounting
with RADIUS7-27
ACEs
defined24-2
Ethernet24-2
IP24-2
Layer 3 parameters24-10
Layer 4 parameters24-10
ACLs
ACEs24-2
any keyword24-9
applying
time ranges to24-15
to management interfaces24-20
to management VLANs24-20
to physical interfaces24-21
to QoS25-5
to terminal lines24-20
classifying traffic for QoS25-16
comments in24-17
compiling24-23
configuration guidelines
management interfaces, applying to24-6
physical interfaces, applying to24-6
defined24-2
displaying interface24-23
examples of24-23
ACLs (continued)extended IP
configuring for QoS classification25-18
creating24-10
matching criteria24-7
host keyword24-9
IP
creating24-7
implicit deny24-9, 24-13, 24-15
implicit masks24-9
management interfaces, applying to24-20
named24-13
physical interfaces, applying to24-21
virtual terminal lines, setting on24-20
MAC extended24-18
matching24-7
monitoring24-22
named24-13
numbers24-8
protocol parameters24-10
standard IP
configuring for QoS classification25-16
creating24-9
matching criteria24-7
time ranges24-15
unsupported features24-7
ACP
system-defined mask24-4
understanding24-4
user-defined mask24-4
adding secure addresses7-57
addresses
displaying the MAC address table7-58
addresses (continued)dynamic
accelerated aging10-9
changing the aging time7-53
default aging10-9
defined7-52
learning7-52
removing7-54
MAC
adding secure7-57
discovering7-59
multicast STP address management10-8
secure
adding7-57
described7-57
static
adding and removing7-56
defined7-52
address resolution7-59
Address Resolution Protocol
address table, adding secure addresses7-57
advertisements
CDP19-1
aggregated ports
aging, accelerating10-9
aging time
accelerated
for MSTP11-20
MAC address table7-53
maximum
for MSTP11-21
for STP10-20
alarms, RMON21-3
allowed-VLAN list13-19
Apply button3-27
ARP table
address resolution7-59
managing7-59
attributes, RADIUS
vendor-proprietary7-29
vendor-specific7-28
authentication
local mode with AAA7-31
NTP associations7-35
RADIUS
key7-20
login7-22
TACACS+
defined7-10
key7-12
login7-13
See also port-based authentication
authoritative time source, described7-32
authorization
with RADIUS7-26
authorized ports with 802.1X8-4
autoconfiguration4-3
automatic discovery
adding member switches6-21
considerations
beyond a non-candidate device6-9, 6-10
brand new switches6-11
connectivity6-5
non-CDP-capable devices6-8
non-cluster-capable devices6-8
creating a cluster standby group6-23
in switch clusters6-5
automatic recovery, clusters6-13
autonegotiation
interface configuration guidelines9-11
mismatches27-8
auxiliary VLAN
B
BackboneFast
described12-10
enabling12-19
support for1-3
bandwidth graphs3-7
banners
configuring
login7-51
message-of-the-day login7-50
default configuration7-49
when displayed7-49
booting
boot loader, function of4-1
boot process4-1
boot loader
described4-1
trap-door mechanism4-2
BPDU
error-disabled state12-3
filtering12-3
RSTP format11-5
BPDU filtering
described12-3
enabling12-16
support for1-3
BPDU guard
described12-3
enabling12-15
support for1-3
broadcast storm control
configuring17-1
disabling17-3
buttons, CMS3-27
C
cables, monitoring for unidirectional links18-1
Cancel button3-27
candidate switch
adding6-21
automatic discovery6-5
defined6-4
HC6-24
passwords6-21
requirements6-4
standby group6-23
See also command switch, cluster standby group, and member switch
cautionsxxvi
CC (command switch)6-24
CDP1-2
and trusted boundary25-14
automatic discovery in switch clusters6-5
configuring19-2
default configuration19-2
described19-1
disabling for routing device19-3, 19-4
enabling and disabling
on an interface19-4
on a switch19-3
monitoring19-5
CDP (continued)overview19-1
transmission timer and holdtime, setting19-2
updates19-2
CGMP, joining multicast group16-2
change notification, CMS3-30
Cisco Access Analog Trunk Gateway1-13
Cisco CallManager software1-12, 1-13
Cisco Discovery Protocol
Cisco Intelligence Engine 2100 Series Configuration Registrar
Cisco IP Phones1-12
Cisco Networking Services
Cisco SoftPhone software1-12
class maps for QoS
configuring25-20
described25-6
displaying25-28
class of service
clearing interfaces9-16
CLI
abbreviating commands2-3
command modes2-1
described1-6
editing features
enabling and disabling2-6
keystroke editing2-7
wrapped lines2-8
error messages2-4
getting help2-3
CLI (continued)history
changing the buffer size2-5
described2-5
disabling2-6
recalling commands2-5
managing clusters6-26
no and default forms of commands2-4
client mode, VTP14-3
clock
Cluster Management Suite1-6
clusters, switch
accessing6-16
adding member switches6-21
automatic discovery6-5
automatic recovery6-13
command switch configuration6-20
compatibility6-5
creating6-20
creating a cluster standby group6-23
described6-1
LRE profile considerations6-19
managing
through CLI6-26
through SNMP6-27
planning6-5
planning considerations
automatic discovery6-5
automatic recovery6-13
CLI6-26
host names6-17
IP addresses6-16
LRE profiles6-19
management VLAN6-19
passwords6-17
clusters, switch (continued)RADIUS6-18
switch-specific features6-20
TACACS+6-18
redundancy6-23
troubleshooting6-25
verifying6-25
cluster standby group
automatic recovery6-16
considerations6-14
creating6-23
defined6-2
requirements6-3
virtual IP address6-14
cluster tree
described3-5
icons3-5
CMS
accessing3-28
advantages1-6
change notification3-30
cluster tree3-5
described3-1
different versions of3-31
displaying system messages3-18
error checking3-30
features3-2
Front Panel images3-5
Front Panel view3-4
interaction modes3-23
menu bar3-14
CMS (continued)online help3-25
requirements3-28
saving configuration changes3-30
toolbar3-19
tool tips3-25
Topology view3-9
verifying configuration changes3-30
window components3-26
wizards3-24
Coarse Wave Division Multiplexer
Collapse Cluster view3-10
command-line interface
command modes2-1
commands
abbreviating2-3
no and default2-4
setting privilege levels7-7
command switch
accessing6-14
command switch with HSRP disabled (CC)6-24
configuration conflicts27-7
defined6-2
enabling6-20
password privilege levels6-26
priority6-13
recovery
from command-switch failure6-13
from failure27-4
from lost member connectivity27-7
replacing
with another switch27-6
with cluster member27-5
command switch (continued)requirements6-3
See also candidate switch, cluster standby group, member switch, and standby command switch
community strings
for cluster switches23-4
in clusters6-17
overview23-4
SNMP6-17
configuration, switch, saving changes3-30
configuration conflicts, recovering from lost member connectivity27-7
configuration examples, network
collapsed backbone and switch cluster1-12
design concepts
cost-effective wiring closet1-8
high-performance workgroup1-9
network performance1-7
network services1-8
redundant Gigabit backbone1-9
large campus1-13
long-distance, high-bandwidth transport configuration1-16
small to medium-sized network1-10
configuration files
limiting TFTP server access23-13
obtaining with DHCP4-7
system contact and location information23-13
VMPS database13-26
configuration settings, saving4-10
configure terminal command9-5
conflicts, configuration27-7
consistency checks in VTP version 214-4
console port, connecting to2-9
conventions
commandxxvi
for examplesxxvi
textxxvi
CoS
configuring25-7
configuring priority queues25-27
defining25-8
described1-4
override priority15-5
trust priority15-6
CoS-to-DSCP map for QoS25-25
counters, clearing interface9-16
crashinfo file27-10
cross-stack UplinkFast, STP
connecting stack ports12-8
described12-5
enabling12-18
fast-convergence events12-7
Fast Uplink Transition Protocol12-6
limitations12-8
normal-convergence events12-7
Stack Membership Discovery Protocol12-6
support for1-3
CWDM GBIC modules
network example1-16
wavelength colors on CMS3-6
D
daylight saving time7-44
debugging
enabling all system diagnostics27-9
enabling for a specific feature27-9
redirecting error message output27-10
using commands27-8
default commands2-4
default configuration
802.1X8-6
banners7-49
CDP19-2
DNS7-48
EtherChannel26-7
IGMP filtering16-19
IGMP snooping16-5
initial switch information4-3
Layer 2 interfaces9-9
MAC address table7-53
MVR16-14
NTP7-35
optional spanning-tree features12-14
password and privilege level7-2
QoS25-9
RADIUS7-19
RMON21-3
RSPAN20-6
RSTP and MSTP11-12
SNMP23-6
SPAN20-6
STP10-10
system message logging22-3
system name and prompt7-46
TACACS+7-12
UDLD18-3
VLAN, Layer 2 Ethernet interfaces13-17
VLANs13-8
VMPS13-27
voice VLAN15-2
VTP14-6
default gateway4-10
deleting VLANs13-10
description command9-13
destination addresses, in ACLs24-12
detecting indirect link failures, STP12-10
device discovery protocol19-1
device icons
Front Panel view3-5
Topology view3-11
device labels3-12
Device Manager3-2
device pop-up menu
Front Panel view3-20
Topology view3-22
DHCP1-2
DHCP-based autoconfiguration
client request message exchange4-4
configuring
client side4-3
DNS4-6
relay device4-6
server-side4-5
TFTP server4-5
example4-8
lease options
for IP address information4-5
for receiving the configuration file4-5
overview4-3
relationship to BOOTP4-3
Differentiated Services architecture, QoS25-2
Differentiated Services Code Point25-2
discovery, clusters
display options, Topology view3-13
Disqualification Code option3-23
DNS
and DHCP-based autoconfiguration4-6
default configuration7-48
displaying the configuration7-49
overview7-47
setting up7-48
documentation, relatedxxvii
domain names
DNS7-47
VTP14-8
Domain Name System
DSCP-to-CoS map for QoS25-26
duplex mode, configuring9-10
dynamic access mode3-8
dynamic access ports
characteristics13-3
configuring13-29
defined9-2
dynamic addresses
dynamic desirable trunking mode13-16
dynamic port VLAN membership
described13-25
reconfirming13-30
troubleshooting13-31
types of connections13-29
VMPS database configuration file13-26
Dynamic Trunking Protocol
E
editing features
enabling and disabling2-6
keystrokes used2-7
wrapped lines2-8
egress port scheduling25-8
enable password7-4
enable secret password7-4
encapsulation25-8
encryption for passwords7-4
error checking, CMS3-30
error messages
during command entry2-4
setting the display destination device22-4
severity levels22-8
system message format22-2
EtherChannel
automatic creation of26-3
configuration guidelines26-8
default configuration26-7
destination MAC address forwarding26-5
displaying status26-11
interaction
with STP26-8
with VLANs26-8
Layer 2 interfaces, configuring26-8
number of interfaces per26-2
overview26-1
PAgP
aggregate-port learners26-5
compatibility with Catalyst 190026-11
displaying status26-11
interaction with other features26-5
learn method and priority configuration26-11
modes26-4
overview26-3
silent mode26-4
support for1-2
port-channel interfaces
described26-2
numbering of26-2
port groups9-3
source MAC address forwarding26-5
Ethernet VLANs
adding13-8
defaults and ranges13-8
modifying13-8
events, RMON21-3
examples
conventions forxxvi
network configuration1-7
Expand Cluster view3-10
expert mode3-24
extended-range VLANs
configuration guidelines13-12
configuring13-12
defined13-1
extended system ID
MSTP11-14
Extensible Authentication Protocol over LAN8-1
F
fallback VLAN name13-26
fan fault indication3-5
Fast Uplink Transition Protocol12-6
features, IOS1-1
fiber-optic, detecting unidirectional links18-1
files, crashinfo
description27-10
displaying the contents of27-10
location27-10
filtering show and more command output2-9
filters, IP
flow-based packet classification1-4
flow control9-12
forward-delay time
MSTP11-20
forwarding
Front Panel images, CMS3-5
Front Panel view
cluster tree3-5
command switch3-4
described3-4
pop-up menus3-20
port icons3-6
port LEDs3-7
RPS LED3-6
switch images3-5
FTP, accessing MIB filesA-2
G
GBICs
1000BASE-LX/LH module1-9
1000BASE-SX module1-9
1000BASE-ZX module1-9
CWDM module1-16
GigaStack module1-8
security and identification27-8
get-bulk-request operation23-3
get-next-request operation23-3, 23-4
get-request operation23-3, 23-4
get-response operation23-3
Gigabit Interface Converters
GigaStack GBIC
fast transition of redundant link12-5
global configuration mode2-2
graphs, bandwidth3-7
guide
audiencexxiii
ogranization ofxxiv
purposexxiii
guide mode3-24
H
HC (candidate switch)6-24
hello time
MSTP11-19
STP10-19
help, for the command line2-3
Help button, CMS3-27
Help Contents3-25
history
changing the buffer size2-5
described2-5
disabling2-6
recalling commands2-5
history table, level and number of syslog messages22-10
host name list, CMS3-26
host names
abbreviations appended to6-24
in clusters6-17
hosts, limit on dynamic ports13-31
HP OpenView1-6
HSRP
automatic cluster recovery6-16
cluster standby group considerations6-14
See also clusters, cluster standby group, and standby command switch
Hypertext Transfer Protocol
I
icons
cluster tree3-5
colors
cluster tree3-5
Topology view3-12
icons (continued)editable table cell3-27
Front Panel view3-6
multilink3-21
sorting3-27
toolbar3-19
Topology view3-11
web link3-27
IE2100
CNS embedded agents
described5-5
enabling automated configuration5-6
enabling configuration agent5-9
enabling event agent5-8
Configuration Registrar
configID, deviceID, hostname5-3
configuration service5-2
described5-1
event service5-3
described1-6
support for1-2
IEEE 802.1P15-1
IGMP
joining multicast group16-2
join messages16-2
leave processing, enabling16-9
leaving multicast group16-4
queries16-3
IGMP filtering
configuring16-20
default configuration16-19
described16-19
monitoring16-23
IGMP groups, setting the maximum number16-22
IGMP profile
applying16-21
configuration mode16-20
configuring16-20
IGMP snooping
configuring16-5
default configuration16-5
definition16-1
enabling and disabling16-5
global configuration16-5
Immediate Leave16-4
method16-6
monitoring16-9
VLAN configuration16-6
Immediate-Leave, IGMP16-4
ingress port scheduling25-8
Intelligence Engine 2100 Series CNS Agents
interaction modes, CMS3-23
interface
number9-4
range macros9-8
interface configuration mode2-2
interfaces
configuration guidelines9-11
configuring9-5
configuring duplex mode9-10
configuring speed9-10
counters, clearing9-16
described9-13
descriptive name, adding9-13
displaying information about9-14
flow control9-12
IOS supported1-5
monitoring9-14
naming9-13
physical, identifying9-4
range of9-6
restarting9-17
shutting down9-17
interfaces (continued)supported9-4
types of9-1
interfaces range macro command9-8
inventory, cluster6-25
IOS command-line interface
IP
named extended ACL24-14
named standard ACL24-14
numbered extended ACL24-10
numbered standard ACL24-9
IP ACLs
applying to
management interfaces24-20
physical interfaces24-21
extended, creating24-10
for QoS classification25-16
implicit deny24-9, 24-13, 24-15
implicit masks24-9
management interfaces, applying to24-20
named24-13
physical interfaces, applying to24-21
standard, creating24-9
virtual terminal lines, setting on24-20
IP addresses
cluster access6-2
discovering7-59
management VLAN6-19
redundant clusters6-14
standby command switch6-14, 6-16
ip igmp profile command16-20
IP information
assigned
manually4-10
through DHCP-based autoconfiguration4-3
default configuration4-3
IP multicast routing and IGMP snooping16-1, 16-5
IP phones
and QoS15-1
configuring15-3
trusted boundary for QoS25-13
IP protocols in ACLs24-12
J
Java plug-in configuration3-1, 6-1
join messages, IGMP16-2
L
Layer 2 frames, classification with CoS25-2
Layer 2 interfaces, default configuration9-9
Layer 2 trunks13-15
Layer 3 packets, classification methods25-2
Layer 3 parameters of ACEs24-10
Layer 4 parameters of ACEs24-10
LDAP5-2
leave processing, IGMP16-9
LEDs
port modes3-7
RPS3-6
legend, CMS icons and labels3-18
lightweight directory access protocol
line configuration mode2-2
link icons, Topology view3-12
link labels3-12
link pop-up menu, Topology view3-21
links, unidirectional18-1
lists, CMS3-27
login authentication
with RADIUS7-22
with TACACS+7-13
login banners7-49
log messages
loop guard
described12-13
enabling12-20
support for1-3
LRE profiles, considerations in switch clusters6-19
M
MAC addresses
adding secure7-57
aging time7-53
and VLAN association7-53
building the address table7-52
default configuration7-53
discovering7-59
displaying7-58
dynamic
learning7-52
removing7-54
in ACLs24-18
static
adding7-57
characteristics of7-56
removing7-57
MAC address multicast entries, monitoring16-10
MAC address-to-VLAN mapping13-25
MAC extended access lists24-18
management options
benefits
clustering1-6
CMS1-6
CLI2-1
CMS3-1
CNS5-1
overview1-5
management VLAN
changing6-19
considerations in switch clusters6-9, 6-10, 6-19
discovery through different management VLANs6-10
discovery through same management VLAN6-9
IP address6-19
MANs
CWDM configuration example1-16
long-distance, high-bandwidth transport configuration example1-16
mapping tables for QoS
configuring
DSCP25-24
DSCP-to-CoS25-26
described25-5
matching, ACLs24-7
maximum aging time
MSTP11-21
STP10-20
maximum hop count, MSTP11-21
membership mode, VLAN port3-8, 13-3
member switch
adding6-21
automatic discovery6-5
defined6-2
managing6-26
passwords6-16
recovering from lost connectivity27-7
requirements6-4
See also candidate switch, cluster standby group, and standby command switch
menu bar
described3-14
variations3-14
messages
system3-18
to users through banners7-49
metropolitan-area networks
MIBs
accessing files with FTPA-2
location of filesA-2
overview23-1
SNMP interaction with23-4
supportedA-1
mini-point-of-presence
mirroring traffic for analysis20-1
mismatches, autonegotiation27-8
Mode button3-7
modes
port3-7
VLAN port membership3-8
Modify button3-27
monitoring
access groups24-23
ACLs24-22
cables for unidirectional links18-1
CDP19-5
IGMP
filters16-23
snooping16-9
interfaces9-14
multicast router interfaces16-10
MVR16-18
network traffic for analysis with probe20-1
port protection17-12
speed and duplex mode9-12
monitoring (continued)traffic flowing among switches21-1
traffic suppression17-12
VLANs13-14
VMPS13-31
VTP14-16
MSTP
boundary ports
configuration guidelines11-12
described11-10
BPDU filtering
described12-3
enabling12-16
BPDU guard
described12-3
enabling12-15
CIST, described11-8
configuration guidelines11-12
configuring
forward-delay time11-20
hello time11-19
link type for rapid convergence11-22
maximum aging time11-21
maximum hop count11-21
MST region11-13
path cost11-18
port priority11-17
root switch11-14
secondary root switch11-16
switch priority11-19
CST
defined11-8
operations between regions11-9
default configuration11-12
default optional feature configuration12-14
displaying status11-23
enabling the mode11-13
MSTP (continued)extended system ID
affects on root switch11-14
affects on secondary root switch11-16
unexpected behavior11-14
interface state, blocking to forwarding12-2
interoperability with 802.1D
described11-11
restarting migration process11-22
IST
defined11-8
master11-8
operations within a region11-8
loop guard
described12-13
enabling12-20
mapping VLANs to MST instance11-13
MST region
CIST11-8
configuring11-13
described11-7
hop-count mechanism11-10
IST11-8
supported spanning-tree instances11-7
overview11-7
Port Fast
described12-2
enabling12-14
preventing root switch selection12-12
root guard
described12-12
enabling12-19
root switch
affects of extended system ID11-14
configuring11-14
unexpected behavior11-14
shutdown Port Fast-enabled port12-3
multicast groups
and IGMP snooping16-5
Immediate Leave16-4
joining16-2
leaving16-4
static joins16-8
multicast router interfaces, monitoring16-10
multicast router ports, adding16-7
Multicast VLAN Registration
Multilink Decomposer window3-21
multilink icon3-21
Multiple Spanning Tree Protocol
MVR
configuring interfaces16-16
default configuration16-14
described16-12
modes16-16
monitoring16-18
setting global parameters16-15
N
named IP ACLs24-13
NameSpace Mapper
native VLAN
configuring13-20
default13-20
negotiate trunk mode3-8
neighboring devices, types of3-11
network examples
collapsed backbone and switch cluster1-12
design concepts
cost-effective wiring closet1-8
high-performance workgroup1-9
network performance1-7
network services1-8
redundant Gigabit backbone1-9
large campus1-13
long-distance, high-bandwidth transport configuration1-16
small to medium-sized network1-10
network management
CDP19-1
RMON21-1
SNMP23-1
Network Time Protocol
no commands2-4
nontrunking mode13-16
normal-range VLANs
configuration modes13-6
defined13-1
NSM5-3
NTP
associations
authenticating7-35
defined7-33
enabling broadcast messages7-37
peer7-36
server7-36
default configuration7-35
displaying the configuration7-41
overview7-32
restricting access
creating an access group7-39
disabling NTP services per interface7-40
NTP (continued)source IP address, configuring7-40
stratum7-32
synchronizing devices7-36
time
services7-33
synchronizing7-32
O
OK button3-27
online help3-25
out-of-profile markdown1-5
overheating indication, switch3-5
P
PAgP
pass-through mode25-15
passwords
default configuration7-2
encrypting7-4
in CMS3-28
overview7-1
recovery of27-2
setting
enable7-3
enable secret7-4
Telnet7-5
with usernames7-6
VTP domain14-8
path cost
MSTP11-18
STP10-16
PC (passive command switch)6-13, 6-24
per-VLAN Spanning Tree (PVST)10-2
per-VLAN Spanning Tree+ (PVST+)10-8
physical ports9-2
PIM-DVMRP, as snooping method16-6
policers
configuring for each matched traffic class25-21
described25-3
types of25-6
policy maps for QoS
characteristics of25-21
configuring25-21
described25-6
displaying25-28
POP1-14
Port Aggregation Protocol
port-based authentication
authentication server
defined8-2
RADIUS server8-2
client, defined8-2
configuration guidelines8-7
configuring
manual re-authentication of a client8-11
quiet period8-11
RADIUS server8-10
RADIUS server parameters on the switch8-9
switch-to-client frame-retransmission number8-13
switch-to-client retransmission time8-12
default configuration8-6
described8-1
device roles8-2
displaying statistics8-14
port-based authentication (continued)EAPOL-start frame8-3
EAP-request/identity frame8-3
EAP-response/identity frame8-3
enabling
802.1X authentication8-8
periodic re-authentication8-10
encapsulation8-2
initiation and message exchange8-3
method lists8-8
ports
authorization state and dot1x port-control command8-4
authorized and unauthorized8-4
resetting to default values8-14
switch
as proxy8-2
RADIUS client8-2
topologies, supported8-5
port-channel
Port Fast
described12-2
enabling12-14
mode, spanning tree13-28
support for1-3
port icons, Front Panel view3-6
port LEDs
described3-8
DUPLX3-7
port modes3-7
SPEED3-7
STAT3-7
port membership modes, VLAN3-8, 13-3
port modes
described3-7
LEDs3-7
port pop-up menu, Front Panel view3-20
port priority
MSTP11-17
STP10-15
ports
802.1Q trunk3-8
access9-2
negotiate trunk3-8
priority25-8
protected17-3
secure17-4
switch9-2
trunks13-15
VLAN assignments13-11
port scheduling25-8
port security
aging17-10
configuring17-7
default configuration17-6
described17-4
displaying17-12
sticky learning17-5
violations17-6
with other features17-7
port-shutdown response, VMPS13-25
preferential treatment of traffic
preventing unauthorized access7-1
priority
overriding CoS15-5
port
described25-8
trusting CoS15-6
private VLAN edge ports
privileged EXEC mode2-2
privilege levels
changing the default for lines7-8
command switch6-26
exiting7-9
logging into7-9
mapping on member switches6-26
setting a command with7-7
pruning, VTP
enabling14-14
enabling on a port13-20
examples14-5
overview14-4
pruning-eligible list
changing13-20
for VTP pruning14-4
VLANs14-14
PSTN1-13
publications, relatedxxvii
PVST13-2
Q
QoS
basic model25-3
classification
class maps, described25-6
defined25-3
in frames and packets25-3
IP ACLs, described25-5
MAC ACLs, described25-5
pass-through mode, described25-15
policy maps, described25-6
port default, described25-4
trust DSCP, described25-5
QoS (continued)classification (continued)
trusted boundary, described25-13
trusted CoS, described25-4
types for IP traffic25-5
types for non-IP traffic25-4
class maps
configuring25-20
displaying25-28
configuration examples
common wiring closet25-30
intelligent wiring closet25-30
configuration guidelines25-10
configuring
class maps25-20
CoS and WRR25-27
default port CoS value25-13
IP extended ACLs25-18
IP standard ACLs25-16
MAC ACLs25-19
policy maps25-21
port trust states within the domain25-11
QoS policy25-16
trusted boundary25-14
default configuration25-9
displaying statistics25-28
egress port scheduling25-8
ingress port scheduling25-8
IP phones, detection and trusted settings25-13
mapping tables
CoS-to-DSCP25-25
displaying25-28
DSCP-to-CoS25-26
types of25-5
marked-down actions25-23
overview25-2
pass-through mode25-15
QoS (continued)policers
configuring25-23
described25-6
number of25-7
types of25-6
policy maps
characteristics of25-21
configuring25-21
displaying25-28
queueing, defined25-4
scheduling, defined25-4
support for1-4
trusted bounday25-13
trust states25-4
understanding25-2
quality of service
queries, IGMP16-3
R
RADIUS
attributes
vendor-proprietary7-29
vendor-specific7-28
configuring
accounting7-27
authentication7-22
authorization7-26
communication, global7-20, 7-28
communication, per-server7-19, 7-20
multiple UDP ports7-20
default configuration7-19
defining AAA server groups7-24
displaying the configuration7-30
identifying the server7-19
RADIUS (continued)in clusters6-18
limiting the services to the user7-26
method list, defined7-19
operation of7-18
overview7-17
suggested network environments7-17
tracking services accessed by user7-27
range
macro9-8
of interfaces9-6
Rapid Spanning Tree Protocol
rcommand command6-26
reconfirmation interval, VMPS, changing13-30
recovery procedures27-1
redundancy
EtherChannel26-2
STP
backbone10-8
multidrop backbone12-5
path cost13-23
port priority13-21
redundant clusters
redundant links and UplinkFast12-17
redundant power system
Refresh button3-27
Remote Authentication Dial-In User Service
remote monitoring
Remote Network Monitoring
removing secure addresses7-57
resetting a UDLD-shutdown interface18-5
restricting access
NTP services7-38
overview7-1
passwords and privilege levels7-2
RADIUS7-17
TACACS+7-9
retry count, VMPS, changing13-30
RFC
1112, IP multicast and IGMP16-2
1157, SNMPv123-2
1305, NTP7-32
1757, RMON21-2
1901, SNMPv2C23-2
1902 to 1907, SNMPv223-2
2236, IP multicast and IGMP16-2
2273-2275, SNMPv323-2
RMON
default configuration21-3
displaying status21-6
enabling alarms and events21-3
groups supported21-2
overview21-1
statistics
collecting group Ethernet21-5
collecting group history21-5
root guard
described12-12
enabling12-19
support for1-3
root switch
MSTP11-14
STP10-12
RSPAN
configuration guidelines20-10
default configuration20-6
destination ports20-4
RSPAN (continued)displaying status20-14
interaction with other features20-5
monitored ports20-4
monitoring ports20-4
received traffic20-3
reflector port20-4
session limits20-6
sessions
creating20-11
defined20-3
removing source (monitored) ports20-13
specifying monitored ports20-11
source ports20-4
transmitted traffic20-3
RSTP
active topology, determining11-2
BPDU
format11-5
processing11-6
configuration guidelines11-12
designated port, defined11-2
designated switch, defined11-2
interoperability with 802.1D
described11-11
restarting migration process11-22
topology changes11-6
overview11-2
port roles
described11-2
synchronized11-4
proposal-agreement handshake process11-3
rapid convergence
edge ports and Port Fast11-3
point-to-point links11-3, 11-22
root ports11-3
root port, defined11-2
running configuration, saving4-10
S
SC (standby command switch)6-13, 6-24
secure addresses
adding7-57
described7-57
secure ports, configuring17-4
security, port17-4
sequence numbers in log messages22-8
server mode, VTP14-3
servers, BOOTP1-2
service-provider network, MSTP and RSTP11-1
set-request operation23-4
setup program, failed command switch replacement27-5, 27-6
severity levels, defining in system messages22-8
show and more command output, filtering2-9
show cdp traffic command19-5
show cluster members command6-26
show configuration command9-13
show interfaces command9-12, 9-13
show running-config command
displaying ACLs24-19, 24-20, 24-21
interface description in9-13
shutdown command on interfaces9-17
Simple Network Management Protocol
SNAP19-1
SNMP
accessing MIB variables with23-4
agent
described23-3
disabling23-7
community strings
configuring23-7
for cluster switches23-4
overview23-4
SNMP (continued)configuration examples23-14
default configuration23-6
groups23-8
in clusters6-17
informs
and trap keyword23-10
described23-5
differences from traps23-5
enabling23-12
limiting access by TFTP servers23-13
limiting system log messages to NMS22-10
manager functions23-3
managing clusters with6-27
MIBs
location ofA-2
supportedA-1
notifications23-5
status, displaying23-15
system contact and location23-13
trap manager, configuring23-11
traps
differences from informs23-5
enabling23-10
enabling MAC address notification7-54
types of23-10
users23-8
versions supported23-2
snooping, IGMP16-1
software, VLAN considerations14-8
software images
recovery procedures27-2
See also downloading and uploading
source addresses, in ACLs24-12
SPAN
configuration guidelines20-7
default configuration20-6
destination ports20-4
displaying status20-14
interaction with other features20-5
monitored ports20-4
monitoring ports20-4
received traffic20-3
session limits20-6
sessions
creating20-7
defined20-3
removing destination (monitoring) ports20-9
removing source (monitored) ports20-9
specifying monitored ports20-7
source ports20-4
transmitted traffic20-3
spanning tree and native VLANs13-17
Spanning Tree Protocol
speed, configuring on interfaces9-10
Stack Membership Discovery Protocol12-6
Standby Command Configuration window6-24
standby command switch
considerations6-14
defined6-2
priority6-13
requirements6-3
virtual IP address6-14
See also cluster standby group and HSRP
standby group, cluster
See cluster standby group and HSRP
static access mode3-8
static access ports
assigning to VLAN13-11
static addresses
static VLAN membership13-2
statistics
802.1X8-14
CDP19-5
interface9-14
QoS ingress and egress25-28
RMON group Ethernet21-5
RMON group history21-5
SNMP input and output23-15
VTP14-16
status bar
change notification3-30
error notification3-30
sticky learning17-5
storm control
described17-1
displaying17-12
STP
accelerating root port selection12-4
BackboneFast
described12-10
enabling12-19
BPDU filtering
described12-3
enabling12-16
BPDU guard
described12-3
enabling12-15
BPDU message exchange10-2
configuration guidelines10-10
STP (continued)configuring
forward-delay time10-19
hello time10-19
in cascaded stack10-20
maximum aging time10-20
path cost10-16
root switch10-12
secondary root switch10-14
switch priority10-18
cross-stack UplinkFast
described12-5
enabling12-18
default configuration10-10
default optional feature configuration12-14
designated port, defined10-3
designated switch, defined10-3
detecting indirect link failures12-10
disabling10-12
displaying status10-21
extended system ID
affects on root switch10-12
affects on the secondary root switch10-14
overview10-4
unexpected behavior10-13
features supported1-3
inferior BPDU10-3
interface state, blocking to forwarding12-2
interface states
blocking10-7
disabled10-8
learning10-7
listening10-7
overview10-5
limitations with 802.1Q trunks10-8
STP (continued)load sharing
overview13-21
using path costs13-23
using port priorities13-21
loop guard
described12-13
enabling12-20
multicast addresses, affect of10-8
overview10-2
Port Fast
described12-2
enabling12-14
port priorities13-22
preventing root switch selection12-12
redundant connectivity10-8
root guard
described12-12
enabling12-19
root port, defined10-3
root switch
affects of extended system ID10-4, 10-12
configuring10-12
election10-3
unexpected behavior10-13
settings in a cascaded stack10-20
shutdown Port Fast-enabled port12-3
superior BPDU10-3
supported number of spanning-tree instances10-2
timers, described10-4
UplinkFast
described12-4
enabling12-17
stratum, NTP7-32
summer time7-44
SunNet Manager1-6
switch clustering technology6-1
switched ports9-2
switchport protected command17-3
switch priority
MSTP11-19
STP10-18
syslog
system clock
configuring
daylight saving time7-44
manually7-42
summer time7-44
time zones7-43
displaying the time and date7-42
overview7-32
system message logging
default configuration22-3
defining error message severity levels22-8
disabling22-4
displaying the configuration22-12
enabling22-4
facility keywords, described22-12
level keywords, described22-9
limiting messages22-10
message format22-2
overview22-1
sequence numbers, enabling and disabling22-8
setting the display destination device22-4
synchronizing log messages22-6
timestamps, enabling and disabling22-7
system message logging (continued)UNIX syslog servers
configuring the daemon22-11
configuring the logging facility22-11
facilities supported22-12
system messages on CMS3-18
system name
default configuration7-46
default setting7-46
manual configuration7-46
system prompt
default setting7-46
manual configuration7-47
T
tables, CMS3-27
tabs, CMS3-27
TACACS+
accounting, defined7-10
authentication, defined7-10
authorization, defined7-10
configuring
accounting7-16
authentication key7-12
authorization7-15
login authentication7-13
default configuration7-12
displaying the configuration7-16
identifying the server7-12
in clusters6-18
limiting the services to the user7-15
operation of7-11
overview7-9
tracking services accessed by user7-16
Telnet
accessing management interfaces2-9
accessing the CLI1-6
from a browser2-10
setting a password7-5
Terminal Access Controller Access Control System Plus
terminal lines, setting a password7-5
TFTP
configuration files in base directory4-6
configuring for autoconfiguration4-5
limiting access by servers23-13
time
time-range command24-15
time ranges in ACLs24-15
timestamps in log messages22-7
time zones7-43
Token Ring VLANs
support for13-5
VTP support14-4
toolbar3-19
tool tips3-25
Topology view
Collapse Cluster view3-10
device labels3-12
display options3-13
Expand Cluster view3-10
icons3-11
link icons3-12
link labels3-12
multilink icon3-21
neighboring devices3-11
pop-up menus3-21
TOS1-4
traffic
fragmented24-3
unfragmented24-3
traffic policing1-5
transparent mode, VTP14-3, 14-12
trap-door mechanism4-2
traps
configuring MAC address notification7-54
configuring managers23-10
defined23-3
notification types23-10
troubleshooting
detecting unidirectional links18-1
displaying crash information27-10
GBIC security and identification27-8
with CiscoWorks23-4
with debug commands27-8
with system message logging22-1
trunk ports
configuring13-18
defined9-3
trunks
allowed-VLAN list13-19
load sharing
setting STP path costs13-23
using STP port priorities13-21, 13-22
native VLAN for untagged traffic13-20
parallel13-23
pruning-eligible list13-20
to non-DTP device13-15
understanding13-15
trusted boundary25-13
twisted-pair Ethernet, detecting unidirectional links18-1
type-of-service
U
UDLD
default configuration18-3
echoing detection mechanism18-2
enabling
globally18-4
per interface18-4
link-detection mechanism18-1
neighbor database18-2
overview18-1
resetting an interface18-5
status, displaying18-6
unauthorized ports with 802.1X8-4
UniDirectional Link Detection protocol
UNIX syslog servers
daemon configuration22-11
facilities supported22-12
message logging configuration22-11
unrecognized Type-Length-Value (TLV) support14-4
upgrading software, VLAN considerations14-8
UplinkFast
described12-4
enabling12-17
support for1-3
user EXEC mode2-2
username-based authentication7-6
V
verifying changes in CMS3-30
version-dependent transparent mode14-4
virtual IP address
cluster standby group6-14, 6-24
vlan.dat file13-4
VLAN configuration
at bootup13-7
saving13-7
VLAN configuration mode2-2, 13-6
VLAN database
and startup configuration file13-7
and VTP14-1
VLAN configuration saved in13-7
VLANs saved in13-4
vlan database command13-6
vlan global configuration command13-6
VLAN ID, discovering7-59
VLAN management domain14-2
VLAN Management Policy Server
VLAN membership
confirming13-30
VLAN Query Protocol
VLANs
adding13-8
adding to VLAN database13-8
aging dynamic addresses10-9
allowed on trunk13-19
and spanning-tree instances13-2, 13-6, 13-13
configuration guidelines, normal-range VLANs13-5
configuration options13-6
configuring13-1
configuring IDs 1006 to 409413-12
creating in config-vlan mode13-9
creating in VLAN configuration mode13-9
default configuration13-8
deleting13-10
displaying13-14
illustrated13-2
VLANs (continued)modifying13-8
native, configuring13-20
parameters13-4
port membership modes3-8, 13-3
static-access ports13-11
STP and 802.1Q trunks10-8
supported13-2
Token Ring13-5
VTP modes14-3
VLAN Trunking Protocol
VLAN trunks13-15
VMPS
administering13-31
configuration example13-32
configuration guidelines13-28
default configuration13-27
description13-24
dynamic port membership
described13-25
reconfirming13-30
troubleshooting13-31
entering server address13-28
mapping MAC addresses to VLANs13-25
monitoring13-31
reconfirmation interval, changing13-30
reconfirming membership13-30
retry count, changing13-30
voice VLAN
Cisco 7960 phone, port connections15-1
configuration guidelines15-3
configuring IP phones for data traffic
override CoS of incoming frame15-5
trust CoS priority of incoming frame15-6
voice VLAN (continued)configuring ports for voice traffic in
802.1P priority tagged frames15-4
802.1Q frames15-4
connecting to an IP phone15-3
default configuration15-2
described15-1
displaying15-6
VQP13-24
VTP
adding a client to a domain14-15
and extended-range VLANs14-1
and normal-range VLANs14-1
client mode, configuring14-11
configuration
global configuration mode14-7
guidelines14-8
privileged EXEC mode14-7
requirements14-9
saving14-7
VLAN configuration mode14-7
configuration mode options14-7
configuration requirements14-9
configuration revision number
guideline14-15
resetting14-15
configuring
client mode14-11
server mode14-9
transparent mode14-12
consistency checks14-4
default configuration14-6
described14-1
disabling14-12
domain names14-8
domains14-2
VTP (continued)modes
transitions14-3
monitoring14-16
passwords14-8
pruning
disabling14-14
enabling14-14
examples14-5
overview14-4
pruning-eligible list, changing13-20
server mode, configuring14-9
statistics14-16
Token Ring support14-4
transparent mode, configuring14-12
using14-1
version, guidelines14-9
version 114-4
version 2
configuration guidelines14-9
disabling14-13
enabling14-13
overview14-4
W
warningsxxvi
web-based management software
Weighted Round Robin
window components, CMS3-26
wizards3-24
WRR
configuring25-27
defining25-8
description25-8
X
XMODEM protocol27-2