-
Catalyst 2970 Switch Software Configuration Guide, 12.1(14)EA1
-
Index
-
Preface
-
Overview
-
Using the Command-Line Interface
-
Getting Started with CMS
-
Assigning the Switch IP Address and Default Gateway
-
Clustering Switches
-
Administering the Switch
-
Configuring Switch-Based Authentication
-
Configuring 802.1X Port-Based Authentication
-
Configuring Interface Characteristics
-
Configuring VLANs
-
Configuring VTP
-
Configuring Voice VLAN
-
Configuring STP
-
Configuring MSTP
-
Configuring Optional Spanning-Tree Features
-
Configuring IGMP Snooping and MVR
-
Configuring Port-Based Traffic Control
-
Configuring CDP
-
Configuring UDLD
-
Configuring SPAN and RSPAN
-
Configuring RMON
-
Configuring System Message Logging
-
Configuring SNMP
-
Configuring Network Security with ACLs
-
Configuring QoS
-
Configuring EtherChannels
-
Troubleshooting
-
Supported MIBs
-
Working with the Cisco IOS File System, Configuration Files, and Software Images
-
Unsupported Commands in Cisco IOS Release 12.1(14)EA1
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X -
Index
Numerics
802.1D
802.1Q
and trunk ports 9-3
configuration limitations 10-17
encapsulation 10-14
native VLAN for untagged traffic 10-21
trunk mode 3-9
802.1S
802.1W
802.1X
802.3AD
802.3Z flow control 9-11
A
abbreviating commands 2-4
AC (command switch) 5-10, 5-19
access-class command 24-16
access control entries
access-denied response, VMPS 10-26
access groups
applying ACLs to interfaces 24-17
IP 24-17
accessing
clusters, switch 5-13
CMS 3-28
command switches 5-11
HTTP port 3-29
member switches 5-13
switch clusters 5-13
access lists
access ports
defined 9-2
in switch clusters 5-9
accounting
with RADIUS 7-28
ACEs
and QoS 25-7
defined 24-2
Ethernet 24-2
IP 24-2
ACLs
ACEs 24-2
any keyword 24-9
applying
time ranges to 24-13
to an interface 24-16
to QoS 25-7
classifying traffic for QoS 25-37
comments in 24-15
compiling 24-18
ACLs (continued)
extended IP
configuring for QoS classification 25-38
creating 24-8
matching criteria 24-6
hardware and software handling 24-17
host keyword 24-10
IP
applying to interface 24-16
applying to interfaces 24-16
creating 24-5
fragments and QoS guidelines 25-29
implicit deny 24-7, 24-11, 24-13
implicit masks 24-7
matching criteria 24-6
named 24-11
terminal lines, setting on 24-16
undefined 24-17
monitoring 24-29
named 24-11
number per QoS class map 25-29
numbers 24-6
port 24-2
precedence of 24-2
standard IP
configuring for QoS classification 25-37
creating 24-7
matching criteria 24-6
supported features 24-17
support for 1-5
time ranges 24-13
unsupported features 24-5
VLAN maps
configuration guidelines 24-23
configuring 24-22
address aliasing 16-2
addresses
displaying the MAC address table 6-27
dynamic
accelerated aging 13-8
changing the aging time 6-23
default aging 13-8
defined 6-22
learning 6-22
removing 6-24
MAC
discovering 6-28
multicast, STP address management 13-8
static
adding and removing 6-26
defined 6-22
address resolution 6-28
Address Resolution Protocol
advertisements
CDP 18-1
aggregated ports
aggregate policers 25-45
aggregate policing 1-6
aging, accelerating 13-8
aging time
accelerated
for MSTP 14-20
MAC address table 6-23
maximum
for MSTP 14-21
for STP 13-21
alarms, RMON 21-3
allowed-VLAN list 10-19
Apply button 3-27
ARP table
address resolution 6-28
managing 6-28
attributes, RADIUS
vendor-proprietary 7-31
vendor-specific 7-29
audience xxv
authentication
local mode with AAA 7-37
NTP associations 6-5
RADIUS
key 7-21
login 7-23
See also port-based authentication
TACACS+
defined 7-11
key 7-13
login 7-14
authoritative time source, described 6-2
authorization
with RADIUS 7-27
authorized ports with 802.1X 8-4
autoconfiguration 4-3
automatic discovery
adding member switches 5-16
considerations
beyond a non-candidate device 5-8
brand new switches 5-9
connectivity 5-5
different VLANs 5-7
management VLANs 5-8
non-CDP-capable devices 5-6
non-cluster-capable devices 5-6
creating a cluster standby group 5-18
in switch clusters 5-5
automatic QoS
automatic recovery, clusters 5-10
autonegotiation
duplex mode 1-2
interface configuration guidelines 9-10
mismatches 27-12
autosensing, port speed 1-2
auxiliary VLAN
availability, features 1-4
B
BackboneFast
described 15-6
enabling 15-15
support for 1-4
bandwidth graphs 3-8
banners
configuring
login 6-21
message-of-the-day login 6-20
default configuration 6-19
when displayed 6-19
blocking packets 17-5
booting
boot loader, function of 4-2
boot process 4-1
manually 4-13
specific image 4-14
boot loader
accessing 4-15
described 4-2
environment variables 4-15
prompt 4-15
trap-door mechanism 4-2
BPDU
error-disabled state 15-3
filtering 15-3
RSTP format 14-9
BPDU filtering
described 15-3
enabling 15-13
support for 1-4
BPDU guard
described 15-3
enabling 15-12
support for 1-4
bridge protocol data unit
broadcast storm-control command 17-3
broadcast storms 17-1
browser configuration 3-1
buttons, CMS 3-27
C
cables, monitoring for unidirectional links 19-1
Cancel button 3-27
candidate switch
adding 5-16
automatic discovery 5-5
defined 5-4
HC 5-19
passwords 5-17
requirements 5-4
standby group 5-18
See also command switch, cluster standby group, and member switch
caution, described xxvi
CC (command switch) 5-19
CDP
and trusted boundary 25-34
automatic discovery in switch clusters 5-5
configuring 18-2
CDP (continued)
default configuration 18-2
described 18-1
disabling for routing device 18-3, 18-4
enabling and disabling
on an interface 18-4
on a switch 18-3
monitoring 18-5
overview 18-1
support for 1-3
transmission timer and holdtime, setting 18-2
updates 18-2
CGMP
as IGMP snooping learning method 16-7
joining multicast group 16-2
change notification, CMS 3-29
Cisco 7960 IP Phone 12-1
Cisco Discovery Protocol
Cisco IOS File System
class maps for QoS
configuring 25-40
described 25-7
displaying 25-64
class of service
clearing interfaces 9-16
CLI
abbreviating commands 2-4
command modes 2-1
described 1-3
editing features
enabling and disabling 2-7
keystroke editing 2-7
wrapped lines 2-8
error messages 2-5
filtering command output 2-9
CLI (continued)
getting help 2-3
history
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
managing clusters 5-21
no and default forms of commands 2-4
client mode, VTP 11-3
clock
Cluster Management Suite
clusters
switch
home page 3-2
clusters, switch
accessing 5-13
adding member switches 5-16
automatic discovery 5-5
automatic recovery 5-10
benefits 1-2
command switch configuration 5-16
compatibility 5-4
creating 5-15
creating a cluster standby group 5-18
described 5-1
managing
through CLI 5-21
through SNMP 5-22
planning 5-4
clusters, switch (continued)
planning considerations
automatic discovery 5-5
automatic recovery 5-10
CLI 5-21
host names 5-13
IP addresses 5-13
passwords 5-14
RADIUS 5-14
switch-specific features 5-15
TACACS+ 5-14
redundancy 5-18
troubleshooting 5-20
verifying 5-20
cluster standby group
automatic recovery 5-12
considerations 5-11
creating 5-18
defined 5-2
requirements 5-3
virtual IP address 5-11
cluster tree
described 3-6
icons 3-6
CMS
accessing 3-28
benefits 1-2
change notification 3-29
CMS (continued)
cluster tree 3-6
different versions of 3-31
displaying system messages 3-17
error checking 3-29
features 3-3
Front Panel images 3-6
Front Panel view 3-5
interaction modes 3-23
launching 3-2
menu bar 3-14
online help 3-24
requirements 3-28
saving configuration changes 3-30
toolbar 3-18
tool tips 3-24
Topology view 3-10
verifying configuration changes 3-29
window components 3-26
wizards 3-23
collapsed cluster view 3-11
command-line interface
command modes 2-1
commands
abbreviating 2-4
no and default 2-4
setting privilege levels 7-8
command switch
accessing 5-11
command switch with HSRP disabled (CC) 5-19
configuration conflicts 27-11
defined 5-2
enabling 5-16
password privilege levels 5-21
priority 5-10
command switch (continued)
recovery
from command-switch failure 5-10
from failure 27-8
from lost member connectivity 27-11
replacing
with another switch 27-10
with cluster member 27-8
requirements 5-3
See also candidate switch, cluster standby group, member switch, and standby command switch
community strings
for cluster switches 23-4
in clusters 5-14
overview 23-4
SNMP 5-14
config.text 4-12
configuration, switch, saving changes 3-30
configuration conflicts, recovering from lost member connectivity 27-11
configuration examples, network 1-10
configuration files
clearing the startup configuration B-19
creating using a text editor B-10
default name 4-12
deleting a stored configuration B-19
described B-8
downloading
automatically 4-12
reasons for B-8
using FTP B-13
using RCP B-17
using TFTP B-11
guidelines for creating and using B-9
invalid combinations when copying B-5
configuration files (continued)
limiting TFTP server access 23-16
obtaining with DHCP 4-7
password recovery disable considerations 7-5
specifying the filename 4-13
system contact and location information 23-15
types and location B-9
uploading
reasons for B-8
using FTP B-15
using RCP B-18
using TFTP B-12
configuration settings, saving 4-10
configure terminal command 9-5
conflicts, configuration 27-11
connections, secure remote 7-38
connectivity problems 27-12, 27-13
consistency checks in VTP version 2 11-4
console port, connecting to 2-10
conventions
command xxvi
for examples xxvi
publication xxvi
text xxvi
corrupted software, recovery steps with XMODEM 27-2
CoS
in Layer 2 frames 25-2
override priority 12-5
trust priority 12-5
CoS input queue threshold map for QoS 25-14
CoS output queue threshold map for QoS 25-16
CoS-to-DSCP map for QoS 25-47
counters, clearing interface 9-16
crashinfo file 27-19
cryptographic software image
Kerberos 7-32
SSH 7-38
CWDM GBIC modules, wavelength colors on CMS 3-7
D
daylight saving time 6-14
debugging
enabling all system diagnostics 27-17
enabling for a specific feature 27-16
redirecting error message output 27-17
using commands 27-16
default commands 2-4
default configuration
802.1X 8-10
auto-QoS 25-18
banners 6-19
booting 4-12
CDP 18-2
DNS 6-18
EtherChannel 26-9
IGMP filtering 16-18
IGMP snooping 16-5
initial switch information 4-3
Layer 2 interfaces 9-9
MAC address table 6-23
MSTP 14-12
MVR 16-14
NTP 6-4
optional spanning-tree features 15-10
password and privilege level 7-2
RADIUS 7-20
RMON 21-3
RSPAN 20-9
SNMP 23-6
default configuration (continued)
SPAN 20-9
standard QoS 25-27
STP 13-11
system message logging 22-3
system name and prompt 6-16
TACACS+ 7-13
UDLD 19-3
VLAN, Layer 2 Ethernet interfaces 10-17
VLANs 10-7
VMPS 10-27
voice VLAN 12-3
VTP 11-6
default gateway 4-10
deleting VLANs 10-10
description command 9-13
designing your network, examples 1-10
destination addresses, in ACLs 24-9
destination-IP address based forwarding, EtherChannel 26-7
destination-MAC address forwarding, EtherChannel 26-7
detecting indirect link failures, STP 15-6
device discovery protocol 18-1
device icons, Front Panel view 3-6
device information 3-12
Device Manager 3-4
device pop-up menu
Front Panel view 3-19
Topology view 3-21
DHCP-based autoconfiguration
client request message exchange 4-4
configuring
client side 4-3
DNS 4-6
relay device 4-6
server-side 4-5
TFTP server 4-5
example 4-8
DHCP-based autoconfiguration (continued)
lease options
for IP address information 4-5
for receiving the configuration file 4-5
overview 4-3
relationship to BOOTP 4-3
relay support 1-3
support for 1-3
Differentiated Services architecture, QoS 25-1
Differentiated Services Code Point 25-2
directed unicast requests 1-3
directories
changing B-3
creating and removing B-4
displaying the working B-3
discovery, clusters
display options, Topology view 3-14
Disqualification Code option 3-22
DNS
and DHCP-based autoconfiguration 4-6
default configuration 6-18
displaying the configuration 6-19
overview 6-17
setting up 6-18
support for 1-3
documentation
feedback xxviii
obtaining
CD-ROM xxvii
world wide web xxvii
ordering xxviii
related xxvii
document conventions xxvi
domain names
DNS 6-17
VTP 11-8
Domain Name System
downloading
configuration files
reasons for B-8
using FTP B-13
using RCP B-17
using TFTP B-11
image files
deleting old image B-24
reasons for B-20
using FTP B-26
using RCP B-31
using TFTP B-23
DSCP input queue threshold map for QoS 25-14
DSCP output queue threshold map for QoS 25-16
DSCP-to-CoS map for QoS 25-50
DSCP-to-DSCP-mutation map for QoS 25-51
dynamic access mode 3-9
dynamic access ports
characteristics 10-3
configuring 10-28
defined 9-3
dynamic addresses
dynamic auto trunking mode 10-16
dynamic desirable trunking mode 10-16
Dynamic Host Configuration Protocol
See DHCP-based autoconfiguration
dynamic port VLAN membership
described 10-26
reconfirming 10-29
troubleshooting 10-31
types of connections 10-28
Dynamic Trunking Protocol
E
editing features
enabling and disabling 2-7
keystrokes used 2-7
wrapped lines 2-8
enable password 7-4
enable secret password 7-4
encryption for passwords 7-4
environment variables 4-16
error checking, CMS 3-29
error messages during command entry 2-5
EtherChannel
802.3AD, described 26-5
automatic creation of 26-4, 26-5
channel groups
binding physical and logical interfaces 26-3
numbering of 26-3
configuration guidelines 26-9
configuring Layer 2 interfaces 26-10
default configuration 26-9
described 26-2
displaying status 26-17
forwarding methods 26-6, 26-12
interaction
with STP 26-9
with VLANs 26-10
LACP
described 26-5
displaying status 26-17
hot-standby ports 26-14
interaction with other features 26-6
modes 26-5
port priority 26-16
system priority 26-15
LACP, support for 1-2
number of interfaces per 26-2
EtherChannel (continued)
PAgP
aggregate-port learners 26-13
compatibility with Catalyst 1900 26-13
described 26-4
displaying status 26-17
interaction with other features 26-5
learn method and priority configuration 26-13
modes 26-4
silent mode 26-5
support for 1-2
port-channel interfaces
described 26-3
numbering of 26-3
port groups 9-3
support for 1-2
Ethernet VLANs
adding 10-8
defaults and ranges 10-7
modifying 10-8
events, RMON 21-3
examples
conventions for xxvi
network configuration 1-10
expanded cluster view 3-10
expert mode 3-23
express setup 3-2
extended-range VLANs
configuration guidelines 10-12
configuring 10-11
creating 10-12
defined 10-1
extended system ID
MSTP 14-14
Extensible Authentication Protocol over LAN 8-1
F
fan fault indication 3-6
feedback to Cisco Systems, web xxviii
fiber-optic, detecting unidirectional links 19-1
files
copying B-4
crashinfo
description 27-19
displaying the contents of 27-19
location 27-19
deleting B-5
displaying the contents of B-8
tar
creating B-6
displaying the contents of B-6
extracting B-7
image file format B-21
file system
displaying available file systems B-2
displaying file information B-3
local file system names B-1
network file system names B-4
setting the default B-3
filtering
in a VLAN 24-22
non-IP traffic 24-20
show and more command output 2-9
filtering show and more command output 2-9
filters, IP
Flash device, number of B-1
flooded traffic, blocking 17-6
flow-based packet classification 1-6
flowcharts
QoS classification 25-6
QoS egress queueing and scheduling 25-15
QoS ingress queueing and scheduling 25-13
QoS policing and marking 25-9
forward-delay time
MSTP 14-20
STP 13-21
Front Panel images, CMS 3-6
Front Panel view
cluster tree 3-6
command switch 3-5
described 3-5
pop-up menus 3-19
port icons 3-7
port LEDs 3-8
RPS LED 3-8
switch images 3-6
FTP
accessing MIB files A-3
configuration files
downloading B-13
overview B-12
preparing the server B-13
uploading B-15
image files
deleting old image B-28
downloading B-26
preparing the server B-25
uploading B-28
G
get-bulk-request operation 23-3
get-next-request operation 23-3, 23-5
get-request operation 23-3, 23-5
get-response operation 23-3
global configuration mode 2-2
graphs, bandwidth 3-8
guest VLAN and 802.1X 8-8
guide
audience xxv
purpose of xxv
H
HC (candidate switch) 5-19
hello time
MSTP 14-19
STP 13-20
help, for the command line 2-3
Help button, CMS 3-27
Help Contents 3-24
history
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
history table, level and number of syslog messages 22-9
host name list, CMS 3-26
host names
abbreviations appended to 5-19
in clusters 5-13
hosts, limit on dynamic ports 10-31
HP OpenView 1-3
HSRP
automatic cluster recovery 5-12
cluster standby group considerations 5-11
See also clusters, cluster standby group, and standby command switch
HTTP access 3-29
Hypertext Transfer Protocol
I
ICMP ping
executing 27-13
overview 27-12
icons
cluster tree 3-6
colors
cluster tree 3-6
Topology view 3-13
Front Panel view 3-7
toolbar 3-18
Topology view 3-11
IDS appliances
and ingress RSPAN 20-20
and ingress SPAN 20-13
IEEE 802.1P 12-1
IFS 1-3
IGMP
joining multicast group 16-2
join messages 16-2
leave processing, enabling 16-9
leaving multicast group 16-4
queries 16-3
support for 1-3
IGMP filtering
configuring 16-18
default configuration 16-18
described 16-18
monitoring 16-21
support for 1-3
IGMP groups, setting the maximum number 16-20
IGMP profile
applying 16-20
configuration mode 16-18
configuring 16-19
IGMP snooping
and address aliasing 16-2
configuring 16-5
default configuration 16-5
definition 16-2
enabling and disabling 16-5
global configuration 16-5
Immediate Leave 16-4
method 16-6
monitoring 16-10
support for 1-3
VLAN configuration 16-6
Immediate-Leave, IGMP 16-4
initial configuration
defaults 1-8
See also hardware installation guide
interaction modes, CMS 3-23
interface
number 9-4
range macros 9-7
interface configuration mode 2-3
interfaces
configuration guidelines 9-10
configuring 9-5
configuring speed 9-9
counters, clearing 9-16
described 9-13
descriptive name, adding 9-13
displaying information about 9-15
flow control 9-11
management 1-3
monitoring 9-15
naming 9-13
physical, identifying 9-4
range of 9-5
interfaces (continued)
restarting 9-16
shutting down 9-16
supported 9-4
types of 9-1
interfaces range macro command 9-7
interface types 9-4
Inter-Switch Link
Intrusion Detection System
inventory, cluster 5-20
IOS File System
ip access group command 24-17
IP ACLs
applying to an interface 24-16
extended, creating 24-8
for QoS classification 25-7
implicit deny 24-7, 24-11, 24-13
implicit masks 24-7
named 24-11
standard, creating 24-7
undefined 24-17
virtual terminal lines, setting on 24-16
IP addresses
cluster access 5-2
command switch 5-3, 5-11, 5-13
discovering 6-28
entering in browser window 3-2
redundant clusters 5-11
standby command switch 5-11, 5-13
ip igmp profile command 16-18
IP information
assigned
manually 4-9
through DHCP-based autoconfiguration 4-3
default configuration 4-3
IP phones
and QoS 12-1
automatic classification and queueing 25-18
configuring 12-4
ensuring port security with QoS 25-34
trusted boundary for QoS 25-34
IP precedence 25-2
IP-precedence-to-DSCP map for QoS 25-48
IP protocols in ACLs 24-9
ISL
and trunk ports 9-3
trunk mode 3-9
J
Java Plug-in 3-2
Java plug-in configuration 3-1
join messages, IGMP 16-2
K
KDC
described 7-32
Kerberos
authenticating to
boundary switch 7-35
KDC 7-35
network services 7-35
Kerberos (continued)
configuration examples 7-32
configuring 7-36
credentials 7-32
cryptographic software image 7-32
described 7-32
KDC 7-32
operation 7-34
realm 7-33
server 7-33
support for 1-6
switch as trusted third party 7-32
terms 7-33
TGT 7-34
tickets 7-32
key distribution center
L
LACP
Layer 2 frames, classification with CoS 25-2
Layer 2 interfaces, default configuration 9-9
Layer 2 traceroute
and ARP 27-15
and CDP 27-14
described 27-14
IP addresses and subnets 27-15
MAC addresses and VLANs 27-15
multicast traffic 27-15
multiple devices on a port 27-15
supported switches 27-14
unicast traffic 27-14
usage guidelines 27-14
Layer 2 trunks 10-15
Layer 3 packets, classification methods 25-2
leave processing, IGMP 16-9
LEDs
port modes 3-8
RPS 3-8
legend, CMS icons and labels 3-17
line configuration mode 2-3
Link Aggregation Control Protocol
link information 3-12
link pop-up menu, Topology view 3-20
links, unidirectional 19-1
lists, CMS 3-27
Logical Link Content window 3-20
login authentication
with RADIUS 7-23
with TACACS+ 7-14
login banners 6-19
log messages
Long-Reach Ethernet (LRE) technology 1-11
loop guard
described 15-9
enabling 15-16
support for 1-4
M
MAC addresses
aging time 6-23
and VLAN association 6-23
building the address table 6-22
default configuration 6-23
discovering 6-28
displaying 6-27
dynamic
learning 6-22
removing 6-24
in ACLs 24-20
MAC addresses (continued)
static
adding 6-27
characteristics of 6-26
removing 6-27
MAC address notification, support for 1-7
MAC address-to-VLAN mapping 10-25
MAC extended access lists
applying to Layer 2 interfaces 24-21
configuring for QoS 25-39
creating 24-20
defined 24-20
for QoS classification 25-5
manageability features 1-3
management access
in-band
browser session 1-3
CLI session 1-4
SNMP 1-4
out-of-band console port connection 1-4
management options
benefits
clustering 1-2
CMS 1-2
CLI 2-1
CMS 3-1
overview 1-3
management VLAN
considerations in switch clusters 5-8
discovery through different management VLANs 5-8
mapping tables for QoS
configuring
CoS-to-DSCP 25-47
DSCP 25-47
DSCP-to-CoS 25-50
DSCP-to-DSCP-mutation 25-51
IP-precedence-to-DSCP 25-48
policed-DSCP 25-49
described 25-10
marking
action in policy map 25-42
action with aggregate policers 25-45
matching, ACLs 24-5
maximum aging time
MSTP 14-21
STP 13-21
maximum hop count, MSTP 14-21
membership mode, VLAN port 3-9, 10-3
member switch
adding 5-16
automatic discovery 5-5
defined 5-2
managing 5-21
passwords 5-13
recovering from lost connectivity 27-11
requirements 5-4
See also candidate switch, cluster standby group, and standby command switch
menu bar
described 3-14
variations 3-14
messages
system 3-17
to users through banners 6-19
MIBs
accessing files with FTP A-3
location of files A-3
overview 23-1
SNMP interaction with 23-5
supported A-1
mirroring traffic for analysis 20-1
mismatches, autonegotiation 27-12
Mode button 3-8
modes
port 3-8
VLAN port membership 3-9
Modify button 3-27
module number 9-4
monitoring
access groups 24-29
ACL configuration 24-29
cables for unidirectional links 19-1
CDP 18-5
features 1-7
IGMP
filters 16-21
snooping 16-10
interfaces 9-15
multicast router interfaces 16-10
MVR 16-17
network traffic for analysis with probe 20-2
port
blocking 17-15
protection 17-15
speed and duplex mode 9-10
traffic flowing among switches 21-1
traffic suppression 17-15
VLAN
filters 24-29
maps 24-29
VLANs 10-14
VMPS 10-30
VTP 11-16
MSTP
boundary ports
configuration guidelines 14-13
described 14-5
BPDU filtering
described 15-3
enabling 15-13
BPDU guard
described 15-3
enabling 15-12
CIST, described 14-3
configuration guidelines 14-12, 15-10
MSTP (continued)
configuring
forward-delay time 14-20
hello time 14-19
link type for rapid convergence 14-22
maximum aging time 14-21
maximum hop count 14-21
MST region 14-13
path cost 14-18
port priority 14-17
root switch 14-14
secondary root switch 14-16
switch priority 14-19
CST
defined 14-3
operations between regions 14-4
default configuration 14-12
default optional feature configuration 15-10
displaying status 14-23
enabling the mode 14-13
extended system ID
effects on root switch 14-14
effects on secondary root switch 14-16
unexpected behavior 14-15
instances supported 13-9
interface state, blocking to forwarding 15-2
interoperability and compatibility among modes 13-10
interoperability with 802.1D
described 14-5
restarting migration process 14-22
IST
defined 14-3
master 14-3
operations within a region 14-3
loop guard
described 15-9
enabling 15-16
mapping VLANs to MST instance 14-13
MSTP (continued)
MST region
CIST 14-3
configuring 14-13
described 14-2
hop-count mechanism 14-5
IST 14-3
supported spanning-tree instances 14-2
optional features supported 1-4
overview 14-2
Port Fast
described 15-2
enabling 15-11
preventing root switch selection 15-8
root guard
described 15-8
enabling 15-15
root switch
configuring 14-15
effects of extended system ID 14-14
unexpected behavior 14-15
shutdown Port Fast-enabled port 15-3
status, displaying 14-23
multicast groups
Immediate Leave 16-4
joining 16-2
leaving 16-4
static joins 16-8
multicast packets, blocking 17-6
multicast router interfaces, monitoring 16-10
multicast router ports, adding 16-7
multicast storm-control command 17-3
multicast storms 17-1
Multicast VLAN Registration
multiple links in Topology view 3-20
Multiple Spanning Tree Protocol
MVR
and address aliasing 16-14
configuring interfaces 16-16
default configuration 16-14
described 16-11
modes 16-15
monitoring 16-17
setting global parameters 16-14
support for 1-3
N
named IP ACLs 24-11
native VLAN
configuring 10-21
default 10-21
negotiate trunk mode 3-9
neighboring devices, types of 3-11
network configuration examples
increasing network performance 1-10
providing network services 1-11
small to medium-sized network 1-14
network design
performance 1-10
services 1-11
network management
CDP 18-1
RMON 21-1
SNMP 23-1
Network Time Protocol
no commands 2-4
non-IP traffic filtering 24-20
nontrunking mode 10-16
normal-range VLANs
configuration modes 10-6
defined 10-1
note, described xxvi
NTP
associations
authenticating 6-5
defined 6-2
enabling broadcast messages 6-7
peer 6-6
server 6-6
default configuration 6-4
displaying the configuration 6-11
overview 6-2
restricting access
creating an access group 6-9
disabling NTP services per interface 6-10
source IP address, configuring 6-10
stratum 6-2
support for 1-3
synchronizing devices 6-6
time
services 6-2
synchronizing 6-2
O
OK button 3-27
online help 3-24
options, management 1-3
out-of-profile markdown 1-6
overheating indication, switch 3-6
P
packet modification, with QoS 25-17
PAgP
passwords
default configuration 7-2
disabling recovery of 7-5
encrypting 7-4
passwords (continued)
for security 1-5
in CMS 3-28
overview 7-1
recovery of 27-4
setting
enable 7-3
enable secret 7-4
Telnet 7-6
with usernames 7-7
VTP domain 11-8
path cost
MSTP 14-18
STP 13-18
PC (passive command switch) 5-10, 5-19
performance, network design 1-10
performance features 1-2
per-VLAN spanning-tree plus
physical ports 9-2
PIM-DVMRP, as snooping method 16-6
ping
character output description 27-13
executing 27-13
overview 27-12
policed-DSCP map for QoS 25-49
policers
configuring
for each matched traffic class 25-42
for more than one traffic class 25-45
described 25-3
displaying 25-64
number of 25-29
types of 25-8
policing
described 25-3
token-bucket algorithm 25-9
policy maps for QoS
characteristics of 25-42
configuring 25-42
described 25-7
displaying 25-64
port ACLs
defined 24-2
types of 24-2
Port Aggregation Protocol
port-based authentication
authentication server
defined 8-2
RADIUS server 8-2
client, defined 8-2
configuration guidelines 8-11
configuring
802.1X authentication 8-12
guest VLAN 8-18
host mode 8-18
manual re-authentication of a client 8-15
periodic re-authentication 8-15
quiet period 8-16
RADIUS server 8-14
RADIUS server parameters on the switch 8-13
switch-to-client frame-retransmission number 8-17
switch-to-client retransmission time 8-16
default configuration 8-10
described 8-1
device roles 8-2
displaying statistics 8-20
EAPOL-start frame 8-3
EAP-request/identity frame 8-3
EAP-response/identity frame 8-3
encapsulation 8-2
port-based authentication (continued)
guest VLAN
configuration guidelines 8-8
described 8-8
initiation and message exchange 8-3
method lists 8-12
multiple-hosts mode, described 8-18
per-user ACLs
AAA authorization 8-12
configuration tasks 8-9
described 8-9
RADIUS server attributes 8-9
ports
authorization state and dot1x port-control command 8-4
authorized and unauthorized 8-4
voice VLAN 8-6
port security
and voice VLAN 8-6
described 8-6
interactions 8-6
multiple-hosts mode 8-18
resetting to default values 8-19
statistics, displaying 8-20
switch
as proxy 8-2
RADIUS client 8-2
topologies, supported 8-5
upgrading from a previous release 8-12
VLAN assignment
AAA authorization 8-12
characteristics 8-7
configuration tasks 8-8
described 8-7
voice VLAN
described 8-6
PVID 8-6
VVID 8-6
port-channel
Port Fast
described 15-2
enabling 15-11
mode, spanning tree 10-27
support for 1-4
port icons, Front Panel view 3-7
port LEDs
described 3-9
DUPLX 3-8
port modes 3-8
SPEED 3-8
STAT 3-8
port membership modes, VLAN 3-9, 10-3
port modes
described 3-8
LEDs 3-8
port pop-up menu, Front Panel view 3-19
port priority
MSTP 14-17
STP 13-17
ports
802.1Q trunk 3-9
access 9-2
blocking 17-5
ISL trunk 3-9
negotiate trunk 3-9
protected 17-4
secure 17-7
static-access 3-9, 10-3, 10-10
switch 9-2
VLAN assignments 10-10
port security
aging 17-13
and QoS trusted boundary 25-34
configuring 17-10
port security (continued)
default configuration 17-9
described 17-7
displaying 17-15
on trunk ports 17-11
sticky learning 17-8
violations 17-8
with other features 17-9
port-shutdown response, VMPS 10-26
preferential treatment of traffic
preventing unauthorized access 7-1
priority
overriding CoS 12-5
trusting CoS 12-5
private VLAN edge ports
privileged EXEC mode 2-2
privilege levels
changing the default for lines 7-9
command switch 5-21
exiting 7-10
logging into 7-10
mapping on member switches 5-21
setting a command with 7-8
pruning, VTP
enabling 11-14
enabling on a port 10-20
examples 11-5
overview 11-4
pruning-eligible list
changing 10-20
for VTP pruning 11-4
VLANs 11-14
publications for products, technologies, and network solutions xxix
PVST+
802.1Q trunking interoperability 13-10
described 13-9
instances supported 13-9
Q
QoS
auto-QoS
categorizing traffic 25-18
configuration and defaults display 25-26
configuration guidelines 25-22
described 25-18
disabling 25-23
displaying generated commands 25-23
displaying the initial configuration 25-26
effects on running configuration 25-22
egress queue defaults 25-19
enabling for VoIP 25-22
example configuration 25-24
ingress queue defaults 25-19
list of generated commands 25-20
basic model 25-3
classification
class maps, described 25-7
defined 25-3
flowchart 25-6
forwarding treatment 25-3
in frames and packets 25-2
MAC ACLs, described 25-5, 25-7
options for IP traffic 25-5
options for non-IP traffic 25-5
policy maps, described 25-7
trust DSCP, described 25-5
trusted CoS, described 25-5
trust IP precedence, described 25-5
QoS (continued)
class maps
configuring 25-40
displaying 25-64
configuration guidelines
auto-QoS 25-22
standard QoS 25-29
configuring
aggregate policers 25-45
auto-QoS 25-18
default port CoS value 25-33
DSCP maps 25-47
DSCP trust states bordering another domain 25-35
egress queue characteristics 25-57
ingress queue characteristics 25-52
IP extended ACLs 25-38
IP standard ACLs 25-37
MAC ACLs 25-39
policy maps 25-42
port trust states within the domain 25-31
trusted boundary 25-34
default auto configuration 25-18
default standard configuration 25-27
displaying statistics 25-64
egress queues
allocating buffer space 25-57
buffer allocation scheme, described 25-15
configuring shaped weights for SRR 25-61
configuring shared weights for SRR 25-62
described 25-4
displaying the threshold map 25-60
flowchart 25-15
mapping DSCP or CoS values 25-59
scheduling, described 25-4
setting WTD thresholds 25-57
WTD, described 25-16
enabling globally 25-30
QoS (continued)
flowcharts
classification 25-6
egress queueing and scheduling 25-15
ingress queueing and scheduling 25-13
policing and marking 25-9
implicit deny 25-7
ingress queues
allocating bandwidth 25-55
allocating buffer space 25-54
buffer and bandwidth allocation, described 25-14
configuring shared weights for SRR 25-55
configuring the priority queue 25-56
described 25-3
displaying the threshold map 25-53
flowchart 25-13
mapping DSCP or CoS values 25-53
priority queue, described 25-14
scheduling, described 25-3
setting WTD thresholds 25-53
WTD, described 25-14
IP phones
automatic classification and queueing 25-18
detection and trusted settings 25-18, 25-34
limiting bandwidth on egress interface 25-63
mapping tables
CoS-to-DSCP 25-47
displaying 25-64
DSCP-to-CoS 25-50
DSCP-to-DSCP-mutation 25-51
IP-precedence-to-DSCP 25-48
policed-DSCP 25-49
types of 25-10
QoS (continued)
marked-down actions 25-43
overview 25-1
packet modification 25-17
policers
described 25-8
displaying 25-64
number of 25-29
types of 25-8
policies, attaching to an interface 25-9
policing
token bucket algorithm 25-9
policy maps
characteristics of 25-42
configuring 25-42
displaying 25-64
QoS label, defined 25-3
queues
configuring egress characteristics 25-57
configuring ingress characteristics 25-52
location of 25-11
SRR, described 25-12
WTD, described 25-11
rewrites 25-17
support for 1-6
trust states
bordering another domain 25-35
described 25-5
trusted device 25-34
within the domain 25-31
quality of service
queries, IGMP 16-3
R
RADIUS
attributes
vendor-proprietary 7-31
vendor-specific 7-29
configuring
accounting 7-28
authentication 7-23
authorization 7-27
communication, global 7-21, 7-29
communication, per-server 7-21
multiple UDP ports 7-21
default configuration 7-20
defining AAA server groups 7-25
displaying the configuration 7-31
identifying the server 7-21
in clusters 5-14
limiting the services to the user 7-27
method list, defined 7-20
operation of 7-19
overview 7-18
suggested network environments 7-18
support for 1-6
tracking services accessed by user 7-28
range
macro 9-7
of interfaces 9-6
rapid convergence 14-7
rapid per-VLAN spanning-tree plus
rapid PVST+
802.1Q trunking interoperability 13-10
described 13-9
instances supported 13-9
Rapid Spanning Tree Protocol
rcommand command 5-21
RCP
configuration files
downloading B-17
overview B-16
preparing the server B-16
uploading B-18
image files
deleting old image B-32
downloading B-31
preparing the server B-29
uploading B-33
reconfirmation interval, VMPS, changing 10-29
recovery procedures 27-1
redundancy
EtherChannel 26-2
STP
backbone 13-8
path cost 10-24
port priority 10-22
redundant clusters
redundant links and UplinkFast 15-14
redundant power system
Refresh button 3-27
reloading software 4-17
Remote Authentication Dial-In User Service
Remote Copy Protocol
Remote Network Monitoring
Remote SPAN
See RSPAN 20-1
resetting a UDLD-shutdown interface 19-5
restricting access
NTP services 6-8
overview 7-1
passwords and privilege levels 7-2
RADIUS 7-18
TACACS+ 7-10
retry count, VMPS, changing 10-30
RFC
1112, IP multicast and IGMP 16-2
1157, SNMPv1 23-2
1305, NTP 6-2
1757, RMON 21-2
1901, SNMPv2C 23-2
1902 to 1907, SNMPv2 23-2
2236, IP multicast and IGMP 16-2
2273-2275, SNMPv3 23-2
RMON
default configuration 21-3
displaying status 21-6
enabling alarms and events 21-3
groups supported 21-2
overview 21-1
statistics
collecting group Ethernet 21-6
collecting group history 21-5
support for 1-7
root guard
described 15-8
enabling 15-15
support for 1-4
root switch
MSTP 14-14
root switch, STP 13-14
RSPAN
characteristics 20-8
configuration guidelines 20-16
default configuration 20-9
destination ports 20-7
RSPAN (continued)
displaying status 20-23
interaction with other features 20-8
monitored ports 20-5
monitoring ports 20-7
received traffic 20-4
session limits 20-10
sessions
creating 20-17
defined 20-3
limiting source traffic to specific VLANs 20-22
specifying monitored ports 20-17
with ingress traffic enabled 20-20
source ports 20-5
transmitted traffic 20-5
VLAN-based 20-6
RSTP
active topology, determining 14-6
BPDU
format 14-9
processing 14-10
designated port, defined 14-6
designated switch, defined 14-6
interoperability with 802.1D
described 14-5
restarting migration process 14-22
topology changes 14-10
overview 14-6
port roles
described 14-6
synchronized 14-8
proposal-agreement handshake process 14-7
rapid convergence
described 14-7
edge ports and Port Fast 14-7
point-to-point links 14-7, 14-22
root ports 14-7
RSTP (continued)
root port, defined 14-6
running configuration, saving 4-10
S
SC (standby command switch) 5-10, 5-19
scheduled reloads 4-17
secure MAC addresses
deleting 17-12
maximum number of 17-8
types of 17-7
secure ports, configuring 17-7
secure remote connections 7-38
security, port 17-7
security features 1-5
sequence numbers in log messages 22-7
server mode, VTP 11-3
service-provider network
MSTP and RSTP 14-1
set-request operation 23-5
setup program, failed command switch replacement 27-8, 27-10
severity levels, defining in system messages 22-8
SFPs
security and identification 27-12
shaped round robin
show access-lists hw-summary command 24-17
show and more command output, filtering 2-9
show cdp traffic command 18-5
show cluster members command 5-21
show configuration command 9-13
show forward command 27-17
show interfaces command 9-10, 9-13
show platform forward command 27-17
show running-config command
displaying ACLs 24-16, 24-17, 24-23, 24-26
interface description in 9-13
shutdown command on interfaces 9-16
Simple Network Management Protocol
SNAP 18-1
SNMP
accessing MIB variables with 23-5
agent
described 23-4
disabling 23-7
authentication level 23-10, 23-11
community strings
configuring 23-8
for cluster switches 23-4
overview 23-4
configuration examples 23-16
default configuration 23-6
engine ID 23-7
host 23-7
in-band management 1-4
in clusters 5-14
informs
and trap keyword 23-12
described 23-5
differences from traps 23-5
enabling 23-15
limiting access by TFTP servers 23-16
limiting system log messages to NMS 22-9
managing clusters with 5-22
MIBs
location of A-3
supported A-1
notifications 23-5
status, displaying 23-17
SNMP (continued)
system contact and location 23-15
trap manager, configuring 23-14
traps
differences from informs 23-5
enabling 23-12
enabling MAC address notification 6-24
types of 23-12
versions supported 23-2
SNMPv1 23-2
SNMPv2C 23-2
SNMPv3 23-2
snooping, IGMP 16-2
software images
location in Flash B-20
recovery procedures 27-2
scheduling reloads 4-17
tar file format, described B-21
See also downloading and uploading
source addresses, in ACLs 24-9
source-and-destination-IP address based forwarding, EtherChannel 26-7
source-and-destination MAC address forwarding, EtherChannel 26-7
source-IP address based forwarding, EtherChannel 26-7
source-MAC address forwarding, EtherChannel 26-6
SPAN
configuration guidelines 20-10
default configuration 20-9
destination ports 20-7
displaying status 20-23
interaction with other features 20-8
monitored ports 20-5
monitoring ports 20-7
received traffic 20-4
SPAN (continued)
session limits 20-10
sessions
configuring ingress forwarding 20-14, 20-21
creating 20-11
defined 20-3
limiting source traffic to specific VLANs 20-15
removing destination (monitoring) ports 20-12
specifying monitored ports 20-11
with ingress traffic enabled 20-13
source ports 20-5
transmitted traffic 20-5
VLAN-based 20-6
spanning tree and native VLANs 10-17
Spanning Tree Protocol
SPAN traffic 20-4
speed, configuring on interfaces 9-9
SRR
configuring
shaped weights on egress queues 25-61
shared weights on egress queues 25-62
shared weights on ingress queues 25-55
described 25-12
shaped mode 25-12
shared mode 25-12
support for 1-7
SSH 1-4
configuring 7-38
cryptographic software image 7-38
described 7-38
displaying settings 7-38
Standby Command Configuration window 5-19
standby command switch
considerations 5-11
defined 5-2
priority 5-10
standby command switch (continued)
requirements 5-3
virtual IP address 5-11
See also cluster standby group and HSRP
standby group, cluster
See cluster standby group and HSRP
startup configuration
booting
manually 4-13
specific image 4-14
clearing B-19
configuration file
automatically downloading 4-12
specifying the filename 4-13
default boot configuration 4-12
static access mode 3-9
static access ports
assigning to VLAN 10-10
static addresses
static MAC addressing 1-5
static VLAN membership 10-2
statistics
802.1X 8-20
CDP 18-5
interface 9-15
QoS ingress and egress 25-64
RMON group Ethernet 21-6
RMON group history 21-5
SNMP input and output 23-17
VTP 11-16
status bar
change notification 3-29
error notification 3-29
sticky learning 17-8
storm control
configuring 17-3
described 17-1
displaying 17-15
support for 1-3
thresholds 17-1
STP
802.1D and bridge ID 13-4
802.1D and multicast addresses 13-8
802.1T and VLAN identifier 13-4
accelerating root port selection 15-4
BackboneFast
described 15-6
enabling 15-15
BPDU filtering
described 15-3
enabling 15-13
BPDU guard
described 15-3
enabling 15-12
BPDU message exchange 13-3
configuration guidelines 13-12, 15-10
configuring
forward-delay time 13-21
hello time 13-20
maximum aging time 13-21
path cost 13-18
port priority 13-17
root switch 13-14
secondary root switch 13-16
spanning-tree mode 13-13
switch priority 13-19
counters, clearing 13-22
default configuration 13-11
default optional feature configuration 15-10
designated port, defined 13-3
STP (continued)
designated switch, defined 13-3
detecting indirect link failures 15-6
disabling 13-14
displaying status 13-22
extended system ID
effects on root switch 13-14
effects on the secondary root switch 13-16
overview 13-4
unexpected behavior 13-14
features supported 1-4
inferior BPDU 13-3
instances supported 13-9
interface state, blocking to forwarding 15-2
interface states
blocking 13-5
disabled 13-7
learning 13-6
listening 13-6
overview 13-4
interoperability and compatibility among modes 13-10
limitations with 802.1Q trunks 13-10
load sharing
overview 10-22
using path costs 10-24
using port priorities 10-22
loop guard
described 15-9
enabling 15-16
modes supported 13-9
multicast addresses, effect of 13-8
optional features supported 1-4
overview 13-2
path costs 10-24
Port Fast
described 15-2
enabling 15-11
port priorities 10-23
STP (continued)
preventing root switch selection 15-8
protocols supported 13-9
redundant connectivity 13-8
root guard
described 15-8
enabling 15-15
root port, defined 13-3
root switch
configuring 13-14
effects of extended system ID 13-4, 13-14
election 13-3
unexpected behavior 13-14
shutdown Port Fast-enabled port 15-3
status, displaying 13-22
superior BPDU 13-3
timers, described 13-20
UplinkFast
described 15-4
enabling 15-14
stratum, NTP 6-2
success response, VMPS 10-26
summer time 6-14
SunNet Manager 1-3
switch clustering technology 5-1
See also clusters, switch 1-2
switch console port 1-4
Switched Port Analyzer
switched ports 9-2
Switch Manager 3-31
switchport block multicast command 17-6
switchport block unicast command 17-6
switchport protected command 17-5
switch priority
MSTP 14-19
STP 13-19
switch software features 1-1
syslog
system clock
configuring
daylight saving time 6-14
manually 6-12
summer time 6-14
time zones 6-13
displaying the time and date 6-12
overview 6-2
system message logging
default configuration 22-3
defining error message severity levels 22-8
disabling 22-3
displaying the configuration 22-12
enabling 22-4
facility keywords, described 22-12
level keywords, described 22-8
limiting messages 22-9
message format 22-2
overview 22-1
sequence numbers, enabling and disabling 22-7
setting the display destination device 22-4
synchronizing log messages 22-5
syslog facility 1-7
timestamps, enabling and disabling 22-7
UNIX syslog servers
configuring the daemon 22-10
configuring the logging facility 22-11
facilities supported 22-12
system messages on CMS 3-17
system name
default configuration 6-16
default setting 6-16
manual configuration 6-16
system prompt
default setting 6-16
manual configuration 6-17
T
tables, CMS 3-27
tabs, CMS 3-27
TAC
toll-free telephone numbers xxix
website xxviii
TACACS+
accounting, defined 7-11
authentication, defined 7-11
authorization, defined 7-11
configuring
accounting 7-17
authentication key 7-13
authorization 7-16
login authentication 7-14
default configuration 7-13
displaying the configuration 7-17
identifying the server 7-13
in clusters 5-14
limiting the services to the user 7-16
operation of 7-12
overview 7-10
support for 1-6
tracking services accessed by user 7-17
tar files
creating B-6
displaying the contents of B-6
extracting B-7
image file format B-21
technical assistance
case priority definitions xxix
opening a case xxix
TAC website xxviii
toll-free telephone numbers xxix
Telnet
accessing management interfaces 2-10
from a browser 2-10
number of connections 1-4
setting a password 7-6
Terminal Access Controller Access Control System Plus
terminal lines, setting a password 7-6
TFTP
configuration files
downloading B-11
preparing the server B-10
uploading B-12
configuration files in base directory 4-6
configuring for autoconfiguration 4-5
image files
deleting B-24
downloading B-23
preparing the server B-22
uploading B-24
limiting access by servers 23-16
TFTP server 1-3
threshold, traffic level 17-2
time
time-range command 24-13
time ranges in ACLs 24-13
timestamps in log messages 22-7
time zones 6-13
Token Ring VLANs
support for 10-5
VTP support 11-4
toolbar 3-18
tool tips 3-24
Topology view
collapsed cluster view 3-11
device icons 3-13
device information 3-12
Topology view (continued)
display options 3-14
expanded cluster view 3-10
icons 3-11
link information 3-12
multiple links 3-20
neighboring devices 3-11
pop-up menus 3-20
TOS 1-6
traceroute, Layer 2
and ARP 27-15
and CDP 27-14
described 27-14
IP addresses and subnets 27-15
MAC addresses and VLANs 27-15
multicast traffic 27-15
multiple devices on a port 27-15
supported switches 27-14
unicast traffic 27-14
usage guidelines 27-14
traffic
blocking flooded 17-6
fragmented 24-4
unfragmented 24-4
traffic policing 1-6
traffic suppression 17-1
transparent mode, VTP 11-3, 11-12
trap-door mechanism 4-2
traps
configuring MAC address notification 6-24
configuring managers 23-12
defined 23-3
notification types 23-12
troubleshooting
connectivity problems 27-12, 27-13
detecting unidirectional links 19-1
determining packet forwarding 27-17
troubleshooting (continued)
displaying crash information 27-19
SFP security and identification 27-12
show forward command 27-17
with CiscoWorks 23-5
with debug commands 27-16
with ping 27-12
with system message logging 22-1
trunking encapsulation 1-5
trunk ports
configuring 10-18
encapsulation 10-18, 10-23, 10-24
secure MAC addresses on 17-10
trunks
allowed-VLAN list 10-19
configuring 10-18, 10-23, 10-24
ISL 10-14
load sharing
setting STP path costs 10-24
using STP port priorities 10-22, 10-23
native VLAN for untagged traffic 10-21
parallel 10-24
pruning-eligible list 10-20
to non-DTP device 10-15
understanding 10-15
trusted boundary for QoS 25-34
trusted port states
between QoS domains 25-35
classification options 25-5
ensuring port security for IP phones 25-34
support for 1-6
within a QoS domain 25-31
twisted-pair Ethernet, detecting unidirectional links 19-1
type-of-service
U
UDLD
default configuration 19-3
echoing detection mechanism 19-2
enabling
globally 19-4
per interface 19-4
link-detection mechanism 19-1
neighbor database 19-2
overview 19-1
resetting an interface 19-5
status, displaying 19-5
support for 1-4
unauthorized ports with 802.1X 8-4
unicast storm control command 17-3
unicast storms 17-1
unicast traffic, blocking 17-6
UniDirectional Link Detection protocol
UNIX syslog servers
daemon configuration 22-10
facilities supported 22-12
message logging configuration 22-11
unrecognized Type-Length-Value (TLV) support 11-4
upgrading software images
UplinkFast
described 15-4
enabling 15-14
support for 1-4
uploading
configuration files
reasons for B-8
using FTP B-15
using RCP B-18
using TFTP B-12
image files
reasons for B-20
using FTP B-28
using RCP B-33
using TFTP B-24
user EXEC mode 2-2
username-based authentication 7-7
V
verifying changes in CMS 3-29
version-dependent transparent mode 11-4
virtual IP address
cluster standby group 5-11, 5-19
vlan.dat file 10-4
VLAN 1, disabling on a trunk port 10-19
VLAN 1 minimization 10-19
VLAN ACLs
vlan-assignment response, VMPS 10-25
VLAN configuration
at bootup 10-7
saving 10-7
VLAN configuration mode 2-2, 10-6
VLAN database
and startup configuration file 10-7
and VTP 11-1
VLAN configuration saved in 10-6
VLANs saved in 10-4
vlan database command 10-6
VLAN filtering, and SPAN 20-6
vlan global configuration command 10-6
VLAN ID, discovering 6-28
VLAN management domain 11-2
VLAN Management Policy Server
VLAN map entries, order of 24-23
VLAN maps
applying 24-26
common uses for 24-26
configuration example 24-27
configuration guidelines 24-23
configuring 24-22
creating 24-23
denying access example 24-28
denying and permitting packets 24-24
displaying 24-29
examples 24-28
support for 1-5
with router ACLs 24-29
VLAN membership
confirming 10-29
VLAN Query Protocol
VLANs
adding 10-8
adding to VLAN database 10-8
aging dynamic addresses 13-9
allowed on trunk 10-19
and spanning-tree instances 10-2, 10-12
configuration guidelines, extended-range VLANs 10-12
configuration guidelines, normal-range VLANs 10-5
configuration options 10-6
configuring 10-1
configuring IDs 1006 to 4094 10-12
creating in config-vlan mode 10-8
VLANs (continued)
creating in VLAN configuration mode 10-9
default configuration 10-7
deleting 10-10
displaying 10-14
features 1-5
illustrated 10-2
limiting source traffic with RSPAN 20-22
limiting source traffic with SPAN 20-15
modifying 10-8
native, configuring 10-21
number supported 1-5
parameters 10-4
port membership modes 3-9, 10-3
static-access ports 10-10
STP and 802.1Q trunks 13-10
supported 10-2
Token Ring 10-5
traffic between 10-2
VTP modes 11-3
VLAN Trunking Protocol
VMPS
administering 10-30
configuration example 10-31
configuration guidelines 10-27
default configuration 10-27
description 10-25
dynamic port membership
described 10-26
reconfirming 10-29
troubleshooting 10-31
entering server address 10-28
mapping MAC addresses to VLANs 10-25
monitoring 10-30
VMPS (continued)
reconfirmation interval, changing 10-29
reconfirming membership 10-29
retry count, changing 10-30
voice-over-IP 12-1
voice VLAN
Cisco 7960 phone, port connections 12-1
configuration guidelines 12-3
configuring IP phones for data traffic
override CoS of incoming frame 12-5
trust CoS priority of incoming frame 12-5
configuring ports for voice traffic in
802.1P priority tagged frames 12-5
802.1Q frames 12-4
connecting to an IP phone 12-4
default configuration 12-3
described 12-1
displaying 12-6
VTP
adding a client to a domain 11-15
and extended-range VLANs 11-1
and normal-range VLANs 11-2
client mode, configuring 11-11
configuration
global configuration mode 11-7
guidelines 11-8
privileged EXEC mode 11-7
requirements 11-9
saving 11-7
VLAN configuration mode 11-7
configuration mode options 11-7
configuration requirements 11-9
configuration revision number
guideline 11-15
resetting 11-15
VTP (continued)
configuring
client mode 11-11
server mode 11-9
transparent mode 11-12
consistency checks 11-4
default configuration 11-6
described 11-1
disabling 11-12
domain names 11-8
domains 11-2
modes
transitions 11-3
monitoring 11-16
passwords 11-8
pruning
disabling 11-14
enabling 11-14
examples 11-5
overview 11-4
support for 1-5
pruning-eligible list, changing 10-20
server mode, configuring 11-9
statistics 11-16
support for 1-5
Token Ring support 11-4
transparent mode, configuring 11-12
using 11-1
version, guidelines 11-8
version 1 11-4
version 2
configuration guidelines 11-8
disabling 11-13
enabling 11-13
overview 11-4
W
web-based management software
weighted tail drop
window components, CMS 3-26
WTD
described 25-11
setting thresholds
egress queue-sets 25-57
ingress queues 25-53
support for 1-7
X
XMODEM protocol 27-2