-
Catalyst 3550 Multilayer Switch Software Configuration Guide, 12.1(13)EA1
-
Index
-
Preface
-
Overview
-
Using the Command-Line Interface
-
Getting Started with CMS
-
Assigning the Switch IP Address and Default Gateway
-
Configuring IE2100 CNS Agents
-
Clustering Switches
-
Administering the Switch
-
Configuring Switch-Based Authentication
-
Configuring 802.1X Port-Based Authentication
-
Configuring Interface Characteristics
-
Configuring VLANs
-
Configuring VTP
-
Configuring Voice VLAN
-
Configuring 802.1Q and Layer 2 Protocol Tunneling
-
Configuring STP
-
Configuring RSTP and MSTP
-
Configuring Optional Spanning-Tree Features
-
Configuring the DHCP Option 82 for Subscriber Identification
-
Configuring IGMP Snooping and MVR
-
Configuring Port-Based Traffic Control
-
Configuring CDP
-
Configuring UDLD
-
Configuring SPAN and RSPAN
-
Configuring RMON
-
Configuring System Message Logging
-
Configuring SNMP
-
Configuring Network Security with ACLs
-
Configuring QoS
-
Configuring EtherChannels
-
Configuring IP Unicast Routing
-
Configuring HSRP
-
Configuring Web Cache Services By Using WCCP
-
Configuring IP Multicast Routing
-
Configuring MSDP
-
Configuring Fallback Bridging
-
Troubleshooting
-
Supported MIBs
-
Working with the IOS File System, Configuration Files, and Software Images
-
Unsupported CLI Commands for Release 12.1(13)EA1
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X -
Index
Numerics
144-bit Layer 3 TCAM 7-27, 30-68
802.1D
802.1Q
and trunk ports 10-3
configuration limitations 11-18
encapsulation 11-16
native VLAN for untagged traffic 11-22
trunk mode 3-9
tunneling
compatibility with other features 14-5
defaults 14-4
described 14-1
tunnel ports and ACLs 27-3
tunnel ports with other features 14-6
802.1S
802.1W
802.1X
802.3X flow control 10-15
A
abbreviating commands 2-4
ABRs 30-29
AC (command switch) 6-13, 6-22
access-class command 27-20
access control entries
access-denied response, VMPS 11-27
access groups
IP 27-21
Layer 3 27-21
accessing
clusters, switch 6-16
command switches 6-13
member switches 6-16
switch clusters 6-16
access lists
access ports
and Layer 2 protocol tunneling 14-9
defined 10-3
in switch clusters 6-11
accounting
with RADIUS 8-28
ACEs
and QoS 28-7
defined 27-2
Ethernet 27-2
IP 27-2
ACLs
ACEs 27-2
and logging 27-7
any keyword 27-13
applying
on bridged packets 27-38
on multicast packets 27-40
on routed packets 27-39
on switched packets 27-37
time ranges to 27-17
to Layer 2 and Layer 3 interfaces 27-20
to QoS 28-7
classifying traffic for QoS 28-36
comments in 27-19
compatibility on the same switch 27-2
compiling 27-21
configuration conflict examples 27-44
configuring with VLAN maps 27-36
defined 27-1
examples, not fitting in hardware 27-45
extended IP
configuring for QoS classification 28-37
creating 27-11
matching criteria 27-8
feature manager 27-43
hardware and software handling 27-6
hardware support for 27-6
host keyword 27-13
IP
applying to interface 27-19
creating 27-8
defined 27-8
fragments and QoS guidelines 28-27
implicit deny 27-10, 27-14, 27-16
implicit masks 27-10
matching criteria 27-8
matching criteria for port ACLs 27-4
matching criteria for router ACLs 27-3
named 27-15
options and QoS guidelines 28-27
undefined 27-21
violations, logging 27-16
virtual terminal lines, setting on 27-19
limiting actions 27-37
logging messages 27-10
log keyword 27-16
merge failure examples 27-46
monitoring 27-41
named 27-15
not fitting in hardware 27-45
number per QoS class map 28-27
numbers 27-8
policy maps and QoS classification 28-27
port
and voice VLAN 27-4
defined 27-2
limitations 27-4
router 27-2
standard IP
configuring for QoS classification 28-36
creating 27-9
matching criteria 27-8
support for 1-4
time ranges 27-17
undefined 27-28
unsupported features 27-7
using router ACLs with VLAN maps 27-36
VLAN maps
configuration guidelines 27-30
configuring 27-29
defined 27-4
active router 31-1
adding secure addresses 7-26
addresses
displaying the MAC address table 7-26
dynamic
accelerated aging 15-9
changing the aging time 7-22
default aging 15-9
defined 7-20
learning 7-21
preventing frame forwarding 35-5
removing 7-23
filtering frames by MAC address 35-6
MAC, adding secure 7-26
multicast
group address range 33-1
STP address management 15-8
secure
adding 7-26
described 7-26
static
adding and removing 7-25
defined 7-20
address resolution 30-8
Address Resolution Protocol
address table, adding secure addresses 7-26
adjacency tables, with CEF 30-76
administrative distances
defined 30-87
OSPF 30-34
routing protocol defaults 30-77
advertisements
CDP 21-1
IGRP 30-24
RIP 30-19
aggregate addresses, BGP 30-60
aggregated ports
aggregate policers 28-49
aggregate policing 1-5
aging, accelerating 15-9
aging time
accelerated
for MSTP 16-20
bridge table for fallback bridging 35-6
MAC address table 7-22
maximum
for MSTP 16-21
for STP 15-19
alarms, RMON 24-3
allowed-VLAN list 11-21
alternate routes, IGRP 30-25
area border routers
ARP
configuring 30-9
defined 30-8
encapsulation 30-10
static cache configuration 30-9
support for 1-2
ASBRs 30-29
AS-path filters, BGP 30-54
asymmetrical links, and 802.1Q tunneling 14-4
attributes, RADIUS
vendor-proprietary 8-31
vendor-specific 8-29
audience xxxiii
authentication
EIGRP 30-42
HSRP 31-8
local mode with AAA 8-36
NTP associations 7-4
RADIUS
key 8-21
login 8-23
TACACS+
defined 8-11
key 8-13
login 8-14
See also port-based authentication
authentication keys, and routing protocols 30-88
authoritative time source, described 7-2
authorization
with RADIUS 8-27
authorized ports with 802.1X 9-4
autoconfiguration 4-3
automatic discovery
adding member switches 6-20
considerations
beyond a non-candidate device 6-8, 6-9
brand new switches 6-11
connectivity 6-5
different VLANs 6-7
non-CDP-capable devices 6-6
non-cluster-capable devices 6-6
routed ports 6-10
creating a cluster standby group 6-22
in switch clusters 6-5
automatic QoS
automatic recovery, clusters 6-12
autonegotiation
duplex mode 1-2
interface configuration guidelines 10-13
mismatches 36-10
autonomous system boundary routers
autonomous systems, in BGP 30-48
Auto-RP, described 33-8
autosensing, port speed 1-2
auxiliary VLAN
B
BackboneFast
described 17-10
enabling 17-19
support for 1-3
bandwidth for QoS
allocating 28-63
described 28-13
bandwidth graphs 3-8
banners
configuring
login 7-20
message-of-the-day login 7-19
default configuration 7-18
when displayed 7-18
BGP
aggregate addresses 30-60
aggregate routes, configuring 30-60
CIDR 30-60
clear commands 30-63
community filtering 30-56
configuring neighbors 30-58
default configuration 30-46
described 30-45
enabling 30-48
monitoring 30-63
multipath support 30-51
neighbors, types of 30-48
path selection 30-51
peers, configuring 30-58
prefix filtering 30-55
resetting sessions 30-50
route dampening 30-62
route maps 30-53
route reflectors 30-61
routing domain confederation 30-60
routing session with multi-VRF CE 30-70
show commands 30-63
supernets 30-60
support for 1-5
Version 4 30-45
binding cluster group and HSRP group 31-9
blocking packets 20-6
booting
boot loader, function of 4-2
boot process 4-1
manually 4-13
specific image 4-14
boot loader
accessing 4-15
described 4-2
environment variables 4-15
prompt 4-15
trap-door mechanism 4-2
bootstrap router (BSR), described 33-8
Border Gateway Protocol
BPDU
error-disabled state 17-3
filtering 17-3
RSTP format 16-5
BPDU filtering
described 17-3
enabling 17-16
support for 1-3
BPDU guard
described 17-3
enabling 17-15
support for 1-3
bridged packets, ACLs on 27-38
bridge groups
bridge protocol data unit
broadcast flooding 30-16
broadcast packets
directed 30-13
flooded 30-13
broadcast storm-control command 20-3
browser configuration 3-1, 6-1
buttons, CMS 3-28
C
cables, monitoring for unidirectional links 22-1
cache engines, redirecting traffic to 32-1
CAMs, ACLs not loading in 27-45
candidate switch
adding 6-20
automatic discovery 6-5
defined 6-4
HC 6-22
passwords 6-20
requirements 6-4
standby group 6-22
See also command switch, cluster standby group, and member switch
caution, described xxxiv
CC (command switch) 6-22
CDP
and trusted boundary 28-32
automatic discovery in switch clusters 6-5
configuring 21-2
default configuration 21-2
described 21-1
disabling for routing device 21-3, 21-4
enabling and disabling
on an interface 21-4
on a switch 21-3
Layer 2 protocol tunneling 14-7
monitoring 21-5
overview 21-1
support for 1-2
transmission timer and holdtime, setting 21-2
updates 21-2
CEF 30-75
CGMP
as IGMP snooping learning method 19-6
clearing cached group entries 33-58
enabling server support 33-38
FastLeave feature 33-13
hosts
joining a group 33-12
leaving a group 33-13
joining multicast group 19-2
overview 33-11
server support only 33-11
switch support of 1-2
CIDR 30-60
Cisco Discovery Protocol
Cisco Express Forwarding
Cisco Group Management Protocol
Cisco Intelligence Engine 2100 Series Configuration Registrar
Cisco Networking Services
classless interdomain routing
classless routing 30-7
class maps for QoS
configuring per physical port 28-39
configuring per-port per-VLAN 28-41
described 28-7
displaying 28-69
class of service
clearing interfaces 10-21
CLI
abbreviating commands 2-4
command modes 2-1
described 1-7
editing features
enabling and disabling 2-7
keystroke editing 2-7
wrapped lines 2-8
error messages 2-5
filtering command output 2-9
getting help 2-3
history
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
managing clusters 6-25
no and default forms of commands 2-4
client mode, VTP 12-3
clock
Cluster Management Suite
clusters, switch
accessing 6-16
adding member switches 6-20
automatic discovery 6-5
automatic recovery 6-12
benefits 1-7
command switch configuration 6-19
compatibility 6-5
creating 6-18
creating a cluster standby group 6-22
described 6-1
LRE profile considerations 6-18
managing
through CLI 6-25
through SNMP 6-26
planning 6-5
planning considerations
automatic discovery 6-5
automatic recovery 6-12
CLI 6-25
host names 6-16
IP addresses 6-16
LRE profiles 6-18
passwords 6-16
RADIUS 6-17
switch-specific features 6-18
TACACS+ 6-17
redundancy 6-22
troubleshooting 6-24
verifying 6-24
cluster standby group
and HSRP group 31-9
automatic recovery 6-15
considerations 6-13
creating 6-22
defined 6-2
requirements 6-3
virtual IP address 6-13
cluster tree, described 3-5
CMS
benefits 1-7
cluster tree 3-5
displaying system messages 3-18
features 3-2
Front Panel images 3-6
Front Panel view 3-3
interaction modes 3-24
menu bar 3-13
online help 3-25
toolbar 3-19
tool tips 3-25
Topology view 3-10
window components 3-26
wizards 3-25
Coarse Wave Division Multiplexer GBIC modules
command-line interface
command modes 2-1
commands
abbreviating 2-4
no and default 2-4
setting privilege levels 8-8
command switch
accessing 6-13
command switch with HSRP disabled (CC) 6-22
configuration conflicts 36-10
defined 6-2
enabling 6-19
password privilege levels 6-25
priority 6-13
recovery
from command-switch failure 6-13
from failure 36-6
from lost member connectivity 36-10
replacing
with another switch 36-8
with cluster member 36-7
requirements 6-3
See also candidate switch, cluster standby group, member switch, and standby command switch
community list, BGP 30-57
community strings
for cluster switches 26-4
in clusters 6-17
overview 26-4
SNMP 6-17
config.text 4-12
configuration conflicts
ACL, displaying 27-44
recovering from lost member connectivity 36-10
configuration conflicts, recovering from lost member connectivity 36-10
configuration examples, network 1-8
configuration files
clearing the startup configuration B-19
creating using a text editor B-10
default name 4-12
deleting a stored configuration B-19
described B-8
downloading
automatically 4-12
reasons for B-8
using FTP B-13
using RCP B-17
using TFTP B-11
guidelines for creating and using B-9
invalid combinations when copying B-5
limiting TFTP server access 26-14
obtaining with DHCP 4-7
password recovery disable considerations 8-5
specifying the filename 4-13
system contact and location information 26-14
types and location B-9
uploading
reasons for B-8
using FTP B-15
using RCP B-18
using TFTP B-12
VMPS database 11-28
configuration guidelines, multi-VRF CE 30-68
configuration settings, saving 4-10
configure terminal command 10-7
configuring inline power 10-14
conflicts, configuration 36-10
congestion-avoidance techniques 28-12
congestion-management techniques 28-12, 28-15
connections, secure remote 8-37
connectivity problems 36-11
consistency checks in VTP version 2 12-4
console port, connecting to 2-10
content-routing technology
conventions
command xxxiv
for examples xxxiv
publication xxxiv
text xxxiv
CoS
in Layer 2 frames 28-2
override priority 13-5
trust priority 13-6
CoS-to-DSCP map for QoS 28-52
CoS-to-egress-queue map 28-57
counters, clearing interface 10-21
CPU q, in show forward command output 36-20
crashinfo file 36-20
cross-stack UplinkFast, STP
connecting stack ports 17-8
described 17-5
enabling 17-18
fast-convergence events 17-7
Fast Uplink Transition Protocol 17-6
limitations 17-8
normal-convergence events 17-7
Stack Membership Discovery Protocol 17-6
support for 1-3
cryptographic software image 8-37
customer edge devices 30-65
CWDM GBIC modules
network example 1-17
wavelength colors on CMS 3-6
CWDM OADM modules 1-17
D
daylight saving time 7-13
debugging
enabling all system diagnostics 36-17
enabling for a specific feature 36-17
redirecting error message output 36-18
using commands 36-16
default commands 2-4
default configuration
802.1Q tunneling 14-4
802.1X 9-9
auto-QoS 28-18
banners 7-18
BGP 30-46
booting 4-12
CDP 21-2
DHCP 18-3
DNS 7-17
EIGRP 30-39
EtherChannel 29-8
fallback bridging 35-3
HSRP 31-3
IGMP 33-31
IGMP filtering 19-20
IGMP snooping 19-5
IGRP 30-25
initial switch information 4-3
IP addressing, IP routing 30-4
IP multicast routing 33-13
Layer 2 interfaces 10-12
Layer 2 protocol tunneling 14-9
MAC address table 7-22
MSDP 34-4
multi-VRF CE 30-67
MVR 19-14
NTP 7-4
optional spanning-tree features 17-14
OSPF 30-30
password and privilege level 8-2
RADIUS 8-20
RIP 30-19
RMON 24-3
RSPAN 23-8
RSTP and MSTP 16-12
SNMP 26-6
SPAN 23-8
standard QoS 28-25
STP 15-10
system message logging 25-3
system name and prompt 7-15
TACACS+ 8-13
UDLD 22-3
VLAN, Layer 2 Ethernet interfaces 11-18
VLANs 11-7
VMPS 11-30
voice VLAN 13-2
VTP 12-6
WCCP 32-5
default networks 30-78
default routes 30-78
default routing 30-2
deleting VLANs 11-10
description command 10-17
designing your network, examples 1-8
destination addresses, in ACLs 27-12
detecting indirect link failures, STP 17-10
device discovery protocol 21-1
device labels 3-12
Device Manager 3-4
device pop-up menu, Front Panel view 3-20
DHCP-based autoconfiguration
client request message exchange 4-4
configuring
client side 4-3
DNS 4-6
relay device 4-6
server-side 4-5
TFTP server 4-5
example 4-8
lease options
for IP address information 4-5
for receiving the configuration file 4-5
overview 4-3
relationship to BOOTP 4-3
relay support 1-6
support for 1-2
DHCP option 82
configuration guidelines 18-4
default configuration 18-3
displaying 18-7
enabling
relay agent 18-4
relay agent information option 18-4
example, metropolitan Ethernet network 18-2
forwarding address, specifying 18-5
helper address 18-6
message exchange process 18-2
overview 18-1
policy for reforwarding 18-5
protected ports for subscriber isolation 18-7
reforwarding policy 18-5
subscriber identification 18-2
support for 1-2
suppressing broadcasts 18-7
validating 18-4
Differentiated Services architecture, QoS 28-2
Differentiated Services Code Point 28-2
Diffusing Update Algorithm (DUAL) 30-38
directed unicast requests 1-2
directories
changing B-3
creating and removing B-4
displaying the working B-3
discovery, clusters
display options, Topology view 3-13
Disqualification Code option 3-24
Distance Vector Multicast Routing Protocol
distance-vector protocols 30-2
distribute-list command 30-86
DNS
and DHCP-based autoconfiguration 4-6
default configuration 7-17
displaying the configuration 7-18
overview 7-16
setting up 7-17
support for 1-2
documentation
related xxxiv
document conventions xxxiv
domain names
DNS 7-16
VTP 12-8
Domain Name System
dot1q-tunnel switchport mode 11-17
double-tagged packets
802.1Q tunneling 14-2
Layer 2 protocol tunneling 14-9
downloading
configuration files
reasons for B-8
using FTP B-13
using RCP B-17
using TFTP B-11
image files
deleting old image B-23
reasons for B-19
using FTP B-26
using RCP B-30
using TFTP B-22
drop threshold for Layer 2 protocol packets 14-10
DSCP-to-CoS map for QoS 28-54
DSCP-to-DSCP-mutation map for QoS 28-55
DSCP-to-threshold map for QoS 28-60
DUAL finite state machine, EIGRP 30-38
duplex mode, configuring 10-13
DVMRP
all-DVMRP-routers multicast group address 33-11
autosummarization
configuring a summary address 33-54
disabling 33-56
connecting PIM domain to DVMRP router 33-46
enabling unicast routing 33-50
interoperability
with Cisco devices 33-44
with IOS software 33-11
mrinfo requests, responding to 33-49
neighbors
advertising the default route to 33-48
discovery with Probe messages 33-11, 33-44
displaying information 33-49
prevent peering with nonpruning 33-52
rejecting nonpruning 33-51
overview 33-11
routes
adding a metric offset 33-56
advertising all 33-56
advertising the default route to neighbors 33-48
<