-
Catalyst 3750-E and 3560-E Switch Command Reference, Release 12.2(40)SE
-
Index
-
Preface
-
Using the Command-Line Interface
-
Catalyst 3750-E and 3560-E Switch Cisco IOS Commands - aaa accounting through renew ip
-
Catalyst 3750-E and 3560-E Switch Cisco IOS Commands - rmon collection through show vtp
-
Catalyst 3750-E and 3560-E Switch Cisco IOS Commands - shutdown through vtp
-
Catalyst 3750-E and 3560-E Switch Boot Loader Commands
-
Catalyst 3750-E and 3560-E Switch Debug Commands
-
Catalyst 3750-E and 3560-E Switch Show Platform Commands
-
Feedback
Table Of Contents
A - B - C - D - E - F - G - H - I - J - L - M - N - O - P - Q - R - S - T - U - V -
Index
A
aaa accounting dot1x command 2-1
aaa authentication dot1x command 2-3
aaa authorization network command 2-5
AAA methods 2-3
abort command 2-791
access control entries
access control lists
access groups
IP 2-154
MAC, displaying 2-556
access list, IPv6 2-219
access map configuration mode 2-277
access mode 2-733
access ports 2-733
ACLs
deny 2-93
displaying 2-407
for non-IP protocols 2-257
IP 2-154
matching 2-277
on Layer 2 interfaces 2-154
permit 2-347
action command 2-7
address aliasing 2-328
aggregate-port learner 2-335
allowed VLANs 2-753
apply command 2-791
archive copy-sw command 2-9
archive download-sw command 2-12
archive tar command 2-16
archive upload-sw command 2-19
arp access-list command 2-21
audience xix
authentication failed VLAN
auth-fail max-attempts
See dot1x auth-fail max-attempts
auth-fail vlan
authorization state of controlled port 2-126
autonegotiation of duplex mode 2-134
auto qos voip command 2-23
B
BackboneFast, for STP 2-659
backup interfaces
configuring 2-728
displaying 2-482
boot (boot loader) command A-2
boot auto-copy-sw command 2-28
boot auto-download-sw command 2-29
boot boothlpr command 2-31
boot config-file command 2-32
boot enable-break command 2-33
boot helper command 2-34
boot helper-config file command 2-35
booting
Cisco IOS image 2-38
displaying environment variables 2-417
interrupting 2-33
manually 2-36
boot loader
accessing A-1
booting
Cisco IOS image A-2
helper image 2-34
directories
creating A-15
displaying a list of A-7
removing A-19
displaying
available commands A-12
memory heap utilization A-13
version A-26
environment variables
described A-20
displaying settings A-20
location of A-21
setting A-20
unsetting A-24
files
copying A-5
deleting A-6
displaying a list of A-7
displaying the contents of A-4, A-16, A-23
renaming A-17
file system
formatting A-10
initializing flash A-9
running a consistency check A-11
prompt A-1
resetting the system A-18
boot manual command 2-36
boot private-config-file command 2-37
boot system command 2-38
BPDU filtering, for spanning tree 2-660, 2-695
BPDU guard, for spanning tree 2-662, 2-695
broadcast storm control 2-716
C
candidate switches
cat (boot loader) command A-4
caution, description xx
CDP, enabling protocol tunneling for 2-237
channel-group command 2-40
channel-protocol command 2-44
Cisco Network Assistant
Cisco SoftPhone
auto-QoS configuration 2-23
trusting packets sent from 2-318
class command 2-45
class-map command 2-47
class maps
creating 2-47
defining the match criteria 2-279
displaying 2-422
class of service
clear dot1x command 2-49
clear eap command 2-50
clear errdisable interface 2-51
clear ip arp inspection log command 2-52
clear ip arp inspection statistics command 2-53
clear ipc command 2-56
clear ip dhcp snooping database command 2-54
clear l2protocol-tunnel counters command 2-57
clear lacp command 2-58
clear logging command 2-59
clear mac address-table command 2-60, 2-61
clear pagp command 2-62
clear port-security command 2-63
clear spanning-tree counters command 2-65
clear spanning-tree detected-protocols command 2-66
clear vmps statistics command 2-67
clear vtp counters command 2-68
cluster commander-address command 2-69
cluster discovery hop-count command 2-71
cluster enable command 2-72
cluster holdtime command 2-74
cluster member command 2-75
cluster outside-interface command 2-77
cluster requirements xx
cluster run command 2-78
clusters
adding candidates 2-75
binding to HSRP group 2-79
building manually 2-75
communicating with
devices outside the cluster 2-77
members by using Telnet 2-383
debug messages, display B-5
displaying
candidate switches 2-425
debug messages B-5
member switches 2-427
status 2-423
hop-count limit for extended discovery 2-71
HSRP standby groups 2-79
redundancy 2-79
SNMP trap 2-649
cluster standby-group command 2-79
cluster timer command 2-81
command modes defined 1-2
command switch
configuration, initial
See getting started guide and hardware installation guide
configuration files
password recovery disable considerations A-1
specifying the name 2-32, 2-37
configuring multiple interfaces 2-149
config-vlan mode
commands 2-778
description 1-4
entering 2-777
summary 1-3
conventions
command xix
for examples xx
publication xix
text xix
copy (boot loader) command A-5
CoS
assigning default value to incoming packets 2-288
assigning to Layer 2 protocol packets 2-240
overriding the incoming value 2-288
CoS-to-DSCP map 2-292
CPU ASIC statistics, displaying 2-429
crashinfo files 2-140
D
debug auto qos command B-2
debug backup command B-4
debug cluster command B-5
debug dot1x command B-7
debug dtp command B-8
debug eap command B-9
debug etherchannel command B-10
debug fastethernet command B-11
debug ilpower command B-12
debug interface command B-15
debug ip dhcp snooping command B-13
debug ip igmp filter command B-16
debug ip igmp max-groups command B-17
debug ip igmp snooping command B-18
debug ip verify source packet command B-14
debug lacp command B-19
debug mac-notification command B-20
debug matm command B-21
debug matm move update command B-22
debug monitor command B-23
debug mvrdbg command B-24
debug nvram command B-25
debug pagp command B-26
debug platform acl command B-27
debug platform backup interface command B-29
debug platform cli-redirection main command B-30
debug platform configuration command B-31, B-39
debug platform cpu-queues command B-32
debug platform device-manager command B-34
debug platform dot1x command B-35
debug platform etherchannel command B-36
debug platform fallback-bridging command B-37
debug platform forw-tcam command B-38
debug platform ip arp inspection command B-40
debug platform ipc command B-49
debug platform ip dhcp command B-41
debug platform ip igmp snooping command B-42
debug platform ip multicast command B-44
debug platform ip unicast command B-46
debug platform ip wccp command B-48
debug platform led command B-50
debug platform matm command B-51
debug platform messaging application command B-52
debug platform phy command B-53
debug platform pm command B-55
debug platform port-asic command B-57
debug platform port-security command B-58
debug platform qos-acl-tcam command B-59
debug platform remote-commands command B-60
debug platform resource-manager command B-61
debug platform snmp command B-62
debug platform span command B-63
debug platform stack-manager command B-64
debug platform supervisor-asic command B-65
debug platform sw-bridge command B-66
debug platform tcam command B-67
debug platform udld command B-70
debug platform vlan command B-71
debug pm command B-72
debug port-security command B-74
debug qos-manager command B-75
debug spanning-tree backbonefast command B-78
debug spanning-tree bpdu command B-79
debug spanning-tree bpdu-opt command B-80
debug spanning-tree command B-76
debug spanning-tree mstp command B-81
debug spanning-tree switch command B-83
debug spanning-tree uplinkfast command B-85
debug sw-vlan command B-86
debug sw-vlan ifs command B-88
debug sw-vlan notification command B-89
debug sw-vlan vtp command B-91
debug udld command B-93
debug vqpc command B-95
define interface-range command 2-82
delete (boot loader) command A-6
delete command 2-84
deny (ARP access-list configuration) command 2-85
deny (IPv6) command 2-87
deny command 2-93
detect mechanism, causes 2-135
device manager requirements xx
DHCP snooping
accepting untrusted packets from edge switch 2-182
enabling
on a VLAN 2-188
trust on an interface 2-186
error recovery timer 2-137
rate limiting 2-185
DHCP snooping binding database
binding file, configuring 2-178
bindings
adding 2-176
deleting 2-176
displaying 2-501
clearing database agent statistics 2-54
database agent, configuring 2-178
displaying
binding entries 2-501
database agent status 2-503, 2-505
renewing 2-391
dir (boot loader) command A-7
directories, deleting 2-84
documentation, related xx
document conventions xix
dot1x auth-fail max-attempts 2-105
dot1x auth-fail vlan 2-107
dot1x command 2-103
dot1x control-direction command 2-109
dot1x critical global configuration command 2-111
dot1x critical interface configuration command 2-113
dot1x default command 2-115
dot1x fallback command 2-116
dot1x guest-vlan command 2-117
dot1x host-mode command 2-119
dot1x initialize command 2-120
dot1x mac-auth-bypass command 2-121
dot1x max-reauth-req command 2-123
dot1x max-req command 2-124
dot1x pae command 2-125
dot1x port-control command 2-126
dot1x re-authenticate command 2-128
dot1x reauthentication command 2-129
dot1x timeout command 2-130
dropping packets, with ACL matches 2-7
drop threshold, Layer 2 protocol tunneling 2-237
DSCP-to-CoS map 2-292
DSCP-to-DSCP-mutation map 2-292
DTP 2-734
DTP flap
error detection for 2-135
error recovery timer 2-137
DTP negotiation 2-738
dual IPv4 and IPv6 templates 2-341
duplex command 2-133
dynamic-access ports
configuring 2-726
restrictions 2-727
dynamic ARP inspection
ARP ACLs
apply to a VLAN 2-162
define 2-21
deny packets 2-85
display 2-412
permit packets 2-339
clear
log buffer 2-52
statistics 2-53
display
ARP ACLs 2-412
configuration and operating state 2-496
log buffer 2-496
statistics 2-496
trust state and rate limit 2-496
enable per VLAN 2-172
error detection for 2-135
error recovery timer 2-137
log buffer
clear 2-52
configure 2-166
display 2-496
rate-limit incoming ARP packets 2-164
statistics
clear 2-53
display 2-496
trusted interface state 2-168
type of packet logged 2-173
validation checks 2-170
dynamic auto VLAN membership mode 2-733
dynamic desirable VLAN membership mode 2-733
Dynamic Host Configuration Protocol (DHCP)
Dynamic Trunking Protocol
E
EAP-request/identity frame
maximum number to send 2-124
response time before retransmitting 2-130
encapsulation methods 2-753
environment variables, displaying 2-417
errdisable detect cause command 2-135
errdisable recovery command 2-137
error conditions, displaying 2-469
error disable detection 2-135
error-disabled interfaces, displaying 2-482
EtherChannel
assigning Ethernet interface to channel group 2-40
creating port-channel logical interface 2-147
debug EtherChannel/PAgP, display B-10
debug platform-specific events, display B-36
displaying 2-473
enabling Layer 2 protocol tunneling for
LACP 2-238
PAgP 2-238
UDLD 2-238
interface information, displaying 2-482
LACP
clearing channel-group information 2-58, 2-59
debug messages, display B-19
displaying 2-541
modes 2-40
port priority for hot-standby ports 2-241
restricting a protocol 2-44
system priority 2-243
load-distribution methods 2-357
PAgP
aggregate-port learner 2-335
clearing channel-group information 2-62
debug messages, display B-26
displaying 2-600
error detection for 2-135
error recovery timer 2-137
learn method 2-335
modes 2-40
physical-port learner 2-335
priority of interface for transmitted traffic 2-337
Ethernet controller, internal register display 2-431, 2-438
Ethernet Management port, debugging B-11
Ethernet statistics, collecting 2-389
examples, conventions for xx
exception crashinfo command 2-140, 2-145
exit command 2-791
extended discovery of candidate switches 2-71
extended-range VLANs
and allowed VLAN list 2-753
and pruning-eligible list 2-753
configuring 2-777
extended system ID for STP 2-668
F
fallback profile command 2-141
fallback profiles, displaying 2-476
fan information, displaying 2-462
file name, VTP 2-802
files, deleting 2-84
flash_init (boot loader) command A-9
Flex Links
configuring 2-728
displaying 2-482
flowcontrol command 2-143
format (boot loader) command A-10
forwarding packets, with ACL matches 2-7
forwarding results, display C-7
frame forwarding information, displaying C-7
front-end controller counter and status information C-9
fsck (boot loader) command A-11
G
global configuration mode 1-2, 1-4
H
hardware ACL statistics 2-407
health monitoring diagnostic tests 2-96
help (boot loader) command A-12
hierarchical policy maps 2-355
hop-count limit for clusters 2-71
host connection, port configuration 2-732
host ports, private VLANs 2-736
Hot Standby Router Protocol
HSRP
binding HSRP group to cluster 2-79
standby group 2-79
I
IEEE 802.1Q trunk ports and native VLANs 2-793
IEEE 802.1Q tunnel ports
configuring 2-733
displaying 2-452
limitations 2-734
IEEE 802.1x
and switchport modes 2-734
violation error recovery 2-137
See also port-based authentication
IEEE 802.1X Port Based Authentication
enabling guest VLAN supplicant 2-142
IGMP filters
applying 2-191
debug messages, display B-16
IGMP groups, setting maximum 2-193
IGMP maximum groups, debugging B-17
IGMP profiles
creating 2-195
displaying 2-508
IGMP snooping
adding ports as a static member of a group 2-211
displaying 2-509, 2-514, 2-516
enabling 2-197
enabling the configurable-leave timer 2-199
enabling the Immediate-Leave feature 2-208
flooding query count 2-205
interface topology change notification behavior 2-207
multicast table 2-512
querier 2-201
query solicitation 2-205
report suppression 2-203
switch topology change notification behavior 2-205
images
Immediate-Leave processing
IGMP 2-208
IPv6 2-233
MVR 2-330
initial configuration
See getting started guide and hardware installation guide
interface configuration mode 1-2, 1-4
interface port-channel command 2-147
interface range command 2-149
interface-range macros 2-82
interfaces
assigning Ethernet interface to channel group 2-40
configuring 2-133
configuring multiple 2-149
creating port-channel logical 2-147
debug messages, display B-15
disabling 2-647
displaying the MAC address table 2-568
restarting 2-647
interface speed, configuring 2-706
interface vlan command 2-152
internal power supplies
internal registers, displaying 2-431, 2-438, 2-443
Internet Group Management Protocol
invalid GBIC
error detection for 2-135
error recovery timer 2-137
ip access-group command 2-154
ip address command 2-157
IP addresses, setting 2-157
IP address matching 2-277
ip admission command 2-159
ip admission name proxy http command 2-160
ip arp inspection filter vlan command 2-162
ip arp inspection limit command 2-164
ip arp inspection log-buffer command 2-166
ip arp inspection trust command 2-168
ip arp inspection validate command 2-170
ip arp inspection vlan command 2-172
ip arp inspection vlan logging command 2-173
IP DHCP snooping
ip dhcp snooping binding command 2-176
ip dhcp snooping command 2-175
ip dhcp snooping database command 2-178
ip dhcp snooping information option allow-untrusted command 2-182
ip dhcp snooping information option command 2-180
ip dhcp snooping information option format remote-id command 2-184
ip dhcp snooping limit rate command 2-185
ip dhcp snooping trust command 2-186
ip dhcp snooping verify command 2-187
ip dhcp snooping vlan command 2-188
ip dhcp snooping vlan information option format-type circuit-id string command 2-189
ip igmp filter command 2-191
ip igmp max-groups command 2-193
ip igmp profile command 2-195
ip igmp snooping command 2-197
ip igmp snooping last-member-query-interval command 2-199
ip igmp snooping querier command 2-201
ip igmp snooping report-suppression command 2-203
ip igmp snooping tcn command 2-205
ip igmp snooping tcn flood command 2-207
ip igmp snooping vlan immediate-leave command 2-208
ip igmp snooping vlan mrouter command 2-209
ip igmp snooping vlan static command 2-211
IP multicast addresses 2-327
IP phones
auto-QoS configuration 2-23
trusting packets sent from 2-318
IP-precedence-to-DSCP map 2-292
ip snap forwarding command 2-213
ip source binding command 2-214
IP source guard
disabling 2-218
displaying
binding entries 2-518
configuration 2-520
dynamic binding entries only 2-501
enabling 2-218
static IP source bindings 2-214
ip ssh command 2-216
IPv6 access list, deny conditions 2-87
ipv6 access-list command 2-219
ipv6 mld snooping command 2-221
ipv6 mld snooping last-listener-query count command 2-223
ipv6 mld snooping last-listener-query-interval command 2-225
ipv6 mld snooping listener-message-suppression command 2-227
ipv6 mld snooping robustness-variable command 2-229
ipv6 mld snooping tcn command 2-231
ipv6 mld snooping vlan command 2-233
IPv6 SDM template 2-390
ipv6 traffic-filter command 2-235
ip verify source command 2-218
J
jumbo frames
L
l2protocol-tunnel command 2-237
l2protocol-tunnel cos command 2-240
LACP
lacp port-priority command 2-241
lacp system-priority command 2-243
Layer 2 mode, enabling 2-724
Layer 2 protocol ports, displaying 2-538
Layer 2 protocol-tunnel
error detection for 2-135
error recovery timer 2-137
Layer 2 protocol tunnel counters 2-57
Layer 2 protocol tunneling error recovery 2-238
Layer 2 traceroute
IP addresses 2-768
MAC addresses 2-765
Layer 3 mode, enabling 2-724
line configuration mode 1-3, 1-5
Link Aggregation Control Protocol
link flap
error detection for 2-135
error recovery timer 2-137
link state group command 2-245
link state track command 2-247
load-distribution methods for EtherChannel 2-357
location (global configuration) command 2-248
location (interface configuration) command 2-250
logging event power-inline-status command 2-252
logging file command 2-253
logical interface 2-147
loopback error
detection for 2-135
recovery timer 2-137
loop guard, for spanning tree 2-670, 2-674
M
mac access-group command 2-255
MAC access-groups, displaying 2-556
MAC access list configuration mode 2-257
mac access-list extended command 2-257
MAC access lists 2-93
MAC addresses
displaying
aging time 2-562
all 2-560
dynamic 2-566
MAC address-table move updates 2-570
notification settings 2-572
number of addresses in a VLAN 2-564
per interface 2-568
per VLAN 2-576
static 2-574
static and dynamic entries 2-558
dynamic
aging time 2-259
deleting 2-60
displaying 2-566
enabling MAC address notification 2-262
enabling MAC address-table move update 2-260
matching 2-277
persistent stack 2-714
static
adding and removing 2-264
displaying 2-574
dropping on an interface 2-265
tables 2-560
MAC address notification, debugging B-20
mac address-table aging-time 2-255, 2-277
mac address-table aging-time command 2-259
mac address-table move update command 2-260
mac address-table notification command 2-262
mac address-table static command 2-264
mac address-table static drop command 2-265
MAC frames
macro apply command 2-267
macro description command 2-270
macro global command 2-271
macro global description command 2-274
macro name command 2-275
macros
adding a description 2-270
adding a global description 2-274
applying 2-271
creating 2-275
displaying 2-602
specifying parameter values 2-271
tracing 2-271
manual
audience xix
purpose of xix
maps
QoS
defining 2-292
displaying 2-586
VLAN
creating 2-788
defining 2-277
displaying 2-642
match (access-map configuration) command 2-277
match (class-map configuration) command 2-279
maximum transmission unit
mdix auto command 2-282
member switches
memory (boot loader) command A-13
mkdir (boot loader) command A-15
MLD snooping
configuring queries 2-223, 2-225
configuring topology change notification 2-231
displaying 2-528, 2-530, 2-532, 2-534
enabling 2-221
enabling on a VLAN 2-233
mls qos aggregate-policer command 2-286
mls qos command 2-284
mls qos cos command 2-288
mls qos dscp-mutation command 2-290
mls qos map command 2-292
mls qos queue-set output buffers command 2-296
mls qos queue-set output threshold command 2-298
mls qos rewrite ip dscp command 2-300
mls qos srr-queue input bandwidth command 2-302
mls qos srr-queue input buffers command 2-304
mls qos-srr-queue input cos-map command 2-306
mls qos srr-queue input dscp-map command 2-308
mls qos srr-queue input priority-queue command 2-310
mls qos srr-queue input threshold command 2-312
mls qos-srr-queue output cos-map command 2-314
mls qos srr-queue output dscp-map command 2-316
mls qos trust command 2-318
mls qos vlan-based command 2-320
mode, MVR 2-327
Mode button, and password recovery 2-394
modes, commands 1-2
monitor session command 2-322
more (boot loader) command A-16
MSTP
interoperability 2-66
link type 2-672
MST region
aborting changes 2-678
applying changes 2-678
configuration name 2-678
configuration revision number 2-678
current or pending display 2-678
MST configuration mode 2-678
VLANs-to-instance mapping 2-678
path cost 2-680
protocol mode 2-676
restart protocol migration process 2-66
root port
loop guard 2-670
preventing from becoming designated 2-670
restricting which can be root 2-670
root guard 2-670
root switch
affects of extended system ID 2-668
interval between BDPU messages 2-684
interval between hello BPDU messages 2-683, 2-691
max-age 2-684
maximum hop count before discarding BPDU 2-685
port priority for selection of 2-687
primary or secondary 2-691
switch priority 2-690
state changes
blocking to forwarding state 2-698
enabling BPDU filtering 2-660, 2-695
enabling BPDU guard 2-662, 2-695
enabling Port Fast 2-695, 2-698
forward-delay time 2-682
length of listening and learning states 2-682
rapid transition to forwarding 2-672
shutting down Port Fast-enabled ports 2-695
state information display 2-619
MTU
configuring size 2-761
displaying global setting 2-631
MAC 2-762
system jumbo 2-762
system routing 2-762
Multicase Listener Discovery
multicast group address, MVR 2-330
multicast groups, MVR 2-328
Multicast Listener Discovery
multicast router learning method 2-209
multicast router ports, configuring 2-209
multicast router ports, IPv6 2-233
multicast storm control 2-716
multicast VLAN, MVR 2-327
multicast VLAN registration
multiple hosts on authorized port 2-119
Multiple Spanning Tree Protocol
MVR
and address aliasing 2-328
configuring 2-327
configuring interfaces 2-330
debug messages, display B-24
displaying 2-594
displaying interface information 2-596
members, displaying 2-598
mvr (global configuration) command 2-327
mvr (interface configuration) command 2-330
mvr vlan group command 2-331
N
native VLANs 2-753
native VLAN tagging 2-793
Network Assistant requirements xx
nonegotiate
DTP messaging 2-738
speed 2-706
non-IP protocols
denying 2-93
forwarding 2-347
non-IP traffic access lists 2-257
non-IP traffic forwarding
denying 2-93
permitting 2-347
non-stop forwarding 2-333
normal-range VLANs 2-777, 2-782
note, description xx
nsf command 2-333
O
online diagnostics
configuring health monitoring diagnostic tests 2-96
displaying
configured boot-up coverage level 2-447
current scheduled tasks 2-447
event logs 2-447
supported test suites 2-447
test ID 2-447
test results 2-447
test statistics 2-447
enabling
scheduling 2-98
syslog messages 2-96
global configuration mode
clearing health monitoring diagnostic test schedule 2-96
clearing test-based testing schedule 2-98
setting health monitoring diagnostic testing 2-96
setting test-based testing 2-98
setting up health monitoring diagnostic test schedule 2-96
setting up test-based testing 2-98
removing scheduling 2-98
scheduled switchover
disabling 2-98
enabling 2-98
setting test interval 2-98
specifying health monitoring diagnostic tests 2-96
starting testing 2-100
P
PAgP
pagp learn-method command 2-335
pagp port-priority command 2-337
password-recovery mechanism, enabling and disabling 2-394
permit (ARP access-list configuration) command 2-339
permit (IPv6) command 2-341
permit (MAC access-list configuration) command 2-347
per-VLAN spanning-tree plus
physical-port learner 2-335
PID, displaying 2-495
PIM-DVMRP, as multicast router learning method 2-209
PoE
configuring the power budget 2-362
configuring the power management mode 2-359
displaying controller register values 2-441
displaying power management information 2-610
error detection for 2-135
error recovery timer 2-137
logging of status 2-252
monitoring power 2-364
policing power consumption 2-364
police aggregate command 2-352
police command 2-350
policed-DSCP map 2-292
policy-map command 2-354
policy maps
applying to an interface 2-396, 2-402
creating 2-354
displaying 2-605
hierarchical 2-355
policers
displaying 2-579
for a single class 2-350
for multiple classes 2-286, 2-352
policed-DSCP map 2-292
traffic classification
defining the class 2-45
defining trust states 2-770
setting DSCP or IP precedence values 2-400
Port Aggregation Protocol
port-based authentication
AAA method list 2-3
debug messages, display B-7
enabling guest VLAN supplicant 2-106, 2-116
enabling IEEE 802.1x
globally 2-103
per interface 2-126
guest VLAN 2-117
host modes 2-119
IEEE 802.1x AAA accounting methods 2-1
initialize an interface 2-120
MAC authentication bypass 2-121
manual control of authorization state 2-126
multiple hosts on authorized port 2-119
PAE as authenticator 2-125
periodic re-authentication
enabling 2-129
time between attempts 2-130
quiet period between failed authentication exchanges 2-130
re-authenticating IEEE 802.1x-enabled ports 2-128
resetting configurable IEEE 802.1x parameters 2-115
switch-to-authentication server retransmission time 2-130
switch-to-client frame-retransmission number2-123to 2-124
switch-to-client retransmission time 2-130
port-channel load-balance command 2-357
Port Fast, for spanning tree 2-698
port ranges, defining 2-82
ports, debugging B-72
ports, protected 2-751
port security
aging 2-745
debug messages, display B-74
enabling 2-740
violation error recovery 2-137
port trust states for QoS 2-318
port types, MVR 2-330
power information, displaying 2-462
power inline command 2-359
power inline consumption command 2-362
power inline police command 2-364
Power over Ethernet
power rps command (user EXEC) 2-367
power supply
configuring 2-370
managing 2-370
power supply command 2-370
priority-queue command 2-371
priority value, stack member 2-628, 2-719
private-vlan command 2-373
private-vlan mapping command 2-376
private VLANs
association 2-749
configuring 2-373
configuring ports 2-736
displaying 2-637
host ports 2-736
mapping
configuring 2-749
displaying 2-482
promiscuous ports 2-736
product identification information, displaying 2-495
promiscuous ports, private VLANs 2-736
protected ports, displaying 2-488
pruning
VLANs 2-753
VTP
displaying interface information 2-482
pruning-eligible VLAN list 2-755
PVST+
Q
QoS
auto-QoS
configuring 2-23
debug messages, display B-2
displaying 2-413
class maps
creating 2-47
defining the match criteria 2-279
displaying 2-422
defining the CoS value for an incoming packet 2-288
displaying configuration information 2-413, 2-578
DSCP transparency 2-300
DSCP trusted ports
applying DSCP-to-DSCP-mutation map to 2-290
defining DSCP-to-DSCP-mutation map 2-292
egress queues
allocating buffers 2-296
defining the CoS output queue threshold map 2-314
defining the DSCP output queue threshold map 2-316
displaying buffer allocations 2-582
displaying CoS output queue threshold map 2-586
displaying DSCP output queue threshold map 2-586
displaying queueing strategy 2-582
egress queues
displaying queue-set settings 2-589
enabling bandwidth shaping and scheduling 2-710
enabling bandwidth sharing and scheduling 2-712
limiting the maximum output on a port 2-708
mapping a port to a queue-set 2-378
mapping CoS values to a queue and threshold 2-314
mapping DSCP values to a queue and threshold 2-316
setting maximum and reserved memory allocations 2-298
setting WTD thresholds 2-298
enabling 2-284
ingress queues
allocating buffers 2-304
assigning SRR scheduling weights 2-302
defining the CoS input queue threshold map 2-306
defining the DSCP input queue threshold map 2-308
displaying buffer allocations 2-582
displaying CoS input queue threshold map 2-586
displaying DSCP input queue threshold map 2-586
displaying queueing strategy 2-582
displaying settings for 2-580
enabling the priority queue 2-310
mapping CoS values to a queue and threshold 2-306
mapping DSCP values to a queue and threshold 2-308
setting WTD thresholds 2-312
maps
defining 2-292, 2-306, 2-308, 2-314, 2-316
displaying 2-586
policy maps
applying an aggregate policer 2-352
applying to an interface 2-396, 2-402
creating 2-354
defining policers 2-286, 2-350
displaying policers 2-579
displaying policy maps 2-605
hierarchical 2-355
policed-DSCP map 2-292
setting DSCP or IP precedence values 2-400
traffic classifications 2-45
trust states 2-770
port trust states 2-318
queues, enabling the expedite 2-371
statistics
in-profile and out-of-profile packets 2-582
packets enqueued or dropped 2-582
sent and received CoS values 2-582
sent and received DSCP values 2-582
trusted boundary for IP phones 2-318
VLAN-based 2-320
quality of service
querytime, MVR 2-327
queue-set command 2-378
R
radius-server dead-criteria command 2-379
radius-server host command 2-381
rapid per-VLAN spanning-tree plus
rapid PVST+
rcommand command 2-383
re-authenticating IEEE 802.1x-enabled ports 2-128
re-authentication
periodic 2-129
time between attempts 2-130
receiver ports, MVR 2-330
receiving flow-control packets 2-143
recovery mechanism
causes 2-137
display 2-51, 2-420, 2-467, 2-471
timer interval 2-138
redundancy for cluster switches 2-79
redundant power supply
reload command 2-385
remote command 2-387
remote-span command 2-389
Remote Switched Port Analyzer
rename (boot loader) command A-17
renew ip dhcp snooping database command 2-391
requirements
cluster xx
device manager xx
Network Assistant xx
reset (boot loader) command A-18
reset command 2-791
resource templates, displaying 2-615
restricted VLAN
rmdir (boot loader) command A-19
rmon collection stats command 2-389
root guard, for spanning tree 2-670
routed ports
IP addresses on 2-158
number supported 2-158
routing frames
RPS 2300
configuring 2-367
managing 2-367
RSPAN
configuring 2-322
displaying 2-592
filter RSPAN traffic 2-322
remote-span command 2-389
sessions
add interfaces to 2-322
displaying 2-592
start new 2-322
S
scheduled switchover
disabling 2-98
enabling 2-98
SDM mismatch mode 2-391, 2-629
sdm prefer command 2-390
SDM templates
allowed resources 2-391
and stacking 2-391
displaying 2-615
dual IPv4 and IPv6 2-390
secure ports, limitations 2-742
sending flow-control packets 2-143
service password-recovery command 2-394
service-policy command 2-396
session command 2-399
set (boot loader) command A-20
set command 2-400
setup command 2-402
setup express command 2-405
show access-lists command 2-407
show archive status command 2-410
show arp access-list command 2-412
show auto qos command 2-413
show boot command 2-417
show cable-diagnostics tdr command 2-420
show changes command 2-791
show class-map command 2-422
show cluster candidates command 2-425
show cluster command 2-423
show cluster members command 2-427
show controllers cpu-interface command 2-429
show controllers ethernet-controller command 2-431
show controllers ethernet-controller fastethernet command 2-438
show controllers power inline command 2-441
show controllers tcam command 2-443
show controller utilization command 2-445
show current command 2-791
show dot1q-tunnel command 2-452
show dot1x command 2-453
show dtp 2-457
show eap command 2-459
show env command 2-462
show errdisable detect command 2-467
show errdisable flap-values command 2-469
show errdisable recovery command 2-471
show etherchannel command 2-473
show fallback profile command 2-476
show flowcontrol command 2-478
show idprom command 2-480
show interfaces command 2-482
show interfaces counters command 2-492
show inventory command 2-495
show ip arp inspection command 2-496
show ipc command 2-522
show ip dhcp snooping binding command 2-501
show ip dhcp snooping command 2-500
show ip dhcp snooping database command 2-503, 2-505
show ip igmp profile command 2-508
show ip igmp snooping address command 2-530
show ip igmp snooping command 2-509, 2-528
show ip igmp snooping groups command 2-512
show ip igmp snooping mrouter command 2-514, 2-532
show ip igmp snooping querier command 2-516, 2-534
show ip source binding command 2-518
show ipv6 access-list command 2-526
show ipv6 route updated 2-536
show ip verify source command 2-520
show l2protocol-tunnel command 2-538
show lacp command 2-541
show link state group command 2-545
show location 2-547
show location command 2-547
show logging command 2-550
show mac access-group command 2-556
show mac address-table address command 2-560
show mac address-table aging time command 2-562
show mac address-table command 2-558
show mac address-table count command 2-564
show mac address-table dynamic command 2-566
show mac address-table interface command 2-568
show mac address-table move update command 2-570
show mac address-table notification command 2-61, 2-572, B-22
show mac address-table static command 2-574
show mac address-table vlan command 2-576
show mls qos aggregate-policer command 2-579
show mls qos command 2-578
show mls qos input-queue command 2-580
show mls qos interface command 2-582
show mls qos maps command 2-586
show mls qos queue-set command 2-589
show mls qos vlan command 2-591
show monitor command 2-592
show mvr command 2-594
show mvr interface command 2-596
show mvr members command 2-598
show pagp command 2-600
show parser macro command 2-602
show platform acl command C-2
show platform backup interface command C-3
show platform configuration command C-4
show platform dl command C-5
show platform etherchannel command C-6
show platform forward command C-7
show platform frontend-controller command C-9
show platform igmp snooping command C-10
show platform ipc trace command C-18
show platform ip multicast command C-12
show platform ip unicast command C-13
show platform ipv6 unicast command C-19
show platform ip wccp command C-17
show platform layer4op command C-21
show platform mac-address-table command C-22
show platform messaging command C-23
show platform monitor command C-24
show platform mvr table command C-25
show platform pm command C-26
show platform port-asic command C-27
show platform port-security command C-32
show platform qos command C-33
show platform resource-manager command C-34
show platform snmp counters command C-36
show platform spanning-tree command C-37
show platform stack-manager command C-39
show platform stp-instance command C-38
show platform tb command C-41
show platform tcam command C-43
show platform vlan command C-46
show policy-map command 2-605
show port security command 2-607
show power inline command 2-610
show proposed command 2-791
show sdm prefer command 2-615
show setup express command 2-618
show spanning-tree command 2-619
show storm-control command 2-626
show switch command 2-628
show system mtu command 2-631
show trust command 2-770
show udld command 2-632
show version command 2-635
show vlan access-map command 2-642
show vlan command 2-637
show vlan command, fields 2-639
show vlan filter command 2-643
show vmps command 2-644
show vtp command 2-647
shutdown command 2-647
shutdown threshold, Layer 2 protocol tunneling 2-237
shutdown vlan command 2-648
Smartports macros
SNMP host, specifying 2-653
SNMP informs, enabling the sending of 2-649
snmp-server enable traps command 2-649
snmp-server host command 2-653
snmp trap mac-notification command 2-657
SNMP traps
enabling MAC address notification trap 2-657
enabling the MAC address notification feature 2-262
enabling the sending of 2-649
SoftPhone
software images
copying 2-9
deleting 2-84
downloading 2-12
uploading 2-19
software version, displaying 2-635
source ports, MVR 2-330
SPAN
configuring 2-322
debug messages, display B-23
displaying 2-592
filter SPAN traffic 2-322
sessions
add interfaces to 2-322
displaying 2-592
start new 2-322
spanning-tree backbonefast command 2-659
spanning-tree bpdufilter command 2-660
spanning-tree bpduguard command 2-662
spanning-tree cost command 2-664
spanning-tree etherchannel command 2-666
spanning-tree extend system-id command 2-668
spanning-tree guard command 2-670
spanning-tree link-type command 2-672
spanning-tree loopguard default command 2-674
spanning-tree mode command 2-676
spanning-tree mst configuration command 2-678
spanning-tree mst cost command 2-680
spanning-tree mst forward-time command 2-682
spanning-tree mst hello-time command 2-683
spanning-tree mst max-age command 2-684
spanning-tree mst max-hops command 2-685
spanning-tree mst port-priority command 2-687
spanning-tree mst pre-standard command 2-689
spanning-tree mst priority command 2-690
spanning-tree mst root command 2-691
spanning-tree portfast (global configuration) command 2-695
spanning-tree portfast (interface configuration) command 2-698
spanning-tree port-priority command 2-693
Spanning Tree Protocol
spanning-tree transmit hold-count command 2-700
spanning-tree uplinkfast command 2-701
spanning-tree vlan command 2-703
speed command 2-706
srr-queue bandwidth limit command 2-708
srr-queue bandwidth shape command 2-710
srr-queue bandwidth share command 2-712
SSH, configuring version 2-216
stack-mac persistent timer command 2-714
stack member
access 2-399
priority value 2-719
provisioning 2-720
reloading 2-385
stacks, switch
MAC address 2-714
provisioning a new member 2-720
reloading 2-385
stack member access 2-399
stack member number 2-628, 2-722
stack member priority value 2-628, 2-719
static-access ports, configuring 2-726
statistics, Ethernet group 2-389
sticky learning, enabling 2-740
storm-control command 2-716
STP
BackboneFast 2-659
counters, clearing 2-65
debug messages, display
BackboneFast events B-78
MSTP B-81
optimized BPDUs handling B-80
spanning-tree activity B-76
switch shim B-83
transmitted and received BPDUs B-79
UplinkFast B-85
detection of indirect link failures 2-659
enabling protocol tunneling for 2-237
EtherChannel misconfiguration 2-666
extended system ID 2-668
path cost 2-664
protocol modes 2-676
root port
accelerating choice of new 2-701
loop guard 2-670
preventing from becoming designated 2-670
restricting which can be root 2-670
root guard 2-670
UplinkFast 2-701
root switch
affects of extended system ID 2-668, 2-704
hello-time 2-703
interval between BDPU messages 2-703
interval between hello BPDU messages 2-703
max-age 2-703
port priority for selection of 2-693
primary or secondary 2-703
switch priority 2-703
state changes
blocking to forwarding state 2-698
enabling BPDU filtering 2-660, 2-695
enabling BPDU guard 2-662, 2-695
enabling Port Fast 2-695, 2-698
enabling timer to recover from error state 2-137
forward-delay time 2-703
length of listening and learning states 2-703
shutting down Port Fast-enabled ports 2-695
state information display 2-619
SVIs, creating 2-152
Switched Port Analyzer
switching characteristics
modifying 2-724
returning to interfaces 2-724
switchport access command 2-726
switchport backup interface command 2-728
switchport block command 2-731
switchport command 2-724
switchport host command 2-732
switchport mode command 2-733
switchport mode private-vlan command 2-736
switchport nonegotiate command 2-738
switchport port-security aging command 2-745
switchport port-security command 2-740
switchport priority extend command 2-747
switchport private-vlan command 2-749
switchport protected command 2-751
switchports, displaying 2-482
switchport trunk command 2-753
switchport voice detect 2-756
switchport voice vlan command 2-757
switch priority command 2-719
switch provision command 2-720
switch renumber command 2-722
system env temperature threshold yellow command 2-759
system message logging 2-252
system message logging, save message to flash 2-253
system mtu command 2-761
system resource templates 2-390
T
tar files, creating, listing, and extracting 2-16
TDR, running 2-764
Telnet, using to communicate to cluster switches 2-383
temperature information, displaying 2-462
templates, system resources 2-390
test cable-diagnostics tdr command 2-764
traceroute mac command 2-765
traceroute mac ip command 2-768
trunking, VLAN mode 2-733
trunk mode 2-733
trunk ports 2-733
trunks, to non-DTP device 2-734
trusted boundary for QoS 2-318
trusted port states for QoS 2-318
tunnel ports, Layer 2 protocol, displaying 2-538
type (boot loader) command A-23
U
UDLD
debug messages, display B-93
enable globally 2-772
enable per interface 2-774
error recovery timer 2-137
message timer 2-772
reset a shutdown interface 2-776
status 2-632
udld command 2-772
udld port command 2-774
udld reset command 2-776
unicast storm control 2-716
UniDirectional Link Detection
unknown multicast traffic, preventing 2-731
unknown unicast traffic, preventing 2-731
unset (boot loader) command A-24
upgrading
copying software images 2-9
downloading software images 2-12
software images
monitoring status of 2-410
upgrading information
UplinkFast, for STP 2-701
V
version (boot loader) command A-26
version mismatch mode 2-629
vlan (global configuration) command 2-777
vlan (VLAN configuration) command 2-782
vlan access-map command 2-788
VLAN access map configuration mode 2-788
VLAN access maps
actions 2-7
displaying 2-642
VLAN-based QoS 2-320
VLAN configuration
VLAN configuration mode
commands
VLAN 2-782
VTP 2-806
description 1-5
entering 2-790
summary 1-3
vlan database command 2-790
vlan dot1q tag native command 2-793
vlan filter command 2-795
VLAN filters, displaying 2-643
VLAN maps
applying 2-795
creating 2-788
defining 2-277
displaying 2-642
VLAN Query Protocol
VLANs
adding 2-777
debug messages, display
ISL B-89
VLAN IOS file system error tests B-88
VLAN manager activity B-86
VTP B-91
displaying configurations 2-637
enabling guest VLAN supplicant 2-142
extended-range 2-777
MAC addresses
displaying 2-576
number of 2-564
private 2-736
configuring 2-373
displaying 2-637
restarting 2-648
saving the configuration 2-777
shutting down 2-648
SNMP traps for VTP 2-651, 2-654
suspending 2-648
variables 2-782
VLAN Trunking Protocol
VM mode 2-629
VMPS
configuring servers 2-800
displaying 2-644
error recovery timer 2-138
reconfirming dynamic VLAN assignments 2-797
vmps reconfirm (global configuration) command 2-798
vmps reconfirm (privileged EXEC) command 2-797
vmps retry command 2-799
vmps server command 2-800
voice VLAN
setting port priority 2-747
VQP
and dynamic-access ports 2-727
clearing client statistics 2-67
displaying information 2-644
per-server retry count 2-799
reconfirmation interval 2-798
reconfirming dynamic VLAN assignments 2-797
VTP
changing characteristics 2-802
clearing pruning counters 2-68
configuring
file name 2-802
counters display fields 2-648
displaying information 2-647
enabling
tunneling for 2-237
saving the configuration 2-777, 2-786
statistics 2-647
status 2-647
status display fields 2-649
vtp (global configuration) command 2-802
vtp (VLAN configuration) command 2-806