Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide, 12.1(20)EW - Index [Cisco Catalyst 4500 Series Switches]

Table Of Contents

Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V -

Index

Numerics

802.10 SAID (default)8-4

802.1Q trunks12-6

802.1Q VLANs

encapsulation6-3

trunk restrictions6-5

802.1s

See MST

802.1w

See MST

802.1X

See port-based authentication

802.1x authentication

support for guest VLANs27-5

802.3ad

See LACP

A

AAA

disabling27-9

enabling27-9

abbreviating commands2-5

access control entries

See ACEs

access ports, configuring6-8

access VLANs6-6

ACEs

ACLs25-2

Ethernet25-2

IP25-2

Layer 4 operation restrictions25-6

ACLs

ACEs25-2

applying on routed packets25-19

applying on switched packets25-19

compatibility on the same switch25-3

configuring with VLAN maps25-18

CPU impact25-8

IP

matching criteria for port ACLs25-4

MAC extended25-9

matching criteria for router ACLs25-3

port

and voice VLAN25-4

defined25-2

limitations25-4

processing25-8

types supported25-2

acronyms, list ofA-1

active queue management30-13

addresses

See MAC addresses

adjacency tables

description21-2

displaying statistics21-10

advertisements, VTP

See VTP advertisements

alarms

major34-2

minor34-2

audiencexxi

authentication

See also port-based authentication

authentication server

defined27-2

RADIUS server27-2

authorized and unauthorized ports27-4

authorized ports with 802.1X27-4

automatic QoS

See QoS

Auto-QoS

configuring30-15

B

BackboneFast

adding a switch (figure)13-2

and MST14-2

configuring13-15

link failure (figure)13-7, 13-8

not supported MST14-2

understanding13-6

See also STP

BGP1-8

routing session with multi-VRF CE22-6

blocking packets28-1

blocking state (STP)

RSTP comparisons (table)14-4

boot bootldr command3-18

boot command3-15

boot fields

See configuration register boot fields

boot system command3-13, 3-18

boot system flash command3-15

Border Gateway Protocol

See BGP

boundary ports

description14-6

BPDU Guard

and MST14-2

configuring13-12

overview13-4

BPDUs

and media speed12-2

pseudobridges and14-5

what they contain12-3

bridge ID

See STP bridge ID

bridge priority (STP)12-16

bridge protocol data units

See BPDUs

broadcast storm control

disabling29-4

BSR

configuration example24-21

burst rate30-39

burst size30-26

C

cautions for passwords

encrypting3-9

TACACS+3-9

CDP

and trusted boundary30-24

configuration16-2

displaying configuration16-3

enabling on interfaces16-3

maintaining16-3

monitoring16-3

overview1-2, 16-1

cdp enable command16-3

CEF

adjacency tables21-2

configuring load balancing21-7

disabling per-destination load balancing21-7

display statistics21-9

enabling21-7

hardware switching21-4

load balancing21-6

overview21-1

software switching21-4

CGMP

overview15-1

channel-group group command17-7, 17-9

Cisco Discovery Protocol

See CDP

Cisco Express Forwarding

See CEF

Cisco Group Management Protocol

See CGMP

Cisco IP Phones

configuring36-2

sound quality36-1

CiscoView1-12

CIST

description14-2

class-map command30-27

class of service

See CoS

clear cdp counters command16-4

clear cdp table command16-3

clear counters command4-13

clearing

IP multicast table entries24-20

clear ip flow stats command31-6

CLI

accessing2-1

backing out one level2-5

getting commands2-5

history substitution2-3

modes2-5

monitoring environments33-1

ROM monitor2-6

software basics2-4

clients

in 802.1x authentication27-2

command-line processing2-3

command modes2-5

commands

listing2-5

command switches

in VMPS9-1

common and internal spanning tree

See CIST

common spanning tree

See CST

community ports

description10-1

community VLANs

description10-2

config-register command3-16

config terminal command3-2

configuration

802.1X with Guest-VLAN27-10

configuration example, SPAN enhancement33-14

configuration files

saving3-3

configuration guidelines

for VMPS9-3

configuration register

changing settings3-15to 3-16

configuring3-13

settings at startup3-14

configuration register boot fields

listing value3-16

modifying3-15

configure terminal command3-15, 4-2

console configuration mode2-5

console port

disconnecting user sessions5-5

monitoring user sessions5-4

copy running-config startup-config command3-3

copy system:running-config nvram:startup-config command3-18

CoS

configuring port value30-36

definition30-3

figure30-2

overriding on Cisco IP Phones36-3

priority36-3

CoS-to-DSCP maps30-40

counters

clearing MFIB24-20

clearing on interfaces4-13

CPU port sniffing, SPAN enhancement33-10

CST

description14-5

IST and14-2

MST and14-2

customer edge devices22-2

D

default configuration

802.1X27-7

auto-QoS30-15

IGMP filtering15-16

multi-VRF CE22-3

SPAN and RSPAN33-6

default gateway

configuring3-4

verifying configuration3-5

default ports

802.1x authentication not supported on27-8

description command4-8

detecting unidirectional links18-1

DHCP snooping

configuration guidelines19-3

configuring19-3

default configuration19-3

displaying binding tables19-10

displaying configuration19-10

enabling19-4

enabling on private VLAN19-5

enabling the database agent19-6

monitoring19-10, 19-13, 19-14

overview19-1

Snooping database agent19-2

DHCP Snooping Database Agent

adding to the database (example)19-9

enabling (example)19-6

overview19-2

reading from a TFTP file (example)19-8

Differentiated Services Code Point values

See DSCP values

DiffServ architecture, QoS30-2

disabled state

RSTP comparisons (table)14-4

disabling

broadcast storm control29-4

disconnect command5-5

documentation

organizationxxi

relatedxxiii

DSCP maps30-40

DSCP-to-CoS maps

configuring30-42

DSCP values

configuring maps30-40

configuring port value30-37

definition30-3

IP precedence30-2

mapping markdown30-22

mapping to transmit queues30-38

DTP

VLAN trunks and6-3

duplex command4-7

duplex mode

configuring interface4-6

Dynamic Host Configuration Protocol snooping

See DHCP snooping

dynamic port VLAN membership

configuring9-5

overview9-2

reconfirming9-7

troubleshooting9-8

Dynamic Trunking Protocol

See DTP

E

EAP

request/identity frame27-3

response/identity frame27-3

EAP frames

changing retransmission time27-13

exchanging (figure)27-3

setting retransmission number27-14

EAPOL frames

802.1x authentication and27-2

OTP authentication, example (figure)27-3

EAPOL-start frame27-3

edge ports

description14-7

EGP

overview1-8

EIGRP

overview1-7

Embedded CiscoView1-12

enable command3-2, 3-15

enable mode2-5

encapsulation configuration, SPAN enhancements33-12

encapsulation types6-3

Enhanced Interior Gateway Routing Protocol

See EIGRP

environmental monitoring

LED indications34-2

SNMP traps34-2

supervisor engine34-2

switching modules34-2

using CLI commands34-1

EtherChannel

channel-group group command17-7, 17-9

configuration guidelines17-5

configuring17-6to 17-14

configuring Layer 217-9

configuring Layer 317-6

interface port-channel command17-7

lacp system-priority

command example17-12

modes17-3

overview17-1

PAgP

Understanding17-3

physical interface configuration17-7

port-channel interfaces17-2

port-channel load-balance

command17-11

port-channel load-balance command17-12

removing17-13

removing interfaces17-13

EtherChannel ports

802.1x authentication not supported in27-8

explicit host tracking

explicit host tracking

enabling15-8

extended range VLANs

See VLANs

Extensible Authentication Protocol over LAN27-2

Exterior Gateway Protocol

See EGP

F

FastDrop

clearing entries24-20

displaying entries24-19

overview24-10

FIB

description21-2

See also MFIB

filtering

in a VLAN25-10

non-IP traffic25-9

flags24-11

Flash memory

configuring router to boot from3-18

loading system images from3-17

security precautions3-17

flooded traffic, blocking28-2

forward-delay time (STP)

configuring12-18

forwarding information base

See FIB

G

gateway

See default gateway

global configuration mode2-5

H

hardware switching21-5

hello time (STP)

configuring12-17

history

CLI2-3

hop counts

configuring MST bridges14-7

host

configuring host statically15-8

hosts, limit on dynamic port9-8

Hot Standby Routing Protocol

See HSRP

HSRP

description1-6

I

ICMP

enabling5-10

ping5-5

running IP traceroute5-7

time exceeded messages5-7

IDS

using with SPAN and RSPAN33-2

IEEE 802.1s

See MST

IEEE 802.1w

See MST

IEEE 802.3ad

See LACP

IGMP

description24-3

enabling24-13

explicit host tracking15-3

immediate-leave processing15-3

overview15-1

See explicit host tracking

IGMP filtering

configuring15-17

default configuration15-16

described15-16

monitoring15-20

IGMP groups, setting the maximum number15-19

IGMP profile

applying15-18

configuration mode15-17

configuring15-17

IGMP snooping

configuration guidelines15-4

enabling15-5

IP multicast and24-4

monitoring15-11

overview15-1

IGRP

description1-7

immediate-leave processing

enabling15-7

immediate-leave processing, IGMP

See fast-leave processing

ingress packets, SPAN enhancement33-12

inline power

configuring on Cisco IP phones36-4

See PoE

Intelligent Power Management34-19

interface command3-2, 4-1

interface port-channel command17-6, 17-7

interface range command4-4

interface range macro command4-5

interfaces

adding descriptive name4-8

clearing counters4-13

configuring4-2

configuring ranges4-4

displaying information about4-12

Layer 2 modes6-4

maintaining4-12

monitoring4-12

naming4-8

numbers4-2

overview4-1

restarting4-13

See also Layer 2 interfaces

Interior Gateway Routing Protocol

See IGRP

Internet Control Message Protocol

See ICMP

Internet Group Management Protocol

See IGMP

Inter-Switch Link encapsulation

See ISL encapsulation

Intrusion Detection System

See IDS

IP

configuring default gateway3-4

configuring static routes3-5

displaying statistics21-8

flow switching cache31-6

ip cef command21-7

ip flow-aggregation cache destination-prefix command31-8

ip flow-aggregation cache prefix command31-8

ip flow-aggregation cache source-prefix command31-8

ip flow-export command31-6

ip icmp rate-limit unreachable command5-11

ip igmp profile command15-17

ip igmp snooping tcn flood command15-10

ip igmp snooping tcn flood query count command15-10

ip igmp snooping tcn query solicit command15-11

ip load-sharing per-destination command21-7, 21-8

ip local policy route-map command23-4

ip mask-reply command5-12

IP multicast

clearing table entries24-20

configuring24-12

default configuration24-13

displaying PIM information24-15

displaying the routing table information24-16

enabling24-13

enabling dense-mode PIM24-14

enabling sparse-mode24-14

features not supported24-12

hardware forwarding24-8

IGMP snooping and15-4, 24-4

monitoring24-15

overview24-1

routing protocols24-2

software forwarding24-8

See also Auto-RP; IGMP; PIM; RP; RPF

ip multicast-routing command24-13

IP Phones

configuring voice ports36-2

See Cisco IP Phones36-1

IP phones

automatic classification and queueing30-15

trusted boundary for QoS30-23

ip pim command24-14

ip pim dense-mode command24-14

ip pim sparse-dense-mode command24-15

ip policy route-map command23-4

ip redirects command5-11

ip route-cache flow command31-5

IP routing tables

deleting entries24-20

IP Source Guard

configuring19-11

configuring on private VLANs19-13

displaying19-13, 19-14

overview19-11

IP statistics

displaying21-9

IP traceroute

executing5-7

overview5-7

IP unicast

displaying statistics21-9

ip unreachables command5-10

IPX

redistribution of route information with EIGRP1-7

ISL encapsulation6-3

isolated ports

description10-1

isolated VLANs

description10-2

IST

description14-2

MST regions and14-2

IST master

description14-7

J

jumbo frames

and ethernet ports4-10

configuring MTU sizes for4-11

ports and linecards that support4-9

understanding4-9

VLAN interfaces4-10

K

keyboard shortcuts2-3

L

labels

definition30-3

LACP

system ID17-4

Layer 2

show interfaces4-11

Layer 2 access ports6-8

Layer 2 frames, classification with CoS30-2

Layer 2 interfaces

assigning VLANs8-8

configuring6-5

configuring as PVLAN host ports10-8

configuring as PVLAN promiscuous ports10-7

configuring as PVLAN trunk ports10-9

defaults6-5

disabling configuration6-9

modes6-4

show interfaces command6-7

Layer 2 interface type

resetting10-11

setting10-11

Layer 2 switching

overview6-1

Layer 2 Traceroute

and ARP5-9

and CDP5-8

described5-8

host-to-host paths5-8

IP addresses and subnets5-9

MAC addresses and VLANs5-9

multicast traffic5-9

multiple devices on a port5-9

unicast traffic1-3, 5-8

usage guidelines5-8

Layer 2 trunks

configuring6-6

overview6-3

Layer 3 packets, classification methods30-2

Layer 4 port operations

configuration guidelines25-6

restrictions25-6

LEDs

description (table)34-2

limit of hosts on dynamic ports9-8

listening state (STP)

RSTP comparisons (table)14-4

load balancing

configuring for CEF21-7

configuring for EtherChannel17-12

overview17-5, 21-6

per-destination21-7

login timer

changing5-4

logoutwarning command5-4

loop guard

and MST14-2

configuring13-9

overview13-2

M

MAC addresses

allocating12-5

building tables6-2

displaying5-3

displaying in DHCP snooping binding table19-10

in ACLs25-9

MAC extended access lists25-9

mapping

DSCP markdown values30-22

DSCP values to transmit queues30-38

mapping tables

configuring DSCP30-40

described30-12

mask destination command31-8

mask source command31-8

match ip address command23-3

maximum aging time (STP)

configuring12-18

member switches

in VMPS9-1

MFIB

CEF and24-5

displaying24-18

overview24-11

modules

checking status5-1

monitoring

ACL information25-26

IGMP filters15-20

IGMP snooping15-11

multi-VRF CE22-11

VLAN

maps25-17

VLAN filters25-17

M-record14-2

MST

and multiple spanning trees1-3, 14-2

boundary ports14-6

BPDUs14-2

configuration14-5

configuring14-9

displaying configurations14-13

edge ports14-7

enabling14-9

hop count14-7

instances14-5

interoperability14-4

interoperability with PVST+14-2

link type14-7

master14-7

message age14-7

regions14-5, 14-6

restrictions14-8

MST instances

configuring parameters14-12

description14-2

number supported14-5

MSTP

M-record14-2

M-tree14-2

M-tree14-2

MTU size (default)8-4

multicast

See IP multicast

multicast packets

blocking28-2

multicast routers

displaying routing tables24-16

flood suppression15-9

Multicast Storm Control, enabling29-6

multiple forwarding paths1-3, 14-2

Multiple Spanning Tree

See MST

multiple VPN routing/forwarding in customer edge devices

See multi-VRF CE

multi-VRF CE

configuration example22-7

configuring22-3

default configuration22-3

defined22-1

displaying22-11

monitoring22-11

network components22-3

packet-forwarding process22-3

N

native VLAN

specifying6-6

NetFlow

destination-prefix aggregation

configuration (example)31-13

minimum mask, configuring31-8

IP

flow switching cache31-6

prefix aggregation

configuration (example)31-10

minimum mask, configuring31-8

source-prefix aggregation

minimum mask, configuring31-8

switching

configuration (example)31-9

configuring31-5

exporting cache entries31-6

statistics31-6

NetFlow aggregation

minimum mask

default value31-8

NetFlow statistics

caveats on supervisor31-4

configuring collection31-4

implementing collection31-4

overview of collection31-1

network fault tolerance1-3, 14-2

network management

configuring16-1

Next Hop Resolution Protocol

See NHRP

NFFC/NFFC II

IGMP snooping and15-4

NHRP

support1-7

non-IP traffic filtering25-9

non-RPF traffic

description24-9

in redundant configurations (figure)24-10

nonvolatile random-access memory

See NVRAM

normal-range VLANs

See VLANs

NVRAM

saving settings3-3

O

OIR

overview4-12

online insertion and removal

See OIR

Open Shortest Path First

See OSPF

operating system images

See system images

OSPF

area concept1-7

description1-6

overview of NetFlow statistics collection31-1

P

packets

modifying30-14

packet type filtering, SPAN enhancement33-13

PAgP

understanding17-3

passwords

configuring enable password3-7

configuring enable secret password3-7

encrypting3-9

recovering lost enable password3-12

setting line password3-8

setting TACACS+3-8

PBR (policy-based routing)

configuration (example)23-5

enabling23-3

features23-2

overview23-1

route maps23-2

when to use23-2

per-port and VLAN Access Control List19-11

Per-VLAN Rapid Spanning Tree12-6

enabling12-20

PE to CE routing, configuring22-6

PIM

configuring dense mode24-14

configuring sparse mode24-14

displaying information24-15

displaying statistics24-20

enabling sparse-dense mode24-14, 24-15

overview24-3

PIM-DM24-3

PIM-SM24-3

ping

executing5-6

overview5-5

ping command5-6, 24-15

PoE

configuring34-16

configuring power consumption for single device34-19

configuring power consumption for switch34-18

power consumption for powered devices

Intelligent Power Management34-19

power management modes34-16

show interface status34-20

point-to-point

in 802.1x authentication (figure)27-2

police command30-31

policed-DSCP map30-41

policers

description30-5

number of30-10

types of30-9

policies

See QoS policies

policing

See QoS policing

policy-map command30-27, 30-30

policy maps

attaching to interfaces30-33

configuring30-29

port ACLs

and voice VLAN25-4

defined25-2

limitations25-4

Port Aggregation Protocol

see PAgP

port-based authentication

client, defined27-2

configuration guidelines27-8

configuring

quiet period27-12

configuring Guest-VLAN27-10

configuring manual re-authentication of a client27-12

controlling authorization state27-4

default configuration27-7

described27-1

device roles27-2

disabling27-9

displaying statistics27-16

enabling27-9

enabling multiple hosts27-15

enabling periodic re-authentication27-11

encapsulation27-2

initiation and message exchange27-3

method lists27-9

ports not supported27-4

resetting to default values27-15

setting retransmission number27-14

setting retransmission time27-13

switch as proxy27-2

switch as RADIUS client27-2

topologies, supported27-6

with VLAN assignment27-4

port-based QoS features

See QoS

port-channel interfaces

See also EtherChannel

creating17-6

overview17-2

port-channel load-balance

command17-11

command example17-12

port-channel load-balance command17-12

port cost (STP)

configuring12-15

PortFast

and MST14-2

BPDU filter

configuring13-12

configuring or enabling13-11

overview13-3

PortFast BPDU filtering

overview13-4

Portfast BPDU filtering

and MST14-2

enabling13-12

PortFast STP parameter9-3

port priority

configuring MST instances14-12

port priority (STP)12-13

ports

blocking28-1

checking status5-2

community10-1

dynamic VLAN membership

configuring9-5

overview9-2

reconfirming9-7

forwarding, resuming28-3

isolated10-1

PVLAN types10-1

secure26-1

See also interfaces

port security

aging26-5

and QoS trusted boundary30-23

configuring26-3

default configuration26-2

described26-1

displaying26-7

violations26-2

with other features26-3

port states

description12-5

port trust state

See trust states

power, inline36-4

power dc input command34-10

power inline command34-17

power inline consumption command34-18, 34-19

power management

1+1 redundancy mode34-10

2+1 redundancy mode34-10

Catalyst 4006 switch34-10

Catalyst 4500 series34-3

Catalyst 4500 Series power supplies34-8

combined mode34-4

configuring combined mode34-7

configuring redundant mode34-6

overview34-1

redundancy34-10

redundant mode34-4

power over Ethernet

See PoE

power redundancy

setting on Catalyst 400634-13

power redundancy-mode comand34-7

power supplies

fixed34-3

variable34-4

power supplies required command34-13

primary VLANs

associating with secondary VLANs10-6

description10-1

priority

overriding36-3

privileged EXEC mode2-5

privileges

changing default3-10

configuring levels3-10

exiting3-11

logging in3-11

promiscuous ports

configuring PVLAN10-7

description10-1

setting mode10-11

protocol timers12-4

provider edge devices22-2

pruning, VTP

See VTP pruning

pseudobridges

description14-5

PVACL19-11

PVLANs

802.1q support10-3

configuration guidelines10-4

configuring10-4

configuring promiscuous ports10-7

host ports

setting10-11

isolated VLANs10-2

overview10-1

permitting routing, example10-10

promiscuous mode

setting10-11

setting

interface mode10-11

Q

QoS

allocating bandwidth30-39

auto-QoS

configuration and defaults display30-18

configuration guidelines30-16

described30-15

displaying30-18

effects on NVRAM configuration30-16

enabling for VoIP30-17

basic model30-5

burst size30-26

classification30-5to 30-9

configuration guidelines30-22

auto-QoS30-16

configuring

auto-QoS30-15

trusted boundary30-23

configuring DSCP maps30-40

configuring traffic shaping30-39

configuring VLAN-based30-34

creating policing rules30-27

default auto configuration30-15

default configuration30-21

definitions30-3

disabling on interfaces30-33

enabling on interfaces30-33

flowcharts30-7, 30-11

IP phones

automatic classification and queueing30-15

detection and trusted settings30-15, 30-23

overview30-1

packet modification30-14

port-based30-34

priority30-14

traffic shaping30-14

transmit rate30-39

trust states

trusted device30-23

VLAN-based30-34

See also COS; DSCP values; transmit queues

QoS active queue management

tracking queue length30-13

QoS labels

definition30-3

QoS mapping tables

CoS-to-DSCP30-40

DSCP-to-CoS30-42

policed-DSCP30-41

types30-12

QoS marking

description30-4

QoS policers

burst size30-26

numbers of30-10

types of30-9

QoS policies

attaching to interfaces30-10

overview30-27

QoS policing

definition30-4

described30-5, 30-9

QoS transmit queues

allocating bandwidth30-39

burst30-14

configuring30-37

configuring traffic shaping30-39

mapping DHCP values to30-38

maximum rate30-14

overview30-13

sharing link bandwidth30-13

Quality of service

See QoS

queueing30-5, 30-13

R

RADIUS server

configuring settings27-11

parameters on the switch27-10

range command4-4

range macros

defining4-5

ranges of interfaces

configuring4-4

Rapid Spanning Tree

See RSTP

re-authentication

configuring manual27-12

enabling periodic27-11

reduced MAC address12-2

redundancy (RPR)

configuring35-4

route processor redundancy35-2

supervisor engine and Cisco IOS software35-3

related documentationxxiii

reload command3-15, 3-16

replication

description24-8

reserved-range VLANs

See VLANs

retransmission number

setting in 802.1x authentication27-14

retransmission time

changing in 802.1x authentication27-13

RIP

description1-6

rommon, command3-16

ROM monitor

boot process and3-13

CLI2-6

root bridge

selecting in MST14-2

root bridge (STP)

configuring12-9

root guard

and MST14-2

enabling13-8

overview13-2

routed packets, ACLs on25-19

route-map (IP) command23-3

route maps

defining23-3

PBR23-2

route processor redundancy

See redundancy (RPR+)

router ACLs

description25-2

using with VLAN maps25-18

route targets, VPN22-3

Routing Information Protocol

See RIP

RPR+

See redundancy (RPR+)

RSAN

IDS33-2

RSPAN

configuration guidelines33-14

destination ports33-5

monitored ports33-4

monitoring ports33-5

received traffic33-3

sessions

creating33-15

defined33-3

limiting source traffic to specific VLANs33-21

monitoring VLANs33-20

removing source (monitored) ports33-19

specifying monitored ports33-15

source ports33-4

transmitted traffic33-4

VLAN-based33-5

RSTP

compatibility14-3

description14-2

port roles14-3

port states14-4

S

SAID

See 802.10 SAID

scheduling30-13

defined30-4

overview30-5

secondary root switch12-12

secondary VLANs

associating with primary10-6

description10-2

permitting routing10-10

secure ports, configuring26-1

security, port26-1

Security Association Identifier

See 802.10 SAID

servers, VTP

See VTP servers

service-policy command30-28

service-policy input command7-1, 30-33

set default interface command23-4

set interface command23-4

set ip default next-hop command23-4

set ip next-hop command23-4

show adjacency command21-10

show boot command3-18

show catalyst4000 chassis-mac-address command12-3

show cdp command16-2, 16-3

show cdp entry command16-4

show cdp interface command16-3

show cdp neighbors command16-4

show cdp traffic command16-4

show ciscoview package command1-15

show ciscoview version command1-15

show configuration command4-8

show debugging command16-4

show environment command34-1

show history command2-4

show interfaces command4-11, 4-12

show interfaces status command5-2

show ip cache flow aggregation destination-prefix command31-9

show ip cache flow aggregation prefix command31-9

show ip cache flow aggregation source-prefix command31-9

show ip cache flow command31-6

show ip cef command21-8

show ip interface command24-15

show ip local policy command23-5

show ip mroute command24-15

show ip pim interface command24-15

show mac-address-table address command5-3

show mac-address-table interface command5-3

show mls entry command21-9

show module command5-1, 12-5

show power command34-13

show power inline command34-20

show power inline consumption command34-18

show power supplies command34-7

show protocols command4-12

show running-config command

adding description for an interface4-8

checking your settings3-3

displaying ACLs25-12, 25-14, 25-21, 25-22

show startup-config command3-4

show users command5-4

show version command3-16

shutdown, command4-13

shutting down

interfaces4-13

single spanning tree

See SST

slot numbers, description4-1

SNMP

documentation1-11

support1-11

software

upgrading35-5

software configuration register3-13

software switching

description21-5

interfaces21-6

key data structures used24-7

SPAN

configuration guidelines33-7

configuring33-6to 33-10

destination ports33-5

IDS33-2

monitored ports33-4

monitoring ports33-5

received traffic33-3

sessions

defined33-3

source ports33-4

transmitted traffic33-4

VLAN-based33-5

SPAN and RSPAN

concepts and terminology33-3

default configuration33-6

displaying status33-23

overview33-1

session limits33-6

SPAN destination ports

802.1x authentication not supported27-8

SPAN enhancements

configuration example33-14

CPU port sniffing33-10

encapsulation configuration33-12

ingress packets33-12

packet type filtering33-13

spanning-tree backbonefast command13-15

spanning-tree cost command12-15

spanning-tree guard root command13-8

spanning-tree portfast bpdu-guard command13-12

spanning-tree portfast command13-11

spanning-tree port-priority command12-13

spanning-tree uplinkfast command13-14

spanning-tree vlan

command12-9

command example12-9

spanning-tree vlan command12-8

spanning-tree vlan cost command12-15

spanning-tree vlan forward-time command12-19

spanning-tree vlan hello-time command12-17

spanning-tree vlan max-age command12-18

spanning-tree vlan port-priority command12-13

spanning-tree vlan priority command12-17

spanning-tree vlan root primary command12-10

spanning-tree vlan root secondary command12-12

speed

configuring interface4-6

speed command4-7

SST

description14-2

interoperability14-4

static routes

configuring3-5

verifying3-6

statistics

displaying 802.1X27-16

displaying PIM24-20

NetFlow accounting31-6

Storm Control

disabling29-4

displaying29-5

enabling29-3

storm controlxxii

Storm Control, enabling multicast29-6

STP

configuring12-7to 12-20

creating topology12-4

defaults12-6

disabling12-19

enabling12-7

enabling extended system ID12-8

enabling Per-VLAN Rapid Spanning Tree12-20

forward-delay time12-18

hello time12-17

maximum aging time12-18

overview12-1, 12-3

per-VLAN rapid spanning tree12-6

port cost12-15

Port Fast parameter9-3

port priority12-13

root bridge12-9

STP bridge ID12-2

supervisor engine

configuring3-2to 3-6

copying files to standby35-7

default configuration3-1

default gateways3-4

environmental monitoring34-1

redundancy35-1

ROM monitor3-13

startup configuration3-12

static routes3-5

synchronizing configurations35-4

SVIs

and router ACLs25-3

switched packets, ACLs on25-19

Switched Port Analyzer

See SPAN

switching

NetFlow

configuration (example)31-9

configuring31-5

exporting cache entries31-6

switchport

show interfaces4-11

switchport access vlan command6-6, 6-8

switchport block multicast command28-2

switchport block unicast command28-2

switchport mode access command6-8

switchport mode dynamic command6-6

switchport mode trunk command6-6

switch ports

See access ports

switchport trunk allowed vlan command6-6

switchport trunk encapsulation command6-6

switchport trunk encapsulation dot1q command6-3

switchport trunk encapsulation isl command6-3

switchport trunk encapsulation negotiate command6-3

switchport trunk native vlan command6-6

switchport trunk pruning vlan command6-6

syslog messages34-2

system

reviewing configuration3-4

settings at startup3-14

system images

loading from Flash memory3-17

modifying boot field3-14

specifying3-17

T

TACACS+

setting passwords3-8

Telnet

accessing CLI2-2

disconnecting user sessions5-5

executing5-3

monitoring user sessions5-4

telnet command5-4

time exceeded messages5-7

timer

See login timer

Token Ring

media not supported (note)8-4, 11-3

TOS

description30-3

trace command5-7

Traceroute

See Layer 2 Traceroute

traceroute

See IP traceroute

traceroute mac command5-9

traceroute mac ip command5-9

traffic

blocking flooded28-2

traffic control

using ACLs (figure)25-4

using VLAN maps (figure)25-5

traffic shaping30-14

translational bridge numbers (defaults)8-4

transmit queues

See QoS transmit queues

transmit rate30-39

troubleshooting

with traceroute5-7

trunk ports

802.1x authentication not supported on27-8

configuring PVLAN10-9to 10-10

trunks

802.1Q restrictions6-5

configuring6-6

configuring access VLANs6-6

configuring allowed VLANs6-6

default interface configuration6-6

different VTP domains6-3

enabling to non-DTP device6-4

encapsulation6-3

specifying native VLAN6-6

understanding6-3

trusted boundary for QoS30-23

trust states

configuring30-35

type of service

See TOS

U

UDLD

default configuration18-2

disabling18-3

enabling18-3

overview18-1, 32-1

unauthorized ports with 802.1X27-4

unicast

See IP unicast

unicast flood blocking

configuring28-1

unicast traffic, blocking28-2

unidirectional ethernet

enabling7-1

example of setting7-2

overview7-1

UniDirectional Link Detection Protocol

See UDLD

UplinkFast

and MST14-2

enabling13-14

MST and14-3

overview13-5

user EXEC mode2-5

user sessions

disconnecting5-5

monitoring5-4

V

VACLs

Layer 4 port operations25-6

virtual LANs

See VLANs

Virtual Private Network

See VPN

VLAN ACLs

See VLAN maps

vlan command8-6, 8-7

vlan database command8-7

VLAN Management Policy Server

see VMPS

VLAN map

order of entries25-11

VLAN maps

applying25-14, 25-22

common uses for25-15

configuration example25-15

configuration guidelines25-11

configuring25-10

creating entries25-12

defined25-3

denying access example25-16

denying packets25-12

displaying25-17

examples25-16

permitting packets25-12

router ACLs and25-18

using (figure)25-5

VLAN Query Protocol (VQP)9-1

VLANs

allowed on trunk6-6

configuration guidelines8-3

configuring8-4

default configuration8-4

description1-4

extended range8-3

IDs (default)8-4

interface assignment8-8

limiting source traffic with RSPAN33-21

monitoring with RSPAN33-20

name (default)8-4

normal range8-3

overview8-1

reserved range8-3

See also PVLANs

See also private VLANs

VLAN Trunking Protocol

See VTP

VLAN trunks

overview6-3

VMPS

administering9-5

dynamic port membership

configuring9-5

overview9-2

reconfirming9-7

in a cluster of switches9-1

monitoring9-5

overview9-1

reconfirming membership9-7

reconfirming membership information9-7

voice interfaces

configuring36-1

Voice over IP

configuring36-1

voice ports

configuring VVID36-2

voice traffic34-16, 36-4

VPN

configuring routing in22-5

forwarding22-3

in service provider networks22-1

routes22-2

VPN routing and forwarding table

See VRF

VRF

defining22-3

tables22-1

VTP

configuration guidelines11-5

configuring11-6to 11-10

configuring transparent mode11-9

default configuration11-5

disabling11-9

monitoring11-10

overview11-1

See also VTP version 2

VTP advertisements

description11-3

VTP clients

configuring11-8

VTP domains

description11-2

VTP modes11-2

VTP pruning

enabling11-6

overview11-3

VTP servers

configuring11-7

VTP statistics

displaying11-10

VTP version 2

enabling11-7

overview11-3

See also VTP

VVID

configuring36-2

	Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide, 12.1(20)EW
	Index
Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide, 12.1(20)EW Preface Product Overview Command-Line Interfaces Configuring the Switch for the First Time Configuring Interfaces Checking Port Status and Connectivity Configuring Layer 2 Ethernet Interfaces Configuring Unidirectional Ethernet Configuring VLANs Configuring Dynamic VLAN Membership Configuring Private VLANs Understanding and Configuring VTP Understanding and Configuring STP Configuring STP Features Understanding and Configuring Multiple Spanning Trees Configuring IGMP Snooping and Filtering Understanding and Configuring CDP Understanding and Configuring EtherChannel Configuring UDLD Configuring DHCP Snooping and IP Source Guard Configuring Layer 3 Interfaces Configuring Cisco Express Forwarding Configuring VRF-lite Configuring Policy-Based Routing Understanding and Configuring IP Multicast Configuring Network Security with ACLs Configuring Port Security Configuring 802.1x Port-Based Authentication Port Unicast and Multicast Flood Blocking Configuring Port-Based Traffic Control Configuring QoS Configuring NetFlow Statistics Collection Understanding and Configuring Dynamic ARP Inspection Configuring SPAN and RSPAN Environmental Monitoring and Power Management Configuring Supervisor Engine Redundancy on the Catalyst 4507R Switch Configuring Voice Interfaces Acronyms Index	Download this chapter Index Download the complete book Book-length PDF: Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide (PDF - 5 MB) Table Of Contents Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - Index Numerics 802.10 SAID (default)8-4 802.1Q trunks12-6 802.1Q VLANs encapsulation6-3 trunk restrictions6-5 802.1s See MST 802.1w See MST 802.1X See port-based authentication 802.1x authentication support for guest VLANs27-5 802.3ad See LACP A AAA disabling27-9 enabling27-9 abbreviating commands2-5 access control entries See ACEs access ports, configuring6-8 access VLANs6-6 ACEs ACLs25-2 Ethernet25-2 IP25-2 Layer 4 operation restrictions25-6 ACLs ACEs25-2 applying on routed packets25-19 applying on switched packets25-19 compatibility on the same switch25-3 configuring with VLAN maps25-18 CPU impact25-8 IP matching criteria for port ACLs25-4 MAC extended25-9 matching criteria for router ACLs25-3 port and voice VLAN25-4 defined25-2 limitations25-4 processing25-8 types supported25-2 acronyms, list ofA-1 active queue management30-13 addresses See MAC addresses adjacency tables description21-2 displaying statistics21-10 advertisements, VTP See VTP advertisements alarms major34-2 minor34-2 audiencexxi authentication See also port-based authentication authentication server defined27-2 RADIUS server27-2 authorized and unauthorized ports27-4 authorized ports with 802.1X27-4 automatic QoS See QoS Auto-QoS configuring30-15 B BackboneFast adding a switch (figure)13-2 and MST14-2 configuring13-15 link failure (figure)13-7, 13-8 not supported MST14-2 understanding13-6 See also STP BGP1-8 routing session with multi-VRF CE22-6 blocking packets28-1 blocking state (STP) RSTP comparisons (table)14-4 boot bootldr command3-18 boot command3-15 boot fields See configuration register boot fields boot system command3-13, 3-18 boot system flash command3-15 Border Gateway Protocol See BGP boundary ports description14-6 BPDU Guard and MST14-2 configuring13-12 overview13-4 BPDUs and media speed12-2 pseudobridges and14-5 what they contain12-3 bridge ID See STP bridge ID bridge priority (STP)12-16 bridge protocol data units See BPDUs broadcast storm control disabling29-4 BSR configuration example24-21 burst rate30-39 burst size30-26 C cautions for passwords encrypting3-9 TACACS+3-9 CDP and trusted boundary30-24 configuration16-2 displaying configuration16-3 enabling on interfaces16-3 maintaining16-3 monitoring16-3 overview1-2, 16-1 cdp enable command16-3 CEF adjacency tables21-2 configuring load balancing21-7 disabling per-destination load balancing21-7 display statistics21-9 enabling21-7 hardware switching21-4 load balancing21-6 overview21-1 software switching21-4 CGMP overview15-1 channel-group group command17-7, 17-9 Cisco Discovery Protocol See CDP Cisco Express Forwarding See CEF Cisco Group Management Protocol See CGMP Cisco IP Phones configuring36-2 sound quality36-1 CiscoView1-12 CIST description14-2 class-map command30-27 class of service See CoS clear cdp counters command16-4 clear cdp table command16-3 clear counters command4-13 clearing IP multicast table entries24-20 clear ip flow stats command31-6 CLI accessing2-1 backing out one level2-5 getting commands2-5 history substitution2-3 modes2-5 monitoring environments33-1 ROM monitor2-6 software basics2-4 clients in 802.1x authentication27-2 command-line processing2-3 command modes2-5 commands listing2-5 command switches in VMPS9-1 common and internal spanning tree See CIST common spanning tree See CST community ports description10-1 community VLANs description10-2 config-register command3-16 config terminal command3-2 configuration 802.1X with Guest-VLAN27-10 configuration example, SPAN enhancement33-14 configuration files saving3-3 configuration guidelines for VMPS9-3 configuration register changing settings3-15to 3-16 configuring3-13 settings at startup3-14 configuration register boot fields listing value3-16 modifying3-15 configure terminal command3-15, 4-2 console configuration mode2-5 console port disconnecting user sessions5-5 monitoring user sessions5-4 copy running-config startup-config command3-3 copy system:running-config nvram:startup-config command3-18 CoS configuring port value30-36 definition30-3 figure30-2 overriding on Cisco IP Phones36-3 priority36-3 CoS-to-DSCP maps30-40 counters clearing MFIB24-20 clearing on interfaces4-13 CPU port sniffing, SPAN enhancement33-10 CST description14-5 IST and14-2 MST and14-2 customer edge devices22-2 D default configuration 802.1X27-7 auto-QoS30-15 IGMP filtering15-16 multi-VRF CE22-3 SPAN and RSPAN33-6 default gateway configuring3-4 verifying configuration3-5 default ports 802.1x authentication not supported on27-8 description command4-8 detecting unidirectional links18-1 DHCP snooping configuration guidelines19-3 configuring19-3 default configuration19-3 displaying binding tables19-10 displaying configuration19-10 enabling19-4 enabling on private VLAN19-5 enabling the database agent19-6 monitoring19-10, 19-13, 19-14 overview19-1 Snooping database agent19-2 DHCP Snooping Database Agent adding to the database (example)19-9 enabling (example)19-6 overview19-2 reading from a TFTP file (example)19-8 Differentiated Services Code Point values See DSCP values DiffServ architecture, QoS30-2 disabled state RSTP comparisons (table)14-4 disabling broadcast storm control29-4 disconnect command5-5 documentation organizationxxi relatedxxiii DSCP maps30-40 DSCP-to-CoS maps configuring30-42 DSCP values configuring maps30-40 configuring port value30-37 definition30-3 IP precedence30-2 mapping markdown30-22 mapping to transmit queues30-38 DTP VLAN trunks and6-3 duplex command4-7 duplex mode configuring interface4-6 Dynamic Host Configuration Protocol snooping See DHCP snooping dynamic port VLAN membership configuring9-5 overview9-2 reconfirming9-7 troubleshooting9-8 Dynamic Trunking Protocol See DTP E EAP request/identity frame27-3 response/identity frame27-3 EAP frames changing retransmission time27-13 exchanging (figure)27-3 setting retransmission number27-14 EAPOL frames 802.1x authentication and27-2 OTP authentication, example (figure)27-3 EAPOL-start frame27-3 edge ports description14-7 EGP overview1-8 EIGRP overview1-7 Embedded CiscoView1-12 enable command3-2, 3-15 enable mode2-5 encapsulation configuration, SPAN enhancements33-12 encapsulation types6-3 Enhanced Interior Gateway Routing Protocol See EIGRP environmental monitoring LED indications34-2 SNMP traps34-2 supervisor engine34-2 switching modules34-2 using CLI commands34-1 EtherChannel channel-group group command17-7, 17-9 configuration guidelines17-5 configuring17-6to 17-14 configuring Layer 217-9 configuring Layer 317-6 interface port-channel command17-7 lacp system-priority command example17-12 modes17-3 overview17-1 PAgP Understanding17-3 physical interface configuration17-7 port-channel interfaces17-2 port-channel load-balance command17-11 port-channel load-balance command17-12 removing17-13 removing interfaces17-13 EtherChannel ports 802.1x authentication not supported in27-8 explicit host tracking explicit host tracking enabling15-8 extended range VLANs See VLANs Extensible Authentication Protocol over LAN27-2 Exterior Gateway Protocol See EGP F FastDrop clearing entries24-20 displaying entries24-19 overview24-10 FIB description21-2 See also MFIB filtering in a VLAN25-10 non-IP traffic25-9 flags24-11 Flash memory configuring router to boot from3-18 loading system images from3-17 security precautions3-17 flooded traffic, blocking28-2 forward-delay time (STP) configuring12-18 forwarding information base See FIB G gateway See default gateway global configuration mode2-5 H hardware switching21-5 hello time (STP) configuring12-17 history CLI2-3 hop counts configuring MST bridges14-7 host configuring host statically15-8 hosts, limit on dynamic port9-8 Hot Standby Routing Protocol See HSRP HSRP description1-6 I ICMP enabling5-10 ping5-5 running IP traceroute5-7 time exceeded messages5-7 IDS using with SPAN and RSPAN33-2 IEEE 802.1s See MST IEEE 802.1w See MST IEEE 802.3ad See LACP IGMP description24-3 enabling24-13 explicit host tracking15-3 immediate-leave processing15-3 overview15-1 See explicit host tracking IGMP filtering configuring15-17 default configuration15-16 described15-16 monitoring15-20 IGMP groups, setting the maximum number15-19 IGMP profile applying15-18 configuration mode15-17 configuring15-17 IGMP snooping configuration guidelines15-4 enabling15-5 IP multicast and24-4 monitoring15-11 overview15-1 IGRP description1-7 immediate-leave processing enabling15-7 immediate-leave processing, IGMP See fast-leave processing ingress packets, SPAN enhancement33-12 inline power configuring on Cisco IP phones36-4 See PoE Intelligent Power Management34-19 interface command3-2, 4-1 interface port-channel command17-6, 17-7 interface range command4-4 interface range macro command4-5 interfaces adding descriptive name4-8 clearing counters4-13 configuring4-2 configuring ranges4-4 displaying information about4-12 Layer 2 modes6-4 maintaining4-12 monitoring4-12 naming4-8 numbers4-2 overview4-1 restarting4-13 See also Layer 2 interfaces Interior Gateway Routing Protocol See IGRP Internet Control Message Protocol See ICMP Internet Group Management Protocol See IGMP Inter-Switch Link encapsulation See ISL encapsulation Intrusion Detection System See IDS IP configuring default gateway3-4 configuring static routes3-5 displaying statistics21-8 flow switching cache31-6 ip cef command21-7 ip flow-aggregation cache destination-prefix command31-8 ip flow-aggregation cache prefix command31-8 ip flow-aggregation cache source-prefix command31-8 ip flow-export command31-6 ip icmp rate-limit unreachable command5-11 ip igmp profile command15-17 ip igmp snooping tcn flood command15-10 ip igmp snooping tcn flood query count command15-10 ip igmp snooping tcn query solicit command15-11 ip load-sharing per-destination command21-7, 21-8 ip local policy route-map command23-4 ip mask-reply command5-12 IP multicast clearing table entries24-20 configuring24-12 default configuration24-13 displaying PIM information24-15 displaying the routing table information24-16 enabling24-13 enabling dense-mode PIM24-14 enabling sparse-mode24-14 features not supported24-12 hardware forwarding24-8 IGMP snooping and15-4, 24-4 monitoring24-15 overview24-1 routing protocols24-2 software forwarding24-8 See also Auto-RP; IGMP; PIM; RP; RPF ip multicast-routing command24-13 IP Phones configuring voice ports36-2 See Cisco IP Phones36-1 IP phones automatic classification and queueing30-15 trusted boundary for QoS30-23 ip pim command24-14 ip pim dense-mode command24-14 ip pim sparse-dense-mode command24-15 ip policy route-map command23-4 ip redirects command5-11 ip route-cache flow command31-5 IP routing tables deleting entries24-20 IP Source Guard configuring19-11 configuring on private VLANs19-13 displaying19-13, 19-14 overview19-11 IP statistics displaying21-9 IP traceroute executing5-7 overview5-7 IP unicast displaying statistics21-9 ip unreachables command5-10 IPX redistribution of route information with EIGRP1-7 ISL encapsulation6-3 isolated ports description10-1 isolated VLANs description10-2 IST description14-2 MST regions and14-2 IST master description14-7 J jumbo frames and ethernet ports4-10 configuring MTU sizes for4-11 ports and linecards that support4-9 understanding4-9 VLAN interfaces4-10 K keyboard shortcuts2-3 L labels definition30-3 LACP system ID17-4 Layer 2 show interfaces4-11 Layer 2 access ports6-8 Layer 2 frames, classification with CoS30-2 Layer 2 interfaces assigning VLANs8-8 configuring6-5 configuring as PVLAN host ports10-8 configuring as PVLAN promiscuous ports10-7 configuring as PVLAN trunk ports10-9 defaults6-5 disabling configuration6-9 modes6-4 show interfaces command6-7 Layer 2 interface type resetting10-11 setting10-11 Layer 2 switching overview6-1 Layer 2 Traceroute and ARP5-9 and CDP5-8 described5-8 host-to-host paths5-8 IP addresses and subnets5-9 MAC addresses and VLANs5-9 multicast traffic5-9 multiple devices on a port5-9 unicast traffic1-3, 5-8 usage guidelines5-8 Layer 2 trunks configuring6-6 overview6-3 Layer 3 packets, classification methods30-2 Layer 4 port operations configuration guidelines25-6 restrictions25-6 LEDs description (table)34-2 limit of hosts on dynamic ports9-8 listening state (STP) RSTP comparisons (table)14-4 load balancing configuring for CEF21-7 configuring for EtherChannel17-12 overview17-5, 21-6 per-destination21-7 login timer changing5-4 logoutwarning command5-4 loop guard and MST14-2 configuring13-9 overview13-2 M MAC addresses allocating12-5 building tables6-2 displaying5-3 displaying in DHCP snooping binding table19-10 in ACLs25-9 MAC extended access lists25-9 mapping DSCP markdown values30-22 DSCP values to transmit queues30-38 mapping tables configuring DSCP30-40 described30-12 mask destination command31-8 mask source command31-8 match ip address command23-3 maximum aging time (STP) configuring12-18 member switches in VMPS9-1 MFIB CEF and24-5 displaying24-18 overview24-11 modules checking status5-1 monitoring ACL information25-26 IGMP filters15-20 IGMP snooping15-11 multi-VRF CE22-11 VLAN maps25-17 VLAN filters25-17 M-record14-2 MST and multiple spanning trees1-3, 14-2 boundary ports14-6 BPDUs14-2 configuration14-5 configuring14-9 displaying configurations14-13 edge ports14-7 enabling14-9 hop count14-7 instances14-5 interoperability14-4 interoperability with PVST+14-2 link type14-7 master14-7 message age14-7 regions14-5, 14-6 restrictions14-8 MST instances configuring parameters14-12 description14-2 number supported14-5 MSTP M-record14-2 M-tree14-2 M-tree14-2 MTU size (default)8-4 multicast See IP multicast multicast packets blocking28-2 multicast routers displaying routing tables24-16 flood suppression15-9 Multicast Storm Control, enabling29-6 multiple forwarding paths1-3, 14-2 Multiple Spanning Tree See MST multiple VPN routing/forwarding in customer edge devices See multi-VRF CE multi-VRF CE configuration example22-7 configuring22-3 default configuration22-3 defined22-1 displaying22-11 monitoring22-11 network components22-3 packet-forwarding process22-3 N native VLAN specifying6-6 NetFlow destination-prefix aggregation configuration (example)31-13 minimum mask, configuring31-8 IP flow switching cache31-6 prefix aggregation configuration (example)31-10 minimum mask, configuring31-8 source-prefix aggregation minimum mask, configuring31-8 switching configuration (example)31-9 configuring31-5 exporting cache entries31-6 statistics31-6 NetFlow aggregation minimum mask default value31-8 NetFlow statistics caveats on supervisor31-4 configuring collection31-4 implementing collection31-4 overview of collection31-1 network fault tolerance1-3, 14-2 network management configuring16-1 Next Hop Resolution Protocol See NHRP NFFC/NFFC II IGMP snooping and15-4 NHRP support1-7 non-IP traffic filtering25-9 non-RPF traffic description24-9 in redundant configurations (figure)24-10 nonvolatile random-access memory See NVRAM normal-range VLANs See VLANs NVRAM saving settings3-3 O OIR overview4-12 online insertion and removal See OIR Open Shortest Path First See OSPF operating system images See system images OSPF area concept1-7 description1-6 overview of NetFlow statistics collection31-1 P packets modifying30-14 packet type filtering, SPAN enhancement33-13 PAgP understanding17-3 passwords configuring enable password3-7 configuring enable secret password3-7 encrypting3-9 recovering lost enable password3-12 setting line password3-8 setting TACACS+3-8 PBR (policy-based routing) configuration (example)23-5 enabling23-3 features23-2 overview23-1 route maps23-2 when to use23-2 per-port and VLAN Access Control List19-11 Per-VLAN Rapid Spanning Tree12-6 enabling12-20 PE to CE routing, configuring22-6 PIM configuring dense mode24-14 configuring sparse mode24-14 displaying information24-15 displaying statistics24-20 enabling sparse-dense mode24-14, 24-15 overview24-3 PIM-DM24-3 PIM-SM24-3 ping executing5-6 overview5-5 ping command5-6, 24-15 PoE configuring34-16 configuring power consumption for single device34-19 configuring power consumption for switch34-18 power consumption for powered devices Intelligent Power Management34-19 power management modes34-16 show interface status34-20 point-to-point in 802.1x authentication (figure)27-2 police command30-31 policed-DSCP map30-41 policers description30-5 number of30-10 types of30-9 policies See QoS policies policing See QoS policing policy-map command30-27, 30-30 policy maps attaching to interfaces30-33 configuring30-29 port ACLs and voice VLAN25-4 defined25-2 limitations25-4 Port Aggregation Protocol see PAgP port-based authentication client, defined27-2 configuration guidelines27-8 configuring quiet period27-12 configuring Guest-VLAN27-10 configuring manual re-authentication of a client27-12 controlling authorization state27-4 default configuration27-7 described27-1 device roles27-2 disabling27-9 displaying statistics27-16 enabling27-9 enabling multiple hosts27-15 enabling periodic re-authentication27-11 encapsulation27-2 initiation and message exchange27-3 method lists27-9 ports not supported27-4 resetting to default values27-15 setting retransmission number27-14 setting retransmission time27-13 switch as proxy27-2 switch as RADIUS client27-2 topologies, supported27-6 with VLAN assignment27-4 port-based QoS features See QoS port-channel interfaces See also EtherChannel creating17-6 overview17-2 port-channel load-balance command17-11 command example17-12 port-channel load-balance command17-12 port cost (STP) configuring12-15 PortFast and MST14-2 BPDU filter configuring13-12 configuring or enabling13-11 overview13-3 PortFast BPDU filtering overview13-4 Portfast BPDU filtering and MST14-2 enabling13-12 PortFast STP parameter9-3 port priority configuring MST instances14-12 port priority (STP)12-13 ports blocking28-1 checking status5-2 community10-1 dynamic VLAN membership configuring9-5 overview9-2 reconfirming9-7 forwarding, resuming28-3 isolated10-1 PVLAN types10-1 secure26-1 See also interfaces port security aging26-5 and QoS trusted boundary30-23 configuring26-3 default configuration26-2 described26-1 displaying26-7 violations26-2 with other features26-3 port states description12-5 port trust state See trust states power, inline36-4 power dc input command34-10 power inline command34-17 power inline consumption command34-18, 34-19 power management 1+1 redundancy mode34-10 2+1 redundancy mode34-10 Catalyst 4006 switch34-10 Catalyst 4500 series34-3 Catalyst 4500 Series power supplies34-8 combined mode34-4 configuring combined mode34-7 configuring redundant mode34-6 overview34-1 redundancy34-10 redundant mode34-4 power over Ethernet See PoE power redundancy setting on Catalyst 400634-13 power redundancy-mode comand34-7 power supplies fixed34-3 variable34-4 power supplies required command34-13 primary VLANs associating with secondary VLANs10-6 description10-1 priority overriding36-3 privileged EXEC mode2-5 privileges changing default3-10 configuring levels3-10 exiting3-11 logging in3-11 promiscuous ports configuring PVLAN10-7 description10-1 setting mode10-11 protocol timers12-4 provider edge devices22-2 pruning, VTP See VTP pruning pseudobridges description14-5 PVACL19-11 PVLANs 802.1q support10-3 configuration guidelines10-4 configuring10-4 configuring promiscuous ports10-7 host ports setting10-11 isolated VLANs10-2 overview10-1 permitting routing, example10-10 promiscuous mode setting10-11 setting interface mode10-11 Q QoS allocating bandwidth30-39 auto-QoS configuration and defaults display30-18 configuration guidelines30-16 described30-15 displaying30-18 effects on NVRAM configuration30-16 enabling for VoIP30-17 basic model30-5 burst size30-26 classification30-5to 30-9 configuration guidelines30-22 auto-QoS30-16 configuring auto-QoS30-15 trusted boundary30-23 configuring DSCP maps30-40 configuring traffic shaping30-39 configuring VLAN-based30-34 creating policing rules30-27 default auto configuration30-15 default configuration30-21 definitions30-3 disabling on interfaces30-33 enabling on interfaces30-33 flowcharts30-7, 30-11 IP phones automatic classification and queueing30-15 detection and trusted settings30-15, 30-23 overview30-1 packet modification30-14 port-based30-34 priority30-14 traffic shaping30-14 transmit rate30-39 trust states trusted device30-23 VLAN-based30-34 See also COS; DSCP values; transmit queues QoS active queue management tracking queue length30-13 QoS labels definition30-3 QoS mapping tables CoS-to-DSCP30-40 DSCP-to-CoS30-42 policed-DSCP30-41 types30-12 QoS marking description30-4 QoS policers burst size30-26 numbers of30-10 types of30-9 QoS policies attaching to interfaces30-10 overview30-27 QoS policing definition30-4 described30-5, 30-9 QoS transmit queues allocating bandwidth30-39 burst30-14 configuring30-37 configuring traffic shaping30-39 mapping DHCP values to30-38 maximum rate30-14 overview30-13 sharing link bandwidth30-13 Quality of service See QoS queueing30-5, 30-13 R RADIUS server configuring settings27-11 parameters on the switch27-10 range command4-4 range macros defining4-5 ranges of interfaces configuring4-4 Rapid Spanning Tree See RSTP re-authentication configuring manual27-12 enabling periodic27-11 reduced MAC address12-2 redundancy (RPR) configuring35-4 route processor redundancy35-2 supervisor engine and Cisco IOS software35-3 related documentationxxiii reload command3-15, 3-16 replication description24-8 reserved-range VLANs See VLANs retransmission number setting in 802.1x authentication27-14 retransmission time changing in 802.1x authentication27-13 RIP description1-6 rommon, command3-16 ROM monitor boot process and3-13 CLI2-6 root bridge selecting in MST14-2 root bridge (STP) configuring12-9 root guard and MST14-2 enabling13-8 overview13-2 routed packets, ACLs on25-19 route-map (IP) command23-3 route maps defining23-3 PBR23-2 route processor redundancy See redundancy (RPR+) router ACLs description25-2 using with VLAN maps25-18 route targets, VPN22-3 Routing Information Protocol See RIP RPR+ See redundancy (RPR+) RSAN IDS33-2 RSPAN configuration guidelines33-14 destination ports33-5 monitored ports33-4 monitoring ports33-5 received traffic33-3 sessions creating33-15 defined33-3 limiting source traffic to specific VLANs33-21 monitoring VLANs33-20 removing source (monitored) ports33-19 specifying monitored ports33-15 source ports33-4 transmitted traffic33-4 VLAN-based33-5 RSTP compatibility14-3 description14-2 port roles14-3 port states14-4 S SAID See 802.10 SAID scheduling30-13 defined30-4 overview30-5 secondary root switch12-12 secondary VLANs associating with primary10-6 description10-2 permitting routing10-10 secure ports, configuring26-1 security, port26-1 Security Association Identifier See 802.10 SAID servers, VTP See VTP servers service-policy command30-28 service-policy input command7-1, 30-33 set default interface command23-4 set interface command23-4 set ip default next-hop command23-4 set ip next-hop command23-4 show adjacency command21-10 show boot command3-18 show catalyst4000 chassis-mac-address command12-3 show cdp command16-2, 16-3 show cdp entry command16-4 show cdp interface command16-3 show cdp neighbors command16-4 show cdp traffic command16-4 show ciscoview package command1-15 show ciscoview version command1-15 show configuration command4-8 show debugging command16-4 show environment command34-1 show history command2-4 show interfaces command4-11, 4-12 show interfaces status command5-2 show ip cache flow aggregation destination-prefix command31-9 show ip cache flow aggregation prefix command31-9 show ip cache flow aggregation source-prefix command31-9 show ip cache flow command31-6 show ip cef command21-8 show ip interface command24-15 show ip local policy command23-5 show ip mroute command24-15 show ip pim interface command24-15 show mac-address-table address command5-3 show mac-address-table interface command5-3 show mls entry command21-9 show module command5-1, 12-5 show power command34-13 show power inline command34-20 show power inline consumption command34-18 show power supplies command34-7 show protocols command4-12 show running-config command adding description for an interface4-8 checking your settings3-3 displaying ACLs25-12, 25-14, 25-21, 25-22 show startup-config command3-4 show users command5-4 show version command3-16 shutdown, command4-13 shutting down interfaces4-13 single spanning tree See SST slot numbers, description4-1 SNMP documentation1-11 support1-11 software upgrading35-5 software configuration register3-13 software switching description21-5 interfaces21-6 key data structures used24-7 SPAN configuration guidelines33-7 configuring33-6to 33-10 destination ports33-5 IDS33-2 monitored ports33-4 monitoring ports33-5 received traffic33-3 sessions defined33-3 source ports33-4 transmitted traffic33-4 VLAN-based33-5 SPAN and RSPAN concepts and terminology33-3 default configuration33-6 displaying status33-23 overview33-1 session limits33-6 SPAN destination ports 802.1x authentication not supported27-8 SPAN enhancements configuration example33-14 CPU port sniffing33-10 encapsulation configuration33-12 ingress packets33-12 packet type filtering33-13 spanning-tree backbonefast command13-15 spanning-tree cost command12-15 spanning-tree guard root command13-8 spanning-tree portfast bpdu-guard command13-12 spanning-tree portfast command13-11 spanning-tree port-priority command12-13 spanning-tree uplinkfast command13-14 spanning-tree vlan command12-9 command example12-9 spanning-tree vlan command12-8 spanning-tree vlan cost command12-15 spanning-tree vlan forward-time command12-19 spanning-tree vlan hello-time command12-17 spanning-tree vlan max-age command12-18 spanning-tree vlan port-priority command12-13 spanning-tree vlan priority command12-17 spanning-tree vlan root primary command12-10 spanning-tree vlan root secondary command12-12 speed configuring interface4-6 speed command4-7 SST description14-2 interoperability14-4 static routes configuring3-5 verifying3-6 statistics displaying 802.1X27-16 displaying PIM24-20 NetFlow accounting31-6 Storm Control disabling29-4 displaying29-5 enabling29-3 storm controlxxii Storm Control, enabling multicast29-6 STP configuring12-7to 12-20 creating topology12-4 defaults12-6 disabling12-19 enabling12-7 enabling extended system ID12-8 enabling Per-VLAN Rapid Spanning Tree12-20 forward-delay time12-18 hello time12-17 maximum aging time12-18 overview12-1, 12-3 per-VLAN rapid spanning tree12-6 port cost12-15 Port Fast parameter9-3 port priority12-13 root bridge12-9 STP bridge ID12-2 supervisor engine configuring3-2to 3-6 copying files to standby35-7 default configuration3-1 default gateways3-4 environmental monitoring34-1 redundancy35-1 ROM monitor3-13 startup configuration3-12 static routes3-5 synchronizing configurations35-4 SVIs and router ACLs25-3 switched packets, ACLs on25-19 Switched Port Analyzer See SPAN switching NetFlow configuration (example)31-9 configuring31-5 exporting cache entries31-6 switchport show interfaces4-11 switchport access vlan command6-6, 6-8 switchport block multicast command28-2 switchport block unicast command28-2 switchport mode access command6-8 switchport mode dynamic command6-6 switchport mode trunk command6-6 switch ports See access ports switchport trunk allowed vlan command6-6 switchport trunk encapsulation command6-6 switchport trunk encapsulation dot1q command6-3 switchport trunk encapsulation isl command6-3 switchport trunk encapsulation negotiate command6-3 switchport trunk native vlan command6-6 switchport trunk pruning vlan command6-6 syslog messages34-2 system reviewing configuration3-4 settings at startup3-14 system images loading from Flash memory3-17 modifying boot field3-14 specifying3-17 T TACACS+ setting passwords3-8 Telnet accessing CLI2-2 disconnecting user sessions5-5 executing5-3 monitoring user sessions5-4 telnet command5-4 time exceeded messages5-7 timer See login timer Token Ring media not supported (note)8-4, 11-3 TOS description30-3 trace command5-7 Traceroute See Layer 2 Traceroute traceroute See IP traceroute traceroute mac command5-9 traceroute mac ip command5-9 traffic blocking flooded28-2 traffic control using ACLs (figure)25-4 using VLAN maps (figure)25-5 traffic shaping30-14 translational bridge numbers (defaults)8-4 transmit queues See QoS transmit queues transmit rate30-39 troubleshooting with traceroute5-7 trunk ports 802.1x authentication not supported on27-8 configuring PVLAN10-9to 10-10 trunks 802.1Q restrictions6-5 configuring6-6 configuring access VLANs6-6 configuring allowed VLANs6-6 default interface configuration6-6 different VTP domains6-3 enabling to non-DTP device6-4 encapsulation6-3 specifying native VLAN6-6 understanding6-3 trusted boundary for QoS30-23 trust states configuring30-35 type of service See TOS U UDLD default configuration18-2 disabling18-3 enabling18-3 overview18-1, 32-1 unauthorized ports with 802.1X27-4 unicast See IP unicast unicast flood blocking configuring28-1 unicast traffic, blocking28-2 unidirectional ethernet enabling7-1 example of setting7-2 overview7-1 UniDirectional Link Detection Protocol See UDLD UplinkFast and MST14-2 enabling13-14 MST and14-3 overview13-5 user EXEC mode2-5 user sessions disconnecting5-5 monitoring5-4 V VACLs Layer 4 port operations25-6 virtual LANs See VLANs Virtual Private Network See VPN VLAN ACLs See VLAN maps vlan command8-6, 8-7 vlan database command8-7 VLAN Management Policy Server see VMPS VLAN map order of entries25-11 VLAN maps applying25-14, 25-22 common uses for25-15 configuration example25-15 configuration guidelines25-11 configuring25-10 creating entries25-12 defined25-3 denying access example25-16 denying packets25-12 displaying25-17 examples25-16 permitting packets25-12 router ACLs and25-18 using (figure)25-5 VLAN Query Protocol (VQP)9-1 VLANs allowed on trunk6-6 configuration guidelines8-3 configuring8-4 default configuration8-4 description1-4 extended range8-3 IDs (default)8-4 interface assignment8-8 limiting source traffic with RSPAN33-21 monitoring with RSPAN33-20 name (default)8-4 normal range8-3 overview8-1 reserved range8-3 See also PVLANs See also private VLANs VLAN Trunking Protocol See VTP VLAN trunks overview6-3 VMPS administering9-5 dynamic port membership configuring9-5 overview9-2 reconfirming9-7 in a cluster of switches9-1 monitoring9-5 overview9-1 reconfirming membership9-7 reconfirming membership information9-7 voice interfaces configuring36-1 Voice over IP configuring36-1 voice ports configuring VVID36-2 voice traffic34-16, 36-4 VPN configuring routing in22-5 forwarding22-3 in service provider networks22-1 routes22-2 VPN routing and forwarding table See VRF VRF defining22-3 tables22-1 VTP configuration guidelines11-5 configuring11-6to 11-10 configuring transparent mode11-9 default configuration11-5 disabling11-9 monitoring11-10 overview11-1 See also VTP version 2 VTP advertisements description11-3 VTP clients configuring11-8 VTP domains description11-2 VTP modes11-2 VTP pruning enabling11-6 overview11-3 VTP servers configuring11-7 VTP statistics displaying11-10 VTP version 2 enabling11-7 overview11-3 See also VTP VVID configuring36-2
	© 1992-2009 Cisco Systems, Inc. All rights reserved. Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks of Cisco Systems, Inc.