Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide, 12.1(20)EW - Index [Cisco Catalyst 4500 Series Switches]

Table Of Contents

Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V -

Index

Numerics

802.10 SAID (default)8-4

802.1Q trunks12-6

802.1Q VLANs

encapsulation6-3

trunk restrictions6-5

802.1s

See MST

802.1w

See MST

802.1X

See port-based authentication

802.1x authentication

support for guest VLANs27-5

802.3ad

See LACP

A

AAA

disabling27-9

enabling27-9

abbreviating commands2-5

access control entries

See ACEs

access ports, configuring6-8

access VLANs6-6

ACEs

ACLs25-2

Ethernet25-2

IP25-2

Layer 4 operation restrictions25-6

ACLs

ACEs25-2

applying on routed packets25-19

applying on switched packets25-19

compatibility on the same switch25-3

configuring with VLAN maps25-18

CPU impact25-8

IP

matching criteria for port ACLs25-4

MAC extended25-9

matching criteria for router ACLs25-3

port

and voice VLAN25-4

defined25-2

limitations25-4

processing25-8

types supported25-2

acronyms, list ofA-1

active queue management30-13

addresses

See MAC addresses

adjacency tables

description21-2

displaying statistics21-10

advertisements, VTP

See VTP advertisements

alarms

major34-2

minor34-2

audiencexxi

authentication

See also port-based authentication

authentication server

defined27-2

RADIUS server27-2

authorized and unauthorized ports27-4

authorized ports with 802.1X27-4

automatic QoS

See QoS

Auto-QoS

configuring30-15

B

BackboneFast

adding a switch (figure)13-2

and MST14-2

configuring13-15

link failure (figure)13-7, 13-8

not supported MST14-2

understanding13-6

See also STP

BGP1-8

routing session with multi-VRF CE22-6

blocking packets28-1

blocking state (STP)

RSTP comparisons (table)14-4

boot bootldr command3-18

boot command3-15

boot fields

See configuration register boot fields

boot system command3-13, 3-18

boot system flash command3-15

Border Gateway Protocol

See BGP

boundary ports

description14-6

BPDU Guard

and MST14-2

configuring13-12

overview13-4

BPDUs

and media speed12-2

pseudobridges and14-5

what they contain12-3

bridge ID

See STP bridge ID

bridge priority (STP)12-16

bridge protocol data units

See BPDUs

broadcast storm control

disabling29-4

BSR

configuration example24-21

burst rate30-39

burst size30-26

C

cautions for passwords

encrypting3-9

TACACS+3-9

CDP

and trusted boundary30-24

configuration16-2

displaying configuration16-3

enabling on interfaces16-3

maintaining16-3

monitoring16-3

overview1-2, 16-1

cdp enable command16-3

CEF

adjacency tables21-2

configuring load balancing21-7

disabling per-destination load balancing21-7

display statistics21-9

enabling21-7

hardware switching21-4

load balancing21-6

overview21-1

software switching21-4

CGMP

overview15-1

channel-group group command17-7, 17-9

Cisco Discovery Protocol

See CDP

Cisco Express Forwarding

See CEF

Cisco Group Management Protocol

See CGMP

Cisco IP Phones

configuring36-2

sound quality36-1

CiscoView1-12

CIST

description14-2

class-map command30-27

class of service

See CoS

clear cdp counters command16-4

clear cdp table command16-3

clear counters command4-13

clearing

IP multicast table entries24-20

clear ip flow stats command31-6

CLI

accessing2-1

backing out one level2-5

getting commands2-5

history substitution2-3

modes2-5

monitoring environments33-1

ROM monitor2-6

software basics2-4

clients

in 802.1x authentication27-2

command-line processing2-3

command modes2-5

commands

listing2-5

command switches

in VMPS9-1

common and internal spanning tree

See CIST

common spanning tree

See CST

community ports

description10-1

community VLANs

description10-2

config-register command3-16

config terminal command3-2

configuration

802.1X with Guest-VLAN27-10

configuration example, SPAN enhancement33-14

configuration files

saving3-3

configuration guidelines

for VMPS9-3

configuration register

changing settings3-15to 3-16

configuring3-13

settings at startup3-14

configuration register boot fields

listing value3-16

modifying3-15

configure terminal command3-15, 4-2

console configuration mode2-5

console port

disconnecting user sessions5-5

monitoring user sessions5-4

copy running-config startup-config command3-3

copy system:running-config nvram:startup-config command3-18

CoS

configuring port value30-36

definition30-3

figure30-2

overriding on Cisco IP Phones36-3

priority36-3

CoS-to-DSCP maps30-40

counters

clearing MFIB24-20

clearing on interfaces4-13

CPU port sniffing, SPAN enhancement33-10

CST

description14-5

IST and14-2

MST and14-2

customer edge devices22-2

D

default configuration

802.1X27-7

auto-QoS30-15

IGMP filtering15-16

multi-VRF CE22-3

SPAN and RSPAN33-6

default gateway

configuring3-4

verifying configuration3-5

default ports

802.1x authentication not supported on27-8

description command4-8

detecting unidirectional links18-1

DHCP snooping

configuration guidelines19-3

configuring19-3

default configuration19-3

displaying binding tables19-10

displaying configuration19-10

enabling19-4

enabling on private VLAN19-5

enabling the database agent19-6

monitoring19-10, 19-13, 19-14

overview19-1

Snooping database agent19-2

DHCP Snooping Database Agent

adding to the database (example)19-9

enabling (example)19-6

overview19-2

reading from a TFTP file (example)19-8

Differentiated Services Code Point values

See DSCP values

DiffServ architecture, QoS30-2

disabled state

RSTP comparisons (table)14-4

disabling

broadcast storm control29-4

disconnect command5-5

documentation

organizationxxi

relatedxxiii

DSCP maps30-40

DSCP-to-CoS maps

configuring30-42

DSCP values

configuring maps30-40

configuring port value30-37

definition30-3

IP precedence30-2

mapping markdown30-22

mapping to transmit queues30-38

DTP

VLAN trunks and6-3

duplex command4-7

duplex mode

configuring interface4-6

Dynamic Host Configuration Protocol snooping

See DHCP snooping

dynamic port VLAN membership

configuring9-5

overview9-2

reconfirming9-7

troubleshooting9-8

Dynamic Trunking Protocol

See DTP

E

EAP

request/identity frame27-3

response/identity frame27-3

EAP frames

changing retransmission time27-13

exchanging (figure)27-3

setting retransmission number27-14

EAPOL frames

802.1x authentication and27-2

OTP authentication, example (figure)27-3

EAPOL-start frame27-3

edge ports

description14-7

EGP

overview1-8

EIGRP

overview1-7

Embedded CiscoView1-12

enable command3-2, 3-15

enable mode2-5

encapsulation configuration, SPAN enhancements33-12

encapsulation types6-3

Enhanced Interior Gateway Routing Protocol

See EIGRP

environmental monitoring

LED indications34-2

SNMP traps34-2

supervisor engine34-2

switching modules34-2

using CLI commands34-1

EtherChannel

channel-group group command17-7, 17-9

configuration guidelines17-5

configuring17-6to 17-14

configuring Layer 217-9

configuring Layer 317-6

interface port-channel command17-7

lacp system-priority

command example17-12

modes17-3

overview17-1

PAgP

Understanding17-3

physical interface configuration17-7

port-channel interfaces17-2

port-channel load-balance

command17-11

port-channel load-balance command17-12

removing17-13

removing interfaces17-13

EtherChannel ports

802.1x authentication not supported in27-8

explicit host tracking

explicit host tracking

enabling15-8

extended range VLANs

See VLANs

Extensible Authentication Protocol over LAN27-2

Exterior Gateway Protocol

See EGP

F

FastDrop

clearing entries24-20

displaying entries24-19

overview24-10

FIB

description21-2

See also MFIB

filtering

in a VLAN25-10

non-IP traffic25-9

flags24-11

Flash memory

configuring router to boot from3-18

loading system images from3-17

security precautions3-17

flooded traffic, blocking28-2

forward-delay time (STP)

configuring12-18

forwarding information base

See FIB

G

gateway

See default gateway

global configuration mode2-5

H

hardware switching21-5

hello time (STP)

configuring12-17

history

CLI2-3

hop counts

configuring MST bridges14-7

host

configuring host statically15-8

hosts, limit on dynamic port9-8

Hot Standby Routing Protocol

See HSRP

HSRP

description1-6

I

ICMP

enabling5-10

ping5-5

running IP traceroute5-7

time exceeded messages5-7

IDS

using with SPAN and RSPAN33-2

IEEE 802.1s

See MST

IEEE 802.1w

See MST

IEEE 802.3ad

See LACP

IGMP

description24-3

enabling24-13

explicit host tracking15-3

immediate-leave processing15-3

overview15-1

See explicit host tracking

IGMP filtering

configuring15-17

default configuration15-16

described15-16

monitoring15-20

IGMP groups, setting the maximum number15-19

IGMP profile

applying15-18

configuration mode15-17

configuring15-17

IGMP snooping

configuration guidelines15-4

enabling15-5

IP multicast and24-4

monitoring15-11

overview15-1

IGRP

description1-7

immediate-leave processing

enabling15-7

immediate-leave processing, IGMP

See fast-leave processing

ingress packets, SPAN enhancement33-12

inline power

configuring on Cisco IP phones36-4

See PoE

Intelligent Power Management34-19

interface command3-2, 4-1

interface port-channel command17-6, 17-7

interface range command4-4

interface range macro command4-5

interfaces

adding descriptive name4-8

clearing counters4-13

configuring4-2

configuring ranges4-4

displaying information about4-12

Layer 2 modes6-4

maintaining4-12

monitoring4-12

naming4-8

numbers4-2

overview4-1

restarting4-13

See also Layer 2 interfaces

Interior Gateway Routing Protocol

See IGRP

Internet Control Message Protocol

See ICMP

Internet Group Management Protocol

See IGMP

Inter-Switch Link encapsulation

See ISL encapsulation

Intrusion Detection System

See IDS

IP

configuring default gateway3-4

configuring static routes3-5

displaying statistics21-8

flow switching cache31-6

ip cef command21-7

ip flow-aggregation cache destination-prefix command31-8

ip flow-aggregation cache prefix command31-8

ip flow-aggregation cache source-prefix command31-8

ip flow-export command31-6

ip icmp rate-limit unreachable command5-11

ip igmp profile command15-17

ip igmp snooping tcn flood command15-10

ip igmp snooping tcn flood query count command15-10

ip igmp snooping tcn query solicit command15-11

ip load-sharing per-destination command21-7, 21-8

ip local policy route-map command23-4

ip mask-reply command5-12

IP multicast

clearing table entries24-20

configuring24-12

default configuration24-13

displaying PIM information24-15

displaying the routing table information24-16

enabling24-13

enabling dense-mode PIM24-14

enabling sparse-mode24-14

features not supported24-12

hardware forwarding24-8

IGMP snooping and15-4, 24-4

monitoring24-15

overview24-1

routing protocols24-2

software forwarding24-8

See also Auto-RP; IGMP; PIM; RP; RPF

ip multicast-routing command24-13

IP Phones

configuring voice ports36-2

See Cisco IP Phones36-1

IP phones

automatic classification and queueing30-15

trusted boundary for QoS30-23

ip pim command24-14

ip pim dense-mode command24-14

ip pim sparse-dense-mode command24-15

ip policy route-map command23-4

ip redirects command5-11

ip route-cache flow command31-5

IP routing tables

deleting entries24-20

IP Source Guard

configuring19-11

configuring on private VLANs19-13

displaying19-13, 19-14

overview19-11

IP statistics

displaying21-9

IP traceroute

executing5-7

overview5-7

IP unicast

displaying statistics21-9

ip unreachables command5-10

IPX

redistribution of route information with EIGRP1-7

ISL encapsulation6-3

isolated ports

description10-1

isolated VLANs

description10-2

IST

description14-2

MST regions and14-2

IST master

description14-7

J

jumbo frames

and ethernet ports4-10

configuring MTU sizes for4-11

ports and linecards that support4-9

understanding4-9

VLAN interfaces4-10

K

keyboard shortcuts2-3

L

labels

definition30-3

LACP

system ID17-4

Layer 2

show interfaces4-11

Layer 2 access ports6-8

Layer 2 frames, classification with CoS30-2

Layer 2 interfaces

assigning VLANs8-8

configuring6-5

configuring as PVLAN host ports10-8

configuring as PVLAN promiscuous ports10-7

configuring as PVLAN trunk ports10-9

defaults6-5

disabling configuration6-9

modes6-4

show interfaces command6-7

Layer 2 interface type

resetting10-11

setting10-11

Layer 2 switching

overview6-1

Layer 2 Traceroute

and ARP5-9

and CDP5-8

described5-8

host-to-host paths5-8

IP addresses and subnets5-9

MAC addresses and VLANs5-9

multicast traffic5-9

multiple devices on a port5-9

unicast traffic1-3, 5-8

usage guidelines5-8

Layer 2 trunks

configuring6-6

overview6-3

Layer 3 packets, classification methods30-2

Layer 4 port operations

configuration guidelines25-6

restrictions25-6

LEDs

description (table)34-2

limit of hosts on dynamic ports9-8

listening state (STP)

RSTP comparisons (table)14-4

load balancing

configuring for CEF21-7

configuring for EtherChannel17-12

overview17-5, 21-6

per-destination21-7

login timer

changing5-4

logoutwarning command5-4

loop guard

and MST14-2

configuring13-9

overview13-2

M

MAC addresses

allocating12-5

building tables6-2

displaying5-3

displaying in DHCP snooping binding table19-10

in ACLs25-9

MAC extended access lists25-9

mapping

DSCP markdown values30-22

DSCP values to transmit queues30-38

mapping tables

configuring DSCP30-40

described30-12

mask destination command31-8

mask source command31-8

match ip address command23-3

maximum aging time (STP)

configuring12-18

member switches

in VMPS9-1

MFIB

CEF and24-5

displaying24-18

overview24-11

modules

checking status5-1

monitoring

ACL information25-26

IGMP filters15-20

IGMP snooping15-11

multi-VRF CE22-11

VLAN

maps25-17

VLAN filters25-17

M-record14-2

MST

and multiple spanning trees1-3, 14-2

boundary ports14-6

BPDUs14-2

configuration14-5

configuring14-9

displaying configurations14-13

edge ports14-7

enabling14-9

hop count14-7

instances14-5

interoperability14-4

interoperability with PVST+14-2

link type14-7

master14-7

message age14-7

regions14-5, 14-6

restrictions14-8

MST instances

configuring parameters14-12

description14-2

number supported14-5

MSTP

M-record14-2

M-tree14-2

M-tree14-2

MTU size (default)8-4

multicast

See IP multicast

multicast packets

blocking28-2

multicast routers

displaying routing tables24-16

flood suppression15-9

Multicast Storm Control, enabling29-6

multiple forwarding paths1-3, 14-2

Multiple Spanning Tree

See MST

multiple VPN routing/forwarding in customer edge devices

See multi-VRF CE

multi-VRF CE

configuration example22-7

configuring22-3

default configuration22-3

defined22-1

displaying22-11

monitoring22-11

network components22-3

packet-forwarding process22-3

N

native VLAN

specifying6-6

NetFlow

destination-prefix aggregation

configuration (example)31-13

minimum mask, configuring31-8

IP

flow switching cache31-6

prefix aggregation

configuration (example)31-10

minimum mask, configuring31-8

source-prefix aggregation

minimum mask, configuring31-8

switching

configuration (example)31-9

configuring31-5

exporting cache entries31-6

statistics31-6

NetFlow aggregation

minimum mask

default value31-8

NetFlow statistics

caveats on supervisor31-4

configuring collection31-4

implementing collection31-4

overview of collection31-1

network fault tolerance1-3, 14-2

network management

configuring16-1

Next Hop Resolution Protocol

See NHRP

NFFC/NFFC II

IGMP snooping and15-4

NHRP

support1-7

non-IP traffic filtering25-9

non-RPF traffic

description24-9

in redundant configurations (figure)24-10

nonvolatile random-access memory

See NVRAM

normal-range VLANs

See VLANs

NVRAM

saving settings3-3

O

OIR

overview4-12

online insertion and removal

See OIR

Open Shortest Path First

See OSPF

operating system images

See system images

OSPF

area concept1-7

description1-6

overview of NetFlow statistics collection31-1

P

packets

modifying30-14

packet type filtering, SPAN enhancement33-13

PAgP

understanding17-3

passwords

configuring enable password3-7

configuring enable secret password3-7

encrypting3-9

recovering lost enable password3-12

setting line password3-8

setting TACACS+3-8

PBR (policy-based routing)

configuration (example)23-5

enabling23-3

features23-2

overview23-1

route maps23-2

when to use23-2

per-port and VLAN Access Control List19-11

Per-VLAN Rapid Spanning Tree12-6

enabling12-20

PE to CE routing, configuring22-6

PIM

configuring dense mode24-14

configuring sparse mode24-14

displaying information24-15

displaying statistics24-20

enabling sparse-dense mode24-14, 24-15

overview24-3

PIM-DM24-3

PIM-SM24-3

ping

executing5-6

overview5-5

ping command5-6, 24-15

PoE

configuring34-16

configuring power consumption for single device34-19

configuring power consumption for switch34-18

power consumption for powered devices

Intelligent Power Management34-19

power management modes34-16

show interface status34-20

point-to-point

in 802.1x authentication (figure)27-2

police command30-31

policed-DSCP map30-41

policers

description30-5

number of30-10

types of30-9

policies

See QoS policies

policing

See QoS policing

policy-map command30-27, 30-30

policy maps

attaching to interfaces30-33

configuring30-29

port ACLs

and voice VLAN25-4

defined25-2

limitations25-4

Port Aggregation Protocol

see PAgP

port-based authentication

client, defined27-2

configuration guidelines27-8

configuring

quiet period27-12

configuring Guest-VLAN27-10

configuring manual re-authentication of a client27-12

controlling authorization state27-4

default configuration27-7

described27-1

device roles27-2

disabling27-9

displaying statistics27-16

enabling27-9

enabling multiple hosts27-15

enabling periodic re-authentication27-11

encapsulation27-2

initiation and message exchange27-3

method lists27-9

ports not supported27-4

resetting to default values27-15

setting retransmission number27-14

setting retransmission time27-13

switch as proxy27-2

switch as RADIUS client27-2

topologies, supported27-6

with VLAN assignment27-4

port-based QoS features

See QoS

port-channel interfaces

See also EtherChannel

creating17-6

overview17-2

port-channel load-balance

command17-11

command example17-12

port-channel load-balance command17-12

port cost (STP)

configuring12-15

PortFast

and MST14-2

BPDU filter

configuring13-12

configuring or enabling13-11

overview13-3

PortFast BPDU filtering

overview13-4

Portfast BPDU filtering

and MST14-2

enabling13-12

PortFast STP parameter9-3

port priority

configuring MST instances14-12

port priority (STP)12-13

ports

blocking28-1

checking status5-2

community10-1

dynamic VLAN membership

configuring9-5

overview9-2

reconfirming9-7

forwarding, resuming28-3

isolated10-1

PVLAN types10-1

secure26-1

See also interfaces

port security

aging26-5

and QoS trusted boundary30-23

configuring26-3

default configuration26-2

described26-1

displaying26-7

violations26-2

with other features26-3

port states

description12-5

port trust state

See trust states

power, inline36-4

power dc input command34-10

power inline command34-17

power inline consumption command34-18, 34-19

power management

1+1 redundancy mode34-10

2+1 redundancy mode34-10

Catalyst 4006 switch34-10

Catalyst 4500 series34-3

Catalyst 4500 Series power supplies34-8

combined mode34-4

configuring combined mode34-7

configuring redundant mode34-6

overview34-1

redundancy34-10

redundant mode34-4

power over Ethernet

See PoE

power redundancy

setting on Catalyst 400634-13

power redundancy-mode comand34-7

power supplies

fixed34-3

variable34-4

power supplies required command34-13

primary VLANs

associating with secondary VLANs10-6

description10-1

priority

overriding36-3

privileged EXEC mode2-5

privileges

changing default3-10

configuring levels3-10

exiting3-11

logging in3-11

promiscuous ports

configuring PVLAN10-7

description10-1

setting mode10-11

protocol timers12-4

provider edge devices22-2

pruning, VTP

See VTP pruning

pseudobridges

description14-5

PVACL19-11

PVLANs

802.1q support10-3

configuration guidelines10-4

configuring10-4

configuring promiscuous ports10-7

host ports

setting10-11

isolated VLANs10-2

overview10-1

permitting routing, example10-10

promiscuous mode

setting10-11

setting

interface mode10-11

Q

QoS

allocating bandwidth30-39

auto-QoS

configuration and defaults display30-18

configuration guidelines30-16

described30-15

displaying30-18

effects on NVRAM configuration30-16

enabling for VoIP30-17

basic model30-5

burst size30-26

classification30-5to 30-9

configuration guidelines30-22

auto-QoS30-16

configuring

auto-QoS30-15

trusted boundary30-23

configuring DSCP maps30-40

configuring traffic shaping30-39

configuring VLAN-based30-34

creating policing rules30-27

default auto configuration30-15

default configuration30-21

definitions30-3

disabling on interfaces30-33

enabling on interfaces30-33

flowcharts30-7, 30-11

IP phones </