-
Catalyst 6500 Series Software Configuration Guide, 8.7
-
Catalyst 6500 Series Switch Software Configuration Guide (Full-book PDF)
-
Index
-
Preface
-
Product Overview
-
Command-Line Interfaces
-
Configuring the Switch IP Address and Default Gateway
-
Configuring Ethernet, Fast Ethernet, Gigabit Ethernet, and 10-Gigabit Ethernet Switching
-
Configuring Ethernet VLAN Trunks
-
Configuring EtherChannel
-
Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling
-
Configuring Spanning Tree
-
Configuring Spanning Tree PortFast, UplinkFast, BackboneFast, and Loop Guard
-
Configuring VTP
-
Configuring VLANs
-
Configuring InterVLAN Routing
-
Configuring CEF for PFC2/PFC3
-
Configuring MLS
-
Configuring Access Control
-
Configuring NDE
-
Configuring GVRP
-
Configuring MVRP
-
Configuring Dynamic Port VLAN Membership with VMPS
-
Checking Status and Connectivity
-
Configuring Online Diagnostics
-
Administering the Switch
-
Configuring Redundancy
-
Configuring NSF with SSO MSFC Redundancy
-
Modifying the Switch Boot Configuration
-
Working with the Flash File System
-
Working with System Software Images
-
Working with Configuration Files
-
Configuring System Message Logging
-
Configuring DNS
-
Configuring CDP
-
Configuring UDLD
-
Configuring DHCP Snooping and IP Source Guard
-
Configuring NTP
-
Configuring Broadcast Suppression
-
Configuring Layer 3 Protocol Filtering
-
Configuring the IP Permit List
-
Configuring Port Security
-
Configuring Switch Access Using AAA
-
Configuring 802.1x Authentication
-
Configuring MAC Authentication Bypass
-
Configuring Web-Based Proxy Authentication
-
Tracking Host Aging
-
Configuring Network Admission Control
-
Configuring Unicast Flood Blocking
-
Configuring SNMP
-
Configuring RMON
-
Configuring SPAN, RSPAN and the Mini Protocol Analyzer
-
Using Switch TopN Reports
-
Configuring Multicast Services
-
Configuring QoS
-
Configuring Automatic QoS
-
Configuring ASLB
-
Configuring the Switch Fabric Module
-
Configuring a VoIP Network
-
Configuring MSFC IOS Features
-
Acronyms
-
Table Of Contents
Configuring the Switch IP Address and Default Gateway
Understanding How the Switch Management Interfaces Work
Understanding How Automatic IP Configuration Works
Automatic IP Configuration Overview
Preparing to Configure the IP Address and Default Gateway
Booting the MSFC for the First Time
Booting from Melody Compact Flash Adapter Card
Default IP Address and Default Gateway Configuration
Features Supported by the sc0 and sc1 In-Band Interfaces
Assigning the In-Band (sc0 and sc1) Interface IP Address
Configuring the Default Gateways
Configuring the SLIP (sl0) Interface on the Console Port
Using BOOTP, DHCP, or RARP to Obtain an IP Address
Renewing and Releasing a DHCP-Assigned IP Address
Configuring the Switch IP Address and Default Gateway
This chapter describes how to configure the IP address, subnet mask, and default gateway on the Catalyst 6500 series switches.
Note
For complete syntax and usage information for the commands that are used in this chapter, refer to the Catalyst 6500 Series Switch Command Reference publication.
This chapter consists of these sections:
•
•
•
•
•
•
•
•
•
•
•
•
Understanding How the Switch Management Interfaces Work
Catalyst 6500 series switches have three configurable IP management interfaces, the in-band (sc0 and sc1) interfaces and the out-of-band management Serial Line Internet Protocol (SLIP) (sl0) interface.
The in-band (sc0 and sc1) management interfaces are connected to the switching fabric and participate in all of the functions of a normal switch port, such as spanning tree, Cisco Discovery Protocol (CDP), VLAN membership, and so forth. The out-of-band management interface (sl0) is not connected to the switching fabric and does not participate in any of these functions.
When you configure the IP address, subnet mask, broadcast address, and VLAN membership of the sc0 and sc1 interfaces, you can access the switch through Telnet or Simple Network Management Protocol (SNMP). When you configure the SLIP (sl0) interface, you can open a point-to-point connection to the switch through the console port from a workstation.
All IP traffic that is generated by the switch itself (for example, a Telnet session that is opened from the switch to a host) is forwarded according to the entries in the switch IP routing table. For intersubnetwork communication to occur, you must configure at least one default gateway for the sc0 or sc1 interfaces. The switch IP routing table is used to forward traffic originating on the switch only; the routing table is not used for forwarding traffic that is sent by the devices that are connected to the switch.
Understanding How Automatic IP Configuration Works
These sections describe how the switch can obtain its IP configuration automatically:
•
Note
Automatic IP Configuration Overview
The switch can obtain its IP configuration automatically using one of the following protocols:
•
•
•
The switch makes BOOTP, DHCP, and RARP requests only if the sc0 interface IP address is set to 0.0.0.0 when the switch boots up. This address is the default for a new switch or a switch whose configuration file has been cleared using the clear config all command. BOOTP, DHCP, and RARP requests are only broadcast out the sc0 interface.
Note
Understanding DHCP
There are three methods for obtaining an IP address from the DHCP server:
•
•
•
In addition to the sc0 interface IP address, the switch can obtain the subnet mask, broadcast address, and default gateway address. DHCP-learned values are not used if user-configured values are present.
The switch broadcasts a DHCPDISCOVER message 1 to 10 seconds after all of the switch ports are online. The switch always requests an infinite lease time in the DHCPDISCOVER message.
If a DHCP or Bootstrap Protocol (BOOTP) server responds to the request, the switch takes appropriate action. If a DHCPOFFER message is received from a DCHP server, the switch processes all the supported options that are contained in the message. Table 3-1 shows the supported DHCP options. Other options that are specified in the DHCPOFFER message are ignored.
If a BOOTP response is received from a BOOTP server, the switch sets the in-band (sc0) interface IP address to the address that is specified in the BOOTP response.
If no DHCPOFFER message or BOOTP response is received in reply, the switch rebroadcasts the request using an exponential backoff algorithm (the amount of time between requests increases exponentially). If no response is received after 10 minutes, the sc0 interface IP address remains set to 0.0.0.0 (if the BOOTP and RARP requests also fail).
If you reset or power cycle a switch with a DHCP- or BOOTP-obtained IP address, the information that is learned from DHCP or BOOTP is retained. At bootup, the switch attempts to renew the lease on the IP address. If no reply is received, the switch retains the current IP address.
Understanding BOOTP and RARP
With BOOTP and RARP, you map the switch MAC address to an IP address on the BOOTP or RARP server. The switch retrieves its IP address from the server automatically when it boots up.
The switch broadcasts 10 BOOTP and RARP requests after all of the switch ports are online. If a response is received, the switch sets the in-band (sc0) interface IP address to the address that is specified in the response.
If no reply is received, the sc0 interface IP address remains set to 0.0.0.0 (if the DHCP requests also fail).
If you reset or power cycle a switch with a BOOTP or RARP-obtained IP address, the information that is learned from BOOTP or RARP is retained.
Preparing to Configure the IP Address and Default Gateway
Before you configure the switch IP address and default gateway, obtain the following information, as appropriate:
•
•
•
•
•
•
–
–
Booting the MSFC for the First Time
Two Multilayer Switch Feature Card (MSFC) images are provided on the MSFC bootflash: a boot loader image and a system image. The boot loader image is a limited function system image that has network interface code and end-host protocol code. The system image is the main Cisco IOS software image with full multiprotocol routing support.
As shipped, the MSFC is configured to boot the boot loader image first, which then boots the system image from the bootflash. However, if a Flash PC card is available on the supervisor engine, we recommend that you store all new system images (upgrades) on the supervisor engine Flash PC card instead of the bootflash on the MSFC. The boot loader image must stay on the MSFC bootflash.
Caution
Note
To store the system image on the supervisor Flash PC card, change the configuration on the MSFC to boot the MSFC from the appropriate image on the Flash PC card by adding the following command to the MSFC configuration:
boot sup-slot0:system_imageIn this example, system_image is the name of the desired image on the supervisor Flash PC card.
Note
By following this recommendation, you do not need to store new system images on the bootflash. If required, you can update the system image on the bootflash from an image on the supervisor engine Flash PC card by entering the following commands:
delete bootflash:old_system_imagesqueeze bootflash:copy sup-slot0:new_system_image bootflash:Booting from Melody Compact Flash Adapter Card
Catalyst software release 8.7(1) supports Melody Compact Flash memory, replacing the traditional bootflash memory on Supervisor Engine 720. When a Melody adapter card is detected by the Supervisor engine, the bootdisk file system is loaded instead of the traditional bootflash file system. The configuration commands that list bootflash as an option will list the bootdisk if the Melody adapter card is present. The default location of the crashinfo file is bootdisk instead of bootflash.
The following system messages are displayed when you boot the switch with no Compact Flash memory present or there is faulty Compact Flash memory on the Melody adapter card:
2007 Dec 14 05:41:14 %SYS-1-SYS_CF_MSG: No CompactFlash found on adapter card2007 Dec 14 05:48:07 %SYS-1-SYS_CF_MSG: Faulty CompactFlash found on adapter cardIf you are using a software version earlier than 8.7(1), which does not have knowledge of th e Melody adapter card but the card is present in the system, the following error messages displayed when bootflash is accessed:
Console> (enable) show flasherror = -24Open device bootflash failed (bad device info block)Console> (enable) dir bootflash:error = -24Open device bootflash failed (bad device info block)Console> (enable)The following restrictions must be considered when you use bootdisk:
•
•
•
•
•
Default IP Address and Default Gateway Configuration
Table 3-2 shows the default IP address and default gateway configuration.
Table 3-2 Switch IP Address and Default Gateway Default Configuration
In-band (sc0) interface
•
•
In-band (sc1) interface
•
•
Default gateway address
Set to 0.0.0.0 with a metric of 0
SLIP1 (sl0) interface
•
•
1 SLIP = Serial Line Internet Protocol
Features Supported by the sc0 and sc1 In-Band Interfaces
Table 3-3 lists the features that are supported by the sc0 and sc1 in-band interfaces.
Assigning the In-Band (sc0 and sc1) Interface IP Address
Before you can use Telnet to access the switch or use SNMP to manage the switch, you must assign an IP address to one of the in-band (sc0 or sc1) logical interfaces.
Tip
Tip
You can specify the subnet mask (netmask) using the number of subnet bits or using the subnet mask in dotted decimal format.
To set the IP address and VLAN membership of the in-band (sc0 or sc1) management interface, perform this task in privileged mode (in this example, the sc0 interface is configured):
This example shows how to assign an IP address, specify the number of subnet bits, and specify the VLAN assignment for the in-band sc0 interface:
Console> (enable) set interface sc0 172.20.52.124/29Interface sc0 IP address and netmask set.Console> (enable) set interface sc0 5Interface sc0 vlan set.Console> (enable)This example shows how to specify the VLAN assignment, assign an IP address, specify the subnet mask in dotted decimal format, and verify the configuration. In this example, the sc0 interface is configured (the sc1 and sl0 interfaces have not been configured):
Console> (enable) set interface sc0 5 172.20.52.124/255.255.255.248Interface sc0 vlan set, IP address and netmask set.Console> (enable) show interfacesl0: flags=51<UP,POINTOPOINT,RUNNING>slip 0.0.0.0 dest 0.0.0.0sc0: flags=63<UP,BROADCAST,RUNNING>vlan 5 inet 172.20.52.124 netmask 255.255.255.248 broadcast 172.20.52.17sc1: flags=62<DOWN,BROADCAST,RUNNING>vlan 0 inet 0.0.0.0 netmask 0.0.0.0 broadcast 0.0.0.0Console> (enable)Configuring the Default Gateways
The supervisor engine sends IP packets that are destined for other IP subnets to the default gateway (typically, a router interface in the same network or subnet as the switch IP address). The switch does not use the IP routing table to forward traffic from connected devices; the switch forwards only IP traffic that is generated by the switch itself (for example, Telnet, TFTP, and ping).
Note
You can define up to three default IP gateways. Use the primary keyword to make a gateway the primary gateway. If you do not specify a primary default gateway, the first gateway that is configured is the primary gateway. If you designate more than one gateway as primary, the last primary gateway that is configured is the primary default gateway.
The switch sends all off-network IP traffic to the primary default gateway. If connectivity to the primary gateway is lost, the switch attempts to use the backup gateways in the order that they were configured. The switch sends periodic ping messages to determine whether each default gateway is up or down. If connectivity to the primary gateway is restored, the switch resumes sending traffic to the primary gateway.
Note
To configure one or more default gateways, perform this task in privileged mode:
To remove the default gateway entries, perform one of these tasks in privileged mode:
Clear an individual default gateway entry.
clear ip route default gateway
Clear all default gateways and static routes.
clear ip route all
This example shows how to configure three default gateways on the switch and verify the default gateway configuration:
Console> (enable) set ip route default 10.1.1.10Route added.Console> (enable) set ip route default 10.1.1.20Route added.Console> (enable) set ip route default 10.1.1.1 primaryRoute added.Console> (enable) show ip routeFragmentation Redirect Unreachable------------- -------- -----------enabled enabled enabledThe primary gateway: 10.1.1.1Destination Gateway RouteMask Flags Use Interface--------------- --------------- ---------- ----- -------- ---------default 10.1.1.1 0x0 UG 6 sc0default 10.1.1.20 0x0 G 0 sc0default 10.1.1.10 0x0 G 0 sc010.0.0.0 10.1.1.100 0xff000000 U 75 sc0default default 0xff000000 UH 0 sl0Console> (enable)Configuring the SLIP (sl0) Interface on the Console Port
Use the SLIP (sl0) interface for point-to-point SLIP connections between the switch and an IP host.
Caution
To enable and attach SLIP on the console port, perform this task:
To disable SLIP on the console port, perform this task:
This example shows how to configure SLIP on the console port and verify the configuration:
sparc20% telnet 172.20.52.38Trying 172.20.52.38 ...Connected to 172.20.52.38.Escape character is '^]'.Cisco Systems, Inc. ConsoleEnter password:Console> enableEnter password:Console> (enable) set interface sl0 10.1.1.1 10.1.1.2Interface sl0 slip and destination address set.Console> (enable) show interfacesl0: flags=51<UP,POINTOPOINT,RUNNING>slip 10.1.1.1 dest 10.1.1.2sc0: flags=63<UP,BROADCAST,RUNNING>vlan 522 inet 172.20.52.38 netmask 255.255.255.240 broadcast 172.20.52.7Console> (enable) slip attachConsole Port now running SLIP.Console> (enable) slip detachSLIP detached on Console port.Console> (enable)Using BOOTP, DHCP, or RARP to Obtain an IP Address
Note
To use BOOTP, DHCP, or RARP to obtain an IP address for the switch, perform this task:
This example shows the switch broadcasting a DHCP request, receiving a DHCP offer, and configuring the IP address and other IP parameters according to the contents of the DHCP offer:
Console> (enable)Sending RARP request with address 00:90:0c:5a:8f:ffSending DHCP packet with address: 00:90:0c:5a:8f:ffdhcpofferSending DHCP packet with address: 00:90:0c:5a:8f:ffTimezone set to '', offset from UTC is 7 hours 58 minutesTimezone set to '', offset from UTC is 7 hours 58 minutes172.16.30.32 added to DNS server table as primary server.172.16.31.32 added to DNS server table as backup server.172.16.32.32 added to DNS server table as backup server.NTP server 172.16.25.253 addedNTP server 172.16.25.252 added%MGMT-5-DHCP_S:Assigned IP address 172.20.25.244 from DHCP Server 172.20.25.254Console> (enable) show interfacesl0: flags=51<UP,POINTOPOINT,RUNNING>slip 0.0.0.0 dest 0.0.0.0sc0: flags=63<UP,BROADCAST,RUNNING>vlan 1 inet 172.20.25.244 netmask 255.255.255.0 broadcast 172.20.25.255dhcp server: 172.20.25.254Console>Renewing and Releasing a DHCP-Assigned IP Address
If you are using DHCP for IP address assignment, you can perform either of these DHCP-related tasks:
•
•
To renew or release a DHCP-assigned IP address on the in-band (sc0) management interface, perform one of these tasks in privileged mode:
Renew the lease on a DHCP-assigned IP address.
set interface sc0 dhcp renew
Release the lease on a DHCP-assigned IP address.
set interface sc0 dhcp release
This example shows how to renew the lease on a DHCP-assigned IP address:
Console> (enable) set interface sc0 dhcp renewRenewing IP address...Console> (enable) Sending DHCP packet with address: 00:90:0c:5a:8f:ff<...output truncated...>This example shows how to release the lease on a DHCP-assigned IP address:
Console> (enable) set interface sc0 dhcp releaseReleasing IP address...Console> (enable) Sending DHCP packet with address: 00:90:0c:5a:8f:ffDoneConsole> (enable)
