-
Catalyst 6500 Series Cisco IOS Software Configuration Guide, 12.1E
-
Index
-
Preface
-
Product Overview
-
Command-Line Interfaces
-
Configuring the Switch for the First Time
-
Configuring EHSA Supervisor Engine Redundancy
-
Configuring RPR or RPR+ Supervisor Engine Redundancy
-
Interface Configuration Overview
-
Configuring Layer 2 Ethernet Interfaces
-
Configuring VTP
-
Configuring VLANs
-
Configuring Private VLANs
-
Configuring Cisco IP Phone Support
-
Configuring Layer 3 Interfaces
-
Configuring Layer 3 and Layer 2 EtherChannel
-
Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling
-
Configuring STP and IEEE 802.1s MST
-
Configuring STP Features
-
Configuring IP Unicast Layer 3 Switching on Supervisor Engine 2
-
Configuring IP Multicast Layer 3 Switching
-
Configuring IP Unicast Layer 3 Switching on Supervisor Engine 1
-
Configuring IPX Unicast Layer 3 Switching on Supervisor Engine 1
-
Configuring IGMP Snooping
-
Configuring RGMP
-
Configuring Network Security
-
Configuring Denial of Service Protection
-
Configuring 802.1X Port-Based Authentication
-
Configuring Port Security
-
Configuring Layer 3 Protocol Filtering on Supervisor Engine 1
-
Configuring Traffic-Storm Control
-
Configuring Broadcast Suppression
-
Configuring CDP
-
Configuring UDLD
-
Configuring PFC QoS
-
Configuring NDE
-
Configuring Local and Remote SPAN
-
Configuring WCCP
-
Configuring the Switch Fabric Module
-
Configuring SNMP IfIndex Persistence
-
Power Management and Environmental Monitoring
-
Acronyms
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W -
index
Numerics
4K VLANs (support for 4,096 VLANs) 9-2
802.10 SAID (default) 9-6
802.1Q
encapsulation 7-4
Layer 2 protocol tunneling
See Layer 2 protocol tunneling
mapping to ISL VLANs 9-12
trunks 7-2
restrictions 7-6
tunneling
configuration guidelines 14-3
configuring tunnel ports 14-5
overview 14-1
802.1Q Ethertype
specifying custom 7-16
802.1s
802.1w
802.1X
802.3ad
802.3Z Flow Control 6-14
A
abbreviating commands 2-5
access control entries and lists 23-1, 24-1
access lists
using with WCCP 35-10
access port, configuring 7-14
IPX MLS, flow masks and 20-3
acronyms, list of A-1
addresses
advertisements, VTP 8-2
aggregate policing
aging-time
IPX MLS 20-7
alarms
major 38-4
minor 38-4
ARP throttling 24-5
audience xxi
authentication
See also port-based authentication
Authentication, Authorization, and Accounting
See also AAA 23-1
Authentication, Authorization, and Accounting (AAA) 24-1
authorized ports with 802.1X 25-4
auto-sync command 4-3, 5-6, 5-7
auxiliary VLAN
B
BackboneFast
blocking state, STP 15-8
boot bootldr command 3-26, 3-27
boot command 3-22
boot config command 3-26
BOOTLDR environment variable
(example) 3-27
configuring 3-27
description 3-25
setting 3-27
boot system command 3-21, 3-26
boot system flash command 3-22
BPDU guard
bridge ID
bridge priority, STP 15-30
bridge protocol data units
broadcast storms
broadcast suppression 29-1
enabling 29-3
C
cache
IP MLS
overview 19-3
IPX MLS
displaying entries 20-9
overview 20-2
cache engine clusters 35-1
cache engines 35-1
cache farms
cautions for passwords
encrypting 3-17
TACACS+ 3-17
CBAC 23-5
CDP
configuration task lists 30-1
enabling on an interface 30-2
monitoring and maintaining 30-3
overview 30-1
cdp enable command 30-2
CEF 17-1
configuring
MSFC2 17-5
supervisor engine 17-5
examples 17-3
Layer 3 switching 17-2
packet rewrite 17-2
CEF for PFC2
CGMP 21-1
multicast router ports
specifying 21-11
channel-group group
command 13-8
command example 13-8
checking
configuration, system 3-10
Cisco Cache Engines 35-2
Cisco Discovery Protocol
Cisco Group Management Protocol
Cisco IOS firewall feature set 23-5
Cisco IOS Unicast Reverse Path Forwarding 23-19
CiscoView 1-2
CIST 15-15
class command 32-43
class-map command 32-38
class map configuration 32-40
clear cdp counters command 30-3
clear cdp table command 30-3
clear counters command 6-18
clearing IPX MLS cache entries 20-13
clear interface command 6-19
clear ip route command
IP MLS restiction 19-6
clear ipx route command
IPX MLS restiction 20-5
clear mls command
clearing IP MLS cache entries 19-12
clear mls ip multicast statistics command
clearing IP MMLS statistics 18-19
clear mls ipx command
clearing IPX MLS cache entries 20-13
clear mls nde flow command 33-17
CLI
accessing 2-1
backing out one level 2-5
console configuration mode 2-5
getting list of commands 2-5
global configuration mode 2-5
history substitution 2-3
interface configuration mode 2-5
privileged EXEC mode 2-5
ROM monitor 2-6
software basics 2-4
command line processing 2-3
commands, getting list of 2-5
Common and Internal Spanning Tree
See also CIST 15-15
Common Spanning Tree
community ports 10-1
community VLANs 10-2
CONFIG_FILE environment variable
configuration file, viewing 3-26
description 3-26
config-register command 3-23
config terminal command 3-10
configuration
file, saving 3-11
register
changing settings 3-23
settings at startup 3-22
configuration register boot field
listing value 3-24
modification tasks 3-23
configure command 3-9
configure terminal command 3-23, 6-2
global parameters
procedure 3-3
using configuration mode 3-10
congestion avoidance
console configuration mode 2-5
copy running-config startup-config command 3-11
copy system
running-config nvram
startup-config command 3-26
CoS
counters
CST 15-15
common spanning tree 15-18
D
debug commands
IP MMLS 18-18
debugging mls comand 19-14
default configuration
802.1X 25-5
IP MLS 19-6
IP MMLS 18-7
IPX MLS 20-5
supervisor engine 3-1
UDLD 31-3
voice VLAN 11-4
VTP 8-5
default gateway, configuring 3-12
default NDE configuration 33-7
default VLAN 7-10
denial of service protection 24-1
description command 6-16
destination flow mask 20-3
destination-ip flow mask 19-3, 33-2
destination-source flow mask 20-3
destination-source-ip flow mask 33-2
differentiated services codepoint
dir command 3-27
disabling
IP MLS
on router interfaces 19-7
IPX MLS
on switch interfaces 20-6
displaying IPX MLS VLAN statistics 20-12
distributed Cisco Express Forwarding
documentation, related xxiii
document organization xxi
drop thresholds
DSCP
duplex mode
configuring interface 6-7
E
EHSA
redundancy 4-1
Embedded CiscoView 1-2
enable mode 2-5
enabling
IP MLS, on router interfaces 19-7
IP MMLS
on router interfaces 18-11
IPX MLS, on router interfaces 20-6
encapsulation 7-4
enhanced high system availability
environmental monitoring
LED indications 38-4
SNMP traps 38-4
supervisor engine and switching modules 38-4
Syslog messages 38-4
using CLI commands 38-4
environment variables
BOOTLDR 3-25
(example) 3-27
setting 3-27
CONFIG_FILE 3-26
controlling 3-26
viewing 3-26
erase startup-config command
configuration files cleared with 3-14
EtherChannel
channel-group group
command 13-8
command example 13-8
configuration guidelines 13-5
configuring
Layer 2 13-8
configuring (tasks) 13-6
DFC restriction, see CSCdt27074 in the Release Notes
interface port-channel
command example 13-7
interface port-channel (command) 13-7
lacp system-priority
command example 13-10
Layer 2
configuring 13-8
load balancing
configuring 13-11
understanding 13-5
modes 13-3
PAgP
Understanding 13-3
port-channel interfaces 13-5
port-channel load-balance
command example 13-11
STP 13-5
understanding 13-1
EtherChannel Guard
Ethernet
setting port duplex 6-15
examples
configuration
software configuration register3-21to 3-24
configuring global parameters 3-3
extended range VLANs 9-2
Extensible Authentication Protocol over LAN 25-1
F
fabric switching mode
fastethernet 6-2
fiber-optic, detecting unidirectional links 31-1
filters
protocol
filters, NDE
clearing 33-17
destination host filter, specifying 33-16
destination TCP/UDP port, specifying 33-15
overview 33-6
protocol 33-16
source host and destination TCP/UDP port 33-16
firewall 23-5
Flash memory
configuration process 3-25
configuring router to boot from 3-25
loading system image from 3-24
security precautions 3-25
write protection 3-25
flow control 6-14
flow masks
IP MLS
destination-source-ip 33-2
interface-destination-source-ip 33-2
ip-flow 19-3
ip-full 33-3
ip-interface-full 33-3
source-destination-ip 19-3
IP MMLS and 18-3
IPX MLS
destination 20-3
destination-source 20-3
IPX MLS entries and 20-3
modes 20-3
flows
IP MLS 19-2
IP MMLS
completely and partially switched 18-4
IPX MLS 20-2
forward-delay time, STP 15-32
forwarding information base 24-5
frame distribution
See EtherChannel load balancing
G
gateway, configuring 3-12
global configuration mode 2-5
global parameters, configuring 3-3
H
hardware Layer 3 switching
guidelines 17-4
hello time, STP 15-32
history
CLI 2-3
I
I-BPDU 15-16
ICMP unreachable messages 23-1
IEEE 802.10 SAID (default) 9-6
IEEE 802.1Q
IEEE 802.1Q Ethertype
specifying custom 7-16
IEEE 802.1s
IEEE 802.1w
IEEE 802.3ad
IEEE 802.3Z Flow Control 6-14
IGMP
configuration guidelines 21-5
enabling 21-8
Internet Group Management Protocol 21-1
join messages 21-2
leave processing
enabling 21-10
queries 21-3
query interval
configuring 21-10
snooping
fast leave 21-5
joining multicast group 21-2
leaving multicast group 21-4
understanding 21-2
snooping querier
enabling 21-6
guidelines and restrictions 21-6
understanding 21-2
IGMPv3 18-10
IGMP v3lite 18-10
IGRP, configuring 3-7
interface
command 3-10
configuration mode 2-5
Layer 2 modes 7-4
number 6-2
parameters, configuring 3-8
interface-destination-source-ip flow mask 33-2
interface port-channel
command example 13-7
interface port-channel (command) 13-7
interfaces
configuring 6-2
configuring, duplex mode 6-7
configuring, speed 6-7
configururing, overview 6-1
descriptive name, adding 6-16
displaying information about 6-17
maintaining 6-17
monitoring 6-17
naming 6-16
range of 6-4
restarting 6-19
shutting down
task 6-19
interfaces range command 6-4
interfaces range macro command 6-6
Interior Gateway Routing Protocol
Internal Sub Tree Protocol
See ISTP 15-15
Internet Group Management Protocol
IP
default gateway, configuring 3-12
static routes 3-12
IP accounting, IP MMLS and 18-9
IP addresses
assigned by BOOTP protocol 3-14
set to default 3-14
IP CEF
topology (figure) 17-3
ip flow-export destination command 33-14
ip flow-export source command 33-13
ip-flow flow mask 19-3
ip-full flow mask 33-3
ip http server 1-1
ip-interface-full flow mask 33-3
IP MLS
cache
clearing entries 19-11
overview 19-3
cache, displaying
by destination address 19-10
by source address 19-10
by specific flow 19-11
cache entries, displaying 19-9
debugging, on switch 19-14
default configuration 19-6
disabling
on router interface 19-7
displaying interface configuration 19-7
displaying IP MLS VLAN statistics 19-13
enabling 19-6
enabling on router interface 19-7
flow masks
destination-source-ip 33-2
interface-destination-source-ip 33-2
ip flow 19-3
ip-full 33-3
ip-interface-full 33-3
source-destination-ip 19-3
flows 19-2
NDE
operational overview 19-5
overview 19-2
packet rewrite 19-4
router
disabling on interfaces 19-7
enabling on interfaces 19-7
statistics
displaying for MLS cache entries 19-12
displaying IP MLS statistics and contention tables 19-12
troubleshooting 19-14
IP MMLS
cache, overview 18-2
configuration guideline 18-8
debug commands 18-18
default configuration 18-7
enabling
on router interfaces 18-11
flow mask 18-3
flows
completely and partially switched 18-4
Layer 3 MLS cache 18-2
overview 18-2
packet rewrite 18-3
router
displaying interface information 18-14
enabling globally 18-10
enabling on interfaces 18-11
multicast routing table, displaying 18-16
PIM, enabling 18-10
switch
statistics, clearing 18-19
unsupported features 18-9
IP multicast
IGMP snooping and 21-7
overview 21-1
IP multicast MLS
ip multicast-routing command
enabling IP multicast 18-10
IP phone
configuring 11-5
ip pim command
enabling IP PIM 18-10
ip routing command
IP MLS restriction 19-6
IPsec 23-6
ip security command
IP MLS restriction 19-6
ip wccp version command 35-7
IPX MLS
access lists, flow masks and 20-3
aging-time 20-7
cache
overview 20-2
cache, displaying
all entries 20-9
by destination address 20-10
by source address 20-10
cache entries, displaying 20-9
clearing cache entries 20-13
configuration guidelines
interaction with other features 20-5
MTU 20-6
default configuration 20-5
disabling
on router interface 20-6
disabling on interfaces 20-6
displaying VLAN statistics 20-12
enabling 20-6
enabling on interface 20-6
enabling on interfaces 20-6
flow masks
access lists and 20-3
destination 20-3
destination-source 20-3
IPX MLS entries and 20-3
minimum 20-8
modes 20-3
overview 20-3
flows 20-2
operational overview 20-4
overview 20-2
packet rewrite 20-3
statistics
displaying for MLS cache entries 20-11
ipx routing command
IPX MLS restriction 20-6
ipx security command
IPX MLS restriction 20-6
ISL encapsulation 7-4
ISL trunks 7-2
isolated port 10-1
isolated VLANs 10-2
ISTP 15-15
J
join messages, IGMP 21-2
jumbo frames 6-10
K
keyboard shortcuts 2-3
L
LACP
system ID 13-4
Layer 2
configuring interfaces 7-7
access port 7-14
trunk 7-8
defaults 7-5
interface modes 7-4
show interfaces 6-13, 6-14, 7-7, 7-13
switching
understanding 7-1
trunks
understanding 7-2
VLAN
interface assignment 9-12
Layer 2 Interfaces
configuring 7-1
Layer 2 protocol tunneling
configuring Layer 2 tunnels 14-8
overview 14-7
Layer 3
IP MMLS and MLS cache 18-2
shortcuts
See IP MLS, IP MMLS, or IPX MLS
Layer 3 switched packet rewrite
CEF 17-2
Layer 3 switching
CEF 17-2
Layer 4 port operations (ACLs) 23-3
leave processing, IGMP
enabling 21-10
link negotiation 6-8
load balancing 15-15
logical operation unit
loop guard
LOU
description 23-4
determining maximum number of 23-4
M
MAC address
adding to BOOTP configuration file 3-14
MAC address-based blocking 23-8
mac move notification
configuring 23-22
main-cpu command 4-3, 5-6, 5-7
mapping 802.1Q VLANs to ISL VLANs 9-12
markdown
marking
match protocol 32-31
maximum aging time, STP 15-33
microflow policing rule
MLS
configuring 19-6
configuring threshold 18-11
MSFC
threshold 18-11
mls aging command
configuring IP MLS 33-11
mls flow command
configuring IP MLS 19-8, 33-9, 33-10
mls flow ipx command
configuring IPX MLS flow mask 20-8
mls ip multicast command
enabling IP MMLS 18-11, 18-12, 18-13, 18-14
mls ipx command
enabling IPX MLS on a router interface 20-6
mls nde flow command
configuring a host and port filter 33-16
configuring a host flow filter 33-16
configuring a port filter 33-15
configuring a protocol flow filter 33-16
mls nde src_address command 33-8
monitoring
traffic suppression 26-5
MST 15-15
boundary ports 15-19
configuration 15-18
configuring 15-34
edge ports 15-20
enabling 15-34
hop count 15-20
instances 15-18
interoperability 15-16
interoperability with PVST+ 15-16
link type 15-20
master 15-19
message age 15-20
MSTP
M-record 15-16
M-tree 15-16
MTU
IPX MLS and 20-6
MTU size (default) 9-6
multicast
broadcast suppression 29-3
IGMP snooping and 21-7
NetFlow statistics 33-1
non-RPF 18-5
overview 21-1
RGMP 22-1
router, specifying port for 21-11
multicast, displaying routing table 18-16
multicast groups
joining 21-2
leaving 21-4
multicast multilayer switching
multicast RPF 18-2
multicast storms
multilayer switch feature card
Multilayer Switching
See IP MLS, IP MMLS, or IPX MLS
multiple forwarding paths 15-15
Multiple Spanning Tree
Multiple Spanning Tree Protocol
See MSTP 15-15
N
native vlan 7-11
NDE
configuration, displaying 33-17
displaying configuration 33-17
enabling 33-8
filters
clearing 33-17
destination host, specifying 33-16
destination TCP/UDP port, specifying 33-15
overview 33-6
protocol, specifying 33-16
source host and destination TCP/UDP port, specifying 33-16
multicast 33-1
overview 33-1
specifying
destination host filters 33-16
destination TCP/UDP port filters 33-16
protocol filters 33-16
NDE configuration, default 33-7
NetFlow Data Export
Network-Based Application Recognition 32-1
network fault tolerance 15-15
network management
configuring 30-1
non-RPF multicast 18-5
nonvolatile random-access memory
normal-range VLANs
NVRAM
saving settings 3-11
O
OIR 6-17
online insertion and removal
operating system image
out of profile
P
packet rewrite
CEF 17-2
IP MLS and 19-4
IP MMLS and 18-3
IPX MLS and 20-3
packets
multicast 23-11
PAgP
understanding 13-3
passwords
configuring
enable password 3-15
enable secret 3-15
line password 3-16
static enable password 3-15
TACACS+ 3-16
TACACS+ (caution) 3-17
encrypting 3-17
(caution) 3-17
recovering lost enable passwords 3-19
PBR 12-2
PFC2
NetFlow
table, displaying entries 17-6
PIM, IP MMLS and 18-10
police command 32-46
policing
policy 32-38
policy-based routing
Policy Feature Card
policy map 32-42
attaching to an interface 32-49
policy-map command 32-38, 32-42
Port Aggregation Protocol
port-based authentication
authentication server
defined 25-2
RADIUS server 25-2
client, defined 25-2
configuration guidelines 25-6
configuring
initializing authentication of a client 25-11
manual reauthentication of a client 25-11
quiet period 25-11
RADIUS server 25-10
RADIUS server parameters on the switch 25-8
switch-to-authentication-server retransmission time 25-13
switch-to-client EAP-request frame retransmission time 25-13
switch-to-client frame-retransmission number 25-14
switch-to-client retransmission time 25-12
default configuration 25-5
described 25-1
device roles 25-2
displaying statistics 25-15
EAPOL-start frame 25-3
EAP-request/identity frame 25-3
EAP-response/identity frame 25-3
enabling
802.1X authentication 25-7, 25-8
periodic reauthentication 25-10
encapsulation 25-2
initiation and message exchange 25-3
method lists 25-7
ports
authorization state and dot1x port-control command 25-4
authorized and unauthorized 25-4
resetting to default values 25-15
switch
as proxy 25-2
RADIUS client 25-2
topologies, supported 25-4
port-based QoS features
port-channel
port-channel load-balance
port cost, STP 15-29
port debounce timer
disabling 6-15
displaying 6-15
enabling 6-15
PortFast
PortFast BPDU filtering
See STP PortFast BPDU filtering
port negotiation 6-8
port priority, STP 15-27
ports
secure 26-1
setting the debounce timer 6-15
port security
aging 26-4
configuring 26-3
default configuration 26-2
described 26-1
displaying 26-6
violations 26-2
with other features 26-2
power management
enabling/disabling redundancy 38-2
overview 38-1
powering modules up or down 38-3
system power requirements, nine-slot chassis 38-4
primary VLANs 10-2
priority
private VLANs 10-1
community VLANs 10-2
configuration guidelines 10-2
configuring 10-4
host ports 10-8
pomiscuous ports 10-9
routing secondary VLAN ingress traffic 10-7
secondary VLANs with primary VLANs 10-6
VLANs as private 10-5
isolated VLANs 10-2
ports
community 10-1
isolated 10-1
promiscuous 10-1
primary VLANs 10-2
secondary VLANs 10-2
trunks 10-2
privileged EXEC mode 2-5
privileges
changing default 3-18
configuring
multiple levels 3-17
privilege level 3-18
exiting 3-19
logging in 3-18
procedures
global parameters, configuring3-3to 3-8
interfaces, configuring3-8to 3-9
using configuration mode 3-10
promiscuous ports 10-1
protocol filtering
configuring 27-3
overview 27-1
protocol tunneling
See Layer 2 protocol tunneling 14-7
pruning, VTP
PVLANs
PVRST
See Rapid-PVST 15-14
Q
QoS ACL 32-18
attaching 32-21
QoS classification (definition) 32-4
QoS congestion avoidance
definition 32-4
receive queue 32-14
QoS CoS
and ToS final L3 Switching Engine values 32-21
and ToS final values from L3 Switching Engine 32-21
definition 32-3
port value, configuring 32-54
QoS default configuration 32-25
QoS definitions 32-3
QoS drop thresholds
QoS DSCP
definition 32-4
internal values 32-17
maps, configuring 32-66
QoS dual transmit queue
thresholds
configuring 32-58
QoS Ethernet egress port
feature summary 32-12
scheduling 32-22
scheduling, congestion avoidance, and marking 32-10, 32-21
QoS Ethernet ingress port
classification, marking, scheduling, and congestion avoidance 32-7
feature summary 32-11
marking, scheduling, congestion avoidance, and classification 32-12
scheduling 32-14
scheduling and congestion avoidance 32-13
QoS feature set summary 32-11
QoS final L3 Switching Engine CoS and ToS values 32-21
QoS internal DSCP values 32-17
QoS L3 Switching Engine
classification, marking, and policing 32-8, 32-16
feature summary 32-11
QoS labels (definition) 32-3
QoS mapping
CoS values to DSCP values 32-66
DSCP markdown values 32-25, 32-68
DSCP values to CoS values 32-67
IP precedence values to DSCP values 32-67
QoS markdown 32-19
QoS marking 32-24
definition 32-4</