- Index
- Preface
- Overview
- Using the Command-Line Interface
- Assigning the Switch IP Address and Default Gateway
- Configuring Cisco IOS Configuration Engine
- Managing Switch Stacks
- Clustering Switches
- Administering the Switch
- Configuring SDM Templates
- Managing Catalyst 3750-X Stack Power
- Configuring Switch-Based Authentication
- Configuring IEEE 802.1x Port-Based Authentication
- Configuring Web-Based Authentication
- Configuring Interface Characteristics
- Configuring VLANs
- Configuring VTP
- Configuring Voice VLANs
- Configuring Private VLANs
- Configuring IEEE 802.1Q and Layer 2 Protocol Tunneling
- Configuring STP
- Configuring MSTP
- Configuring Optional Spanning-Tree Features
- Configuring Flex Links
- Configuring DHCP Features and IP Source Guard
- Configuring Dynamic ARP Inspection
- Configuring IGMP Snooping and MVR
- Configuring IPv6 MLD Snooping
- Configuring Port-Based Traffic Control
- Configuring CDP
- Configuring LLDP, LLDP-MED, and Wired Location Service
- Configuring UDLD
- Configuring SPAN and RSPAN
- Configuring RMON
- Configuring System Message Logging and Smart Logging
- Configuring SNMP
- Configuring Embedded Event Manager
- Configuring Network Security with ACLs
- Configuring IPv6 ACLs
- Configuring QoS
- Configuring EtherChannels
- Configuring TelePresence E911 IP Phone Support
- Configuring IP Unicast Routing
- Configuring IPv6 Unicast Routing
- Configuring HSRP and VRRP
- Configuring Cisco IOS IP SLAs Operations
- Configuring Enhanced Object Tracking
- Configuring WCCP
- Configuring IP Multicast Routing
- Configuring MSDP
- Configuring Fallback Bridging
- Troubleshooting
- Configuring Online Diagnostics
- Working with the Cisco IOS File System, Configuration Files, and Software Images
- Unsupported Commands in Cisco IOS Release 12.2(58)SE
Index
10-Gigabit Ethernet interfaces 13-6
802.1AE 11-32
802.1x-REV 11-33
AAA down policy, NAC Layer 2 IP validation 1-12
abbreviating commands 2-3
ABRs 41-27
AC (command switch) 6-10
access-denied response, VMPS 14-28
applying IPv4 ACLs to interfaces 36-22
Layer 3 36-22
access groups, applying IPv4 ACLs to interfaces 36-22
clusters, switch 6-13
command switches 6-11
member switches 6-13
switch clusters 6-13
accessing stack members 5-30
and Layer 2 protocol tunneling 18-11
defined 13-3
in switch clusters 6-9
access template 8-2
with 802.1x 11-52
with IEEE 802.1x 11-14
with RADIUS 10-34
with TACACS+ 10-11, 10-17
and QoS 37-8
defined 36-2
Ethernet 36-2
IP 36-2
ACEs 36-2
on bridged packets 36-42
on multicast packets 36-43
on routed packets 36-43
on switched packets 36-41
time ranges to 36-18
to an interface 36-21, 38-7
to QoS 37-7
classifying traffic for QoS 37-49
comments in 36-20
compiling 36-24
defined 36-2, 36-8
examples of 36-24, 37-49
extended IP, configuring for QoS classification 37-50
creating 36-11
matching criteria 36-8
hardware and software handling 36-23
creating 36-8
fragments and QoS guidelines 37-39
implicit deny 36-11, 36-15, 36-18
implicit masks 36-11
matching criteria 36-8
undefined 36-23
applying to interfaces 36-21
creating 36-8
matching criteria 36-8
named 36-16
numbers 36-9
terminal lines, setting on 36-20
unsupported features 36-7
and stacking 38-3
applying to interfaces 38-7
configuring 38-4, 38-5
displaying 38-8
interactions with other features 38-4
limitations 38-3
matching criteria 38-3
named 38-3
precedence of 38-2
supported 38-2
unsupported features 38-3
Layer 4 information in 36-41
logging messages 36-9
MAC extended 36-29, 37-53
matching 36-8, 36-22
monitoring 36-44, 38-8
IPv4 36-16
IPv6 38-3
names 38-4
number per QoS class map 37-39
port 36-3, 38-2
precedence of 36-3
QoS 37-7, 37-49
resequencing entries 36-16
router 36-3, 38-2
router ACLs and VLAN map configuration guidelines 36-40
standard IP, configuring for QoS classification 37-49, 37-51
creating 36-10
matching criteria 36-8
support for 1-11
support in hardware 36-23
time ranges 36-18
types supported 36-2
IPv4 36-7
IPv6 38-3
using router ACLs with VLAN maps 36-40
configuration guidelines 36-33
configuring 36-32
active link 22-4, 22-5, 22-6
active links 22-2
active router 43-2
active traffic monitoring, IP SLAs 44-1
address aliasing 26-2
displaying the MAC address table 7-23
accelerated aging 19-9
changing the aging time 7-14
default aging 19-9
defined 7-12
learning 7-13
removing 7-15
IPv6 42-2
MAC, discovering 7-24
group address range 47-3
STP address management 19-8
adding and removing 7-20
defined 7-12
address resolution 7-24, 41-10
adjacency tables, with CEF 41-92
defined 41-104
OSPF 41-35
routing protocol defaults 41-94
CDP 27-1
LLDP 29-2
RIP 41-21
aggregatable global unicast addresses 42-3
aggregate addresses, BGP 41-62
aggregate policers 37-71
aggregate policing 1-14
aging, accelerating 19-9
for MSTP 20-24
for STP 19-9, 19-23
MAC address table 7-14
for MSTP 20-24, 20-25
for STP 19-23, 19-24
alarms, RMON 32-3
allowed-VLAN list 14-20
application engines, redirecting traffic to 46-1
IS-IS 41-67
ISO IGRP 41-67
configuring 41-11
defined 1-7, 7-24, 41-10
encapsulation 41-11
static cache configuration 41-11
address resolution 7-24
managing 7-24
ASBRs 41-27
AS-path filters, BGP 41-56
asymmetrical links, and IEEE 802.1Q tunneling 18-4
vendor-proprietary 10-36
vendor-specific 10-35
attribute-value pairs 11-20
EIGRP 41-43
HSRP 43-10
local mode with AAA 10-43
open1x 11-29
key 10-27
login 10-29
defined 10-11
key 10-13
login 10-14
See also port-based authentication
authentication keys, and routing protocols 41-105
CLI commands 11-9
compatibility with older 802.1x CLI commands 11-9 to 11-10
overview 11-7
single session ID 11-32
authoritative time source, described 7-2
with RADIUS 10-33
with TACACS+ 10-11, 10-16
authorized ports with IEEE 802.1x 11-10
autoconfiguration 4-3
auto enablement 11-31
automatic advise (auto-advise) in switch stacks 5-13
automatic copy (auto-copy) in switch stacks 5-12
beyond a noncandidate device 6-8
brand new switches 6-9
connectivity 6-5
different VLANs 6-7
management VLANs 6-7
non-CDP-capable devices 6-6
noncluster-capable devices 6-6
routed ports 6-8
in switch clusters 6-5
automatic extraction (auto-extract) in switch stacks 5-12
automatic recovery, clusters 6-10
automatic upgrades (auto-upgrade) in switch stacks 5-12
configuring 13-31
described 13-31
duplex mode 1-4
interface configuration guidelines 13-28
mismatches 50-13
autonomous system boundary routers
autonomous systems, in BGP 41-50
Auto-RP, described 47-7
autosensing, port speed 1-4
autostate exclude 13-6
availability, features 1-9
described 21-7
disabling 21-17
enabling 21-16
support for 1-9
backup links 22-2
backup static routing, configuring 45-12
login 7-12
message-of-the-day login 7-11
default configuration 7-10
when displayed 7-10
Berkeley r-tools replacement 10-54
aggregate addresses 41-62
aggregate routes, configuring 41-62
CIDR 41-62
clear commands 41-65
community filtering 41-59
configuring neighbors 41-60
default configuration 41-47
described 41-47
enabling 41-50
monitoring 41-65
multipath support 41-54
neighbors, types of 41-50
path selection 41-54
peers, configuring 41-60
prefix filtering 41-58
resetting sessions 41-52
route dampening 41-64
route maps 41-56
route reflectors 41-63
routing domain confederation 41-63
routing session with multi-VRF CE 41-86
show commands 41-65
supernets 41-62
support for 1-15
Version 4 41-47
binding cluster group and HSRP group 43-12
See DHCP, Cisco IOS server database
See DHCP snooping binding database
address, Cisco IOS DHCP server 23-6
DHCP snooping database 23-6
IP source guard 23-16
See DHCP snooping binding database
blocking packets 28-7
Boolean expressions in tracked lists 45-4
boot loader, function of 4-2
boot process 4-2
manually 4-19
specific image 4-20
accessing 4-21
described 4-2
environment variables 4-21
prompt 4-21
trap-door mechanism 4-2
bootstrap router (BSR), described 47-7
error-disabled state 21-2
filtering 21-3
RSTP format 20-12
described 21-3
disabling 21-15
enabling 21-14
support for 1-9
described 21-2
disabling 21-14
enabling 21-13
support for 1-9
bridged packets, ACLs on 36-42
broadcast flooding 41-18
directed 41-15
flooded 41-15
broadcast storm-control command 28-4
broadcast storms 28-1, 41-15
cables, monitoring for unidirectional links 30-1
automatic discovery 6-5
defined 6-4
requirements 6-4
See also command switch, cluster standby group, and member switch
configuring 10-51
defined 10-49
and trusted boundary 37-45
automatic discovery in switch clusters 6-5
configuring 27-2
default configuration 27-2
defined with LLDP 29-1
described 27-1
disabling for routing device 27-4
on an interface 27-4
on a switch 27-4
Layer 2 protocol tunneling 18-8
monitoring 27-6
overview 27-1
power negotiation extensions 13-7
support for 1-7
switch stack considerations 27-2
transmission timer and holdtime, setting 27-2
updates 27-2
defined 41-91
distributed 41-92
IPv6 42-20
as IGMP snooping learning method 26-9
enabling server support 47-45
joining multicast group 26-3
overview 47-9
server support only 47-9
switch support of 1-5
CIDR 41-62
CipherSuites 10-50
Cisco 7960 IP Phone 16-1
Cisco Group Management Protocol
Cisco intelligent power management 13-7
See DHCP, Cisco IOS DHCP server
Cisco IOS IP SLAs 44-2
Cisco Redundant Power System 2300
configuring 13-43
managing 13-43
attribute-value pairs for downloadable ACLs 11-20
attribute-value pairs for redirect URL 11-20
Cisco StackWise Plus technology 1-3
CiscoWorks 2000 1-6, 34-4
CISP 11-31
civic location 29-3
classless routing 41-8
configuring 37-54
described 37-8
clearing interfaces 13-50
abbreviating commands 2-3
command modes 2-1
configuration logging 2-4
described 1-6
enabling and disabling 2-6
keystroke editing 2-7
wrapped lines 2-8
error messages 2-4
filtering command output 2-9
getting help 2-3
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
managing clusters 6-16
no and default forms of commands 2-4
Client Information Signalling Protocol
client mode, VTP 15-3
client processes, tracking 45-1
accessing 6-13
automatic discovery 6-5
automatic recovery 6-10
benefits 1-2
compatibility 6-4
described 6-1
LRE profile considerations 6-16
through CLI 6-16
through SNMP 6-17
planning 6-4
automatic discovery 6-5
automatic recovery 6-10
CLI 6-16
host names 6-13
IP addresses 6-13
LRE profiles 6-16
passwords 6-14
RADIUS 6-16
SNMP 6-14, 6-17
switch stacks 6-14
TACACS+ 6-16
See also candidate switch, command switch, cluster standby group, member switch, and standby command switch
and HSRP group 43-12
automatic recovery 6-12
considerations 6-11
defined 6-2
requirements 6-3
virtual IP address 6-11
configID, deviceID, hostname 3-3
configuration service 3-2
described 3-1
event service 3-3
described 3-5
enabling automated configuration 3-6
enabling configuration agent 3-9
enabling event agent 3-8
management functions 1-6
CoA Request Commands 10-23
Coarse Wave Division Multiplexer
command modes 2-1
abbreviating 2-3
no and default 2-4
commands, setting privilege levels 10-8
accessing 6-11
active (AC) 6-10
configuration conflicts 50-12
defined 6-2
passive (PC) 6-10
password privilege levels 6-17
priority 6-10
from command-switch failure 6-10, 50-9
from lost member connectivity 50-12
redundant 6-10
with another switch 50-11
with cluster member 50-9
requirements 6-3
standby (SC) 6-10
See also candidate switch, cluster standby group, member switch, and standby command switch
see single session ID 11-32
community list, BGP 41-59
community ports 17-2
configuring 6-14, 34-8
for cluster switches 34-4
in clusters 6-14
overview 34-4
SNMP 6-14
community VLANs 17-2, 17-3
compatibility, feature 28-12
configurable leave timer, IGMP 26-6
defaults 1-19
Express Setup 1-2
configuration conflicts, recovering from lost member connectivity 50-12
configuration examples, network 1-22
archiving A-21
clearing the startup configuration A-20
creating and using, guidelines for A-10
creating using a text editor A-11
deleting a stored configuration A-20
described A-9
automatically 4-18
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-14
using RCP A-18
using TFTP A-12
invalid combinations when copying A-6
limiting TFTP server access 34-17
obtaining with DHCP 4-9
password recovery disable considerations 10-5
replacing and rolling back, guidelines for A-22
replacing a running configuration A-20, A-21
rolling back a running configuration A-20, A-22
specifying the filename 4-19
system contact and location information 34-16
types and location A-10
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-16
using RCP A-19
using TFTP A-13
configuration guidelines, multi-VRF CE 41-79
configuration logging 2-4
configuration replacement A-20
configuration rollback A-20, A-21
configuration settings, saving 4-16
configure terminal command 13-18
configuring multicast VRFs 41-85
configuring port-based authentication violation modes 11-42 to 11-43
configuring small-frame arrival rate 28-5
Configuring VACL Logging 36-39
conflicts, configuration 50-12
connections, secure remote 10-44
connectivity problems 50-15, 50-16, 50-18
consistency checks in VTP Version 2 15-5
console media type 13-14
RJ-45 13-13
USB 13-13
console port, connecting to 2-10
control protocol, IP SLAs 44-4
corrupted software, recovery steps with Xmodem 50-2
in Layer 2 frames 37-2
override priority 16-6
trust priority 16-6
CoS input queue threshold map for QoS 37-18
CoS output queue threshold map for QoS 37-21
CoS-to-DSCP map for QoS 37-73
counters, clearing interface 13-50
CPU utilization, troubleshooting 50-29
crashinfo file 50-24
critical authentication, IEEE 802.1x 11-55
critical VLAN 11-23
configuration guidelines 39-13
on Layer 2 interfaces 39-13
on Layer 3 physical interfaces 39-16
described 39-3
illustration 39-4
support for 1-9
described 21-5
disabling 21-16
enabling 21-16
fast-convergence events 21-7
Fast Uplink Transition Protocol 21-6
normal-convergence events 21-7
support for 1-9
switch stack considerations 5-3, 5-17
customer edge devices 41-77
customizeable web pages, web-based authentication 12-6
CWDM SFPs 1-35
daylight saving time 7-6
dCEF in the switch stack 41-91
enabling all system diagnostics 50-21
enabling for a specific feature 50-21
redirecting error message output 50-22
using commands 50-20
default commands 2-4
802.1x 11-36
auto-QoS 37-24
banners 7-10
BGP 41-47
booting 4-18
CDP 27-2
DHCP 23-8
DHCP option 82 23-8
DHCP snooping 23-8
DHCP snooping binding database 23-9
DNS 7-9
dynamic ARP inspection 24-5
EIGRP 41-39
EtherChannel 39-11
Ethernet interfaces 13-27
fallback bridging 49-3
Flex Links 22-8
HSRP 43-5
IEEE 802.1Q tunneling 18-4
IGMP 47-39
IGMP filtering 26-24
IGMP snooping 25-6, 26-7
IGMP throttling 26-25
initial switch information 4-3
IP addressing, IP routing 41-6
IP multicast routing 47-11
IP SLAs 44-6
IP source guard 23-18
IPv6 42-11
IS-IS 41-68
Layer 2 interfaces 13-27
Layer 2 protocol tunneling 18-11
LLDP 29-5
MAC address table 7-14
MAC address-table move update 22-8
MSDP 48-4
MSTP 20-15
multi-VRF CE 41-79
MVR 26-20
optional spanning-tree configuration 21-12
OSPF 41-28
password and privilege level 10-2
PIM 47-11
private VLANs 17-6
RADIUS 10-27
RIP 41-21
RMON 32-3
RSPAN 31-12
SDM template 8-5
SNMP 34-6
SPAN 31-12
SSL 10-51
standard QoS 37-37
STP 19-12
switch stacks 5-24
system message logging 33-4
system name and prompt 7-8
TACACS+ 10-13
UDLD 30-4
VLAN, Layer 2 Ethernet interfaces 14-18
VLANs 14-7
VMPS 14-29
voice VLAN 16-3
VTP 15-9
WCCP 46-5
default gateway 4-15, 41-13
default networks 41-95
default routes 41-95
default routing 41-3
default web-based authentication configuration
802.1X 12-9
deleting VLANs 14-9
denial-of-service attack 28-1
description command 13-36
designing your network, examples 1-22
desktop template 5-10
destination-IP address-based forwarding, EtherChannel 39-9
destination-MAC address forwarding, EtherChannel 39-9
detecting indirect link failures, STP 21-8
device discovery protocol 27-1, 29-1
benefits 1-2
described 1-3, 1-6
in-band management 1-8
configuring 23-14
default configuration 23-9
described 23-6
relay agent 23-11
server 23-10
client request message exchange 4-4
client side 4-4
DNS 4-8
relay device 4-8
server side 4-7
server-side 23-10
TFTP server 4-7
example 4-10
for IP address information 4-7
for receiving the configuration file 4-7
overview 4-3
relationship to BOOTP 4-4
relay support 1-7, 1-16
support for 1-7
DHCP-based autoconfiguration and image update
configuring 4-11 to 4-14
understanding 4-5 to 4-6
See DHCP snooping binding database
See DHCP snooping binding database
DHCP object tracking, configuring primary interface 45-11
circuit ID suboption 23-5
configuration guidelines 23-9
default configuration 23-8
displaying 23-16
forwarding address, specifying 23-11
helper address 23-11
overview 23-3
circuit ID 23-5
remote ID 23-5
remote ID suboption 23-5
DHCP server port-based address allocation
configuration guidelines 23-27
default configuration 23-27
described 23-26
displaying 23-29, 24-13
enabling 23-27
reserved addresses 23-28
accepting untrusted packets form edge switch 23-3, 23-13
and private VLANs 23-14
See DHCP snooping binding database
configuration guidelines 23-9
default configuration 23-8
message exchange process 23-4
option 82 data insertion 23-3
trusted interface 23-2
untrusted interface 23-2
untrusted messages 23-2
DHCP snooping binding database
adding bindings 23-15
format 23-7
location 23-6
bindings 23-6
clearing agent statistics 23-15
configuration guidelines 23-9
configuring 23-15
default configuration 23-8, 23-9
binding file 23-15
bindings 23-15
database agent 23-15
described 23-6
enabling 23-15
entry 23-6
renewing database 23-15
delay value 23-15
timeout value 23-15
See DHCP snooping binding database
configuration guidelines 42-16
default configuration 42-16
described 42-6
enabling client function 42-18
enabling DHCPv6 server function 42-16
diagnostic schedule command 51-2
Differentiated Services architecture, QoS 37-2
Differentiated Services Code Point 37-2
Diffusing Update Algorithm (DUAL) 41-37
directed unicast requests 1-7
changing A-4
creating and removing A-5
displaying the working A-4
Distance Vector Multicast Routing Protocol
distance-vector protocols 41-3
distribute-list command 41-104
and DHCP-based autoconfiguration 4-8
default configuration 7-9
displaying the configuration 7-10
in IPv6 42-4
overview 7-8
setting up 7-9
support for 1-7
DNS-based SSM mapping 47-18, 47-20
DNS 7-8
VTP 15-9
domains, ISO IGRP routing 41-67
dot1q-tunnel switchport mode 14-16
IEEE 802.1Q tunneling 18-2
Layer 2 protocol tunneling 18-10
downloadable ACL 11-18, 11-20, 11-62
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-14
using RCP A-18
using TFTP A-12
deleting old image A-30
preparing A-28, A-31, A-36
reasons for A-25
using CMS 1-3
using FTP A-32
using HTTP 1-3, A-25
using RCP A-37
using TFTP A-28
using the device manager or Network Assistant A-25
drop threshold for Layer 2 protocol packets 18-11
configuring 42-14
described 42-4
IPv6 42-4
DSCP 1-14, 37-2
DSCP input queue threshold map for QoS 37-18
DSCP output queue threshold map for QoS 37-21
DSCP-to-CoS map for QoS 37-76
DSCP-to-DSCP-mutation map for QoS 37-77
DSCP transparency 37-46
DTP 1-10, 14-15
dual-action detection 39-6
DUAL finite state machine, EIGRP 41-38
dual IPv4 and IPv6 templates 8-2, 42-6
IPv4 and IPv6 42-6
SDM templates supporting 42-6
configuring a summary address 47-59
disabling 47-61
connecting PIM domain to DVMRP router 47-51
enabling unicast routing 47-54
with Cisco devices 47-49
with Cisco IOS software 47-9
mrinfo requests, responding to 47-54
advertising the default route to 47-53
discovery with Probe messages 47-49
displaying information 47-54
prevent peering with nonpruning 47-57
rejecting nonpruning 47-55
overview 47-9
adding a metric offset 47-62
advertising all 47-61
advertising the default route to neighbors 47-53
caching DVMRP routes learned in report messages 47-55
changing the threshold for syslog messages 47-58
favoring one over another 47-62
limiting the number injected into MBONE 47-58
limiting unicast route advertisements 47-49
routing table 47-9
source distribution tree, building 47-9
support for 1-16
configuring 47-51
displaying neighbor information 47-54
characteristics 14-3
configuring 14-30
defined 13-3
ARP cache poisoning 24-1
ARP requests, described 24-1
ARP spoofing attack 24-1
log buffer 24-16
statistics 24-16
configuration guidelines 24-6
ACLs for non-DHCP environments 24-9
in DHCP environments 24-7
log buffer 24-14
rate limit for incoming ARP packets 24-4, 24-11
default configuration 24-5
denial-of-service attacks, preventing 24-11
described 24-1
DHCP snooping binding database 24-2
statistics 24-16
error-disabled state for exceeding rate limit 24-4
function of 24-2
interface trust states 24-3
clearing 24-16
configuring 24-14
logging of dropped packets, described 24-5
man-in-the middle attack, described 24-2
network security issues and interface trust states 24-3
priority of ARP ACLs and DHCP snooping entries 24-4
configuring 24-11
described 24-4
error-disabled state 24-4
clearing 24-16
displaying 24-16
validation checks, performing 24-13
dynamic auto trunking mode 14-16
dynamic desirable trunking mode 14-16
Dynamic Host Configuration Protocol
See DHCP-based autoconfiguration
described 14-28
reconfirming 14-31
troubleshooting 14-33
types of connections 14-30
dynamic routing 41-3
ISO CLNS 41-66
EBGP 41-46
enabling and disabling 2-6
keystrokes used 2-7
wrapped lines 2-8
EEM 3.2 35-5
authentication 41-43
components 41-38
configuring 41-41
default configuration 41-39
definition 41-37
interface parameters, configuring 41-42
monitoring 41-45
stub routing 41-44
support for 1-15
EIGRP IPv6 42-8
ELIN location 29-3
3.2 35-5
actions 35-4
configuring 35-1, 35-6
displaying information 35-8
environmental variables 35-5
event detectors 35-3
policies 35-4
registering and defining an applet 35-6
registering and defining a TCL script 35-7
understanding 35-1
enable password 10-3
enable secret password 10-3
encryption, CipherSuite 10-50
encryption for passwords 10-3
encryption keying 11-32
encryption keys, MKA 11-33
backup static routing 45-12
defined 45-1
DHCP primary interface 45-11
HSRP 45-7
IP routing state 45-2
IP SLAs 45-9
line-protocol state 45-2
network monitoring with IP SLAs 45-11
routing policy, configuring 45-12
static route primary interface 45-10
tracked lists 45-3
enhanced object tracking static routing 45-10
environmental variables, embedded event manager 35-5
environment variables, function of 4-22
equal-cost routing 1-15, 41-93
error-disabled state, BPDU 21-2
error messages during command entry 2-4
automatic creation of 39-5, 39-7
binding physical and logical interfaces 39-4
numbering of 39-4
configuration guidelines 39-12
Layer 2 interfaces 39-13
Layer 3 physical interfaces 39-16
Layer 3 port-channel logical interfaces 39-15
default configuration 39-11
described 39-2
displaying status 39-22
forwarding methods 39-8, 39-18
IEEE 802.3ad, described 39-7
with STP 39-12
with VLANs 39-12
described 39-7
displaying status 39-22
hot-standby ports 39-20
interaction with other features 39-8
modes 39-7
port priority 39-22
system priority 39-21
Layer 3 interface 41-5
load balancing 39-8, 39-18
logical interfaces, described 39-4
aggregate-port learners 39-19
described 39-5
displaying status 39-22
interaction with other features 39-7
interaction with virtual switches 39-6
learn method and priority configuration 39-19
modes 39-6
support for 1-5
with dual-action detection 39-6
described 39-4
numbering of 39-4
port groups 13-6
stack changes, effects of 39-10
support for 1-5
described 21-10
disabling 21-17
enabling 21-17
active link 13-23
and routing 13-24
and routing protocols 13-24
and TFTP 13-26
configuring 13-25
connecting to 2-10
default setting 13-24
described 13-23
for network management 13-23
specifying 13-25
supported features 13-25
unsupported features 13-25
Ethernet management port, internal
and routing 13-24
and routing protocols 13-24
unsupported features 13-25
adding 14-8
defaults and ranges 14-7
modifying 14-8
EUI 42-3
event detectors, embedded event manager 35-3
events, RMON 32-3
network configuration 1-22
expedite queue for QoS 37-89
Express Setup 1-2
See also getting started guide
extended crashinfo file 50-24
configuration guidelines 14-11
configuring 14-10
creating 14-12
creating with an internal VLAN ID 14-13
defined 14-1
MSTP 20-18
STP 19-4, 19-16
Extensible Authentication Protocol over LAN 11-2
external neighbors, BGP 41-50
failover support 1-9
and protected ports 49-4
creating 49-4
described 49-2
function of 49-2
number supported 49-4
removing 49-5
configuration guidelines 49-4
connecting interfaces with 13-13
default configuration 49-3
described 49-1
flooding packets 49-2
forwarding packets 49-2
overview 49-1
protocol, unsupported 49-4
stack changes, effects of 49-3
disabling on an interface 49-9
forward-delay interval 49-8
hello BPDU interval 49-8
interface priority 49-6
keepalive messages 19-2
maximum-idle interval 49-9
path cost 49-7
VLAN-bridge spanning-tree priority 49-6
VLAN-bridge STP 49-2
support for 1-15
SVIs and routed ports 49-1
unsupported protocols 49-4
VLAN-bridge STP 19-11
Fast Convergence 22-3
Fast Uplink Transition Protocol 21-6
features, incompatible 28-12
FIB 41-92
fiber-optic, detecting unidirectional links 30-1
description 50-25
location 50-25
copying A-5
crashinfo, description 50-24
deleting A-6
displaying the contents of A-8
description 50-25
location 50-25
creating A-7
displaying the contents of A-7
extracting A-8
image file format A-26
displaying available file systems A-2
displaying file information A-3
local file system names A-1
network file system names A-5
setting the default A-3
in a VLAN 36-32
IPv6 traffic 38-4, 38-7
non-IP traffic 36-29
show and more command output 2-9
filtering show and more command output 2-9
flash device, number of A-1
flexible authentication ordering
configuring 11-66
overview 11-28
Flex Link Multicast Fast Convergence 22-3
configuring 22-8, 22-9
configuring preferred VLAN 22-11
configuring VLAN load balancing 22-10
default configuration 22-8
description 22-1
link load balancing 22-2
monitoring 22-14
VLANs 22-2
flooded traffic, blocking 28-8
flow-based packet classification 1-14
QoS classification 37-7
QoS egress queueing and scheduling 37-19
QoS ingress queueing and scheduling 37-16
QoS policing and marking 37-11
configuring 13-30
described 13-30
MSTP 20-24
STP 19-23
forwarding nonroutable protocols 49-1
downloading A-14
overview A-13
preparing the server A-14
uploading A-16
deleting old image A-34
downloading A-32
preparing the server A-31
uploading A-34
general query 22-5
Generating IGMP Reports 22-3
get-next-request operation 34-4
get-request operation 34-4
global leave, IGMP 26-13
guest VLAN and IEEE 802.1x 11-21
guide mode 1-3
See device manager and Network Assistant
hardware limitations and Layer 3 interfaces 13-37
MSTP 20-23
STP 19-22
help, for the command line 2-3
hierarchical policy maps 37-9
configuration guidelines 37-40
configuring 37-63
described 37-12
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
history table, level and number of syslog messages 33-10
host modes, MACsec 11-34
host names in clusters 6-13
configuring 17-11
kinds of 17-2
hosts, limit on dynamic ports 14-33
HP OpenView 1-6
authentication string 43-10
automatic cluster recovery 6-12
binding to cluster group 43-12
cluster standby group considerations 6-11
command-switch redundancy 1-2, 1-9
configuring 43-5
default configuration 43-5
definition 43-1
guidelines 43-6
monitoring 43-13
object tracking 45-7
overview 43-1
priority 43-8
routing redundancy 1-15
support for ICMP redirect messages 43-12
switch stack considerations 43-5
timers 43-10
tracking 43-8
See also clusters, cluster standby group, and standby command switch
configuring 42-26
guidelines 42-25
HTTP(S) Over IPv6 42-9
configuring 10-52
described 10-48
self-signed certificate 10-49
HTTP secure server 10-48
IBPG 41-46
IPv6 42-4
redirect messages 41-13
support for 1-16
time-exceeded messages 50-18
traceroute and 50-18
unreachable messages 36-22
unreachable messages and IPv6 38-4
unreachables and ACLs 36-23
configuring 44-11
IP SLAs 44-11
executing 50-15
overview 50-15
ICMP Router Discovery Protocol
ICMPv6 42-4
and ingress RSPAN 31-22
and ingress SPAN 31-15
IEEE 802.1p 16-1
and trunk ports 13-3
configuration limitations 14-17
encapsulation 14-15
native VLAN for untagged traffic 14-23
compatibility with other features 18-6
defaults 18-4
described 18-1
tunnel ports with other features 18-6
IEEE 802.3x flow control 13-30
ifIndex values, SNMP 34-5
IFS 1-7
described 26-6
enabling 26-11
as a member of a group 47-39
statically connected member 47-44
controlling access to groups 47-40
default configuration 47-39
fast switching 47-44
controlling the length of time 26-12
disabling on an interface 26-13
global leave 26-13
query solicitation 26-13
recovering from flood mode 26-13
host-query interval, modifying 47-42
joining multicast group 26-3
join messages 26-3
leave processing, enabling 25-9, 26-11
leaving multicast group 26-5
multicast reachability 47-39
overview 47-3
queries 26-4
described 26-6
disabling 25-11, 26-16
supported versions 26-3
support for 1-5
changing to Version 2 47-41
described 47-3
changing to Version 1 47-41
described 47-3
maximum query response time value 47-43
pruning groups 47-43
query timeout value 47-42
configuring 26-25
default configuration 26-24
described 26-24
support for 1-5
configuring filtering 26-27
setting the maximum number 26-27
IGMP helper 47-6
configuration guidelines 26-11
described 26-6
enabling 26-11
applying 26-26
configuration mode 26-25
configuring 26-25
and address aliasing 26-2
and stack changes 26-7
configuring 26-7
default configuration 25-6, 26-7
definition 26-2
enabling and disabling 25-7, 26-8
global configuration 26-8
Immediate Leave 26-6
in the switch stack 26-7
method 26-8
monitoring 25-12, 26-16
configuration guidelines 26-14
configuring 26-14
supported versions 26-3
support for 1-5
VLAN configuration 26-8
configuring 26-27
default configuration 26-25
described 26-24
displaying action 26-29
IGP 41-27
described 26-6
enabling 25-9
inaccessible authentication bypass 11-23
support for multiauth ports 11-23
defaults 1-19
Express Setup 1-2
number 13-18
range macros 13-21
interface command 13-17 to 13-18
auto-MDIX, configuring 13-31
procedure 13-18
counters, clearing 13-50
default configuration 13-27
described 13-36
descriptive name, adding 13-36
displaying information about 13-49
duplex and speed configuration guidelines 13-28
flow control 13-30
management 1-6
monitoring 13-48
naming 13-36
physical, identifying 13-17
range of 13-19
restarting 13-50, 13-51
shutting down 13-50
speed and duplex, configuring 13-29
status 13-48
supported 13-17
types of 13-1
interfaces range macro command 13-21
interface types 13-17
internal neighbors, BGP 41-50
Internet Control Message Protocol
Internet Group Management Protocol
inter-VLAN routing 1-15, 41-2
inventory management TLV 29-3
for QoS classification 37-7
implicit deny 36-11, 36-15
implicit masks 36-11
named 36-16
undefined 36-23
128-bit 42-2
candidate or member 6-4, 6-13
classes of 41-7
cluster access 6-2
command switch 6-3, 6-11, 6-13
default configuration 41-6
discovering 7-24
for IP routing 41-6
IPv6 42-2
MAC address association 41-10
monitoring 41-19
redundant clusters 6-11
standby command switch 6-11, 6-13
IP base feature set 1-2
IP base software image 1-1
IP broadcast address 41-17
ip cef distributed command 41-92
IP directed broadcasts 41-15
ip igmp profile command 26-25
manually 4-15
through DHCP-based autoconfiguration 4-3
default configuration 4-3
all-hosts 47-3
all-multicast-routers 47-3
host group address range 47-3
administratively-scoped boundaries, described 47-47
and IGMP snooping 26-2
adding to an existing sparse-mode cloud 47-26
benefits of 47-26
configuration guidelines 47-12
filtering incoming RP announcement messages 47-28
overview 47-7
preventing candidate RP spoofing 47-28
preventing join messages to false RPs 47-28
setting up in a new internetwork 47-26
using with BSR 47-34
configuration guidelines 47-12
configuring candidate BSRs 47-32
configuring candidate RPs 47-33
defining the IP multicast boundary 47-31
defining the PIM domain border 47-30
overview 47-7
using with Auto-RP 47-34
Cisco implementation 47-2
basic multicast routing 47-12
IP multicast boundary 47-47
default configuration 47-11
PIM mode 47-13
Auto-RP 47-7
BSR 47-7
described 47-46
enabling sdr listener support 47-46
limiting DVMRP routes advertised 47-58
limiting sdr cache entry lifetime 47-46
SAP packets for conference session announcement 47-46
Session Directory (sdr) tool, described 47-46
multicast forwarding, described 47-8
PIMv1 and PIMv2 interoperability 47-11
protocol interaction 47-2
reverse path check (RPF) 47-8
assigning manually 47-24
configuring Auto-RP 47-26
configuring PIMv2 BSR 47-30
monitoring mapping information 47-35
using Auto-RP and BSR 47-34
stack master functions 47-10
stack member functions 47-10
statistics, displaying system and network 47-63
and QoS 16-1
automatic classification and queueing 37-23
configuring 16-4
ensuring port security with QoS 37-45
trusted boundary for QoS 37-45
IP Port Security for Static Hosts
on a Layer 2 access port 23-20
on a PVLAN host port 23-24
IP precedence 37-2
IP-precedence-to-DSCP map for QoS 37-74
routing 1-15
IP routes, monitoring 41-106
connecting interfaces with 13-13
disabling 41-20
enabling 41-20
IP service levels, analyzing 44-1
IP services feature set 1-2
benefits 44-2
configuration guidelines 44-6
configuring object tracking 45-9
Control Protocol 44-4
default configuration 44-6
definition 44-1
ICMP echo operation 44-11
measuring network performance 44-3
monitoring 44-13
multioperations scheduling 44-5
object tracking 45-9
operation 44-3
reachability tracking 45-9
described 44-4
enabling 44-7
response time 44-4
scheduling 44-5
SNMP support 44-2
supported metrics 44-2
threshold monitoring 44-6
track object monitoring agent, configuring 45-11
track state 45-9
UDP jitter operation 44-8
and 802.1x 23-19
and DHCP snooping 23-16
and EtherChannels 23-19
and port security 23-19
and private VLANs 23-19
and routed ports 23-18
and TCAM entries 23-19
and trunk interfaces 23-18
and VRF 23-19
automatic 23-16
manual 23-16
binding table 23-16
configuration guidelines 23-18
default configuration 23-18
described 23-16
disabling 23-20
bindings 23-26
configuration 23-26
enabling 23-19, 23-21
source IP address 23-17
source IP and MAC address 23-17
source IP address filtering 23-17
source IP and MAC address filtering 23-17
adding 23-19, 23-21
deleting 23-20
static hosts 23-21
executing 50-18
overview 50-18
address resolution 41-10
administrative distances 41-94, 41-104
ARP 41-10
assigning IP addresses to Layer 3 interfaces 41-7
authentication keys 41-105
address 41-17
flooding 41-18
packets 41-15
storms 41-15
classless routing 41-8
configuring static routes 41-94
addressing configuration 41-6
gateways 41-13
networks 41-95
routes 41-95
routing 41-3
directed broadcasts 41-15
disabling 41-20
dynamic routing 41-3
enabling 41-20
EtherChannel Layer 3 interface 41-5
IGP 41-27
inter-VLAN 41-2
classes 41-7
configuring 41-6
IPv6 42-3
IRDP 41-13
Layer 3 interfaces 41-5
MAC address and IP address 41-10
passive interfaces 41-103
distance-vector 41-3
dynamic 41-3
link-state 41-3
proxy ARP 41-10
redistribution 41-96
reverse address resolution 41-10
routed ports 41-5
static routing 41-3
steps to configure 41-5
subnet mask 41-7
subnet zero 41-8
supernet 41-8
UDP 41-16
unicast reverse path forwarding 1-16, 41-91
with SVIs 41-5
applying to interfaces 36-21
extended, creating 36-11
named 36-16
standard, creating 36-10
displaying 38-8
limitations 38-3
matching criteria 38-3
port 38-2
precedence 38-2
router 38-2
supported 38-2
addresses 42-2
address formats 42-2
and switch stacks 42-10
applications 42-5
assigning address 42-12
autoconfiguration 42-5
CEFv6 42-20
default configuration 42-11
default router preference (DRP) 42-4
defined 42-1
Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 42-8
EIGRP IPv6 Commands 42-8
Router ID 42-8
feature limitations 42-10
features not supported 42-9
forwarding 42-12
ICMP 42-4
monitoring 42-28
neighbor discovery 42-4
OSPF 42-7
path MTU discovery 42-4
SDM templates 8-3, 25-1, 38-1
stack master functions 42-11
Stateless Autoconfiguration 42-5
supported features 42-3
switch limitations 42-9
understanding static routes 42-7
IPv6 traffic, filtering 38-4
configuring 41-14
definition 41-13
support for 1-16
addresses 41-67
area routing 41-67
default configuration 41-68
monitoring 41-76
show commands 41-76
system routing 41-67
and IPv6 42-3
and trunk ports 13-3
encapsulation 1-10, 14-15
trunking with IEEE 802.1 tunneling 18-5
clear commands 41-76
dynamic routing protocols 41-66
monitoring 41-76
NETs 41-66
NSAPs 41-66
OSI standard 41-66
area routing 41-67
system routing 41-67
isolated port 17-2
isolated VLANs 17-2, 17-3
join messages, IGMP 26-3
described 10-39
keepalive messages 19-2
boundary switch 10-41
KDC 10-41
network services 10-42
configuration examples 10-39
configuring 10-42
credentials 10-39
described 10-39
KDC 10-39
operation 10-41
realm 10-40
server 10-41
support for 1-13
switch as trusted third party 10-39
terms 10-40
TGT 10-41
tickets 10-39
l2protocol-tunnel command 18-13
Layer 2 protocol tunneling 18-9
Layer 2 frames, classification with CoS 37-2
Layer 2 interfaces, default configuration 13-27
configuring 18-10
configuring for EtherChannels 18-14
default configuration 18-11
defined 18-8
guidelines 18-12
and ARP 50-17
and CDP 50-17
broadcast traffic 50-16
described 50-16
IP addresses and subnets 50-17
MAC addresses and VLANs 50-17
multicast traffic 50-17
multiple devices on a port 50-17
unicast traffic 50-16
usage guidelines 50-17
Layer 3 features 1-15
assigning IP addresses to 41-7
assigning IPv4 and IPv6 addresses to 42-15
assigning IPv6 addresses to 42-12
changing from Layer 2 mode 41-82
types of 41-5
Layer 3 packets, classification methods 37-2
LDAP 3-2
Leaking IGMP Reports 22-4
See hardware installation guide
Lightweight Directory Access Protocol
Link Aggregation Control Protocol
Link Failure, detecting unidirectional 20-8
link local unicast addresses 42-4
links, unidirectional 30-1
link state advertisements (LSAs) 41-33
link-state protocols 41-3
configuring 39-25
described 39-23
configuring 29-5
characteristics 29-6
default configuration 29-5
enabling 29-6
monitoring and maintaining 29-11
overview 29-1
supported TLVs 29-2
switch stack considerations 29-2
transmission timer and holdtime, setting 29-6
procedures 29-5
TLVs 29-7
monitoring and maintaining 29-11
overview 29-1, 29-2
supported TLVs 29-2
load balancing 43-4
local SPAN 31-2
location TLV 29-3
logging messages, ACL 36-9
with RADIUS 10-29
with TACACS+ 10-14
login banners 7-10
Long-Reach Ethernet (LRE) technology 1-34
described 21-11
enabling 21-18
support for 1-9
LRE profiles, considerations in switch clusters 6-16
MAC/PHY configuration status TLV 29-2
aging time 7-14
and VLAN association 7-13
building the address table 7-13
default configuration 7-14
disabling learning on a VLAN 7-23
discovering 7-24
displaying 7-23
displaying in the IP source binding table 23-26
learning 7-13
removing 7-15
in ACLs 36-29
IP address association 41-10
adding 7-20
allowing 7-22, 7-23
characteristics of 7-20
dropping 7-21
removing 7-20
MAC address learning 1-7
MAC address learning, disabling on a VLAN 7-23
MAC address notification, support for 1-17
configuration guidelines 22-8
configuring 22-12
default configuration 22-8
description 22-6
monitoring 22-14
MAC address-to-VLAN mapping 14-27
MAC authentication bypass 11-15
applying to Layer 2 interfaces 36-31
configuring for QoS 37-53
creating 36-29
defined 36-29
for QoS classification 37-5
MACsec 11-32
and stacking 11-34
configuring on an interface 11-69
defined 11-32
magic packet 11-26
manageability features 1-7
browser session 1-8
CLI session 1-8
device manager 1-8
SNMP 1-8
out-of-band console port connection 1-8
management address TLV 29-2
CLI 2-1
clustering 1-4
CNS 3-1
Network Assistant 1-3
overview 1-6
switch stacks 1-3
considerations in switch clusters 6-7
discovery through different management VLANs 6-7
CoS-to-DSCP 37-73
DSCP 37-73
DSCP-to-CoS 37-76
DSCP-to-DSCP-mutation 37-77
IP-precedence-to-DSCP 37-74
policed-DSCP 37-75
described 37-13
action in policy map 37-58
action with aggregate policers 37-71
described 37-4, 37-9
matching IPv4 ACLs 36-8
MSTP 20-24
STP 19-23
maximum hop count, MSTP 20-25
maximum number of allowed devices, port-based authentication 11-40
maximum-paths command 41-54, 41-93
configuration guidelines 11-29 to 11-30
described 1-11, 11-29
exceptions with authentication process 11-4
membership mode, VLAN port 14-3
automatic discovery 6-5
defined 6-2
managing 6-16
passwords 6-13
recovering from lost connectivity 50-12
requirements 6-4
See also candidate switch, cluster standby group, and standby command switch
messages, to users through banners 7-10
metrics, in BGP 41-54
metric translations, between routing protocols 41-99
metro tags 18-2
MHSRP 43-4
overview 34-1
SNMP interaction with 34-4
mini-type USB console port 13-13
mirroring traffic for analysis 31-1
mismatches, autonegotiation 50-13
configuring policies 11-69
defined 11-32
policies 11-33
replay protection 11-33
statistics 11-35
virtual ports 11-33
module number 13-18
access groups 36-44
BGP 41-65
cables for unidirectional links 30-1
CDP 27-6
CEF 41-92
EIGRP 41-45
fallback bridging 49-10
features 1-17
Flex Links 22-14
HSRP 43-13
IEEE 802.1Q tunneling 18-18
snooping 25-12, 26-16
interfaces 13-48
address tables 41-19
multicast routing 47-63
routes 41-106
IP SLAs operations 44-13
IPv4 ACL configuration 36-44
IPv6 42-28
IPv6 ACL configuration 38-8
IS-IS 41-76
ISO CLNS 41-76
Layer 2 protocol tunneling 18-18
MAC address-table move update 22-14
MSDP peers 48-19
multicast router interfaces 26-17
multi-VRF CE 41-90
network traffic for analysis with probe 31-2
object tracking 45-12
OSPF 41-37
private VLANs 17-15
RP mapping information 47-35
SFP status 50-14
source-active messages 48-19
speed and duplex mode 13-29
SSM mapping 47-22
traffic flowing among switches 32-1
traffic suppression 28-21
tunneling 18-18
filters 36-45
maps 36-45
VLANs 14-14
VMPS 14-32
VTP 15-18
mrouter Port 22-3
mrouter port 22-5
benefits of 48-3
clearing MSDP connections and statistics 48-19
controlling source information
forwarded by switch 48-12
originated by switch 48-8
received by switch 48-14
default configuration 48-4
sending SA messages to 48-17
specifying the originating address 48-18
incoming SA messages 48-14
SA messages to a peer 48-12
SA requests from a peer 48-11
join latency, defined 48-6
configuring 48-16
defined 48-16
originating address, changing 48-18
overview 48-1
peer-RPF flooding 48-2
configuring a default 48-4
monitoring 48-19
peering relationship, overview 48-1
requesting source information from 48-8
shutting down 48-16
caching 48-6
defined 48-2
filtering from a peer 48-11
filtering incoming 48-14
filtering to a peer 48-12
limiting data with TTL 48-14
restricting advertised sources 48-9
support for 1-16
configuration guidelines 20-16
described 20-6
described 21-3
enabling 21-14
described 21-2
enabling 21-13
CIST, described 20-3
CIST root 20-5
configuration guidelines 20-15, 21-12
forward-delay time 20-24
hello time 20-23
link type for rapid convergence 20-25
maximum aging time 20-24
maximum hop count 20-25
MST region 20-16
neighbor type 20-26
path cost 20-21
port priority 20-20
root switch 20-18
secondary root switch 20-19
switch priority 20-22
defined 20-3
operations between regions 20-4
default configuration 20-15
default optional feature configuration 21-12
displaying status 20-27
enabling the mode 20-16
described 21-10
enabling 21-17
effects on root switch 20-18
effects on secondary root switch 20-19
unexpected behavior 20-18
implementation 20-6
port role naming change 20-7
terminology 20-5
instances supported 19-10
interface state, blocking to forwarding 21-2
interoperability and compatibility among modes 19-10
interoperability with IEEE 802.1D
described 20-9
restarting migration process 20-26
defined 20-3
master 20-3
operations within a region 20-3
described 21-11
enabling 21-18
mapping VLANs to MST instance 20-17
CIST 20-3
configuring 20-16
described 20-2
hop-count mechanism 20-5
IST 20-3
supported spanning-tree instances 20-2
optional features supported 1-9
overview 20-2
described 21-2
enabling 21-12
preventing root switch selection 21-10
described 21-10
enabling 21-18
configuring 20-18
effects of extended system ID 20-18
unexpected behavior 20-18
shutdown Port Fast-enabled port 21-2
stack changes, effects of 20-8
status, displaying 20-27
system 13-40
system jumbo 13-39
system routing 13-39
support for inaccessible authentication bypass 11-23
See multiple-authentication mode
Immediate Leave 26-6
joining 26-3
leaving 26-5
static joins 25-8, 26-10
ACLs on 36-43
blocking 28-8
multicast router interfaces, monitoring 26-17
multicast router ports, adding 25-8, 26-9
Multicast Source Discovery Protocol
multicast storm 28-1
multicast storm-control command 28-4
multicast television application 26-18
multicast VLAN 26-17
multioperations scheduling, IP SLAs 44-5
multiple authentication 11-12
multiple VPN routing/forwarding in customer edge devices
configuration example 41-87
configuration guidelines 41-79
configuring 41-79
default configuration 41-79
defined 41-76
displaying 41-90
monitoring 41-90
network components 41-79
packet-forwarding process 41-78
support for 1-15
and address aliasing 26-20
and IGMPv3 26-21
configuring interfaces 26-22
default configuration 26-20
described 26-17
example application 26-18
in the switch stack 26-20
modes 26-21
multicast television application 26-18
setting global parameters 26-21
support for 1-5
AAA down policy 1-12
critical authentication 11-23, 11-55
IEEE 802.1x authentication using a RADIUS server 11-60
IEEE 802.1x validation using RADIUS server 11-60
inaccessible authentication bypass 1-12, 11-55
Layer 2 IEEE 802.1x validation 1-12, 11-60
Layer 2 IP validation 1-12
named IPv4 ACLs 36-16
named IPv6 ACLs 38-3
and IEEE 802.1Q tunneling 18-4
configuring 14-23
default 14-23
configuring 11-61
overview 11-30
neighbor discovery, IPv6 42-4
neighbor discovery/recovery, EIGRP 41-38
neighbors, BGP 41-60
benefits 1-2
described 1-6
downloading image files 1-3
guide mode 1-3
management options 1-3
managing switch stacks 5-3, 5-17
upgrading a switch A-25
wizards 1-3
network configuration examples
cost-effective wiring closet 1-24
high-performance wiring closet 1-25
increasing network performance 1-22
large network 1-31
long-distance, high-bandwidth transport 1-35
multidwelling network 1-34
providing network services 1-22
redundant Gigabit backbone 1-27
server aggregation and Linux server cluster 1-27
small to medium-sized network 1-29
performance 1-22
services 1-22
CDP 27-1
RMON 32-1
SNMP 34-1
network performance, measuring with IP SLAs 44-3
network policy TLV 29-2
no commands 2-4
configuration guidelines 37-40
configuring 37-58
described 37-10
non-IP traffic filtering 36-29
nontrunking mode 14-16
normal-range VLANs 14-4
configuration guidelines 14-5
configuring 14-4
defined 14-1
no switchport command 13-4
NSAPs, as ISO IGRP addresses 41-67
IS-IS 41-69
NSM 3-3
NSSA, OSPF 41-33
defined 7-2
overview 7-2
stratum 7-2
support for 1-7
services 7-2
synchronizing 7-2
configuring 50-27
described 50-27
displaying 50-28
HSRP 45-7
IP SLAs 45-9
IP SLAs, configuring 45-9
monitoring 45-12
offline configuration for switch stacks 5-8
off mode, VTP 15-4
described 51-1
overview 51-1
running tests 51-4
configuring 11-66
overview 11-29
optimizing system resources 8-1
options, management 1-6
area parameters, configuring 41-33
configuring 41-31
metrics 41-34
route 41-34
settings 41-28
described 41-27
for IPv6 42-7
interface parameters, configuring 41-32
LSA group pacing 41-36
monitoring 41-37
router IDs 41-36
route summarization 41-34
support for 1-15
virtual links 41-34
out-of-profile markdown 1-14
packet modification, with QoS 37-22
Layer 2 protocol tunneling 18-9
parallel paths, in routing tables 41-93
configuring 41-103
OSPF 41-35
default configuration 10-2
disabling recovery of 10-5
encrypting 10-3
for security 1-10
in clusters 6-14
overview 10-1
recovery of 50-3
enable 10-3
enable secret 10-3
Telnet 10-6
with usernames 10-6
VTP domain 15-10
MSTP 20-21
STP 19-20
path MTU discovery 42-4
payload encryption 1-1
defined 41-99
enabling 41-101
fast-switched policy-based routing 41-102
local policy-based routing 41-102
PC (passive command switch) 6-10
peers, BGP 41-60
percentage thresholds in tracked lists 45-6
performance, network design 1-22
performance features 1-4
persistent self-signed certificate 10-49
per-user ACLs and Filter-Ids 11-8
PE to CE routing, configuring 41-86
physical ports 13-2
default configuration 47-11
overview 47-4
rendezvous point (RP), described 47-5
RPF lookups 47-9
enabling a mode 47-13
overview 47-4
router-query message interval, modifying 47-38
shared tree and source tree, overview 47-35
shortest path tree, delaying the use of 47-37
join messages and shared tree 47-5
overview 47-5
prune messages 47-5
RPF lookups 47-9
configuration guidelines 47-22
enabling 47-23
overview 47-5
support for 1-16
interoperability 47-11
troubleshooting interoperability problems 47-35
v2 improvements 47-4
PIM-DVMRP, as snooping method 26-9
character output description 50-16
executing 50-15
overview 50-15
auto mode 13-9
CDP with power consumption, described 13-7
CDP with power negotiation, described 13-7
Cisco intelligent power management 13-7
configuring 13-32
devices supported 13-7
high-power devices operating in low-power mode 13-7
IEEE power classification levels 13-8
monitoring 13-10
monitoring power 13-35
policing power consumption 13-35
policing power usage 13-10
power budgeting 13-33
power consumption 13-33
powered-device detection and initial power allocation 13-8
power management modes 13-9
power negotiation extensions to CDP 13-7
standards supported 13-7
static mode 13-9
troubleshooting 50-13
policed-DSCP map for QoS 37-75
for each matched traffic class 37-58
for more than one traffic class 37-71
described 37-4
number of 37-41
types of 37-10
described 37-4
token-bucket algorithm 37-10
characteristics of 37-59
described 37-8
hierarchical 37-9
configuration guidelines 37-40
configuring 37-63
described 37-12
nonhierarchical on physical ports
configuration guidelines 37-40
configuring 37-58
described 37-10
POP 1-34
defined 36-3
types of 36-4
accounting 11-14
defined 11-3, 12-2
RADIUS server 11-3
client, defined 11-3, 12-2
configuration guidelines 11-38, 12-9
802.1x authentication 11-43
guest VLAN 11-53
host mode 11-46
inaccessible authentication bypass 11-55
manual re-authentication of a client 11-48
periodic re-authentication 11-47
quiet period 11-48
RADIUS server 11-46, 12-13
RADIUS server parameters on the switch 11-45, 12-11
restricted VLAN 11-54
switch-to-client frame-retransmission number 11-49, 11-50
switch-to-client retransmission time 11-49
violation modes 11-42 to 11-43
default configuration 11-36, 12-9
described 11-1
device roles 11-3, 12-2
displaying statistics 11-71, 12-17
downloadable ACLs and redirect URLs
configuring 11-62 to 11-65, ?? to 11-65
overview 11-18 to 11-20
EAPOL-start frame 11-6
EAP-request/identity frame 11-6
EAP-response/identity frame 11-6
802.1X authentication 12-11
encapsulation 11-3
flexible authentication ordering
configuring 11-66
overview 11-28
configuration guidelines 11-21, 11-22
described 11-21
host mode 11-12
inaccessible authentication bypass
configuring 11-55
described 11-23
guidelines 11-39
initiation and message exchange 11-6
magic packet 11-26
maximum number of allowed devices per port 11-40
method lists 11-43
multiple authentication 11-12
multiple-hosts mode, described 11-12
AAA authorization 11-43
configuration tasks 11-18
described 11-17
RADIUS server attributes 11-17
authorization state and dot1x port-control command 11-11
authorized and unauthorized 11-10
voice VLAN 11-25
described 11-26
configuring 11-40
described 11-15, 11-40
resetting to default values 11-68
stack changes, effects of 11-11
statistics, displaying 11-71
as proxy 11-3, 12-2
RADIUS client 11-3
configuring 11-61
overview 11-30
guidelines 11-25
overview 11-24
AAA authorization 11-43
characteristics 11-16
configuration tasks 11-17
described 11-16
configuring 11-41
described 11-31, 11-41
described 11-25
PVID 11-25
VVID 11-25
wake-on-LAN, described 11-26
port-based authentication methods, supported 11-8
port blocking 1-5, 28-7
port description TLV 29-2
described 21-2
enabling 21-12
mode, spanning tree 14-29
support for 1-9
port membership modes, VLAN 14-3
MSTP 20-20
STP 19-18
10-Gigabit Ethernet 13-6
access 13-3
blocking 28-7
dynamic access 14-3
protected 28-6
routed 13-4
secure 28-9
static-access 14-3, 14-9
switch 13-2
trunks 14-3, 14-15
VLAN assignments 14-9
aging 28-17
and other features 28-11
and private VLANs 28-18
and QoS trusted boundary 37-45
and stacking 28-18
configuration guidelines 28-11
configuring 28-13
default configuration 28-11
described 28-8
on trunk ports 28-14
sticky learning 28-9
violations 28-10
port-shutdown response, VMPS 14-28
port VLAN ID TLV 29-2
power management TLV 29-3
configuring 13-42
managing 13-42
preemption, default configuration 22-8
preemption delay, default configuration 22-8
preferential treatment of traffic
prefix lists, BGP 41-58
preventing unauthorized access 10-1
primary interface for object tracking, DHCP, configuring 45-11
primary interface for static routing, configuring 45-10
primary links 22-2
primary VLANs 17-1, 17-3
HSRP 43-8
overriding CoS 16-6
trusting CoS 16-6
across multiple switches 17-4
and SDM template 17-4
and SVIs 17-5
and switch stacks 17-5
benefits of 17-1
community ports 17-2
community VLANs 17-2, 17-3
configuration guidelines 17-7, 17-8
configuration tasks 17-6
configuring 17-10
default configuration 17-6
end station access to 17-3
IP addressing 17-3
isolated port 17-2
isolated VLANs 17-2, 17-3
mapping 17-13
monitoring 17-15
community 17-2
configuration guidelines 17-8
configuring host ports 17-11
configuring promiscuous ports 17-13
isolated 17-2
promiscuous 17-2
primary VLANs 17-1, 17-3
promiscuous ports 17-2
secondary VLANs 17-2
subdomains 17-1
traffic in 17-5
changing the default for lines 10-9
command switch 6-17
exiting 10-9
logging into 10-9
mapping on member switches 6-17
overview 10-2, 10-7
setting a command with 10-8
configuring 17-13
defined 17-2
protected ports 1-10, 28-6
protocol-dependent modules, EIGRP 41-38
Protocol-Independent Multicast Protocol
protocol storm protection 28-19
provider edge devices 41-77
provisioning new members for a switch stack 5-8
configuring 41-12
definition 41-10
with IP routing disabled 41-13
proxy reports 22-3
in VTP domain 15-16
on a port 14-22
in VTP domain 15-16
on a port 14-22
examples 15-7
overview 15-6
changing 14-22
for VTP pruning 15-6
VLANs 15-16
described 19-9
IEEE 802.1Q trunking interoperability 19-11
instances supported 19-10
and MQC commands 37-1
categorizing traffic 37-24
configuration and defaults display 37-36
configuration guidelines 37-33
described 37-23
disabling 37-35
displaying generated commands 37-35
displaying the initial configuration 37-36
effects on running configuration 37-33
egress queue defaults 37-25
list of generated commands 37-26
basic model 37-4
class maps, described 37-8
defined 37-4
DSCP transparency, described 37-46
flowchart 37-7
forwarding treatment 37-3
in frames and packets 37-3
IP ACLs, described 37-7, 37-8
MAC ACLs, described 37-5, 37-8
options for IP traffic 37-6
options for non-IP traffic 37-5
policy maps, described 37-8
trust DSCP, described 37-5
trusted CoS, described 37-5
trust IP precedence, described 37-5
configuring 37-54
auto-QoS 37-33
standard QoS 37-39
aggregate policers 37-71
auto-QoS 37-23
default port CoS value 37-44
DSCP maps 37-73
DSCP transparency 37-46
DSCP trust states bordering another domain 37-47
egress queue characteristics 37-83
ingress queue characteristics 37-79
IP extended ACLs 37-50
IP standard ACLs 37-49
MAC ACLs 37-53
policy maps, hierarchical 37-63
policy maps on physical ports 37-58
port trust states within the domain 37-43
trusted boundary 37-45
default auto configuration 37-24
default standard configuration 37-37
DSCP transparency 37-46
allocating buffer space 37-84
buffer allocation scheme, described 37-20
configuring shaped weights for SRR 37-88
configuring shared weights for SRR 37-89
described 37-4
displaying the threshold map 37-87
flowchart 37-19
mapping DSCP or CoS values 37-86
scheduling, described 37-4
setting WTD thresholds 37-84
WTD, described 37-22
enabling globally 37-42
classification 37-7
egress queueing and scheduling 37-19
ingress queueing and scheduling 37-16
policing and marking 37-11
implicit deny 37-8
allocating bandwidth 37-81
allocating buffer space 37-81
buffer and bandwidth allocation, described 37-18
configuring shared weights for SRR 37-81
configuring the priority queue 37-82
described 37-4
displaying the threshold map 37-80
flowchart 37-16
mapping DSCP or CoS values 37-80
priority queue, described 37-18
scheduling, described 37-4
setting WTD thresholds 37-80
WTD, described 37-18
automatic classification and queueing 37-23
detection and trusted settings 37-23, 37-45
limiting bandwidth on egress interface 37-90
CoS-to-DSCP 37-73
DSCP-to-CoS 37-76
DSCP-to-DSCP-mutation 37-77
IP-precedence-to-DSCP 37-74
policed-DSCP 37-75
types of 37-13
marked-down actions 37-61
marking, described 37-4, 37-9
overview 37-2
packet modification 37-22
configuring 37-61, 37-71
described 37-9
number of 37-41
types of 37-10
policies, attaching to an interface 37-9
described 37-4, 37-9
token bucket algorithm 37-10
characteristics of 37-59
hierarchical 37-9
hierarchical on SVIs 37-63
nonhierarchical on physical ports 37-58
QoS label, defined 37-4
configuring egress characteristics 37-83
configuring ingress characteristics 37-79
high priority (expedite) 37-22, 37-89
location of 37-14
SRR, described 37-15
WTD, described 37-15
rewrites 37-22
support for 1-14
bordering another domain 37-47
described 37-5
trusted device 37-45
within the domain 37-43
queries, IGMP 26-4
query solicitation, IGMP 26-13
vendor-proprietary 10-36
vendor-specific 10-35
accounting 10-34
authentication 10-29
authorization 10-33
communication, global 10-27, 10-35
communication, per-server 10-27
multiple UDP ports 10-27
default configuration 10-27
defining AAA server groups 10-31
displaying the configuration 10-39
identifying the server 10-27
in clusters 6-16
limiting the services to the user 10-33
method list, defined 10-26
operation of 10-19
overview 10-18
server load balancing 10-39
suggested network environments 10-18
support for 1-12
tracking services accessed by user 10-34
RADIUS Change of Authorization 10-20
macro 13-21
of interfaces 13-19
rapid convergence 20-10
rapid per-VLAN spanning-tree plus
described 19-9
IEEE 802.1Q trunking interoperability 19-11
instances supported 19-10
RARP 41-10
rcommand command 6-16
downloading A-18
overview A-17
preparing the server A-17
uploading A-19
deleting old image A-38
downloading A-37
preparing the server A-36
uploading A-38
reachability, tracking IP SLAs IP host 45-9
configuring 11-40
described 11-15, 11-40
reconfirmation interval, VMPS, changing 14-31
reconfirming dynamic VLAN membership 14-31
redirect URL 11-18, 11-20, 11-62
EtherChannel 39-3
HSRP 43-1
backbone 19-8
multidrop backbone 21-5
path cost 14-26
port priority 14-24
redundant links and UplinkFast 21-15
See Cisco Redundant Power System 2300
reliable transport protocol, EIGRP 41-38
reloading software 4-24
Remote Authentication Dial-In User Service
remote SPAN 31-3
described 26-6
disabling 25-11, 26-16
resequencing ACL entries 36-16
reserved addresses in DHCP pools 23-28
resets, in BGP 41-52
resetting a UDLD-shutdown interface 30-6
described 44-4
enabling 44-7
response time, measuring with IP SLAs 44-4
configuring 11-54
described 11-22
using with IEEE 802.1x 11-22
overview 10-1
passwords and privilege levels 10-2
RADIUS 10-17
TACACS+ 10-10
retry count, VMPS, changing 14-32
reverse address resolution 41-10
Reverse Address Resolution Protocol
1058, RIP 41-20
1112, IP multicast and IGMP 26-2
1157, SNMPv1 34-2
1163, BGP 41-45
1166, IP addresses 41-7
1253, OSPF 41-27
1267, BGP 41-45
1305, NTP 7-2
1587, NSSAs 41-27
1757, RMON 32-2
1771, BGP 41-45
1901, SNMPv2C 34-2
1902 to 1907, SNMPv2 34-2
2236, IP multicast and IGMP 26-2
2273-2275, SNMPv3 34-2
RFC 5176 Compliance 10-21
advertisements 41-21
authentication 41-24
configuring 41-22
default configuration 41-21
described 41-21
for IPv6 42-7
hop counts 41-21
split horizon 41-24
summary addresses 41-24
support for 1-15
default configuration 32-3
displaying status 32-6
enabling alarms and events 32-3
groups supported 32-2
overview 32-1
collecting group Ethernet 32-5
collecting group history 32-5
support for 1-17
described 21-10
enabling 21-18
support for 1-9
MSTP 20-18
STP 19-15
route calculation timers, OSPF 41-35
route dampening, BGP 41-64
routed packets, ACLs on 36-43
configuring 41-5
defined 13-4
in switch clusters 6-8
IP addresses on 13-37, 41-5
route-map command 41-102
BGP 41-56
policy-based routing 41-100
defined 36-3
types of 36-5
route reflectors, BGP 41-63
router ID, OSPF 41-36
route selection, BGP 41-54
route summarization, OSPF 41-34
route targets, VPN 41-79
default 41-3
dynamic 41-3
redistribution of information 41-96
static 41-3
routing domain confederation, BGP 41-63
routing protocol administrative distances 41-94
See Cisco Redundant Power System 2300
See Cisco Redundant Power System 2300
RSPAN 31-3
and stack changes 31-10
characteristics 31-9
configuration guidelines 31-17
default configuration 31-12
destination ports 31-8
displaying status 31-28
in a switch stack 31-3
interaction with other features 31-9
monitored ports 31-7
monitoring ports 31-8
overview 1-17, 31-1
received traffic 31-6
session limits 31-12
creating 31-18
defined 31-4
limiting source traffic to specific VLANs 31-20
specifying monitored ports 31-18
with ingress traffic enabled 31-22
source ports 31-7
transmitted traffic 31-6
VLAN-based 31-7
active topology 20-10
format 20-12
processing 20-13
designated port, defined 20-9
designated switch, defined 20-9
interoperability with IEEE 802.1D
described 20-9
restarting migration process 20-26
topology changes 20-13
overview 20-9
described 20-9
synchronized 20-11
proposal-agreement handshake process 20-10
cross-stack rapid convergence 20-11
described 20-10
edge ports and Port Fast 20-10
point-to-point links 20-10, 20-25
root ports 20-10
root port, defined 20-9
replacing A-20, A-21
rolling back A-20, A-22
saving 4-16
SC (standby command switch) 6-10
scheduled reloads 4-24
scheduling, IP SLAs operations 44-5
and SSH 10-55
configuring 10-55
described 8-1
switch stack consideration 5-10
configuring 8-6
number of 8-1
configuring 8-5
dual IPv4 and IPv6 8-2
types of 8-1
secondary VLANs 17-2
configuring 10-54
displaying 10-54
configuring 10-52
displaying 10-54
and switch stacks 28-18
deleting 28-16
maximum number of 28-10
types of 28-9
and switch stacks 28-18
configuring 28-9
secure remote connections 10-44
security, port 28-8
security features 1-10
sequence numbers in log messages 33-8
server mode, VTP 15-3
service-provider network, MSTP and RSTP 20-1
and customer VLANs 18-2
and IEEE 802.1Q tunneling 18-1
Layer 2 protocols across 18-8
Layer 2 protocol tunneling for EtherChannels 18-9
session keys, MKA 11-32
set-request operation 34-4
failed command switch replacement 50-11
replacing failed command switch 50-9
severity levels, defining in system messages 33-9
monitoring status of 50-14
numbering of 13-18
security and identification 50-14
status, displaying 50-14
show access-lists hw-summary command 36-23
show and more command output, filtering 2-9
show cluster members command 6-16
show configuration command 13-36
show forward command 50-22
show interfaces command 13-29, 13-36
show interfaces switchport 22-4
show l2protocol command 18-13, 18-15, 18-16
show platform forward command 50-22
displaying ACLs 36-34, 36-36
interface description in 13-36
shutdown command on interfaces 13-50
shutdown threshold for Layer 2 protocol packets 18-11
Simple Network Management Protocol
single session ID 11-32
small form-factor pluggable modules
small-frame arrival rate, configuring 28-5
smart logging 33-1, 33-14
SNAP 27-1
accessing MIB variables with 34-4
described 34-4
disabling 34-7
and IP SLAs 44-2
authentication level 34-10
configuring 34-8
for cluster switches 34-4
overview 34-4
configuration examples 34-18
default configuration 34-6
engine ID 34-7
groups 34-7, 34-9
host 34-7
ifIndex values 34-5
in-band management 1-8
in clusters 6-14
and trap keyword 34-12
described 34-5
differences from traps 34-5
disabling 34-15
enabling 34-15
limiting access by TFTP servers 34-17
limiting system log messages to NMS 33-10
manager functions 1-6, 34-3
managing clusters with 6-17
notifications 34-5
overview 34-1, 34-4
security levels 34-3
setting CPU threshold notification 34-16
status, displaying 34-19
system contact and location 34-16
trap manager, configuring 34-14
described 34-5
differences from informs 34-5
disabling 34-15
enabling 34-12
enabling MAC address notification 7-15, 7-17, 7-18
overview 34-1, 34-4
types of 34-12
users 34-7, 34-9
versions supported 34-2
SNMP and Syslog Over IPv6 42-8
SNMPv1 34-2
SNMPv2C 34-2
SNMPv3 34-2
snooping, IGMP 26-2
location in flash A-26
recovery procedures 50-2
scheduling reloads 4-24
tar file format, described A-26
See also downloading and uploading
software images in mixed stacks
See the Cisco Software Activation and Compatibility Document
source-and-destination-IP address based forwarding, EtherChannel 39-9
source-and-destination MAC address forwarding, EtherChannel 39-9
source-IP address based forwarding, EtherChannel 39-9
source-MAC address forwarding, EtherChannel 39-8
and stack changes 31-10
configuration guidelines 31-12
default configuration 31-12
destination ports 31-8
displaying status 31-28
interaction with other features 31-9
monitored ports 31-7
monitoring ports 31-8
overview 1-17, 31-1
ports, restrictions 28-12
received traffic 31-6
session limits 31-12
configuring ingress forwarding 31-16, 31-23
creating 31-13, 31-25
defined 31-4
limiting source traffic to specific VLANs 31-16
removing destination (monitoring) ports 31-14
specifying monitored ports 31-13, 31-25
with ingress traffic enabled 31-15
source ports 31-7
transmitted traffic 31-6
VLAN-based 31-7
spanning tree and native VLANs 14-17
SPAN traffic 31-6
split horizon, RIP 41-24
shaped weights on egress queues 37-88
shared weights on egress queues 37-89
shared weights on ingress queues 37-81
described 37-15
shaped mode 37-15
shared mode 37-16
support for 1-14, 1-15
configuring 10-45
described 1-8, 10-44
encryption methods 10-45
switch stack considerations 5-17
user authentication methods, supported 10-45
configuration guidelines 10-51
configuring a secure HTTP client 10-54
configuring a secure HTTP server 10-52
described 10-48
monitoring 10-54
address management restrictions 47-16
CGMP limitations 47-16
components 47-14
configuration guidelines 47-16
configuring 47-14, 47-17
differs from Internet standard multicast 47-14
IGMP snooping 47-16
IGMPv3 47-14
IGMPv3 Host Signalling 47-15
IP address range 47-15
monitoring 47-17
operations 47-15
PIM 47-14
state maintenance limitations 47-16
SSM mapping 47-17
configuration guidelines 47-17
configuring 47-17, 47-19
DNS-based 47-18, 47-20
monitoring 47-22
overview 47-18
restrictions 47-18
static 47-18, 47-20
static traffic forwarding 47-21
IPv6 routing 42-10
ACL configuration 36-7
CDP 27-2
cross-stack EtherChannel 39-13
EtherChannel 39-10
fallback bridging 49-3
HSRP 43-5
IEEE 802.1x port-based authentication 11-11
IGMP snooping 26-7
IP routing 41-4
IPv6 ACLs 38-3
MAC address tables 7-14
MSTP 20-8
multicast routing 47-10
MVR 26-18
port security 28-18
SDM template selection 8-4
SNMP 34-1
SPAN and RSPAN 31-10
STP 19-11
switch clusters 6-14
system message log 33-2
VLANs 14-6
VTP 15-8
and MACsec 11-34
bridge ID (MAC address) 5-7
defined 5-2
election 5-5
IPv6 42-11
re-election 5-5
accessing CLI of specific member 5-30
member number 5-26
priority value 5-26
defined 5-2
displaying information of 5-30
IPv6 42-11
number 5-7
priority value 5-8
provisioning a new member 5-27
replacing 5-16
stack member number 13-17
stack protocol version 5-11
accessing CLI of specific member 5-30
member number 5-26
priority value 5-26
provisioning a new member 5-27
auto-advise 5-13
auto-copy 5-12
auto-extract 5-12
auto-upgrade 5-12
bridge ID 5-7
Catalyst 3750-X-only 5-2
CDP considerations 27-2
compatibility, software 5-11
configuration file 5-15
configuration scenarios 5-18
copying an image file from one member to another A-39
default configuration 5-24
description of 5-2
displaying information of 5-30
enabling persistent MAC address timer 5-24
hardware compatibility and SDM mismatch mode 5-10
HSRP considerations 43-5
in clusters 6-14
incompatible software and image upgrades 5-15, A-40
IPv6 on 42-10
MAC address considerations 7-14
MAC address of 5-24
management connectivity 5-17
managing 5-1
See Catalyst 3750-E and 3750 Switch Stacking Compatibility Guide
membership 5-4
merged 5-4
hardware 5-2
hardware and software 5-2
software 5-2
with Catalyst 3750-E and 3750 switches 5-2
See Cisco Software Activation and Compatibility Document
MSTP instances supported 19-10
multicast routing, stack master and member roles 47-10
described 5-8
effects of adding a provisioned switch 5-9
effects of removing a provisioned switch 5-10
effects of replacing a provisioned switch 5-10
provisioned configuration, defined 5-8
provisioned switch, defined 5-8
provisioning a new member 5-27
partitioned 5-4, 50-8
adding 5-9
removing 5-10
replacing 5-10
replacing a failed member 5-16
software compatibility 5-11
software image version 5-11
stack protocol version 5-11
bridge ID 19-3
instances supported 19-10
root port selection 19-3
stack root switch election 19-3
hostnames in the display 33-1
remotely monitoring 33-2
system prompt consideration 7-7
system-wide configuration considerations 5-16
upgrading A-39
automatic upgrades with auto-upgrade 5-12
described 5-12
examples 5-13
manual upgrades with auto-advise 5-13
upgrades with auto-extract 5-12
See also stack master and stack member
StackWise Plus technology, Cisco 1-3
considerations 6-11
defined 6-2
priority 6-10
requirements 6-3
virtual IP address 6-11
See also cluster standby group and HSRP
See cluster standby group and HSRP
standby ip command 43-6
standby links 22-2
standby router 43-2
standby timers, HSRP 43-10
manually 4-19
specific image 4-20
clearing A-20
automatically downloading 4-18
specifying the filename 4-19
default boot configuration 4-18
assigning to VLAN 14-9
defined 13-3, 14-3
static IP routing 1-15
static MAC addressing 1-10
static route primary interface, configuring 45-10
configuring 41-94
understanding 42-7
static routing 41-3
static routing support, enhanced object tracking 45-10
static SSM mapping 47-18, 47-20
static traffic forwarding 47-21
static VLAN membership 14-2
802.1X 12-17
CDP 27-6
IEEE 802.1x 11-71
interface 13-49
IP multicast routing 47-63
MKA 11-35
OSPF 41-37
RMON group Ethernet 32-5
RMON group history 32-5
SNMP input and output 34-19
VTP 15-18
sticky learning 28-9
configuring 28-3
described 28-1
disabling 28-5
support for 1-5
thresholds 28-1
accelerating root port selection 21-4
described 21-7
disabling 21-17
enabling 21-16
described 21-3
disabling 21-15
enabling 21-14
described 21-2
disabling 21-14
enabling 21-13
BPDU message exchange 19-3
configuration guidelines 19-13, 21-12
forward-delay time 19-23
hello time 19-22
maximum aging time 19-23
path cost 19-20
port priority 19-18
root switch 19-15
secondary root switch 19-17
spanning-tree mode 19-14
switch priority 19-21
transmit hold-count 19-24
counters, clearing 19-24
described 21-5
enabling 21-16
default configuration 19-12
default optional feature configuration 21-12
designated port, defined 19-4
designated switch, defined 19-4
detecting indirect link failures 21-8
disabling 19-15
displaying status 19-24
described 21-10
disabling 21-17
enabling 21-17
effects on root switch 19-16
effects on the secondary root switch 19-17
overview 19-4
unexpected behavior 19-16
features supported 1-9
IEEE 802.1D and bridge ID 19-4
IEEE 802.1D and multicast addresses 19-8
IEEE 802.1t and VLAN identifier 19-5
inferior BPDU 19-3
instances supported 19-10
interface state, blocking to forwarding 21-2
blocking 19-6
disabled 19-7
forwarding 19-6, 19-7
learning 19-7
listening 19-7
overview 19-5
interoperability and compatibility among modes 19-10
keepalive messages 19-2
Layer 2 protocol tunneling 18-8
limitations with IEEE 802.1Q trunks 19-10
overview 14-23
using path costs 14-26
using port priorities 14-24
described 21-11
enabling 21-18
modes supported 19-9
multicast addresses, effect of 19-8
optional features supported 1-9
overview 19-2
path costs 14-26
described 21-2
enabling 21-12
port priorities 14-24
preventing root switch selection 21-10
protocols supported 19-9
redundant connectivity 19-8
described 21-10
enabling 21-18
root port, defined 19-3
root port selection on a switch stack 19-3
configuring 19-16
effects of extended system ID 19-4, 19-16
election 19-3
unexpected behavior 19-16
shutdown Port Fast-enabled port 21-2
stack changes, effects of 19-11
status, displaying 19-24
superior BPDU 19-3
timers, described 19-22
described 21-3
enabling 21-15
VLAN-bridge 19-11
stratum, NTP 7-2
stub areas, OSPF 41-33
stub routing, EIGRP 41-44
subdomains, private VLAN 17-1
subnet mask 41-7
subnet zero 41-8
success response, VMPS 14-28
summer time 7-6
SunNet Manager 1-6
supernet 41-8
supported port-based authentication methods 11-8
configuring 13-39
defined 13-6
SVI link state 13-6
and IP unicast routing 41-5
and router ACLs 36-5
connecting VLANs 13-12
defined 13-5
routing between VLANs 14-2
switch 42-2
switch clustering technology 6-1
switch console port 1-8
switched packets, ACLs on 36-41
switched ports 13-2
switchport backup interface 22-4, 22-5
switchport block multicast command 28-8
switchport block unicast command 28-8
switchport command 13-27
switchport mode dot1q-tunnel command 18-7
switchport protected command 28-7
MSTP 20-22
STP 19-21
switch software features 1-1
synchronization, BGP 41-50
system capabilities TLV 29-2
daylight saving time 7-6
manually 7-4
summer time 7-6
time zones 7-5
displaying the time and date 7-5
overview 7-2
system description TLV 29-2
default configuration 33-4
defining error message severity levels 33-9
disabling 33-4
displaying the configuration 33-17
enabling 33-5
facility keywords, described 33-14
level keywords, described 33-10
limiting messages 33-10
message format 33-2
overview 33-1
sequence numbers, enabling and disabling 33-8
setting the display destination device 33-5
stack changes, effects of 33-2
synchronizing log messages 33-6
syslog facility 1-17
time stamps, enabling and disabling 33-8
configuring the daemon 33-12
configuring the logging facility 33-13
facilities supported 33-14
and IS-IS LSPs 41-71
system MTU and IEEE 802.1Q tunneling 18-5
default configuration 7-8
default setting 7-8
manual configuration 7-8
system name TLV 29-2
system prompt, default setting 7-7, 7-8
system resources, optimizing 8-1
IS-IS 41-67
ISO IGRP 41-67
accounting, defined 10-11
authentication, defined 10-11
authorization, defined 10-11
accounting 10-17
authentication key 10-13
authorization 10-16
login authentication 10-14
default configuration 10-13
displaying the configuration 10-17
identifying the server 10-13
in clusters 6-16
limiting the services to the user 10-16
operation of 10-12
overview 10-10
support for 1-12
tracking services accessed by user 10-17
IEEE 802.1Q 18-3
Layer 2 protocol 18-8
creating A-7
displaying the contents of A-7
extracting A-8
image file format A-26
TCL script, registering and defining with embedded event manager 35-7
TDR 1-17
accessing management interfaces 2-10
number of connections 1-8
setting a password 10-6
templates, SDM 8-2
temporary self-signed certificate 10-49
Terminal Access Controller Access Control System Plus
terminal lines, setting a password 10-6
ternary content addressable memory 50-26
downloading A-12
preparing the server A-11
uploading A-13
configuration files in base directory 4-8
configuring for autoconfiguration 4-7
deleting A-30
downloading A-28
preparing the server A-28
uploading A-30
limiting access by servers 34-17
TFTP server 1-7
threshold, traffic level 28-2
threshold monitoring, IP SLAs 44-6
time-range command 36-18
time ranges in ACLs 36-18
time stamps in log messages 33-8
time zones 7-5
defined 29-2
LLDP 29-2
LLDP-MED 29-2
support for 14-5
VTP support 15-5
ToS 1-14
and ARP 50-17
and CDP 50-17
broadcast traffic 50-16
described 50-16
IP addresses and subnets 50-17
MAC addresses and VLANs 50-17
multicast traffic 50-17
multiple devices on a port 50-17
unicast traffic 50-16
usage guidelines 50-17
configuring 45-3
types 45-3
by Boolean expression 45-4
by threshold percentage 45-6
by threshold weight 45-5
tracking interface line-protocol state 45-2
tracking IP routing state 45-2
tracking objects 45-1
tracking process 45-1
track state, tracking IP SLAs 45-9
blocking flooded 28-8
fragmented 36-6
fragmented IPv6 38-2
unfragmented 36-6
traffic policing 1-14
traffic suppression 28-1
transparent mode, VTP 15-4
trap-door mechanism 4-2
configuring MAC address notification 7-15, 7-17, 7-18
configuring managers 34-12
enabling 7-15, 7-17, 7-18, 34-12
notification types 34-12
overview 34-1, 34-4
connectivity problems 50-15, 50-16, 50-18
CPU utilization 50-29
detecting unidirectional links 30-1
displaying crash information 50-24
PIMv1 and PIMv2 interoperability problems 47-35
setting packet forwarding 50-22
SFP security and identification 50-14
show forward command 50-22
with CiscoWorks 34-4
with debug commands 50-20
with ping 50-15
with system message logging 33-1
with traceroute 50-18
trunking encapsulation 1-10
configuring 14-19
defined 13-3, 14-3
encapsulation 14-19, 14-25
allowed-VLAN list 14-20
configuring 14-19, 14-25
ISL 14-15
setting STP path costs 14-26
using STP port priorities 14-24
native VLAN for untagged traffic 14-23
parallel 14-26
pruning-eligible list 14-22
to non-DTP device 14-15
trusted boundary for QoS 37-45
between QoS domains 37-47
classification options 37-5
ensuring port security for IP phones 37-45
support for 1-14
within a QoS domain 37-43
trustpoints, CA 10-49
defined 18-1
IEEE 802.1Q 18-1
Layer 2 protocol 18-8
described 13-4, 18-2
IEEE 802.1Q, configuring 18-7
incompatibilities with other features 18-6
twisted-pair Ethernet, detecting unidirectional links 30-1
configuration guidelines 30-4
default configuration 30-4
globally 30-5
on fiber-optic interfaces 30-5
per interface 30-6
echoing detection mechanism 30-3
globally 30-5
per interface 30-6
Layer 2 protocol tunneling 18-10
link-detection mechanism 30-1
neighbor database 30-2
overview 30-1
resetting an interface 30-6
status, displaying 30-7
support for 1-9
UDP, configuring 41-16
UDP jitter, configuring 44-9
UDP jitter operation, IP SLAs 44-8
unauthorized ports with IEEE 802.1x 11-10
unicast MAC address filtering 1-7
and adding static addresses 7-21
and broadcast MAC addresses 7-21
and CPU packets 7-21
and multicast addresses 7-21
and router MAC addresses 7-21
configuration guidelines 7-21
described 7-21
unicast storm 28-1
unicast storm control command 28-4
unicast traffic, blocking 28-8
UniDirectional Link Detection protocol
universal software image 1-1
IP base 1-2
IP services 1-2
daemon configuration 33-12
facilities supported 33-14
message logging configuration 33-13
unrecognized Type-Length-Value (TLV) support 15-5
described 21-3
disabling 21-16
enabling 21-15
support for 1-9
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-16
using RCP A-19
using TFTP A-13
preparing A-28, A-31, A-36
reasons for A-25
using FTP A-34
using RCP A-38
using TFTP A-30
USB flash devices 13-16
USB inactivity timer 13-15
mini-type B 13-13
USB ports 13-13
USB Type A port 1-8
USB type A port 13-16
username-based authentication 10-6
Using Memory Consistency Check Routines 50-26
configuration example 36-40
version-dependent transparent mode 15-5
automatic upgrades with auto-upgrade 5-12
described 5-12
displaying 5-12
manual upgrades with auto-advise 5-13
upgrades with auto-extract 5-12
cluster standby group 6-11
command switch 6-11
virtual ports, MKA 11-33
virtual router 43-1, 43-2
virtual switches and PAgP 39-6
vlan.dat file 14-4
disabling on a trunk port 14-20
minimization 14-20
vlan-assignment response, VMPS 14-28
at bootup 14-7
saving 14-7
and startup configuration file 14-7
and VTP 15-1
VLAN configuration saved in 14-7
VLANs saved in 14-4
vlan dot1q tag native command 18-5
VLAN filtering and SPAN 31-8
vlan global configuration command 14-6
VLAN ID, discovering 7-24
VLAN link state 13-6
VLAN load balancing on flex links
configuration guidelines 22-8
described 22-2
VLAN management domain 15-2
VLAN map entries, order of 36-33
applying 36-36
common uses for 36-36
configuration guidelines 36-33
configuring 36-32
creating 36-34
defined 36-3
denying access to a server example 36-38
denying and permitting packets 36-34
displaying 36-45
examples of ACLs and VLAN maps 36-34
removing 36-36
support for 1-11
wiring closet configuration example 36-37
confirming 14-31
modes 14-3
adding 14-8
adding to VLAN database 14-8
aging dynamic addresses 19-9
allowed on trunk 14-20
and spanning-tree instances 14-3, 14-6, 14-11
configuration guidelines, extended-range VLANs 14-11
configuration guidelines, normal-range VLANs 14-5
configuring 14-1
configuring IDs 1006 to 4094 14-11
connecting through SVIs 13-12
customer numbering in service-provider networks 18-3
default configuration 14-7
deleting 14-9
described 13-2, 14-1
displaying 14-14
extended-range 14-1, 14-10
features 1-10
illustrated 14-2
internal 14-11
in the switch stack 14-6
limiting source traffic with RSPAN 31-20
limiting source traffic with SPAN 31-16
modifying 14-8
multicast 26-17
native, configuring 14-23
normal-range 14-1, 14-4
number supported 1-10
parameters 14-4
port membership modes 14-3
static-access ports 14-9
STP and IEEE 802.1Q trunks 19-10
supported 14-2
Token Ring 14-5
traffic between 14-2
VLAN-bridge STP 19-11, 49-2
VTP modes 15-3
VLAN trunks 14-15
administering 14-32
configuration example 14-33
configuration guidelines 14-29
default configuration 14-29
description 14-27
described 14-28
reconfirming 14-31
troubleshooting 14-33
entering server address 14-30
mapping MAC addresses to VLANs 14-27
monitoring 14-32
reconfirmation interval, changing 14-31
reconfirming membership 14-31
retry count, changing 14-32
configuring 11-41
described 11-31, 11-41
voice-over-IP 16-1
Cisco 7960 phone, port connections 16-1
configuration guidelines 16-3
configuring IP phones for data traffic
override CoS of incoming frame 16-6
trust CoS priority of incoming frame 16-6
configuring ports for voice traffic in
802.1p priority tagged frames 16-5
IEEE 802.1Q frames 16-5
connecting to an IP phone 16-4
default configuration 16-3
described 16-1
displaying 16-7
IP phone data traffic, described 16-2
IP phone voice traffic, described 16-2
configuring routing in 41-85
forwarding 41-79
in service provider networks 41-76
routes 41-77
VPN routing and forwarding table
VQP 1-10, 14-27
defining 41-79
tables 41-76
ARP 41-81
configuring 41-81
ftp 41-84
HSRP 41-82
ping 41-82
RADIUS 41-83
SNMP 41-82
syslog 41-83
tftp 41-84
traceroute 41-84
uRPF 41-83
VRFs, configuring multicast 41-85
adding a client to a domain 15-17
advertisements 14-18, 15-4
and extended-range VLANs 14-2, 15-2
and normal-range VLANs 14-2, 15-2
client mode, configuring 15-13
requirements 15-11
saving 15-9
configuration requirements 15-11
guideline 15-17
resetting 15-17
consistency checks 15-5
default configuration 15-9
described 15-1
domain names 15-9
domains 15-2
Layer 2 protocol tunneling 18-8
client 15-3
off 15-4
server 15-3
transitions 15-3
transparent 15-4
monitoring 15-18
passwords 15-10
disabling 15-16
enabling 15-16
examples 15-7
overview 15-6
support for 1-10
pruning-eligible list, changing 14-22
server mode, configuring 15-11, 15-14
statistics 15-18
support for 1-10
Token Ring support 15-5
transparent mode, configuring 15-12
using 15-1
enabling 15-15
version, guidelines 15-10
Version 1 15-5
configuration guidelines 15-10
overview 15-5
overview 15-5
authentication 46-3
configuration guidelines 46-5
default configuration 46-5
described 46-2
displaying 46-10
dynamic service groups 46-3
enabling 46-6
features unsupported 46-5
forwarding method 46-3
Layer-2 header rewrite 46-3
MD5 security 46-3
message exchange 46-2
monitoring and maintaining 46-10
negotiation 46-3
packet redirection 46-3
packet-return method 46-3
redirecting traffic received from a client 46-6
setting the password 46-7
unsupported WCCPv2 features 46-5
web authentication 11-15
configuring 12-16 to ??
described 1-10
customizeable web pages 12-6
description 12-1
web-based authentication, interactions with other features 12-7
Web Cache Communication Protocol
weight thresholds in tracked lists 45-5
configuring 29-10
displaying 29-11
location TLV 29-3
understanding 29-3
wizards 1-3
described 37-15
egress queue-sets 37-84
ingress queues 37-80
support for 1-14
Index
10-Gigabit Ethernet interfaces 13-6
802.1AE 11-32
802.1x-REV 11-33
AAA down policy, NAC Layer 2 IP validation 1-12
abbreviating commands 2-3
ABRs 41-27
AC (command switch) 6-10
access-denied response, VMPS 14-28
applying IPv4 ACLs to interfaces 36-22
Layer 3 36-22
access groups, applying IPv4 ACLs to interfaces 36-22
clusters, switch 6-13
command switches 6-11
member switches 6-13
switch clusters 6-13
accessing stack members 5-30
and Layer 2 protocol tunneling 18-11
defined 13-3
in switch clusters 6-9
access template 8-2
with 802.1x 11-52
with IEEE 802.1x 11-14
with RADIUS 10-34
with TACACS+ 10-11, 10-17
and QoS 37-8
defined 36-2
Ethernet 36-2
IP 36-2
ACEs 36-2
on bridged packets 36-42
on multicast packets 36-43
on routed packets 36-43
on switched packets 36-41
time ranges to 36-18
to an interface 36-21, 38-7
to QoS 37-7
classifying traffic for QoS 37-49
comments in 36-20
compiling 36-24
defined 36-2, 36-8
examples of 36-24, 37-49
extended IP, configuring for QoS classification 37-50
creating 36-11
matching criteria 36-8
hardware and software handling 36-23
creating 36-8
fragments and QoS guidelines 37-39
implicit deny 36-11, 36-15, 36-18
implicit masks 36-11
matching criteria 36-8
undefined 36-23
applying to interfaces 36-21
creating 36-8
matching criteria 36-8
named 36-16
numbers 36-9
terminal lines, setting on 36-20
unsupported features 36-7
and stacking 38-3
applying to interfaces 38-7
configuring 38-4, 38-5
displaying 38-8
interactions with other features 38-4
limitations 38-3
matching criteria 38-3
named 38-3
precedence of 38-2
supported 38-2
unsupported features 38-3
Layer 4 information in 36-41
logging messages 36-9
MAC extended 36-29, 37-53
matching 36-8, 36-22
monitoring 36-44, 38-8
IPv4 36-16
IPv6 38-3
names 38-4
number per QoS class map 37-39
port 36-3, 38-2
precedence of 36-3
QoS 37-7, 37-49
resequencing entries 36-16
router 36-3, 38-2
router ACLs and VLAN map configuration guidelines 36-40
standard IP, configuring for QoS classification 37-49, 37-51
creating 36-10
matching criteria 36-8
support for 1-11
support in hardware 36-23
time ranges 36-18
types supported 36-2
IPv4 36-7
IPv6 38-3
using router ACLs with VLAN maps 36-40
configuration guidelines 36-33
configuring 36-32
active link 22-4, 22-5, 22-6
active links 22-2
active router 43-2
active traffic monitoring, IP SLAs 44-1
address aliasing 26-2
displaying the MAC address table 7-23
accelerated aging 19-9
changing the aging time 7-14
default aging 19-9
defined 7-12
learning 7-13
removing 7-15
IPv6 42-2
MAC, discovering 7-24
group address range 47-3
STP address management 19-8
adding and removing 7-20
defined 7-12
address resolution 7-24, 41-10
adjacency tables, with CEF 41-92
defined 41-104
OSPF 41-35
routing protocol defaults 41-94
CDP 27-1
LLDP 29-2
RIP 41-21
aggregatable global unicast addresses 42-3
aggregate addresses, BGP 41-62
aggregate policers 37-71
aggregate policing 1-14
aging, accelerating 19-9
for MSTP 20-24
for STP 19-9, 19-23
MAC address table 7-14
for MSTP 20-24, 20-25
for STP 19-23, 19-24
alarms, RMON 32-3
allowed-VLAN list 14-20
application engines, redirecting traffic to 46-1
IS-IS 41-67
ISO IGRP 41-67
configuring 41-11
defined 1-7, 7-24, 41-10
encapsulation 41-11
static cache configuration 41-11
address resolution 7-24
managing 7-24
ASBRs 41-27
AS-path filters, BGP 41-56
asymmetrical links, and IEEE 802.1Q tunneling 18-4
vendor-proprietary 10-36
vendor-specific 10-35
attribute-value pairs 11-20
EIGRP 41-43
HSRP 43-10
local mode with AAA 10-43
open1x 11-29
key 10-27
login 10-29
defined 10-11
key 10-13
login 10-14
See also port-based authentication
authentication keys, and routing protocols 41-105
CLI commands 11-9
compatibility with older 802.1x CLI commands 11-9 to 11-10
overview 11-7
single session ID 11-32
authoritative time source, described 7-2
with RADIUS 10-33
with TACACS+ 10-11, 10-16
authorized ports with IEEE 802.1x 11-10
autoconfiguration 4-3
auto enablement 11-31
automatic advise (auto-advise) in switch stacks 5-13
automatic copy (auto-copy) in switch stacks 5-12
beyond a noncandidate device 6-8
brand new switches 6-9
connectivity 6-5
different VLANs 6-7
management VLANs 6-7
non-CDP-capable devices 6-6
noncluster-capable devices 6-6
routed ports 6-8
in switch clusters 6-5
automatic extraction (auto-extract) in switch stacks 5-12
automatic recovery, clusters 6-10
automatic upgrades (auto-upgrade) in switch stacks 5-12
configuring 13-31
described 13-31
duplex mode 1-4
interface configuration guidelines 13-28
mismatches 50-13
autonomous system boundary routers
autonomous systems, in BGP 41-50
Auto-RP, described 47-7
autosensing, port speed 1-4
autostate exclude 13-6
availability, features 1-9
described 21-7
disabling 21-17
enabling 21-16
support for 1-9
backup links 22-2
backup static routing, configuring 45-12
login 7-12
message-of-the-day login 7-11
default configuration 7-10
when displayed 7-10
Berkeley r-tools replacement 10-54
aggregate addresses 41-62
aggregate routes, configuring 41-62
CIDR 41-62
clear commands 41-65
community filtering 41-59
configuring neighbors 41-60
default configuration 41-47
described 41-47
enabling 41-50
monitoring 41-65
multipath support 41-54
neighbors, types of 41-50
path selection 41-54
peers, configuring 41-60
prefix filtering 41-58
resetting sessions 41-52
route dampening 41-64
route maps 41-56
route reflectors 41-63
routing domain confederation 41-63
routing session with multi-VRF CE 41-86
show commands 41-65
supernets 41-62
support for 1-15
Version 4 41-47
binding cluster group and HSRP group 43-12
See DHCP, Cisco IOS server database
See DHCP snooping binding database
address, Cisco IOS DHCP server 23-6
DHCP snooping database 23-6
IP source guard 23-16
See DHCP snooping binding database
blocking packets 28-7
Boolean expressions in tracked lists 45-4
boot loader, function of 4-2
boot process 4-2
manually 4-19
specific image 4-20
accessing 4-21
described 4-2
environment variables 4-21
prompt 4-21
trap-door mechanism 4-2
bootstrap router (BSR), described 47-7
error-disabled state 21-2
filtering 21-3
RSTP format 20-12
described 21-3
disabling 21-15
enabling 21-14
support for 1-9
described 21-2
disabling 21-14
enabling 21-13
support for 1-9
bridged packets, ACLs on 36-42
broadcast flooding 41-18
directed 41-15
flooded 41-15
broadcast storm-control command 28-4
broadcast storms 28-1, 41-15
cables, monitoring for unidirectional links 30-1
automatic discovery 6-5
defined 6-4
requirements 6-4
See also command switch, cluster standby group, and member switch
configuring 10-51
defined 10-49
and trusted boundary 37-45
automatic discovery in switch clusters 6-5
configuring 27-2
default configuration 27-2
defined with LLDP 29-1
described 27-1
disabling for routing device 27-4
on an interface 27-4
on a switch 27-4
Layer 2 protocol tunneling 18-8
monitoring 27-6
overview 27-1
power negotiation extensions 13-7
support for 1-7
switch stack considerations 27-2
transmission timer and holdtime, setting 27-2
updates 27-2
defined 41-91
distributed 41-92
IPv6 42-20
as IGMP snooping learning method 26-9
enabling server support 47-45
joining multicast group 26-3
overview 47-9
server support only 47-9
switch support of 1-5
CIDR 41-62
CipherSuites 10-50
Cisco 7960 IP Phone 16-1
Cisco Group Management Protocol
Cisco intelligent power management 13-7
See DHCP, Cisco IOS DHCP server
Cisco IOS IP SLAs 44-2
Cisco Redundant Power System 2300
configuring 13-43
managing 13-43
attribute-value pairs for downloadable ACLs 11-20
attribute-value pairs for redirect URL 11-20
Cisco StackWise Plus technology 1-3
CiscoWorks 2000 1-6, 34-4
CISP 11-31
civic location 29-3
classless routing 41-8
configuring 37-54
described 37-8
clearing interfaces 13-50
abbreviating commands 2-3
command modes 2-1
configuration logging 2-4
described 1-6
enabling and disabling 2-6
keystroke editing 2-7
wrapped lines 2-8
error messages 2-4
filtering command output 2-9
getting help 2-3
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
managing clusters 6-16
no and default forms of commands 2-4
Client Information Signalling Protocol
client mode, VTP 15-3
client processes, tracking 45-1
accessing 6-13
automatic discovery 6-5
automatic recovery 6-10
benefits 1-2
compatibility 6-4
described 6-1
LRE profile considerations 6-16
through CLI 6-16
through SNMP 6-17
planning 6-4
automatic discovery 6-5
automatic recovery 6-10
CLI 6-16
host names 6-13
IP addresses 6-13
LRE profiles 6-16
passwords 6-14
RADIUS 6-16
SNMP 6-14, 6-17
switch stacks 6-14
TACACS+ 6-16
See also candidate switch, command switch, cluster standby group, member switch, and standby command switch
and HSRP group 43-12
automatic recovery 6-12
considerations 6-11
defined 6-2
requirements 6-3
virtual IP address 6-11
configID, deviceID, hostname 3-3
configuration service 3-2
described 3-1
event service 3-3
described 3-5
enabling automated configuration 3-6
enabling configuration agent 3-9
enabling event agent 3-8
management functions 1-6
CoA Request Commands 10-23
Coarse Wave Division Multiplexer
command modes 2-1
abbreviating 2-3
no and default 2-4
commands, setting privilege levels 10-8
accessing 6-11
active (AC) 6-10
configuration conflicts 50-12
defined 6-2
passive (PC) 6-10
password privilege levels 6-17
priority 6-10
from command-switch failure 6-10, 50-9
from lost member connectivity 50-12
redundant 6-10
with another switch 50-11
with cluster member 50-9
requirements 6-3
standby (SC) 6-10
See also candidate switch, cluster standby group, member switch, and standby command switch
see single session ID 11-32
community list, BGP 41-59
community ports 17-2
configuring 6-14, 34-8
for cluster switches 34-4
in clusters 6-14
overview 34-4
SNMP 6-14
community VLANs 17-2, 17-3
compatibility, feature 28-12
configurable leave timer, IGMP 26-6
defaults 1-19
Express Setup 1-2
configuration conflicts, recovering from lost member connectivity 50-12
configuration examples, network 1-22
archiving A-21
clearing the startup configuration A-20
creating and using, guidelines for A-10
creating using a text editor A-11
deleting a stored configuration A-20
described A-9
automatically 4-18
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-14
using RCP A-18
using TFTP A-12
invalid combinations when copying A-6
limiting TFTP server access 34-17
obtaining with DHCP 4-9
password recovery disable considerations 10-5
replacing and rolling back, guidelines for A-22
replacing a running configuration A-20, A-21
rolling back a running configuration A-20, A-22
specifying the filename 4-19
system contact and location information 34-16
types and location A-10
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-16
using RCP A-19
using TFTP A-13
configuration guidelines, multi-VRF CE 41-79
configuration logging 2-4
configuration replacement A-20
configuration rollback A-20, A-21
configuration settings, saving 4-16
configure terminal command 13-18
configuring multicast VRFs 41-85
configuring port-based authentication violation modes 11-42 to 11-43
configuring small-frame arrival rate 28-5
Configuring VACL Logging 36-39
conflicts, configuration 50-12
connections, secure remote 10-44
connectivity problems 50-15, 50-16, 50-18
consistency checks in VTP Version 2 15-5
console media type 13-14
RJ-45 13-13
USB 13-13
console port, connecting to 2-10
control protocol, IP SLAs 44-4
corrupted software, recovery steps with Xmodem 50-2
in Layer 2 frames 37-2
override priority 16-6
trust priority 16-6
CoS input queue threshold map for QoS 37-18
CoS output queue threshold map for QoS 37-21
CoS-to-DSCP map for QoS 37-73
counters, clearing interface 13-50
CPU utilization, troubleshooting 50-29
crashinfo file 50-24
critical authentication, IEEE 802.1x 11-55
critical VLAN 11-23
configuration guidelines 39-13
on Layer 2 interfaces 39-13
on Layer 3 physical interfaces 39-16
described 39-3
illustration 39-4
support for 1-9
described 21-5
disabling 21-16
enabling 21-16
fast-convergence events 21-7
Fast Uplink Transition Protocol 21-6
normal-convergence events 21-7
support for 1-9
switch stack considerations 5-3, 5-17
customer edge devices 41-77
customizeable web pages, web-based authentication 12-6
CWDM SFPs 1-35
daylight saving time 7-6
dCEF in the switch stack 41-91
enabling all system diagnostics 50-21
enabling for a specific feature 50-21
redirecting error message output 50-22
using commands 50-20
default commands 2-4
802.1x 11-36
auto-QoS 37-24
banners 7-10
BGP 41-47
booting 4-18
CDP 27-2
DHCP 23-8
DHCP option 82 23-8
DHCP snooping 23-8
DHCP snooping binding database 23-9
DNS 7-9
dynamic ARP inspection 24-5
EIGRP 41-39
EtherChannel 39-11
Ethernet interfaces 13-27
fallback bridging 49-3
Flex Links 22-8
HSRP 43-5
IEEE 802.1Q tunneling 18-4
IGMP 47-39
IGMP filtering 26-24
IGMP snooping 25-6, 26-7
IGMP throttling 26-25
initial switch information 4-3
IP addressing, IP routing 41-6
IP multicast routing 47-11
IP SLAs 44-6
IP source guard 23-18
IPv6 42-11
IS-IS 41-68
Layer 2 interfaces 13-27
Layer 2 protocol tunneling 18-11
LLDP 29-5
MAC address table 7-14
MAC address-table move update 22-8
MSDP 48-4
MSTP 20-15
multi-VRF CE 41-79
MVR 26-20
optional spanning-tree configuration 21-12
OSPF 41-28
password and privilege level 10-2
PIM 47-11
private VLANs 17-6
RADIUS 10-27
RIP 41-21
RMON 32-3
RSPAN 31-12
SDM template 8-5
SNMP 34-6
SPAN 31-12
SSL 10-51
standard QoS 37-37
STP 19-12
switch stacks 5-24
system message logging 33-4
system name and prompt 7-8
TACACS+ 10-13
UDLD 30-4
VLAN, Layer 2 Ethernet interfaces 14-18
VLANs 14-7
VMPS 14-29
voice VLAN 16-3
VTP 15-9
WCCP 46-5
default gateway 4-15, 41-13
default networks 41-95
default routes 41-95
default routing 41-3
default web-based authentication configuration
802.1X 12-9
deleting VLANs 14-9
denial-of-service attack 28-1
description command 13-36
designing your network, examples 1-22
desktop template 5-10
destination-IP address-based forwarding, EtherChannel 39-9
destination-MAC address forwarding, EtherChannel 39-9
detecting indirect link failures, STP 21-8
device discovery protocol 27-1, 29-1
benefits 1-2
described 1-3, 1-6
in-band management 1-8
configuring 23-14
default configuration 23-9
described 23-6
relay agent 23-11
server 23-10
client request message exchange 4-4
client side 4-4
DNS 4-8
relay device 4-8
server side 4-7
server-side 23-10
TFTP server 4-7
example 4-10
for IP address information 4-7
for receiving the configuration file 4-7
overview 4-3
relationship to BOOTP 4-4
relay support 1-7, 1-16
support for 1-7
DHCP-based autoconfiguration and image update
configuring 4-11 to 4-14
understanding 4-5 to 4-6
See DHCP snooping binding database
See DHCP snooping binding database
DHCP object tracking, configuring primary interface 45-11
circuit ID suboption 23-5
configuration guidelines 23-9
default configuration 23-8
displaying 23-16
forwarding address, specifying 23-11
helper address 23-11
overview 23-3
circuit ID 23-5
remote ID 23-5
remote ID suboption 23-5
DHCP server port-based address allocation
configuration guidelines 23-27
default configuration 23-27
described 23-26
displaying 23-29, 24-13
enabling 23-27
reserved addresses 23-28
accepting untrusted packets form edge switch 23-3, 23-13
and private VLANs 23-14
See DHCP snooping binding database
configuration guidelines 23-9
default configuration 23-8
message exchange process 23-4
option 82 data insertion 23-3
trusted interface 23-2
untrusted interface 23-2
untrusted messages 23-2
DHCP snooping binding database
adding bindings 23-15
format 23-7
location 23-6
bindings 23-6
clearing agent statistics 23-15
configuration guidelines 23-9
configuring 23-15
default configuration 23-8, 23-9
binding file 23-15
bindings 23-15
database agent 23-15
described 23-6
enabling 23-15
entry 23-6
renewing database 23-15
delay value 23-15
timeout value 23-15
See DHCP snooping binding database
configuration guidelines 42-16
default configuration 42-16
described 42-6
enabling client function 42-18
enabling DHCPv6 server function 42-16
diagnostic schedule command 51-2
Differentiated Services architecture, QoS 37-2
Differentiated Services Code Point 37-2
Diffusing Update Algorithm (DUAL) 41-37
directed unicast requests 1-7
changing A-4
creating and removing A-5
displaying the working A-4
Distance Vector Multicast Routing Protocol
distance-vector protocols 41-3
distribute-list command 41-104
and DHCP-based autoconfiguration 4-8
default configuration 7-9
displaying the configuration 7-10
in IPv6 42-4
overview 7-8
setting up 7-9
support for 1-7
DNS-based SSM mapping 47-18, 47-20
DNS 7-8
VTP 15-9
domains, ISO IGRP routing 41-67
dot1q-tunnel switchport mode 14-16
IEEE 802.1Q tunneling 18-2
Layer 2 protocol tunneling 18-10
downloadable ACL 11-18, 11-20, 11-62
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-14
using RCP A-18
using TFTP A-12
deleting old image A-30
preparing A-28, A-31, A-36
reasons for A-25
using CMS 1-3
using FTP A-32
using HTTP 1-3, A-25
using RCP A-37
using TFTP A-28
using the device manager or Network Assistant A-25
drop threshold for Layer 2 protocol packets 18-11
configuring 42-14
described 42-4
IPv6 42-4
DSCP 1-14, 37-2
DSCP input queue threshold map for QoS 37-18
DSCP output queue threshold map for QoS 37-21
DSCP-to-CoS map for QoS 37-76
DSCP-to-DSCP-mutation map for QoS 37-77
DSCP transparency 37-46
DTP 1-10, 14-15
dual-action detection 39-6
DUAL finite state machine, EIGRP 41-38
dual IPv4 and IPv6 templates 8-2, 42-6
IPv4 and IPv6 42-6
SDM templates supporting 42-6
configuring a summary address 47-59
disabling 47-61
connecting PIM domain to DVMRP router 47-51
enabling unicast routing 47-54
with Cisco devices 47-49
with Cisco IOS software 47-9
mrinfo requests, responding to 47-54
advertising the default route to 47-53
discovery with Probe messages 47-49
displaying information 47-54
prevent peering with nonpruning 47-57
rejecting nonpruning 47-55
overview 47-9
adding a metric offset 47-62
advertising all 47-61
advertising the default route to neighbors 47-53
caching DVMRP routes learned in report messages 47-55
changing the threshold for syslog messages 47-58
favoring one over another 47-62
limiting the number injected into MBONE 47-58
limiting unicast route advertisements 47-49
routing table 47-9
source distribution tree, building 47-9
support for 1-16
configuring 47-51
displaying neighbor information 47-54
characteristics 14-3
configuring 14-30
defined 13-3
ARP cache poisoning 24-1
ARP requests, described 24-1
ARP spoofing attack 24-1
log buffer 24-16
statistics 24-16
configuration guidelines 24-6
ACLs for non-DHCP environments 24-9
in DHCP environments 24-7
log buffer 24-14
rate limit for incoming ARP packets 24-4, 24-11
default configuration 24-5
denial-of-service attacks, preventing 24-11
described 24-1
DHCP snooping binding database 24-2
statistics 24-16
error-disabled state for exceeding rate limit 24-4
function of 24-2
interface trust states 24-3
clearing 24-16
configuring 24-14
logging of dropped packets, described 24-5
man-in-the middle attack, described 24-2
network security issues and interface trust states 24-3
priority of ARP ACLs and DHCP snooping entries 24-4
configuring 24-11
described 24-4
error-disabled state 24-4
clearing 24-16
displaying 24-16
validation checks, performing 24-13
dynamic auto trunking mode 14-16
dynamic desirable trunking mode 14-16
Dynamic Host Configuration Protocol
See DHCP-based autoconfiguration
described 14-28
reconfirming 14-31
troubleshooting 14-33
types of connections 14-30
dynamic routing 41-3
ISO CLNS 41-66
EBGP 41-46
enabling and disabling 2-6
keystrokes used 2-7
wrapped lines 2-8
EEM 3.2 35-5
authentication 41-43
components 41-38
configuring 41-41
default configuration 41-39
definition 41-37
interface parameters, configuring 41-42
monitoring 41-45
stub routing 41-44
support for 1-15
EIGRP IPv6 42-8
ELIN location 29-3
3.2 35-5
actions 35-4
configuring 35-1, 35-6
displaying information 35-8
environmental variables 35-5
event detectors 35-3
policies 35-4
registering and defining an applet 35-6
registering and defining a TCL script 35-7
understanding 35-1
enable password 10-3
enable secret password 10-3
encryption, CipherSuite 10-50
encryption for passwords 10-3
encryption keying 11-32
encryption keys, MKA 11-33
backup static routing 45-12
defined 45-1
DHCP primary interface 45-11
HSRP 45-7
IP routing state 45-2
IP SLAs 45-9
line-protocol state 45-2
network monitoring with IP SLAs 45-11
routing policy, configuring 45-12
static route primary interface 45-10
tracked lists 45-3
enhanced object tracking static routing 45-10
environmental variables, embedded event manager 35-5
environment variables, function of 4-22
equal-cost routing 1-15, 41-93
error-disabled state, BPDU 21-2
error messages during command entry 2-4
automatic creation of 39-5, 39-7
binding physical and logical interfaces 39-4
numbering of 39-4
configuration guidelines 39-12
Layer 2 interfaces 39-13
Layer 3 physical interfaces 39-16
Layer 3 port-channel logical interfaces 39-15
default configuration 39-11
described 39-2
displaying status 39-22
forwarding methods 39-8, 39-18
IEEE 802.3ad, described 39-7
with STP 39-12
with VLANs 39-12
described 39-7
displaying status 39-22
hot-standby ports 39-20
interaction with other features 39-8
modes 39-7
port priority 39-22
system priority 39-21
Layer 3 interface 41-5
load balancing 39-8, 39-18
logical interfaces, described 39-4
aggregate-port learners 39-19
described 39-5
displaying status 39-22
interaction with other features 39-7
interaction with virtual switches 39-6
learn method and priority configuration 39-19
modes 39-6
support for 1-5
with dual-action detection 39-6
described 39-4
numbering of 39-4
port groups 13-6
stack changes, effects of 39-10
support for 1-5
described 21-10
disabling 21-17
enabling 21-17
active link 13-23
and routing 13-24
and routing protocols 13-24
and TFTP 13-26
configuring 13-25
connecting to 2-10
default setting 13-24
described 13-23
for network management 13-23
specifying 13-25
supported features 13-25
unsupported features 13-25
Ethernet management port, internal
and routing 13-24
and routing protocols 13-24
unsupported features 13-25
adding 14-8
defaults and ranges 14-7
modifying 14-8
EUI 42-3
event detectors, embedded event manager 35-3
events, RMON 32-3
network configuration 1-22
expedite queue for QoS 37-89
Express Setup 1-2
See also getting started guide
extended crashinfo file 50-24
configuration guidelines 14-11
configuring 14-10
creating 14-12
creating with an internal VLAN ID 14-13
defined 14-1
MSTP 20-18
STP 19-4, 19-16
Extensible Authentication Protocol over LAN 11-2
external neighbors, BGP 41-50
failover support 1-9
and protected ports 49-4
creating 49-4
described 49-2
function of 49-2
number supported 49-4
removing 49-5
configuration guidelines 49-4
connecting interfaces with 13-13
default configuration 49-3
described 49-1
flooding packets 49-2
forwarding packets 49-2
overview 49-1
protocol, unsupported 49-4
stack changes, effects of 49-3
disabling on an interface 49-9
forward-delay interval 49-8
hello BPDU interval 49-8
interface priority 49-6
keepalive messages 19-2
maximum-idle interval 49-9
path cost 49-7
VLAN-bridge spanning-tree priority 49-6
VLAN-bridge STP 49-2
support for 1-15
SVIs and routed ports 49-1
unsupported protocols 49-4
VLAN-bridge STP 19-11
Fast Convergence 22-3
Fast Uplink Transition Protocol 21-6
features, incompatible 28-12
FIB 41-92
fiber-optic, detecting unidirectional links 30-1
description 50-25
location 50-25
copying A-5
crashinfo, description 50-24
deleting A-6
displaying the contents of A-8
description 50-25
location 50-25
creating A-7
displaying the contents of A-7
extracting A-8
image file format A-26
displaying available file systems A-2
displaying file information A-3
local file system names A-1
network file system names A-5
setting the default A-3
in a VLAN 36-32
IPv6 traffic 38-4, 38-7
non-IP traffic 36-29
show and more command output 2-9
filtering show and more command output 2-9
flash device, number of A-1
flexible authentication ordering
configuring 11-66
overview 11-28
Flex Link Multicast Fast Convergence 22-3
configuring 22-8, 22-9
configuring preferred VLAN 22-11
configuring VLAN load balancing 22-10
default configuration 22-8
description 22-1
link load balancing 22-2
monitoring 22-14
VLANs 22-2
flooded traffic, blocking 28-8
flow-based packet classification 1-14
QoS classification 37-7
QoS egress queueing and scheduling 37-19
QoS ingress queueing and scheduling 37-16
QoS policing and marking 37-11
configuring 13-30
described 13-30
MSTP 20-24
STP 19-23
forwarding nonroutable protocols 49-1
downloading A-14
overview A-13
preparing the server A-14
uploading A-16
deleting old image A-34
downloading A-32
preparing the server A-31
uploading A-34
general query 22-5
Generating IGMP Reports 22-3
get-next-request operation 34-4
get-request operation 34-4
global leave, IGMP 26-13
guest VLAN and IEEE 802.1x 11-21
guide mode 1-3
See device manager and Network Assistant
hardware limitations and Layer 3 interfaces 13-37
MSTP 20-23
STP 19-22
help, for the command line 2-3
hierarchical policy maps 37-9
configuration guidelines 37-40
configuring 37-63
described 37-12
changing the buffer size 2-5
described 2-5
disabling 2-6
recalling commands 2-6
history table, level and number of syslog messages 33-10
host modes, MACsec 11-34
host names in clusters 6-13
configuring 17-11
kinds of 17-2
hosts, limit on dynamic ports 14-33
HP OpenView 1-6
authentication string 43-10
automatic cluster recovery 6-12
binding to cluster group 43-12
cluster standby group considerations 6-11
command-switch redundancy 1-2, 1-9
configuring 43-5
default configuration 43-5
definition 43-1
guidelines 43-6
monitoring 43-13
object tracking 45-7
overview 43-1
priority 43-8
routing redundancy 1-15
support for ICMP redirect messages 43-12
switch stack considerations 43-5
timers 43-10
tracking 43-8
See also clusters, cluster standby group, and standby command switch
configuring 42-26
guidelines 42-25
HTTP(S) Over IPv6 42-9
configuring 10-52
described 10-48
self-signed certificate 10-49
HTTP secure server 10-48
IBPG 41-46
IPv6 42-4
redirect messages 41-13
support for 1-16
time-exceeded messages 50-18
traceroute and 50-18
unreachable messages 36-22
unreachable messages and IPv6 38-4
unreachables and ACLs 36-23
configuring 44-11
IP SLAs 44-11
executing 50-15
overview 50-15
ICMP Router Discovery Protocol
ICMPv6 42-4
and ingress RSPAN 31-22
and ingress SPAN 31-15
IEEE 802.1p 16-1
and trunk ports 13-3
configuration limitations 14-17
encapsulation 14-15
native VLAN for untagged traffic 14-23
compatibility with other features 18-6
defaults 18-4
described 18-1
tunnel ports with other features 18-6
IEEE 802.3x flow control 13-30
ifIndex values, SNMP 34-5
IFS 1-7
described 26-6
enabling 26-11
as a member of a group 47-39
statically connected member 47-44
controlling access to groups 47-40
default configuration 47-39
fast switching 47-44
controlling the length of time 26-12
disabling on an interface 26-13
global leave 26-13
query solicitation 26-13
recovering from flood mode 26-13
host-query interval, modifying 47-42
joining multicast group 26-3
join messages 26-3
leave processing, enabling 25-9, 26-11
leaving multicast group 26-5
multicast reachability 47-39
overview 47-3
queries 26-4
described 26-6
disabling 25-11, 26-16
supported versions 26-3
support for 1-5
changing to Version 2 47-41
described 47-3
changing to Version 1 47-41
described 47-3
maximum query response time value 47-43
pruning groups 47-43
query timeout value 47-42
configuring 26-25
default configuration 26-24
described 26-24
support for 1-5
configuring filtering 26-27
setting the maximum number 26-27
IGMP helper 47-6
configuration guidelines 26-11
described 26-6
enabling 26-11
applying 26-26
configuration mode 26-25
configuring 26-25
and address aliasing 26-2
and stack changes 26-7
configuring 26-7
default configuration 25-6, 26-7
definition 26-2
enabling and disabling 25-7, 26-8
global configuration 26-8
Immediate Leave 26-6
in the switch stack 26-7
method 26-8
monitoring 25-12, 26-16
configuration guidelines 26-14
configuring 26-14
supported versions 26-3
support for 1-5
VLAN configuration 26-8
configuring 26-27
default configuration 26-25
described 26-24
displaying action 26-29
IGP 41-27
described 26-6
enabling 25-9
inaccessible authentication bypass 11-23
support for multiauth ports 11-23
defaults 1-19
Express Setup 1-2
number 13-18
range macros 13-21
interface command 13-17 to 13-18
auto-MDIX, configuring 13-31
procedure 13-18
counters, clearing 13-50
default configuration 13-27
described 13-36
descriptive name, adding 13-36
displaying information about 13-49
duplex and speed configuration guidelines 13-28
flow control 13-30
management 1-6
monitoring 13-48
naming 13-36
physical, identifying 13-17
range of 13-19
restarting 13-50, 13-51
shutting down 13-50
speed and duplex, configuring 13-29
status 13-48
supported 13-17
types of 13-1
interfaces range macro command 13-21
interface types 13-17
internal neighbors, BGP 41-50
Internet Control Message Protocol
Internet Group Management Protocol
inter-VLAN routing 1-15, 41-2
inventory management TLV 29-3
for QoS classification 37-7
implicit deny 36-11, 36-15
implicit masks 36-11
named 36-16
undefined 36-23
128-bit 42-2
candidate or member 6-4, 6-13
classes of 41-7
cluster access 6-2
command switch 6-3, 6-11, 6-13
default configuration 41-6
discovering 7-24
for IP routing 41-6
IPv6 42-2
MAC address association 41-10
monitoring 41-19
redundant clusters 6-11
standby command switch 6-11, 6-13
IP base feature set 1-2
IP base software image 1-1
IP broadcast address 41-17
ip cef distributed command 41-92
IP directed broadcasts 41-15
ip igmp profile command 26-25
manually 4-15
through DHCP-based autoconfiguration 4-3
default configuration 4-3
all-hosts 47-3
all-multicast-routers 47-3
host group address range 47-3
administratively-scoped boundaries, described 47-47
and IGMP snooping 26-2
adding to an existing sparse-mode cloud 47-26
benefits of 47-26
configuration guidelines 47-12
filtering incoming RP announcement messages 47-28
overview 47-7
preventing candidate RP spoofing 47-28
preventing join messages to false RPs 47-28
setting up in a new internetwork 47-26
using with BSR 47-34
configuration guidelines 47-12
configuring candidate BSRs 47-32
configuring candidate RPs 47-33
defining the IP multicast boundary 47-31
defining the PIM domain border 47-30
overview 47-7
using with Auto-RP 47-34
Cisco implementation 47-2
basic multicast routing 47-12
IP multicast boundary 47-47
default configuration 47-11
PIM mode 47-13
Auto-RP 47-7
BSR 47-7
described 47-46
enabling sdr listener support 47-46
limiting DVMRP routes advertised 47-58
limiting sdr cache entry lifetime 47-46
SAP packets for conference session announcement 47-46
Session Directory (sdr) tool, described 47-46
multicast forwarding, described 47-8
PIMv1 and PIMv2 interoperability 47-11
protocol interaction 47-2
reverse path check (RPF) 47-8
assigning manually 47-24
configuring Auto-RP 47-26
configuring PIMv2 BSR 47-30
monitoring mapping information 47-35
using Auto-RP and BSR 47-34
stack master functions 47-10
stack member functions 47-10
statistics, displaying system and network 47-63
and QoS 16-1
automatic classification and queueing 37-23
configuring 16-4
ensuring port security with QoS 37-45
trusted boundary for QoS 37-45
IP Port Security for Static Hosts
on a Layer 2 access port 23-20
on a PVLAN host port 23-24
IP precedence 37-2
IP-precedence-to-DSCP map for QoS 37-74
routing 1-15
IP routes, monitoring 41-106
connecting interfaces with 13-13
disabling 41-20
enabling 41-20
IP service levels, analyzing 44-1
IP services feature set 1-2
benefits 44-2
configuration guidelines 44-6
configuring object tracking 45-9
Control Protocol 44-4
default configuration 44-6
definition 44-1
ICMP echo operation 44-11
measuring network performance 44-3
monitoring 44-13
multioperations scheduling 44-5
object tracking 45-9
operation 44-3
reachability tracking 45-9
described 44-4
enabling 44-7
response time 44-4
scheduling 44-5
SNMP support 44-2
supported metrics 44-2
threshold monitoring 44-6
track object monitoring agent, configuring 45-11
track state 45-9
UDP jitter operation 44-8
and 802.1x 23-19
and DHCP snooping 23-16
and EtherChannels 23-19
and port security 23-19
and private VLANs 23-19
and routed ports 23-18
and TCAM entries 23-19
and trunk interfaces 23-18
and VRF 23-19
automatic 23-16
manual 23-16
binding table 23-16
configuration guidelines 23-18
default configuration 23-18
described 23-16
disabling 23-20
bindings 23-26
configuration 23-26
enabling 23-19, 23-21
source IP address 23-17
source IP and MAC address 23-17
source IP address filtering 23-17
source IP and MAC address filtering 23-17
adding 23-19, 23-21
deleting 23-20
static hosts 23-21
executing 50-18
overview 50-18
address resolution 41-10
administrative distances 41-94, 41-104
ARP 41-10
assigning IP addresses to Layer 3 interfaces 41-7
authentication keys 41-105
address 41-17
flooding 41-18
packets 41-15
storms 41-15
classless routing 41-8
configuring static routes 41-94
addressing configuration 41-6
gateways 41-13
networks 41-95
routes 41-95
routing 41-3
directed broadcasts 41-15
disabling 41-20
dynamic routing 41-3
enabling 41-20
EtherChannel Layer 3 interface 41-5
IGP 41-27
inter-VLAN 41-2
classes 41-7
configuring 41-6
IPv6 42-3
IRDP 41-13
Layer 3 interfaces 41-5
MAC address and IP address 41-10
passive interfaces 41-103
distance-vector 41-3
dynamic 41-3
link-state 41-3
proxy ARP 41-10
redistribution 41-96
reverse address resolution 41-10
routed ports 41-5
static routing 41-3
steps to configure 41-5
subnet mask 41-7
subnet zero 41-8
supernet 41-8
UDP 41-16
unicast reverse path forwarding 1-16, 41-91
with SVIs 41-5
applying to interfaces 36-21
extended, creating 36-11
named 36-16
standard, creating 36-10
displaying 38-8
limitations 38-3
matching criteria 38-3
port 38-2
precedence 38-2
router 38-2
supported 38-2
addresses 42-2
address formats 42-2
and switch stacks 42-10
applications 42-5
assigning address 42-12
autoconfiguration 42-5
CEFv6 42-20
default configuration 42-11
default router preference (DRP) 42-4
defined 42-1
Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 42-8
EIGRP IPv6 Commands 42-8
Router ID 42-8
feature limitations 42-10
features not supported 42-9
forwarding 42-12
ICMP 42-4
monitoring 42-28
neighbor discovery 42-4
OSPF 42-7
path MTU discovery 42-4
SDM templates 8-3, 25-1, 38-1
stack master functions 42-11
Stateless Autoconfiguration 42-5
supported features 42-3
switch limitations 42-9
understanding static routes 42-7
IPv6 traffic, filtering 38-4
configuring 41-14
definition 41-13
support for 1-16
addresses 41-67
area routing 41-67
default configuration 41-68
monitoring 41-76
show commands 41-76
system routing 41-67
and IPv6 42-3
and trunk ports 13-3
encapsulation 1-10, 14-15
trunking with IEEE 802.1 tunneling 18-5
clear commands 41-76
dynamic routing protocols 41-66
monitoring 41-76
NETs 41-66
NSAPs 41-66
OSI standard 41-66
area routing 41-67
system routing 41-67
isolated port 17-2
isolated VLANs 17-2, 17-3
join messages, IGMP 26-3
described 10-39
keepalive messages 19-2
boundary switch 10-41
KDC 10-41
network services 10-42
configuration examples 10-39
configuring 10-42
credentials 10-39
described 10-39
KDC 10-39
operation 10-41
realm 10-40
server 10-41
support for 1-13
switch as trusted third party 10-39
terms 10-40
TGT 10-41
tickets 10-39
l2protocol-tunnel command 18-13
Layer 2 protocol tunneling 18-9
Layer 2 frames, classification with CoS 37-2
Layer 2 interfaces, default configuration 13-27
configuring 18-10
configuring for EtherChannels 18-14
default configuration 18-11
defined 18-8
guidelines 18-12
and ARP 50-17
and CDP 50-17
broadcast traffic 50-16
described 50-16
IP addresses and subnets 50-17
MAC addresses and VLANs 50-17
multicast traffic 50-17
multiple devices on a port 50-17
unicast traffic 50-16
usage guidelines 50-17
Layer 3 features 1-15
assigning IP addresses to 41-7
assigning IPv4 and IPv6 addresses to 42-15
assigning IPv6 addresses to 42-12
changing from Layer 2 mode 41-82
types of 41-5
Layer 3 packets, classification methods 37-2
LDAP 3-2
Leaking IGMP Reports 22-4
See hardware installation guide
Lightweight Directory Access Protocol
Link Aggregation Control Protocol
Link Failure, detecting unidirectional 20-8
link local unicast addresses 42-4
links, unidirectional 30-1
link state advertisements (LSAs) 41-33
link-state protocols 41-3
configuring 39-25
described 39-23
configuring 29-5
characteristics 29-6
default configuration 29-5
enabling 29-6
monitoring and maintaining 29-11
overview 29-1
supported TLVs 29-2
switch stack considerations 29-2
transmission timer and holdtime, setting 29-6
procedures 29-5
TLVs 29-7
monitoring and maintaining 29-11
overview 29-1, 29-2
supported TLVs 29-2
load balancing 43-4
local SPAN 31-2
location TLV 29-3
logging messages, ACL 36-9
with RADIUS 10-29
with TACACS+ 10-14
login banners 7-10
Long-Reach Ethernet (LRE) technology 1-34
described 21-11
enabling 21-18
support for 1-9
LRE profiles, considerations in switch clusters 6-16
MAC/PHY configuration status TLV 29-2
aging time 7-14
and VLAN association 7-13
building the address table 7-13
default configuration 7-14
disabling learning on a VLAN 7-23
discovering 7-24
displaying 7-23
displaying in the IP source binding table 23-26
learning 7-13
removing 7-15
in ACLs 36-29
IP address association 41-10
adding 7-20
allowing 7-22, 7-23
characteristics of 7-20
dropping 7-21
removing 7-20
MAC address learning 1-7
MAC address learning, disabling on a VLAN 7-23
MAC address notification, support for 1-17
configuration guidelines 22-8
configuring 22-12
default configuration 22-8
description 22-6
monitoring 22-14
MAC address-to-VLAN mapping 14-27
MAC authentication bypass 11-15
applying to Layer 2 interfaces 36-31
configuring for QoS 37-53
creating 36-29
defined 36-29
for QoS classification 37-5
MACsec 11-32
and stacking 11-34
configuring on an interface 11-69
defined 11-32
magic packet 11-26
manageability features 1-7
browser session 1-8
CLI session 1-8
device manager 1-8
SNMP 1-8
out-of-band console port connection 1-8
management address TLV 29-2
CLI 2-1
clustering 1-4
CNS 3-1
Network Assistant 1-3
overview 1-6
switch stacks 1-3
considerations in switch clusters 6-7
discovery through different management VLANs 6-7
CoS-to-DSCP 37-73
DSCP 37-73
DSCP-to-CoS 37-76
DSCP-to-DSCP-mutation 37-77
IP-precedence-to-DSCP 37-74
policed-DSCP 37-75
described 37-13
action in policy map 37-58
action with aggregate policers 37-71
described 37-4, 37-9
matching IPv4 ACLs 36-8
MSTP 20-24
STP 19-23
maximum hop count, MSTP 20-25
maximum number of allowed devices, port-based authentication 11-40
maximum-paths command 41-54, 41-93
configuration guidelines 11-29 to 11-30
described 1-11, 11-29
exceptions with authentication process 11-4
membership mode, VLAN port 14-3
automatic discovery 6-5
defined 6-2
managing 6-16
passwords 6-13
recovering from lost connectivity 50-12
requirements 6-4
See also candidate switch, cluster standby group, and standby command switch
messages, to users through banners 7-10
metrics, in BGP 41-54
metric translations, between routing protocols 41-99
metro tags 18-2
MHSRP 43-4
overview 34-1
SNMP interaction with 34-4
mini-type USB console port 13-13
mirroring traffic for analysis 31-1
mismatches, autonegotiation 50-13
configuring policies 11-69
defined 11-32
policies 11-33
replay protection 11-33
statistics 11-35
virtual ports 11-33
module number 13-18
access groups 36-44
BGP 41-65
cables for unidirectional links 30-1
CDP 27-6
CEF 41-92
EIGRP 41-45
fallback bridging 49-10
features 1-17
Flex Links 22-14
HSRP 43-13
IEEE 802.1Q tunneling 18-18
snooping 25-12, 26-16
interfaces 13-48
address tables 41-19
multicast routing 47-63
routes 41-106
IP SLAs operations 44-13
IPv4 ACL configuration 36-44
IPv6 42-28
IPv6 ACL configuration 38-8
IS-IS 41-76
ISO CLNS 41-76
Layer 2 protocol tunneling 18-18
MAC address-table move update 22-14
MSDP peers 48-19
multicast router interfaces 26-17
multi-VRF CE 41-90
network traffic for analysis with probe 31-2
object tracking 45-12
OSPF 41-37
private VLANs 17-15
RP mapping information 47-35
SFP status 50-14
source-active messages 48-19
speed and duplex mode 13-29
SSM mapping 47-22
traffic flowing among switches 32-1
traffic suppression 28-21
tunneling 18-18
filters 36-45
maps 36-45
VLANs 14-14
VMPS 14-32
VTP 15-18
mrouter Port 22-3
mrouter port 22-5
benefits of 48-3
clearing MSDP connections and statistics 48-19
controlling source information
forwarded by switch 48-12
originated by switch 48-8
received by switch 48-14
default configuration 48-4
sending SA messages to 48-17
specifying the originating address 48-18
incoming SA messages 48-14
SA messages to a peer 48-12
SA requests from a peer 48-11
join latency, defined 48-6
configuring 48-16
defined 48-16
originating address, changing 48-18
overview 48-1
peer-RPF flooding 48-2
configuring a default 48-4
monitoring 48-19
peering relationship, overview 48-1
requesting source information from 48-8
shutting down 48-16
caching 48-6
defined 48-2
filtering from a peer 48-11
filtering incoming 48-14
filtering to a peer 48-12
limiting data with TTL 48-14
restricting advertised sources 48-9
support for 1-16
configuration guidelines 20-16
described 20-6
described 21-3
enabling 21-14
described 21-2
enabling 21-13
CIST, described 20-3
CIST root 20-5
configuration guidelines 20-15, 21-12
forward-delay time 20-24
hello time 20-23
link type for rapid convergence 20-25
maximum aging time 20-24
maximum hop count 20-25
MST region 20-16
neighbor type 20-26
path cost 20-21
port priority 20-20
root switch 20-18
secondary root switch 20-19
switch priority 20-22
defined 20-3
operations between regions 20-4
default configuration 20-15
default optional feature configuration 21-12
displaying status 20-27
enabling the mode 20-16
described 21-10
enabling 21-17
effects on root switch 20-18
effects on secondary root switch 20-19
unexpected behavior 20-18
implementation 20-6
port role naming change 20-7
terminology 20-5
instances supported 19-10
interface state, blocking to forwarding 21-2
interoperability and compatibility among modes 19-10
interoperability with IEEE 802.1D
described 20-9
restarting migration process 20-26
defined 20-3
master 20-3
operations within a region 20-3
described 21-11
enabling 21-18
mapping VLANs to MST instance 20-17
CIST 20-3
configuring 20-16
described 20-2
hop-count mechanism 20-5
IST 20-3
supported spanning-tree instances 20-2
optional features supported 1-9
overview 20-2
described 21-2
enabling 21-12
preventing root switch selection 21-10
described 21-10
enabling 21-18
configuring 20-18
effects of extended system ID 20-18
unexpected behavior 20-18
shutdown Port Fast-enabled port 21-2
stack changes, effects of 20-8
status, displaying 20-27
system 13-40
system jumbo 13-39
system routing 13-39
support for inaccessible authentication bypass 11-23
See multiple-authentication mode
Immediate Leave 26-6
joining 26-3
leaving 26-5
static joins 25-8, 26-10
ACLs on 36-43
blocking 28-8
multicast router interfaces, monitoring 26-17
multicast router ports, adding 25-8, 26-9
Multicast Source Discovery Protocol
multicast storm 28-1
multicast storm-control command 28-4
multicast television application 26-18
multicast VLAN 26-17
multioperations scheduling, IP SLAs 44-5
multiple authentication 11-12
multiple VPN routing/forwarding in customer edge devices
configuration example 41-87
configuration guidelines 41-79
configuring 41-79
default configuration 41-79
defined 41-76
displaying 41-90
monitoring 41-90
network components 41-79
packet-forwarding process 41-78
support for 1-15
and address aliasing 26-20
and IGMPv3 26-21
configuring interfaces 26-22
default configuration 26-20
described 26-17
example application 26-18
in the switch stack 26-20
modes 26-21
multicast television application 26-18
setting global parameters 26-21
support for 1-5
AAA down policy 1-12
critical authentication 11-23, 11-55
IEEE 802.1x authentication using a RADIUS server 11-60
IEEE 802.1x validation using RADIUS server 11-60
inaccessible authentication bypass 1-12, 11-55
Layer 2 IEEE 802.1x validation 1-12, 11-60
Layer 2 IP validation 1-12
named IPv4 ACLs 36-16
named IPv6 ACLs 38-3
and IEEE 802.1Q tunneling 18-4
configuring 14-23
default 14-23
configuring 11-61
overview 11-30
neighbor discovery, IPv6 42-4
neighbor discovery/recovery, EIGRP 41-38
neighbors, BGP 41-60
benefits 1-2
described 1-6
downloading image files 1-3
guide mode 1-3
management options 1-3
managing switch stacks 5-3, 5-17
upgrading a switch A-25
wizards 1-3
network configuration examples
cost-effective wiring closet 1-24
high-performance wiring closet 1-25
increasing network performance 1-22
large network 1-31
long-distance, high-bandwidth transport 1-35
multidwelling network 1-34
providing network services 1-22
redundant Gigabit backbone 1-27
server aggregation and Linux server cluster 1-27
small to medium-sized network 1-29
performance 1-22
services 1-22
CDP 27-1
RMON 32-1
SNMP 34-1
network performance, measuring with IP SLAs 44-3
network policy TLV 29-2
no commands 2-4
configuration guidelines 37-40
configuring 37-58
described 37-10
non-IP traffic filtering 36-29
nontrunking mode 14-16
normal-range VLANs 14-4
configuration guidelines 14-5
configuring 14-4
defined 14-1
no switchport command 13-4
NSAPs, as ISO IGRP addresses 41-67
IS-IS 41-69
NSM 3-3
NSSA, OSPF 41-33
defined 7-2
overview 7-2
stratum 7-2
support for 1-7
services 7-2
synchronizing 7-2
configuring 50-27
described 50-27
displaying 50-28
HSRP 45-7
IP SLAs 45-9
IP SLAs, configuring 45-9
monitoring 45-12
offline configuration for switch stacks 5-8
off mode, VTP 15-4
described 51-1
overview 51-1
running tests 51-4
configuring 11-66
overview 11-29
optimizing system resources 8-1
options, management 1-6
area parameters, configuring 41-33
configuring 41-31
metrics 41-34
route 41-34
settings 41-28
described 41-27
for IPv6 42-7
interface parameters, configuring 41-32
LSA group pacing 41-36
monitoring 41-37
router IDs 41-36
route summarization 41-34
support for 1-15
virtual links 41-34
out-of-profile markdown 1-14
packet modification, with QoS 37-22
Layer 2 protocol tunneling 18-9
parallel paths, in routing tables 41-93
configuring 41-103
OSPF 41-35
default configuration 10-2
disabling recovery of 10-5
encrypting 10-3
for security 1-10
in clusters 6-14
overview 10-1
recovery of 50-3
enable 10-3
enable secret 10-3
Telnet 10-6
with usernames 10-6
VTP domain 15-10
MSTP 20-21
STP 19-20
path MTU discovery 42-4
payload encryption 1-1
defined 41-99
enabling 41-101
fast-switched policy-based routing 41-102
local policy-based routing 41-102
PC (passive command switch) 6-10
peers, BGP 41-60
percentage thresholds in tracked lists 45-6
performance, network design 1-22
performance features 1-4
persistent self-signed certificate 10-49
per-user ACLs and Filter-Ids 11-8
PE to CE routing, configuring 41-86
physical ports 13-2
default configuration 47-11
overview 47-4
rendezvous point (RP), described 47-5
RPF lookups 47-9
enabling a mode 47-13
overview 47-4
router-query message interval, modifying 47-38
shared tree and source tree, overview 47-35
shortest path tree, delaying the use of 47-37
join messages and shared tree 47-5
overview 47-5
prune messages 47-5
RPF lookups 47-9
configuration guidelines 47-22
enabling 47-23
overview 47-5
support for 1-16
interoperability 47-11
troubleshooting interoperability problems 47-35
v2 improvements 47-4
PIM-DVMRP, as snooping method 26-9
character output description 50-16
executing 50-15
overview 50-15
auto mode 13-9
CDP with power consumption, described 13-7
CDP with power negotiation, described 13-7
Cisco intelligent power management 13-7
configuring 13-32
devices supported 13-7
high-power devices operating in low-power mode 13-7
IEEE power classification levels 13-8
monitoring 13-10
monitoring power 13-35
policing power consumption 13-35
policing power usage 13-10
power budgeting 13-33
power consumption 13-33
powered-device detection and initial power allocation 13-8
power management modes 13-9
power negotiation extensions to CDP 13-7
standards supported 13-7
static mode 13-9
troubleshooting 50-13
policed-DSCP map for QoS 37-75
for each matched traffic class 37-58
for more than one traffic class 37-71
described 37-4
number of 37-41
types of 37-10
described 37-4
token-bucket algorithm 37-10
characteristics of 37-59
described 37-8
hierarchical 37-9
configuration guidelines 37-40
configuring 37-63
described 37-12
nonhierarchical on physical ports
configuration guidelines 37-40
configuring 37-58
described 37-10
POP 1-34
defined 36-3
types of 36-4
accounting 11-14
defined 11-3, 12-2
RADIUS server 11-3
client, defined 11-3, 12-2
configuration guidelines 11-38, 12-9
802.1x authentication 11-43
guest VLAN 11-53
host mode 11-46
inaccessible authentication bypass 11-55
manual re-authentication of a client 11-48
periodic re-authentication 11-47
quiet period 11-48
RADIUS server 11-46, 12-13
RADIUS server parameters on the switch 11-45, 12-11
restricted VLAN 11-54
switch-to-client frame-retransmission number 11-49, 11-50
switch-to-client retransmission time 11-49
violation modes 11-42 to 11-43
default configuration 11-36, 12-9
described 11-1
device roles 11-3, 12-2
displaying statistics 11-71, 12-17
downloadable ACLs and redirect URLs
configuring 11-62 to 11-65, ?? to 11-65
overview 11-18 to 11-20
EAPOL-start frame 11-6
EAP-request/identity frame 11-6
EAP-response/identity frame 11-6
802.1X authentication 12-11
encapsulation 11-3
flexible authentication ordering
configuring 11-66
overview 11-28
configuration guidelines 11-21, 11-22
described 11-21
host mode 11-12
inaccessible authentication bypass
configuring 11-55
described 11-23
guidelines 11-39
initiation and message exchange 11-6
magic packet 11-26
maximum number of allowed devices per port 11-40
method lists 11-43
multiple authentication 11-12
multiple-hosts mode, described 11-12
AAA authorization 11-43
configuration tasks 11-18
described 11-17
RADIUS server attributes 11-17
authorization state and dot1x port-control command 11-11
authorized and unauthorized 11-10
voice VLAN 11-25
described 11-26
configuring 11-40
described 11-15, 11-40
resetting to default values 11-68
stack changes, effects of 11-11
statistics, displaying 11-71
as proxy 11-3, 12-2
RADIUS client 11-3
configuring 11-61
overview 11-30
guidelines 11-25
overview 11-24
AAA authorization 11-43
characteristics 11-16
configuration tasks 11-17
described 11-16
configuring 11-41
described 11-31, 11-41
described 11-25
PVID 11-25
VVID 11-25
wake-on-LAN, described 11-26
port-based authentication methods, supported 11-8
port blocking 1-5, 28-7
port description TLV 29-2
described 21-2
enabling 21-12
mode, spanning tree 14-29
support for 1-9
port membership modes, VLAN 14-3
MSTP 20-20
STP 19-18
10-Gigabit Ethernet 13-6
access 13-3
blocking 28-7
dynamic access 14-3
protected 28-6
routed 13-4
secure 28-9
static-access 14-3, 14-9
switch 13-2
trunks 14-3, 14-15
VLAN assignments 14-9
aging 28-17
and other features 28-11
and private VLANs 28-18
and QoS trusted boundary 37-45
and stacking 28-18
configuration guidelines 28-11
configuring 28-13
default configuration 28-11
described 28-8
on trunk ports 28-14
sticky learning 28-9
violations 28-10
port-shutdown response, VMPS 14-28
port VLAN ID TLV 29-2
power management TLV 29-3
configuring 13-42
managing 13-42
preemption, default configuration 22-8
preemption delay, default configuration 22-8
preferential treatment of traffic
prefix lists, BGP 41-58
preventing unauthorized access 10-1
primary interface for object tracking, DHCP, configuring 45-11
primary interface for static routing, configuring 45-10
primary links 22-2
primary VLANs 17-1, 17-3
HSRP 43-8
overriding CoS 16-6
trusting CoS 16-6
across multiple switches 17-4
and SDM template 17-4
and SVIs 17-5
and switch stacks 17-5
benefits of 17-1
community ports 17-2
community VLANs 17-2, 17-3
configuration guidelines 17-7, 17-8
configuration tasks 17-6
configuring 17-10
default configuration 17-6
end station access to 17-3
IP addressing 17-3
isolated port 17-2
isolated VLANs 17-2, 17-3
mapping 17-13
monitoring 17-15
community 17-2
configuration guidelines 17-8
configuring host ports 17-11
configuring promiscuous ports 17-13
isolated 17-2
promiscuous 17-2
primary VLANs 17-1, 17-3
promiscuous ports 17-2
secondary VLANs 17-2
subdomains 17-1
traffic in 17-5
changing the default for lines 10-9
command switch 6-17
exiting 10-9
logging into 10-9
mapping on member switches 6-17
overview 10-2, 10-7
setting a command with 10-8
configuring 17-13
defined 17-2
protected ports 1-10, 28-6
protocol-dependent modules, EIGRP 41-38
Protocol-Independent Multicast Protocol
protocol storm protection 28-19
provider edge devices 41-77
provisioning new members for a switch stack 5-8
configuring 41-12
definition 41-10
with IP routing disabled 41-13
proxy reports 22-3
in VTP domain 15-16
on a port 14-22
in VTP domain 15-16
on a port 14-22
examples 15-7
overview 15-6
changing 14-22
for VTP pruning 15-6
VLANs 15-16
described 19-9
IEEE 802.1Q trunking interoperability 19-11
instances supported 19-10
and MQC commands 37-1
categorizing traffic 37-24
configuration and defaults display 37-36
configuration guidelines 37-33
described 37-23
disabling 37-35
displaying generated commands 37-35
displaying the initial configuration 37-36
effects on running configuration 37-33
egress queue defaults 37-25
list of generated commands 37-26
basic model 37-4
class maps, described 37-8
defined 37-4
DSCP transparency, described 37-46
flowchart 37-7
forwarding treatment 37-3
in frames and packets 37-3
IP ACLs, described 37-7, 37-8
MAC ACLs, described 37-5, 37-8
options for IP traffic 37-6
options for non-IP traffic 37-5
policy maps, described 37-8
trust DSCP, described 37-5
trusted CoS, described 37-5
trust IP precedence, described 37-5
configuring 37-54
auto-QoS 37-33
standard QoS 37-39
aggregate policers 37-71
auto-QoS 37-23
default port CoS value 37-44
DSCP maps 37-73
DSCP transparency 37-46
DSCP trust states bordering another domain 37-47
egress queue characteristics 37-83
ingress queue characteristics 37-79
IP extended ACLs 37-50
IP standard ACLs 37-49
MAC ACLs 37-53
policy maps, hierarchical 37-63
policy maps on physical ports 37-58
port trust states within the domain 37-43
trusted boundary 37-45
default auto configuration 37-24
default standard configuration 37-37
DSCP transparency 37-46
allocating buffer space 37-84
buffer allocation scheme, described 37-20
configuring shaped weights for SRR 37-88
configuring shared weights for SRR 37-89
described 37-4
displaying the threshold map 37-87
flowchart 37-19
mapping DSCP or CoS values 37-86
scheduling, described 37-4
setting WTD thresholds 37-84
WTD, described 37-22
enabling globally 37-42
classification 37-7
egress queueing and scheduling 37-19
ingress queueing and scheduling 37-16
policing and marking 37-11
implicit deny 37-8
allocating bandwidth 37-81
allocating buffer space 37-81
buffer and bandwidth allocation, described 37-18
configuring shared weights for SRR 37-81
configuring the priority queue 37-82
described 37-4
displaying the threshold map 37-80
flowchart 37-16
mapping DSCP or CoS values 37-80
priority queue, described 37-18
scheduling, described 37-4
setting WTD thresholds 37-80
WTD, described 37-18
automatic classification and queueing 37-23
detection and trusted settings 37-23, 37-45
limiting bandwidth on egress interface 37-90
CoS-to-DSCP 37-73
DSCP-to-CoS 37-76
DSCP-to-DSCP-mutation 37-77
IP-precedence-to-DSCP 37-74
policed-DSCP 37-75
types of 37-13
marked-down actions 37-61
marking, described 37-4, 37-9
overview 37-2
packet modification 37-22
configuring 37-61, 37-71
described 37-9
number of 37-41
types of 37-10
policies, attaching to an interface 37-9
described 37-4, 37-9
token bucket algorithm 37-10
characteristics of 37-59
hierarchical 37-9
hierarchical on SVIs 37-63
nonhierarchical on physical ports 37-58
QoS label, defined 37-4
configuring egress characteristics 37-83
configuring ingress characteristics 37-79
high priority (expedite) 37-22, 37-89
location of 37-14
SRR, described 37-15
WTD, described 37-15
rewrites 37-22
support for 1-14
bordering another domain 37-47
described 37-5
trusted device 37-45
within the domain 37-43
queries, IGMP 26-4
query solicitation, IGMP 26-13
vendor-proprietary 10-36
vendor-specific 10-35
accounting 10-34
authentication 10-29
authorization 10-33
communication, global 10-27, 10-35
communication, per-server 10-27
multiple UDP ports 10-27
default configuration 10-27
defining AAA server groups 10-31
displaying the configuration 10-39
identifying the server 10-27
in clusters 6-16
limiting the services to the user 10-33
method list, defined 10-26
operation of 10-19
overview 10-18
server load balancing 10-39
suggested network environments 10-18
support for 1-12
tracking services accessed by user 10-34
RADIUS Change of Authorization 10-20
macro 13-21
of interfaces 13-19
rapid convergence 20-10
rapid per-VLAN spanning-tree plus
described 19-9
IEEE 802.1Q trunking interoperability 19-11
instances supported 19-10
RARP 41-10
rcommand command 6-16
downloading A-18
overview A-17
preparing the server A-17
uploading A-19
deleting old image A-38
downloading A-37
preparing the server A-36
uploading A-38
reachability, tracking IP SLAs IP host 45-9
configuring 11-40
described 11-15, 11-40
reconfirmation interval, VMPS, changing 14-31
reconfirming dynamic VLAN membership 14-31
redirect URL 11-18, 11-20, 11-62
EtherChannel 39-3
HSRP 43-1
backbone 19-8
multidrop backbone 21-5
path cost 14-26
port priority 14-24
redundant links and UplinkFast 21-15
See Cisco Redundant Power System 2300
reliable transport protocol, EIGRP 41-38
reloading software 4-24
Remote Authentication Dial-In User Service
remote SPAN 31-3
described 26-6
disabling 25-11, 26-16
resequencing ACL entries 36-16
reserved addresses in DHCP pools 23-28
resets, in BGP 41-52
resetting a UDLD-shutdown interface 30-6
described 44-4
enabling 44-7
response time, measuring with IP SLAs 44-4
configuring 11-54
described 11-22
using with IEEE 802.1x 11-22
overview 10-1
passwords and privilege levels 10-2
RADIUS 10-17
TACACS+ 10-10
retry count, VMPS, changing 14-32
reverse address resolution 41-10
Reverse Address Resolution Protocol
1058, RIP 41-20
1112, IP multicast and IGMP 26-2
1157, SNMPv1 34-2
1163, BGP 41-45
1166, IP addresses 41-7
1253, OSPF 41-27
1267, BGP 41-45
1305, NTP 7-2
1587, NSSAs 41-27
1757, RMON 32-2
1771, BGP 41-45
1901, SNMPv2C 34-2
1902 to 1907, SNMPv2 34-2
2236, IP multicast and IGMP 26-2
2273-2275, SNMPv3 34-2
RFC 5176 Compliance 10-21
advertisements 41-21
authentication 41-24
configuring 41-22
default configuration 41-21
described 41-21
for IPv6 42-7
hop counts 41-21
split horizon 41-24
summary addresses 41-24
support for 1-15
default configuration 32-3
displaying status 32-6
enabling alarms and events 32-3
groups supported 32-2
overview 32-1
collecting group Ethernet 32-5
collecting group history 32-5
support for 1-17
described 21-10
enabling 21-18
support for 1-9
MSTP 20-18
STP 19-15
route calculation timers, OSPF 41-35
route dampening, BGP 41-64
routed packets, ACLs on 36-43
configuring 41-5
defined 13-4
in switch clusters 6-8
IP addresses on 13-37, 41-5
route-map command 41-102
BGP 41-56
policy-based routing 41-100
defined 36-3
types of 36-5
route reflectors, BGP 41-63
router ID, OSPF 41-36
route selection, BGP 41-54
route summarization, OSPF 41-34
route targets, VPN 41-79
default 41-3
dynamic 41-3
redistribution of information 41-96
static 41-3
routing domain confederation, BGP 41-63
routing protocol administrative distances 41-94
See Cisco Redundant Power System 2300
See Cisco Redundant Power System 2300
RSPAN 31-3
and stack changes 31-10
characteristics 31-9
configuration guidelines 31-17
default configuration 31-12
destination ports 31-8
displaying status 31-28
in a switch stack 31-3
interaction with other features 31-9
monitored ports 31-7
monitoring ports 31-8
overview 1-17, 31-1
received traffic 31-6
session limits 31-12
creating 31-18
defined 31-4
limiting source traffic to specific VLANs 31-20
specifying monitored ports 31-18
with ingress traffic enabled 31-22
source ports 31-7
transmitted traffic 31-6
VLAN-based 31-7
active topology 20-10
format 20-12
processing 20-13
designated port, defined 20-9
designated switch, defined 20-9
interoperability with IEEE 802.1D
described 20-9
restarting migration process 20-26
topology changes 20-13
overview 20-9
described 20-9
synchronized 20-11
proposal-agreement handshake process 20-10
cross-stack rapid convergence 20-11
described 20-10
edge ports and Port Fast 20-10
point-to-point links 20-10, 20-25
root ports 20-10
root port, defined 20-9
replacing A-20, A-21
rolling back A-20, A-22
saving 4-16
SC (standby command switch) 6-10
scheduled reloads 4-24
scheduling, IP SLAs operations 44-5
and SSH 10-55
configuring 10-55
described 8-1
switch stack consideration 5-10
configuring 8-6
number of 8-1
configuring 8-5
dual IPv4 and IPv6 8-2
types of 8-1
secondary VLANs 17-2
configuring 10-54
displaying 10-54
configuring 10-52
displaying 10-54
and switch stacks 28-18
deleting 28-16
maximum number of 28-10
types of 28-9
and switch stacks 28-18
configuring 28-9
secure remote connections 10-44
security, port 28-8
security features 1-10
sequence numbers in log messages 33-8
server mode, VTP 15-3
service-provider network, MSTP and RSTP 20-1
and customer VLANs 18-2
and IEEE 802.1Q tunneling 18-1
Layer 2 protocols across 18-8
Layer 2 protocol tunneling for EtherChannels 18-9
session keys, MKA 11-32
set-request operation 34-4
failed command switch replacement 50-11
replacing failed command switch 50-9
severity levels, defining in system messages 33-9
monitoring status of 50-14
numbering of 13-18
security and identification 50-14
status, displaying 50-14
show access-lists hw-summary command 36-23
show and more command output, filtering 2-9
show cluster members command 6-16
show configuration command 13-36
show forward command 50-22
show interfaces command 13-29, 13-36
show interfaces switchport 22-4
show l2protocol command 18-13, 18-15, 18-16
show platform forward command 50-22
displaying ACLs 36-34, 36-36
interface description in 13-36
shutdown command on interfaces 13-50
shutdown threshold for Layer 2 protocol packets 18-11
Simple Network Management Protocol
single session ID 11-32
small form-factor pluggable modules
small-frame arrival rate, configuring 28-5
smart logging 33-1, 33-14
SNAP 27-1
accessing MIB variables with 34-4
described 34-4
disabling 34-7
and IP SLAs 44-2
authentication level 34-10
configuring 34-8
for cluster switches 34-4
overview 34-4
configuration examples 34-18
default configuration 34-6
engine ID 34-7
groups 34-7, 34-9
host 34-7
ifIndex values 34-5
in-band management 1-8
in clusters 6-14
and trap keyword 34-12
described 34-5
differences from traps 34-5
disabling 34-15
enabling 34-15
limiting access by TFTP servers 34-17
limiting system log messages to NMS 33-10
manager functions 1-6, 34-3
managing clusters with 6-17
notifications 34-5
overview 34-1, 34-4
security levels 34-3
setting CPU threshold notification 34-16
status, displaying 34-19
system contact and location 34-16
trap manager, configuring 34-14
described 34-5
differences from informs 34-5
disabling 34-15
enabling 34-12
enabling MAC address notification 7-15, 7-17, 7-18
overview 34-1, 34-4
types of 34-12
users 34-7, 34-9
versions supported 34-2
SNMP and Syslog Over IPv6 42-8
SNMPv1 34-2
SNMPv2C 34-2
SNMPv3 34-2
snooping, IGMP 26-2
location in flash A-26
recovery procedures 50-2
scheduling reloads 4-24
tar file format, described A-26
See also downloading and uploading
software images in mixed stacks
See the Cisco Software Activation and Compatibility Document
source-and-destination-IP address based forwarding, EtherChannel 39-9
source-and-destination MAC address forwarding, EtherChannel 39-9
source-IP address based forwarding, EtherChannel 39-9
source-MAC address forwarding, EtherChannel 39-8
and stack changes 31-10
configuration guidelines 31-12
default configuration 31-12
destination ports 31-8
displaying status 31-28
interaction with other features 31-9
monitored ports 31-7
monitoring ports 31-8
overview 1-17, 31-1
ports, restrictions 28-12
received traffic 31-6
session limits 31-12
configuring ingress forwarding 31-16, 31-23
creating 31-13, 31-25
defined 31-4
limiting source traffic to specific VLANs 31-16
removing destination (monitoring) ports 31-14
specifying monitored ports 31-13, 31-25
with ingress traffic enabled 31-15
source ports 31-7
transmitted traffic 31-6
VLAN-based 31-7
spanning tree and native VLANs 14-17
SPAN traffic 31-6
split horizon, RIP 41-24
shaped weights on egress queues 37-88
shared weights on egress queues 37-89
shared weights on ingress queues 37-81
described 37-15
shaped mode 37-15
shared mode 37-16
support for 1-14, 1-15
configuring 10-45
described 1-8, 10-44
encryption methods 10-45
switch stack considerations 5-17
user authentication methods, supported 10-45
configuration guidelines 10-51
configuring a secure HTTP client 10-54
configuring a secure HTTP server 10-52
described 10-48
monitoring 10-54
address management restrictions 47-16
CGMP limitations 47-16
components 47-14
configuration guidelines 47-16
configuring 47-14, 47-17
differs from Internet standard multicast 47-14
IGMP snooping 47-16
IGMPv3 47-14
IGMPv3 Host Signalling 47-15
IP address range 47-15
monitoring 47-17
operations 47-15
PIM 47-14
state maintenance limitations 47-16
SSM mapping 47-17
configuration guidelines 47-17
configuring 47-17, 47-19
DNS-based 47-18, 47-20
monitoring 47-22
overview 47-18
restrictions 47-18
static 47-18, 47-20
static traffic forwarding 47-21
IPv6 routing 42-10
ACL configuration 36-7
CDP 27-2
cross-stack EtherChannel 39-13
EtherChannel 39-10
fallback bridging 49-3
HSRP 43-5
IEEE 802.1x port-based authentication 11-11
IGMP snooping 26-7
IP routing 41-4
IPv6 ACLs 38-3
MAC address tables 7-14
MSTP 20-8
multicast routing 47-10
MVR 26-18
port security 28-18
SDM template selection 8-4
SNMP 34-1
SPAN and RSPAN 31-10
STP 19-11
switch clusters 6-14
system message log 33-2
VLANs 14-6
VTP 15-8
and MACsec 11-34
bridge ID (MAC address) 5-7
defined 5-2
election 5-5
IPv6 42-11
re-election 5-5
accessing CLI of specific member 5-30
member number 5-26
priority value 5-26
defined 5-2
displaying information of 5-30
IPv6 42-11
number 5-7
priority value 5-8
provisioning a new member 5-27
replacing 5-16
stack member number 13-17
stack protocol version 5-11
accessing CLI of specific member 5-30
member number 5-26
priority value 5-26
provisioning a new member 5-27
auto-advise 5-13
auto-copy 5-12
auto-extract 5-12
auto-upgrade 5-12
bridge ID 5-7
Catalyst 3750-X-only 5-2
CDP considerations 27-2
compatibility, software 5-11
configuration file 5-15
configuration scenarios 5-18
copying an image file from one member to another A-39
default configuration 5-24
description of 5-2
displaying information of 5-30
enabling persistent MAC address timer 5-24
hardware compatibility and SDM mismatch mode 5-10
HSRP considerations 43-5
in clusters 6-14
incompatible software and image upgrades 5-15, A-40
IPv6 on 42-10
MAC address considerations 7-14
MAC address of 5-24
management connectivity 5-17
managing 5-1
See Catalyst 3750-E and 3750 Switch Stacking Compatibility Guide
membership 5-4
merged 5-4
hardware 5-2
hardware and software 5-2
software 5-2
with Catalyst 3750-E and 3750 switches 5-2
See Cisco Software Activation and Compatibility Document
MSTP instances supported 19-10
multicast routing, stack master and member roles 47-10
described 5-8
effects of adding a provisioned switch 5-9
effects of removing a provisioned switch 5-10
effects of replacing a provisioned switch 5-10
provisioned configuration, defined 5-8
provisioned switch, defined 5-8
provisioning a new member 5-27
partitioned 5-4, 50-8
adding 5-9
removing 5-10
replacing 5-10
replacing a failed member 5-16
software compatibility 5-11
software image version 5-11
stack protocol version 5-11
bridge ID 19-3
instances supported 19-10
root port selection 19-3
stack root switch election 19-3
hostnames in the display 33-1
remotely monitoring 33-2
system prompt consideration 7-7
system-wide configuration considerations 5-16
upgrading A-39
automatic upgrades with auto-upgrade 5-12
described 5-12
examples 5-13
manual upgrades with auto-advise 5-13
upgrades with auto-extract 5-12
See also stack master and stack member
StackWise Plus technology, Cisco 1-3
considerations 6-11
defined 6-2
priority 6-10
requirements 6-3
virtual IP address 6-11
See also cluster standby group and HSRP
See cluster standby group and HSRP
standby ip command 43-6
standby links 22-2
standby router 43-2
standby timers, HSRP 43-10
manually 4-19
specific image 4-20
clearing A-20
automatically downloading 4-18
specifying the filename 4-19
default boot configuration 4-18
assigning to VLAN 14-9
defined 13-3, 14-3
static IP routing 1-15
static MAC addressing 1-10
static route primary interface, configuring 45-10
configuring 41-94
understanding 42-7
static routing 41-3
static routing support, enhanced object tracking 45-10
static SSM mapping 47-18, 47-20
static traffic forwarding 47-21
static VLAN membership 14-2
802.1X 12-17
CDP 27-6
IEEE 802.1x 11-71
interface 13-49
IP multicast routing 47-63
MKA 11-35
OSPF 41-37
RMON group Ethernet 32-5
RMON group history 32-5
SNMP input and output 34-19
VTP 15-18
sticky learning 28-9
configuring 28-3
described 28-1
disabling 28-5
support for 1-5
thresholds 28-1
accelerating root port selection 21-4
described 21-7
disabling 21-17
enabling 21-16
described 21-3
disabling 21-15
enabling 21-14
described 21-2
disabling 21-14
enabling 21-13
BPDU message exchange 19-3
configuration guidelines 19-13, 21-12
forward-delay time 19-23
hello time 19-22
maximum aging time 19-23
path cost 19-20
port priority 19-18
root switch 19-15
secondary root switch 19-17
spanning-tree mode 19-14
switch priority 19-21
transmit hold-count 19-24
counters, clearing 19-24
described 21-5
enabling 21-16
default configuration 19-12
default optional feature configuration 21-12
designated port, defined 19-4
designated switch, defined 19-4
detecting indirect link failures 21-8
disabling 19-15
displaying status 19-24
described 21-10
disabling 21-17
enabling 21-17
effects on root switch 19-16
effects on the secondary root switch 19-17
overview 19-4
unexpected behavior 19-16
features supported 1-9
IEEE 802.1D and bridge ID 19-4
IEEE 802.1D and multicast addresses 19-8
IEEE 802.1t and VLAN identifier 19-5
inferior BPDU 19-3
instances supported 19-10
interface state, blocking to forwarding 21-2
blocking 19-6
disabled 19-7
forwarding 19-6, 19-7
learning 19-7
listening 19-7
overview 19-5
interoperability and compatibility among modes 19-10
keepalive messages 19-2
Layer 2 protocol tunneling 18-8
limitations with IEEE 802.1Q trunks 19-10
overview 14-23
using path costs 14-26
using port priorities 14-24
described 21-11
enabling 21-18
modes supported 19-9
multicast addresses, effect of 19-8
optional features supported 1-9
overview 19-2
path costs 14-26
described 21-2
enabling 21-12
port priorities 14-24
preventing root switch selection 21-10
protocols supported 19-9
redundant connectivity 19-8
described 21-10
enabling 21-18
root port, defined 19-3
root port selection on a switch stack 19-3
configuring 19-16
effects of extended system ID 19-4, 19-16
election 19-3
unexpected behavior 19-16
shutdown Port Fast-enabled port 21-2
stack changes, effects of 19-11
status, displaying 19-24
superior BPDU 19-3
timers, described 19-22
described 21-3
enabling 21-15
VLAN-bridge 19-11
stratum, NTP 7-2
stub areas, OSPF 41-33
stub routing, EIGRP 41-44
subdomains, private VLAN 17-1
subnet mask 41-7
subnet zero 41-8
success response, VMPS 14-28
summer time 7-6
SunNet Manager 1-6
supernet 41-8
supported port-based authentication methods 11-8
configuring 13-39
defined 13-6
SVI link state 13-6
and IP unicast routing 41-5
and router ACLs 36-5
connecting VLANs 13-12
defined 13-5
routing between VLANs 14-2
switch 42-2
switch clustering technology 6-1
switch console port 1-8
switched packets, ACLs on 36-41
switched ports 13-2
switchport backup interface 22-4, 22-5
switchport block multicast command 28-8
switchport block unicast command 28-8
switchport command 13-27
switchport mode dot1q-tunnel command 18-7
switchport protected command 28-7
MSTP 20-22
STP 19-21
switch software features 1-1
synchronization, BGP 41-50
system capabilities TLV 29-2
daylight saving time 7-6
manually 7-4
summer time 7-6
time zones 7-5
displaying the time and date 7-5
overview 7-2
system description TLV 29-2
default configuration 33-4
defining error message severity levels 33-9
disabling 33-4
displaying the configuration 33-17
enabling 33-5
facility keywords, described 33-14
level keywords, described 33-10
limiting messages 33-10
message format 33-2
overview 33-1
sequence numbers, enabling and disabling 33-8
setting the display destination device 33-5
stack changes, effects of 33-2
synchronizing log messages 33-6
syslog facility 1-17
time stamps, enabling and disabling 33-8
configuring the daemon 33-12
configuring the logging facility 33-13
facilities supported 33-14
and IS-IS LSPs 41-71
system MTU and IEEE 802.1Q tunneling 18-5
default configuration 7-8
default setting 7-8
manual configuration 7-8
system name TLV 29-2
system prompt, default setting 7-7, 7-8
system resources, optimizing 8-1
IS-IS 41-67
ISO IGRP 41-67
accounting, defined 10-11
authentication, defined 10-11
authorization, defined 10-11
accounting 10-17
authentication key 10-13
authorization 10-16
login authentication 10-14
default configuration 10-13
displaying the configuration 10-17
identifying the server 10-13
in clusters 6-16
limiting the services to the user 10-16
operation of 10-12
overview 10-10
support for 1-12
tracking services accessed by user 10-17
IEEE 802.1Q 18-3
Layer 2 protocol 18-8
creating A-7
displaying the contents of A-7
extracting A-8
image file format A-26
TCL script, registering and defining with embedded event manager 35-7
TDR 1-17
accessing management interfaces 2-10
number of connections 1-8
setting a password 10-6
templates, SDM 8-2
temporary self-signed certificate 10-49
Terminal Access Controller Access Control System Plus
terminal lines, setting a password 10-6
ternary content addressable memory 50-26
downloading A-12
preparing the server A-11
uploading A-13
configuration files in base directory 4-8
configuring for autoconfiguration 4-7
deleting A-30
downloading A-28
preparing the server A-28
uploading A-30
limiting access by servers 34-17
TFTP server 1-7
threshold, traffic level 28-2
threshold monitoring, IP SLAs 44-6
time-range command 36-18
time ranges in ACLs 36-18
time stamps in log messages 33-8
time zones 7-5
defined 29-2
LLDP 29-2
LLDP-MED 29-2
support for 14-5
VTP support 15-5
ToS 1-14
and ARP 50-17
and CDP 50-17
broadcast traffic 50-16
described 50-16
IP addresses and subnets 50-17
MAC addresses and VLANs 50-17
multicast traffic 50-17
multiple devices on a port 50-17
unicast traffic 50-16
usage guidelines 50-17
configuring 45-3
types 45-3
by Boolean expression 45-4
by threshold percentage 45-6
by threshold weight 45-5
tracking interface line-protocol state 45-2
tracking IP routing state 45-2
tracking objects 45-1
tracking process 45-1
track state, tracking IP SLAs 45-9
blocking flooded 28-8
fragmented 36-6
fragmented IPv6 38-2
unfragmented 36-6
traffic policing 1-14
traffic suppression 28-1
transparent mode, VTP 15-4
trap-door mechanism 4-2
configuring MAC address notification 7-15, 7-17, 7-18
configuring managers 34-12
enabling 7-15, 7-17, 7-18, 34-12
notification types 34-12
overview 34-1, 34-4
connectivity problems 50-15, 50-16, 50-18
CPU utilization 50-29
detecting unidirectional links 30-1
displaying crash information 50-24
PIMv1 and PIMv2 interoperability problems 47-35
setting packet forwarding 50-22
SFP security and identification 50-14
show forward command 50-22
with CiscoWorks 34-4
with debug commands 50-20
with ping 50-15
with system message logging 33-1
with traceroute 50-18
trunking encapsulation 1-10
configuring 14-19
defined 13-3, 14-3
encapsulation 14-19, 14-25
allowed-VLAN list 14-20
configuring 14-19, 14-25
ISL 14-15
setting STP path costs 14-26
using STP port priorities 14-24
native VLAN for untagged traffic 14-23
parallel 14-26
pruning-eligible list 14-22
to non-DTP device 14-15
trusted boundary for QoS 37-45
between QoS domains 37-47
classification options 37-5
ensuring port security for IP phones 37-45
support for 1-14
within a QoS domain 37-43
trustpoints, CA 10-49
defined 18-1
IEEE 802.1Q 18-1
Layer 2 protocol 18-8
described 13-4, 18-2
IEEE 802.1Q, configuring 18-7
incompatibilities with other features 18-6
twisted-pair Ethernet, detecting unidirectional links 30-1
configuration guidelines 30-4
default configuration 30-4
globally 30-5
on fiber-optic interfaces 30-5
per interface 30-6
echoing detection mechanism 30-3
globally 30-5
per interface 30-6
Layer 2 protocol tunneling 18-10
link-detection mechanism 30-1
neighbor database 30-2
overview 30-1
resetting an interface 30-6
status, displaying 30-7
support for 1-9
UDP, configuring 41-16
UDP jitter, configuring 44-9
UDP jitter operation, IP SLAs 44-8
unauthorized ports with IEEE 802.1x 11-10
unicast MAC address filtering 1-7
and adding static addresses 7-21
and broadcast MAC addresses 7-21
and CPU packets 7-21
and multicast addresses 7-21
and router MAC addresses 7-21
configuration guidelines 7-21
described 7-21
unicast storm 28-1
unicast storm control command 28-4
unicast traffic, blocking 28-8
UniDirectional Link Detection protocol
universal software image 1-1
IP base 1-2
IP services 1-2
daemon configuration 33-12
facilities supported 33-14
message logging configuration 33-13
unrecognized Type-Length-Value (TLV) support 15-5
described 21-3
disabling 21-16
enabling 21-15
support for 1-9
preparing A-11, A-14, A-17
reasons for A-9
using FTP A-16
using RCP A-19
using TFTP A-13
preparing A-28, A-31, A-36
reasons for A-25
using FTP A-34
using RCP A-38
using TFTP A-30
USB flash devices 13-16
USB inactivity timer 13-15
mini-type B 13-13
USB ports 13-13
USB Type A port 1-8
USB type A port 13-16
username-based authentication 10-6
Using Memory Consistency Check Routines 50-26
configuration example 36-40
version-dependent transparent mode 15-5
automatic upgrades with auto-upgrade 5-12
described 5-12
displaying 5-12
manual upgrades with auto-advise 5-13
upgrades with auto-extract 5-12
cluster standby group 6-11
command switch 6-11
virtual ports, MKA 11-33
virtual router 43-1, 43-2
virtual switches and PAgP 39-6
vlan.dat file 14-4
disabling on a trunk port 14-20
minimization 14-20
vlan-assignment response, VMPS 14-28
at bootup 14-7
saving 14-7
and startup configuration file 14-7
and VTP 15-1
VLAN configuration saved in 14-7
VLANs saved in 14-4
vlan dot1q tag native command 18-5
VLAN filtering and SPAN 31-8
vlan global configuration command 14-6
VLAN ID, discovering 7-24
VLAN link state 13-6
VLAN load balancing on flex links
configuration guidelines 22-8
described 22-2
VLAN management domain 15-2
VLAN map entries, order of 36-33
applying 36-36
common uses for 36-36
configuration guidelines 36-33
configuring 36-32
creating 36-34
defined 36-3
denying access to a server example 36-38
denying and permitting packets 36-34
displaying 36-45
examples of ACLs and VLAN maps 36-34
removing 36-36
support for 1-11
wiring closet configuration example 36-37
confirming 14-31
modes 14-3
adding 14-8
adding to VLAN database 14-8
aging dynamic addresses 19-9
allowed on trunk 14-20
and spanning-tree instances 14-3, 14-6, 14-11
configuration guidelines, extended-range VLANs 14-11
configuration guidelines, normal-range VLANs 14-5
configuring 14-1
configuring IDs 1006 to 4094 14-11
connecting through SVIs 13-12
customer numbering in service-provider networks 18-3
default configuration 14-7
deleting 14-9
described 13-2, 14-1
displaying 14-14
extended-range 14-1, 14-10
features 1-10
illustrated 14-2
internal 14-11
in the switch stack 14-6
limiting source traffic with RSPAN 31-20
limiting source traffic with SPAN 31-16
modifying 14-8
multicast 26-17
native, configuring 14-23
normal-range 14-1, 14-4
number supported 1-10
parameters 14-4
port membership modes 14-3
static-access ports 14-9
STP and IEEE 802.1Q trunks 19-10
supported 14-2
Token Ring 14-5
traffic between 14-2
VLAN-bridge STP 19-11, 49-2
VTP modes 15-3
VLAN trunks 14-15
administering 14-32
configuration example 14-33
configuration guidelines 14-29
default configuration 14-29
description 14-27
described 14-28
reconfirming 14-31
troubleshooting 14-33
entering server address 14-30
mapping MAC addresses to VLANs 14-27
monitoring 14-32
reconfirmation interval, changing 14-31
reconfirming membership 14-31
retry count, changing 14-32
configuring 11-41
described 11-31, 11-41
voice-over-IP 16-1
Cisco 7960 phone, port connections 16-1
configuration guidelines 16-3
configuring IP phones for data traffic
override CoS of incoming frame 16-6
trust CoS priority of incoming frame 16-6
configuring ports for voice traffic in
802.1p priority tagged frames 16-5
IEEE 802.1Q frames 16-5
connecting to an IP phone 16-4
default configuration 16-3
described 16-1
displaying 16-7
IP phone data traffic, described 16-2
IP phone voice traffic, described 16-2
configuring routing in 41-85
forwarding 41-79
in service provider networks 41-76
routes 41-77
VPN routing and forwarding table
VQP 1-10, 14-27
defining 41-79
tables 41-76
ARP 41-81
configuring 41-81
ftp 41-84
HSRP 41-82
ping 41-82
RADIUS 41-83
SNMP 41-82
syslog 41-83
tftp 41-84
traceroute 41-84
uRPF 41-83
VRFs, configuring multicast 41-85
adding a client to a domain 15-17
advertisements 14-18, 15-4
and extended-range VLANs 14-2, 15-2
and normal-range VLANs 14-2, 15-2
client mode, configuring 15-13
requirements 15-11
saving 15-9
configuration requirements 15-11
guideline 15-17
resetting 15-17
consistency checks 15-5
default configuration 15-9
described 15-1
domain names 15-9
domains 15-2
Layer 2 protocol tunneling 18-8
client 15-3
off 15-4
server 15-3
transitions 15-3
transparent 15-4
monitoring 15-18
passwords 15-10
disabling 15-16
enabling 15-16
examples 15-7
overview 15-6
support for 1-10
pruning-eligible list, changing 14-22
server mode, configuring 15-11, 15-14
statistics 15-18
support for 1-10
Token Ring support 15-5
transparent mode, configuring 15-12
using 15-1
enabling 15-15
version, guidelines 15-10
Version 1 15-5
configuration guidelines 15-10
overview 15-5
overview 15-5
authentication 46-3
configuration guidelines 46-5
default configuration 46-5
described 46-2
displaying 46-10
dynamic service groups 46-3
enabling 46-6
features unsupported 46-5
forwarding method 46-3
Layer-2 header rewrite 46-3
MD5 security 46-3
message exchange 46-2
monitoring and maintaining 46-10
negotiation 46-3
packet redirection 46-3
packet-return method 46-3
redirecting traffic received from a client 46-6
setting the password 46-7
unsupported WCCPv2 features 46-5
web authentication 11-15
configuring 12-16 to ??
described 1-10
customizeable web pages 12-6
description 12-1
web-based authentication, interactions with other features 12-7
Web Cache Communication Protocol
weight thresholds in tracked lists 45-5
configuring 29-10
displaying 29-11
location TLV 29-3
understanding 29-3
wizards 1-3
described 37-15
egress queue-sets 37-84
ingress queues 37-80
support for 1-14
Feedback