Hardware Installation Guide
Page 73
...-duplex mode. OL-6156-01 Catalyst 2950 Switch Hardware Installation Guide 2-27 Follow these guidelines: Caution To comply with manually set the speed. These ports on Catalyst 2950 LRE and Catalyst 2950T-48-SI switches operate at 10, 100, or 1000 Mbps in link failures between the devices. The 10/100/1000 ports on Catalyst 2950T-24 switches operate at 10 or 100...
...-duplex mode. OL-6156-01 Catalyst 2950 Switch Hardware Installation Guide 2-27 Follow these guidelines: Caution To comply with manually set the speed. These ports on Catalyst 2950 LRE and Catalyst 2950T-48-SI switches operate at 10, 100, or 1000 Mbps in link failures between the devices. The 10/100/1000 ports on Catalyst 2950T-24 switches operate at 10 or 100...
Configuration Guide
Page 8
...the Switch-to-RADIUS-Server Communication 7-9 Enabling Periodic Re-Authentication 7-10 Manually Re-Authenticating a Client Connected to a Port 7-11 Changing the Quiet Period 7-11 Changing the Switch-to-Client Retransmission Time 7-12 Setting the Switch-to... VLAN for a New Switch 8-3 Changing the Management VLAN Through a Telnet Connection 8-4 Assigning VLAN Port Membership Modes 8-4 VLAN Membership Combinations 8-6 Assigning Static-Access Ports to a VLAN 8-7 Using VTP 8-7 The VTP Domain 8-7 VTP Modes and Mode Transitions 8-7 Catalyst 2950 Desktop Switch Software Configuration Guide viii 78...
...the Switch-to-RADIUS-Server Communication 7-9 Enabling Periodic Re-Authentication 7-10 Manually Re-Authenticating a Client Connected to a Port 7-11 Changing the Quiet Period 7-11 Changing the Switch-to-Client Retransmission Time 7-12 Setting the Switch-to... VLAN for a New Switch 8-3 Changing the Management VLAN Through a Telnet Connection 8-4 Assigning VLAN Port Membership Modes 8-4 VLAN Membership Combinations 8-6 Assigning Static-Access Ports to a VLAN 8-7 Using VTP 8-7 The VTP Domain 8-7 VTP Modes and Mode Transitions 8-7 Catalyst 2950 Desktop Switch Software Configuration Guide viii 78...
Configuration Guide
Page 19
... "Troubleshooting," describes how to identify and resolve software problems related to interfaces and provides examples. Chapter 10, "Configuring the Switch Ports," provides the considerations and CLI procedures for configuring Internet Group Management Protocol (IGMP) snooping. Chapter 11, "Configuring IGMP Snooping... considerations and CLI procedures for the switch. With this feature, you enter is in boldface screen font. • Nonprinting characters, such as passwords or tabs, are in this manual. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide xix The online ...
... "Troubleshooting," describes how to identify and resolve software problems related to interfaces and provides examples. Chapter 10, "Configuring the Switch Ports," provides the considerations and CLI procedures for configuring Internet Group Management Protocol (IGMP) snooping. Chapter 11, "Configuring IGMP Snooping... considerations and CLI procedures for the switch. With this feature, you enter is in boldface screen font. • Nonprinting characters, such as passwords or tabs, are in this manual. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide xix The online ...
Configuration Guide
Page 81
...Manually assigning an IP address and password, as ProComm, HyperTerminal, tip, or minicom) on the management station. The switch must have network connectivity with the switch by clicking Monitor the router- When the Cisco Systems Access page appears, click Telnet to the switch... console port, refer to the switch or command switch. For information about the Cisco Systems Access...Catalyst 2950 Desktop Switch Software Configuration Guide 3-9 Establish a connection with the Telnet client, and the switch must have assigned IP information and a Telnet password to a command switch...
...Manually assigning an IP address and password, as ProComm, HyperTerminal, tip, or minicom) on the management station. The switch must have network connectivity with the switch by clicking Monitor the router- When the Cisco Systems Access page appears, click Telnet to the switch... console port, refer to the switch or command switch. For information about the Cisco Systems Access...Catalyst 2950 Desktop Switch Software Configuration Guide 3-9 Establish a connection with the Telnet client, and the switch must have assigned IP information and a Telnet password to a command switch...
Configuration Guide
Page 133
...addresses are associated with a port in use. • Secure address: a manually entered unicast address or dynamically learnt address that the switch uses to the Cisco IOS Release 12.1 documentation ...Table Vlan Mac Address Type Ports ---- ----- 1 0001.42e2.cdcd DYNAMIC Fa0/24 1 0001.96e4.fed6 DYNAMIC Fa0/2 1 0030.19c6.54dd DYNAMIC Fa0/24 10 0000.0000.0001 STATIC...association is encapsulated in another . 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 6-15 ARP entries added manually to port 1 in VLAN 1 and ports 9, 10, and 11 in the dynamic, secure...
...addresses are associated with a port in use. • Secure address: a manually entered unicast address or dynamically learnt address that the switch uses to the Cisco IOS Release 12.1 documentation ...Table Vlan Mac Address Type Ports ---- ----- 1 0001.42e2.cdcd DYNAMIC Fa0/24 1 0001.96e4.fed6 DYNAMIC Fa0/2 1 0030.19c6.54dd DYNAMIC Fa0/24 10 0000.0000.0001 STATIC...association is encapsulated in another . 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 6-15 ARP entries added manually to port 1 in VLAN 1 and ports 9, 10, and 11 in the dynamic, secure...
Configuration Guide
Page 136
... the switch restarts. 6-18 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 address mac-address end Return to privileged EXEC mode. Removing Secure Addresses Beginning in privileged EXEC mode, follow these steps to only one port per VLAN. no switchport port-security ... Chapter 6 Configuring the System Adding Secure Addresses The secure address table contains secure MAC addresses and their associated ports and VLANs. A secure address is a manually entered unicast address or dynamically learnt address that is forwarded to remove a secure address: Step 1 Step ...
... the switch restarts. 6-18 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 address mac-address end Return to privileged EXEC mode. Removing Secure Addresses Beginning in privileged EXEC mode, follow these steps to only one port per VLAN. no switchport port-security ... Chapter 6 Configuring the System Adding Secure Addresses The secure address table contains secure MAC addresses and their associated ports and VLANs. A secure address is a manually entered unicast address or dynamically learnt address that is forwarded to remove a secure address: Step 1 Step ...
Configuration Guide
Page 162
...; None specified. Catalyst 2950 Desktop Switch Software Configuration Guide 7-6 78-11380-03 Table 7-1 Default 802.1X Configuration Feature Authentication, authorization, and accounting (AAA) authentication RADIUS server • IP address • UDP authentication port • Key ....1X Authentication, page 7-8 (required) • Configuring the Switch-to-RADIUS-Server Communication, page 7-9 (required) • Enabling Periodic Re-Authentication, page 7-10 (optional) • Manually Re-Authenticating a Client Connected to a Port, page 7-11 (optional) • Changing the Quiet Period...
...; None specified. Catalyst 2950 Desktop Switch Software Configuration Guide 7-6 78-11380-03 Table 7-1 Default 802.1X Configuration Feature Authentication, authorization, and accounting (AAA) authentication RADIUS server • IP address • UDP authentication port • Key ....1X Authentication, page 7-8 (required) • Configuring the Switch-to-RADIUS-Server Communication, page 7-9 (required) • Enabling Periodic Re-Authentication, page 7-10 (optional) • Manually Re-Authenticating a Client Connected to a Port, page 7-11 (optional) • Changing the Quiet Period...
Configuration Guide
Page 166
...by default. To manually re-authenticate the client connected to a specific port, see the "Controlling Switch Access with IP ...address 172.20.39.46 as the RADIUS server, to use the no dot1x re-authentication global configuration command.To return to individual ports. Verify your entries. (Optional) Save your entries in privileged EXEC mode, follow these options on page 6-24... timeout re-authperiod global configuration command. 7-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 This example shows...
...by default. To manually re-authenticate the client connected to a specific port, see the "Controlling Switch Access with IP ...address 172.20.39.46 as the RADIUS server, to use the no dot1x re-authentication global configuration command.To return to individual ports. Verify your entries. (Optional) Save your entries in privileged EXEC mode, follow these options on page 6-24... timeout re-authperiod global configuration command. 7-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 This example shows...
Configuration Guide
Page 167
... of seconds between re-authentication attempts to 4000: Switch(config)# dot1x re-authentication Switch(config)# dot1x timeout re-authperiod 4000 Manually Re-Authenticating a Client Connected to a Port You can provide a faster response time to 30 seconds: Switch(config)# dot1x timeout quiet-period 30 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 7-11 The idle time is...
... of seconds between re-authentication attempts to 4000: Switch(config)# dot1x re-authentication Switch(config)# dot1x timeout re-authperiod 4000 Manually Re-Authenticating a Client Connected to a Port You can provide a faster response time to 30 seconds: Switch(config)# dot1x timeout quiet-period 30 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 7-11 The idle time is...
Configuration Guide
Page 175
..., and renaming of all ports are included in the VLAN database by default, but never a Catalyst 2950, Catalyst 2900 XL, or Catalyst 3500 XL switch. A trunk is a member of VLANs on trunk ports that are static-access ports assigned to VLAN 1. VTP exchanges VLAN configuration messages with the port on page 6-15. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 8-5
..., and renaming of all ports are included in the VLAN database by default, but never a Catalyst 2950, Catalyst 2900 XL, or Catalyst 3500 XL switch. A trunk is a member of VLANs on trunk ports that are static-access ports assigned to VLAN 1. VTP exchanges VLAN configuration messages with the port on page 6-15. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 8-5
Configuration Guide
Page 187
...Catalyst 2950 Desktop Switch Command Reference. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 8-17 For complete information on the commands and parameters that are written to the running -config command. The vlan.dat file is upgraded automatically, but you cannot return to an earlier version of Cisco... IOS after you attempt to add, change , and delete VLANs are written to define the port membership mode and add and remove ports from VLANs. Note VLANs can be configured to this section....
...Catalyst 2950 Desktop Switch Command Reference. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 8-17 For complete information on the commands and parameters that are written to the running -config command. The vlan.dat file is upgraded automatically, but you cannot return to an earlier version of Cisco... IOS after you attempt to add, change , and delete VLANs are written to define the port membership mode and add and remove ports from VLANs. Note VLANs can be configured to this section....
Configuration Guide
Page 191
... a group is loop-free before disabling STP. You must have the same configuration. Note The Catalyst 2950 switches do not support ISL trunking. If you entered to all ports in the group must manually configure the neighboring interface as described in a port group ceases to be a trunk, all trunks in the group: • Allowed-VLAN list...
... a group is loop-free before disabling STP. You must have the same configuration. Note The Catalyst 2950 switches do not support ISL trunking. If you entered to all ports in the group must manually configure the neighboring interface as described in a port group ceases to be a trunk, all trunks in the group: • Allowed-VLAN list...
Configuration Guide
Page 198
...cost to 30 for the VLAN name, the VMPS sends an access-denied or port-shutdown response. 8-28 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 Secure mode determines whether the server shuts down the port when a VLAN is restricted to a group of these actions: • ...If the assigned VLAN is not allowed on the secure mode of the VMPS. The port must be manually ...
...cost to 30 for the VLAN name, the VMPS sends an access-denied or port-shutdown response. 8-28 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03 Secure mode determines whether the server shuts down the port when a VLAN is restricted to a group of these actions: • ...If the assigned VLAN is not allowed on the secure mode of the VMPS. The port must be manually ...
Configuration Guide
Page 216
Figure 9-4 Port Fast-Enabled Ports Catalyst 3550 series switch Catalyst 2950 switch Port Fast-enabled ports Workstations Catalyst 2950-T switch Server Port Fast-enabled port 60997 Workstations Understanding BPDU Guard When the BPDU guard feature is connected to converge, it is restarted. An interface with Port Fast enabled goes through the normal cycle of Port Fast is to minimize the time access ports must manually put the interface back...
Figure 9-4 Port Fast-Enabled Ports Catalyst 3550 series switch Catalyst 2950 switch Port Fast-enabled ports Workstations Catalyst 2950-T switch Server Port Fast-enabled port 60997 Workstations Understanding BPDU Guard When the BPDU guard feature is connected to converge, it is restarted. An interface with Port Fast enabled goes through the normal cycle of Port Fast is to minimize the time access ports must manually put the interface back...
Configuration Guide
Page 237
... configurations because you must manually put the interface back in the configuration file. Return to end stations; otherwise, an accidental topology loop could cause a data packet loop and disrupt switch and network operation. If a BPDU is received on Port Fast-enable interfaces. Beginning... mode. To disable BPDU guard, use the no spanning-tree portfast bpduguard global configuration command. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 9-31 Chapter 9 Configuring STP Configuring Advanced STP Features Configuring BPDU Guard When the BPDU guard feature...
... configurations because you must manually put the interface back in the configuration file. Return to end stations; otherwise, an accidental topology loop could cause a data packet loop and disrupt switch and network operation. If a BPDU is received on Port Fast-enable interfaces. Beginning... mode. To disable BPDU guard, use the no spanning-tree portfast bpduguard global configuration command. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 9-31 Chapter 9 Configuring STP Configuring Advanced STP Features Configuring BPDU Guard When the BPDU guard feature...
Configuration Guide
Page 249
..., or 4000 series switch Understanding the EtherChannel Gigabit EtherChannel Catalyst 3550-12T switch 1000BASE-X 1000BASE-X Catalyst 2950-T switch 10/100 Switched links Catalyst 2950-T switch 10/100 Switched links Workstations Workstations 65187 Understanding Port-Channel Interfaces When you create an EtherChannel for Layer 2 interfaces, a logical interface is dynamically created. You then manually assign an interface to 6. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide...
..., or 4000 series switch Understanding the EtherChannel Gigabit EtherChannel Catalyst 3550-12T switch 1000BASE-X 1000BASE-X Catalyst 2950-T switch 10/100 Switched links Catalyst 2950-T switch 10/100 Switched links Workstations Workstations 65187 Understanding Port-Channel Interfaces When you create an EtherChannel for Layer 2 interfaces, a logical interface is dynamically created. You then manually assign an interface to 6. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide...
Configuration Guide
Page 251
...is PAgP-capable, you do not specify non-silent with another interface that is also in the on (manual configuration). Chapter 10 Configuring the Switch Ports Understanding the EtherChannel Table 10-1 EtherChannel Modes Mode Description auto Places an interface into an active negotiating state... in which the interface initiates negotiations with other interfaces by aggregate (logical) ports. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 10-11 The silent mode is used when the switch is connected to determine if they are compatible. If the group is not...
...is PAgP-capable, you do not specify non-silent with another interface that is also in the on (manual configuration). Chapter 10 Configuring the Switch Ports Understanding the EtherChannel Table 10-1 EtherChannel Modes Mode Description auto Places an interface into an active negotiating state... in which the interface initiates negotiations with other interfaces by aggregate (logical) ports. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 10-11 The silent mode is used when the switch is connected to determine if they are compatible. If the group is not...
Configuration Guide
Page 273
...ports subscribe and unsubscribe (join and leave) these steps to enable a static connection to the startup configuration. One can originate from an IGMP version-2-compatible host with an Ethernet connection. Display information on dynamically learned and manually... multicast VLAN to cross between different VLANs. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 11-7 Join and leave messages from the source...-wide multicast VLAN. MVR allows a subscriber on a port to subscribe and unsubscribe to the Cisco IOS Release 12.1 documentation on the underlying mechanism of ...
...ports subscribe and unsubscribe (join and leave) these steps to enable a static connection to the startup configuration. One can originate from an IGMP version-2-compatible host with an Ethernet connection. Display information on dynamically learned and manually... multicast VLAN to cross between different VLANs. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide 11-7 Join and leave messages from the source...-wide multicast VLAN. MVR allows a subscriber on a port to subscribe and unsubscribe to the Cisco IOS Release 12.1 documentation on the underlying mechanism of ...
Configuration Guide
Page 334
... both speed and duplex. • Manually set to be compatible with no autonegotiation. A mismatch occurs under these settings, reducing performance. Sometimes this protocol can incorrectly align these circumstances: • A manually set the duplex and flow control parameters to full duplex with the remote device. 14-2 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03
... both speed and duplex. • Manually set to be compatible with no autonegotiation. A mismatch occurs under these settings, reducing performance. Sometimes this protocol can incorrectly align these circumstances: • A manually set the duplex and flow control parameters to full duplex with the remote device. 14-2 Catalyst 2950 Desktop Switch Software Configuration Guide 78-11380-03
Configuration Guide
Page 353
...addrs per min Explanation Normally, MAC addresses are functioning. Recommended Action Determine the real path (port) to either manual or STP reconfiguration, addresses learned on all switches in the stack could be lost. Use the debug ethernet-controller addr privileged EXEC command to ... connectivity between the real port and the port that is being learnt. Under this interface: [char] is the interface. Recommended Action Check for a GigaStack loop detection request has been received from the network. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide B-5 Note...
...addrs per min Explanation Normally, MAC addresses are functioning. Recommended Action Determine the real path (port) to either manual or STP reconfiguration, addresses learned on all switches in the stack could be lost. Use the debug ethernet-controller addr privileged EXEC command to ... connectivity between the real port and the port that is being learnt. Under this interface: [char] is the interface. Recommended Action Check for a GigaStack loop detection request has been received from the network. 78-11380-03 Catalyst 2950 Desktop Switch Software Configuration Guide B-5 Note...