Software Configuration Guide
Page 4
... 2-10 Accessing the CLI from a Browser 2-11 3 C H A P T E R Getting Started with CMS 3-1 Features 3-2 Front Panel View 3-4 Cluster Tree 3-6 Front-Panel Images 3-7 Redundant Power System LED 3-8 Port Modes and LEDs 3-8 VLAN Membership Modes 3-9 Topology View 3-10 Topology Icons 3-12 Device and Link Labels 3-13 Colors in the Topology View 3-14 Topology Display... Options 3-15 Menus and Toolbar 3-15 Menu Bar 3-15 Toolbar 3-20 Front Panel View Popup Menus 3-21 Device Popup Menu 3-21 Port Popup Menu 3-21 Catalyst 2950 Desktop Switch Software Configuration Guide iv 78-14982-01
... 2-10 Accessing the CLI from a Browser 2-11 3 C H A P T E R Getting Started with CMS 3-1 Features 3-2 Front Panel View 3-4 Cluster Tree 3-6 Front-Panel Images 3-7 Redundant Power System LED 3-8 Port Modes and LEDs 3-8 VLAN Membership Modes 3-9 Topology View 3-10 Topology Icons 3-12 Device and Link Labels 3-13 Colors in the Topology View 3-14 Topology Display... Options 3-15 Menus and Toolbar 3-15 Menu Bar 3-15 Toolbar 3-20 Front Panel View Popup Menus 3-21 Device Popup Menu 3-21 Port Popup Menu 3-21 Catalyst 2950 Desktop Switch Software Configuration Guide iv 78-14982-01
Software Configuration Guide
Page 9
... and Unauthorized States 8-4 Supported Topologies 8-5 Configuring 802.1X Authentication 8-5 Default 802.1X Configuration 8-6 802.1X Configuration Guidelines 8-7 Enabling 802.1X Authentication 8-8 Configuring the Switch-to-RADIUS-Server Communication 8-9 Enabling Periodic Re-Authentication 8-10 Manually Re-Authenticating a Client Connected to a Port 8-11 Changing the Quiet Period 8-11 Catalyst 2950 Desktop Switch Software Configuration Guide ix
... and Unauthorized States 8-4 Supported Topologies 8-5 Configuring 802.1X Authentication 8-5 Default 802.1X Configuration 8-6 802.1X Configuration Guidelines 8-7 Enabling 802.1X Authentication 8-8 Configuring the Switch-to-RADIUS-Server Communication 8-9 Enabling Periodic Re-Authentication 8-10 Manually Re-Authenticating a Client Connected to a Port 8-11 Changing the Quiet Period 8-11 Catalyst 2950 Desktop Switch Software Configuration Guide ix
Software Configuration Guide
Page 10
...Displaying 802.1X Statistics and Status 8-14 9 C H A P T E R Configuring the Switch Interfaces 9-1 Understanding Interface Types 9-1 Access Ports 9-2 Trunk Ports 9-2 Port-Based VLANs 9-3 EtherChannel Port Groups 9-3 Connecting Interfaces 9-3 Using the Interface Command 9-4 Procedures for Configuring Interfaces 9-4 Configuring a ... LRE 10-1 Ports on the 2950 LRE 10-1 LRE Links and LRE Profiles 10-2 LRE Profiles 10-2 LRE Sequences 10-4 CPE Ethernet Links 10-5 Configuring LRE Ports 10-5 Environmental Guidelines for LRE Links 10-6 Catalyst 2950 Desktop Switch Software Configuration Guide...
...Displaying 802.1X Statistics and Status 8-14 9 C H A P T E R Configuring the Switch Interfaces 9-1 Understanding Interface Types 9-1 Access Ports 9-2 Trunk Ports 9-2 Port-Based VLANs 9-3 EtherChannel Port Groups 9-3 Connecting Interfaces 9-3 Using the Interface Command 9-4 Procedures for Configuring Interfaces 9-4 Configuring a ... LRE 10-1 Ports on the 2950 LRE 10-1 LRE Links and LRE Profiles 10-2 LRE Profiles 10-2 LRE Sequences 10-4 CPE Ethernet Links 10-5 Configuring LRE Ports 10-5 Environmental Guidelines for LRE Links 10-6 Catalyst 2950 Desktop Switch Software Configuration Guide...
Software Configuration Guide
Page 11
... Ethernet Link Guidelines 10-7 Considerations for Connected Cisco 575 LRE CPEs 10-7 Considerations for Connected Cisco 585 LRE CPEs 10-8 Assigning a Global Profile to All LRE Ports 10-8 Assigning a Profile to a Specific LRE Port 10-9 Assigning a Global Sequence to All LRE Ports 10-9 Assigning a Sequence to a Specific LRE Port 10-10 Using Rate Selection to Automatically... 11-7 Listening State 11-7 Learning State 11-7 Forwarding State 11-7 Disabled State 11-8 Spanning-Tree Address Management 11-8 STP and IEEE 802.1Q Trunks 11-8 Catalyst 2950 Desktop Switch Software Configuration Guide xi
... Ethernet Link Guidelines 10-7 Considerations for Connected Cisco 575 LRE CPEs 10-7 Considerations for Connected Cisco 585 LRE CPEs 10-8 Assigning a Global Profile to All LRE Ports 10-8 Assigning a Profile to a Specific LRE Port 10-9 Assigning a Global Sequence to All LRE Ports 10-9 Assigning a Sequence to a Specific LRE Port 10-10 Using Rate Selection to Automatically... 11-7 Listening State 11-7 Learning State 11-7 Forwarding State 11-7 Disabled State 11-8 Spanning-Tree Address Management 11-8 STP and IEEE 802.1Q Trunks 11-8 Catalyst 2950 Desktop Switch Software Configuration Guide xi
Software Configuration Guide
Page 12
...-10 Disabling STP 11-12 Configuring the Root Switch 11-12 Configuring a Secondary Root Switch 11-14 Configuring the Port Priority 11-15 Configuring the Path Cost 11-16 Configuring the Switch Priority of a VLAN 11-18 Configuring the... 12-8 Operations Within an MST Region 12-8 Operations Between MST Regions 12-9 Hop Count 12-10 Boundary Ports 12-10 Interoperability with 802.1D STP 12-11 Configuring RSTP and MSTP Features 12-11 Default RSTP and... Region Configuration and Enabling MSTP 12-13 Configuring the Root Switch 12-14 Catalyst 2950 Desktop Switch Software Configuration Guide xii 78-14982-01
...-10 Disabling STP 11-12 Configuring the Root Switch 11-12 Configuring a Secondary Root Switch 11-14 Configuring the Port Priority 11-15 Configuring the Path Cost 11-16 Configuring the Switch Priority of a VLAN 11-18 Configuring the... 12-8 Operations Within an MST Region 12-8 Operations Between MST Regions 12-9 Hop Count 12-10 Boundary Ports 12-10 Interoperability with 802.1D STP 12-11 Configuring RSTP and MSTP Features 12-11 Default RSTP and... Region Configuration and Enabling MSTP 12-13 Configuring the Root Switch 12-14 Catalyst 2950 Desktop Switch Software Configuration Guide xii 78-14982-01
Software Configuration Guide
Page 13
... and Status 12-23 Configuring Optional Spanning-Tree Features 13-1 Understanding Optional Spanning-Tree Features 13-1 Understanding Port Fast 13-2 Understanding BPDU Guard 13-3 Understanding BPDU Filtering 13-3 Understanding UplinkFast 13-4 Understanding Cross-Stack...13-5 How CSUF Works 13-6 Events That Cause Fast Convergence 13-7 Limitations 13-8 Connecting the Stack Ports 13-8 Understanding BackboneFast 13-10 Understanding Root Guard 13-12 Understanding Loop Guard 13-13 Configuring Optional ...Tree Status 13-21 Contents 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide xiii
... and Status 12-23 Configuring Optional Spanning-Tree Features 13-1 Understanding Optional Spanning-Tree Features 13-1 Understanding Port Fast 13-2 Understanding BPDU Guard 13-3 Understanding BPDU Filtering 13-3 Understanding UplinkFast 13-4 Understanding Cross-Stack...13-5 How CSUF Works 13-6 Events That Cause Fast Convergence 13-7 Limitations 13-8 Connecting the Stack Ports 13-8 Understanding BackboneFast 13-10 Understanding Root Guard 13-12 Understanding Loop Guard 13-13 Configuring Optional ...Tree Status 13-21 Contents 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide xiii
Software Configuration Guide
Page 14
... Configuration 14-7 Default Ethernet VLAN Configuration 14-8 Creating or Modifying an Ethernet VLAN 14-8 Deleting a VLAN 14-10 Assigning Static-Access Ports to a VLAN 14-11 Configuring Extended-Range VLANs 14-12 Default VLAN Configuration 14-12 Extended-Range VLAN Configuration Guidelines 14-12 Creating... STP Port Priorities 14-21 Load Sharing Using STP Path Cost 14-23 Configuring VMPS 14-24 Understanding VMPS 14-25 Dynamic Port VLAN Membership 14-25 VMPS Database Configuration File 14-26 Default VMPS Configuration 14-27 VMPS Configuration Guidelines 14-28 Catalyst 2950 Desktop Switch Software ...
... Configuration 14-7 Default Ethernet VLAN Configuration 14-8 Creating or Modifying an Ethernet VLAN 14-8 Deleting a VLAN 14-10 Assigning Static-Access Ports to a VLAN 14-11 Configuring Extended-Range VLANs 14-12 Default VLAN Configuration 14-12 Extended-Range VLAN Configuration Guidelines 14-12 Creating... STP Port Priorities 14-21 Load Sharing Using STP Path Cost 14-23 Configuring VMPS 14-24 Understanding VMPS 14-25 Dynamic Port VLAN Membership 14-25 VMPS Database Configuration File 14-26 Default VMPS Configuration 14-27 VMPS Configuration Guidelines 14-28 Catalyst 2950 Desktop Switch Software ...
Software Configuration Guide
Page 15
...78-14982-01 Configuring the VMPS Client 14-28 Entering the IP Address of the VMPS 14-28 Configuring Dynamic Access Ports on VMPS Clients 14-29 Reconfirming VLAN Memberships 14-30 Changing the Reconfirmation Interval 14-30 Changing the Retry Count ...14-30 Monitoring the VMPS 14-31 Troubleshooting Dynamic Port VLAN Membership 14-31 VMPS Configuration Example 14-32 Configuring VTP 15-1 Understanding VTP 15...Version 2 15-13 Enabling VTP Pruning 15-14 Adding a VTP Client Switch to a VTP Domain 15-15 Monitoring VTP 15-16 Configuring Voice VLAN 16-1 Understanding Voice VLAN ...
...78-14982-01 Configuring the VMPS Client 14-28 Entering the IP Address of the VMPS 14-28 Configuring Dynamic Access Ports on VMPS Clients 14-29 Reconfirming VLAN Memberships 14-30 Changing the Reconfirmation Interval 14-30 Changing the Retry Count ...14-30 Monitoring the VMPS 14-31 Troubleshooting Dynamic Port VLAN Membership 14-31 VMPS Configuration Example 14-32 Configuring VTP 15-1 Understanding VTP 15...Version 2 15-13 Enabling VTP Pruning 15-14 Adding a VTP Client Switch to a VTP Domain 15-15 Monitoring VTP 15-16 Configuring Voice VLAN 16-1 Understanding Voice VLAN ...
Software Configuration Guide
Page 16
Contents 17 C H A P T E R Default Voice VLAN Configuration 16-2 Voice VLAN Configuration Guidelines 16-3 Configuring a Port to Connect to a Cisco 7960 IP Phone 16-3 Configuring Ports to Carry Voice Traffic in 802.1Q Frames 16-4 Configuring Ports to Carry Voice Traffic in 802.1P Priority Tagged Frames 16-4 Overriding the CoS Priority of Incoming Data Frames 16...-21 Configuring IGMP Profiles 17-21 Applying IGMP Profiles 17-22 Setting the Maximum Number of IGMP Groups 17-23 Displaying IGMP Filtering Configuration 17-24 Catalyst 2950 Desktop Switch Software Configuration Guide xvi 78-14982-01
Contents 17 C H A P T E R Default Voice VLAN Configuration 16-2 Voice VLAN Configuration Guidelines 16-3 Configuring a Port to Connect to a Cisco 7960 IP Phone 16-3 Configuring Ports to Carry Voice Traffic in 802.1Q Frames 16-4 Configuring Ports to Carry Voice Traffic in 802.1P Priority Tagged Frames 16-4 Overriding the CoS Priority of Incoming Data Frames 16...-21 Configuring IGMP Profiles 17-21 Applying IGMP Profiles 17-22 Setting the Maximum Number of IGMP Groups 17-23 Displaying IGMP Filtering Configuration 17-24 Catalyst 2950 Desktop Switch Software Configuration Guide xvi 78-14982-01
Software Configuration Guide
Page 17
...Storm Control 18-3 Configuring Protected Ports 18-3 Configuring Port Security 18-4 Understanding Port Security 18-5 Secure MAC Addresses 18-5 Security Violations 18-6 Default Port Security Configuration 18-7 Port Security Configuration Guidelines 18-7 Enabling and Configuring Port Security 18-7 Enabling and Configuring Port Security Aging 18-10 Displaying Port-Based Traffic Control Settings 18-12...and Maintaining CDP 20-5 Configuring SPAN and RSPAN 21-1 Understanding SPAN and RSPAN 21-1 SPAN and RSPAN Concepts and Terminology 21-3 Catalyst 2950 Desktop Switch Software Configuration Guide xvii
...Storm Control 18-3 Configuring Protected Ports 18-3 Configuring Port Security 18-4 Understanding Port Security 18-5 Secure MAC Addresses 18-5 Security Violations 18-6 Default Port Security Configuration 18-7 Port Security Configuration Guidelines 18-7 Enabling and Configuring Port Security 18-7 Enabling and Configuring Port Security Aging 18-10 Displaying Port-Based Traffic Control Settings 18-12...and Maintaining CDP 20-5 Configuring SPAN and RSPAN 21-1 Understanding SPAN and RSPAN 21-1 SPAN and RSPAN Concepts and Terminology 21-3 Catalyst 2950 Desktop Switch Software Configuration Guide xvii
Software Configuration Guide
Page 18
... and RSPAN Session Limits 21-8 Default SPAN and RSPAN Configuration 21-8 Configuring SPAN 21-8 SPAN Configuration Guidelines 21-8 Creating a SPAN Session and Specifying Ports to Monitor 21-9 Removing Ports from a SPAN Session 21-11 Specifying VLANs to Monitor 21-12 Specifying VLANs to Filter 21-13 Configuring RSPAN 21-14 RSPAN Configuration... Logging 23-1 Configuring System Message Logging 23-2 System Log Message Format 23-2 Default System Message Logging Configuration 23-3 Disabling and Enabling Message Logging 23-4 xviii Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
... and RSPAN Session Limits 21-8 Default SPAN and RSPAN Configuration 21-8 Configuring SPAN 21-8 SPAN Configuration Guidelines 21-8 Creating a SPAN Session and Specifying Ports to Monitor 21-9 Removing Ports from a SPAN Session 21-11 Specifying VLANs to Monitor 21-12 Specifying VLANs to Filter 21-13 Configuring RSPAN 21-14 RSPAN Configuration... Logging 23-1 Configuring System Message Logging 23-2 System Log Message Format 23-2 Default System Message Logging Configuration 23-3 Disabling and Enabling Message Logging 23-4 xviii Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
Software Configuration Guide
Page 20
... and WRR 26-8 Configuring QoS 26-9 Default QoS Configuration 26-9 Configuration Guidelines 26-10 Configuring Classification Using Port Trust States 26-10 Configuring the Trust State on Ports within the QoS Domain 26-11 Configuring the CoS Value for an Interface 26-13 Catalyst 2950 Desktop Switch Software Configuration Guide xx 78-14982-01
... and WRR 26-8 Configuring QoS 26-9 Default QoS Configuration 26-9 Configuration Guidelines 26-10 Configuring Classification Using Port Trust States 26-10 Configuring the Trust State on Ports within the QoS Domain 26-11 Configuring the CoS Value for an Interface 26-13 Catalyst 2950 Desktop Switch Software Configuration Guide xx 78-14982-01
Software Configuration Guide
Page 21
... Classifying, Policing, and Marking Traffic by Using Policy Maps 26-21 Configuring CoS Maps 26-24 Configuring the CoS-to-DSCP Map 26-25 Configuring the DSCP-to-CoS Map 26-26 ...-30 Configuring EtherChannels 27-1 Understanding EtherChannels 27-1 Understanding Port-Channel Interfaces 27-2 Understanding the Port Aggregation Protocol 27-3 PAgP Modes 27-4 Physical Learners and Aggregate-Port Learners 27-5 PAgP Interaction with Other Features 27-5 ...from a Lost or Forgotten Password 28-6 Recovering from a Command Switch Failure 28-8 Catalyst 2950 Desktop Switch Software Configuration Guide xxi
... Classifying, Policing, and Marking Traffic by Using Policy Maps 26-21 Configuring CoS Maps 26-24 Configuring the CoS-to-DSCP Map 26-25 Configuring the DSCP-to-CoS Map 26-26 ...-30 Configuring EtherChannels 27-1 Understanding EtherChannels 27-1 Understanding Port-Channel Interfaces 27-2 Understanding the Port Aggregation Protocol 27-3 PAgP Modes 27-4 Physical Learners and Aggregate-Port Learners 27-5 PAgP Interaction with Other Features 27-5 ...from a Lost or Forgotten Password 28-6 Recovering from a Command Switch Failure 28-8 Catalyst 2950 Desktop Switch Software Configuration Guide xxi
Software Configuration Guide
Page 22
...P P E N D I X B A P P E N D I X Replacing a Failed Command Switch with a Cluster Member 28-9 Replacing a Failed Command Switch with Another Switch 28-10 Recovering from Lost Member Connectivity 28-11 Preventing Autonegotiation Mismatches 28-12 Troubleshooting LRE Port Configuration 28-12 GBIC and SFP Module Security and Identification 28-13 Using Debug Commands 28-14 Enabling Debugging on ... File By Using TFTP B-11 Downloading the Configuration File By Using TFTP B-12 Uploading the Configuration File By Using TFTP B-12 Catalyst 2950 Desktop Switch Software Configuration Guide xxii 78-14982-01
...P P E N D I X B A P P E N D I X Replacing a Failed Command Switch with a Cluster Member 28-9 Replacing a Failed Command Switch with Another Switch 28-10 Recovering from Lost Member Connectivity 28-11 Preventing Autonegotiation Mismatches 28-12 Troubleshooting LRE Port Configuration 28-12 GBIC and SFP Module Security and Identification 28-13 Using Debug Commands 28-14 Enabling Debugging on ... File By Using TFTP B-11 Downloading the Configuration File By Using TFTP B-12 Uploading the Configuration File By Using TFTP B-12 Catalyst 2950 Desktop Switch Software Configuration Guide xxii 78-14982-01
Software Configuration Guide
Page 25
... supported by an a variation of service (QoS) features, the Secure Shell Protocol, extended-range VLANs, and Remote Switch Port Analyzer (RSPAN). For the cluster commands, refer to the command reference for this release. • CLI command information...information about configuring and troubleshooting a Catalyst 2950 or Catalyst 2950 Long-Reach Ethernet (LRE) switch or switch clusters. Preface Audience The Catalyst 2950 Desktop Switch Software Configuration Guide is for the network manager responsible for configuring the Catalyst 2950 switches, hereafter referred to the command reference...
... supported by an a variation of service (QoS) features, the Secure Shell Protocol, extended-range VLANs, and Remote Switch Port Analyzer (RSPAN). For the cluster commands, refer to the command reference for this release. • CLI command information...information about configuring and troubleshooting a Catalyst 2950 or Catalyst 2950 Long-Reach Ethernet (LRE) switch or switch clusters. Preface Audience The Catalyst 2950 Desktop Switch Software Configuration Guide is for the network manager responsible for configuring the Catalyst 2950 switches, hereafter referred to the command reference...
Software Configuration Guide
Page 27
...SwitchProbe device or other ports on a switch; Chapter 24, "Configuring SNMP," describes how to set the agent contact and location information, and how to configure the Cisco implementation of interfaces on your switch. Chapter 11, "...switch. Preface 78-14982-01 Organization Chapter 8, "Configuring 802.1X Port-Based Authentication," describes how to configure 802.1X port-based authentication to prevent unauthorized devices (clients) from gaining access to protect ports from receiving traffic from other Remote Monitoring (RMON) probe. Catalyst 2950 Desktop Switch...
...SwitchProbe device or other ports on a switch; Chapter 24, "Configuring SNMP," describes how to set the agent contact and location information, and how to configure the Cisco implementation of interfaces on your switch. Chapter 11, "...switch. Preface 78-14982-01 Organization Chapter 8, "Configuring 802.1X Port-Based Authentication," describes how to configure 802.1X port-based authentication to prevent unauthorized devices (clients) from gaining access to protect ports from receiving traffic from other Remote Monitoring (RMON) probe. Catalyst 2950 Desktop Switch...
Software Configuration Guide
Page 28
... • Information you might not be troubleshooting or even an action, but could result in equipment damage or loss of individual ports into a single logical link on your switch. Chapter 27, "Configuring EtherChannels," describes how to certain types traffic. Notes contain helpful suggestions or references to configure quality of ...). Caution Means reader be useful information. Conventions Preface Chapter 25, "Configuring Network Security with ACLs," describes how to the IOS software. xxviii Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
... • Information you might not be troubleshooting or even an action, but could result in equipment damage or loss of individual ports into a single logical link on your switch. Chapter 27, "Configuring EtherChannels," describes how to certain types traffic. Notes contain helpful suggestions or references to configure quality of ...). Caution Means reader be useful information. Conventions Preface Chapter 25, "Configuring Network Security with ACLs," describes how to the IOS software. xxviii Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
Software Configuration Guide
Page 34
... • A set of Deployment • Cluster Management Suite (CMS) software for the Cisco LRE 48 POTS Splitter. Switch LRE ports and the Ethernet ports on the Catalyst 2950 LRE switch, with a protected port on 585 CPE devices • Support for the Gigabit ports. CPE Ethernet ports and remote Ethernet devices, such as Netscape Communicator or Microsoft Internet Explorer, from...
... • A set of Deployment • Cluster Management Suite (CMS) software for the Cisco LRE 48 POTS Splitter. Switch LRE ports and the Ethernet ports on the Catalyst 2950 LRE switch, with a protected port on 585 CPE devices • Support for the Gigabit ports. CPE Ethernet ports and remote Ethernet devices, such as Netscape Communicator or Microsoft Internet Explorer, from...
Software Configuration Guide
Page 35
... creation of clusters of configuration files by unicast TFTP messages. The Catalyst 2950G-12-EI, 2950G-24-EI, 2950G-24-EI-DC, and 2950G-48-EI switches running Cisco IOS Release 12.1(6)EA2 or later support frame sizes from 1500 to 1530 bytes • Per-port broadcast storm control for preventing faulty end stations from degrading overall system performance with...
... creation of clusters of configuration files by unicast TFTP messages. The Catalyst 2950G-12-EI, 2950G-24-EI, 2950G-24-EI-DC, and 2950G-48-EI switches running Cisco IOS Release 12.1(6)EA2 or later support frame sizes from 1500 to 1530 bytes • Per-port broadcast storm control for preventing faulty end stations from degrading overall system performance with...
Software Configuration Guide
Page 36
... and set requests • Out-of-band management access through the switch console port to a directly-attached terminal or to a remote terminal through its IP address and its corresponding MAC address • Cisco Discovery Protocol (CDP) versions 1 and 2 for network topology discovery and... switch through a serial connection and a modem Note For additional descriptions of the management interfaces, see the "Management Options" section on page 1-7. Per-VLAN Spanning Tree (PVST) for preventing switches outside the network core from becoming the spanning-tree root Catalyst 2950 Desktop Switch...
... and set requests • Out-of-band management access through the switch console port to a directly-attached terminal or to a remote terminal through its IP address and its corresponding MAC address • Cisco Discovery Protocol (CDP) versions 1 and 2 for network topology discovery and... switch through a serial connection and a modem Note For additional descriptions of the management interfaces, see the "Management Options" section on page 1-7. Per-VLAN Spanning Tree (PVST) for preventing switches outside the network core from becoming the spanning-tree root Catalyst 2950 Desktop Switch...