Software Configuration Guide
Page 7
...Switch-Specific Features in Switch Clusters 6-19 Creating a Switch Cluster 6-19 Enabling a Command Switch 6-19 Adding Member Switches 6-20 Creating a Cluster Standby Group 6-22 Verifying a Switch Cluster 6-24 Using the CLI to Manage Switch Clusters 6-25 Catalyst 1900 and Catalyst 2820 CLI Considerations 6-25 Using SNMP to Manage Switch Clusters 6-26 Administering the Switch... 7-10 Controlling Switch Access with TACACS+ 7-10 Understanding TACACS+ 7-10 TACACS+ Operation 7-12 Configuring TACACS+ 7-12 Default TACACS+ Configuration 7-13 Catalyst 2950 Desktop Switch Software Configuration Guide vii
...Switch-Specific Features in Switch Clusters 6-19 Creating a Switch Cluster 6-19 Enabling a Command Switch 6-19 Adding Member Switches 6-20 Creating a Cluster Standby Group 6-22 Verifying a Switch Cluster 6-24 Using the CLI to Manage Switch Clusters 6-25 Catalyst 1900 and Catalyst 2820 CLI Considerations 6-25 Using SNMP to Manage Switch Clusters 6-26 Administering the Switch... 7-10 Controlling Switch Access with TACACS+ 7-10 Understanding TACACS+ 7-10 TACACS+ Operation 7-12 Configuring TACACS+ 7-12 Default TACACS+ Configuration 7-13 Catalyst 2950 Desktop Switch Software Configuration Guide vii
Software Configuration Guide
Page 27
...describes how to configure LRE-specific features on your switch. Chapter 16, "Configuring Voice VLAN," describes how to configure voice VLANs on a switch; Chapter 18, "Configuring Port... "Configuring the Switch Interfaces," defines the types of interfaces on your switch. Chapter 21, "Configuring SPAN and RSPAN," describes how to configure Cisco Discovery Protocol (CDP... on your switch. Catalyst 2950 Desktop Switch Software Configuration Guide xxvii It describes the interface global configuration command and provides procedures for managing VLANs. Chapter 24, "Configuring ...
...describes how to configure LRE-specific features on your switch. Chapter 16, "Configuring Voice VLAN," describes how to configure voice VLANs on a switch; Chapter 18, "Configuring Port... "Configuring the Switch Interfaces," defines the types of interfaces on your switch. Chapter 21, "Configuring SPAN and RSPAN," describes how to configure Cisco Discovery Protocol (CDP... on your switch. Catalyst 2950 Desktop Switch Software Configuration Guide xxvii It describes the interface global configuration command and provides procedures for managing VLANs. Chapter 24, "Configuring ...
Software Configuration Guide
Page 37
... encapsulation (802.1Q) to be used • Voice VLAN for creating subnets for voice traffic from Cisco IP Phones Security • Bridge protocol data unit (BPDU) guard for shutting down a Port Fast-... with appropriate network resources, traffic patterns, and bandwidth Note The Catalyst 2950-12, Catalyst 2950-24, and Catalyst 2950SX-24 switches support only 64 port-based VLANs. • The switch supports up to the network • Standard and extended IP access...; MAC-based port-level security for restricting the use of a switch port to a specific group of broadcast and multicast traffic;
... encapsulation (802.1Q) to be used • Voice VLAN for creating subnets for voice traffic from Cisco IP Phones Security • Bridge protocol data unit (BPDU) guard for shutting down a Port Fast-... with appropriate network resources, traffic patterns, and bandwidth Note The Catalyst 2950-12, Catalyst 2950-24, and Catalyst 2950SX-24 switches support only 64 port-based VLANs. • The switch supports up to the network • Standard and extended IP access...; MAC-based port-level security for restricting the use of a switch port to a specific group of broadcast and multicast traffic;
Software Configuration Guide
Page 39
... network. CMS is the easiest interface to use Cisco switch clustering technology to manage up to 16 interconnected and supported Catalyst switches through one IP address as CiscoWorks2000 LAN Management Suite...information to the switch and connect it to the other devices in your network. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 1-7 If you have specific network needs, ...display switch images to modify switch and port level settings. For more information about IE2100, see the Chapter 24, "Configuring SNMP." This can configure and monitor the switch-on ...
... network. CMS is the easiest interface to use Cisco switch clustering technology to manage up to 16 interconnected and supported Catalyst switches through one IP address as CiscoWorks2000 LAN Management Suite...information to the switch and connect it to the other devices in your network. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 1-7 If you have specific network needs, ...display switch images to modify switch and port level settings. For more information about IE2100, see the Chapter 24, "Configuring SNMP." This can configure and monitor the switch-on ...
Software Configuration Guide
Page 71
...standalone or noncommand member switch, the Front Panel view displays only the front panel of the switch and connected RPS. LEDs display the current port mode and the status of the specific switch (see Figure 3-5 for a 2950 switch and Figure 3-4 for a 2950 LRE switch). Right-click a ...port LED reflects port or link status. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 3-5 related option. Chapter 3 Getting Started with CMS Figure 3-3 Front Panel View from a Standalone 2950 LRE Switch 2950-24 2950-24 86459 Left-click the Mode button to view or change ...
...standalone or noncommand member switch, the Front Panel view displays only the front panel of the switch and connected RPS. LEDs display the current port mode and the status of the specific switch (see Figure 3-5 for a 2950 switch and Figure 3-4 for a 2950 LRE switch). Right-click a ...port LED reflects port or link status. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 3-5 related option. Chapter 3 Getting Started with CMS Figure 3-3 Front Panel View from a Standalone 2950 LRE Switch 2950-24 2950-24 86459 Left-click the Mode button to view or change ...
Software Configuration Guide
Page 90
...31. 3-24 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Available only from the command switch. Properties Display information about the device. 1. Properties Display information about the device. 1. Launch Device Manager for a switch. For more...Switch Icon (When the Candidate Switch Has an IP Address) Popup Menu Option Add to Cluster1 Device Manager2 Task Add a candidate to a cluster. Table 3-19 Device Popup Menu of a Command-Switch Icon Popup Menu Option Task Collapse cluster Host Name1 View the neighborhood outside a specific...
...31. 3-24 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Available only from the command switch. Properties Display information about the device. 1. Properties Display information about the device. 1. Launch Device Manager for a switch. For more...Switch Icon (When the Candidate Switch Has an IP Address) Popup Menu Option Add to Cluster1 Device Manager2 Task Add a candidate to a cluster. Table 3-19 Device Popup Menu of a Command-Switch Icon Popup Menu Option Task Collapse cluster Host Name1 View the neighborhood outside a specific...
Software Configuration Guide
Page 142
...member. We recommend that you change the member-switch password after it sequentially as mkg-cluster-5). For more information about passwords, see Chapter 24, "Configuring SNMP." If the command switch has multiple read-only or read-write community ...switches. 6-16 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 If a switch has a host name, it retains that host name even after it joins a cluster. If no command-switch password is Switch. For password considerations specific to the Catalyst 1900 and Catalyst 2820 switches, refer to either a command switch...
...member. We recommend that you change the member-switch password after it sequentially as mkg-cluster-5). For more information about passwords, see Chapter 24, "Configuring SNMP." If the command switch has multiple read-only or read-write community ...switches. 6-16 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 If a switch has a host name, it retains that host name even after it joins a cluster. If no command-switch password is Switch. For password considerations specific to the Catalyst 1900 and Catalyst 2820 switches, refer to either a command switch...
Software Configuration Guide
Page 145
..., Catalyst 2820, Catalyst 2900 XL, and Catalyst 3500 XL switches, either the Catalyst 2900 XL or Catalyst 3500 XL should be the command switch. If your switch cluster has Catalyst 2900 XL, Catalyst 2950, and Catalyst 3500 XL switches, the Catalyst 2950 should be the command switch. - For example, Device > LRE Profile appears in Switch Clusters The menu bar on page 6-5, and the release notes. Therefore, features specific...
..., Catalyst 2820, Catalyst 2900 XL, and Catalyst 3500 XL switches, either the Catalyst 2900 XL or Catalyst 3500 XL should be the command switch. If your switch cluster has Catalyst 2900 XL, Catalyst 2950, and Catalyst 3500 XL switches, the Catalyst 2950 should be the command switch. - For example, Device > LRE Profile appears in Switch Clusters The menu bar on page 6-5, and the release notes. Therefore, features specific...
Software Configuration Guide
Page 147
...-01 Catalyst 2950 Desktop Switch Software Configuration Guide 6-21 For additional authentication considerations in the group has a password different from the group, only that specific candidate switch is not added to Cluster Window 2900-LRE-24-1 Select a switch, and click Add. When a candidate switch joins a cluster, it inherits the command-switch password. Chapter 6 Clustering Switches Creating a Switch Cluster If a candidate switch in switch...
...-01 Catalyst 2950 Desktop Switch Software Configuration Guide 6-21 For additional authentication considerations in the group has a password different from the group, only that specific candidate switch is not added to Cluster Window 2900-LRE-24-1 Select a switch, and click Add. When a candidate switch joins a cluster, it inherits the command-switch password. Chapter 6 Clustering Switches Creating a Switch Cluster If a candidate switch in switch...
Software Configuration Guide
Page 245
...status of all interfaces: Switch# show interfaces status Port Fa0/1 Fa0/2 Fa0/3 Name Status connected notconnect notconnect Vlan 1 1 1 Duplex a-full auto auto Speed Type a-100 10/100BaseTX auto 10/100BaseTX auto 10/100BaseTX Fa0/23 Fa0/24 Gi0/1 Gi0/2 notconnect ...Name: Fa0/2 Switchport: Enabled Administrative Mode: static access 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 9-17 Display the description configured on an interface or all interfaces or a specific interface. Display administrative and operational status of configuration files, and the boot...
...status of all interfaces: Switch# show interfaces status Port Fa0/1 Fa0/2 Fa0/3 Name Status connected notconnect notconnect Vlan 1 1 1 Duplex a-full auto auto Speed Type a-100 10/100BaseTX auto 10/100BaseTX auto 10/100BaseTX Fa0/23 Fa0/24 Gi0/1 Gi0/2 notconnect ...Name: Fa0/2 Switchport: Enabled Administrative Mode: static access 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 9-17 Display the description configured on an interface or all interfaces or a specific interface. Display administrative and operational status of configuration files, and the boot...
Software Configuration Guide
Page 479
...set-request Stores a value in response to a request from the NMS. The agent retrieves the value of data. Retrieves a value from a specific variable. get -bulk-request2 Retrieves a value from a variable within a table. 2. Provides authentication based on the HMAC-MD5 or HMAC-SHA ... module goes up or down, when spanning-tree topology changes occur, and when authentication failures occur. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-3 Examples of trap conditions include, but are not limited to find the needed variable from the NMS. The SNMP ...
...set-request Stores a value in response to a request from the NMS. The agent retrieves the value of data. Retrieves a value from a specific variable. get -bulk-request2 Retrieves a value from a variable within a table. 2. Provides authentication based on the HMAC-MD5 or HMAC-SHA ... module goes up or down, when spanning-tree topology changes occur, and when authentication failures occur. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-3 Examples of trap conditions include, but are not limited to find the needed variable from the NMS. The SNMP ...
Software Configuration Guide
Page 480
... to Access MIB Variables An example of an NMS is created, the command switch manages the exchange of devices, monitor traffic loads, and more information, see Appendix A, "Supported MIBs." 24-4 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 As shown in the MIB, but does ... to poll devices on the network for the NMS to access the switch, the community string definitions on the network such as a graph and analyzed to the member switches. In order for specific information. CiscoWorks 2000 software uses the switch MIB variables to set -request format.
... to Access MIB Variables An example of an NMS is created, the command switch manages the exchange of devices, monitor traffic loads, and more information, see Appendix A, "Supported MIBs." 24-4 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 As shown in the MIB, but does ... to poll devices on the network for the NMS to access the switch, the community string definitions on the network such as a graph and analyzed to the member switches. In order for specific information. CiscoWorks 2000 software uses the switch MIB variables to set -request format.
Software Configuration Guide
Page 483
...running-config copy running versions (version 1, version 2C, and version 3) on the device. No specific IOS command exists to privileged EXEC mode. Configuring Community Strings You use the community string to gain... accessible to the community Beginning in privileged EXEC mode, follow these steps to configure a community string on the switch. Configure the community string. • For string, specify a string that you want authorized management stations to...list numbered from 1 to 99 and 1300 to 1999. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-7
...running-config copy running versions (version 1, version 2C, and version 3) on the device. No specific IOS command exists to privileged EXEC mode. Configuring Community Strings You use the community string to gain... accessible to the community Beginning in privileged EXEC mode, follow these steps to configure a community string on the switch. Configure the community string. • For string, specify a string that you want authorized management stations to...list numbered from 1 to 99 and 1300 to 1999. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-7
Software Configuration Guide
Page 484
...Optional) Save your entries in the bit positions that maps SNMP users to SNMP views, and you want to the SNMP group. 24-8 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 The permit keyword permits access if the conditions are matched. • For source, enter the IP...remote SNMP server engine on the switch. Place ones in the configuration file. Return to the switch SNMP agent: Switch(config)# snmp-server community comaccess ro 4 Configuring SNMP Groups and Users You can add new users to ignore. To remove a specific community string, use the community string...
...Optional) Save your entries in the bit positions that maps SNMP users to SNMP views, and you want to the SNMP group. 24-8 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 The permit keyword permits access if the conditions are matched. • For source, enter the IP...remote SNMP server engine on the switch. Place ones in the configuration file. Return to the switch SNMP agent: Switch(config)# snmp-server community comaccess ro 4 Configuring SNMP Groups and Users You can add new users to ignore. To remove a specific community string, use the community string...
Software Configuration Guide
Page 486
... host command to specify whether to privileged EXEC mode. Table 24-4 Switch Notification Types Notification Type Keyword c2900 cluster config entity Description Generates a trap for SNMP configuration changes. Generates a trap for Catalyst 2950-specific notifications. Note Many commands use the word traps in the... • Enter the SNMP version number (v1, v2c, or v3). Generates a trap for SNMP entity changes. 24-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Unless there is an authentication level setting session, which the user belongs and the hostname...
... host command to specify whether to privileged EXEC mode. Table 24-4 Switch Notification Types Notification Type Keyword c2900 cluster config entity Description Generates a trap for SNMP configuration changes. Generates a trap for Catalyst 2950-specific notifications. Note Many commands use the word traps in the... • Enter the SNMP version number (v1, v2c, or v3). Generates a trap for SNMP entity changes. 24-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Unless there is an authentication level setting session, which the user belongs and the hostname...
Software Configuration Guide
Page 487
...-address engineid-string Specify the engine ID for the remote host. Sends Cisco enterprise-specific notifications when a Transmission Control Protocol (TCP) connection closes. You can use the snmp-server host global configuration command to a specific host to receive the notification types listed in privileged EXEC mode, follow... v2c | v3 [auth | noauth | priv]}] [read readview] [write writeview] [notify notifyview] [access access-list] Configure an SNMP group. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-11 Generates a trap for example, tty and udp-port.
...-address engineid-string Specify the engine ID for the remote host. Sends Cisco enterprise-specific notifications when a Transmission Control Protocol (TCP) connection closes. You can use the snmp-server host global configuration command to a specific host to receive the notification types listed in privileged EXEC mode, follow... v2c | v3 [auth | noauth | priv]}] [read readview] [write writeview] [notify notifyview] [access access-list] Configure an SNMP group. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 24-11 Generates a trap for example, tty and udp-port.
Software Configuration Guide
Page 488
...string sent with no keywords disables traps, but not informs, to the host. Enable the switch to be sent. Verify your entries. (Optional) Save your entries in Table 24-4 on page 24-10, or enter this: snmp-server enable traps ? To remove the specified host from ...8226; (Optional) For notification-type, use the no snmp-server enable traps notification-types global configuration command. 24-12 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 To disable a specific trap type, use the no type is specified, all notifications are sent. Note The priv keyword is ...
...string sent with no keywords disables traps, but not informs, to the host. Enable the switch to be sent. Verify your entries. (Optional) Save your entries in Table 24-4 on page 24-10, or enter this: snmp-server enable traps ? To remove the specified host from ...8226; (Optional) For notification-type, use the no snmp-server enable traps notification-types global configuration command. 24-12 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 To disable a specific trap type, use the no type is specified, all notifications are sent. Note The priv keyword is ...
Software Configuration Guide
Page 514
This example shows all IP address access lists or about a specific IP ACL (numbered or named). Show information about a specific access list (numbered or named). Switch# show commands. Beginning in privileged EXEC mode, follow these steps to display access lists: Step 1 Step 2 Command show access-lists [number | name] show ip....12 Standard IP access list 12 deny 1.3.3.2 Standard IP access list 32 permit 172.20.20.20 Standard IP access list 34 permit 10.24.35.56 permit 23.45.56.34 Extended IP access list 120 25-22 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
This example shows all IP address access lists or about a specific IP ACL (numbered or named). Show information about a specific access list (numbered or named). Switch# show commands. Beginning in privileged EXEC mode, follow these steps to display access lists: Step 1 Step 2 Command show access-lists [number | name] show ip....12 Standard IP access list 12 deny 1.3.3.2 Standard IP access list 32 permit 172.20.20.20 Standard IP access list 34 permit 10.24.35.56 permit 23.45.56.34 Extended IP access list 120 25-22 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
Software Configuration Guide
Page 516
... example uses an extended ACL to deny traffic from a specific Internet host with the address 172.20.128.64. Figure 25-2 Using Switch ACLs to Control Traffic Internet Workstation Cisco router Catalyst 2950 Catalyst 2950 65289 Catalyst 2950 End workstations This example uses a standard ACL to allow access to a specific Internet host with an address 172.20.128.64. •...
... example uses an extended ACL to deny traffic from a specific Internet host with the address 172.20.128.64. Figure 25-2 Using Switch ACLs to Control Traffic Internet Workstation Cisco router Catalyst 2950 Catalyst 2950 65289 Catalyst 2950 End workstations This example uses a standard ACL to allow access to a specific Internet host with an address 172.20.128.64. •...
Software Configuration Guide
Page 520
If you can select specific network traffic, prioritize it according to its relative importance, and use congestion-management and congestion-avoidance techniques to provide preferential treatment. Typically, networks operate on a ... bits in this wizard. This chapter consists of available features, see Table 26-1 on the switch. Implementing QoS in your switch, some concepts and features in the Layer 2 frame or a Layer 3 packet are 0, 8, 10, 16, 18, 24, 26, 32, 34, 40, 46, 48, and 56. 26-2 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01
If you can select specific network traffic, prioritize it according to its relative importance, and use congestion-management and congestion-avoidance techniques to provide preferential treatment. Typically, networks operate on a ... bits in this wizard. This chapter consists of available features, see Table 26-1 on the switch. Implementing QoS in your switch, some concepts and features in the Layer 2 frame or a Layer 3 packet are 0, 8, 10, 16, 18, 24, 26, 32, 34, 40, 46, 48, and 56. 26-2 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01