Software Configuration Guide
Page 2
...APPLICATION OF ANY PRODUCTS. and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, ... a partnership relationship between Cisco and any other company. (0304R) Catalyst 3560 Switch Software Configuration Guide Copyright © 2004 Cisco Systems, Inc. Copyright © 1981, Regents of the University of Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE ...
...APPLICATION OF ANY PRODUCTS. and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, ... a partnership relationship between Cisco and any other company. (0304R) Catalyst 3560 Switch Software Configuration Guide Copyright © 2004 Cisco Systems, Inc. Copyright © 1981, Regents of the University of Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE ...
Software Configuration Guide
Page 5
...14 Topology View 3-15 CMS Icons 3-16 Where to Go Next 3-16 Assigning the Switch IP Address and Default Gateway 4-1 Understanding the Boot Process 4-1 Assigning Switch Information 4-2 Default Switch Information 4-3 Understanding DHCP-Based Autoconfiguration 4-3 DHCP Client Request Process 4-4 Configuring DHCP-Based... a Configuration File 4-12 Specifying the Filename to Read and Write the System Configuration 4-12 Booting Manually 4-13 Booting a Specific Software Image 4-13 Controlling Environment Variables 4-14 Scheduling a Reload of the Software Image 4-16 Configuring a Scheduled Reload 4-16...
...14 Topology View 3-15 CMS Icons 3-16 Where to Go Next 3-16 Assigning the Switch IP Address and Default Gateway 4-1 Understanding the Boot Process 4-1 Assigning Switch Information 4-2 Default Switch Information 4-3 Understanding DHCP-Based Autoconfiguration 4-3 DHCP Client Request Process 4-4 Configuring DHCP-Based... a Configuration File 4-12 Specifying the Filename to Read and Write the System Configuration 4-12 Booting Manually 4-13 Booting a Specific Software Image 4-13 Controlling Environment Variables 4-14 Scheduling a Reload of the Software Image 4-16 Configuring a Scheduled Reload 4-16...
Software Configuration Guide
Page 6
... 5-15 Availability of Switch-Specific Features in Switch Clusters 5-15 Creating a Switch Cluster 5-16 Enabling a Cluster Command Switch 5-16 Adding Cluster Member Switches 5-17 Creating a Cluster Standby Group 5-19 Verifying a Switch Cluster 5-20 Using the CLI to Manage Switch Clusters 5-21 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-22 Using SNMP to Manage Switch Clusters 5-22 Catalyst 3560 Switch Software Configuration Guide vi...
... 5-15 Availability of Switch-Specific Features in Switch Clusters 5-15 Creating a Switch Cluster 5-16 Enabling a Cluster Command Switch 5-16 Adding Cluster Member Switches 5-17 Creating a Cluster Standby Group 5-19 Verifying a Switch Cluster 5-20 Using the CLI to Manage Switch Clusters 5-21 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-22 Using SNMP to Manage Switch Clusters 5-22 Catalyst 3560 Switch Software Configuration Guide vi...
Software Configuration Guide
Page 9
... RADIUS Accounting 8-28 Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Controlling Switch Access with Kerberos 8-32 Understanding Kerberos 8-32 Kerberos Operation 8-34 Authenticating to...Roles 9-2 Authentication Initiation and Message Exchange 9-3 Ports in Authorized and Unauthorized States 9-4 Supported Topologies 9-4 Using 802.1X with Port Security 9-5 Catalyst 3560 Switch Software Configuration Guide ix
... RADIUS Accounting 8-28 Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Controlling Switch Access with Kerberos 8-32 Understanding Kerberos 8-32 Kerberos Operation 8-34 Authenticating to...Roles 9-2 Authentication Initiation and Message Exchange 9-3 Ports in Authorized and Unauthorized States 9-4 Supported Topologies 9-4 Using 802.1X with Port Security 9-5 Catalyst 3560 Switch Software Configuration Guide ix
Software Configuration Guide
Page 29
... Password Recovery Disabled 35-6 Recovering from a Command Switch Failure 35-8 Replacing a Failed Command Switch with a Cluster Member 35-8 Replacing a Failed Command Switch with Another Switch 35-10 Recovering from Lost Cluster Member Connectivity 35...-11 Preventing Autonegotiation Mismatches 35-12 Troubleshooting Power over Ethernet Switch Ports 35-12 SFP Module Security and Identification 35-12 Using Ping...-16 Executing IP Traceroute 35-17 Using Debug Commands 35-18 Enabling Debugging on a Specific Feature 35-18 Enabling All-System Diagnostics 35-19 Redirecting Debug and Error Message Output...
... Password Recovery Disabled 35-6 Recovering from a Command Switch Failure 35-8 Replacing a Failed Command Switch with a Cluster Member 35-8 Replacing a Failed Command Switch with Another Switch 35-10 Recovering from Lost Cluster Member Connectivity 35...-11 Preventing Autonegotiation Mismatches 35-12 Troubleshooting Power over Ethernet Switch Ports 35-12 SFP Module Security and Identification 35-12 Using Ping...-16 Executing IP Traceroute 35-17 Using Debug Commands 35-18 Enabling Debugging on a Specific Feature 35-18 Enabling All-System Diagnostics 35-19 Redirecting Debug and Error Message Output...
Software Configuration Guide
Page 40
... complex features such as QoS priorities for video traffic, priority levels for data applications, and security. - Features Chapter 1 Overview The Catalyst 3560 switches have these features: • Ease-of-Use and Ease-of-Deployment Features, page 1-2 • Performance Features, page 1-3 •...port LED colors on the images are similar to accomplish specific tasks. - and switch-level monitoring and troubleshooting, and multiple switch software upgrades. - Monitoring real-time status of a switch or multiple switches from anywhere in configuring complex features such as VLANs, ...
... complex features such as QoS priorities for video traffic, priority levels for data applications, and security. - Features Chapter 1 Overview The Catalyst 3560 switches have these features: • Ease-of-Use and Ease-of-Deployment Features, page 1-2 • Performance Features, page 1-3 •...port LED colors on the images are similar to accomplish specific tasks. - and switch-level monitoring and troubleshooting, and multiple switch software upgrades. - Monitoring real-time status of a switch or multiple switches from anywhere in configuring complex features such as VLANs, ...
Software Configuration Guide
Page 42
... station directly to the switch console port or by using SNMP, see Chapter 3, "Getting Started with specific source or destination MAC addresses • Cisco Discovery Protocol (CDP) versions 1 and 2 for network topology discovery and mapping between the switch and other Cisco devices on the network ...) broadcasts, including IP address requests, from DHCP clients • DHCP server for automatic assignment of the SMI and EMI) Catalyst 3560 Switch Software Configuration Guide 1-4 78-16156-01 CMS is already installed on the cryptographic (that is, supports encryption) versions of the...
... station directly to the switch console port or by using SNMP, see Chapter 3, "Getting Started with specific source or destination MAC addresses • Cisco Discovery Protocol (CDP) versions 1 and 2 for network topology discovery and mapping between the switch and other Cisco devices on the network ...) broadcasts, including IP address requests, from DHCP clients • DHCP server for automatic assignment of the SMI and EMI) Catalyst 3560 Switch Software Configuration Guide 1-4 78-16156-01 CMS is already installed on the cryptographic (that is, supports encryption) versions of the...
Software Configuration Guide
Page 45
...precedences for prioritizing mission-critical traffic in aggregate to restrict specific applications or traffic flows to simplify the deployment of existing QoS ... share of -Profile - Shaped egress queues are dequeued to a specific traffic flow - Weighted tail drop (WTD) as the scheduling service...much of the bandwidth. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-7 IP TOS/DSCP and 802.1P CoS marking...based on flow-based packet classification (classification based on the switch port for different traffic classifications - Traffic-policing policies on ...
...precedences for prioritizing mission-critical traffic in aggregate to restrict specific applications or traffic flows to simplify the deployment of existing QoS ... share of -Profile - Shaped egress queues are dequeued to a specific traffic flow - Weighted tail drop (WTD) as the scheduling service...much of the bandwidth. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-7 IP TOS/DSCP and 802.1P CoS marking...based on flow-based packet classification (classification based on the switch port for different traffic classifications - Traffic-policing policies on ...
Software Configuration Guide
Page 47
... to the hardware installation guide. Chapter 4, "Assigning the Switch IP Address and Default Gateway" Chapter 5, "Clustering Switches" Chapter 6, "Administering the Switch" Chapter 9, "Configuring 802.1X Port-Based Authentication" 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-9 Chapter 1 Overview Default Settings After Initial Switch Configuration Monitoring Features • Switch LEDs that you assign basic IP information to...
... to the hardware installation guide. Chapter 4, "Assigning the Switch IP Address and Default Gateway" Chapter 5, "Clustering Switches" Chapter 6, "Administering the Switch" Chapter 9, "Configuring 802.1X Port-Based Authentication" 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-9 Chapter 1 Overview Default Settings After Initial Switch Configuration Monitoring Features • Switch LEDs that you assign basic IP information to...
Software Configuration Guide
Page 51
...specific to these switches for load sharing and redundancy. Voice traffic from accessing critical pieces of the network. VLAN access control lists (VLAN maps) on the switches provide intra-VLAN security and prevent unauthorized users from the Cisco IP Phones are configured on the switches...-compliant powered devices connected to receive power. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-13 The Catalyst 3560 switch supports at higher speeds Use the Catalyst Long-Reach Ethernet (LRE) switches to provide up to provide separate VLANs for security management. ...
...specific to these switches for load sharing and redundancy. Voice traffic from accessing critical pieces of the network. VLAN access control lists (VLAN maps) on the switches provide intra-VLAN security and prevent unauthorized users from the Cisco IP Phones are configured on the switches...-compliant powered devices connected to receive power. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 1-13 The Catalyst 3560 switch supports at higher speeds Use the Catalyst Long-Reach Ethernet (LRE) switches to provide up to provide separate VLANs for security management. ...
Software Configuration Guide
Page 56
...EXEC mode, enter exit or end, or press Ctrl-Z. To configure multiple interfaces with a specific interface). Line configuration While in user EXEC Switch# mode, enter the enable command. Enter logout or quit. Switch(config)# To exit to privileged EXEC mode, enter exit. Use this mode to verify ... terminal settings. • Perform basic tests. • Display system information. Privileged EXEC While in global configuration mode, specify a line with Switch> your switch. Use this mode to the entire switch. Catalyst 3560 Switch Software Configuration Guide 2-2 78-16156-01
...EXEC mode, enter exit or end, or press Ctrl-Z. To configure multiple interfaces with a specific interface). Line configuration While in user EXEC Switch# mode, enter the enable command. Enter logout or quit. Switch(config)# To exit to privileged EXEC mode, enter exit. Use this mode to verify ... terminal settings. • Perform basic tests. • Display system information. Privileged EXEC While in global configuration mode, specify a line with Switch> your switch. Use this mode to the entire switch. Catalyst 3560 Switch Software Configuration Guide 2-2 78-16156-01
Software Configuration Guide
Page 60
...)# no editing To re-enable the enhanced editing mode for the current terminal session, enter this command in privileged EXEC mode: Switch# terminal editing To reconfigure a specific line to have enhanced editing. Move the cursor to the end of the command line. Press Esc F. Press Ctrl-T. Using... Capability Keystroke1 Purpose Move around the command line to edit command lines. Move the cursor back one character. Press Ctrl-Y. Catalyst 3560 Switch Software Configuration Guide 2-6 78-16156-01 Recall commands from the buffer and paste them in the buffer.
...)# no editing To re-enable the enhanced editing mode for the current terminal session, enter this command in privileged EXEC mode: Switch# terminal editing To reconfigure a specific line to have enhanced editing. Move the cursor to the end of the command line. Press Esc F. Press Ctrl-T. Using... Capability Keystroke1 Purpose Move around the command line to edit command lines. Move the cursor back one character. Press Ctrl-Y. Catalyst 3560 Switch Software Configuration Guide 2-6 78-16156-01 Recall commands from the buffer and paste them in the buffer.
Software Configuration Guide
Page 66
...CMS Menu Bar, Toolbar, and Feature Bar The configuration and monitoring options for managing a single switch and switch clusters: - Help-Launch the online help. Figure 3-1 Menu Bar Catalyst 3560 Switch Software Configuration Guide 3-2 78-16156-01 For more information, see the "Displaying CMS" section ... Install. Understanding CMS Chapter 3 Getting Started with the same settings. You can select multiple ports or multiple switches and configure them with CMS Front Panel View The Front Panel view displays the Front Panel image of a specific set of link reports and link graphs.
...CMS Menu Bar, Toolbar, and Feature Bar The configuration and monitoring options for managing a single switch and switch clusters: - Help-Launch the online help. Figure 3-1 Menu Bar Catalyst 3560 Switch Software Configuration Guide 3-2 78-16156-01 For more information, see the "Displaying CMS" section ... Install. Understanding CMS Chapter 3 Getting Started with the same settings. You can select multiple ports or multiple switches and configure them with CMS Front Panel View The Front Panel view displays the Front Panel image of a specific set of link reports and link graphs.
Software Configuration Guide
Page 69
...-by devices in the online help. Online help is not available for completing a specific configuration task. Guide mode takes you select another configuration option. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 3-5 A person icon appears next to use Expert Mode instead, ...Understanding CMS Online Help CMS provides comprehensive online help to Cisco Systems Inc. In these features: • Feature-specific help that gives background information and concepts on the features • Dialog-specific help that fewer options are similar to . These are...
...-by devices in the online help. Online help is not available for completing a specific configuration task. Guide mode takes you select another configuration option. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 3-5 A person icon appears next to use Expert Mode instead, ...Understanding CMS Online Help CMS provides comprehensive online help to Cisco Systems Inc. In these features: • Feature-specific help that gives background information and concepts on the features • Dialog-specific help that fewer options are similar to . These are...
Software Configuration Guide
Page 70
You can view information about the read -only. Similar to guide mode, wizards provide a step-by clicking the Help button. Catalyst 3560 Switch Software Configuration Guide 3-6 78-16156-01 Instead, it prompts you to set up default configurations. Expert mode is read -only access mode...does not prompt you to use Guide Mode instead, you select a feature that has Wizard in the name, the wizard launches for completing a specific configuration task. When you must click Guide before selecting an option from the menu bar, tool bar, or popup menu. For more information about ...
You can view information about the read -only. Similar to guide mode, wizards provide a step-by clicking the Help button. Catalyst 3560 Switch Software Configuration Guide 3-6 78-16156-01 Instead, it prompts you to set up default configurations. Expert mode is read -only access mode...does not prompt you to use Guide Mode instead, you select a feature that has Wizard in the name, the wizard launches for completing a specific configuration task. When you must click Guide before selecting an option from the menu bar, tool bar, or popup menu. For more information about ...
Software Configuration Guide
Page 74
....0(5)WC2 or earlier or Cisco IOS Release 12.1(6)EA1 or earlier, the CMS versions in those earlier software releases. • CMS on the Catalyst 1900 and Catalyst 2820 switches is referred to the "Displaying CMS" section on the switch. 3-10 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 If you have not configured a specific (nondefault) HTTP port...
....0(5)WC2 or earlier or Cisco IOS Release 12.1(6)EA1 or earlier, the CMS versions in those earlier software releases. • CMS on the Catalyst 1900 and Catalyst 2820 switches is referred to the "Displaying CMS" section on the switch. 3-10 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 If you have not configured a specific (nondefault) HTTP port...
Software Configuration Guide
Page 78
...101011 12 1 Front Panel view button 2 Topology view button The Front Panel view displays the front-panel image of the specific switch. You can drag the switches that appear in Figure 3-6. You can right-click on the tool bar, as shown in Figure 3-7, and you can ...select more switches to be displayed. Figure 3-7 Front Panel View and Port Popup Menu 1 2 98674 3 4 1 Cluster tree 2 Command switch 3 check boxes to show switches 4 Port configuration popup menu 3-14 Catalyst 3560 Switch Software Configuration Guide 78-16156-01
...101011 12 1 Front Panel view button 2 Topology view button The Front Panel view displays the front-panel image of the specific switch. You can drag the switches that appear in Figure 3-6. You can right-click on the tool bar, as shown in Figure 3-7, and you can ...select more switches to be displayed. Figure 3-7 Front Panel View and Port Popup Menu 1 2 98674 3 4 1 Cluster tree 2 Command switch 3 check boxes to show switches 4 Port configuration popup menu 3-14 Catalyst 3560 Switch Software Configuration Guide 78-16156-01
Software Configuration Guide
Page 79
...Catalyst switch platforms. Topology View When CMS is launched from a command switch.) When you launch a separate CMS session. You can be members of switches that can right-click on the tool bar, the Topology view displays the command switch (indicated by default. (This view is available only when CMS is for a specific switch... in Figure 3-8. Chapter 3 Getting Started with CMS Displaying CMS Note Figure 3-7 shows a cluster with a Catalyst 3560 switch as the command switch. Device Manager is launched from a command switch, the Topology view appears...
...Catalyst switch platforms. Topology View When CMS is launched from a command switch.) When you launch a separate CMS session. You can be members of switches that can right-click on the tool bar, the Topology view displays the command switch (indicated by default. (This view is available only when CMS is for a specific switch... in Figure 3-8. Chapter 3 Getting Started with CMS Displaying CMS Note Figure 3-7 shows a cluster with a Catalyst 3560 switch as the command switch. Device Manager is launched from a command switch, the Topology view appears...
Software Configuration Guide
Page 80
... guide provides information about administrative tasks. • Click Help > What's New in the online help . 3-16 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 To display a different switch cluster, you right-click a cluster icon and select Expand Cluster, the Topology view displays the... clusters, candidate switches, and devices that are connected and how the switch cluster is collapsed and represented by a single icon. Only one popup menu at a time appears in a cluster. This view provides two levels of detail of the specific command or member switch that you can...
... guide provides information about administrative tasks. • Click Help > What's New in the online help . 3-16 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 To display a different switch cluster, you right-click a cluster icon and select Expand Cluster, the Topology view displays the... clusters, candidate switches, and devices that are connected and how the switch cluster is collapsed and represented by a single icon. Only one popup menu at a time appears in a cluster. This view provides two levels of detail of the specific command or member switch that you can...
Software Configuration Guide
Page 82
... • Parity settings default is used . For more information about the setup program, refer to the release notes on page 8-5. Catalyst 3560 Switch Software Configuration Guide 4-2 78-16156-01 Before you can format the Flash file system, reinstall the operating system software image by using ... For more information, see the "Disabling Password Recovery" section on Cisco.com. It gives you want to be used only to load, uncompress, and launch the operating system. Use a DHCP server for specific IP information. For more information, see the "Recovering from Corrupted Software...
... • Parity settings default is used . For more information about the setup program, refer to the release notes on page 8-5. Catalyst 3560 Switch Software Configuration Guide 4-2 78-16156-01 Before you can format the Flash file system, reinstall the operating system software image by using ... For more information, see the "Disabling Password Recovery" section on Cisco.com. It gives you want to be used only to load, uncompress, and launch the operating system. Use a DHCP server for specific IP information. For more information, see the "Recovering from Corrupted Software...