Software Guide
Page 2
... company. (0502R) Cisco ME 3400 Ethernet Access Switch Software Configuration Guide © 2005 Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF...
... company. (0502R) Cisco ME 3400 Ethernet Access Switch Software Configuration Guide © 2005 Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF...
Software Guide
Page 4
... a Console Connection or through Telnet 2-9 3 C H A P T E R Assigning the Switch IP Address and Default Gateway 3-1 Understanding the Boot Process 3-1 Assigning Switch Information 3-2 Default Switch Information 3-3 Understanding DHCP-Based Autoconfiguration 3-3 DHCP Client Request Process 3-3 Configuring DHCP-Based Autoconfiguration 3-5 DHCP Server Configuration Guidelines 3-5 Configuring the TFTP Server 3-5 Configuring the DNS 3-6 Configuring the Relay Device 3-6 Obtaining Configuration Files 3-7 Example Configuration 3-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide iv...
... a Console Connection or through Telnet 2-9 3 C H A P T E R Assigning the Switch IP Address and Default Gateway 3-1 Understanding the Boot Process 3-1 Assigning Switch Information 3-2 Default Switch Information 3-3 Understanding DHCP-Based Autoconfiguration 3-3 DHCP Client Request Process 3-3 Configuring DHCP-Based Autoconfiguration 3-5 DHCP Server Configuration Guidelines 3-5 Configuring the TFTP Server 3-5 Configuring the DNS 3-6 Configuring the Relay Device 3-6 Obtaining Configuration Files 3-7 Example Configuration 3-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide iv...
Software Guide
Page 6
...-the-Day Login Banner 5-18 Configuring a Login Banner 5-19 Managing the MAC Address Table 5-19 Building the Address Table 5-20 MAC Addresses and VLANs 5-20 Default MAC Address Table Configuration 5-21 Changing the Address Aging Time 5-21 Removing Dynamic Address Entries 5-22 Configuring MAC Address Notification Traps 5-22 Adding and Removing Static Address Entries 5-24 Configuring Unicast MAC Address Filtering 5-25 Disabling MAC Address Learning on a VLAN 5-26 Displaying Address Table Entries 5-28 Managing the ARP Table 5-28 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vi...
...-the-Day Login Banner 5-18 Configuring a Login Banner 5-19 Managing the MAC Address Table 5-19 Building the Address Table 5-20 MAC Addresses and VLANs 5-20 Default MAC Address Table Configuration 5-21 Changing the Address Aging Time 5-21 Removing Dynamic Address Entries 5-22 Configuring MAC Address Notification Traps 5-22 Adding and Removing Static Address Entries 5-24 Configuring Unicast MAC Address Filtering 5-25 Disabling MAC Address Learning on a VLAN 5-26 Displaying Address Table Entries 5-28 Managing the ARP Table 5-28 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vi...
Software Guide
Page 9
... Port Groups 9-6 Connecting Interfaces 9-6 Using Interface Configuration Mode 9-7 Procedures for Configuring Interfaces 9-7 Configuring a Range of Interfaces 9-8 Configuring and Using Interface Range Macros 9-10 Configuring Ethernet Interfaces 9-11 Default Ethernet Interface Configuration 9-12 Configuring User Network and Network Node Interfaces 9-13 Configuring Interface Speed and Duplex Mode 9-14 Speed and Duplex Configuration Guidelines 9-15 Setting the Interface Speed and Duplex Parameters 9-15 Configuring IEEE 802.3x Flow Control 9-17 Cisco ME 3400 Ethernet Access Switch Software...
... Port Groups 9-6 Connecting Interfaces 9-6 Using Interface Configuration Mode 9-7 Procedures for Configuring Interfaces 9-7 Configuring a Range of Interfaces 9-8 Configuring and Using Interface Range Macros 9-10 Configuring Ethernet Interfaces 9-11 Default Ethernet Interface Configuration 9-12 Configuring User Network and Network Node Interfaces 9-13 Configuring Interface Speed and Duplex Mode 9-14 Speed and Duplex Configuration Guidelines 9-15 Setting the Interface Speed and Duplex Parameters 9-15 Configuring IEEE 802.3x Flow Control 9-17 Cisco ME 3400 Ethernet Access Switch Software...
Software Guide
Page 16
...-7 Configuring a Multicast Router Port 20-8 Configuring a Host Statically to Join a Group 20-8 Enabling IGMP Immediate Leave 20-9 Configuring the IGMP Leave Timer 20-10 Configuring TCN-Related Commands 20-11 Controlling the Multicast Flooding Time After a TCN Event 20-11 Recovering from Flood Mode 20-11 Disabling Multicast Flooding During a TCN Event 20-12 Configuring the IGMP Snooping Querier 20-13 Disabling IGMP Report Suppression 20-14 Displaying IGMP Snooping Information 20-15 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
...-7 Configuring a Multicast Router Port 20-8 Configuring a Host Statically to Join a Group 20-8 Enabling IGMP Immediate Leave 20-9 Configuring the IGMP Leave Timer 20-10 Configuring TCN-Related Commands 20-11 Controlling the Multicast Flooding Time After a TCN Event 20-11 Recovering from Flood Mode 20-11 Disabling Multicast Flooding During a TCN Event 20-12 Configuring the IGMP Snooping Querier 20-13 Disabling IGMP Report Suppression 20-14 Displaying IGMP Snooping Information 20-15 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
Software Guide
Page 43
... configuration updates by generating switch-specific configuration changes, sending them to the switch console port or by connecting your management station directly to the switch, executing the configuration change, and logging the results. and multilayer-switching features. Chapter 1 Overview Features • IGMP filtering for controlling the set of MIB extensions and four remote monitoring (RMON) groups. You can manage from an SNMP-compatible management station that is in this section is a network management device that allows disabling MAC address...
... configuration updates by generating switch-specific configuration changes, sending them to the switch console port or by connecting your management station directly to the switch, executing the configuration change, and logging the results. and multilayer-switching features. Chapter 1 Overview Features • IGMP filtering for controlling the set of MIB extensions and four remote monitoring (RMON) groups. You can manage from an SNMP-compatible management station that is in this section is a network management device that allows disabling MAC address...
Software Guide
Page 44
... cryptographic versions of the switch software). • In-band management access through a serial connection or a modem • User-defined command macros for creating custom switch configurations for simplified deployment across multiple switches Availability Features • UniDirectional Link Detection (UDLD) and aggressive UDLD for detecting and disabling unidirectional links on fiber-optic interfaces caused by incorrect fiber-optic wiring or port faults • IEEE 802.1D Spanning Tree Protocol (STP) for redundant backbone connections and loop-free networks (supported...
... cryptographic versions of the switch software). • In-band management access through a serial connection or a modem • User-defined command macros for creating custom switch configurations for simplified deployment across multiple switches Availability Features • UniDirectional Link Detection (UDLD) and aggressive UDLD for detecting and disabling unidirectional links on fiber-optic interfaces caused by incorrect fiber-optic wiring or port faults • IEEE 802.1D Spanning Tree Protocol (STP) for redundant backbone connections and loop-free networks (supported...
Software Guide
Page 46
... by multiple traffic classes Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 1-6 78-17058-01 One-rate policing based on average rate and burst rate for secure addresses on a port • UNI default port state is disabled • Automatic control-plane protection to protect the CPU from gaining access to the network. Aggregate policing for policers shared by filtering traffic based on information in the inbound direction on IP precedence, Differentiated Services Code...
... by multiple traffic classes Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 1-6 78-17058-01 One-rate policing based on average rate and burst rate for secure addresses on a port • UNI default port state is disabled • Automatic control-plane protection to protect the CPU from gaining access to the network. Aggregate policing for policers shared by filtering traffic based on information in the inbound direction on IP precedence, Differentiated Services Code...
Software Guide
Page 76
.... Once the default gateway is configured, the switch has connectivity to the remote networks with unresolved destination IP addresses from the switch. Verify the configured default gateway. (Optional) Save your connection to have a default gateway set. Checking and Saving the Running Configuration You can check the configuration settings you entered or changes you are removing the address through a Telnet session, your entries in the configuration file. vlan internal allocation policy ascending 3-10 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01...
.... Once the default gateway is configured, the switch has connectivity to the remote networks with unresolved destination IP addresses from the switch. Verify the configured default gateway. (Optional) Save your connection to have a default gateway set. Checking and Saving the Running Configuration You can check the configuration settings you entered or changes you are removing the address through a Telnet session, your entries in the configuration file. vlan internal allocation policy ascending 3-10 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01...
Software Guide
Page 120
... history-size value, specify the maximum number of traps that you define this interface. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 5-23 Though you can set of entries in the MAC notification history table. Version 1, the default, is 0 to enable the SNMP MAC address notification trap. the default is removed from this string by using the snmp-server host command. • For notification-type, use the mac-notification keyword. By default, UNIs are disabled, and...
... history-size value, specify the maximum number of traps that you define this interface. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 5-23 Though you can set of entries in the MAC notification history table. Version 1, the default, is 0 to enable the SNMP MAC address notification trap. the default is removed from this string by using the snmp-server host command. • For notification-type, use the mac-notification keyword. By default, UNIs are disabled, and...
Software Guide
Page 378
... reports from the multicast clients. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 20-1 It also periodically deletes entries if it removes the host port from a host for this release and the "IP Multicast Routing Commands" section in this chapter, see the switch command reference for a particular multicast group, the switch adds the host port number to only those interfaces associated with IP multicast devices. 20 C H A P T E R Configuring IGMP Snooping and MVR This chapter...
... reports from the multicast clients. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 20-1 It also periodically deletes entries if it removes the host port from a host for this release and the "IP Multicast Routing Commands" section in this chapter, see the switch command reference for a particular multicast group, the switch adds the host port number to only those interfaces associated with IP multicast devices. 20 C H A P T E R Configuring IGMP Snooping and MVR This chapter...
Software Guide
Page 393
... forwarding table to those receiver ports that subscriber ports subscribe and unsubscribe (join and leave) these commands, see the command reference for compatible or dynamic mode of MVR operation: • In compatible mode, multicast data received by MVR hosts is forwarded to include 20-16 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 The multicast data is a switch port configured as MVR receiver ports. Only Layer 2 ports take part in MVR. Only one subscriber port...
... forwarding table to those receiver ports that subscriber ports subscribe and unsubscribe (join and leave) these commands, see the command reference for compatible or dynamic mode of MVR operation: • In compatible mode, multicast data received by MVR hosts is forwarded to include 20-16 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 The multicast data is a switch port configured as MVR receiver ports. Only Layer 2 ports take part in MVR. Only one subscriber port...
Software Guide
Page 397
... to configure Layer 2 MVR interfaces: Step 1 Step 2 Step 3 Command configure terminal mvr interface interface-id Step 4 no mvr [mode | group ip-address | querytime | vlan] global configuration commands. The default is received; show mvr or show mvr members privileged EXEC command to verify the MVR multicast group addresses on a receiver port before removing the port from multicast group membership. Enable the port, if necessary. By default, UNIs are disabled, and NNIs are enabled. 20-20 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
... to configure Layer 2 MVR interfaces: Step 1 Step 2 Step 3 Command configure terminal mvr interface interface-id Step 4 no mvr [mode | group ip-address | querytime | vlan] global configuration commands. The default is received; show mvr or show mvr members privileged EXEC command to verify the MVR multicast group addresses on a receiver port before removing the port from multicast group membership. Enable the port, if necessary. By default, UNIs are disabled, and NNIs are enabled. 20-20 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
Software Guide
Page 439
... source interface or VLAN before modification. Its purpose is to the user for example, a 10-Mbps port monitoring a 100-Mbps port, can monitor these restrictions: • Sources can cause a packet to be intermediate switches separating the RSPAN source and destination sessions. These features include IP standard and extended input access control lists (ACLs), ingress QoS policing, VLAN ACLs and egress QoS policing. 24-4 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Monitored Traffic SPAN...
... source interface or VLAN before modification. Its purpose is to the user for example, a 10-Mbps port monitoring a 100-Mbps port, can monitor these restrictions: • Sources can cause a packet to be intermediate switches separating the RSPAN source and destination sessions. These features include IP standard and extended input access control lists (ACLs), ingress QoS policing, VLAN ACLs and egress QoS policing. 24-4 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Monitored Traffic SPAN...
Software Guide
Page 482
... privileged EXEC mode. The snmp-server host global configuration command autogenerates a notify view for a particular agent, configure the SNMP engine ID, using the snmp-server user username global configuration command. Modifying the group's notify view affects all versions of community strings when the engine ID changes. The first snmp-server global configuration command that you enter enables all users associated with the remote option. The no snmp-server end show running-config copy running versions (Version 1, Version 2C, and Version 3) on the password and...
... privileged EXEC mode. The snmp-server host global configuration command autogenerates a notify view for a particular agent, configure the SNMP engine ID, using the snmp-server user username global configuration command. Modifying the group's notify view affects all versions of community strings when the engine ID changes. The first snmp-server global configuration command that you enter enables all users associated with the remote option. The no snmp-server end show running-config copy running versions (Version 1, Version 2C, and Version 3) on the password and...
Software Guide
Page 493
... Configuring Network Security with a port ACL applied are access-controlled through a routed port after being routed. An ACL contains an ordered list of service (QoS) classification ACLs. These sections contain this conceptual information: • Supported ACLs, page 28-2 • Handling Fragmented and Unfragmented Traffic, page 28-5 Supported ACLs The switch supports three applications of ACLs to match the ACE. This switch also supports quality of access control entries (ACEs). ACLs can either enter the VLAN through a switch port or through MAC addresses using Ethernet...
... Configuring Network Security with a port ACL applied are access-controlled through a routed port after being routed. An ACL contains an ordered list of service (QoS) classification ACLs. These sections contain this conceptual information: • Supported ACLs, page 28-2 • Handling Fragmented and Unfragmented Traffic, page 28-5 Supported ACLs The switch supports three applications of ACLs to match the ACE. This switch also supports quality of access control entries (ACEs). ACLs can either enter the VLAN through a switch port or through MAC addresses using Ethernet...
Software Guide
Page 499
... the hardware processing rate, and not all packets will be sent to be logged. 28-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Note Because routing is done in the switch. That is that you are supported in hardware and logging is , any packet that matches the ACL causes an informational logging message about packets permitted or denied by a standard IP access list. The switch supports IPv4 standard and extended access lists, numbers...
... the hardware processing rate, and not all packets will be sent to be logged. 28-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Note Because routing is done in the switch. That is that you are supported in hardware and logging is , any packet that matches the ACL causes an informational logging message about packets permitted or denied by a standard IP access list. The switch supports IPv4 standard and extended access lists, numbers...
Software Guide
Page 503
...] [log] [log-input] 255.255.255.255. [time-range time-range-name] [dscp dscp] You can use the host keyword in place of source and destination address and wildcard. Configuring IPv4 ACLs Chapter 28 Configuring Network Security with these exceptions: (Optional) Enter an operator and port to 65535) or the name of a TCP port. Enter udp for UDP. 28-12 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
...] [log] [log-input] 255.255.255.255. [time-range time-range-name] [dscp dscp] You can use the host keyword in place of source and destination address and wildcard. Configuring IPv4 ACLs Chapter 28 Configuring Network Security with these exceptions: (Optional) Enter an operator and port to 65535) or the name of a TCP port. Enter udp for UDP. 28-12 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide...
Software Guide
Page 714
... default values. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 33-7 Chapter 33 Configuring HSRP Configuring HSRP • The highest number (1 to 255) represents the highest priority (most likely to become the active router). • When setting the priority, preempt, or both ). • The priority of the device can configure a separate list of interfaces to be tracked. • The standby track interface-priority interface configuration command...
... default values. 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 33-7 Chapter 33 Configuring HSRP Configuring HSRP • The highest number (1 to 255) represents the highest priority (most likely to become the active router). • When setting the priority, preempt, or both ). • The priority of the device can configure a separate list of interfaces to be tracked. • The standby track interface-priority interface configuration command...
Software Guide
Page 779
...-4 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Follow the steps in 5 seconds ***** Send a break key to prevent autobooting. Step 1 Step 2 Step 3 Step 4 Connect a terminal or PC with terminal-emulation software to stop the automatic boot sequence for a break key character during initializion of receiving the message that begins with Password Recovery Disabled, page 36-7 You enable or disable password recovery by using the service password-recovery global configuration command. Reconnect the power cord...
...-4 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01 Follow the steps in 5 seconds ***** Send a break key to prevent autobooting. Step 1 Step 2 Step 3 Step 4 Connect a terminal or PC with terminal-emulation software to stop the automatic boot sequence for a break key character during initializion of receiving the message that begins with Password Recovery Disabled, page 36-7 You enable or disable password recovery by using the service password-recovery global configuration command. Reconnect the power cord...