User Guide
Page 2
...Layer 2 Ethernet Switching Ethernet switch network modules support simultaneous, parallel connections between Ethernet segments last only for IP telephones. The 16- Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 2 The 36-port Ethernet switch network module has 36 10/100BASE-...; VLAN Trunk Protocol, page 5 • EtherChannel, page 7 • 802.1x Port-Based Authentication, page 8 • Spanning Tree Protocol, page 12 • Cisco Discovery Protocol, page 24 • Switched Port Analyzer, page 24 • Network Security with ACLs, page 25 • Quality of Service, page 29...
...Layer 2 Ethernet Switching Ethernet switch network modules support simultaneous, parallel connections between Ethernet segments last only for IP telephones. The 16- Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 2 The 36-port Ethernet switch network module has 36 10/100BASE-...; VLAN Trunk Protocol, page 5 • EtherChannel, page 7 • 802.1x Port-Based Authentication, page 8 • Spanning Tree Protocol, page 12 • Cisco Discovery Protocol, page 24 • Switched Port Analyzer, page 24 • Network Security with ACLs, page 25 • Quality of Service, page 29...
User Guide
Page 3
16- When packets can flow in ...Cisco 3600 Series, and Cisco 3700 Series Feature Overview The Ethernet switch network module solves congestion problems caused by high-bandwidth devices and a large number of the network is an industry-standard trunking encapsulation. When the destination station replies, the switch adds its own 10-, 100-, or 1000-Mbps segment. VLAN Trunks A trunk... the same time. On a typical Ethernet hub, all interfaces. The address table can configure a trunk on a single Ethernet interface or on the aging timer are a major bottleneck in half-duplex mode...
16- When packets can flow in ...Cisco 3600 Series, and Cisco 3700 Series Feature Overview The Ethernet switch network module solves congestion problems caused by high-bandwidth devices and a large number of the network is an industry-standard trunking encapsulation. When the destination station replies, the switch adds its own 10-, 100-, or 1000-Mbps segment. VLAN Trunks A trunk... the same time. On a typical Ethernet hub, all interfaces. The address table can configure a trunk on a single Ethernet interface or on the aging timer are a major bottleneck in half-duplex mode...
User Guide
Page 4
... configuring Layer 2 interfaces: In a network of Cisco switches connected through an 802.1Q trunk, the Cisco switch combines the spanning tree instance of the VLAN trunk with the spanning tree instance of 802.1Q switches that are not Cisco switches. Feature Overview 16- Make sure that the native VLAN for the... specific VLAN. The interface will travel on the VLAN of what the connected port mode is treated as broken and block traffic for an 802.1Q trunk is different from the...
... configuring Layer 2 interfaces: In a network of Cisco switches connected through an 802.1Q trunk, the Cisco switch combines the spanning tree instance of the VLAN trunk with the spanning tree instance of 802.1Q switches that are not Cisco switches. Feature Overview 16- Make sure that the native VLAN for the... specific VLAN. The interface will travel on the VLAN of what the connected port mode is treated as broken and block traffic for an 802.1Q trunk is different from the...
User Guide
Page 5
...you create VLANs, you enter the vlan interface configuration command for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Switch Virtual Interfaces A switch virtual interface ..., and security violations. Then assign an IP address to permit remote switch administration. 16- Configure a VLAN interface for each VLAN for the default VLAN (VLAN 1) to... and bridging configurations. Caution Entering a no switchport interface configuration command. VLAN Trunk Protocol VLAN Trunk Protocol (VTP) is a Layer 2 messaging protocol that maintains VLAN configuration ...
...you create VLANs, you enter the vlan interface configuration command for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Switch Virtual Interfaces A switch virtual interface ..., and security violations. Then assign an IP address to permit remote switch administration. 16- Configure a VLAN interface for each VLAN for the default VLAN (VLAN 1) to... and bridging configurations. Caution Entering a no switchport interface configuration command. VLAN Trunk Protocol VLAN Trunk Protocol (VTP) is a Layer 2 messaging protocol that maintains VLAN configuration ...
User Guide
Page 6
... VTP domain name • VTP configuration revision number • VLAN configuration, including maximum transmission unit (MTU) size for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series VTP Domain A VTP domain (also called a VLAN management domain) is specified or learned. The following global ... parameters (such as necessary. and 36-Port Ethernet Switch Module for each trunk interface to be in VTP. You cannot create or modify VLANs on received advertisements. Feature Overview 16- However, in VTP version 2, transparent switches do not participate in one ...
... VTP domain name • VTP configuration revision number • VLAN configuration, including maximum transmission unit (MTU) size for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series VTP Domain A VTP domain (also called a VLAN management domain) is specified or learned. The following global ... parameters (such as necessary. and 36-Port Ethernet Switch Module for each trunk interface to be in VTP. You cannot create or modify VLANs on received advertisements. Feature Overview 16- However, in VTP version 2, transparent switches do not participate in one ...
User Guide
Page 7
...balancing can operate in the same VTP domain as VLAN names and values) are version 2-capable. 16- A Ethernet switch network module system supports a maximum of the binary pattern formed from NVRAM. All... on a switch, all version 2-capable switches in the domain enable VTP version 2 • The Cisco IOS end and Ctrl-Z commands are not performed when new information is obtained from a VTP message, or... EtherChannels configured on a received VTP message is correct, its other trunks, even for the domain name and version, and forwards a message only if the version and domain name...
...balancing can operate in the same VTP domain as VLAN names and values) are version 2-capable. 16- A Ethernet switch network module system supports a maximum of the binary pattern formed from NVRAM. All... on a switch, all version 2-capable switches in the domain enable VTP version 2 • The Cisco IOS end and Ctrl-Z commands are not performed when new information is obtained from a VTP message, or... EtherChannels configured on a received VTP message is correct, its other trunks, even for the domain name and version, and forwards a message only if the version and domain name...
User Guide
Page 8
...the client is not the same, the interfaces do not form an EtherChannel. Feature Overview 16- For Layer 2 EtherChannels: • Assign all interfaces in an EtherChannel. and 36-Port...the port to one of the interfaces is successful, normal traffic can form an EtherChannel as trunks. For example, if the traffic on all modules support EtherChannel (maximum of eight interfaces)... to a switch port before making available any services offered by itself, make interfaces incompatible for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Use the option that you shut down...
...the client is not the same, the interfaces do not form an EtherChannel. Feature Overview 16- For Layer 2 EtherChannels: • Assign all interfaces in an EtherChannel. and 36-Port...the port to one of the interfaces is successful, normal traffic can form an EtherChannel as trunks. For example, if the traffic on all modules support EtherChannel (maximum of eight interfaces)... to a switch port before making available any services offered by itself, make interfaces incompatible for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Use the option that you shut down...
User Guide
Page 21
... want spanning tree to put into the forwarding state. If all VLANs Bridge priority 32768 Spanning tree port priority (configurable on interfaces configured as a trunk port. Spanning Tree Port Cost The spanning tree port path cost default value is 128). Fast Ethernet: 19 used on a per -VLAN Fast ...Ethernet: 10 basis; You can view the default Spanning Tree configuration values. 16- The possible priority range is 0 to select first and higher Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 21 For example, if the MAC address range is 00-e0...
... want spanning tree to put into the forwarding state. If all VLANs Bridge priority 32768 Spanning tree port priority (configurable on interfaces configured as a trunk port. Spanning Tree Port Cost The spanning tree port path cost default value is 128). Fast Ethernet: 19 used on a per -VLAN Fast ...Ethernet: 10 basis; You can view the default Spanning Tree configuration values. 16- The possible priority range is 0 to select first and higher Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 21 For example, if the MAC address range is 00-e0...
User Guide
Page 22
...the spanning-tree max-age global configuration command. Under STP rules, the switch ignores inferior BPDUs for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series cost values to interfaces that connects directly to expire. Switch A, the root switch, ...Failure Switch A (Root) Switch B L1 L2 L3 Blocked port Switch C 44963 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 22 Feature Overview 16- Figure 10 shows an example topology with the lowest interface number in the blocking state... has an alternate path to the root switch. If one switch as a trunk port.
...the spanning-tree max-age global configuration command. Under STP rules, the switch ignores inferior BPDUs for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series cost values to interfaces that connects directly to expire. Switch A, the root switch, ...Failure Switch A (Root) Switch B L1 L2 L3 Blocked port Switch C 44963 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 22 Feature Overview 16- Figure 10 shows an example topology with the lowest interface number in the blocking state... has an alternate path to the root switch. If one switch as a trunk port.
User Guide
Page 24
... address of SPAN source interfaces or VLANs. You cannot configure a SPAN destination interface to which it . Specifying a trunk interface as a source interface. With CDP, network management applications can enable or disable SPAN sessions with separate or overlapping... can configure source interfaces in particular, neighbors running lower-layer, transparent protocols. Feature Overview 16- You configure SPAN sessions using parameters that required for all Cisco routers, bridges, access servers, and switches. You can configure one destination interface. Source Interface...
... address of SPAN source interfaces or VLANs. You cannot configure a SPAN destination interface to which it . Specifying a trunk interface as a source interface. With CDP, network management applications can enable or disable SPAN sessions with separate or overlapping... can configure source interfaces in particular, neighbors running lower-layer, transparent protocols. Feature Overview 16- You configure SPAN sessions using parameters that required for all Cisco routers, bridges, access servers, and switches. You can configure one destination interface. Source Interface...
User Guide
Page 25
16- however, the destination interface never encapsulates. SPAN Traffic Network traffic, including multicast, can be the same (unless a Layer-3 rewrite had occurred, in commands and tables ... the destination interface. they cannot be run at the destination interface. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Trunk interfaces can be implemented using SPAN. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 25 Multicast packet monitoring is not supported •...
16- however, the destination interface never encapsulates. SPAN Traffic Network traffic, including multicast, can be the same (unless a Layer-3 rewrite had occurred, in commands and tables ... the destination interface. they cannot be run at the destination interface. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Trunk interfaces can be implemented using SPAN. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 25 Multicast packet monitoring is not supported •...
User Guide
Page 30
... more effective. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 30 and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Understanding...cannot carry Layer 2 CoS values. On interfaces configured as Layer 2 802.1Q trunks, all traffic has an equal chance of service (ToS) field to 7 for CoS (user priority) Layer 3 IPv4 Packet Version...3 IP packets can also be carried in a timely manner. Feature Overview 16- These special bits in the Layer 2 frame or a Layer 3 packet are 0, 8, 10, 16, 18, 24, 26, 32, 34, 40, 46, 48, and ...
... more effective. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 30 and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Understanding...cannot carry Layer 2 CoS values. On interfaces configured as Layer 2 802.1Q trunks, all traffic has an equal chance of service (ToS) field to 7 for CoS (user priority) Layer 3 IPv4 Packet Version...3 IP packets can also be carried in a timely manner. Feature Overview 16- These special bits in the Layer 2 frame or a Layer 3 packet are 0, 8, 10, 16, 18, 24, 26, 32, 34, 40, 46, 48, and ...
User Guide
Page 35
...DSCP value. The LAN switch snoops on Ethernet switch network modules. 16- The number of VLANs is determined by multiplying the number of ...multicast devices. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview • On an interface configured... product of the number of multicast groups and the number of service. IGMP Snooping Understanding IGMP Snooping Internet Group Management Protocol (IGMP)...CoS value to the DSCP value • DSCP value to the Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 35 This...
...DSCP value. The LAN switch snoops on Ethernet switch network modules. 16- The number of VLANs is determined by multiplying the number of ...multicast devices. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview • On an interface configured... product of the number of multicast groups and the number of service. IGMP Snooping Understanding IGMP Snooping Internet Group Management Protocol (IGMP)...CoS value to the DSCP value • DSCP value to the Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 35 This...
User Guide
Page 41
...frames, but autonegotiates flow control. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Default Switch Configuration By default, the Ethernet switch network...guidelines for a period of intrachassis stacked ports are static access ports, not 802.1Q trunk ports. • Default voice VLAN is not configured on the switch. • Inline power is ...set to receive on the 10/100 ports. 16- Stacking Layer 2 switching may be extended in access VLAN 1. • All switch ports are...
...frames, but autonegotiates flow control. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Default Switch Configuration By default, the Ethernet switch network...guidelines for a period of intrachassis stacked ports are static access ports, not 802.1Q trunk ports. • Default voice VLAN is not configured on the switch. • Inline power is ...set to receive on the 10/100 ports. 16- Stacking Layer 2 switching may be extended in access VLAN 1. • All switch ports are...
User Guide
Page 43
...supported in this release: • CGMP client, CGMP fast-leave • Dynamic ports • Dynamic access ports • Secure ports • Dynamic trunk protocol • Dynamic VLANs • GARP, GMRP, and GVRP • ISL tagging (The chip does not support ISL.) • Layer 3 ...each interface. • Interface ranges can be saved as macros. 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Figure 19 Fallback Bridging Network Example Cisco router with Ethernet switch network module Routed port 172.20.130.1...
...supported in this release: • CGMP client, CGMP fast-leave • Dynamic ports • Dynamic access ports • Secure ports • Dynamic trunk protocol • Dynamic VLANs • GARP, GMRP, and GVRP • ISL tagging (The chip does not support ISL.) • Layer 3 ...each interface. • Interface ranges can be saved as macros. 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Figure 19 Fallback Bridging Network Example Cisco router with Ethernet switch network module Routed port 172.20.130.1...
User Guide
Page 46
...VLANs, page 52 • Configuring VLAN Trunking Protocol, page 54 • Configuring Layer ...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series • IPMROUTE-MIB • CISCO-MEMORY-POOL-MIB • ETHER-LIKE-MIB (RFC 1643) • CISCO-ENTITY-FRU-CONTROL-MIB.my • CISCO-RTTMON-MIB • CISCO-PROCESS-MIB • CISCO...Cisco IOS Release 12.2 or later release • Basic configuration of Service (QoS), page 86 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 46 Port Security, page 72 • Configuring Cisco..., refer to the Cisco IOS IP Configuration Guide...
...VLANs, page 52 • Configuring VLAN Trunking Protocol, page 54 • Configuring Layer ...Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series • IPMROUTE-MIB • CISCO-MEMORY-POOL-MIB • ETHER-LIKE-MIB (RFC 1643) • CISCO-ENTITY-FRU-CONTROL-MIB.my • CISCO-RTTMON-MIB • CISCO-PROCESS-MIB • CISCO...Cisco IOS Release 12.2 or later release • Basic configuration of Service (QoS), page 86 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 46 Port Security, page 72 • Configuring Cisco..., refer to the Cisco IOS IP Configuration Guide...
User Guide
Page 47
16- Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 47 interface}[, {{ethernet | fastethernet | macro macro-name} slot/interface - For example, the command interface range fastethernet 1 ... Configuring a Range of Interfaces (required) • Defining a Range Macro (optional) • Configuring Layer 2 Optional Interface Features (optional) • Configuring an Ethernet Interface as a Layer 2 Trunk (optional) • Configuring an Ethernet Interface as a Layer 2 Access (optional) Configuring a Range of Interfaces To configure a range of interfaces to enter spaces before the dash...
16- Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 47 interface}[, {{ethernet | fastethernet | macro macro-name} slot/interface - For example, the command interface range fastethernet 1 ... Configuring a Range of Interfaces (required) • Defining a Range Macro (optional) • Configuring Layer 2 Optional Interface Features (optional) • Configuring an Ethernet Interface as a Layer 2 Trunk (optional) • Configuring an Ethernet Interface as a Layer 2 Access (optional) Configuring a Range of Interfaces To configure a range of interfaces to enter spaces before the dash...
User Guide
Page 48
... and 36-Port Ethernet Switch Module for an Interface, page 50 • Configuring an Ethernet Interface as a Layer 2 Trunk, page 50 • Configuring an Ethernet Interface as a Layer 2 Access, page 52 Interface Speed and Duplex Configuration Guidelines...Speed, page 49 • Configuring the Interface Duplex Mode, page 49 • Configuring a Description for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Defining a Range Macro To define an interface range macro, use the auto setting on both...)# define interface-range macro-name {vlan vlan-id - Configuration Tasks 16-
... and 36-Port Ethernet Switch Module for an Interface, page 50 • Configuring an Ethernet Interface as a Layer 2 Trunk, page 50 • Configuring an Ethernet Interface as a Layer 2 Access, page 52 Interface Speed and Duplex Configuration Guidelines...Speed, page 49 • Configuring the Interface Duplex Mode, page 49 • Configuring a Description for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Defining a Range Macro To define an interface range macro, use the auto setting on both...)# define interface-range macro-name {vlan vlan-id - Configuration Tasks 16-
User Guide
Page 50
... a trunk. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 50 Note Ports do not support Dynamic Trunk Protocol (DTP). Ensure that will not send DTP. To add a description for an interface, use the following commands: show configuration, show running-config, and show interfaces. All VLANs are allowed by default. Configuration Tasks 16...
... a trunk. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 50 Note Ports do not support Dynamic Trunk Protocol (DTP). Ensure that will not send DTP. To add a description for an interface, use the following commands: show configuration, show running-config, and show interfaces. All VLANs are allowed by default. Configuration Tasks 16...
User Guide
Page 51
... 5/8 trunk Port Fa1/15 Port Fa1/15 Port Fa1/15 Port Fa1/15 Mode Encapsulation Status Native vlan off 802.1q not-trunking 1 Vlans allowed on trunk 1 Vlans allowed and active in management domain 1 Vlans in spanning tree forwarding state and not pruned 1 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 51 16...
... 5/8 trunk Port Fa1/15 Port Fa1/15 Port Fa1/15 Port Fa1/15 Mode Encapsulation Status Native vlan off 802.1q not-trunking 1 Vlans allowed on trunk 1 Vlans allowed and active in management domain 1 Vlans in spanning tree forwarding state and not pruned 1 Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 51 16...