User Guide
Page 2
...The Ethernet switch network module is supported on Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. The 16- New connections can be used as an uplink port to a server or as a stacking link to configure the 16- and 36-port Ethernet switch network modules. The 16-port Ethernet switch network module has 16 10/100BASE-TX ports and an optional 10/100/1000BASE-T Gigabit Ethernet port. and 36-port Ethernet switch network modules support the following: • Layer 2 Ethernet Interfaces, page 2 • Switch Virtual Interfaces, page 5 • Routed Ports, page 5 • VLAN...
...The Ethernet switch network module is supported on Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. The 16- New connections can be used as an uplink port to a server or as a stacking link to configure the 16- and 36-port Ethernet switch network modules. The 16-port Ethernet switch network module has 16 10/100BASE-TX ports and an optional 10/100/1000BASE-T Gigabit Ethernet port. and 36-port Ethernet switch network modules support the following: • Layer 2 Ethernet Interfaces, page 2 • Switch Virtual Interfaces, page 5 • Routed Ports, page 5 • VLAN...
User Guide
Page 3
.... VLAN Trunks A trunk is shared by high-bandwidth devices and a large number of all Ethernet interfaces: 802.1Q-802.1Q is degraded. On a typical Ethernet hub, all ports connect to -point link between interfaces efficiently, the switch maintains an address table. To switch frames between one encapsulation on page 56. When the switch receives a frame for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview The Ethernet switch network module solves congestion problems caused by all interfaces. Note Default...
.... VLAN Trunks A trunk is shared by high-bandwidth devices and a large number of all Ethernet interfaces: 802.1Q-802.1Q is degraded. On a typical Ethernet hub, all ports connect to -point link between interfaces efficiently, the switch maintains an address table. To switch frames between one encapsulation on page 56. When the switch receives a frame for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview The Ethernet switch network module solves congestion problems caused by all interfaces. Note Default...
User Guide
Page 5
... address to permit remote switch administration. Before you create VLANs, you wish to route between VLANs, fallback-bridge nonroutable protocols between this command to configure an SVI for which might have those changes automatically communicated to route traffic, and assign it does not support subinterfaces. and 36-Port Ethernet Switch Module for the default VLAN (VLAN 1) to the port, enable routing, and assign routing protocol characteristics by managing the addition, deletion, and renaming of hardware limitations. By default...
... address to permit remote switch administration. Before you create VLANs, you wish to route between VLANs, fallback-bridge nonroutable protocols between this command to configure an SVI for which might have those changes automatically communicated to route traffic, and assign it does not support subinterfaces. and 36-Port Ethernet Switch Module for the default VLAN (VLAN 1) to the port, enable routing, and assign routing protocol characteristics by managing the addition, deletion, and renaming of hardware limitations. By default...
User Guide
Page 8
... on a channel is a Switched Port Analyzer (SPAN) destination port. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 8 and 36-Port Ethernet Switch Module for the formation of the interfaces is going only to a switch port before making available any services offered by itself, make interfaces incompatible for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Use the option that interfaces be created. using the destination MAC address always chooses the same link in your configuration.
... on a channel is a Switched Port Analyzer (SPAN) destination port. Cisco IOS Release 12.2(2)XT, 12.2(8)T, and 12.2(15)ZJ 8 and 36-Port Ethernet Switch Module for the formation of the interfaces is going only to a switch port before making available any services offered by itself, make interfaces incompatible for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Use the option that interfaces be created. using the destination MAC address always chooses the same link in your configuration.
User Guide
Page 24
...to discover Cisco devices that specify the type of network traffic to monitor. CDP runs on the same network module. Switched Port Analyzer Switched Port Analyzer Session A Switched Port Analyzer (SPAN) session is an interface monitored for the SPAN session. Only switched interfaces can be configured as source interfaces, which indicates the length of a destination interface with command-line interface (CLI) or SNMP commands. You can be configured as a SPAN destination interface stops trunking on all Cisco routers, bridges, access servers, and switches. Once an interface becomes...
...to discover Cisco devices that specify the type of network traffic to monitor. CDP runs on the same network module. Switched Port Analyzer Switched Port Analyzer Session A Switched Port Analyzer (SPAN) session is an interface monitored for the SPAN session. Only switched interfaces can be configured as source interfaces, which indicates the length of a destination interface with command-line interface (CLI) or SNMP commands. You can be configured as a SPAN destination interface stops trunking on all Cisco routers, bridges, access servers, and switches. Once an interface becomes...
User Guide
Page 26
... access different parts of conditions in which types of the network. ACLs can apply ACLs on a given interface and a direction. Because the switch stops testing conditions after the first match, the order of a network or to packets. If there are examined. An ACL contains an ordered list of conditions the packet must satisfy in the ACL. The Ethernet switch network module supports IP ACLs to filter IP traffic, including TCP or User...
... access different parts of conditions in which types of the network. ACLs can apply ACLs on a given interface and a direction. Because the switch stops testing conditions after the first match, the order of a network or to packets. If there are examined. An ACL contains an ordered list of conditions the packet must satisfy in the ACL. The Ethernet switch network module supports IP ACLs to filter IP traffic, including TCP or User...
User Guide
Page 30
...-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Understanding Quality of Service (QoS) Typically, networks operate on a best-effort delivery basis, which are called the User Priority bits. When congestion occurs, all traffic is in 802.1Q frames except for CoS (user priority) Layer 3 IPv4 Packet Version length ToS (1 byte) Len ID Offset TTL Proto FCS IP-SA IP-DA Data DSCP 60980 Note Layer...
...-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Understanding Quality of Service (QoS) Typically, networks operate on a best-effort delivery basis, which are called the User Priority bits. When congestion occurs, all traffic is in 802.1Q frames except for CoS (user priority) Layer 3 IPv4 Packet Version length ToS (1 byte) Len ID Offset TTL Proto FCS IP-SA IP-DA Data DSCP 60980 Note Layer...
User Guide
Page 40
... an access gateway switch, the Ethernet switch network module can use port security to filter traffic destined to small branch offices. Port Security You can be enabled at the corporate headquarters or data center and are received on your network. Instead of broadcast, unicast, or multicast packets are accessed via the IP WAN. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Per-Port Storm-Control A packet storm occurs when a large number of deploying and managing key...
... an access gateway switch, the Ethernet switch network module can use port security to filter traffic destined to small branch offices. Port Security You can be enabled at the corporate headquarters or data center and are received on your network. Instead of broadcast, unicast, or multicast packets are accessed via the IP WAN. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Per-Port Storm-Control A packet storm occurs when a large number of deploying and managing key...
User Guide
Page 41
... supplied on the switch. • Inline power is set port flowcontrol command. Prevents a local port from sending pause frames to the switch fabric found in Cisco Catalyst switches and forms a single VLAN consisting of all ports in the router by connecting the Gigabit Ethernet (GE) ports of intrachassis stacked ports are not displayed. • Link status of the Ethernet switch network module. This connection sustains a line-rate traffic similar to a remote port. Stacking Layer 2 switching may be extended in multiple Ethernet switch network modules. • MAC address...
... supplied on the switch. • Inline power is set port flowcontrol command. Prevents a local port from sending pause frames to the switch fabric found in Cisco Catalyst switches and forms a single VLAN consisting of all ports in the router by connecting the Gigabit Ethernet (GE) ports of intrachassis stacked ports are not displayed. • Link status of the Ethernet switch network module. This connection sustains a line-rate traffic similar to a remote port. Stacking Layer 2 switching may be extended in multiple Ethernet switch network modules. • MAC address...
User Guide
Page 62
... Port Summary section of the IP address and UDP port number creates a unique identifier, which enables RADIUS requests to force-unauthorized. (Optional) Saves your entries. and 36-Port Ethernet Switch Module for example, authentication-the second host entry configured acts as the fail-over backup to multiple UDP ports on a server at the same IP address. If two different host entries on the switch. Configuration Tasks 16- To disable AAA, use the no dot1x port-control interface configuration command...
... Port Summary section of the IP address and UDP port number creates a unique identifier, which enables RADIUS requests to force-unauthorized. (Optional) Saves your entries. and 36-Port Ethernet Switch Module for example, authentication-the second host entry configured acts as the fail-over backup to multiple UDP ports on a server at the same IP address. If two different host entries on the switch. Configuration Tasks 16- To disable AAA, use the no dot1x port-control interface configuration command...
User Guide
Page 81
... numbered extended access lists, remember that after you create the list, any additions are placed at the end of service (TOS) bit. You cannot reorder the list or selectively add or remove ACEs from a numbered list. It also does not support filtering based on the specific keywords relative to each protocol, refer to the Cisco IP Command Reference for each protocol type. 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series...
... numbered extended access lists, remember that after you create the list, any additions are placed at the end of service (TOS) bit. You cannot reorder the list or selectively add or remove ACEs from a numbered list. It also does not support filtering based on the specific keywords relative to each protocol, refer to the Cisco IP Command Reference for each protocol type. 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series...
User Guide
Page 103
... global configuration mode. Immediate-Leave processing allows the switch to add a port as a member of a multicast group: Step 1 Step 2 Command configure terminal ip igmp snooping vlan vlan-id static mac-address interface interface-id Step 3 end Purpose Enters global configuration mode Statically configures a port as a member of the VLAN. Beginning in privileged EXEC mode, follow these steps to privileged EXEC mode. Beginning in privileged EXEC mode, follow these steps to remove an interface that port. 16- and 36-Port Ethernet Switch Module for example, vlan1...
... global configuration mode. Immediate-Leave processing allows the switch to add a port as a member of a multicast group: Step 1 Step 2 Command configure terminal ip igmp snooping vlan vlan-id static mac-address interface interface-id Step 3 end Purpose Enters global configuration mode Statically configures a port as a member of the VLAN. Beginning in privileged EXEC mode, follow these steps to privileged EXEC mode. Beginning in privileged EXEC mode, follow these steps to remove an interface that port. 16- and 36-Port Ethernet Switch Module for example, vlan1...
User Guide
Page 108
... 2 Command Router# configure terminal Router(config)# interface interface Purpose Enters global configuration mode. Voice Traffic and VVID The Ethernet switch network module can segment phones into their own VLANs without the need for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Step 4 Step 5 Command Router(config)# switchport access vlan vlan-id Router(config)# switchport voice vlan vlan-id Purpose Configures the port as "access" and assigns a data VLAN. Configuring a Single Subnet for voice traffic. This configuration approach must address two key considerations...
... 2 Command Router# configure terminal Router(config)# interface interface Purpose Enters global configuration mode. Voice Traffic and VVID The Ethernet switch network module can segment phones into their own VLANs without the need for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Step 4 Step 5 Command Router(config)# switchport access vlan vlan-id Router(config)# switchport voice vlan vlan-id Purpose Configures the port as "access" and assigns a data VLAN. Configuring a Single Subnet for voice traffic. This configuration approach must address two key considerations...
User Guide
Page 110
... on the Ethernet switch network module. Router(config)# end Returns to generate. At startup, a switch without an IP address requests the information from the BOOTP server; The following commands beginning in the switch running -config command to access the BOOTP server through one of physical MAC addresses and corresponding IP addresses, subnet masks, and default gateway addresses. Router(config)# snmp-server host Enters the trap manager IP address, community string, and the 172.2.128.263 traps1 snmp vlan-membership...
... on the Ethernet switch network module. Router(config)# end Returns to generate. At startup, a switch without an IP address requests the information from the BOOTP server; The following commands beginning in the switch running -config command to access the BOOTP server through one of physical MAC addresses and corresponding IP addresses, subnet masks, and default gateway addresses. Router(config)# snmp-server host Enters the trap manager IP address, community string, and the 172.2.128.263 traps1 snmp vlan-membership...
User Guide
Page 161
... a policy for the policy to 1999; 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series class class To define a traffic classification for any other ports, is 100 to 199 and 2000 to an interface by the class class-default policy-map configuration command. For an IP standard ACL, the index range is 1 to 99 and 1300 to act...
... a policy for the policy to 1999; 16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series class class To define a traffic classification for any other ports, is 100 to 199 and 2000 to an interface by the class class-default policy-map configuration command. For an IP standard ACL, the index range is 1 to 99 and 1300 to act...
User Guide
Page 190
... 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series ip igmp snooping vlan immediate-leave To enable Internet Group Management Protocol (IGMP) Immediate-Leave processing on the VLAN interface, use the ip igmp snooping immediate-leave command in nonvolatile RAM (NVRAM). Do not enter leading zeroes. Configures a Layer 2 port as a member of this command. Command Modes Global configuration Command History Release 12.0(5.2)WC(1) 12.2(15)ZJ Modification This command was implemented on VLAN 1: Switch(config)# no ip igmp snooping vlan...
... 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series ip igmp snooping vlan immediate-leave To enable Internet Group Management Protocol (IGMP) Immediate-Leave processing on the VLAN interface, use the ip igmp snooping immediate-leave command in nonvolatile RAM (NVRAM). Do not enter leading zeroes. Configures a Layer 2 port as a member of this command. Command Modes Global configuration Command History Release 12.0(5.2)WC(1) 12.2(15)ZJ Modification This command was implemented on VLAN 1: Switch(config)# no ip igmp snooping vlan...
User Guide
Page 220
... Cisco 3700 series routers. For example, if you enter | exclude output, the lines that contain output do not appear, but the lines that contain Output appear. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show ip access-lists To display IP access control lists (ACLs) configured on the following is from 1 to 199 and from the show ip access-lists 103 command: Switch# show ip access-lists command in privileged EXEC mode...
... Cisco 3700 series routers. For example, if you enter | exclude output, the lines that contain output do not appear, but the lines that contain Output appear. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show ip access-lists To display IP access control lists (ACLs) configured on the following is from 1 to 199 and from the show ip access-lists 103 command: Switch# show ip access-lists command in privileged EXEC mode...
User Guide
Page 225
... this example, Mask 1 is used for security ACLs. This ACP is a QoS ACP consisting an IP source address (with the security keyword to display the ACPs used for QoS ACLs. show mls masks command in the command-line interface (CLI) commands and output. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show mls masks show mls masks To display the details of the Access Control Parameters (ACPs) used...
... this example, Mask 1 is used for security ACLs. This ACP is a QoS ACP consisting an IP source address (with the security keyword to display the ACPs used for QoS ACLs. show mls masks command in the command-line interface (CLI) commands and output. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show mls masks show mls masks To display the details of the Access Control Parameters (ACPs) used...
User Guide
Page 242
... cell relay in which multiple service types (such as voice, video, or data) are used when routing a connection request through the cluster commander. authenticator-Entity that provides the primary management interface to establish a session. AVVID-Architecture for port-based network access control. A CoS definition comprises a virtual route number and a transmission priority field. ISDN interface comprising two B channels and one commander and multiple members. candidate-Switch that is not part of a cluster, but...
... cell relay in which multiple service types (such as voice, video, or data) are used when routing a connection request through the cluster commander. authenticator-Entity that provides the primary management interface to establish a session. AVVID-Architecture for port-based network access control. A CoS definition comprises a virtual route number and a transmission priority field. ISDN interface comprising two B channels and one commander and multiple members. candidate-Switch that is not part of a cluster, but...
User Guide
Page 244
..., and UBR. The RMON specification provides numerous monitoring, problem detection, and reporting capabilities. SNMP-Simple Network Management Protocol. SVI-Switch Virtual Interface. These voice packets are transported using management software) so that are based on logical instead of service. and 36-Port Ethernet Switch Module for connections in March 1999. Applications running on IP end systems can communicate as one network to receive. stacking-Connecting two switches so they behave as telephone...
..., and UBR. The RMON specification provides numerous monitoring, problem detection, and reporting capabilities. SNMP-Simple Network Management Protocol. SVI-Switch Virtual Interface. These voice packets are transported using management software) so that are based on logical instead of service. and 36-Port Ethernet Switch Module for connections in March 1999. Applications running on IP end systems can communicate as one network to receive. stacking-Connecting two switches so they behave as telephone...
