Software Guide
Page 1
Catalyst 2960 Switch Software Configuration Guide Cisco IOS Release 12.2(40)SE Revised September 2007 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-8603-04
Catalyst 2960 Switch Software Configuration Guide Cisco IOS Release 12.2(40)SE Revised September 2007 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-8603-04
Software Guide
Page 2
... FOR A COPY. All other countries. Catalyst 2960 Switch Software Configuration Guide © 2006-2007 Cisco Systems, Inc. and Access Registrar, Aironet, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow...
... FOR A COPY. All other countries. Catalyst 2960 Switch Software Configuration Guide © 2006-2007 Cisco Systems, Inc. and Access Registrar, Aironet, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow...
Software Guide
Page 3
... 1-6 VLAN Features 1-7 Security Features 1-7 QoS and CoS Features 1-9 Monitoring Features 1-10 Default Settings After Initial Switch Configuration 1-10 Network Configuration Examples 1-12 Design Concepts for Using the Switch 1-12 Small to Medium-Sized Network Using Catalyst 2960 Switches 1-16 Long-Distance, High-Bandwidth Transport Configuration 1-17 Where to Go Next 1-18 Using the...
... 1-6 VLAN Features 1-7 Security Features 1-7 QoS and CoS Features 1-9 Monitoring Features 1-10 Default Settings After Initial Switch Configuration 1-10 Network Configuration Examples 1-12 Design Concepts for Using the Switch 1-12 Small to Medium-Sized Network Using Catalyst 2960 Switches 1-16 Long-Distance, High-Bandwidth Transport Configuration 1-17 Where to Go Next 1-18 Using the...
Software Guide
Page 4
...2-10 Accessing the CLI 2-10 Accessing the CLI through a Console Connection or through Telnet 2-10 Assigning the Switch IP Address and Default Gateway 3-1 Understanding the Boot Process 3-1 Assigning Switch Information 3-2 Default Switch Information 3-3 Understanding DHCP-Based Autoconfiguration 3-3 DHCP Client Request Process 3-4 Configuring DHCP-Based Autoconfiguration 3-5 DHCP Server Configuration...3-14 Scheduling a Reload of the Software Image 3-16 Configuring a Scheduled Reload 3-16 Displaying Scheduled Reload Information 3-17 Catalyst 2960 Switch Software Configuration Guide iv OL-8603-04
...2-10 Accessing the CLI 2-10 Accessing the CLI through a Console Connection or through Telnet 2-10 Assigning the Switch IP Address and Default Gateway 3-1 Understanding the Boot Process 3-1 Assigning Switch Information 3-2 Default Switch Information 3-3 Understanding DHCP-Based Autoconfiguration 3-3 DHCP Client Request Process 3-4 Configuring DHCP-Based Autoconfiguration 3-5 DHCP Server Configuration...3-14 Scheduling a Reload of the Software Image 3-16 Configuring a Scheduled Reload 3-16 Displaying Scheduled Reload Information 3-17 Catalyst 2960 Switch Software Configuration Guide iv OL-8603-04
Software Guide
Page 5
...Cisco IOS CNS Agent 4-9 Enabling an Initial Configuration 4-9 Enabling a Partial Configuration 4-11 Displaying CNS Configuration 4-12 Clustering Switches 5-1 Understanding Switch Clusters 5-1 Cluster Command Switch Characteristics 5-3 Standby Cluster Command Switch Characteristics 5-3 Candidate Switch and Cluster Member Switch Characteristics 5-3 Planning a Switch...Different VLANs 5-6 Discovery Through Different Management VLANs 5-7 Discovery of Newly Installed Switches 5-8 HSRP and Standby Cluster Command Switches 5-9 Virtual IP Addresses 5-10 Other Considerations for Cluster Standby Groups 5-...
...Cisco IOS CNS Agent 4-9 Enabling an Initial Configuration 4-9 Enabling a Partial Configuration 4-11 Displaying CNS Configuration 4-12 Clustering Switches 5-1 Understanding Switch Clusters 5-1 Cluster Command Switch Characteristics 5-3 Standby Cluster Command Switch Characteristics 5-3 Candidate Switch and Cluster Member Switch Characteristics 5-3 Planning a Switch...Different VLANs 5-6 Discovery Through Different Management VLANs 5-7 Discovery of Newly Installed Switches 5-8 HSRP and Standby Cluster Command Switches 5-9 Virtual IP Addresses 5-10 Other Considerations for Cluster Standby Groups 5-...
Software Guide
Page 6
... SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 Using SNMP to Manage Switch Clusters 5-15 6 C H A P T E R Administering the Switch 6-1 Managing the System Time and Date 6-1 Understanding the System Clock 6-1 Understanding Network Time Protocol 6-2 Configuring ... a Message-of-the-Day Login Banner 6-18 Configuring a Login Banner 6-19 Managing the MAC Address Table 6-19 Building the Address Table 6-20 Catalyst 2960 Switch Software Configuration Guide vi OL-8603-04
... SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 Using SNMP to Manage Switch Clusters 5-15 6 C H A P T E R Administering the Switch 6-1 Managing the System Time and Date 6-1 Understanding the System Clock 6-1 Understanding Network Time Protocol 6-2 Configuring ... a Message-of-the-Day Login Banner 6-18 Configuring a Login Banner 6-19 Managing the MAC Address Table 6-19 Building the Address Table 6-20 Catalyst 2960 Switch Software Configuration Guide vi OL-8603-04
Software Guide
Page 7
...7-2 SDM Template Configuration Guidelines 7-2 Setting the SDM Template 7-2 .Displaying the SDM Templates 7-3 Configuring Switch-Based Authentication 8-1 Preventing Unauthorized Access to Your Switch 8-1 Protecting Access to Privileged EXEC Commands 8-2 Default Password and Privilege Level Configuration 8-2 Setting or ... Level for a Command 8-8 Changing the Default Privilege Level for Lines 8-9 Logging into and Exiting a Privilege Level 8-9 Controlling Switch Access with TACACS+ 8-10 Understanding TACACS+ 8-10 TACACS+ Operation 8-12 Configuring TACACS+ 8-12 Default TACACS+ Configuration 8-13 ...
...7-2 SDM Template Configuration Guidelines 7-2 Setting the SDM Template 7-2 .Displaying the SDM Templates 7-3 Configuring Switch-Based Authentication 8-1 Preventing Unauthorized Access to Your Switch 8-1 Protecting Access to Privileged EXEC Commands 8-2 Default Password and Privilege Level Configuration 8-2 Setting or ... Level for a Command 8-8 Changing the Default Privilege Level for Lines 8-9 Logging into and Exiting a Privilege Level 8-9 Controlling Switch Access with TACACS+ 8-10 Understanding TACACS+ 8-10 TACACS+ Operation 8-12 Configuring TACACS+ 8-12 Default TACACS+ Configuration 8-13 ...
Software Guide
Page 8
...Network Services 8-27 Starting RADIUS Accounting 8-28 Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the...33 Limitations 8-34 Configuring SSH 8-34 Configuration Guidelines 8-34 Setting Up the Switch to Run SSH 8-35 Configuring the SSH Server 8-36 Displaying the SSH Configuration and Status 8-37 Configuring the Switch for Secure Socket Layer HTTP 8-37 Understanding Secure HTTP Servers and Clients ...
...Network Services 8-27 Starting RADIUS Accounting 8-28 Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the...33 Limitations 8-34 Configuring SSH 8-34 Configuration Guidelines 8-34 Setting Up the Switch to Run SSH 8-35 Configuring the SSH Server 8-36 Displaying the SSH Configuration and Status 8-37 Configuring the Switch for Secure Socket Layer HTTP 8-37 Understanding Secure HTTP Servers and Clients ...
Software Guide
Page 9
... 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected... to a Port 9-26 Changing the Quiet Period 9-26 Changing the Switch-to-Client Retransmission Time 9-27 Setting the Switch-to-Client Frame-Retransmission Number 9-28 Setting the Re-Authentication Number 9-28 Configuring IEEE 802.1x Accounting ...
... 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected... to a Port 9-26 Changing the Quiet Period 9-26 Changing the Switch-to-Client Retransmission Time 9-27 Setting the Switch-to-Client Frame-Retransmission Number 9-28 Setting the Re-Authentication Number 9-28 Configuring IEEE 802.1x Accounting ...
Software Guide
Page 10
...Default Values 9-41 Displaying IEEE 802.1x Statistics and Status 9-41 10 C H A P T E R Configuring Interface Characteristics 10-1 Understanding Interface Types 10-1 Port-Based VLANs 10-2 Switch Ports 10-2 Access Ports 10-2 Trunk Ports 10-3 EtherChannel Port Groups 10-3 Dual-Purpose Uplink Ports 10-4 Connecting Interfaces 10-4 Using Interface Configuration Mode 10... and Counters 10-19 Shutting Down and Restarting the Interface 10-19 11 C H A P T E R Configuring Smartports Macros 11-1 Understanding Smartports Macros 11-1 Catalyst 2960 Switch Software Configuration Guide x OL-8603-04
...Default Values 9-41 Displaying IEEE 802.1x Statistics and Status 9-41 10 C H A P T E R Configuring Interface Characteristics 10-1 Understanding Interface Types 10-1 Port-Based VLANs 10-2 Switch Ports 10-2 Access Ports 10-2 Trunk Ports 10-3 EtherChannel Port Groups 10-3 Dual-Purpose Uplink Ports 10-4 Connecting Interfaces 10-4 Using Interface Configuration Mode 10... and Counters 10-19 Shutting Down and Restarting the Interface 10-19 11 C H A P T E R Configuring Smartports Macros 11-1 Understanding Smartports Macros 11-1 Catalyst 2960 Switch Software Configuration Guide x OL-8603-04
Software Guide
Page 11
...-8603-04 Configuring Smartports Macros 11-2 Default Smartports Macro Configuration 11-2 Smartports Macro Configuration Guidelines 11-2 Creating Smartports Macros 11-4 Applying Smartports Macros 11-5 Applying Cisco-Default Smartports Macros 11-6 Displaying Smartports Macros 11-8 Configuring VLANs 12-1 Understanding VLANs 12-1 Supported VLANs 12-2 VLAN Port Membership Modes 12-3 Configuring Normal-Range... the Pruning-Eligible List 12-19 Configuring the Native VLAN for Untagged Traffic 12-19 Configuring Trunk Ports for Load Sharing 12-20 Catalyst 2960 Switch Software Configuration Guide xi
...-8603-04 Configuring Smartports Macros 11-2 Default Smartports Macro Configuration 11-2 Smartports Macro Configuration Guidelines 11-2 Creating Smartports Macros 11-4 Applying Smartports Macros 11-5 Applying Cisco-Default Smartports Macros 11-6 Displaying Smartports Macros 11-8 Configuring VLANs 12-1 Understanding VLANs 12-1 Supported VLANs 12-2 VLAN Port Membership Modes 12-3 Configuring Normal-Range... the Pruning-Eligible List 12-19 Configuring the Native VLAN for Untagged Traffic 12-19 Configuring Trunk Ports for Load Sharing 12-20 Catalyst 2960 Switch Software Configuration Guide xi
Software Guide
Page 12
... 13-9 Configuring a VTP Client 13-11 Disabling VTP (VTP Transparent Mode) 13-12 Enabling VTP Version 2 13-13 Enabling VTP Pruning 13-14 Catalyst 2960 Switch Software Configuration Guide xii OL-8603-04
... 13-9 Configuring a VTP Client 13-11 Disabling VTP (VTP Transparent Mode) 13-12 Enabling VTP Version 2 13-13 Enabling VTP Pruning 13-14 Catalyst 2960 Switch Software Configuration Guide xii OL-8603-04
Software Guide
Page 13
Contents 14 C H A P T E R 15 C H A P T E R OL-8603-04 Adding a VTP Client Switch to a VTP Domain 13-14 Monitoring VTP 13-16 Configuring Voice VLAN 14-1 Understanding Voice VLAN 14-1 Cisco IP Phone Voice Traffic 14-2 Cisco IP Phone Data Traffic 14-2 Configuring Voice VLAN 14-3 Default Voice VLAN Configuration 14-3 Voice VLAN Configuration Guidelines 14-3 Configuring...
Contents 14 C H A P T E R 15 C H A P T E R OL-8603-04 Adding a VTP Client Switch to a VTP Domain 13-14 Monitoring VTP 13-16 Configuring Voice VLAN 14-1 Understanding Voice VLAN 14-1 Cisco IP Phone Voice Traffic 14-2 Cisco IP Phone Data Traffic 14-2 Configuring Voice VLAN 14-3 Default Voice VLAN Configuration 14-3 Voice VLAN Configuration Guidelines 14-3 Configuring...
Software Guide
Page 14
...-16 Configuring Port Priority 15-16 Configuring Path Cost 15-18 Configuring the Switch Priority of a VLAN 15-19 Configuring Spanning-Tree Timers 15-20 Configuring the Hello Time 15-20 Configuring the Forwarding-Delay Time for a VLAN 15-... 802.1s Terminology 16-5 Hop Count 16-5 Boundary Ports 16-6 IEEE 802.1s Implementation 16-6 Port Role Naming Change 16-7 Interoperation Between Legacy and Standard Switches 16-7 Detecting Unidirectional Link Failure 16-8 Interoperability with IEEE 802.1D STP 16-8 Understanding RSTP 16-8 Port Roles and the Active Topology 16-9 Rapid Convergence...
...-16 Configuring Port Priority 15-16 Configuring Path Cost 15-18 Configuring the Switch Priority of a VLAN 15-19 Configuring Spanning-Tree Timers 15-20 Configuring the Hello Time 15-20 Configuring the Forwarding-Delay Time for a VLAN 15-... 802.1s Terminology 16-5 Hop Count 16-5 Boundary Ports 16-6 IEEE 802.1s Implementation 16-6 Port Role Naming Change 16-7 Interoperation Between Legacy and Standard Switches 16-7 Detecting Unidirectional Link Failure 16-8 Interoperability with IEEE 802.1D STP 16-8 Understanding RSTP 16-8 Port Roles and the Active Topology 16-9 Rapid Convergence...
Software Guide
Page 15
...-18 Configuring Port Priority 16-19 Configuring Path Cost 16-20 Configuring the Switch Priority 16-21 Configuring the Hello Time 16-22 Configuring the Forwarding-Delay Time 16-23 Configuring the Maximum-Aging Time 16-23 Configuring the ... Guard 17-15 Displaying the Spanning-Tree Status 17-16 Configuring IGMP Snooping and MVR 18-1 Understanding IGMP Snooping 18-1 IGMP Versions 18-2 Catalyst 2960 Switch Software Configuration Guide xv
...-18 Configuring Port Priority 16-19 Configuring Path Cost 16-20 Configuring the Switch Priority 16-21 Configuring the Hello Time 16-22 Configuring the Forwarding-Delay Time 16-23 Configuring the Maximum-Aging Time 16-23 Configuring the ... Guard 17-15 Displaying the Spanning-Tree Status 17-16 Configuring IGMP Snooping and MVR 18-1 Understanding IGMP Snooping 18-1 IGMP Versions 18-2 Catalyst 2960 Switch Software Configuration Guide xv
Software Guide
Page 16
... Displaying IGMP Filtering and Throttling Configuration 18-28 19 C H A P T E R Configuring Port-Based Traffic Control 19-1 Configuring Storm Control 19-1 Understanding Storm Control 19-1 Catalyst 2960 Switch Software Configuration Guide xvi OL-8603-04
... Displaying IGMP Filtering and Throttling Configuration 18-28 19 C H A P T E R Configuring Port-Based Traffic Control 19-1 Configuring Storm Control 19-1 Understanding Storm Control 19-1 Catalyst 2960 Switch Software Configuration Guide xvi OL-8603-04
Software Guide
Page 17
...-3 Configuring LLDP Characteristics 21-4 Disabling and Enabling LLDP Globally 21-5 Disabling and Enabling LLDP on an Interface 21-5 Configuring LLDP-MED TLVs 21-6 Catalyst 2960 Switch Software Configuration Guide xvii
...-3 Configuring LLDP Characteristics 21-4 Disabling and Enabling LLDP Globally 21-5 Disabling and Enabling LLDP on an Interface 21-5 Configuring LLDP-MED TLVs 21-6 Catalyst 2960 Switch Software Configuration Guide xvii
Software Guide
Page 18
... Configuring a VLAN as an RSPAN VLAN 23-16 Creating an RSPAN Source Session 23-17 Creating an RSPAN Destination Session 23-19 xviii Catalyst 2960 Switch Software Configuration Guide OL-8603-04
... Configuring a VLAN as an RSPAN VLAN 23-16 Creating an RSPAN Source Session 23-17 Creating an RSPAN Destination Session 23-19 xviii Catalyst 2960 Switch Software Configuration Guide OL-8603-04
Software Guide
Page 19
... 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
... 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
Software Guide
Page 20
... Limiting TFTP Servers Used Through SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time Computation...-12 SRR Shaping and Sharing 28-13 Queueing and Scheduling on Ingress Queues 28-14 Queueing and Scheduling on Egress Queues 28-16 Catalyst 2960 Switch Software Configuration Guide xx OL-8603-04
... Limiting TFTP Servers Used Through SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time Computation...-12 SRR Shaping and Sharing 28-13 Queueing and Scheduling on Ingress Queues 28-14 Queueing and Scheduling on Egress Queues 28-16 Catalyst 2960 Switch Software Configuration Guide xx OL-8603-04
