Software Configuration Guide
Page 10
... of Interfaces 9-6 Configuring and Using Interface-Range Macros 9-8 Configuring Switch Interfaces 9-9 Default Ethernet Interface Configuration 9-10 SFP Configuration 9-10 Configuring Interface Speed and Duplex Mode 9-11 Configuration Guidelines 9-12 Setting the Interface Speed and Duplex Parameters 9-13 Configuring Media Types for Gigabit Interfaces 9-14 Configuring IEEE 802.3X Flow Control on Gigabit Ethernet Ports 9-14 Adding a Description for an Interface 9-16 Monitoring and Maintaining the Interfaces 9-16 Monitoring Interface and Controller Status 9-16 Clearing and Resetting Interfaces and...
... of Interfaces 9-6 Configuring and Using Interface-Range Macros 9-8 Configuring Switch Interfaces 9-9 Default Ethernet Interface Configuration 9-10 SFP Configuration 9-10 Configuring Interface Speed and Duplex Mode 9-11 Configuration Guidelines 9-12 Setting the Interface Speed and Duplex Parameters 9-13 Configuring Media Types for Gigabit Interfaces 9-14 Configuring IEEE 802.3X Flow Control on Gigabit Ethernet Ports 9-14 Adding a Description for an Interface 9-16 Monitoring and Maintaining the Interfaces 9-16 Monitoring Interface and Controller Status 9-16 Clearing and Resetting Interfaces and...
Software Configuration Guide
Page 25
... guide does not provide the command-line interface (CLI) procedures. The EI provides a richer set of features, including access control lists (ACLs), enhanced quality of switches that have assigned switch IP information and passwords by an a variation of Ethernet and local area networking. The non-LRE switch is supported by the switch software. The 2950 LRE switch is supported by using the setup program described in configuration and accessing CMS, refer to the release notes. Use this guide...
... guide does not provide the command-line interface (CLI) procedures. The EI provides a richer set of features, including access control lists (ACLs), enhanced quality of switches that have assigned switch IP information and passwords by an a variation of Ethernet and local area networking. The non-LRE switch is supported by the switch software. The 2950 LRE switch is supported by using the setup program described in configuration and accessing CMS, refer to the release notes. Use this guide...
Software Configuration Guide
Page 35
... Clustering Switches" section on Gigabit Ethernet ports operating in earlier software releases for a list of bandwidth between switches, routers, and servers • Support for the CMS, cluster hardware, software, and browser requirements. The redundant command switches used with IP address information and a configuration file that it receives during startup with CMS for - Refer to ensure retrieval of duplex mode on the 10/100 ports for optimizing bandwidth • IEEE 802.3X flow control on...
... Clustering Switches" section on Gigabit Ethernet ports operating in earlier software releases for a list of bandwidth between switches, routers, and servers • Support for the CMS, cluster hardware, software, and browser requirements. The redundant command switches used with IP address information and a configuration file that it receives during startup with CMS for - Refer to ensure retrieval of duplex mode on the 10/100 ports for optimizing bandwidth • IEEE 802.3X flow control on...
Software Configuration Guide
Page 39
... network. You can access the CLI either by using SNMP management applications such as if they were a single entity. You can configure and monitor the switch and switch cluster members from anywhere in your management station directly to the switch console port or by generating switch-specific configuration changes, sending them . You can automate initial configurations and configuration updates by using SNMP, see Chapter 3, "Getting Started with CMS." • CLI-The switch IOS CLI software is a graphical user interface...
... network. You can access the CLI either by using SNMP management applications such as if they were a single entity. You can configure and monitor the switch and switch cluster members from anywhere in your management station directly to the switch console port or by generating switch-specific configuration changes, sending them . You can automate initial configurations and configuration updates by using SNMP, see Chapter 3, "Getting Started with CMS." • CLI-The switch IOS CLI software is a graphical user interface...
Software Configuration Guide
Page 40
... - Group software upgrades • View a topology of their geographic proximity and interconnection media, including Ethernet, Fast Ethernet, Fast EtherChannel, Cisco GigaStack Gigabit Interface Converter (GBIC), Gigabit Ethernet, and Gigabit EtherChannel connections. • Accomplish multiple configuration tasks from a single CMS window without needing to remember CLI commands to accomplish specific tasks. • Apply actions from the LEDs on the physical LEDs. • Use an interactive mode that takes you can: • Manage and monitor interconnected Catalyst switches (refer to...
... - Group software upgrades • View a topology of their geographic proximity and interconnection media, including Ethernet, Fast Ethernet, Fast EtherChannel, Cisco GigaStack Gigabit Interface Converter (GBIC), Gigabit Ethernet, and Gigabit EtherChannel connections. • Accomplish multiple configuration tasks from a single CMS window without needing to remember CLI commands to accomplish specific tasks. • Apply actions from the LEDs on the physical LEDs. • Use an interactive mode that takes you can: • Manage and monitor interconnected Catalyst switches (refer to...
Software Configuration Guide
Page 41
... of IP connectivity over existing infrastructure (existing telephone lines). or low-priority, based on the cross-stack Gigabit uplinks. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 1-9 Table 1-3 Providing Network Services Network Demands Suggested Design Methods High demand for IP telephony • Use QoS to prioritize applications such as either high- An evolving demand for multimedia support • Use IGMP and MVR to prioritize voice and data traffic as...
... of IP connectivity over existing infrastructure (existing telephone lines). or low-priority, based on the cross-stack Gigabit uplinks. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 1-9 Table 1-3 Providing Network Services Network Demands Suggested Design Methods High demand for IP telephony • Use QoS to prioritize applications such as either high- An evolving demand for multimedia support • Use IGMP and MVR to prioritize voice and data traffic as...
Software Configuration Guide
Page 56
.... Catalyst 2950 Desktop Switch Software Configuration Guide 2-2 78-14982-01 Use this mode to create new sequences or to add or delete profiles in the table use the host name Switch. When VTP mode is transparent, you can create extended-range VLANs (VLAN IDs greater than 1005) and save configurations in user EXEC Switch# mode, enter the enable command. To return to configure VLAN parameters. Use this mode to configure parameters that you have entered. While in the switch startup configuration file. Use...
.... Catalyst 2950 Desktop Switch Software Configuration Guide 2-2 78-14982-01 Use this mode to create new sequences or to add or delete profiles in the table use the host name Switch. When VTP mode is transparent, you can create extended-range VLANs (VLAN IDs greater than 1005) and save configurations in user EXEC Switch# mode, enter the enable command. To return to configure VLAN parameters. Use this mode to configure parameters that you have entered. While in the switch startup configuration file. Use...
Software Configuration Guide
Page 64
... configured for a Terminal Line" section on page 7-6. The switch must have network connectivity with your switch must have an enable secret password configured. To use this type of access. For example, if you need to sort through Keystrokes" section on the management station. 2-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 The switch supports up modem. Then, to the switch hardware installation guide. • Using any Telnet TCP/IP package from a remote management station. This is up , line...
... configured for a Terminal Line" section on page 7-6. The switch must have network connectivity with your switch must have an enable secret password configured. To use this type of access. For example, if you need to sort through Keystrokes" section on the management station. 2-10 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 The switch supports up modem. Then, to the switch hardware installation guide. • Using any Telnet TCP/IP package from a remote management station. This is up , line...
Software Configuration Guide
Page 84
...configure STP parameters for automatically assigning profiles, setting signal-to specific ports. Enable and disable Internet Group Management Protocol (IGMP) snooping and IGMP Immediate-Leave processing on the switch. Join or leave multicast groups, and configure multicast routers. Change the management VLAN on the switch. Configure a port to -point infrastructure. Filter certain traffic, such as they are attached to LAN ports in a point-to prevent it from receiving bridged traffic from certain networks or devices. Enable Switch Port Analyzer (SPAN) port monitoring. Set rate...
...configure STP parameters for automatically assigning profiles, setting signal-to specific ports. Enable and disable Internet Group Management Protocol (IGMP) snooping and IGMP Immediate-Leave processing on the switch. Join or leave multicast groups, and configure multicast routers. Change the management VLAN on the switch. Configure a port to -point infrastructure. Filter certain traffic, such as they are attached to LAN ports in a point-to prevent it from receiving bridged traffic from certain networks or devices. Enable Switch Port Analyzer (SPAN) port monitoring. Set rate...
Software Configuration Guide
Page 110
.... (Optional) Save your connection to have a default gateway set. To remove the default gateway address, use the no ip address interface configuration command. version 12.1 no service pad service timestamps debug uptime service timestamps log datetime no ip default-gateway global configuration command. Checking and Saving the Running Configuration Chapter 4 Assigning the Switch IP Address and Default Gateway Manually Assigning IP Information Beginning in the configuration file. For information on setting the switch system name, protecting access to the remote networks with unresolved...
.... (Optional) Save your connection to have a default gateway set. To remove the default gateway address, use the no ip address interface configuration command. version 12.1 no service pad service timestamps debug uptime service timestamps log datetime no ip default-gateway global configuration command. Checking and Saving the Running Configuration Chapter 4 Assigning the Switch IP Address and Default Gateway Manually Assigning IP Information Beginning in the configuration file. For information on setting the switch system name, protecting access to the remote networks with unresolved...
Software Configuration Guide
Page 160
... enable password. • For command, specify the command to which you want many users to have access to specified commands. For example, if you want more restricted access to 15. Configuring Multiple Privilege Levels By default, the IOS software has two modes of password security: user EXEC and privileged EXEC. This section includes this configuration information: • Setting the Privilege Level for a Command, page 7-8 • Changing the Default Privilege Level for Lines...
... enable password. • For command, specify the command to which you want many users to have access to specified commands. For example, if you want more restricted access to 15. Configuring Multiple Privilege Levels By default, the IOS software has two modes of password security: user EXEC and privileged EXEC. This section includes this configuration information: • Setting the Privilege Level for a Command, page 7-8 • Changing the Default Privilege Level for Lines...
Software Configuration Guide
Page 165
... and declares an error. The default is port 49. Chapter 7 Administering the Switch Controlling Switch Access with TACACS+ This section contains this command multiple times to create a list of the host. • (Optional) For port integer, specify a server port number. You can group servers to select a subset of the configured server hosts and use a single server or AAA server groups to group existing server hosts for a particular service. Beginning in privileged EXEC mode, follow these...
... and declares an error. The default is port 49. Chapter 7 Administering the Switch Controlling Switch Access with TACACS+ This section contains this command multiple times to create a list of the host. • (Optional) For port integer, specify a server port number. You can group servers to select a subset of the configured server hosts and use a single server or AAA server groups to group existing server hosts for a particular service. Beginning in privileged EXEC mode, follow these...
Software Configuration Guide
Page 167
... error, not if it fails. Before you can use the default list created with the aaa authentication login command. • For list-name, specify the list created with TACACS+ Beginning in default situations. Enter line configuration mode, and configure the lines to which you must enter username information in the configuration file. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 7-15 Use the username password global configuration command. • local-case-Use a case-sensitive local username database for login. Use the password password line configuration...
... error, not if it fails. Before you can use the default list created with the aaa authentication login command. • For list-name, specify the list created with TACACS+ Beginning in default situations. Enter line configuration mode, and configure the lines to which you must enter username information in the configuration file. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 7-15 Use the username password global configuration command. • local-case-Use a case-sensitive local username database for login. Use the password password line configuration...
Software Configuration Guide
Page 176
... the configuration file. 7-24 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Verify your entries. (Optional) Save your entries in the database. Before you can use any authentication for login. local-Use the local username database for authentication. You must define an enable password by using the enable password global configuration command. - The default method list is used only if the previous method returns an error, not if it fails. enable-Use the enable password for authentication. Create a login...
... the configuration file. 7-24 Catalyst 2950 Desktop Switch Software Configuration Guide 78-14982-01 Verify your entries. (Optional) Save your entries in the database. Before you can use any authentication for login. local-Use the local username database for authentication. You must define an enable password by using the enable password global configuration command. - The default method list is used only if the previous method returns an error, not if it fails. enable-Use the enable password for authentication. Create a login...
Software Configuration Guide
Page 223
... on Fast Ethernet port 0/1: Switch# configure terminal Switch(config)# aaa new-model Switch(config)# aaa authentication dot1x default group radius Switch(config)# interface fastethernet0/1 Switch(config-if)# dot1x port-control auto Switch(config-if)# end Configuring the Switch-to privileged EXEC mode. The RADIUS host entries are identified by their host name or IP address, host name and specific UDP port numbers, or IP address and specific UDP port numbers. Note Always configure the key as the fail-over backup to multiple UDP ports on a server at the end of the string remote RADIUS...
... on Fast Ethernet port 0/1: Switch# configure terminal Switch(config)# aaa new-model Switch(config)# aaa authentication dot1x default group radius Switch(config)# interface fastethernet0/1 Switch(config-if)# dot1x port-control auto Switch(config-if)# end Configuring the Switch-to privileged EXEC mode. The RADIUS host entries are identified by their host name or IP address, host name and specific UDP port numbers, or IP address and specific UDP port numbers. Note Always configure the key as the fail-over backup to multiple UDP ports on a server at the end of the string remote RADIUS...
Software Configuration Guide
Page 238
...are logically bundled as a vertical column on the front panel and are enabled. Table 9-1 Default Ethernet Interface Configuration Feature Default Setting Operating mode Layer 2. VLAN trunking Switchport mode dynamic desirable (supports DTP). See Chapter 27, "Configuring EtherChannels." Port security Disabled. Port enable state All ports are labeled Uplink Port 1 and Uplink Port 2 on controlling traffic to the port, see Chapter 14, "Configuring VLANs." Duplex mode Autonegotiate. For details on the Catalyst 2950 LRE switch. Broadcast, multicast, and unicast...
...are logically bundled as a vertical column on the front panel and are enabled. Table 9-1 Default Ethernet Interface Configuration Feature Default Setting Operating mode Layer 2. VLAN trunking Switchport mode dynamic desirable (supports DTP). See Chapter 27, "Configuring EtherChannels." Port security Disabled. Port enable state All ports are labeled Uplink Port 1 and Uplink Port 2 on controlling traffic to the port, see Chapter 14, "Configuring VLANs." Duplex mode Autonegotiate. For details on the Catalyst 2950 LRE switch. Broadcast, multicast, and unicast...
Software Configuration Guide
Page 242
... control traffic rates during the congestion period. Before configuring flowcontrol on a Long-Reach Ethernet (LRE) switch. You use the command: media-type {auto-select | sfp | rj45} See the Catalyst 2950 Desktop Switch Command Reference for Gigabit Ethernet ports is receive off and send off , or desired. Configuring IEEE 802.3X Flow Control on Gigabit Ethernet Ports Flow control is configured on switch and module ports operating at the other port to the default QoS settings listed in two forms, symmetric and asymmetric. interface FastEthernet0/3 switchport mode trunk no service...
... control traffic rates during the congestion period. Before configuring flowcontrol on a Long-Reach Ethernet (LRE) switch. You use the command: media-type {auto-select | sfp | rj45} See the Catalyst 2950 Desktop Switch Command Reference for Gigabit Ethernet ports is receive off and send off , or desired. Configuring IEEE 802.3X Flow Control on Gigabit Ethernet Ports Flow control is configured on switch and module ports operating at the other port to the default QoS settings listed in two forms, symmetric and asymmetric. interface FastEthernet0/3 switchport mode trunk no service...
Software Configuration Guide
Page 263
A link fail interrupts operation of the Ethernet link for a small number of times the link failed. During this to upgrade). Micro-interruptions and ADC saturations are updates required to the most recent compatible versions of LRE binaries. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 10-15 Note Whether upgrading a single CPE device or all local LRE controllers and CPE devices to the firmware on traffic levels). • PMD...
A link fail interrupts operation of the Ethernet link for a small number of times the link failed. During this to upgrade). Micro-interruptions and ADC saturations are updates required to the most recent compatible versions of LRE binaries. 78-14982-01 Catalyst 2950 Desktop Switch Software Configuration Guide 10-15 Note Whether upgrading a single CPE device or all local LRE controllers and CPE devices to the firmware on traffic levels). • PMD...
Software Configuration Guide
Page 431
... mode, refer to the udld enable global configuration command setting. To disable UDLD on a non-fiber-optic interface, use the udld disable command to revert to the command reference guide. • enable-Enables UDLD in normal mode on the specified interface. Verify your entries. (Optional) Save your entries in the configuration file. Resetting an Interface Shut Down by UDLD Beginning in privileged EXEC mode, follow these commands: • The shutdown interface configuration command followed by default. Verify your entries. (Optional) Save...
... mode, refer to the udld enable global configuration command setting. To disable UDLD on a non-fiber-optic interface, use the udld disable command to revert to the command reference guide. • enable-Enables UDLD in normal mode on the specified interface. Verify your entries. (Optional) Save your entries in the configuration file. Resetting an Interface Shut Down by UDLD Beginning in privileged EXEC mode, follow these commands: • The shutdown interface configuration command followed by default. Verify your entries. (Optional) Save...
Software Configuration Guide
Page 494
... interface, the switch compares the fields in the packet against the conditions in an access list one by certain users or devices. ACLs can allow e-mail traffic to be configured to block inbound traffic. The switch supports these types of conditions in the inbound direction: • IP ACLs filter IP, TCP, and UDP traffic. • Ethernet or MAC ACLs filter Layer 2 traffic. • MAC extended access lists use source and destination MAC addresses and optional protocol type...
... interface, the switch compares the fields in the packet against the conditions in an access list one by certain users or devices. ACLs can allow e-mail traffic to be configured to block inbound traffic. The switch supports these types of conditions in the inbound direction: • IP ACLs filter IP, TCP, and UDP traffic. • Ethernet or MAC ACLs filter Layer 2 traffic. • MAC extended access lists use source and destination MAC addresses and optional protocol type...