Configuration Guide
Page 11
... Secure HTTP Server and Client Status 9-48 Configuring the Switch for Secure Copy Protocol 9-48 Information About Secure Copy 9-49 Configuring IEEE 802.1x Port-Based Authentication 10-1 Understanding IEEE 802.1x Port-Based Authentication 10-1 Device Roles 10-2...Ports 10-16 Using IEEE 802.1x Authentication with Port Security 10-17 Using IEEE 802.1x Authentication with Wake-on-LAN 10-18 Using IEEE 802.1x Authentication with MAC Authentication Bypass 10-18 Using Network Admission Control... Authentication Bypass 10-24 MAC Authentication Bypass 10-25 Catalyst 3750 Switch Software Configuration Guide xi
... Secure HTTP Server and Client Status 9-48 Configuring the Switch for Secure Copy Protocol 9-48 Information About Secure Copy 9-49 Configuring IEEE 802.1x Port-Based Authentication 10-1 Understanding IEEE 802.1x Port-Based Authentication 10-1 Device Roles 10-2...Ports 10-16 Using IEEE 802.1x Authentication with Port Security 10-17 Using IEEE 802.1x Authentication with Wake-on-LAN 10-18 Using IEEE 802.1x Authentication with MAC Authentication Bypass 10-18 Using Network Admission Control... Authentication Bypass 10-24 MAC Authentication Bypass 10-25 Catalyst 3750 Switch Software Configuration Guide xi
Configuration Guide
Page 131
...a Switch Stack" section on page 5-23. Effects of Replacing a Provisioned Switch in a Switch Stack When a provisioned switch in the "Effects of the provisioned switch is running Cisco IOS Release 12.2(20)SE or later and does not contain a provisioned configuration for ports 1 through 48 is...it to the stack. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 5-9 Result The switch stack applies the default configuration to the provisioned switch and adds it . Effects of Removing a Provisioned Switch from a Switch Stack If a switch stack is not found in the provisioned ...
...a Switch Stack" section on page 5-23. Effects of Replacing a Provisioned Switch in a Switch Stack When a provisioned switch in the "Effects of the provisioned switch is running Cisco IOS Release 12.2(20)SE or later and does not contain a provisioned configuration for ports 1 through 48 is...it to the stack. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 5-9 Result The switch stack applies the default configuration to the provisioned switch and adds it . Effects of Removing a Provisioned Switch from a Switch Stack If a switch stack is not found in the provisioned ...
Configuration Guide
Page 205
...Catalyst 3750 switch. When users attempt to access the switch through a terminal or workstation from within the local network. If you restrict access to users who dial from outside the network through a serial port, or connect through a port or line, they must enter the password specified for Secure Copy Protocol, page 9-48... Access to Your Switch, page 9-1 • Protecting Access to Privileged EXEC Commands, page 9-2 • Controlling Switch Access with TACACS+, page 9-10 • Controlling Switch Access with RADIUS, page 9-17 • Controlling Switch Access with associated ...
...Catalyst 3750 switch. When users attempt to access the switch through a terminal or workstation from within the local network. If you restrict access to users who dial from outside the network through a serial port, or connect through a port or line, they must enter the password specified for Secure Copy Protocol, page 9-48... Access to Your Switch, page 9-1 • Protecting Access to Privileged EXEC Commands, page 9-2 • Controlling Switch Access with TACACS+, page 9-10 • Controlling Switch Access with RADIUS, page 9-17 • Controlling Switch Access with associated ...
Configuration Guide
Page 246
...Displaying Secure HTTP Server and Client Status, page 9-48 For configuration examples and complete syntax and usage information for Secure Socket Layer HTTP Chapter 9 Configuring Switch-Based Authentication For more information about these commands,... a designated port (the default HTTPS port is 443) and pass the request to and from an HTTP server is encrypted before being sent over SSL is to respond to Cisco IOS application requests... server authentication, encryption, and message integrity, as well as trustpoints. 9-42 Catalyst 3750 Switch Software Configuration Guide OL-8550-02
...Displaying Secure HTTP Server and Client Status, page 9-48 For configuration examples and complete syntax and usage information for Secure Socket Layer HTTP Chapter 9 Configuring Switch-Based Authentication For more information about these commands,... a designated port (the default HTTPS port is 443) and pass the request to and from an HTTP server is encrypted before being sent over SSL is to respond to Cisco IOS application requests... server authentication, encryption, and message integrity, as well as trustpoints. 9-42 Catalyst 3750 Switch Software Configuration Guide OL-8550-02
Configuration Guide
Page 306
...port-channel logical interface. A stack of 370 W. On a 48-port PoE switch, any 24 of the 48 10/100 or 10/100/1000 PoE ports provide 15.4 W of power, or any combination of ports...Cisco pre-standard powered devices (such as Cisco IP Phones and Cisco Aironet access points) • IEEE 802.3af-compliant powered devices On a 24-port PoE switch, each 10/100 or 10/100/1000 PoE port... Ethernet Interfaces The Catalyst 3750G-16TD switch has one switch port. For more information, see your XENPAK module documentation. This command binds the physical and logical ports together. The interface...
...port-channel logical interface. A stack of 370 W. On a 48-port PoE switch, any 24 of the 48 10/100 or 10/100/1000 PoE ports provide 15.4 W of power, or any combination of ports...Cisco pre-standard powered devices (such as Cisco IP Phones and Cisco Aironet access points) • IEEE 802.3af-compliant powered devices On a 24-port PoE switch, each 10/100 or 10/100/1000 PoE port... Ethernet Interfaces The Catalyst 3750G-16TD switch has one switch port. For more information, see your XENPAK module documentation. This command binds the physical and logical ports together. The interface...
Configuration Guide
Page 313
... type strings to the range to enable Fast Ethernet ports 1 to 3 on switch 1 and Gigabit Ethernet ports 1 and 2 on switch 2 to receive flow-control pause frames: Switch# configure terminal Switch(config)# interface range fastethernet1/0/1 - 3 , gigabitethernet2/0/1 - 2 Switch(config-if-range)# flowcontrol receive on If you enter...configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 11-13 vlan vlan-ID - vlan-ID, where the VLAN ID is always 0 - gigabitethernet stack member/module/{first port} - {last port}, where the module is 1 to 48 Note When you exit interface-...
... type strings to the range to enable Fast Ethernet ports 1 to 3 on switch 1 and Gigabit Ethernet ports 1 and 2 on switch 2 to receive flow-control pause frames: Switch# configure terminal Switch(config)# interface range fastethernet1/0/1 - 3 , gigabitethernet2/0/1 - 2 Switch(config-if-range)# flowcontrol receive on If you enter...configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 11-13 vlan vlan-ID - vlan-ID, where the VLAN ID is always 0 - gigabitethernet stack member/module/{first port} - {last port}, where the module is 1 to 48 Note When you exit interface-...
Configuration Guide
Page 314
... to all VLANs), but you can combine multiple interface types in a macro. 11-14 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 fastethernet stack member/module/{first port} - {last port}, where the module is 1 to 48. port-channel-number, where the port-channel-number is always 0 - VLAN interfaces not displayed by the show running-config command...
... to all VLANs), but you can combine multiple interface types in a macro. 11-14 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 fastethernet stack member/module/{first port} - {last port}, where the module is 1 to 48. port-channel-number, where the port-channel-number is always 0 - VLAN interfaces not displayed by the show running-config command...
Configuration Guide
Page 323
... of the actual amount of powered devices connected to each the PoE port on the switch. If your Class 0 device power requirement is 370,000 milliwatts. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 11-23 If the powered device is reclaimed into the... wattage to 5000 milliwatts and connect up to 48 devices. Chapter 11 Configuring Interface Characteristics Configuring Ethernet Interfaces Budgeting Power for Devices Connected to a PoE Port When Cisco powered devices are connected to PoE ports, the switch uses Cisco Discovery Protocol (CDP) to determine the actual power...
... of the actual amount of powered devices connected to each the PoE port on the switch. If your Class 0 device power requirement is 370,000 milliwatts. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 11-23 If the powered device is reclaimed into the... wattage to 5000 milliwatts and connect up to 48 devices. Chapter 11 Configuring Interface Characteristics Configuring Ethernet Interfaces Budgeting Power for Devices Connected to a PoE Port When Cisco powered devices are connected to PoE ports, the switch uses Cisco Discovery Protocol (CDP) to determine the actual power...
Configuration Guide
Page 416
... privileged EXEC mode, follow these steps to configure a port as an IEEE 802.1Q tunnel port. 17-6 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 Cisco Discovery Protocol (CDP) is not needed, you must manually configure asymmetric links with tunnel ports. • Tunnel ports do not support IP access control lists (ACLs). • Layer 3 quality of service...
... privileged EXEC mode, follow these steps to configure a port as an IEEE 802.1Q tunnel port. 17-6 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 Cisco Discovery Protocol (CDP) is not needed, you must manually configure asymmetric links with tunnel ports. • Tunnel ports do not support IP access control lists (ACLs). • Layer 3 quality of service...
Configuration Guide
Page 423
...can be configured as an access port or an IEEE 802.1Q tunnel port. Step 5 l2protocol-tunnel shutdown-threshold [cdp | stp | vtp] value (Optional) Configure the threshold for packets-per -second accepted for encapsulation. If no protocol option is 0 to 48). Step 8 errdisable recovery cause...-threshold value. Step 9 l2protocol-tunnel cos value (Optional) Configure the CoS value for the desired protocol. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 17-13 The range is to have no threshold configured. the default is to have no threshold configured. ...
...can be configured as an access port or an IEEE 802.1Q tunnel port. Step 5 l2protocol-tunnel shutdown-threshold [cdp | stp | vtp] value (Optional) Configure the threshold for packets-per -second accepted for encapsulation. If no protocol option is 0 to 48). Step 8 errdisable recovery cause...-threshold value. Step 9 l2protocol-tunnel cos value (Optional) Configure the CoS value for the desired protocol. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 17-13 The range is to have no threshold configured. the default is to have no threshold configured. ...
Configuration Guide
Page 443
... enter interface configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 18-15 To return the port to the forwarding state. The port-channel range is 1 to 48. (Recommended for rapid-PVST+ mode only) Specify that is different from the default mode, this port (local port) to a remote port through a point-to-point link and the...
... enter interface configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 18-15 To return the port to the forwarding state. The port-channel range is 1 to 48. (Recommended for rapid-PVST+ mode only) Specify that is different from the default mode, this port (local port) to a remote port through a point-to-point link and the...
Configuration Guide
Page 447
...EXEC mode, follow these steps to 240, in a link-up operative state. Valid values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240. The range...is 1 to 4094. • For priority, the range is 128. the default is 0 to configure the port priority of an interface. The lower the number, the higher the priority. All other values are rejected. Otherwise...hyphen, or a series of VLANs separated by a comma. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 18-19 Beginning in the forwarding state. All other values are rejected. Valid values are...
...EXEC mode, follow these steps to 240, in a link-up operative state. Valid values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240. The range...is 1 to 4094. • For priority, the range is 128. the default is 0 to configure the port priority of an interface. The lower the number, the higher the priority. All other values are rejected. Otherwise...hyphen, or a series of VLANs separated by a comma. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 18-19 Beginning in the forwarding state. All other values are rejected. Valid values are...
Configuration Guide
Page 472
... procedure is 128. All other values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240. Otherwise, you can use the no spanning-tree mst instance-id port-priority interface configuration command. 19-20 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 Beginning in privileged EXEC...
... procedure is 128. All other values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240. Otherwise, you can use the no spanning-tree mst instance-id port-priority interface configuration command. 19-20 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 Beginning in privileged EXEC...
Configuration Guide
Page 473
...instances separated by a hyphen, or a series of instances separated by a comma. Beginning in a link-up operative state. The port-channel range is 1 to 48. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 19-21 The range is 0 to 4094. • For cost, the range is 1 to 200000000; This ... Path Cost The MSTP path cost default value is derived from the media speed of the interface. Valid interfaces include physical ports and port-channel logical interfaces. If all interfaces have the same cost value, the MSTP puts the interface with the lowest interface number...
...instances separated by a hyphen, or a series of instances separated by a comma. Beginning in a link-up operative state. The port-channel range is 1 to 48. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 19-21 The range is 0 to 4094. • For cost, the range is 1 to 200000000; This ... Path Cost The MSTP path cost default value is derived from the media speed of the interface. Valid interfaces include physical ports and port-channel logical interfaces. If all interfaces have the same cost value, the MSTP puts the interface with the lowest interface number...
Configuration Guide
Page 477
...port is 1 to 48. Step 1 Step 2 Command configure terminal interface interface-id Step 3 Step 4 Step 5 Step 6 spanning-tree link-type point-to-point end show spanning-tree mst interface interface-id copy running MSTP, you have a half-duplex link physically connected point-to-point to a single port on the interface. To return the port... include physical ports. Return to configure, and enter interface configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...the link type is controlled from the duplex mode of the interface: a full-duplex port is point-to-point...
...port is 1 to 48. Step 1 Step 2 Command configure terminal interface interface-id Step 3 Step 4 Step 5 Step 6 spanning-tree link-type point-to-point end show spanning-tree mst interface interface-id copy running MSTP, you have a half-duplex link physically connected point-to-point to a single port on the interface. To return the port... include physical ports. Return to configure, and enter interface configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...the link type is controlled from the duplex mode of the interface: a full-duplex port is point-to-point...
Configuration Guide
Page 503
...: Step 1 Step 2 Command configure terminal interface interface-id Purpose Enter global configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 21-5 The interface can be a physical Layer 2 interface or a port channel (logical interface). Return to 48. Specify the interface, and enter interface configuration mode. This example shows how to configure an interface...
...: Step 1 Step 2 Command configure terminal interface interface-id Purpose Enter global configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 21-5 The interface can be a physical Layer 2 interface or a port channel (logical interface). Return to 48. Specify the interface, and enter interface configuration mode. This example shows how to configure an interface...
Configuration Guide
Page 505
... transmit Switch(conf)# end OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 21-7 Return to send MAC address-table move update messages: Switch# configure terminal Switch(conf)# interface gigabitethernet1/0/1 Switch(conf-if)# switchport backup interface gigabitethernet0/2 mmu primary vlan 2 Switch(conf-if)# exit Switch(conf)# mac address-table move updates to 48. Configure a physical Layer 2 interface (or port channel...
... transmit Switch(conf)# end OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 21-7 Return to send MAC address-table move update messages: Switch# configure terminal Switch(conf)# interface gigabitethernet1/0/1 Switch(conf-if)# switchport backup interface gigabitethernet0/2 mmu primary vlan 2 Switch(conf-if)# exit Switch(conf)# mac address-table move updates to 48. Configure a physical Layer 2 interface (or port channel...
Configuration Guide
Page 555
... configure a host on a port: Switch# configure terminal Switch(config)# ip igmp snooping vlan 105 static 224.2.4.12 interface gigabitethernet1/0/1 Switch(config)# end Enabling IGMP Immediate Leave When you can be a physical interface or a port channel (1 to 48). show ip igmp snooping groups Verify the member port and the IP address. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...
... configure a host on a port: Switch# configure terminal Switch(config)# ip igmp snooping vlan 105 static 224.2.4.12 interface gigabitethernet1/0/1 Switch(config)# end Enabling IGMP Immediate Leave When you can be a physical interface or a port channel (1 to 48). show ip igmp snooping groups Verify the member port and the IP address. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...
Configuration Guide
Page 694
... Switch(config)# access-list 102 permit icmp any any Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# ip access-group 102 in from the source address 1.2.3.4. Switch(config)# ip access-list standard Internet_filter Switch(config-ext-nacl)# permit 1.2.3.4 Switch(config-ext-nacl)# exit 32-24 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 The same port numbers are separately controlled...
... Switch(config)# access-list 102 permit icmp any any Switch(config)# interface gigabitethernet2/0/1 Switch(config-if)# ip access-group 102 in from the source address 1.2.3.4. Switch(config)# ip access-list standard Internet_filter Switch(config-ext-nacl)# permit 1.2.3.4 Switch(config-ext-nacl)# exit 32-24 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 The same port numbers are separately controlled...
Configuration Guide
Page 1193
...configuring a secure HTTP server 9-46 cryptographic software image 9-42 described 9-42 monitoring 9-48 stack, switch MAC address of 5-19 stack changes effects on IPv6 routing 36-8 stack changes, effects on 802.1x port-based authentication 10-8 ACL configuration 32-7 CDP 26-2 cross-stack EtherChannel 34-13 ...EtherChannel 34-10 fallback bridging 42-3 HSRP 39-4 IGMP snooping 24-7 IP routing 35-4 IPv6 ACLs 38-3 MAC address tables 7-21 MSTP 19-8 multicast routing 40-8 MVR 24-18 Catalyst 3750 Switch...
...configuring a secure HTTP server 9-46 cryptographic software image 9-42 described 9-42 monitoring 9-48 stack, switch MAC address of 5-19 stack changes effects on IPv6 routing 36-8 stack changes, effects on 802.1x port-based authentication 10-8 ACL configuration 32-7 CDP 26-2 cross-stack EtherChannel 34-13 ...EtherChannel 34-10 fallback bridging 42-3 HSRP 39-4 IGMP snooping 24-7 IP routing 35-4 IPv6 ACLs 38-3 MAC address tables 7-21 MSTP 19-8 multicast routing 40-8 MVR 24-18 Catalyst 3750 Switch...