Configuration Guide
Page 7
Contents 6 C H A P T E R Configuring the Switch Stack 5-19 Default Switch Stack Configuration 5-19 Enabling Persistent MAC Address 5-19 Assigning Stack Member Information 5-22 Assigning a Stack Member Number 5-22 Setting the Stack Member Priority Value...Command Switches 6-10 Virtual IP Addresses 6-11 Other Considerations for Cluster Standby Groups 6-11 Automatic Recovery of Cluster Configuration 6-12 IP Addresses 6-13 Hostnames 6-13 Passwords 6-14 SNMP Community Strings 6-14 Switch Clusters and Switch Stacks 6-15 TACACS+ and RADIUS 6-16 LRE Profiles 6-16 Using the CLI to Manage Switch Clusters...
Contents 6 C H A P T E R Configuring the Switch Stack 5-19 Default Switch Stack Configuration 5-19 Enabling Persistent MAC Address 5-19 Assigning Stack Member Information 5-22 Assigning a Stack Member Number 5-22 Setting the Stack Member Priority Value...Command Switches 6-10 Virtual IP Addresses 6-11 Other Considerations for Cluster Standby Groups 6-11 Automatic Recovery of Cluster Configuration 6-12 IP Addresses 6-13 Hostnames 6-13 Passwords 6-14 SNMP Community Strings 6-14 Switch Clusters and Switch Stacks 6-15 TACACS+ and RADIUS 6-16 LRE Profiles 6-16 Using the CLI to Manage Switch Clusters...
Configuration Guide
Page 9
... 9-2 Default Password and Privilege Level Configuration 9-2 Setting or Changing a Static Enable Password 9-3 Protecting Enable and Enable Secret Passwords with Encryption 9-3 Disabling Password Recovery 9-5 Setting a Telnet Password for a Terminal Line 9-6 Configuring Username and Password Pairs 9-6 Configuring Multiple Privilege Levels 9-7 Setting the Privilege Level for a Command 9-8 Changing the Default Privilege Level for Lines 9-9 Logging into and Exiting a Privilege Level 9-9 Controlling Switch...
... 9-2 Default Password and Privilege Level Configuration 9-2 Setting or Changing a Static Enable Password 9-3 Protecting Enable and Enable Secret Passwords with Encryption 9-3 Disabling Password Recovery 9-5 Setting a Telnet Password for a Terminal Line 9-6 Configuring Username and Password Pairs 9-6 Configuring Multiple Privilege Levels 9-7 Setting the Privilege Level for a Command 9-8 Changing the Default Privilege Level for Lines 9-9 Logging into and Exiting a Privilege Level 9-9 Controlling Switch...
Configuration Guide
Page 15
...Advertisements 14-3 VTP Version 2 14-4 VTP Pruning 14-4 VTP and Switch Stacks 14-6 Configuring VTP 14-6 Default VTP Configuration 14-7 VTP Configuration Options 14-7 VTP Configuration in Global Configuration Mode 14-7 VTP Configuration in VLAN... Database Configuration Mode 14-8 VTP Configuration Guidelines 14-8 Domain Names 14-8 Passwords 14-8 VTP Version 14-9 Configuration Requirements 14-9 Configuring a VTP Server 14-9 Configuring a VTP Client 14-11...14-14 Monitoring VTP 14-16 Contents OL-8550-02 Catalyst 3750 Switch Software Configuration Guide xv
...Advertisements 14-3 VTP Version 2 14-4 VTP Pruning 14-4 VTP and Switch Stacks 14-6 Configuring VTP 14-6 Default VTP Configuration 14-7 VTP Configuration Options 14-7 VTP Configuration in Global Configuration Mode 14-7 VTP Configuration in VLAN... Database Configuration Mode 14-8 VTP Configuration Guidelines 14-8 Domain Names 14-8 Passwords 14-8 VTP Version 14-9 Configuration Requirements 14-9 Configuring a VTP Server 14-9 Configuring a VTP Client 14-11...14-14 Monitoring VTP 14-16 Contents OL-8550-02 Catalyst 3750 Switch Software Configuration Guide xv
Configuration Guide
Page 37
43 C H A P T E R Configuring Fallback Bridging 42-3 Default Fallback Bridging Configuration 42-4 Fallback Bridging Configuration Guidelines 42-4 Creating a Bridge ...Bridging 42-11 Troubleshooting 43-1 Recovering from a Software Failure 43-2 Recovering from a Lost or Forgotten Password 43-3 Procedure with Password Recovery Enabled 43-4 Procedure with Password Recovery Disabled 43-6 Preventing Switch Stack Problems 43-7 Recovering from a Command Switch Failure 43-8 Replacing... 43-16 Displaying the Physical Path 43-17 Contents OL-8550-02 Catalyst 3750 Switch Software Configuration Guide xxxvii
43 C H A P T E R Configuring Fallback Bridging 42-3 Default Fallback Bridging Configuration 42-4 Fallback Bridging Configuration Guidelines 42-4 Creating a Bridge ...Bridging 42-11 Troubleshooting 43-1 Recovering from a Software Failure 43-2 Recovering from a Lost or Forgotten Password 43-3 Procedure with Password Recovery Enabled 43-4 Procedure with Password Recovery Disabled 43-6 Preventing Switch Stack Problems 43-7 Recovering from a Command Switch Failure 43-8 Replacing... 43-16 Displaying the Physical Path 43-17 Contents OL-8550-02 Catalyst 3750 Switch Software Configuration Guide xxxvii
Configuration Guide
Page 54
...information, contact information, switch and Telnet passwords, and Simple Network Management Protocol (SNMP) information through a web browser. Catalyst 3750 Switch Software Configuration Guide 1-2 OL... access control lists (ACLs), the advanced IP services image is supported in your intranet. Simplifying and minimizing switch, switch stack, and switch cluster management from Cisco.com....the device manager, see the getting started guide. • User-defined and Cisco-default Smartports macros for creating custom switch configurations for simplified deployment across the network. ...
...information, contact information, switch and Telnet passwords, and Simple Network Management Protocol (SNMP) information through a web browser. Catalyst 3750 Switch Software Configuration Guide 1-2 OL... access control lists (ACLs), the advanced IP services image is supported in your intranet. Simplifying and minimizing switch, switch stack, and switch cluster management from Cisco.com....the device manager, see the getting started guide. • User-defined and Cisco-default Smartports macros for creating custom switch configurations for simplified deployment across the network. ...
Configuration Guide
Page 65
...not configured. For more information, see Chapter 6, "Clustering Switches," and the Getting Started with these default settings: • Default switch IP address, subnet mask, and default gateway is disabled. For information about switch clusters, see Chapter 10, "Configuring IEEE 802.1x Port...Assistant, available on Cisco.com. • No passwords are both enabled. For more information, see Chapter 9, "Configuring Switch-Based Authentication." • The standard HTTP server and Secure Socket Layer (SSL) HTTPS server are defined. OL-8550-02 Catalyst 3750 Switch Software ...
...not configured. For more information, see Chapter 6, "Clustering Switches," and the Getting Started with these default settings: • Default switch IP address, subnet mask, and default gateway is disabled. For information about switch clusters, see Chapter 10, "Configuring IEEE 802.1x Port...Assistant, available on Cisco.com. • No passwords are both enabled. For more information, see Chapter 9, "Configuring Switch-Based Authentication." • The standard HTTP server and Secure Socket Layer (SSL) HTTPS server are defined. OL-8550-02 Catalyst 3750 Switch Software ...
Configuration Guide
Page 81
...page 2-10 • Accessing the CLI, page 2-10 Understanding Command Modes The Cisco IOS user interface is divided into many different modes. From this mode, you save...; Understanding the Help System, page 2-3 • Understanding Abbreviated Commands, page 2-4 • Understanding no and default Forms of Commands, page 2-4 • Understanding CLI Error Messages, page 2-5 • Using Configuration Logging, ..., you must enter a password to all commands, you can enter interface configuration mode and line configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...
...page 2-10 • Accessing the CLI, page 2-10 Understanding Command Modes The Cisco IOS user interface is divided into many different modes. From this mode, you save...; Understanding the Help System, page 2-3 • Understanding Abbreviated Commands, page 2-4 • Understanding no and default Forms of Commands, page 2-4 • Understanding CLI Error Messages, page 2-5 • Using Configuration Logging, ..., you must enter a password to all commands, you can enter interface configuration mode and line configuration mode. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide...
Configuration Guide
Page 93
OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-1 Unless otherwise noted, the term ...and powering on the switch and setting up the initial switch configuration (IP address, subnet mask, default gateway, secret and Telnet passwords, and so forth). To enable IPv6, the stack switch must be running the advanced IP services...IPv4). CH A P T E R 3 Assigning the Switch IP Address and Default Gateway This chapter describes how to create the initial switch configuration (for this release and the Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2. ...
OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-1 Unless otherwise noted, the term ...and powering on the switch and setting up the initial switch configuration (IP address, subnet mask, default gateway, secret and Telnet passwords, and so forth). To enable IPv6, the stack switch must be running the advanced IP services...IPv4). CH A P T E R 3 Assigning the Switch IP Address and Default Gateway This chapter describes how to create the initial switch configuration (for this release and the Cisco IOS IP Command Reference, Volume 1 of 3: Addressing and Services, Release 12.2. ...
Configuration Guide
Page 94
...option to the flash file system before the operating system is loaded. You can also configure a hostname and an enable secret password. Catalyst 3750 Switch Software Configuration Guide 3-2 OL-8550-02 For more information about the setup program, see the "Recovering from a ...option of assigning a Telnet password (to load, uncompress, and launch the operating system. Assigning Switch Information Chapter 3 Assigning the Switch IP Address and Default Gateway The normal boot process involves the operation of the boot loader software, which control where physical memory is mapped...
...option to the flash file system before the operating system is loaded. You can also configure a hostname and an enable secret password. Catalyst 3750 Switch Software Configuration Guide 3-2 OL-8550-02 For more information about the setup program, see the "Recovering from a ...option of assigning a Telnet password (to load, uncompress, and launch the operating system. Assigning Switch Information Chapter 3 Assigning the Switch IP Address and Default Gateway The normal boot process involves the operation of the boot loader software, which control where physical memory is mapped...
Configuration Guide
Page 95
... 3-1 Default Switch Information Feature IP address and subnet mask Default gateway Enable secret password Hostname Telnet password Cluster command switch functionality Cluster name Default Setting No IP address or subnet mask are using DHCP, do not respond to devices. OL-8550-02 Catalyst 3750 ...and reads the configuration file. The factory-assigned default hostname is defined. This protocol consists of two components: one for delivering configuration parameters from a DHCP server to a device and a mechanism for centralized control and automatic assignment of the switch that you...
... 3-1 Default Switch Information Feature IP address and subnet mask Default gateway Enable secret password Hostname Telnet password Cluster command switch functionality Cluster name Default Setting No IP address or subnet mask are using DHCP, do not respond to devices. OL-8550-02 Catalyst 3750 ...and reads the configuration file. The factory-assigned default hostname is defined. This protocol consists of two components: one for delivering configuration parameters from a DHCP server to a device and a mechanism for centralized control and automatic assignment of the switch that you...
Configuration Guide
Page 103
...server chassis-id 0x12 ! Building configuration... OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-11 version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! ip default-gateway 172.20.137.1 ! ! If you have made... fail to copy the configuration file, see Appendix C, "Working with the Cisco IOS File System, Configuration Files, and Software Images." Chapter 3 Assigning the Switch IP Address and Default Gateway Checking and Saving the Running Configuration ! For more startup-config privileged ...
...server chassis-id 0x12 ! Building configuration... OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-11 version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! ip default-gateway 172.20.137.1 ! ! If you have made... fail to copy the configuration file, see Appendix C, "Working with the Cisco IOS File System, Configuration Files, and Software Images." Chapter 3 Assigning the Switch IP Address and Default Gateway Checking and Saving the Running Configuration ! For more startup-config privileged ...
Configuration Guide
Page 165
...the cluster command switch is enabled if you enter the IP information by default. Note The Catalyst 1900 and Catalyst 2820 CLI is available only on the switch, SNMP is at the...and switch cluster, see the "Disabling Password Recovery" section on the cluster command switch. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 6-17 The Cisco IOS commands then operate as follows: ...the cluster member switch number (@esN, where N is accessed at privilege level 1 to control the forwarding of messages between the SNMP management station and the cluster member switches. Chapter ...
...the cluster command switch is enabled if you enter the IP information by default. Note The Catalyst 1900 and Catalyst 2820 CLI is available only on the switch, SNMP is at the...and switch cluster, see the "Disabling Password Recovery" section on the cluster command switch. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 6-17 The Cisco IOS commands then operate as follows: ...the cluster member switch number (@esN, where N is accessed at privilege level 1 to control the forwarding of messages between the SNMP management station and the cluster member switches. Chapter ...
Configuration Guide
Page 206
... 9-3 • Protecting Enable and Enable Secret Passwords with TACACS+" section on page 9-10. The default is written to the configuration file. The password is encrypted before it is level 15 (privileged EXEC level). For more information, see the Cisco IOS Security Command Reference, Release 12.2. No password is defined. Catalyst 3750 Switch Software Configuration Guide 9-2 OL...
... 9-3 • Protecting Enable and Enable Secret Passwords with TACACS+" section on page 9-10. The default is written to the configuration file. The password is encrypted before it is level 15 (privileged EXEC level). For more information, see the Cisco IOS Security Command Reference, Release 12.2. No password is defined. Catalyst 3750 Switch Software Configuration Guide 9-2 OL...
Configuration Guide
Page 207
... password prompt. Enter ?123. Return to 25 alphanumeric characters. Verify your entries. (Optional) Save your entries in effect simultaneously. OL-8550-02 Catalyst 3750... Access to Privileged EXEC Commands Setting or Changing a Static Enable Password The enable password controls access to l1u2c3k4y5. Both commands accomplish the same thing; We recommend...password: Step 1 Step 2 Command configure terminal enable password password Step 3 Step 4 Step 5 end show running-config copy running-config startup-config Purpose Enter global configuration mode. By default, no enable password...
... password prompt. Enter ?123. Return to 25 alphanumeric characters. Verify your entries. (Optional) Save your entries in effect simultaneously. OL-8550-02 Catalyst 3750... Access to Privileged EXEC Commands Setting or Changing a Static Enable Password The enable password controls access to l1u2c3k4y5. Both commands accomplish the same thing; We recommend...password: Step 1 Step 2 Command configure terminal enable password password Step 3 Step 4 Step 5 end show running-config copy running-config startup-config Purpose Enter global configuration mode. By default, no enable password...
Configuration Guide
Page 208
The string cannot start with a number, is available. By default, no password is defined. • (Optional) For encryption-type, only type 5, a Cisco proprietary encryption algorithm, is case sensitive, and allows spaces but ignores leading spaces. For more ...cannot recover a lost encrypted password by any method. (Optional) Encrypt the password when the password is defined or when the configuration is 15 (privileged EXEC mode privileges). • For password, specify a string from being readable in the configuration file. Catalyst 3750 Switch Software Configuration Guide...
The string cannot start with a number, is available. By default, no password is defined. • (Optional) For encryption-type, only type 5, a Cisco proprietary encryption algorithm, is case sensitive, and allows spaces but ignores leading spaces. For more ...cannot recover a lost encrypted password by any method. (Optional) Encrypt the password when the password is defined or when the configuration is 15 (privileged EXEC mode privileges). • For password, specify a string from being readable in the configuration file. Catalyst 3750 Switch Software Configuration Guide...
Configuration Guide
Page 209
...Cisco IOS image, but the configuration file (config.text) and the VLAN database file (vlan.dat) are deleted. Verify the configuration by disabling part of the configuration file on page 43-3. Note Disabling password...shows how to configure the encrypted password $1$FaD0$Xyti5Rkls3LoyxzS8 for privilege level 2: Switch(config)# enable secret level 2 5 $1$FaD0$Xyti5Rkls3LoyxzS8 Disabling Password Recovery By default, any user. If the ...password, but it is not part of the configuration file on a secure server. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 9-5
...Cisco IOS image, but the configuration file (config.text) and the VLAN database file (vlan.dat) are deleted. Verify the configuration by disabling part of the configuration file on page 43-3. Note Disabling password...shows how to configure the encrypted password $1$FaD0$Xyti5Rkls3LoyxzS8 for privilege level 2: Switch(config)# enable secret level 2 5 $1$FaD0$Xyti5Rkls3LoyxzS8 Disabling Password Recovery By default, any user. If the ...password, but it is not part of the configuration file on a secure server. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 9-5
Configuration Guide
Page 1117
... the switch through the console port or a Telnet session. Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Working with the username on the server...the same subnetwork if you want to view the valid username. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide C-13 You can enter the show users privileged EXEC...subnets. For more information, see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. Log into the switch through a Telnet session and you have a router to or...
... the switch through the console port or a Telnet session. Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Working with the username on the server...the same subnetwork if you want to view the valid username. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide C-13 You can enter the show users privileged EXEC...subnets. For more information, see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. Log into the switch through a Telnet session and you have a router to or...
Configuration Guide
Page 1119
...to which is required only if you . ip ftp username username (Optional) Change the default remote username. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide C-15 ip ftp password password (Optional) Change the default password. copy system:running-config Using FTP, store the switch running or startup configuration ftp:[[[//[... a file from or to write [switch2-confg]? Write file switch2-confg on the remote system. Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Working with TFTP. This step is connection-oriented.
...to which is required only if you . ip ftp username username (Optional) Change the default remote username. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide C-15 ip ftp password password (Optional) Change the default password. copy system:running-config Using FTP, store the switch running or startup configuration ftp:[[[//[... a file from or to write [switch2-confg]? Write file switch2-confg on the remote system. Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Working with TFTP. This step is connection-oriented.
Configuration Guide
Page 1130
...password (see the documentation for your FTP server. If you are accessing the switch through a Telnet session and you have a valid username, this username, create a new FTP username by using the ip ftp username username global configuration command. C-26 Catalyst... in NVRAM. Working with Software Images Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Before you begin..., see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. The switch and the FTP server must be used , and you...
...password (see the documentation for your FTP server. If you are accessing the switch through a Telnet session and you have a valid username, this username, create a new FTP username by using the ip ftp username username global configuration command. C-26 Catalyst... in NVRAM. Working with Software Images Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images Before you begin..., see Steps 4, 5, and 6). (Optional) Change the default remote username. (Optional) Change the default password. The switch and the FTP server must be used , and you...
Configuration Guide
Page 1132
... operate properly, do not rename image names. Working with Software Images Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images If you specify the /leave-old-sw,...default remote username. (Optional) Change the default password. Enter global configuration mode. The image is placed into the switch through the console port or a Telnet session. Log into a new directory named with the existing image. This step is properly configured by entering the delete /force /recursive filesystem:/file-url privileged EXEC command. C-28 Catalyst...
... operate properly, do not rename image names. Working with Software Images Appendix C Working with the Cisco IOS File System, Configuration Files, and Software Images If you specify the /leave-old-sw,...default remote username. (Optional) Change the default password. Enter global configuration mode. The image is placed into the switch through the console port or a Telnet session. Log into a new directory named with the existing image. This step is properly configured by entering the delete /force /recursive filesystem:/file-url privileged EXEC command. C-28 Catalyst...