Configuration Guide
Page 9
...P T E R Managing the ARP Table 7-27 Configuring SDM Templates 8-1 Understanding the SDM Templates 8-1 Dual IPv4 and IPv6 SDM Templates 8-2 SDM Templates and Switch Stacks 8-3 Configuring the Switch SDM Template 8-4 Default SDM Template 8-5 SDM Template ...for a Command 9-8 Changing the Default Privilege Level for Lines 9-9 Logging into and Exiting a Privilege Level 9-9 Controlling Switch Access with TACACS+ 9-10 Understanding TACACS+ 9-10 TACACS+ Operation 9-12 Configuring TACACS+ 9-12 Default TACACS+... Configuration 9-17 OL-8550-02 Catalyst 3750 Switch Software Configuration Guide ix
...P T E R Managing the ARP Table 7-27 Configuring SDM Templates 8-1 Understanding the SDM Templates 8-1 Dual IPv4 and IPv6 SDM Templates 8-2 SDM Templates and Switch Stacks 8-3 Configuring the Switch SDM Template 8-4 Default SDM Template 8-5 SDM Template ...for a Command 9-8 Changing the Default Privilege Level for Lines 9-9 Logging into and Exiting a Privilege Level 9-9 Controlling Switch Access with TACACS+ 9-10 Understanding TACACS+ 9-10 TACACS+ Operation 9-12 Configuring TACACS+ 9-12 Default TACACS+... Configuration 9-17 OL-8550-02 Catalyst 3750 Switch Software Configuration Guide ix
Configuration Guide
Page 32
... Guidelines 35-83 Enabling PBR 35-84 Filtering Routing Information 35-86 Setting Passive Interfaces 35-86 Controlling Advertising and Processing in Routing Updates 35-87 Filtering Sources of Routing Information 35-87 Managing Authentication ...IPv6 Configuration 36-11 Configuring IPv6 Addressing and Enabling IPv6 Routing 36-11 Configuring IPv4 and IPv6 Protocol Stacks 36-13 Configuring IPv6 ICMP Rate Limiting 36-15 Configuring CEF and dCEF for IPv6 36-15 Configuring Static Routing for IPv6 36-16 Configuring RIP for IPv6 36-18 Configuring OSPF for IPv6 36-20 Displaying IPv6 36-22 xxxii Catalyst...
... Guidelines 35-83 Enabling PBR 35-84 Filtering Routing Information 35-86 Setting Passive Interfaces 35-86 Controlling Advertising and Processing in Routing Updates 35-87 Filtering Sources of Routing Information 35-87 Managing Authentication ...IPv6 Configuration 36-11 Configuring IPv6 Addressing and Enabling IPv6 Routing 36-11 Configuring IPv4 and IPv6 Protocol Stacks 36-13 Configuring IPv6 ICMP Rate Limiting 36-15 Configuring CEF and dCEF for IPv6 36-15 Configuring Static Routing for IPv6 36-16 Configuring RIP for IPv6 36-18 Configuring OSPF for IPv6 36-20 Displaying IPv6 36-22 xxxii Catalyst...
Configuration Guide
Page 33
...MLD Done Messages and Immediate-Leave 37-4 Topology Change Notification Processing 37-5 MLD Snooping in Switch Stacks 37-5 Configuring IPv6 MLD Snooping 37-5 Default MLD Snooping Configuration 37-5 MLD Snooping Configuration Guidelines 37-6 Enabling or Disabling MLD Snooping ...IPv6 ACLs 38-4 Default IPv6 ACL Configuration 38-4 Interaction with Other Features 38-4 Creating IPv6 ACLs 38-5 Applying an IPv6 ACL to an Interface 38-7 Displaying IPv6 ACLs 38-8 Configuring HSRP and Enhanced Object Tracking 39-1 Understanding HSRP 39-1 Multiple HSRP 39-3 HSRP and Switch Stacks 39-4 OL-8550-02 Catalyst...
...MLD Done Messages and Immediate-Leave 37-4 Topology Change Notification Processing 37-5 MLD Snooping in Switch Stacks 37-5 Configuring IPv6 MLD Snooping 37-5 Default MLD Snooping Configuration 37-5 MLD Snooping Configuration Guidelines 37-6 Enabling or Disabling MLD Snooping ...IPv6 ACLs 38-4 Default IPv6 ACL Configuration 38-4 Interaction with Other Features 38-4 Creating IPv6 ACLs 38-5 Applying an IPv6 ACL to an Interface 38-7 Displaying IPv6 ACLs 38-8 Configuring HSRP and Enhanced Object Tracking 39-1 Understanding HSRP 39-1 Multiple HSRP 39-3 HSRP and Switch Stacks 39-4 OL-8550-02 Catalyst...
Configuration Guide
Page 53
... about the Catalyst 3750 switch software: • Features, page 1-1 • Default Settings After Initial Switch Configuration, page 1-12 • Network Configuration Examples, page 1-15 • Where to Go Next, page 1-27 Unless otherwise noted, the term switch refers to a standalone switch and to a switch stack. These features include access control lists (ACLs...
... about the Catalyst 3750 switch software: • Features, page 1-1 • Default Settings After Initial Switch Configuration, page 1-12 • Network Configuration Examples, page 1-15 • Where to Go Next, page 1-27 Unless otherwise noted, the term switch refers to a standalone switch and to a switch stack. These features include access control lists (ACLs...
Configuration Guide
Page 54
...services images. Managing communities, which are available only on IPv6 ACLs, see the release notes for - For full IPv6 support, including IPv6 routing and access control lists (ACLs), the advanced IP services image is supported in all Catalyst 3560 and 3750 images; For more information, see ...the switch online help. • Cisco Network Assistant (hereafter referred to make ...
...services images. Managing communities, which are available only on IPv6 ACLs, see the release notes for - For full IPv6 support, including IPv6 routing and access control lists (ACLs), the advanced IP services image is supported in all Catalyst 3560 and 3750 images; For more information, see ...the switch online help. • Cisco Network Assistant (hereafter referred to make ...
Configuration Guide
Page 56
..., routers, and servers • Port Aggregation Protocol (PAgP) and Link Aggregation Control Protocol (LACP) for automatic creation of EtherChannel links • Forwarding of Layer ... unknown Layer 2 unknown unicast, multicast, and bridged broadcast traffic • Cisco Group Management Protocol (CGMP) server support and Internet Group Management Protocol (IGMP...Listener Discovery (MLD) snooping to enable efficient distribution of IP Version 6 (IPv6) multicast data to clients and routers in a switched network. • Multicast...Catalyst 3750 Switch Software Configuration Guide 1-4 OL-8550-02
..., routers, and servers • Port Aggregation Protocol (PAgP) and Link Aggregation Control Protocol (LACP) for automatic creation of EtherChannel links • Forwarding of Layer ... unknown Layer 2 unknown unicast, multicast, and bridged broadcast traffic • Cisco Group Management Protocol (CGMP) server support and Internet Group Management Protocol (IGMP...Listener Discovery (MLD) snooping to enable efficient distribution of IP Version 6 (IPv6) multicast data to clients and routers in a switched network. • Multicast...Catalyst 3750 Switch Software Configuration Guide 1-4 OL-8550-02
Configuration Guide
Page 60
... headers • Source and destination MAC-based ACLs for filtering non-IP traffic • IPv6 ACLs to be authenticated using a web browser • MAC authentication bypass (MAB) aging... both a data device and a voice device, such as an IP phone (Cisco or non-Cisco), to independently authenticate on the switch by filtering traffic based on the DHCP snooping...enabled switch port - VLAN assignment for controlling access to a specified VLAN - Port security for restricting IEEE 802.1x-authenticated users to IEEE 802.1x ports Catalyst 3750 Switch Software Configuration Guide 1-8 ...
... headers • Source and destination MAC-based ACLs for filtering non-IP traffic • IPv6 ACLs to be authenticated using a web browser • MAC authentication bypass (MAB) aging... both a data device and a voice device, such as an IP phone (Cisco or non-Cisco), to independently authenticate on the switch by filtering traffic based on the DHCP snooping...enabled switch port - VLAN assignment for controlling access to a specified VLAN - Port security for restricting IEEE 802.1x-authenticated users to IEEE 802.1x ports Catalyst 3750 Switch Software Configuration Guide 1-8 ...
Configuration Guide
Page 63
... for forwarding UDP broadcasts, including IP address requests, from DHCP clients • IPv6 unicast routing capability for forwarding IPv6 traffic through configured interfaces (requires the advanced IP services image) • Nonstop...network path information • Equal-cost routing for load balancing and redundancy • Internet Control Message Protocol (ICMP) and ICMP Router Discovery Protocol (IRDP) for using router advertisement and...the IP services image) - OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 1-11 Enhanced IGRP (EIGRP) (requires the IP services image) -
... for forwarding UDP broadcasts, including IP address requests, from DHCP clients • IPv6 unicast routing capability for forwarding IPv6 traffic through configured interfaces (requires the advanced IP services image) • Nonstop...network path information • Equal-cost routing for load balancing and redundancy • Internet Control Message Protocol (ICMP) and ICMP Router Discovery Protocol (IRDP) for using router advertisement and...the IP services image) - OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 1-11 Enhanced IGRP (EIGRP) (requires the IP services image) -
Configuration Guide
Page 93
... IP addresses and DHCP is specific to follow the procedures in this release and the Cisco IOS IP Command Reference, Volume 1 of automatic and manual methods. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-1 Understanding the Boot Process To start your switch, see...standalone switch and to create the initial switch configuration (for installing and powering on your switch, you plan to enable IP Version 6 (IPv6) forwarding on the switch and setting up the initial switch configuration (IP address, subnet mask, default gateway, secret and Telnet passwords, and...
... IP addresses and DHCP is specific to follow the procedures in this release and the Cisco IOS IP Command Reference, Volume 1 of automatic and manual methods. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 3-1 Understanding the Boot Process To start your switch, see...standalone switch and to create the initial switch configuration (for installing and powering on your switch, you plan to enable IP Version 6 (IPv6) forwarding on the switch and setting up the initial switch configuration (IP address, subnet mask, default gateway, secret and Telnet passwords, and...
Configuration Guide
Page 138
... master or to any other stack member. Understanding Switch Stacks Chapter 5 Managing Switch Stacks • "IP Routing and Switch Stacks" section on page 35-3 • "IPv6 and Switch Stacks" section on page 36-7 • "HSRP and Switch Stacks" section on page 39-4 • "Multicast Routing and Switch Stacks" section on page... Shell (SSH) connectivity to the Switch Stack Through an IP Address The switch stack is running a noncryptographic version of one or more stack members. 5-16 Catalyst 3750 Switch Software Configuration Guide OL-8550-02
... master or to any other stack member. Understanding Switch Stacks Chapter 5 Managing Switch Stacks • "IP Routing and Switch Stacks" section on page 35-3 • "IPv6 and Switch Stacks" section on page 36-7 • "HSRP and Switch Stacks" section on page 39-4 • "Multicast Routing and Switch Stacks" section on page... Shell (SSH) connectivity to the Switch Stack Through an IP Address The switch stack is running a noncryptographic version of one or more stack members. 5-16 Catalyst 3750 Switch Software Configuration Guide OL-8550-02
Configuration Guide
Page 196
...and ACLs for IPv4; For more information about IPv6 and how to support IP Version 6 (IPv6). and Layer 2, routing, and ACLs for IPv6 on desktop switches (all Catalyst 3750 switches except Catalyst 3750-12S). • Desktop dual IPv4 and IPv6 VLAN template-supports basic Layer 2, multicast, ...ACLs for IPv4, and basic Layer 2 and ACLs for IPv6 on the switch. Dual IPv4 and IPv6 SDM Templates You can select SDM templates to configure IPv6 routing, see Chapter 36, "Configuring IPv6 Unicast Routing." Catalyst 3750 Switch Software Configuration Guide 8-2 OL-8550-02 The software...
...and ACLs for IPv4; For more information about IPv6 and how to support IP Version 6 (IPv6). and Layer 2, routing, and ACLs for IPv6 on desktop switches (all Catalyst 3750 switches except Catalyst 3750-12S). • Desktop dual IPv4 and IPv6 VLAN template-supports basic Layer 2, multicast, ...ACLs for IPv4, and basic Layer 2 and ACLs for IPv6 on the switch. Dual IPv4 and IPv6 SDM Templates You can select SDM templates to configure IPv6 routing, see Chapter 36, "Configuring IPv6 Unicast Routing." Catalyst 3750 Switch Software Configuration Guide 8-2 OL-8550-02 The software...
Configuration Guide
Page 197
... template-supports Layer 2, multicast, routing (including policy-based routing), QoS, and ACLs for IPv6 on Catalyst 3750-12S switches. and Layer 2, routing, and ACLs for IPv6 on Catalyst 3750-12S aggregator switches. • Aggregator dual IPv4 and IPv6 VLAN template-supports basic Layer 2, multicast, QoS, and ACLs for IPv4,and basic Layer 2 and ACLs for...
... template-supports Layer 2, multicast, routing (including policy-based routing), QoS, and ACLs for IPv6 on Catalyst 3750-12S switches. and Layer 2, routing, and ACLs for IPv6 on Catalyst 3750-12S aggregator switches. • Aggregator dual IPv4 and IPv6 VLAN template-supports basic Layer 2, multicast, QoS, and ACLs for IPv4,and basic Layer 2 and ACLs for...
Configuration Guide
Page 199
... and IPv6 template, a warning message is generated. • Using the dual stack templates results in less TCAM capacity allowed for each resource, so do not have routing enabled on switches intended for Layer 2 switching with no system resources are reserved for the Catalyst 3750-...12S is the default desktop template; OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 8-5 Chapter 8 Configuring SDM Templates Configuring the Switch SDM Template Default ...
... and IPv6 template, a warning message is generated. • Using the dual stack templates results in less TCAM capacity allowed for each resource, so do not have routing enabled on switches intended for Layer 2 switching with no system resources are reserved for the Catalyst 3750-...12S is the default desktop template; OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 8-5 Chapter 8 Configuring SDM Templates Configuring the Switch SDM Template Default ...
Configuration Guide
Page 200
...EXEC mode, follow these meanings: • access-Maximizes system resources for ACLs. • default-Gives balance to all functions.Visible on Catalyst 3750-12S switches to use with no sdm prefer command to set a desktop switch to the default desktop template or to set an ...aggregator switch to the default aggregator template.) • dual-ipv4-and-ipv6-Select a template that will become active after a reload. routing-Provide maximum usage for IPv4 and IPv6 routing, including IPv4 policy-based routing. - Catalyst 3750 Switch Software Configuration Guide 8-6 OL-8550-02
...EXEC mode, follow these meanings: • access-Maximizes system resources for ACLs. • default-Gives balance to all functions.Visible on Catalyst 3750-12S switches to use with no sdm prefer command to set a desktop switch to the default desktop template or to set an ...aggregator switch to the default aggregator template.) • dual-ipv4-and-ipv6-Select a template that will become active after a reload. routing-Provide maximum usage for IPv4 and IPv6 routing, including IPv4 policy-based routing. - Catalyst 3750 Switch Software Configuration Guide 8-6 OL-8550-02
Configuration Guide
Page 201
... routing Switch(config)# end Switch# reload Proceed with reload? [confirm] This example shows how to configure the desktop routing template on a Catalyst 3750-12S switch: Switch(config)# sdm prefer routing desktop Switch(config)# end Switch# reload Proceed with reload? [confirm] This example shows ...how to configure the IPv4-and-IPv6 default template on Catalyst 3750-12S aggregator switches. Chapter 8 Configuring SDM Templates Displaying the SDM Templates This is an example of an output display ...
... routing Switch(config)# end Switch# reload Proceed with reload? [confirm] This example shows how to configure the desktop routing template on a Catalyst 3750-12S switch: Switch(config)# sdm prefer routing desktop Switch(config)# end Switch# reload Proceed with reload? [confirm] This example shows ...how to configure the IPv4-and-IPv6 default template on Catalyst 3750-12S aggregator switches. Chapter 8 Configuring SDM Templates Displaying the SDM Templates This is an example of an output display ...
Configuration Guide
Page 203
... command entered on a desktop switch: Switch# show sdm prefer dual-ipv4-and-ipv6 default "desktop IPv4 and IPv6 default" template: The selected template optimizes the resources in the switch to support this level of IPv6 security aces: 510 OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 8-9 number of unicast mac addresses: 2K number...
... command entered on a desktop switch: Switch# show sdm prefer dual-ipv4-and-ipv6 default "desktop IPv4 and IPv6 default" template: The selected template optimizes the resources in the switch to support this level of IPv6 security aces: 510 OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 8-9 number of unicast mac addresses: 2K number...
Configuration Guide
Page 545
...For information about MLD snooping, see the switch command reference for this release and the "IP Multicast Routing Commands" section in the Cisco IOS IP Command Reference, Volume 3 of these sections: • Understanding IGMP Snooping, page 24-2 • Configuring IGMP Snooping,... and a switch stack. It also includes procedures for controlling multicast group membership by using IGMP filtering and procedures for IPv4 traffic. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 24-1 Note For IP Version 6 (IPv6) traffic, Multicast Listener Discovery (MLD) snooping performs the...
...For information about MLD snooping, see the switch command reference for this release and the "IP Multicast Routing Commands" section in the Cisco IOS IP Command Reference, Volume 3 of these sections: • Understanding IGMP Snooping, page 24-2 • Configuring IGMP Snooping,... and a switch stack. It also includes procedures for controlling multicast group membership by using IGMP filtering and procedures for IPv4 traffic. OL-8550-02 Catalyst 3750 Switch Software Configuration Guide 24-1 Note For IP Version 6 (IPv6) traffic, Multicast Listener Discovery (MLD) snooping performs the...
Configuration Guide
Page 671
...the switch compares the fields in the packet against the conditions in the "IP Addressing and Services" chapter of the Cisco IOS IP Configuration Guide, Release 12.2, and the Cisco IOS IP Command Reference, Volume 1 of these sections: • Understanding ACLs, page 32-1 • Configuring IPv4... switch and a switch stack. Note Information in this release, see Chapter 38, "Configuring IPv6 ACLs." For information about IP ACLs is received on the Catalyst 3750 switch by using access control lists (ACLs), which in commands and tables are no conditions match, the switch rejects the...
...the switch compares the fields in the packet against the conditions in the "IP Addressing and Services" chapter of the Cisco IOS IP Configuration Guide, Release 12.2, and the Cisco IOS IP Command Reference, Volume 1 of these sections: • Understanding ACLs, page 32-1 • Configuring IPv4... switch and a switch stack. Note Information in this release, see Chapter 38, "Configuring IPv6 ACLs." For information about IP ACLs is received on the Catalyst 3750 switch by using access control lists (ACLs), which in commands and tables are no conditions match, the switch rejects the...
Configuration Guide
Page 714
...CoS values. QoS supports the use congestion-management and congestion-avoidance techniques to provide preferential treatment. Note IPv6 QoS is in 802.1Q frames except for high priority. • Prioritization bits in Layer 2 ...frames: Layer 2 Inter-Switch Link (ISL) frame headers have a 2-byte Tag Control Information field that each packet is based on a best-effort delivery basis, which are backward-... configure the QoS feature, you can also be carried in this release. 33-2 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 On ports configured as Layer 2 802...
...CoS values. QoS supports the use congestion-management and congestion-avoidance techniques to provide preferential treatment. Note IPv6 QoS is in 802.1Q frames except for high priority. • Prioritization bits in Layer 2 ...frames: Layer 2 Inter-Switch Link (ISL) frame headers have a 2-byte Tag Control Information field that each packet is based on a best-effort delivery basis, which are backward-... configure the QoS feature, you can also be carried in this release. 33-2 Catalyst 3750 Switch Software Configuration Guide OL-8550-02 On ports configured as Layer 2 802...
Configuration Guide
Page 821
A switch stack operates and appears as the enhanced multilayer image [EMI]). For information about configuring IPv6 on the Catalyst 3750 switch. Note If the switch stack is running the advanced IP services image, you must have the IP services image ...and other routing protocols, you can also enable IP Version 6 (IPv6) unicast routing and configure interfaces to forward IPv6 traffic in this chapter, see Chapter 36, "Configuring IPv6 Unicast Routing." For more detailed IP unicast configuration information, see the Cisco IOS IP Configuration Guide, Release 12.2 For complete syntax and ...
A switch stack operates and appears as the enhanced multilayer image [EMI]). For information about configuring IPv6 on the Catalyst 3750 switch. Note If the switch stack is running the advanced IP services image, you must have the IP services image ...and other routing protocols, you can also enable IP Version 6 (IPv6) unicast routing and configure interfaces to forward IPv6 traffic in this chapter, see Chapter 36, "Configuring IPv6 Unicast Routing." For more detailed IP unicast configuration information, see the Cisco IOS IP Configuration Guide, Release 12.2 For complete syntax and ...