Software Guide
Page 24
...how to configure Remote Monitoring (RMON) on Ethernet, Fast Ethernet, and Gigabit Ethernet ports. Configuring RMON Describes how to configure protocol filtering on the switch. Configuring VLANs Describes how to configure the Simple Network Management Protocol (SNMP) on the switch. Checking Status and Connectivity Describes how to display information about modules and switch ports and how to configure quality of service (QoS). Configuring SNMP Describes how to configure VLANs and private VLANs on the switch. Configuring QoS Describes how to check connectivity using ping, Telnet...
...how to configure Remote Monitoring (RMON) on Ethernet, Fast Ethernet, and Gigabit Ethernet ports. Configuring RMON Describes how to configure protocol filtering on the switch. Configuring VLANs Describes how to configure the Simple Network Management Protocol (SNMP) on the switch. Checking Status and Connectivity Describes how to display information about modules and switch ports and how to configure quality of service (QoS). Configuring SNMP Describes how to configure VLANs and private VLANs on the switch. Configuring QoS Describes how to check connectivity using ping, Telnet...
Software Guide
Page 29
... restore service to help troubleshoot and resolve technical issues with Cisco products and technologies. To access the Cisco TAC website, go to this URL to this URL: http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 xxix Some services on the Cisco TAC website require a Cisco.com login ID and password. Two types of toll-free Cisco TAC telephone numbers...
... restore service to help troubleshoot and resolve technical issues with Cisco products and technologies. To access the Cisco TAC website, go to this URL to this URL: http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 xxix Some services on the Cisco TAC website require a Cisco.com login ID and password. Two types of toll-free Cisco TAC telephone numbers...
Software Guide
Page 36
... supervisor engine console port, refer to a specific module, port, or VLAN. To access the switch CLI through an EIA/TIA-232 (RS-232) cable. If the switch is already booted, press Enter to monitor the switch. Accessing the Switch CLI Chapter 2 Using the Command-Line Interface The Catalyst enterprise LAN switches are multi-module systems. Commands you enter from the CLI might apply to the entire system or to the hardware documentation for example, using a terminal emulation program on a PC or using set and clear commands.
... supervisor engine console port, refer to a specific module, port, or VLAN. To access the switch CLI through an EIA/TIA-232 (RS-232) cable. If the switch is already booted, press Enter to monitor the switch. Accessing the Switch CLI Chapter 2 Using the Command-Line Interface The Catalyst enterprise LAN switches are multi-module systems. Commands you enter from the CLI might apply to the entire system or to the hardware documentation for example, using a terminal emulation program on a PC or using set and clear commands.
Software Guide
Page 37
...-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 2-3 Switch CLI Command Modes The switch CLI supports two modes of the switch. (You must first set the IP address (and in order to use DNS host names. unix_host% telnet Catalyst_1 Trying 172.16.10.10... Chapter 2 Using the Command-Line Interface Accessing the Switch CLI Accessing the CLI Through Telnet Before you can use normal-mode commands to monitor the switch or enter privileged mode to change the system configuration. Cisco Systems Console Enter password: After...
...-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 2-3 Switch CLI Command Modes The switch CLI supports two modes of the switch. (You must first set the IP address (and in order to use DNS host names. unix_host% telnet Catalyst_1 Trying 172.16.10.10... Chapter 2 Using the Command-Line Interface Accessing the Switch CLI Accessing the CLI Through Telnet Before you can use normal-mode commands to monitor the switch or enter privileged mode to change the system configuration. Cisco Systems Console Enter password: After...
Software Guide
Page 38
... 2 Step 3 Connect to the switch CLI through the console port or using the wrong number of valid keywords and arguments for more information, see these steps: Step 1 Step 2 From normal mode, enter the enable command. in privileged mode. To see the "Accessing the Switch CLI" section on page 2-2). Accessing Help Chapter 2 Using the Command-Line Interface To enter normal command mode, follow these parameters, enter set ip ? If you enter a command using Telnet (for the command.
... 2 Step 3 Connect to the switch CLI through the console port or using the wrong number of valid keywords and arguments for more information, see these steps: Step 1 Step 2 From normal mode, enter the enable command. in privileged mode. To see the "Accessing the Switch CLI" section on page 2-2). Accessing Help Chapter 2 Using the Command-Line Interface To enter normal command mode, follow these parameters, enter set ip ? If you enter a command using Telnet (for the command.
Software Guide
Page 52
... Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-8 78-15486-01 When the SLIP connection is enabled and SLIP is attached on the switch. Set the console port SLIP address and the destination address of the attached host. Command telnet {host_name | ip_addr} enable set ip route default 10.1.1.1 Route added. Caution You must use the console port for the console port. Use Telnet to access the switch, enter privileged mode, and enter the slip detach command to restore the console port connection. Console> (enable) set interface...
... Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-8 78-15486-01 When the SLIP connection is enabled and SLIP is attached on the switch. Set the console port SLIP address and the destination address of the attached host. Command telnet {host_name | ip_addr} enable set ip route default 10.1.1.1 Route added. Caution You must use the console port for the console port. Use Telnet to access the switch, enter privileged mode, and enter the slip detach command to restore the console port connection. Console> (enable) set interface...
Software Guide
Page 54
... to DNS server table as primary server. 172.16.31.32 added to DNS server table as backup server. Renewing and Releasing a DHCP-Assigned IP Address Chapter 3 Configuring the Switch IP Address and Default Gateway Step 3 Step 4 Step 5 Step 6 Step 7 Task Command Add an entry for each switch in privileged mode: Task Renew the lease on a DHCP-assigned IP address. show interface address, subnet mask, and broadcast address are set interface sc0 0.0.0.0 Reset the switch. Release the...
... to DNS server table as primary server. 172.16.31.32 added to DNS server table as backup server. Renewing and Releasing a DHCP-Assigned IP Address Chapter 3 Configuring the Switch IP Address and Default Gateway Step 3 Step 4 Step 5 Step 6 Step 7 Task Command Add an entry for each switch in privileged mode: Task Renew the lease on a DHCP-assigned IP address. show interface address, subnet mask, and broadcast address are set interface sc0 0.0.0.0 Reset the switch. Release the...
Software Guide
Page 78
... used by IGMP multicast filtering, you removed a 1-port channel from spanning tree and then added it contains only one port in an EtherChannel. • An EtherChannel will not form if protocol filtering is set to spanning tree as a trunk, configure the same trunk mode on its channeling configuration and state, and the links are reset to reset. In software releases prior to 6.3(1), traffic was disrupted when you must set port channel command. • Do not configure the ports in a trunking...
... used by IGMP multicast filtering, you removed a 1-port channel from spanning tree and then added it contains only one port in an EtherChannel. • An EtherChannel will not form if protocol filtering is set to spanning tree as a trunk, configure the same trunk mode on its channeling configuration and state, and the links are reset to reset. In software releases prior to 6.3(1), traffic was disrupted when you must set port channel command. • Do not configure the ports in a trunking...
Software Guide
Page 260
... IP address for the backup VMPS server(s). show port [mod_num[/port_num]] This example shows how to specify the primary VMPS server and two backup VMPS servers, and verify the VMPS server specification: Console> (enable) set ports 1 to 3 on module 3 to dynamic mode, disable trunking port 1 on module 2 to make trunk ports or secure ports a dynamic port. Console> (enable) set vmps server 192.0.0.6 192.0.0.6 added to dynamic mode. Trunk mode set to VMPS table as primary domain server. Console> show vmps server VMPS Client Status: VMPS VQP Version: 1 Reconfirm...
... IP address for the backup VMPS server(s). show port [mod_num[/port_num]] This example shows how to specify the primary VMPS server and two backup VMPS servers, and verify the VMPS server specification: Console> (enable) set ports 1 to 3 on module 3 to dynamic mode, disable trunking port 1 on module 2 to make trunk ports or secure ports a dynamic port. Console> (enable) set vmps server 192.0.0.6 192.0.0.6 added to dynamic mode. Trunk mode set to VMPS table as primary domain server. Console> show vmps server VMPS Client Status: VMPS VQP Version: 1 Reconfirm...
Software Guide
Page 285
... specific hosts join or leave IP multicast groups. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 15-1 A CGMP/IGMP-capable IP multicast router sees all IGMP packets and can use CGMP, IGMP snooping, or GMRP to dynamically configure switch ports so that IP multicast traffic is described in IEEE 802.1p. Understanding Multicasting and Multicast Services Operation CGMP, IGMP snooping, and GMRP manage multicast traffic in this chapter, refer to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command...
... specific hosts join or leave IP multicast groups. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 15-1 A CGMP/IGMP-capable IP multicast router sees all IGMP packets and can use CGMP, IGMP snooping, or GMRP to dynamically configure switch ports so that IP multicast traffic is described in IEEE 802.1p. Understanding Multicasting and Multicast Services Operation CGMP, IGMP snooping, and GMRP manage multicast traffic in this chapter, refer to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command...
Software Guide
Page 300
Console> (enable) show multicast group CGMP enabled IGMP disabled 15-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Console> (enable) set cam {static | permanent} multicast_mac CAM table. Verify the configuration. Command set multicast router mod_num/port_num show multicast group [mac_addr] [vlan_id] This example shows how to configure multicast groups manually and verify the configuration (the asterisks indicate that the entry was manually configured): Console> (enable) set multicast router 3/1 Port ...
Console> (enable) show multicast group CGMP enabled IGMP disabled 15-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Console> (enable) set cam {static | permanent} multicast_mac CAM table. Verify the configuration. Command set multicast router mod_num/port_num show multicast group [mac_addr] [vlan_id] This example shows how to configure multicast groups manually and verify the configuration (the asterisks indicate that the entry was manually configured): Console> (enable) set multicast router 3/1 Port ...
Software Guide
Page 301
..., Catalyst 2980G Switches Software Configuration Guide-Release 8.1 15-17 Console> (enable) Disabling Multicast Group Entries To disable manually configured multicast group entries, perform this task in privileged mode: Task Disable a specific manually configured multicast router port. The administrator associates these tasks in privileged mode: Task Disable a multicast group entry from the CAM table: Console> (enable) clear cam 01-11-22-33-44-55 1 CAM entry cleared. Disable all VLANs that are available to disable a manually configured multicast router port entry: Console> (enable...
..., Catalyst 2980G Switches Software Configuration Guide-Release 8.1 15-17 Console> (enable) Disabling Multicast Group Entries To disable manually configured multicast group entries, perform this task in privileged mode: Task Disable a specific manually configured multicast router port. The administrator associates these tasks in privileged mode: Task Disable a multicast group entry from the CAM table: Console> (enable) clear cam 01-11-22-33-44-55 1 CAM entry cleared. Disable all VLANs that are available to disable a manually configured multicast router port entry: Console> (enable...
Software Guide
Page 378
...snmp access-list 101 All IP addresses associated with access clear snmp access-list access_number numbers. Display the interface alias. Command set snmp access-list 2 172.20.60.7 mask 255.255.255.0 Access number 2 has been updated with access numbers from the CLI Chapter 24 Configuring SNMP Console> (enable) set snmp access-list 2 172.20.60.7 Access number 2 has been updated with new IP Address 172.20.60.7 Console> (enable) set snmp ifalias {ifIndex} [ifAlias] show snmp ifalias [ifIndex] 24-10 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide...
...snmp access-list 101 All IP addresses associated with access clear snmp access-list access_number numbers. Display the interface alias. Command set snmp access-list 2 172.20.60.7 mask 255.255.255.0 Access number 2 has been updated with access numbers from the CLI Chapter 24 Configuring SNMP Console> (enable) set snmp access-list 2 172.20.60.7 Access number 2 has been updated with new IP Address 172.20.60.7 Console> (enable) set snmp ifalias {ifIndex} [ifAlias] show snmp ifalias [ifIndex] 24-10 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide...
Software Guide
Page 382
... configure SNMP from a Network Management System (NMS), refer to your NMS documentation (also see the "Using CiscoWorks2000" section on the SNMP commands that are supported by the Catalyst enterprise LAN switches, refer to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command Reference. Configure the RMON2 trap destination table from the NMS. Configuring SNMPv3 from the command-line interface (CLI), perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Step 8 Step 9 Task Command Set...
... configure SNMP from a Network Management System (NMS), refer to your NMS documentation (also see the "Using CiscoWorks2000" section on the SNMP commands that are supported by the Catalyst enterprise LAN switches, refer to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command Reference. Configure the RMON2 trap destination table from the NMS. Configuring SNMPv3 from the command-line interface (CLI), perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Step 8 Step 9 Task Command Set...
Software Guide
Page 423
... switch uses the power supply in power supply bay 1 (PS1) and ignores the power supply in power supply bay (PS2). Chapter 28 Power Management Understanding How Power Management Works on page 28-4 for a list of the maximum available power for chassis and inline power for each power supply. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 28-3 Modules are brought up first, followed by powered devices. • See Table 28-1 on the Catalyst 4500 Series Switches Redundant Mode...
... switch uses the power supply in power supply bay 1 (PS1) and ignores the power supply in power supply bay (PS2). Chapter 28 Power Management Understanding How Power Management Works on page 28-4 for a list of the maximum available power for chassis and inline power for each power supply. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 28-3 Modules are brought up first, followed by powered devices. • See Table 28-1 on the Catalyst 4500 Series Switches Redundant Mode...
Software Guide
Page 446
... is three (default) to log in to the switch. If the user fails to 43,200 seconds; The lockout (delay) time is also configurable from the CLI and SNMP with the set authentication login attempt command. (You would use the set authentication enable attempt command to set a delay time for accessing enable mode.) The configurable range is enabled together with the set authentication login lockout command. (You would use local authentication for console connections and RADIUS authentication for console and Telnet connections. If...
... is three (default) to log in to the switch. If the user fails to 43,200 seconds; The lockout (delay) time is also configurable from the CLI and SNMP with the set authentication login attempt command. (You would use the set authentication enable attempt command to set a delay time for accessing enable mode.) The configurable range is enabled together with the set authentication login lockout command. (You would use local authentication for console connections and RADIUS authentication for console and Telnet connections. If...
Software Guide
Page 457
... Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-13 You must reset the password after installing software release 5.4 or a later release to the privileged mode CLI. Enter your old password (press set enablepass Enter old password: Enter new password: Retype new password: Password changed . Enter your old password (press Return on a switch with no password configured), enter your new password, and reenter your new password. Command set enablepass This example shows how to set the login password on the switch: Console> (enable) set...
... Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-13 You must reset the password after installing software release 5.4 or a later release to the privileged mode CLI. Enter your old password (press set enablepass Enter old password: Enter new password: Retype new password: Password changed . Enter your old password (press Return on a switch with no password configured), enter your new password, and reenter your new password. Command set enablepass This example shows how to set the login password on the switch: Console> (enable) set...
Software Guide
Page 459
... 2 Verify the local user account. Console> (enable) show localusers This example shows how to reboot the switch. picard 15 Console> (enable) 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-15 You cannot recover the password if you are connected through the supervisor engine console port. Enter privileged mode using the enable command. When prompted for 30 seconds when you are connected to the console port. Enter and confirm your...
... 2 Verify the local user account. Console> (enable) show localusers This example shows how to reboot the switch. picard 15 Console> (enable) 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-15 You cannot recover the password if you are connected through the supervisor engine console port. Enter privileged mode using the enable command. When prompted for 30 seconds when you are connected to the console port. Enter and confirm your...
Software Guide
Page 480
... forwarding configuration. clear kerberos credentials forward 30-36 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 For example, Telnet prompts for a password. If you can configure the switch so that network service. Configuring Authentication Chapter 30 Configuring Switch Access Using AAA As an additional layer of authentication for that after users authenticate to it, these users can authenticate only to the remote server. To configure clients to forward user credentials as they connect to other services...
... forwarding configuration. clear kerberos credentials forward 30-36 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 For example, Telnet prompts for a password. If you can configure the switch so that network service. Configuring Authentication Chapter 30 Configuring Switch Access Using AAA As an additional layer of authentication for that after users authenticate to it, these users can authenticate only to the remote server. To configure clients to forward user credentials as they connect to other services...
Software Guide
Page 527
...engine and switch types, see a step-by cisco Systems, Inc. For examples that the new image boots when you reset the switch. cat4000.6-1-1.bin Flash device [bootflash]? y CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC CCCCCCCCCCCCCCCCCCC File has been copied successfully. Console> (enable) reset system This command will reset the system. y Console> (enable) 07/21/2000,13:51:39:SYS-5:System reset from []? This example shows a complete TFTP download procedure of a supervisor engine software image: Console> (enable) show version 1 Mod Port Model Serial...
...engine and switch types, see a step-by cisco Systems, Inc. For examples that the new image boots when you reset the switch. cat4000.6-1-1.bin Flash device [bootflash]? y CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC CCCCCCCCCCCCCCCCCCC File has been copied successfully. Console> (enable) reset system This command will reset the system. y Console> (enable) 07/21/2000,13:51:39:SYS-5:System reset from []? This example shows a complete TFTP download procedure of a supervisor engine software image: Console> (enable) show version 1 Mod Port Model Serial...