Software Guide
Page 1
Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Software Release 8.1 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-7815486= Text Part Number: 78-15486-01
Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Software Release 8.1 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-7815486= Text Part Number: 78-15486-01
Software Guide
Page 2
...developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of California. Changing the Way We Work, Live, Play, and Learn, and iQuick Study are trademarks of Cisco Systems, Inc.; NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT...SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. and certain other company. (0304R) Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Copyright © 2000-2003, Cisco Systems, Inc. Copyright © 1981, Regents of the University of the UNIX operating system....
...developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of California. Changing the Way We Work, Live, Play, and Learn, and iQuick Study are trademarks of Cisco Systems, Inc.; NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT...SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. and certain other company. (0304R) Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Copyright © 2000-2003, Cisco Systems, Inc. Copyright © 1981, Regents of the University of the UNIX operating system....
Software Guide
Page 77
... is actively sending and receiving traffic with different port path costs, set the channel mode to full duplex. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-3 To get disabled, LACP does not remove the channel; A syslog message is detached from ... EtherChannels to reset to the default channel mode for LACP mode). • Enable all ports in an EtherChannel. If the port is part of a channel must use the show commands do not have a maximum of suspending a port, LACP PDU transmission (if any time,...
... is actively sending and receiving traffic with different port path costs, set the channel mode to full duplex. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-3 To get disabled, LACP does not remove the channel; A syslog message is detached from ... EtherChannels to reset to the default channel mode for LACP mode). • Enable all ports in an EtherChannel. If the port is part of a channel must use the show commands do not have a maximum of suspending a port, LACP PDU transmission (if any time,...
Software Guide
Page 110
...Catalyst 4006 switch to a Catalyst 4500 series switch, see the "Migrating a Supervisor Engine II from 1 to a Catalyst 4500 Series Switch" section on migrating your supervisor engine. Network fault tolerance is always enabled on a Catalyst 4006 switch; In large networks, having different VLAN-spanning tree instance assignments located in different parts... If the bridge priority of the Catalyst 4006 has been lowered administratively and you configure a set of bridges with 802.1D STP, 802.1w, the Rapid Spanning Tree Protocol (RSTP), and the Cisco PVST+ architecture. The bridge ID ...
...Catalyst 4006 switch to a Catalyst 4500 series switch, see the "Migrating a Supervisor Engine II from 1 to a Catalyst 4500 Series Switch" section on migrating your supervisor engine. Network fault tolerance is always enabled on a Catalyst 4006 switch; In large networks, having different VLAN-spanning tree instance assignments located in different parts... If the bridge priority of the Catalyst 4006 has been lowered administratively and you configure a set of bridges with 802.1D STP, 802.1w, the Rapid Spanning Tree Protocol (RSTP), and the Cisco PVST+ architecture. The bridge ID ...
Software Guide
Page 111
...are supported in MSTP as a subtree in the CST that is contained in another region, even if the MST regions are part of spanning tree called the Multiple Spanning Tree Protocol (MSTP). and so on any VLANs at the boundary of MSTIs in ...; MST provides interoperability with internal information about the MST region. - they are interconnected. IST connects all . 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-15 PortFast is local to adjacent SST bridges and MST regions. - Chapter 7 Configuring Spanning Tree...
...are supported in MSTP as a subtree in the CST that is contained in another region, even if the MST regions are part of spanning tree called the Multiple Spanning Tree Protocol (MSTP). and so on any VLANs at the boundary of MSTIs in ...; MST provides interoperability with internal information about the MST region. - they are interconnected. IST connects all . 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-15 PortFast is local to adjacent SST bridges and MST regions. - Chapter 7 Configuring Spanning Tree...
Software Guide
Page 112
...tree-connected active topology and assigns port roles to individual ports of the switch, depending on the port. RSTP provides the structure on page 7-46. While the Migration Delay timer is part of the spanning tree. Backup ports can transition to the physical topology...active topology. • An alternate port or backup port role excludes the port from the active topology. 7-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 For more connections to forwarding through an explicit handshake between them. Port ...
...tree-connected active topology and assigns port roles to individual ports of the switch, depending on the port. RSTP provides the structure on page 7-46. While the Migration Delay timer is part of the spanning tree. Backup ports can transition to the physical topology...active topology. • An alternate port or backup port role excludes the port from the active topology. 7-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 For more connections to forwarding through an explicit handshake between them. Port ...
Software Guide
Page 114
...a single spanning tree for each time you commit the MST configuration. 7-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 In a Catalyst -4500 series switch running MST, IST (instance 0) corresponds to 16 instances; MST Instances This ...release supports up to CST. MST Configuration MST configuration has three parts as follows: - Understanding How MST Works Chapter...
...a single spanning tree for each time you commit the MST configuration. 7-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 In a Catalyst -4500 series switch running MST, IST (instance 0) corresponds to 16 instances; MST Instances This ...release supports up to CST. MST Configuration MST configuration has three parts as follows: - Understanding How MST Works Chapter...
Software Guide
Page 191
... updates from a neighbor in the "VTP Version 3 Authentication" section on page 9-13). In Figure 9-4, the Cisco VTP domain is partitioned in groups following the update of the network accepts it passes the optional authentication scheme that ...part of the same domain. A VTP version 3 switch only accepts a superior configuration that is described in the same domain. As in VTP version 1 and VTP version 2, the switches that do not exchange database information even though they receive (provided that it . 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches...
... updates from a neighbor in the "VTP Version 3 Authentication" section on page 9-13). In Figure 9-4, the Cisco VTP domain is partitioned in groups following the update of the network accepts it passes the optional authentication scheme that ...part of the same domain. A VTP version 3 switch only accepts a superior configuration that is described in the same domain. As in VTP version 1 and VTP version 2, the switches that do not exchange database information even though they receive (provided that it . 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches...
Software Guide
Page 192
...Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 In VTP version 3, you manually designate it as the new primary server. Understanding How VTP Version 3 Works Figure 9-4 VTP Version 3: Partitioned VTP Domain Domain Cisco Primary Server X Domain Cisco Primary ... you are the result of a misconfiguration or an independent configuration of a temporarily disconnected part of the domain. For information on page 9-16. If a new switch is specific to reconfigure partitioned VTP domains, see the "Reconfiguring a Partitioned VTP Domain"...
...Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 In VTP version 3, you manually designate it as the new primary server. Understanding How VTP Version 3 Works Figure 9-4 VTP Version 3: Partitioned VTP Domain Domain Cisco Primary Server X Domain Cisco Primary ... you are the result of a misconfiguration or an independent configuration of a temporarily disconnected part of the domain. For information on page 9-16. If a new switch is specific to reconfigure partitioned VTP domains, see the "Reconfiguring a Partitioned VTP Domain"...
Software Guide
Page 194
...in RAM (not NVRAM). When a VTP client boots, it needs to back up the configuration that has a configuration in the VTP domain. This NVRAM is part of the running VTP version 3 have the following common characteristics: • They only accept VTP packets from the same VTP domain. • If they do... immediately stores the information that is used in an instance to RAM, immediately transitions to a client, a VTP secondary server cannot modify the VTP configuration. 9-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
...in RAM (not NVRAM). When a VTP client boots, it needs to back up the configuration that has a configuration in the VTP domain. This NVRAM is part of the running VTP version 3 have the following common characteristics: • They only accept VTP packets from the same VTP domain. • If they do... immediately stores the information that is used in an instance to RAM, immediately transitions to a client, a VTP secondary server cannot modify the VTP configuration. 9-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
Software Guide
Page 205
... port is disabled on the port are not part of the VTP domain and do not respond ... Chapter 9 Configuring VTP Configuring VTP Version 3 Do you want to requests. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 9-29 To disable VTP on a per-port basis, perform this... to show vtp domain Version : running VTP3 Domain Name : server Notifications: disabled Password : configured (hidden) Switch ID : 00d0.004c.1800 Feature Mode Revision Primary ID Primary Description VLAN Primary Server 1 00d0.004c.1800 UNKNOWN...
... port is disabled on the port are not part of the VTP domain and do not respond ... Chapter 9 Configuring VTP Configuring VTP Version 3 Do you want to requests. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 9-29 To disable VTP on a per-port basis, perform this... to show vtp domain Version : running VTP3 Domain Name : server Notifications: disabled Password : configured (hidden) Switch ID : 00d0.004c.1800 Feature Mode Revision Primary ID Primary Description VLAN Primary Server 1 00d0.004c.1800 UNKNOWN...
Software Guide
Page 322
... for configuring unicast flood blocking: • Only Ethernet ports can block unicast flood traffic. • If the Ethernet port is part of an IPX network, you must manually enter a static CAM entry in privileged mode: Task Enable unicast flood blocking on the ... • You cannot configure a port channel on a trunk port. Command set port unicast-flood mod/port disable 17-2 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Note The port disables unicast flooding once the MAC address limit is given priority ...
... for configuring unicast flood blocking: • Only Ethernet ports can block unicast flood traffic. • If the Ethernet port is part of an IPX network, you must manually enter a static CAM entry in privileged mode: Task Enable unicast flood blocking on the ... • You cannot configure a port channel on a trunk port. Command set port unicast-flood mod/port disable 17-2 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Note The port disables unicast flooding once the MAC address limit is given priority ...
Software Guide
Page 325
...to work normally when you do not specify the mask for the IP address, the IP address is part of incoming packets, while the bits set to the switch from unauthorized source IP addresses are not checked. Multiple access attempts from unauthorized IP addresses receive no ...IP address of the SNMP permit list, Telnet permit list, or both the SNMP and Telnet permit lists. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 18-1 You can configure up to both lists. This process allows wildcard addresses to zero are ...
...to work normally when you do not specify the mask for the IP address, the IP address is part of incoming packets, while the bits set to the switch from unauthorized source IP addresses are not checked. Multiple access attempts from unauthorized IP addresses receive no ...IP address of the SNMP permit list, Telnet permit list, or both the SNMP and Telnet permit lists. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 18-1 You can configure up to both lists. This process allows wildcard addresses to zero are ...
Software Guide
Page 382
...to SNMPv3. set snmp engineid engineid name for the system default part, which maps community strings of previous versions of SNMP to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command Reference. Configure the MIB views. The switch supports up to a target. set snmp community {access_type} [... a new user. set snmp access [-hex] {groupname} {security-model v3} {noauthentication | authentication | privacy} [read -write-all) 24-14 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
...to SNMPv3. set snmp engineid engineid name for the system default part, which maps community strings of previous versions of SNMP to the Catalyst 4500 Series, Catalyst 2948G, and Catalyst 2980G Switches Command Reference. Configure the MIB views. The switch supports up to a target. set snmp community {access_type} [... a new user. set snmp access [-hex] {groupname} {security-model v3} {noauthentication | authentication | privacy} [read -write-all) 24-14 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
Software Guide
Page 447
... or device. You can continue through multiple iterations until authentication either passes or fails. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-3 TACACS+ works with a privilege level; This challenge-response process can... device and a centralized database to ensure reliable delivery and encrypt all part of 15 can provide authentication, authorization, and accounting functions. Chapter 30 Configuring Switch Access Using AAA Understanding How Authentication Works Understanding How Local User Authentication ...
... or device. You can continue through multiple iterations until authentication either passes or fails. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 30-3 TACACS+ works with a privilege level; This challenge-response process can... device and a centralized database to ensure reliable delivery and encrypt all part of 15 can provide authentication, authorization, and accounting functions. Chapter 30 Configuring Switch Access Using AAA Understanding How Authentication Works Understanding How Local User Authentication ...
Software Guide
Page 486
The Service-Type attribute in to privileged mode if authentication succeeds. 30-42 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 This attribute is part of the commands listed above. When you log in using RADIUS authentication and you do not have Administrative/Shell (6) Service-Type access, the NAS...
The Service-Type attribute in to privileged mode if authentication succeeds. 30-42 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 This attribute is part of the commands listed above. When you log in using RADIUS authentication and you do not have Administrative/Shell (6) Service-Type access, the NAS...
Software Guide
Page 540
...operating in text file configuration mode, most cases requires less space, NVRAM is a good place to text. Note VLAN commands are not saved as part of commands that are written only to Flash memory. To set to server. This example shows how to configure the system to configure various features.... for the system to store the file. show config mode Save the text file configuration. Command dir [[m/]device:][filename] dir [[m/]device:][filename] deleted 34-2 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
...operating in text file configuration mode, most cases requires less space, NVRAM is a good place to text. Note VLAN commands are not saved as part of commands that are written only to Flash memory. To set to server. This example shows how to configure the system to configure various features.... for the system to store the file. show config mode Save the text file configuration. Command dir [[m/]device:][filename] dir [[m/]device:][filename] deleted 34-2 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01
Software Guide
Page 584
... European Computer Manufacturers Association electrically erasable programmable read-only memory Electronic Industries Association Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 A-2 78-15486-01 Appendix A Acronyms CDDI ...Cisco Discovery Protocol Cisco Group Management Protocol command-line interface Common Open Policy Service class of service Cyclic Redundancy Check Concentrator Relay Function Data Country Code Digital Equipment Corporation domain-specific part format identifier Dynamic Host Configuration Protocol dynamic inter-switch...
... European Computer Manufacturers Association electrically erasable programmable read-only memory Electronic Industries Association Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 A-2 78-15486-01 Appendix A Acronyms CDDI ...Cisco Discovery Protocol Cisco Group Management Protocol command-line interface Common Open Policy Service class of service Cyclic Redundancy Check Concentrator Relay Function Data Country Code Digital Equipment Corporation domain-specific part format identifier Dynamic Host Configuration Protocol dynamic inter-switch...
Software Guide
Page 585
... to the home General Attribute Registration Protocol Gigabit Interface Converter GARP Multicast Registration Protocol Gigabit Switch Platform GARP VLAN Registration Protocol half duplex International Code Designator Internet Control Message Protocol Initial Domain Part Internet Group Management Protocol Integrated Local Management Interface initial microprogram load Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 A-3
... to the home General Attribute Registration Protocol Gigabit Interface Converter GARP Multicast Registration Protocol Gigabit Switch Platform GARP VLAN Registration Protocol half duplex International Code Designator Internet Control Message Protocol Initial Domain Part Internet Group Management Protocol Integrated Local Management Interface initial microprogram load Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 A-3