Software Configuration Guide
Page 9
...40 Configuring Optional STP Features 16-1 Understanding How PortFast Works 16-2 Understanding How BPDU Guard Works 16-2 Understanding How PortFast BPDU Filtering Works 16-2 Understanding How UplinkFast Works 16-3 Understanding How BackboneFast Works 16-4 Understanding How EtherChannel Guard Works 16-6 Understanding How... Root Guard Works 16-6 Understanding How Loop Guard Works 16-6 Enabling PortFast 16-8 Enabling PortFast BPDU Filtering 16-10 Enabling BPDU Guard 16-11 Enabling UplinkFast 16-12 Enabling BackboneFast 16-13 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E ix
...40 Configuring Optional STP Features 16-1 Understanding How PortFast Works 16-2 Understanding How BPDU Guard Works 16-2 Understanding How PortFast BPDU Filtering Works 16-2 Understanding How UplinkFast Works 16-3 Understanding How BackboneFast Works 16-4 Understanding How EtherChannel Guard Works 16-6 Understanding How... Root Guard Works 16-6 Understanding How Loop Guard Works 16-6 Enabling PortFast 16-8 Enabling PortFast BPDU Filtering 16-10 Enabling BPDU Guard 16-11 Enabling UplinkFast 16-12 Enabling BackboneFast 16-13 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E ix
Software Configuration Guide
Page 10
... Limiting of RPF Failures 18-12 Enabling CEF-Based Rate Limiting of RPF Failures 18-13 Enabling Shortcut-Consistency Checking 18-13 Configuring ACL-Based Filtering of RPF Failures 18-14 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E x 78-14064-04
... Limiting of RPF Failures 18-12 Enabling CEF-Based Rate Limiting of RPF Failures 18-13 Enabling Shortcut-Consistency Checking 18-13 Configuring ACL-Based Filtering of RPF Failures 18-14 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E x 78-14064-04
Software Configuration Guide
Page 14
... 25-6 Configuring 802.1X Port-Based Authentication 25-7 Enabling 802.1X Port-Based Authentication 25-7 Configuring Cisco 7600 Series Router-to-RADIUS-Server Communication 25-8 Enabling Periodic Reauthentication 25-10 Manually Reauthenticating the Client Connected... Layer 3 Protocol Filtering on Supervisor Engine 1 27-1 Understanding How Layer 3 Protocol Filtering Works 27-1 Configuring Layer 3 Protocol Filtering 27-2 Enabling Layer 3 Protocol Filtering 27-2 Configuring Layer 3 Protocol Filtering on a Layer 2 LAN Interface 27-3 Cisco 7600 Series Router Cisco IOS Software Configuration...
... 25-6 Configuring 802.1X Port-Based Authentication 25-7 Enabling 802.1X Port-Based Authentication 25-7 Configuring Cisco 7600 Series Router-to-RADIUS-Server Communication 25-8 Enabling Periodic Reauthentication 25-10 Manually Reauthenticating the Client Connected... Layer 3 Protocol Filtering on Supervisor Engine 1 27-1 Understanding How Layer 3 Protocol Filtering Works 27-1 Configuring Layer 3 Protocol Filtering 27-2 Enabling Layer 3 Protocol Filtering 27-2 Configuring Layer 3 Protocol Filtering on a Layer 2 LAN Interface 27-3 Cisco 7600 Series Router Cisco IOS Software Configuration...
Software Configuration Guide
Page 15
Contents 28 C H A P T E R 29 C H A P T E R 30 C H A P T E R 31 C H A P T E R 32 C H A P T E R 78-14064-04 Verifying Layer 3 Protocol Filtering Configuration 27-3 Configuring Traffic Storm Control 28-1 Understanding Traffic Storm Control 28-1 Default Traffic Storm Control Configuration 28-2 Enabling Traffic Storm Control 28-2 Displaying Traffic ... 31-5 Resetting Disabled LAN Interfaces 31-6 Configuring PFC QoS 32-1 Understanding How PFC QoS Works 32-1 Hardware Supported by PFC QoS 32-2 QoS Terminology 32-3 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E xv
Contents 28 C H A P T E R 29 C H A P T E R 30 C H A P T E R 31 C H A P T E R 32 C H A P T E R 78-14064-04 Verifying Layer 3 Protocol Filtering Configuration 27-3 Configuring Traffic Storm Control 28-1 Understanding Traffic Storm Control 28-1 Default Traffic Storm Control Configuration 28-2 Enabling Traffic Storm Control 28-2 Displaying Traffic ... 31-5 Resetting Disabled LAN Interfaces 31-6 Configuring PFC QoS 32-1 Understanding How PFC QoS Works 32-1 Hardware Supported by PFC QoS 32-2 QoS Terminology 32-3 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E xv
Software Configuration Guide
Page 17
Contents 34 C H A P T E R 35 C H A P T E R 78-14064-04 Configuring NDE Flow Filters 33-15 Displaying the NDE Configuration 33-17 Configuring Local SPAN and RSPAN 34-1 Understanding How Local SPAN and RSPAN Work 34-1 Local SPAN and ... WCCPv2 35-8 Excluding Traffic on a Specific Interface from Redirection 35-9 Registering a Router to a Multicast Address 35-9 Using Access Lists for a WCCP Service Group 35-10 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E xvii
Contents 34 C H A P T E R 35 C H A P T E R 78-14064-04 Configuring NDE Flow Filters 33-15 Displaying the NDE Configuration 33-17 Configuring Local SPAN and RSPAN 34-1 Understanding How Local SPAN and RSPAN Work 34-1 Local SPAN and ... WCCPv2 35-8 Excluding Traffic on a Specific Interface from Redirection 35-9 Registering a Router to a Multicast Address 35-9 Using Access Lists for a WCCP Service Group 35-10 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E xvii
Software Configuration Guide
Page 22
...configure IEEE 802.1X port-based authentication. Chapter 19 Configuring IP Unicast Layer 3 Describes how to configure Layer 3 protocol filtering Filtering on Supervisor Engine 1 on Supervisor Engine 2 switching for Supervisor Engine 2. Chapter 27 Configuring Layer 3 Protocol Describes how to... for Supervisor Engine 1. Chapter 30 Configuring CDP Describes how to configure denial of Service Protection Describes how to configure Cisco Discovery Protocol (CDP). Chapter 24 Configuring Denial of service protection. Chapter 22 Configuring RGMP Describes how to configure traffic...
...configure IEEE 802.1X port-based authentication. Chapter 19 Configuring IP Unicast Layer 3 Describes how to configure Layer 3 protocol filtering Filtering on Supervisor Engine 1 on Supervisor Engine 2 switching for Supervisor Engine 2. Chapter 27 Configuring Layer 3 Protocol Describes how to... for Supervisor Engine 1. Chapter 30 Configuring CDP Describes how to configure denial of Service Protection Describes how to configure Cisco Discovery Protocol (CDP). Chapter 24 Configuring Denial of service protection. Chapter 22 Configuring RGMP Describes how to configure traffic...
Software Configuration Guide
Page 176
... the allowed range of the LAN ports is not the same, the LAN ports do keyword before the EXEC mode command. 13-6 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 LAN ports with and without strict-priority queues. If you can enter EXEC mode ...a link failure and its traffic is transferred to one of the remaining ports in the EtherChannel. • An EtherChannel will not form if protocol filtering is set differently on all LAN ports in an EtherChannel. An EtherChannel supports the same allowed range of an EtherChannel. - If you apply the ...
... the allowed range of the LAN ports is not the same, the LAN ports do keyword before the EXEC mode command. 13-6 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 LAN ports with and without strict-priority queues. If you can enter EXEC mode ...a link failure and its traffic is transferred to one of the remaining ports in the EtherChannel. • An EtherChannel will not form if protocol filtering is set differently on all LAN ports in an EtherChannel. An EtherChannel supports the same allowed range of an EtherChannel. - If you apply the ...
Software Configuration Guide
Page 185
...priority (CoS) and the VLAN. The received customer traffic is then put into the appropriate customer VLAN. The router can provide only MAC-layer filtering for tunnel traffic. - This Ethertype 0x8100 traffic, with the received 802.1Q tag intact, is assigned. A tunnel can be identified in tunnel ...link between service-provider network devices, with the 802.1Q tag does not exceed the maximum frame size. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 14-3 The router can cross other network links and other network devices before reaching the ...
...priority (CoS) and the VLAN. The received customer traffic is then put into the appropriate customer VLAN. The router can provide only MAC-layer filtering for tunnel traffic. - This Ethertype 0x8100 traffic, with the received 802.1Q tag intact, is assigned. A tunnel can be identified in tunnel ...link between service-provider network devices, with the 802.1Q tag does not exceed the maximum frame size. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 14-3 The router can cross other network links and other network devices before reaching the ...
Software Configuration Guide
Page 186
...tunnel ports. Port Aggregation Protocol (PAgP) - Link Aggregation Control Protocol (LACP) • With Release 12.1(13)E and later releases, PortFast BPDU filtering is enabled. Because the Layer 3 packet within the Layer 2 frame cannot be identified, you must have tunnel ports. See the "Configuring Support...section on page 30-2). • To configure an EtherChannel as follows: Router(config-if)# spanning-tree portfast trunk 14-4 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 Because of the 802.1Q trunk port in the EtherChannel must configure ...
...tunnel ports. Port Aggregation Protocol (PAgP) - Link Aggregation Control Protocol (LACP) • With Release 12.1(13)E and later releases, PortFast BPDU filtering is enabled. Because the Layer 3 packet within the Layer 2 frame cannot be identified, you must have tunnel ports. See the "Configuring Support...section on page 30-2). • To configure an EtherChannel as follows: Router(config-if)# spanning-tree portfast trunk 14-4 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 Because of the 802.1Q trunk port in the EtherChannel must configure ...
Software Configuration Guide
Page 187
...inappropriately. If you must perform these tasks: Step 1 On all the service provider edge switches, PortFast BPDU filtering must be available for each switch. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 14-5 Step 2 Step 3 Step 4 At least one switch and ...802.1Q tunneling configuration: • Preconfiguration Tasks, page 14-5 • Configuring 802.1Q Tunnel Ports, page 14-6 • Configuring the Cisco 7600 Series Router to Tag Native VLAN Traffic, page 14-6 Caution Ensure that only the appropriate tunnel ports are in any VLAN used for ...
...inappropriately. If you must perform these tasks: Step 1 On all the service provider edge switches, PortFast BPDU filtering must be available for each switch. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 14-5 Step 2 Step 3 Step 4 At least one switch and ...802.1Q tunneling configuration: • Preconfiguration Tasks, page 14-5 • Configuring 802.1Q Tunnel Ports, page 14-6 • Configuring the Cisco 7600 Series Router to Tag Native VLAN Traffic, page 14-6 Caution Ensure that only the appropriate tunnel ports are in any VLAN used for ...
Software Configuration Guide
Page 200
... root bridge. Figure 15-3 Interface 2 in Blocking State Segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5692 BPDUs Data frames Port 2 Network management frames Blocking Segment frames A Layer 2 LAN port in ...so there is no exchange occurs, the forward delay timer expires, and the ports move to network management messages. 15-8 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 After initialization, a BPDU is the root until it exchanges BPDUs with ...
... root bridge. Figure 15-3 Interface 2 in Blocking State Segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5692 BPDUs Data frames Port 2 Network management frames Blocking Segment frames A Layer 2 LAN port in ...so there is no exchange occurs, the forward delay timer expires, and the ports move to network management messages. 15-8 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 After initialization, a BPDU is the root until it exchanges BPDUs with ...
Software Configuration Guide
Page 201
...state is no address database update.) • Receives BPDUs and directs them to network management messages. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-9 Figure 15-4 Interface 2 in Listening State All segment frames Forwarding Station ...addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding Data frames BPDUs Port 2 Network management ...
...state is no address database update.) • Receives BPDUs and directs them to network management messages. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-9 Figure 15-4 Interface 2 in Listening State All segment frames Forwarding Station ...addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding Data frames BPDUs Port 2 Network management ...
Software Configuration Guide
Page 202
...port in the learning state. Figure 15-5 Interface 2 in Learning State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding Station addresses Data frames BPDUs Port 2 Network management frames S5694 Learning All segment frames BPDU and network management frames A Layer... STP and IEEE 802.1s MST Learning State A Layer 2 LAN port in the learning state prepares to network management messages. 15-10 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04
...port in the learning state. Figure 15-5 Interface 2 in Learning State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding Station addresses Data frames BPDUs Port 2 Network management frames S5694 Learning All segment frames BPDU and network management frames A Layer... STP and IEEE 802.1s MST Learning State A Layer 2 LAN port in the learning state prepares to network management messages. 15-10 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04
Software Configuration Guide
Page 203
... from the learning state. Figure 15-6 Interface 2 in Forwarding State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5695 Station addresses BPDUs Port 2 Network management and data frames Forwarding All segment frames A Layer 2 LAN port in ...; Incorporates end station location information into its address database. • Receives BPDUs and directs them to network management messages. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-11
... from the learning state. Figure 15-6 Interface 2 in Forwarding State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5695 Station addresses BPDUs Port 2 Network management and data frames Forwarding All segment frames A Layer 2 LAN port in ...; Incorporates end station location information into its address database. • Receives BPDUs and directs them to network management messages. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-11
Software Configuration Guide
Page 204
...802.1Q trunks, the network devices maintain one instance of non-Cisco 802.1Q network devices. Figure 15-7 Interface 2 in Disabled State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5696 Data frames Port 2 Network ...For more information on the STP strategy for each VLAN allowed on the trunks. In a network of Cisco network devices connected through an 802.1Q trunk, the Cisco network device combines the STP instance of the 802.1Q VLAN of the trunk with the STP instance of...
...802.1Q trunks, the network devices maintain one instance of non-Cisco 802.1Q network devices. Figure 15-7 Interface 2 in Disabled State All segment frames Forwarding Station addresses Port 1 BPDUs Network management and data frames Filtering database System module Frame forwarding S5696 Data frames Port 2 Network ...For more information on the STP strategy for each VLAN allowed on the trunks. In a network of Cisco network devices connected through an 802.1Q trunk, the Cisco network device combines the STP instance of the 802.1Q VLAN of the trunk with the STP instance of...
Software Configuration Guide
Page 208
... r SST Region b r r F F/f = Forwarding B/b = Blocking R = Root Bridge r = Root port F F F FR F F MST Region FF F r F r r b SST Region B 8285 15-16 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 they are called M-trees. MST-to become the CST as the primary. Spanning tree information...MST regions are not available in MSTP as follows: - M-trees are referred to the same instance as follows: - BPDU filter and BPDU guard are supported in RSTP. - MST switches operate as MST instances (MSTIs). For private VLANs (PVLANs), secondary...
... r SST Region b r r F F/f = Forwarding B/b = Blocking R = Root Bridge r = Root port F F F FR F F MST Region FF F r F r r b SST Region B 8285 15-16 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 they are called M-trees. MST-to become the CST as the primary. Spanning tree information...MST regions are not available in MSTP as follows: - M-trees are referred to the same instance as follows: - BPDU filter and BPDU guard are supported in RSTP. - MST switches operate as MST instances (MSTIs). For private VLANs (PVLANs), secondary...
Software Configuration Guide
Page 209
...MST regions established by MST. • Loop prevention is root forwarding Edge port: no (trunk) port guard : none Link type: point-to-point (auto) bpdu filter: disable Boundary : boundary (PVST) bpdu guard : disable Bpdus sent 10, received 310 (default) (default) (default) Instance Role Sts Cost Prio.Nbr Vlans mapped 0...How IEEE 802.1s MST Works An MST region appears as an SST or pseudobridge to STP running MST. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-17 The root identifier and root cost are the same for all VLANs inside the ...
...MST regions established by MST. • Loop prevention is root forwarding Edge port: no (trunk) port guard : none Link type: point-to-point (auto) bpdu filter: disable Boundary : boundary (PVST) bpdu guard : disable Bpdus sent 10, received 310 (default) (default) (default) Instance Role Sts Cost Prio.Nbr Vlans mapped 0...How IEEE 802.1s MST Works An MST region appears as an SST or pseudobridge to STP running MST. 78-14064-04 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 15-17 The root identifier and root cost are the same for all VLANs inside the ...
Software Configuration Guide
Page 229
... 4/4 FastEthernet4/4 of MST00 is backup blocking Edge port:no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus sent 2, received 368 (default) (default) (default) Instance Role Sts Cost Prio.Nbr ...interface fastEthernet 4/4 FastEthernet4/4 of MST01 is backup blocking Edge port:no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus (MRecords) sent 2, received 364 (default) (default) (default) Instance Role Sts Cost Prio....
... 4/4 FastEthernet4/4 of MST00 is backup blocking Edge port:no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus sent 2, received 368 (default) (default) (default) Instance Role Sts Cost Prio.Nbr ...interface fastEthernet 4/4 FastEthernet4/4 of MST01 is backup blocking Edge port:no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus (MRecords) sent 2, received 364 (default) (default) (default) Instance Role Sts Cost Prio....
Software Configuration Guide
Page 230
...:MST01 EtherChannel misconfiguration guard is enabled Extended system ID is enabled Portfast is disabled by default PortFast BPDU Guard is disabled by default Portfast BPDU Filter is disabled by default Loopguard is disabled by default UplinkFast is disabled BackboneFast is disabled Pathcost method used is long Name Blocking Listening Learning Forwarding...
...:MST01 EtherChannel misconfiguration guard is enabled Extended system ID is enabled Portfast is disabled by default PortFast BPDU Guard is disabled by default Portfast BPDU Filter is disabled by default Loopguard is disabled by default UplinkFast is disabled BackboneFast is disabled Pathcost method used is long Name Blocking Listening Learning Forwarding...
Software Configuration Guide
Page 232
...a boundary role to a port when the switch to the MSTP mode if it no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus (MRecords) sent 125, received 1782 (default) (default) (default) Instance Role Sts Cost Prio.Nbr Vlans mapped ...whether the legacy switch has been removed from the link unless the legacy switch is connected has joined the region. 15-40 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 Configuring IEEE 802.1s MST Chapter 15 Configuring STP and IEEE 802.1s...
...a boundary role to a port when the switch to the MSTP mode if it no (default) port guard :none Link type:point-to-point (auto) bpdu filter:disable Boundary :internal bpdu guard :disable Bpdus (MRecords) sent 125, received 1782 (default) (default) (default) Instance Role Sts Cost Prio.Nbr Vlans mapped ...whether the legacy switch has been removed from the link unless the legacy switch is connected has joined the region. 15-40 Cisco 7600 Series Router Cisco IOS Software Configuration Guide-12.1E 78-14064-04 Configuring IEEE 802.1s MST Chapter 15 Configuring STP and IEEE 802.1s...