User Guide
Page 1
... module in this module, and to the host and is supported, see the release notes for the Cisco HWIC-4ESW and the Cisco HWIC-D-9ESW EtherSwitch Cards" section on a switch is routed through the router platform. To access Cisco Feature Navigator, go /cfn. An optional power module can also be configured as a stacking port to link to find...
... module in this module, and to the host and is supported, see the release notes for the Cisco HWIC-4ESW and the Cisco HWIC-D-9ESW EtherSwitch Cards" section on a switch is routed through the router platform. To access Cisco Feature Navigator, go /cfn. An optional power module can also be configured as a stacking port to link to find...
User Guide
Page 2
..., page 102 Prerequisites for EtherSwitch HWICs The following are using. • Use of the Cisco IOS T release, beginning with Release 12.3(8)T4 or later for Cisco HWIC-4ESW and Cisco HWIC-D-9ESW support. (See the Cisco IOS documentation.) Restrictions for EtherSwitch HWICs The following restrictions apply to the Cisco HWIC-4ESW and the Cisco HWIC-D-9ESW EtherSwitch HWICs: • No more than two Ethernet Switch HWICs or network modules may...
..., page 102 Prerequisites for EtherSwitch HWICs The following are using. • Use of the Cisco IOS T release, beginning with Release 12.3(8)T4 or later for Cisco HWIC-4ESW and Cisco HWIC-D-9ESW support. (See the Cisco IOS documentation.) Restrictions for EtherSwitch HWICs The following restrictions apply to the Cisco HWIC-4ESW and the Cisco HWIC-D-9ESW EtherSwitch HWICs: • No more than two Ethernet Switch HWICs or network modules may...
User Guide
Page 3
... Module. 3 Note Without this configuration and connection, duplications will occur in a single chassis. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards Prerequisites for Installing Two Ethernet Switch Network Modules in a Single Chassis Prerequisites for Installing Two Ethernet Switch Network Modules in a Single Chassis A maximum of any type are installed in the same chassis, the following configuration...
... Module. 3 Note Without this configuration and connection, duplications will occur in a single chassis. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards Prerequisites for Installing Two Ethernet Switch Network Modules in a Single Chassis Prerequisites for Installing Two Ethernet Switch Network Modules in a Single Chassis A maximum of any type are installed in the same chassis, the following configuration...
User Guide
Page 5
Disabled. 5 Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards Information About EtherSwitch HWICs Intrachassis Stacking For conceptual information about fallback bridging, see the 'Intrachassis Stacking" section of the EtherSwitch Network Module. Table 1 Default 802.1x Configuration Feature Authentication, authorization,...before retransmitting the request). 2 times (number of the EtherSwitch Network Module. Disabled (force-authorized). Disabled. 3600 seconds. 60 seconds (number of seconds that the switch remains in the quiet state following a failed authentication ...
Disabled. 5 Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards Information About EtherSwitch HWICs Intrachassis Stacking For conceptual information about fallback bridging, see the 'Intrachassis Stacking" section of the EtherSwitch Network Module. Table 1 Default 802.1x Configuration Feature Authentication, authorization,...before retransmitting the request). 2 times (number of the EtherSwitch Network Module. Disabled (force-authorized). Disabled. 3600 seconds. 60 seconds (number of seconds that the switch remains in the quiet state following a failed authentication ...
User Guide
Page 7
... to configure VLANs on the switch and contains the following sections: • Adding a VLAN Instance, page 6 • Deleting a VLAN Instance from the Database, page 6 Adding a VLAN Instance A total of 15 VLANs can be supported by an EtherSwitch HWIC. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs • Managing the EtherSwitch HWIC, page 78 Configuring VLANs This...
... to configure VLANs on the switch and contains the following sections: • Adding a VLAN Instance, page 6 • Deleting a VLAN Instance from the Database, page 6 Adding a VLAN Instance A total of 15 VLANs can be supported by an EtherSwitch HWIC. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs • Managing the EtherSwitch HWIC, page 78 Configuring VLANs This...
User Guide
Page 9
... client mode, you cannot change the VLAN configuration on the switch. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to privileged EXEC mode. The client switch receives VTP updates from 8 to configure the switch as a VTP server. Step 4 Example: Router(vlan)# vtp...# vlan database vtp server Configures the switch as a VTP client. 9 Enters VLAN configuration mode. Updates the VLAN database, propagates it throughout the administrative domain, exits VLAN configuration mode, and returns to Configure EtherSwitch HWICs SUMMARY STEPS 1. Follow the steps below...
... client mode, you cannot change the VLAN configuration on the switch. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to privileged EXEC mode. The client switch receives VTP updates from 8 to configure the switch as a VTP server. Step 4 Example: Router(vlan)# vtp...# vlan database vtp server Configures the switch as a VTP client. 9 Enters VLAN configuration mode. Updates the VLAN database, propagates it throughout the administrative domain, exits VLAN configuration mode, and returns to Configure EtherSwitch HWICs SUMMARY STEPS 1. Follow the steps below...
User Guide
Page 19
...Activates the interface. • Required only if you must enable AAA and specify the authentication method list. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 6 Command or Action switchport access vlan vlan-number Step 7 Example: Router(config-if)# switchport access... Periodic Reauthentication, page 23 • Changing the Quiet Period, page 24 • Changing the Switch-to-Client Retransmission Time, page 25 • Setting the Switch-to-Client Frame-Retransmission Number, page 26 • Enabling Multiple Hosts, page 27 • ...
...Activates the interface. • Required only if you must enable AAA and specify the authentication method list. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 6 Command or Action switchport access vlan vlan-number Step 7 Example: Router(config-if)# switchport access... Periodic Reauthentication, page 23 • Changing the Quiet Period, page 24 • Changing the Switch-to-Client Retransmission Time, page 25 • Setting the Switch-to-Client Frame-Retransmission Number, page 26 • Enabling Multiple Hosts, page 27 • ...
User Guide
Page 21
...show dot1x Purpose Verifies your entries in the order that they were configured. If two different host entries on the switch. SUMMARY STEPS 1. Enters global configuration mode. The combination of the IP address and UDP port number creates a ...-number key string 4. copy running -config startup-config Configuring the Switch-to-RADIUS-Server Communication RADIUS security servers are tried in the configuration file. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 7 show running-config 6. configure terminal 3....
...show dot1x Purpose Verifies your entries in the order that they were configured. If two different host entries on the switch. SUMMARY STEPS 1. Enters global configuration mode. The combination of the IP address and UDP port number creates a ...-number key string 4. copy running -config startup-config Configuring the Switch-to-RADIUS-Server Communication RADIUS security servers are tried in the configuration file. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 7 show running-config 6. configure terminal 3....
User Guide
Page 23
...Sets the number of the client. If you do not specify a time period before enabling reauthentication, the number of the switch only if periodic reauthentication is 1 to individual ports. Example: • The range is enabled end Returns to privileged ...periodic reauthentication of the client and to Configure EtherSwitch HWICs Enabling Periodic Reauthentication You can enable periodic 802.1x client reauthentication and specify how often it occurs. SUMMARY STEPS 1. show dot1x 7. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to configure the number of ...
...Sets the number of the client. If you do not specify a time period before enabling reauthentication, the number of the switch only if periodic reauthentication is 1 to individual ports. Example: • The range is enabled end Returns to privileged ...periodic reauthentication of the client and to Configure EtherSwitch HWICs Enabling Periodic Reauthentication You can enable periodic 802.1x client reauthentication and specify how often it occurs. SUMMARY STEPS 1. show dot1x 7. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to configure the number of ...
User Guide
Page 25
...-config (Optional) Saves your entries in the configuration file. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 4 end Purpose Returns to adjust for client notification. dot1x timeout tx-period seconds 4. copy running -config startup-config Changing the Switch-to-Client Retransmission Time The client responds to the EAP...
...-config (Optional) Saves your entries in the configuration file. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 4 end Purpose Returns to adjust for client notification. dot1x timeout tx-period seconds 4. copy running -config startup-config Changing the Switch-to-Client Retransmission Time The client responds to the EAP...
User Guide
Page 27
... the switch sends an EAP-request/identity frame to the client before restarting the authentication process. • The range is 1 to 10; enable 2. If the port becomes unauthorized (reauthentication fails, and an EAPOL-logoff message is 2. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface ... You can attach multiple hosts to be successfully authorized for all attached clients are denied access to auto. Returns to Configure EtherSwitch HWICs DETAILED STEPS Command or Action Step 1 enable Step 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode. ...
... the switch sends an EAP-request/identity frame to the client before restarting the authentication process. • The range is 1 to 10; enable 2. If the port becomes unauthorized (reauthentication fails, and an EAPOL-logoff message is 2. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface ... You can attach multiple hosts to be successfully authorized for all attached clients are denied access to auto. Returns to Configure EtherSwitch HWICs DETAILED STEPS Command or Action Step 1 enable Step 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode. ...
User Guide
Page 29
Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to privileged EXEC mode. Returns to Configure EtherSwitch HWICs 5. To display the 802.1x administrative and operational status for the switch, use the show dot1x 6. Configuring Spanning Tree This section provides the following configuration information: • Enabling Spanning Tree, page 30 • Configuring Spanning Tree Port ...
Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to privileged EXEC mode. Returns to Configure EtherSwitch HWICs 5. To display the 802.1x administrative and operational status for the switch, use the show dot1x 6. Configuring Spanning Tree This section provides the following configuration information: • Enabling Spanning Tree, page 30 • Configuring Spanning Tree Port ...
User Guide
Page 37
... hops [hello-time seconds]] 4. When you avoid configuring the hello time, forward delay time, and maximum age time manually after configuring the switch as needed. 37 Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to specify the Layer 2 network diameter (that is, the maximum number of bridge hops between any optional keywords or arguments...
... hops [hello-time seconds]] 4. When you avoid configuring the hello time, forward delay time, and maximum age time manually after configuring the switch as needed. 37 Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to specify the Layer 2 network diameter (that is, the maximum number of bridge hops between any optional keywords or arguments...
User Guide
Page 47
... Enabling IP Multicast Routing Globally You must enable IP multicast routing globally before you can enable IP multicast Layer 3 switching on the ports. SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 3 Command or Action interface fastethernet interface-id Step 4 Example: Router(config)# interface fastethernet 0/3/1 power inline {auto |never} Step...
... Enabling IP Multicast Routing Globally You must enable IP multicast routing globally before you can enable IP multicast Layer 3 switching on the ports. SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 3 Command or Action interface fastethernet interface-id Step 4 Example: Router(config)# interface fastethernet 0/3/1 power inline {auto |never} Step...
User Guide
Page 49
... count command verifies the IP multicast Layer 3 switching enable state on IP PIM interfaces and verifies the number of the corresponding entry is NULL, and this indicates that this flow is up , line protocol is still active. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 3 Command or Action interface vlan vlan...
... count command verifies the IP multicast Layer 3 switching enable state on IP PIM interfaces and verifies the number of the corresponding entry is NULL, and this indicates that this flow is up , line protocol is still active. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Step 3 Command or Action interface vlan vlan...
User Guide
Page 51
Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Note The RPF-MFD flag indicates that the flow is hardware-switched on the outgoing interface. Global IGMP snooping overrides the per -VLAN basis. Follow the steps below to Join a Group, page 53 • Configuring a..., page 51 • Enabling IGMP Immediate-Leave Processing, page 52 • Statically Configuring an Interface to globally enable IGMP snooping on the EtherSwitch HWIC. If global snooping is completely hardware switched. If global snooping is globally enabled on the...
Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Note The RPF-MFD flag indicates that the flow is hardware-switched on the outgoing interface. Global IGMP snooping overrides the per -VLAN basis. Follow the steps below to Join a Group, page 53 • Configuring a..., page 51 • Enabling IGMP Immediate-Leave Processing, page 52 • Statically Configuring an Interface to globally enable IGMP snooping on the EtherSwitch HWIC. If global snooping is completely hardware switched. If global snooping is globally enabled on the...
User Guide
Page 59
... that they behave as stacking partners. no shutdown 9. exit 7. When a chassis is the connection of ports on two different switch modules as a single switch. SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 6 end Step 7 Example: Router(config-if)# end show storm-control [interface] [{broadcast | multicast | unicast | history...
... that they behave as stacking partners. no shutdown 9. exit 7. When a chassis is the connection of ports on two different switch modules as a single switch. SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Command or Action Step 6 end Step 7 Example: Router(config-if)# end show storm-control [interface] [{broadcast | multicast | unicast | history...
User Guide
Page 61
... to only one bridge group. no ip routing 61 All interfaces in the same group belong to configure fallback bridging on your switch. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Configuring Fallback Bridging This section describes how to the same bridge domain. It contains this configuration information: • Creating a Bridge Group...
... to only one bridge group. no ip routing 61 All interfaces in the same group belong to configure fallback bridging on your switch. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to Configure EtherSwitch HWICs Configuring Fallback Bridging This section describes how to the same bridge domain. It contains this configuration information: • Creating a Bridge Group...
User Guide
Page 63
... 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode. • Enter your entries. Example: Router# configure terminal 63 SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to prevent the switch from forwarding frames for stations that it has dynamically learned. configure terminal 3. show vlan-bridge Purpose (Optional) Verifies forwarding mode. Step...
... 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode. • Enter your entries. Example: Router# configure terminal 63 SUMMARY STEPS 1. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to prevent the switch from forwarding frames for stations that it has dynamically learned. configure terminal 3. show vlan-bridge Purpose (Optional) Verifies forwarding mode. Step...
User Guide
Page 65
...-config startup-config Filtering Frames by the MAC-layer address. configure terminal 3. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to filter by a Specific MAC Address A switch examines frames and sends them through the internetwork according to 1000000. Step 5 Example...administrative filters that a dynamic entry remains in the system without a performance penalty. Follow the steps below to Configure EtherSwitch HWICs DETAILED STEPS Command or Action Step 1 enable Step 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode...
...-config startup-config Filtering Frames by the MAC-layer address. configure terminal 3. Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards How to filter by a Specific MAC Address A switch examines frames and sends them through the internetwork according to 1000000. Step 5 Example...administrative filters that a dynamic entry remains in the system without a performance penalty. Follow the steps below to Configure EtherSwitch HWICs DETAILED STEPS Command or Action Step 1 enable Step 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode...