Software Guide
Page 1
Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide Cisco IOS Releases 12.0(5)WC4 and 12.0(5)WC5 May 2002 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-786511= Text Part Number: 78-6511-08
Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide Cisco IOS Releases 12.0(5)WC4 and 12.0(5)WC5 May 2002 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-786511= Text Part Number: 78-6511-08
Software Guide
Page 2
..., Berkeley (UCB) as part of UCB's public domain version of California. All rights reserved. and/or its affiliates in this document or Web site are service marks of the word partner does not imply a partnership relationship between Cisco and any other countries. All...IMPLIED. All other trademarks mentioned in the U.S. The use of Cisco Systems, Inc.; and certain other company. (0203R) Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide Copyright © 1998-2002, Cisco Systems, Inc. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING...
..., Berkeley (UCB) as part of UCB's public domain version of California. All rights reserved. and/or its affiliates in this document or Web site are service marks of the word partner does not imply a partnership relationship between Cisco and any other countries. All...IMPLIED. All other trademarks mentioned in the U.S. The use of Cisco Systems, Inc.; and certain other company. (0203R) Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide Copyright © 1998-2002, Cisco Systems, Inc. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING...
Software Guide
Page 28
...management station that can be launched from a remote management station. Management Options Chapter 1 Overview Management Options The Catalyst 2900 XL and Catalyst 3500 XL switches are designed for plug-and-play operation: you can fully configure and monitor a standalone switch, a specific cluster ...and control the switch and switch cluster members. The switch supports a comprehensive set of a switch cluster-through a web browser such as part of MIB extensions and four RMON groups. This section discusses these topics: • "Management Interface Options" section on page 1-6 •...
...management station that can be launched from a remote management station. Management Options Chapter 1 Overview Management Options The Catalyst 2900 XL and Catalyst 3500 XL switches are designed for plug-and-play operation: you can fully configure and monitor a standalone switch, a specific cluster ...and control the switch and switch cluster members. The switch supports a comprehensive set of a switch cluster-through a web browser such as part of MIB extensions and four RMON groups. This section discusses these topics: • "Management Interface Options" section on page 1-6 •...
Software Guide
Page 63
... command switches should be Catalyst 2950 switches. - Refer to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/index.htm) for the Catalyst switches that can be part of a switch cluster. When the command switch is a Catalyst 2950 switch running Release 12...otherwise, Table 2-15 lists the menu-bar options available from other cluster-capable switch platforms. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 2-19 When the command switch is a Catalyst 2950 switch running Release 12.1(6)EA2 or later, all standby...
... command switches should be Catalyst 2950 switches. - Refer to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/index.htm) for the Catalyst switches that can be part of a switch cluster. When the command switch is a Catalyst 2950 switch running Release 12...otherwise, Table 2-15 lists the menu-bar options available from other cluster-capable switch platforms. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 2-19 When the command switch is a Catalyst 2950 switch running Release 12.1(6)EA2 or later, all standby...
Software Guide
Page 74
...information. Similarly, the Host Name list on the VLAN window does not include Catalyst 1900 and Catalyst 2820 switches even though they are part of each feature and lists only the cluster members that support that feature. Figure 2-12 CMS Window Components 65580 OK saves your ... the LRE switches in the configuration window of the cluster. The list appears in the cluster. 2-30 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Cancel closes the window without saving the changes. Click a tab to display its settings.
...information. Similarly, the Host Name list on the VLAN window does not include Catalyst 1900 and Catalyst 2820 switches even though they are part of each feature and lists only the cluster members that support that feature. Figure 2-12 CMS Window Components 65580 OK saves your ... the LRE switches in the configuration window of the cluster. The list appears in the cluster. 2-30 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Cancel closes the window without saving the changes. Click a tab to display its settings.
Software Guide
Page 78
... Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Saving Your Changes Note The Save Configuration option is the startup configuration used each time the switch restarts. The change , the green border disappears. When you cancel the change does not automatically become part of the switch. Tip...page 2-33. Verifying Your Changes Chapter 2 Getting Started with the switch or if you do not save or cancel the change becomes part of the running configuration of the config.txt file in the window status bar. The configuration is an error in communicating with CMS...
... Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Saving Your Changes Note The Save Configuration option is the startup configuration used each time the switch restarts. The change , the green border disappears. When you cancel the change does not automatically become part of the switch. Tip...page 2-33. Verifying Your Changes Chapter 2 Getting Started with the switch or if you do not save or cancel the change becomes part of the running configuration of the config.txt file in the window status bar. The configuration is an error in communicating with CMS...
Software Guide
Page 88
... Changes Chapter 3 Getting Started with the CLI To access the CLI from the Cisco Systems Access page. You can also access the CLI by clicking Web Console - Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 3-8 78-6511-08 The show command always displays the running the...configuration changes to Flash memory, they occur. When you must enter the write memory command in privileged EXEC mode. The change becomes part of this release. To save the configuration. Where to Go Next Before configuring the switch, refer to the online help.
... Changes Chapter 3 Getting Started with the CLI To access the CLI from the Cisco Systems Access page. You can also access the CLI by clicking Web Console - Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 3-8 78-6511-08 The show command always displays the running the...configuration changes to Flash memory, they occur. When you must enter the write memory command in privileged EXEC mode. The change becomes part of this release. To save the configuration. Where to Go Next Before configuring the switch, refer to the online help.
Software Guide
Page 94
... problems, increase network performance, verify the configuration of a poll can be compiled with SNMP version 2. Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 4-6 78-6511-08 The results of devices, monitor traffic loads, and more. CiscoWorks2000 software uses the...SNMP manager uses information in the MIB to the SNMP manager, which would otherwise require the transmission of many small blocks of three parts: • The SNMP manager, which resides on the network such as improper user authentication, restarts, link status (up or down),...
... problems, increase network performance, verify the configuration of a poll can be compiled with SNMP version 2. Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 4-6 78-6511-08 The results of devices, monitor traffic loads, and more. CiscoWorks2000 software uses the...SNMP manager uses information in the MIB to the SNMP manager, which would otherwise require the transmission of many small blocks of three parts: • The SNMP manager, which resides on the network such as improper user authentication, restarts, link status (up or down),...
Software Guide
Page 107
Refer to a third-party hub. Figure 5-2 shows that the command switch discovers the Catalyst 3500 XL switch, which is connected to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/index.htm) for the Catalyst switches that can discover cluster-enabled ... third-party hub. However, if the command switch is connected to a non-CDP-capable third-party hub (such as a non-Cisco hub), it can be part of a switch cluster. Chapter 5 Clustering Switches Planning a Switch Cluster Discovery through Non-CDP-Capable and Noncluster-Capable Devices Command switch ...
Refer to a third-party hub. Figure 5-2 shows that the command switch discovers the Catalyst 3500 XL switch, which is connected to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/index.htm) for the Catalyst switches that can discover cluster-enabled ... third-party hub. However, if the command switch is connected to a non-CDP-capable third-party hub (such as a non-Cisco hub), it can be part of a switch cluster. Chapter 5 Clustering Switches Planning a Switch Cluster Discovery through Non-CDP-Capable and Noncluster-Capable Devices Command switch ...
Software Guide
Page 148
... clients that is already an MVR group member, remove the address from the CGMP group, and then statically add it is added, it to become part of unused CGMP groups. Conversely, you want an address that are maintained on a per-VLAN basis: a multicast IP address packet can be an ... of duplicate packets. CGMP groups are MVR group members. When a CGMP group is added on page 6-27. 6-20 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 End stations issue join messages to the MVR group. By default, CGMP is enabled, and the Fast...
... clients that is already an MVR group member, remove the address from the CGMP group, and then statically add it is added, it to become part of unused CGMP groups. Conversely, you want an address that are maintained on a per-VLAN basis: a multicast IP address packet can be an ... of duplicate packets. CGMP groups are MVR group members. When a CGMP group is added on page 6-27. 6-20 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 End stations issue join messages to the MVR group. By default, CGMP is enabled, and the Fast...
Software Guide
Page 157
... and multicast packets. • Before configuring MVR groups, configure all MVR parameters, including the multicast VLAN. Enable protected port on all Catalyst 3500 XL switches and on IGMP join requests from hosts (forwarded by the switch hardware. b. c. d. CGMP does not dynamically learn an address that the ... VLAN. If the first receiver port is a dynamic port with an unassigned VLAN, it becomes an inactive receiver port and does not take part in MVR unless it is determined by the switch) to forward multicast traffic to the switch. • The receiver VLAN is already a ...
... and multicast packets. • Before configuring MVR groups, configure all MVR parameters, including the multicast VLAN. Enable protected port on all Catalyst 3500 XL switches and on IGMP join requests from hosts (forwarded by the switch hardware. b. c. d. CGMP does not dynamically learn an address that the ... VLAN. If the first receiver port is a dynamic port with an unassigned VLAN, it becomes an inactive receiver port and does not take part in MVR unless it is determined by the switch) to forward multicast traffic to the switch. • The receiver VLAN is already a ...
Software Guide
Page 163
If an STP root switch is part of a cluster that is selected. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-35 Figure 6-7 shows modular Catalyst 2900 XL and Catalyst 3500 XL switches in Seconds) STP Parameter...Gigabit Ethernet Clusters Catalyst 5000 series switch Catalyst 2900 and 3500 XL switches Cisco 7000 router Catalyst 2900 and 3500 XL switches Catalyst 2900 and 3500 XL switches Catalyst 5000 series/ 6000 backbone Catalyst 6000 switch Layer 3 backbone Cisco 7000 router 33021 Option 1: standalone cascaded cluster Option 2: ...
If an STP root switch is part of a cluster that is selected. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-35 Figure 6-7 shows modular Catalyst 2900 XL and Catalyst 3500 XL switches in Seconds) STP Parameter...Gigabit Ethernet Clusters Catalyst 5000 series switch Catalyst 2900 and 3500 XL switches Cisco 7000 router Catalyst 2900 and 3500 XL switches Catalyst 2900 and 3500 XL switches Catalyst 5000 series/ 6000 backbone Catalyst 6000 switch Layer 3 backbone Cisco 7000 router 33021 Option 1: standalone cascaded cluster Option 2: ...
Software Guide
Page 176
...based Administrative Framework of SNMPv2C while retaining the bulk retrieval and improved error handling of security. Note If your switch is part of round-trips required. SNMPv2C-The Community-based Administrative Framework for Catalyst 1900 and Catalyst 2820 switches. If you can change...and must be enabled for SNMP, see the "SNMP Community Strings" section on Cisco.com for additional information and CLI procedures. 6-48 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 The bulk retrieval mechanism retrieves tables and large ...
...based Administrative Framework of SNMPv2C while retaining the bulk retrieval and improved error handling of security. Note If your switch is part of round-trips required. SNMPv2C-The Community-based Administrative Framework for Catalyst 1900 and Catalyst 2820 switches. If you can change...and must be enabled for SNMP, see the "SNMP Community Strings" section on Cisco.com for additional information and CLI procedures. 6-48 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 The bulk retrieval mechanism retrieves tables and large ...
Software Guide
Page 187
... your entries. (Optional) Save your key, do not enclose the key in the configuration file. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-59 Note The key is a text string that server is resent to a server if that must match the ... used on the RADIUS server. Return to reply before resending. Leading spaces are ignored, but spaces within and at the end of the key are part of the remote RADIUS server host. • (Optional) For auth-port port-number, specify the UDP destination port for authentication requests. • ...
... your entries. (Optional) Save your key, do not enclose the key in the configuration file. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-59 Note The key is a text string that server is resent to a server if that must match the ... used on the RADIUS server. Return to reply before resending. Leading spaces are ignored, but spaces within and at the end of the key are part of the remote RADIUS server host. • (Optional) For auth-port port-number, specify the UDP destination port for authentication requests. • ...
Software Guide
Page 191
...no retransmit value is set with the defined server group. Leading spaces are ignored, but spaces within and at the end of the key are part of the radius-server retransmit global configuration command is a text string that the switch waits for the RADIUS server to a server if that server... not enclose the key in quotation marks unless the quotation marks are used on page 6-60. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-63 The switch software searches for each UDP port number is set with the radius-server host command, the ...
...no retransmit value is set with the defined server group. Leading spaces are ignored, but spaces within and at the end of the key are part of the radius-server retransmit global configuration command is a text string that the switch waits for the RADIUS server to a server if that server... not enclose the key in quotation marks unless the quotation marks are used on page 6-60. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-63 The switch software searches for each UDP port number is set with the radius-server host command, the ...
Software Guide
Page 193
...and the amount of accounting records. Starting RADIUS Accounting The AAA accounting feature tracks the services that users are part of times the switch sends each Cisco IOS privilege level and for each RADIUS request to the RADIUS security server in the form of network resources ... use the no aaa authorization {network | exec} method1 global configuration command. Return to 1000. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-65 Verify your entries. (Optional) Save your key, do not enclose the key in the configuration file. ...
...and the amount of accounting records. Starting RADIUS Accounting The AAA accounting feature tracks the services that users are part of times the switch sends each Cisco IOS privilege level and for each RADIUS request to the RADIUS security server in the form of network resources ... use the no aaa authorization {network | exec} method1 global configuration command. Return to 1000. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 6-65 Verify your entries. (Optional) Save your key, do not enclose the key in the configuration file. ...
Software Guide
Page 196
...RADIUS server use this text string to use the show running-config copy running -config privileged EXEC command. 6-68 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Verify your settings. (Optional) Save your key, do not enclose the key in the configuration ...between the switch and the vendor-proprietary RADIUS server. Leading spaces are ignored, but spaces within and at the end of the key are part of RADIUS. If you use spaces in your entries in quotation marks unless the quotation marks are used between the switch and the server...
...RADIUS server use this text string to use the show running-config copy running -config privileged EXEC command. 6-68 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Verify your settings. (Optional) Save your key, do not enclose the key in the configuration ...between the switch and the vendor-proprietary RADIUS server. Leading spaces are ignored, but spaces within and at the end of the key are part of RADIUS. If you use spaces in your entries in quotation marks unless the quotation marks are used between the switch and the server...
Software Guide
Page 208
... not found in the address table for the port ensures that can have from 1 to secure. 7-10 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Secure ports have at least one address, the workstation or server attached to contain only one... with source addresses outside the group of addresses you have defined. When you assign secure addresses to a user-defined group of stations. As part of the port. • Added security-Unknown devices cannot connect to secure. Disable the port when an address-security violation occurs. Defining the...
... not found in the address table for the port ensures that can have from 1 to secure. 7-10 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 Secure ports have at least one address, the workstation or server attached to contain only one... with source addresses outside the group of addresses you have defined. When you assign secure addresses to a user-defined group of stations. As part of the port. • Added security-Unknown devices cannot connect to secure. Disable the port when an address-security violation occurs. Defining the...
Software Guide
Page 249
... of an EtherChannel port group. ATM ports are always trunk ports but all ports follow the parameters set for the first port to be part of unknown unicast and multicast packets to the group. A static-access port can be grouped into EtherChannel port groups, but cannot be added...• STP port priority for all unknown unicast traffic on a trunk. A trunk port cannot be trunks. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 8-27 When a group is acting as the network port for each VLAN. • STP Port Fast setting. • ...
... of an EtherChannel port group. ATM ports are always trunk ports but all ports follow the parameters set for the first port to be part of unknown unicast and multicast packets to the group. A static-access port can be grouped into EtherChannel port groups, but cannot be added...• STP port priority for all unknown unicast traffic on a trunk. A trunk port cannot be trunks. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 8-27 When a group is acting as the network port for each VLAN. • STP Port Fast setting. • ...
Software Guide
Page 280
...as a double-switch icon and shows connections to display the reason it could not join the cluster. 65802 9-14 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 For a list of devices that are cluster-enabled, refer to a Cluster If a switch does... not become part of the cluster, you can learn why by selecting View > Topology. Determining Why a Switch Is Not Added to a Cluster Chapter 9 Troubleshooting Determining Why a Switch Is Not Added to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl...
...as a double-switch icon and shows connections to display the reason it could not join the cluster. 65802 9-14 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 78-6511-08 For a list of devices that are cluster-enabled, refer to a Cluster If a switch does... not become part of the cluster, you can learn why by selecting View > Topology. Determining Why a Switch Is Not Added to a Cluster Chapter 9 Troubleshooting Determining Why a Switch Is Not Added to the release notes (http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl...