Software Guide
Page 2
...YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. The use of their respective owners. THE...the word partner does not imply a partnership relationship between Cisco and any other countries. and certain other company. (0304R) Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Copyright © 2000-2003, Cisco Systems, Inc. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL ...
...YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. The use of their respective owners. THE...the word partner does not imply a partnership relationship between Cisco and any other countries. and certain other company. (0304R) Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide Copyright © 2000-2003, Cisco Systems, Inc. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL ...
Software Guide
Page 19
...-8 Disabling 802.1x Globally 31-8 Enabling and Initializing 802.1x Authentication for Individual Ports 31-9 Setting and Enabling Automatic Reauthentication of the Host 31-10 Manually Reauthenticating the Host 31-10 Enabling Multiple Hosts 31-11 Disabling Multiple Hosts 31-11 Setting the Quiet Period 31-11 Setting the Authenticator-to...-14 Setting the Back-End Authenticator-to-Host Frame-Retransmission Number 31-14 Resetting the 802.1x Configuration Parameters to the Default Values 31-15 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 xix
...-8 Disabling 802.1x Globally 31-8 Enabling and Initializing 802.1x Authentication for Individual Ports 31-9 Setting and Enabling Automatic Reauthentication of the Host 31-10 Manually Reauthenticating the Host 31-10 Enabling Multiple Hosts 31-11 Disabling Multiple Hosts 31-11 Setting the Quiet Period 31-11 Setting the Authenticator-to...-14 Setting the Back-End Authenticator-to-Host Frame-Retransmission Number 31-14 Resetting the 802.1x Configuration Parameters to the Default Values 31-15 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 xix
Software Guide
Page 43
... memory: 32 MB Testing LEDs.... WS-X4012 bootrom version 4.5(1), built on , reset, or when a fatal exception occurs. done! nvram: . switch port 5: . switch sram: . From the ROM monitor mode, you are similar. You can load a system image manually from Flash memory or the network interface (me1). Enter the ? Example of a Catalyst 4003 Bootup Display This example...
... memory: 32 MB Testing LEDs.... WS-X4012 bootrom version 4.5(1), built on , reset, or when a fatal exception occurs. done! nvram: . switch port 5: . switch sram: . From the ROM monitor mode, you are similar. You can load a system image manually from Flash memory or the network interface (me1). Enter the ? Example of a Catalyst 4003 Bootup Display This example...
Software Guide
Page 47
... TFTP server name 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-3 There are three methods for a specified period of this period, and the switch surrenders the address. The IP address is received from the DHCP server: • Manual allocation-The network administrator maps the switch MAC address to the request...
... TFTP server name 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-3 There are three methods for a specified period of this period, and the switch surrenders the address. The IP address is received from the DHCP server: • Manual allocation-The network administrator maps the switch MAC address to the request...
Software Guide
Page 53
... the MAC address range for the console port. Enter privileged mode on Console port. Cisco Systems, Inc. Console> (enable) show module 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-9 To use DHCP or RARP to obtain an IP... address for the switch, perform this task: Step 1 Step 2 Task Command Make sure that there is necessary only if using the manual allocation method.)...
... the MAC address range for the console port. Enter privileged mode on Console port. Cisco Systems, Inc. Console> (enable) show module 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 3-9 To use DHCP or RARP to obtain an IP... address for the switch, perform this task: Step 1 Step 2 Task Command Make sure that there is necessary only if using the manual allocation method.)...
Software Guide
Page 54
...only with the manual or automatic allocation methods.) Set the sc0 interface IP address to DNS server table as the default gateway address) are set correctly. set interface sc0 dhcp release 3-10 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide...-Release 8.1 78-15486-01 reset system When the switch reboots, confirm that other IP parameters according to the contents of the ...
...only with the manual or automatic allocation methods.) Set the sc0 interface IP address to DNS server table as the default gateway address) are set correctly. set interface sc0 dhcp release 3-10 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide...-Release 8.1 78-15486-01 reset system When the switch reboots, confirm that other IP parameters according to the contents of the ...
Software Guide
Page 63
...it goes into an errdisable state for port 3/3. The allowable interval range is 300 seconds. Console>(enable) 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 4-7 This feature is BPDU guard (bpdu-guard): Console> (enable) set port errdisable-timeout mod... The timeout enhancement does not have been put in NVRAM but disabled at runtime. With the new timeout enhancement, you can manually prevent a particular port from being enabled by default. If you specify a reason of other than those ports that have an...
...it goes into an errdisable state for port 3/3. The allowable interval range is 300 seconds. Console>(enable) 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 4-7 This feature is BPDU guard (bpdu-guard): Console> (enable) set port errdisable-timeout mod... The timeout enhancement does not have been put in NVRAM but disabled at runtime. With the new timeout enhancement, you can manually prevent a particular port from being enabled by default. If you specify a reason of other than those ports that have an...
Software Guide
Page 77
... changed and affected ports are no longer suspended. To determine if a channel is generated). you have to be configured manually, with PAgP on one side and LACP on the other problems. Follow the guidelines below to avoid configuration problems. Note... to join spanning tree, either set the duplex to full or set back to full duplex. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-3 Chapter 6 Configuring Fast EtherChannel and Gigabit EtherChannel EtherChannel Configuration Guidelines and Restrictions EtherChannel...
... changed and affected ports are no longer suspended. To determine if a channel is generated). you have to be configured manually, with PAgP on one side and LACP on the other problems. Follow the guidelines below to avoid configuration problems. Note... to join spanning tree, either set the duplex to full or set back to full duplex. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-3 Chapter 6 Configuring Fast EtherChannel and Gigabit EtherChannel EtherChannel Configuration Guidelines and Restrictions EtherChannel...
Software Guide
Page 80
...cycled. In addition to which the EtherChannel belongs. EtherChannel IDs are stored in NVRAM and remain the same after the switch is automatically assigned a unique EtherChannel ID. The ID can contain a maximum of the ports you configure the EtherChannel... can assign an administrative group number manually or let the system software assign the next available administrative group number automatically. EtherChannel administrative group numbers are not saved in NVRAM. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-6 ...
...cycled. In addition to which the EtherChannel belongs. EtherChannel IDs are stored in NVRAM and remain the same after the switch is automatically assigned a unique EtherChannel ID. The ID can contain a maximum of the ports you configure the EtherChannel... can assign an administrative group number manually or let the system software assign the next available administrative group number automatically. EtherChannel administrative group numbers are not saved in NVRAM. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-6 ...
Software Guide
Page 81
...Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-7 To create an EtherChannel port bundle, perform this task in the channel and the channeling mode. Administrative group membership is assigned. In addition, a channel ID is limited by specifying the ports in privileged mode: Step 1 Step 2 Step 3 Task If you can define EtherChannel administrative groups manually... Port Device-ID Port-ID Platform 3/5 069003103(5500) 3/5 WS-C4000 3/6 069003103(5500) 3/6 WS-C4000 Console> (enable) Defining an EtherChannel Administrative Group You can...
...Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-7 To create an EtherChannel port bundle, perform this task in the channel and the channeling mode. Administrative group membership is assigned. In addition, a channel ID is limited by specifying the ports in privileged mode: Step 1 Step 2 Step 3 Task If you can define EtherChannel administrative groups manually... Port Device-ID Port-ID Platform 3/5 069003103(5500) 3/5 WS-C4000 3/6 069003103(5500) 3/6 WS-C4000 Console> (enable) Defining an EtherChannel Administrative Group You can...
Software Guide
Page 90
..., Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Mode that use the active and passive channel modes. Switch_A> (enable) show port channel Port Status Channel Channel Neighbor Neighbor mode status device port 2/1 connected on channel WS-C4003 JAB023806LN( 3/1 2/2 connected on channel WS-C4003... configure only the ports on one end of the link to active mode to verify the configuration. If you may manually turn on channeling by setting the port channel mode to handle channeling, use LACP. With the on mode, a usable...
..., Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 Mode that use the active and passive channel modes. Switch_A> (enable) show port channel Port Status Channel Channel Neighbor Neighbor mode status device port 2/1 connected on channel WS-C4003 JAB023806LN( 3/1 2/2 connected on channel WS-C4003... configure only the ports on one end of the link to active mode to verify the configuration. If you may manually turn on channeling by setting the port channel mode to handle channeling, use LACP. With the on mode, a usable...
Software Guide
Page 91
...The following parameters: • System priority Each switch running LACP must have a system priority. The switch uses the MAC address and the system priority to administrative key values. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-17 You can ...may configure four ports in a channel using LACP active mode and the remaining four ports in a manually configured channel using the on page 6-19). The switch uses the port priority to decide which ports to the maximum allowed by sending LACP packets. Chapter...
...The following parameters: • System priority Each switch running LACP must have a system priority. The switch uses the MAC address and the system priority to administrative key values. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 6-17 You can ...may configure four ports in a channel using LACP active mode and the remaining four ports in a manually configured channel using the on page 6-19). The switch uses the port priority to decide which ports to the maximum allowed by sending LACP packets. Chapter...
Software Guide
Page 100
... is the port that is elected as the root switch. • The shortest distance to calculate a BPDU. You can also manually assign port costs between 1-65535. All switches connected to the root switch. • Ports included in the STP are not...ports that the transmitting switch believes to be forwarded to each switch. • A designated switch is selected. Each configuration BPDU contains this information: • The unique identifier of the switch ports, you specify the long method. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-...
... is the port that is elected as the root switch. • The shortest distance to calculate a BPDU. You can also manually assign port costs between 1-65535. All switches connected to the root switch. • Ports included in the STP are not...ports that the transmitting switch believes to be forwarded to each switch. • A designated switch is selected. Each configuration BPDU contains this information: • The unique identifier of the switch ports, you specify the long method. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-...
Software Guide
Page 101
...manually assign port costs between 1-200,000,000. Recalculation may not be desirable, especially if the added or removed link is based on a switch using the old topology. The formula for frames that is of little consequence to divide the bandwidth of these states: • Blocking 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst... 2980G Switches ...
...manually assign port costs between 1-200,000,000. Recalculation may not be desirable, especially if the added or removed link is based on a switch using the old topology. The formula for frames that is of little consequence to divide the bandwidth of these states: • Blocking 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst... 2980G Switches ...
Software Guide
Page 114
...achieved by 1 second for all the pseudobridge ports. BPDUs sent from the pseudobridge's ports have different bridge identifiers. In a Catalyst -4500 series switch running MST, IST (instance 0) corresponds to block the ports of seconds. • Data traffic from 0 to different VLANs...manually, because it does not auto-increment each time a change is in all BPDUs of the following: - Blocking the appropriate pseudobridge ports by an instance ID that increments each time you commit the MST configuration. 7-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches...
...achieved by 1 second for all the pseudobridge ports. BPDUs sent from the pseudobridge's ports have different bridge identifiers. In a Catalyst -4500 series switch running MST, IST (instance 0) corresponds to block the ports of seconds. • Data traffic from 0 to different VLANs...manually, because it does not auto-increment each time a change is in all BPDUs of the following: - Blocking the appropriate pseudobridge ports by an instance ID that increments each time you commit the MST configuration. 7-18 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches...
Software Guide
Page 115
... as an unsigned integer, corresponds to perform the configuration. You can take up any port role except a backup port role. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-19 A boundary port is a port that connects an MST region to VLAN 4095 are redundantly connected, all the bridges...
... as an unsigned integer, corresponds to perform the configuration. You can take up any port role except a backup port role. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-19 A boundary port is a port that connects an MST region to VLAN 4095 are redundantly connected, all the bridges...
Software Guide
Page 133
.... • At least one VLAN in the instance must manually remove the incorrect mapping(s) from the root switch. The remaining entry on the list becomes the official mapping. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-37 If you attempt to...same instance, the VLAN is mapped. Verify that the VLAN is mapped to that are associated with the mapping of the root switches that are sending the BPDUs containing the VLAN mapping information, and the timers that instance. Chapter 7 Configuring Spanning Tree Using ...
.... • At least one VLAN in the instance must manually remove the incorrect mapping(s) from the root switch. The remaining entry on the list becomes the official mapping. 78-15486-01 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 7-37 If you attempt to...same instance, the VLAN is mapped. Verify that the VLAN is mapped to that are associated with the mapping of the root switches that are sending the BPDUs containing the VLAN mapping information, and the timers that instance. Chapter 7 Configuring Spanning Tree Using ...
Software Guide
Page 158
...interfaces do not transmit or receive BPDUs. after you enable PortFast on the switch, spanning tree applies the BPDU guard feature to all PortFast-configured interfaces. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 8-2 78-15486-01 Chapter 8 Configuring Spanning ... Works To prevent loops from all PortFast-enabled ports on switch or trunk ports connected to a single workstation, switch, or server to invalid configurations because the administrator must manually put the interface back in the forwarding state immediately, instead...
...interfaces do not transmit or receive BPDUs. after you enable PortFast on the switch, spanning tree applies the BPDU guard feature to all PortFast-configured interfaces. Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 8-2 78-15486-01 Chapter 8 Configuring Spanning ... Works To prevent loops from all PortFast-enabled ports on switch or trunk ports connected to a single workstation, switch, or server to invalid configurations because the administrator must manually put the interface back in the forwarding state immediately, instead...
Software Guide
Page 192
..., it as the new primary server. In VTP version 3, you manually designate it will not propagate its configuration until you are the result...server has the final, desired configuration. one specific VTP instance. 9-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 This behavior of VTP ...Understanding How VTP Version 3 Works Figure 9-4 VTP Version 3: Partitioned VTP Domain Domain Cisco Primary Server X Domain Cisco Primary Server Y Chapter 9 Configuring VTP 94282 Partitions exist because of discrepancies in the...
..., it as the new primary server. In VTP version 3, you manually designate it will not propagate its configuration until you are the result...server has the final, desired configuration. one specific VTP instance. 9-16 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01 This behavior of VTP ...Understanding How VTP Version 3 Works Figure 9-4 VTP Version 3: Partitioned VTP Domain Domain Cisco Primary Server X Domain Cisco Primary Server Y Chapter 9 Configuring VTP 94282 Partitions exist because of discrepancies in the...
Software Guide
Page 208
...manually on the same VLAN directly without a router. You can set the following parameters when you can be routed. For example, all the end stations in -band interface. If you must be assigned to the same VLAN. Port VLAN membership on the switch is known as Logically Defined Networks Cisco router Catalyst... 4000 Engineering VLAN Marketing VLAN Fast Ethernet Catalyst 4000 Catalyst 4000 Accounting VLAN Floor 3 Floor 2 43990 Floor 1 ...
...manually on the same VLAN directly without a router. You can set the following parameters when you can be routed. For example, all the end stations in -band interface. If you must be assigned to the same VLAN. Port VLAN membership on the switch is known as Logically Defined Networks Cisco router Catalyst... 4000 Engineering VLAN Marketing VLAN Fast Ethernet Catalyst 4000 Catalyst 4000 Accounting VLAN Floor 3 Floor 2 43990 Floor 1 ...