Software Guide
Page 6
Contents Hostnames 5-12 Passwords 5-13 SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 ...
Contents Hostnames 5-12 Passwords 5-13 SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 ...
Software Guide
Page 8
... Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the Switch for Local Authentication and Authorization 8-32 Configuring the Switch for Secure Shell 8-33 Understanding SSH 8-33...
... Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the Switch for Local Authentication and Authorization 8-32 Configuring the Switch for Secure Shell 8-33 Understanding SSH 8-33...
Software Guide
Page 9
... Authentication Bypass 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected to a Port 9-26 Changing the Quiet Period 9-26 Changing...
... Authentication Bypass 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected to a Port 9-26 Changing the Quiet Period 9-26 Changing...
Software Guide
Page 19
...-12 Displaying the Logging Configuration 25-13 Configuring SNMP 26-1 Understanding SNMP 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
...-12 Displaying the Logging Configuration 25-13 Configuring SNMP 26-1 Understanding SNMP 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
Software Guide
Page 20
... MIB Object Values 26-6 Configuring SNMP 26-6 Default SNMP Configuration 26-7 SNMP Configuration Guidelines 26-7 Disabling the SNMP Agent 26-8 Configuring Community Strings 26-8 Configuring SNMP Groups and Users 26-10 Configuring SNMP Notifications 26-12 Setting the Agent Contact and Location Information 26-15 ...SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time ...
... MIB Object Values 26-6 Configuring SNMP 26-6 Default SNMP Configuration 26-7 SNMP Configuration Guidelines 26-7 Disabling the SNMP Agent 26-8 Configuring Community Strings 26-8 Configuring SNMP Groups and Users 26-10 Configuring SNMP Notifications 26-12 Setting the Agent Contact and Location Information 26-15 ...SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time ...
Software Guide
Page 34
...communities, which are device groups like clusters, except that can be managed through a browser-based program. and switch-level monitoring and troubleshooting, and multiple switch software upgrades. - Extended discovery of cluster-capable switches, see the getting started guide. • User-defined and Cisco... you in your intranet. - For more information about launching the device manager, see the switch online help. • Cisco Network Assistant (hereafter referred to identify link information between switches. - The system, redundant power system (RPS), and port LED...
...communities, which are device groups like clusters, except that can be managed through a browser-based program. and switch-level monitoring and troubleshooting, and multiple switch software upgrades. - Extended discovery of cluster-capable switches, see the getting started guide. • User-defined and Cisco... you in your intranet. - For more information about launching the device manager, see the switch online help. • Cisco Network Assistant (hereafter referred to identify link information between switches. - The system, redundant power system (RPS), and port LED...
Software Guide
Page 36
... Configuration Guide 1-4 OL-8603-04 For more information about the CLI, see Chapter 26, "Configuring SNMP." • CNS-Cisco Networking Services is running platforms such as CiscoWorks2000 LAN Management Suite (LMS) and HP OpenView. You can automate initial configurations and... multilayer-switching features. You can be downloaded from an external source • Cisco IOS File System (IFS) for providing a single interface to manage a single switch, a cluster of switches, or a community of network devices and services. Manageability Features These are the manageability features: ...
... Configuration Guide 1-4 OL-8603-04 For more information about the CLI, see Chapter 26, "Configuring SNMP." • CNS-Cisco Networking Services is running platforms such as CiscoWorks2000 LAN Management Suite (LMS) and HP OpenView. You can automate initial configurations and... multilayer-switching features. You can be downloaded from an external source • Cisco IOS File System (IFS) for providing a single interface to manage a single switch, a cluster of switches, or a community of network devices and services. Manageability Features These are the manageability features: ...
Software Guide
Page 37
Chapter 1 Overview Features • Support for Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 to utilize IPv6 transport, communicate with IPv6 peers, and advertise IPv6 routes • Support for these IP services, making them VRF aware so that they can operate on multiple routing ... switch image files (requires the cryptographic version of the software) • Configuration replacement and rollback to replace the running configuration on a switch with any saved Cisco IOS configuration file OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 1-5
Chapter 1 Overview Features • Support for Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 to utilize IPv6 transport, communicate with IPv6 peers, and advertise IPv6 routes • Support for these IP services, making them VRF aware so that they can operate on multiple routing ... switch image files (requires the cryptographic version of the software) • Configuration replacement and rollback to replace the running configuration on a switch with any saved Cisco IOS configuration file OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 1-5
Software Guide
Page 40
...(SSL) Version 3.0 support for the HTTP 1.1 server authentication, encryption, and message integrity and HTTP client authentication to allow secure HTTP communications (requires the cryptographic version of endpoint systems or clients before granting the devices network access. Dynamic voice virtual LAN (VLAN) for MDA ...04 IEEE 802.1x with wake-on-LAN to a specified VLAN - Guest VLAN to provide limited services to detect and recognize a Cisco IP phone. - IP phone detection enhancement to non-IEEE 802.1x-compliant users - Restricted VLAN to provide limited services to track ...
...(SSL) Version 3.0 support for the HTTP 1.1 server authentication, encryption, and message integrity and HTTP client authentication to allow secure HTTP communications (requires the cryptographic version of endpoint systems or clients before granting the devices network access. Dynamic voice virtual LAN (VLAN) for MDA ...04 IEEE 802.1x with wake-on-LAN to a specified VLAN - Guest VLAN to provide limited services to detect and recognize a Cisco IP phone. - IP phone detection enhancement to non-IEEE 802.1x-compliant users - Restricted VLAN to provide limited services to track ...
Software Guide
Page 48
...critical network resources in case one VLAN needs to communicate with an end station in one of the routers fails. Cisco CallManager controls call processing, routing, and Cisco IP Phone features and configuration. Voice traffic from the Cisco IP Phones are configured on the switch provide ...The switches are assigned to logically segment the network into well-defined broadcast groups and for load sharing. Using Cisco IP Phones, Cisco CallManager software, and Cisco SoftPhone software integrates telephony and IP networks, and the IP network supports both voice and data. The routers...
...critical network resources in case one VLAN needs to communicate with an end station in one of the routers fails. Cisco CallManager controls call processing, routing, and Cisco IP Phone features and configuration. Voice traffic from the Cisco IP Phones are configured on the switch provide ...The switches are assigned to logically segment the network into well-defined broadcast groups and for load sharing. Using Cisco IP Phones, Cisco CallManager software, and Cisco SoftPhone software integrates telephony and IP networks, and the IP network supports both voice and data. The routers...
Software Guide
Page 70
... IP Address and Default Gateway Manually Assigning IP Information Beginning in the configuration file. Verify the configured default gateway. (Optional) Save your switch is 1 to communicate. To remove the default gateway address, use the no ip address interface configuration command. Enter interface configuration mode, and enter the VLAN to which a host...
... IP Address and Default Gateway Manually Assigning IP Information Beginning in the configuration file. Verify the configured default gateway. (Optional) Save your switch is 1 to communicate. To remove the default gateway address, use the no ip address interface configuration command. Enter interface configuration mode, and enter the VLAN to which a host...
Software Guide
Page 71
...3-13 • Booting a Specific Software Image, page 3-14 • Controlling Environment Variables, page 3-14 See also Appendix B, "Working with the Cisco IOS File System, Configuration Files, and Software Images," for information about alternative locations from which to copy the configuration file, see Appendix B, "Working ...to your configuration will be lost the next time you reload the system. snmp-server community private RW snmp-server community public RO snmp-server community private@es0 RW snmp-server community public@es0 RO snmp-server chassis-id 0x12 ! If you have made . To ...
...3-13 • Booting a Specific Software Image, page 3-14 • Controlling Environment Variables, page 3-14 See also Appendix B, "Working with the Cisco IOS File System, Configuration Files, and Software Images," for information about alternative locations from which to copy the configuration file, see Appendix B, "Working ...to your configuration will be lost the next time you reload the system. snmp-server community private RW snmp-server community public RO snmp-server community private@es0 RW snmp-server community public@es0 RO snmp-server chassis-id 0x12 ! If you have made . To ...
Software Guide
Page 81
...based addressing of the event bus namespace, the term DeviceID is on the switch and facilitates the communication between the switch and the event gateway on which to designate events by Cisco IOS. Within the scope of messages. Within the scope of a single instance of switch CLI ... fixed at startup time and cannot be changed until the device restarts, even if the switch hostname is a highly capable publish-and-subscribe communication method. The event agent is the CNS unique identifier for managing logical groups of configuration events. For a subscriber, when given a unique ...
...based addressing of the event bus namespace, the term DeviceID is on the switch and facilitates the communication between the switch and the event gateway on which to designate events by Cisco IOS. Within the scope of messages. Within the scope of a single instance of switch CLI ... fixed at startup time and cannot be changed until the device restarts, even if the switch hostname is a highly capable publish-and-subscribe communication method. The event agent is the CNS unique identifier for managing logical groups of configuration events. For a subscriber, when given a unique ...
Software Guide
Page 83
... server Distribution layer DHCP relay agent default gateway Access layer switches 141328 OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 4-5 The Cisco IOS agent feature supports the switch by providing these features: • Initial Configuration, page 4-5 • Incremental (Partial) Configuration...Engine by using DHCP-based autoconfiguration. The DHCP relay agent forwards the reply to the switch. The Cisco IOS agents initiate communication with the Cisco IOS agent. Figure 4-2 shows a sample network configuration for retrieving the initial bootstrap configuration file by...
... server Distribution layer DHCP relay agent default gateway Access layer switches 141328 OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 4-5 The Cisco IOS agent feature supports the switch by providing these features: • Initial Configuration, page 4-5 • Incremental (Partial) Configuration...Engine by using DHCP-based autoconfiguration. The DHCP relay agent forwards the reply to the switch. The Cisco IOS agents initiate communication with the Cisco IOS agent. Figure 4-2 shows a sample network configuration for retrieving the initial bootstrap configuration file by...
Software Guide
Page 85
... gateway IP address • A bootstrap configuration file that includes the CNS configuration commands that enable the switch to communicate with the Configuration Engine • The switch configured to use either the switch MAC address or the serial number...ps4617/products_installation_and_configuration_ guide_book09186a00803b59db.html OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 4-7 Chapter 4 Configuring Cisco IOS CNS Agents Configuring Cisco IOS Agents Table 4-1 Prerequisites for Enabling Automatic Configuration Device Access switch Distribution switch DHCP server TFTP...
... gateway IP address • A bootstrap configuration file that includes the CNS configuration commands that enable the switch to communicate with the Configuration Engine • The switch configured to use either the switch MAC address or the serial number...ps4617/products_installation_and_configuration_ guide_book09186a00803b59db.html OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 4-7 Chapter 4 Configuring Cisco IOS CNS Agents Configuring Cisco IOS Agents Table 4-1 Prerequisites for Enabling Automatic Configuration Device Access switch Distribution switch DHCP server TFTP...
Software Guide
Page 91
...-capable Catalyst switches, but we recommend that you instead group switches into communities. Network Assistant has a Cluster Conversion Wizard to help . This chapter focuses on Cisco.com. The switches in the cluster use the switch clustering technology so that...switch clusters and converting a switch cluster to a community. For more information about Network Assistant, including introductory information on interfaces that you convert a cluster to a community, see Chapter 34, "Configuring Network Security with Cisco Network Assistant, available on Catalyst 2960 switch clusters....
...-capable Catalyst switches, but we recommend that you instead group switches into communities. Network Assistant has a Cluster Conversion Wizard to help . This chapter focuses on Cisco.com. The switches in the cluster use the switch clustering technology so that...switch clusters and converting a switch cluster to a community. For more information about Network Assistant, including introductory information on interfaces that you convert a cluster to a community, see Chapter 34, "Configuring Network Security with Cisco Network Assistant, available on Catalyst 2960 switch clusters....
Software Guide
Page 92
...the switch cluster is using a Catalyst 3550, Catalyst 3560, or Catalyst 3750 switch as standby cluster command switches to avoid loss of them. All communication with cluster members. Table 5-1 lists the Catalyst switches eligible for switch clustering, including which ones can be cluster command switches and which ones can ... 2950 Catalyst 2950 LRE Catalyst 2940 Catalyst 3500 XL Catalyst 2900 XL (8-MB switches) Catalyst 2900 XL (4-MB switches) Catalyst 1900 and 2820 Cisco IOS Release 12.1(11)AX or later 12.1(19)EA1b or later 12.1(4)EA1 or later 12.1(11)AX or later 12.2(25)FX or...
...the switch cluster is using a Catalyst 3550, Catalyst 3560, or Catalyst 3750 switch as standby cluster command switches to avoid loss of them. All communication with cluster members. Table 5-1 lists the Catalyst switches eligible for switch clustering, including which ones can be cluster command switches and which ones can ... 2950 Catalyst 2950 LRE Catalyst 2940 Catalyst 3500 XL Catalyst 2900 XL (8-MB switches) Catalyst 2900 XL (4-MB switches) Catalyst 1900 and 2820 Cisco IOS Release 12.1(11)AX or later 12.1(19)EA1b or later 12.1(4)EA1 or later 12.1(11)AX or later 12.2(25)FX or...
Software Guide
Page 94
... should understand before you create the cluster: • Automatic Discovery of Cluster Candidates and Members The cluster command switch uses Cisco Discovery Protocol (CDP) to discover cluster member switches, candidate switches, neighboring switch clusters, and edge devices across multiple VLANs and... Cluster Command Switches, page 5-9 • IP Addresses, page 5-12 • Hostnames, page 5-12 • Passwords, page 5-13 • SNMP Community Strings, page 5-13 • TACACS+ and RADIUS, page 5-14 • LRE Profiles, page 5-14 Refer to the cluster command switch through at least...
... should understand before you create the cluster: • Automatic Discovery of Cluster Candidates and Members The cluster command switch uses Cisco Discovery Protocol (CDP) to discover cluster member switches, candidate switches, neighboring switch clusters, and edge devices across multiple VLANs and... Cluster Command Switches, page 5-9 • IP Addresses, page 5-12 • Hostnames, page 5-12 • Passwords, page 5-13 • SNMP Community Strings, page 5-13 • TACACS+ and RADIUS, page 5-14 • LRE Profiles, page 5-14 Refer to the cluster command switch through at least...
Software Guide
Page 99
... command switch fails. Note The HSRP standby hold time interval is 10 seconds. For the limitations to automatic discovery, see the "Automatic Recovery of all communication and configuration information to HSRP priorities. The switch with the highest priority becomes the active cluster command switch. OL-8603-04 Catalyst 2960 Switch Software...
... command switch fails. Note The HSRP standby hold time interval is 10 seconds. For the limitations to automatic discovery, see the "Automatic Recovery of all communication and configuration information to HSRP priorities. The switch with the highest priority becomes the active cluster command switch. OL-8603-04 Catalyst 2960 Switch Software...
Software Guide
Page 102
... cluster command switch fails and that a standby cluster command switch becomes the active cluster command switch. The default hostname for the switch is managed and communicates with the highest priority becomes the active cluster command switch. However, because it was down. Planning a Switch Cluster Chapter 5 Clustering Switches Automatic discovery has these...
... cluster command switch fails and that a standby cluster command switch becomes the active cluster command switch. The default hostname for the switch is managed and communicates with the highest priority becomes the active cluster command switch. However, because it was down. Planning a Switch Cluster Chapter 5 Clustering Switches Automatic discovery has these...