Software Guide
Page 6
Contents Hostnames 5-12 Passwords 5-13 SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 ...
Contents Hostnames 5-12 Passwords 5-13 SNMP Community Strings 5-13 TACACS+ and RADIUS 5-14 LRE Profiles 5-14 Using the CLI to Manage Switch Clusters 5-14 Catalyst 1900 and Catalyst 2820 CLI Considerations 5-14 ...
Software Guide
Page 8
... Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the Switch for Local Authentication and Authorization 8-32 Configuring the Switch for Secure Shell 8-33 Understanding SSH 8-33...
... Configuring Settings for All RADIUS Servers 8-29 Configuring the Switch to Use Vendor-Specific RADIUS Attributes 8-29 Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 8-31 Displaying the RADIUS Configuration 8-31 Configuring the Switch for Local Authentication and Authorization 8-32 Configuring the Switch for Secure Shell 8-33 Understanding SSH 8-33...
Software Guide
Page 9
... Authentication Bypass 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected to a Port 9-26 Changing the Quiet Period 9-26 Changing...
... Authentication Bypass 9-21 MAC Authentication Bypass 9-22 Upgrading from a Previous Software Release 9-22 Configuring IEEE 802.1x Authentication 9-22 Configuring the Switch-to-RADIUS-Server Communication 9-24 Configuring the Host Mode 9-25 Configuring Periodic Re-Authentication 9-25 Manually Re-Authenticating a Client Connected to a Port 9-26 Changing the Quiet Period 9-26 Changing...
Software Guide
Page 19
...-12 Displaying the Logging Configuration 25-13 Configuring SNMP 26-1 Understanding SNMP 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
...-12 Displaying the Logging Configuration 25-13 Configuring SNMP 26-1 Understanding SNMP 26-1 SNMP Versions 26-2 SNMP Manager Functions 26-3 SNMP Agent Functions 26-4 SNMP Community Strings 26-4 Using SNMP to Access MIB Variables 26-4 Catalyst 2960 Switch Software Configuration Guide xix
Software Guide
Page 20
... MIB Object Values 26-6 Configuring SNMP 26-6 Default SNMP Configuration 26-7 SNMP Configuration Guidelines 26-7 Disabling the SNMP Agent 26-8 Configuring Community Strings 26-8 Configuring SNMP Groups and Users 26-10 Configuring SNMP Notifications 26-12 Setting the Agent Contact and Location Information 26-15 ...SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time ...
... MIB Object Values 26-6 Configuring SNMP 26-6 Default SNMP Configuration 26-7 SNMP Configuration Guidelines 26-7 Disabling the SNMP Agent 26-8 Configuring Community Strings 26-8 Configuring SNMP Groups and Users 26-10 Configuring SNMP Notifications 26-12 Setting the Agent Contact and Location Information 26-15 ...SNMP 26-16 SNMP Examples 26-17 Displaying SNMP Status 26-18 27 C H A P T E R Configuring Cisco IOS IP SLAs Operations 27-1 Understanding Cisco IOS IP SLAs 27-1 Using Cisco IOS IP SLAs to Measure Network Performance 27-2 IP SLAs Responder and IP SLAs Control Protocol 27-3 Response Time ...
Software Guide
Page 34
... and Gigabit EtherChannel connections. For more information about the device manager, see the getting started guide. • User-defined and Cisco-default Smartports macros for creating custom switch configurations for simplified deployment across the network. • An embedded device manager GUI for ...of duplex mode on all switch ports for optimizing bandwidth Catalyst 2960 Switch Software Configuration Guide 1-2 OL-8603-04 Managing communities, which are similar to identify existing switch clusters and eligible switches that can join a cluster and to multiple ports ...
... and Gigabit EtherChannel connections. For more information about the device manager, see the getting started guide. • User-defined and Cisco-default Smartports macros for creating custom switch configurations for simplified deployment across the network. • An embedded device manager GUI for ...of duplex mode on all switch ports for optimizing bandwidth Catalyst 2960 Switch Software Configuration Guide 1-2 OL-8603-04 Managing communities, which are similar to identify existing switch clusters and eligible switches that can join a cluster and to multiple ports ...
Software Guide
Page 36
...console port or by generating switch-specific configuration changes, sending them to manage a single switch, a cluster of switches, or a community of MIB extensions and four remote monitoring (RMON) groups. Manageability Features These are the manageability features: • CNS embedded agents ...DHCP server for automating configuration of switch information (such as HP OpenView or SunNet Manager. For more information about using Telnet from Cisco.com. The switch supports a comprehensive set of devices. For more information about CNS, see Chapter 2, "Using the Command-Line...
...console port or by generating switch-specific configuration changes, sending them to manage a single switch, a cluster of switches, or a community of MIB extensions and four remote monitoring (RMON) groups. Manageability Features These are the manageability features: • CNS embedded agents ...DHCP server for automating configuration of switch information (such as HP OpenView or SunNet Manager. For more information about using Telnet from Cisco.com. The switch supports a comprehensive set of devices. For more information about CNS, see Chapter 2, "Using the Command-Line...
Software Guide
Page 37
Chapter 1 Overview Features • Support for Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 to utilize IPv6 transport, communicate with IPv6 peers, and advertise IPv6 routes • Support for these IP services, making them VRF aware so that they can operate on multiple routing ... switch image files (requires the cryptographic version of the software) • Configuration replacement and rollback to replace the running configuration on a switch with any saved Cisco IOS configuration file OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 1-5
Chapter 1 Overview Features • Support for Enhanced Interior Gateway Routing Protocol (EIGRP) IPv6 to utilize IPv6 transport, communicate with IPv6 peers, and advertise IPv6 routes • Support for these IP services, making them VRF aware so that they can operate on multiple routing ... switch image files (requires the cryptographic version of the software) • Configuration replacement and rollback to replace the running configuration on a switch with any saved Cisco IOS configuration file OL-8603-04 Catalyst 2960 Switch Software Configuration Guide 1-5
Software Guide
Page 40
...ACLs for restricting IEEE 802.1x-authenticated users to a specified VLAN - Guest VLAN to provide limited services to detect and recognize a Cisco IP phone. - Restricted VLAN to provide limited services to users who are supported: - VLAN assignment for filtering non-IP traffic ... DHCP servers • IEEE 802.1x port-based authentication to prevent unauthorized devices (clients) from gaining access to allow secure HTTP communications (requires the cryptographic version of endpoint systems or clients before granting the devices network access. Port security for the HTTP 1.1 server...
...ACLs for restricting IEEE 802.1x-authenticated users to a specified VLAN - Guest VLAN to provide limited services to detect and recognize a Cisco IP phone. - Restricted VLAN to provide limited services to users who are supported: - VLAN assignment for filtering non-IP traffic ... DHCP servers • IEEE 802.1x port-based authentication to prevent unauthorized devices (clients) from gaining access to allow secure HTTP communications (requires the cryptographic version of endpoint systems or clients before granting the devices network access. Port security for the HTTP 1.1 server...
Software Guide
Page 48
...The switches are interconnected through Gigabit interfaces. The server farm includes a call-processing server running Cisco SoftPhone software can be configured per wiring closet. When an end station in one VLAN needs to communicate with an end station in case one VLAN can place, receive, and control calls from ...the Cisco IP Phones are assigned to the same VLAN, only one of up to deliver high-priority...
...The switches are interconnected through Gigabit interfaces. The server farm includes a call-processing server running Cisco SoftPhone software can be configured per wiring closet. When an end station in one VLAN needs to communicate with an end station in case one VLAN can place, receive, and control calls from ...the Cisco IP Phones are assigned to the same VLAN, only one of up to deliver high-priority...
Software Guide
Page 70
... enter the VLAN to have a default gateway set. Note When your entries in privileged EXEC mode, follow these steps to manually assign IP information to communicate. Current configuration: 1363 bytes !
... enter the VLAN to have a default gateway set. Note When your entries in privileged EXEC mode, follow these steps to manually assign IP information to communicate. Current configuration: 1363 bytes !
Software Guide
Page 71
... running-config startup-config Destination filename [startup-config]? snmp-server community private RW snmp-server community public RO snmp-server community private@es0 RW snmp-server community public@es0 RO snmp-server chassis-id 0x12 ! To display ...information stored in flash memory, enter this , your startup configuration in the NVRAM section of flash memory, use the show startup-config or more information about alternative locations from which to copy the configuration file, see Appendix B, "Working with the Cisco...
... running-config startup-config Destination filename [startup-config]? snmp-server community private RW snmp-server community public RO snmp-server community private@es0 RW snmp-server community public@es0 RO snmp-server chassis-id 0x12 ! To display ...information stored in flash memory, enter this , your startup configuration in the NVRAM section of flash memory, use the show startup-config or more information about alternative locations from which to copy the configuration file, see Appendix B, "Working with the Cisco...
Software Guide
Page 81
... be changed until the device restarts, even if the switch hostname is a highly capable publish-and-subscribe communication method. Subject-based addressing conventions define a simple, uniform namespace for the configuration server. Within the scope of devices based ...is on the switch and facilitates the communication between the switch and the event gateway on application, device or group ID, and event. Chapter 4 Configuring Cisco IOS CNS Agents Understanding Cisco Configuration Engine Software Event Service The Cisco Configuration Engine uses the Event Service for...
... be changed until the device restarts, even if the switch hostname is a highly capable publish-and-subscribe communication method. Subject-based addressing conventions define a simple, uniform namespace for the configuration server. Within the scope of devices based ...is on the switch and facilitates the communication between the switch and the event gateway on application, device or group ID, and event. Chapter 4 Configuring Cisco IOS CNS Agents Understanding Cisco Configuration Engine Software Event Service The Cisco Configuration Engine uses the Event Service for...
Software Guide
Page 83
The Cisco IOS agent feature supports the switch by providing these features: • Initial Configuration, page 4-5 • Incremental (Partial) ...in its running configuration. The DHCP relay agent forwards the reply to the switch. Chapter 4 Configuring Cisco IOS CNS Agents Understanding Cisco IOS Agents Understanding Cisco IOS Agents The CNS event agent feature allows the switch to publish and subscribe to events on ... Config ID to a template and downloads the full configuration file to the switch. The Cisco IOS agents initiate communication with the Cisco IOS agent.
The Cisco IOS agent feature supports the switch by providing these features: • Initial Configuration, page 4-5 • Incremental (Partial) ...in its running configuration. The DHCP relay agent forwards the reply to the switch. Chapter 4 Configuring Cisco IOS CNS Agents Understanding Cisco IOS Agents Understanding Cisco IOS Agents The CNS event agent feature allows the switch to publish and subscribe to events on ... Config ID to a template and downloads the full configuration file to the switch. The Cisco IOS agents initiate communication with the Cisco IOS agent.
Software Guide
Page 85
...server • Default gateway IP address • A bootstrap configuration file that includes the CNS configuration commands that enable the switch to communicate with the ConfigID of the default hostname) to generate the ConfigID and EventID • The CNS event agent configured to push the ...configuration file to the switch One or more information about running the setup program and creating templates on the Configuration Engine, see the Cisco Configuration Engine Installation and Setup Guide, 1.5 for each type of device, with the Configuration Engine • The switch configured to ...
...server • Default gateway IP address • A bootstrap configuration file that includes the CNS configuration commands that enable the switch to communicate with the ConfigID of the default hostname) to generate the ConfigID and EventID • The CNS event agent configured to push the ...configuration file to the switch One or more information about running the setup program and creating templates on the Configuration Engine, see the Cisco Configuration Engine Installation and Setup Guide, 1.5 for each type of device, with the Configuration Engine • The switch configured to ...
Software Guide
Page 91
... clusters by applying access control lists (ACLs) on Cisco.com. Access should be controlled through a single IP address. This chapter focuses on ACLs, see the online help you instead group switches into communities. OL-8603-04 Catalyst 2960 Switch Software Configuration Guide... see Chapter 34, "Configuring Network Security with Cisco Network Assistant, available on interfaces that are configured with other switches. For more information on Catalyst 2960 switch clusters. This chapter consists of up to a community, see the switch command reference. For the ...
... clusters by applying access control lists (ACLs) on Cisco.com. Access should be controlled through a single IP address. This chapter focuses on ACLs, see the online help you instead group switches into communities. OL-8603-04 Catalyst 2960 Switch Software Configuration Guide... see Chapter 34, "Configuring Network Security with Cisco Network Assistant, available on interfaces that are configured with other switches. For more information on Catalyst 2960 switch clusters. This chapter consists of up to a community, see the switch command reference. For the ...
Software Guide
Page 92
... Command-switch redundancy if a cluster command switch fails. The switches can be in the same location, or they can be cluster member switches. All communication with cluster members. For complete information about these switches in the cluster) network. A cluster standby group is the single point of Catalyst switches through the...2950 Catalyst 2950 LRE Catalyst 2940 Catalyst 3500 XL Catalyst 2900 XL (8-MB switches) Catalyst 2900 XL (4-MB switches) Catalyst 1900 and 2820 Cisco IOS Release 12.1(11)AX or later 12.1(19)EA1b or later 12.1(4)EA1 or later 12.1(11)AX or later 12.2(25)FX ...
... Command-switch redundancy if a cluster command switch fails. The switches can be in the same location, or they can be cluster member switches. All communication with cluster members. For complete information about these switches in the cluster) network. A cluster standby group is the single point of Catalyst switches through the...2950 Catalyst 2950 LRE Catalyst 2940 Catalyst 3500 XL Catalyst 2900 XL (8-MB switches) Catalyst 2900 XL (4-MB switches) Catalyst 1900 and 2820 Cisco IOS Release 12.1(11)AX or later 12.1(19)EA1b or later 12.1(4)EA1 or later 12.1(11)AX or later 12.2(25)FX ...
Software Guide
Page 94
... and Standby Cluster Command Switches, page 5-9 • IP Addresses, page 5-12 • Hostnames, page 5-12 • Passwords, page 5-13 • SNMP Community Strings, page 5-13 • TACACS+ and RADIUS, page 5-14 • LRE Profiles, page 5-14 Refer to the release notes for the list of Cluster ...Candidates and Members The cluster command switch uses Cisco Discovery Protocol (CDP) to the software configuration guide for the required software versions and browser and Java plug-in star or cascaded topologies...
... and Standby Cluster Command Switches, page 5-9 • IP Addresses, page 5-12 • Hostnames, page 5-12 • Passwords, page 5-13 • SNMP Community Strings, page 5-13 • TACACS+ and RADIUS, page 5-14 • LRE Profiles, page 5-14 Refer to the release notes for the list of Cluster ...Candidates and Members The cluster command switch uses Cisco Discovery Protocol (CDP) to the software configuration guide for the required software versions and browser and Java plug-in star or cascaded topologies...
Software Guide
Page 99
... stack fails. The default HSRP standby hello time interval is the standby cluster command switch (SC). Because a cluster command switch manages the forwarding of all communication and configuration information to all the cluster member switches, we strongly recommend the following: • For a cluster command switch stack, a standby cluster command switch is...
... stack fails. The default HSRP standby hello time interval is the standby cluster command switch (SC). Because a cluster command switch manages the forwarding of all communication and configuration information to all the cluster member switches, we strongly recommend the following: • For a cluster command switch stack, a standby cluster command switch is...
Software Guide
Page 102
... cluster member switches through any Catalyst 1900, Catalyst 2820, and Catalyst 2916M XL cluster member switches. The default hostname for the switch is managed and communicates with the highest priority becomes the active cluster command switch. The active cluster command switch sends a copy of the cluster configuration to either use the...
... cluster member switches through any Catalyst 1900, Catalyst 2820, and Catalyst 2916M XL cluster member switches. The default hostname for the switch is managed and communicates with the highest priority becomes the active cluster command switch. The active cluster command switch sends a copy of the cluster configuration to either use the...