Software Guide
Page 2
... ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. and/or its affiliates in this document or Web site are registered trademarks of Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT...
... ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. and/or its affiliates in this document or Web site are registered trademarks of Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT...
Software Guide
Page 11
... Using VACLs with Cisco IOS ACLs 15 Guidelines for Configuring Cisco IOS ACLs and VACLs on the Same VLAN Interface 16 Guidelines for Using Layer 4 Operations 20 Using VACLs in your Network 22 Wiring Closet Configuration 22 Redirecting Broadcast Traffic to a Specific Server Port 23 Restricting the...Forwarding 46 Understanding How Policy-Based Forwarding Works 47 Hardware and Software Requirements 47 Configuring Policy-Based Forwarding 48 Enabling PBF and Specifying a MAC Address for the PFC2 48 Configuring VACLs for PBF 50 Catalyst 6000 Family Software Configuration Guide, Releases 6.3 and 6.4 11
... Using VACLs with Cisco IOS ACLs 15 Guidelines for Configuring Cisco IOS ACLs and VACLs on the Same VLAN Interface 16 Guidelines for Using Layer 4 Operations 20 Using VACLs in your Network 22 Wiring Closet Configuration 22 Redirecting Broadcast Traffic to a Specific Server Port 23 Restricting the...Forwarding 46 Understanding How Policy-Based Forwarding Works 47 Hardware and Software Requirements 47 Configuring Policy-Based Forwarding 48 Enabling PBF and Specifying a MAC Address for the PFC2 48 Configuring VACLs for PBF 50 Catalyst 6000 Family Software Configuration Guide, Releases 6.3 and 6.4 11
Software Guide
Page 13
...Port Status 2 Checking Port Capabilities 4 Using Telnet 4 Using Secure Shell Encryption for Telnet Sessions 5 Monitoring User Sessions 6 Using Ping 7 Understanding How Ping Works 7 Executing Ping 8 Using Layer 2 Traceroute 9 Layer 2 Traceroute Usage Guidelines 9 Identifying a Layer 2 Path 10 Using IP Traceroute 10 Understanding How IP Traceroute Works 10 Executing IP Traceroute 11 Administering the Switch... Static ARP Entries 8 Scheduling a System Reset 9 Scheduling a Reset at a Specific Time 10 Scheduling a Reset Within a Specified Amount of Time 10 Power Management 11 Catalyst 6000 Family Software Configuration...
...Port Status 2 Checking Port Capabilities 4 Using Telnet 4 Using Secure Shell Encryption for Telnet Sessions 5 Monitoring User Sessions 6 Using Ping 7 Understanding How Ping Works 7 Executing Ping 8 Using Layer 2 Traceroute 9 Layer 2 Traceroute Usage Guidelines 9 Identifying a Layer 2 Path 10 Using IP Traceroute 10 Understanding How IP Traceroute Works 10 Executing IP Traceroute 11 Administering the Switch... Static ARP Entries 8 Scheduling a System Reset 9 Scheduling a Reset at a Specific Time 10 Scheduling a Reset Within a Specified Amount of Time 10 Power Management 11 Catalyst 6000 Family Software Configuration...
Software Guide
Page 41
... enter lists of operation: normal and privileged. Modules, ports, and VLANs are numbered starting with the switch CLI: • Switch CLI Command Modes, page 2-5 • Designating Modules, Ports, and VLANs on the Command Line Switch commands are password protected. Port 1 is module 1, residing in slots 1 and 2. To designate a specific port on module 3 78-13315-02 Catalyst 6000 Family...
... enter lists of operation: normal and privileged. Modules, ports, and VLANs are numbered starting with the switch CLI: • Switch CLI Command Modes, page 2-5 • Designating Modules, Ports, and VLANs on the Command Line Switch commands are password protected. Port 1 is module 1, residing in slots 1 and 2. To designate a specific port on module 3 78-13315-02 Catalyst 6000 Family...
Software Guide
Page 44
...Command-Line Interface These sections describe the MSFC CLI: • Cisco IOS Command Modes, page 2-8 • Cisco IOS Command-Line Interface, page 2-10 Note In addition to the methods described in the "Accessing the MSFC from the Switch" section on page 2-3, you can configure IOS to support direct...of the commands are one-time commands, such as a command usage description. For more information, see the "Getting a List of protocol-specific modes. To have access to access privileged EXEC mode. Normally, you must enter privileged EXEC mode. From privileged EXEC mode, you can enter...
...Command-Line Interface These sections describe the MSFC CLI: • Cisco IOS Command Modes, page 2-8 • Cisco IOS Command-Line Interface, page 2-10 Note In addition to the methods described in the "Accessing the MSFC from the Switch" section on page 2-3, you can configure IOS to support direct...of the commands are one-time commands, such as a command usage description. For more information, see the "Getting a List of protocol-specific modes. To have access to access privileged EXEC mode. Normally, you must enter privileged EXEC mode. From privileged EXEC mode, you can enter...
Software Guide
Page 80
... the allowed VLANs list for clear trunk mod/port vlans a trunk. (Optional) Add specific VLANs to allowed list. show trunk 1/1 Port Mode Encapsulation Status Native vlan 1/1 desirable isl trunking 1 Port Vlans allowed on trunk 1/1 1-100, 500-1005,2500 Port Vlans allowed and active in management domain 1/1 1,521-524 Port Vlans in privileged mode: Step 1 Step 2 Step...
... the allowed VLANs list for clear trunk mod/port vlans a trunk. (Optional) Add specific VLANs to allowed list. show trunk 1/1 Port Mode Encapsulation Status Native vlan 1/1 desirable isl trunking 1 Port Vlans allowed on trunk 1/1 1-100, 500-1005,2500 Port Vlans allowed and active in management domain 1/1 1,521-524 Port Vlans in privileged mode: Step 1 Step 2 Step...
Software Guide
Page 104
show channel traffic ChanId Port Rx-Ucst Tx-Ucst Rx-Mcst Tx-Mcst Rx-Bcst Tx-Bcst 808 2/16 0.00% 0.00% 50.00% 75.75% 0.00% 0.00% 808 2/17 0.00% 0.00% 50.00% 25.25% 0.00% 0.00% 816 2/31 0.00% 0.00% ...% 0.00% 0.00% 816 2/32 0.00% 0.00% 75.75% 50.50% 0.00% 0.00% Console> (enable) Displaying Outgoing Ports for a Specified Address or Layer 4 Port Number To display the outgoing port used in an EtherChannel for a specific address or Layer 4 port number, perform this task in privileged mode: Task Configure EtherChannel frame distribution. Configuring EtherChannel Chapter 6 Configuring...
show channel traffic ChanId Port Rx-Ucst Tx-Ucst Rx-Mcst Tx-Mcst Rx-Bcst Tx-Bcst 808 2/16 0.00% 0.00% 50.00% 75.75% 0.00% 0.00% 808 2/17 0.00% 0.00% 50.00% 25.25% 0.00% 0.00% 816 2/31 0.00% 0.00% ...% 0.00% 0.00% 816 2/32 0.00% 0.00% 75.75% 50.50% 0.00% 0.00% Console> (enable) Displaying Outgoing Ports for a Specified Address or Layer 4 Port Number To display the outgoing port used in an EtherChannel for a specific address or Layer 4 port number, perform this task in privileged mode: Task Configure EtherChannel frame distribution. Configuring EtherChannel Chapter 6 Configuring...
Software Guide
Page 113
...refer to use and configure Cisco's proprietary spanning tree protocols, Per VLAN Spanning Tree + (PVST+) and Multi-Instance Spanning Tree Protocol (MISTP), on the Catalyst 6000 family switches. Understanding How Spanning Tree Protocols Work This section describes the specific functions that are based on...Bridge Identifiers, page 8-13 • Using PVST+, page 8-15 • Using MISTP-PVST+ or MISTP, page 8-22 • Configuring a Root Switch, page 8-31 • Configuring Spanning Tree Timers, page 8-35 • Understanding How BPDU Skewing Works, page 8-37 • Configuring BPDU Skewing, ...
...refer to use and configure Cisco's proprietary spanning tree protocols, Per VLAN Spanning Tree + (PVST+) and Multi-Instance Spanning Tree Protocol (MISTP), on the Catalyst 6000 family switches. Understanding How Spanning Tree Protocols Work This section describes the specific functions that are based on...Bridge Identifiers, page 8-13 • Using PVST+, page 8-15 • Using MISTP-PVST+ or MISTP, page 8-22 • Configuring a Root Switch, page 8-31 • Configuring Spanning Tree Timers, page 8-35 • Understanding How BPDU Skewing Works, page 8-37 • Configuring BPDU Skewing, ...
Software Guide
Page 116
... bandwidth. The long method uses a 32-bit format that have not been specifically configured for each switch is calculated for port cost. Calculating the Port Cost Using the Short Method The IEEE 802.1D specification assigns 16-bit (short) default port cost values to the root switch is selected. The 16-bit values are only used for...
... bandwidth. The long method uses a 32-bit format that have not been specifically configured for each switch is calculated for port cost. Calculating the Port Cost Using the Short Method The IEEE 802.1D specification assigns 16-bit (short) default port cost values to the root switch is selected. The 16-bit values are only used for...
Software Guide
Page 132
...specific VLAN forwards frames for that VLAN. Caution We do not recommend disabling spanning tree, even in a VLAN. The default is 0-63. Console> (enable) show config all This example shows how to trunking ports only. Using PVST+ Chapter 8 Configuring Spanning Tree Configuring the PVST+ Port Priority for a VLAN When the switch...11,2/13-14,2/16-48 100 set spantree portcost 2/3 12 set spantree portpri 2/1-48 32 set spantree portvlanpri 2/1 0 set spantree portvlanpri mod/port priority a port. [vlans] Verify the port VLAN priority. The possible port priority range is 32....
...specific VLAN forwards frames for that VLAN. Caution We do not recommend disabling spanning tree, even in a VLAN. The default is 0-63. Console> (enable) show config all This example shows how to trunking ports only. Using PVST+ Chapter 8 Configuring Spanning Tree Configuring the PVST+ Port Priority for a VLAN When the switch...11,2/13-14,2/16-48 100 set spantree portcost 2/3 12 set spantree portpri 2/1-48 32 set spantree portvlanpri 2/1 0 set spantree portvlanpri mod/port priority a port. [vlans] Verify the port VLAN priority. The possible port priority range is 32....
Software Guide
Page 139
... full duplex) and higher numbers to ports attached to configure the MISTP port instance cost on a port: Console> (enable) set spantree portinstancecost 2/12 cost 110110 2 Port 2/12 instances 1,3-16 have path cost 22222222. To configure the port instance cost for that instance. The port with the lowest priority value for a specific MISTP instance forwards frames for an...
... full duplex) and higher numbers to ports attached to configure the MISTP port instance cost on a port: Console> (enable) set spantree portinstancecost 2/12 cost 110110 2 Port 2/12 instances 1,3-16 have path cost 22222222. To configure the port instance cost for that instance. The port with the lowest priority value for a specific MISTP instance forwards frames for an...
Software Guide
Page 155
Specifically, an uplink group consists of the root port (which is in Figure 9-2. This feature may not be useful for other types of blocked ports. Note UplinkFast is connected directly to Switch B over link L1 and to 5 seconds. Figure 9-1 shows an example topology with no link failures. Switch A, the root switch...state without going through the listening and learning states, as shown in blocking state. The blocked ports do not include self-looping ports. The port on Switch C and transitions it to forwarding state 11242 78-13315-02 Catalyst 6000 Family Software Configuration ...
Specifically, an uplink group consists of the root port (which is in Figure 9-2. This feature may not be useful for other types of blocked ports. Note UplinkFast is connected directly to Switch B over link L1 and to 5 seconds. Figure 9-1 shows an example topology with no link failures. Switch A, the root switch...state without going through the listening and learning states, as shown in blocking state. The blocked ports do not include self-looping ports. The port on Switch C and transitions it to forwarding state 11242 78-13315-02 Catalyst 6000 Family Software Configuration ...
Software Guide
Page 166
...settings for bridge. You cannot disable UplinkFast on the switch. The port cost and portinstancecost of all ports set to off. Inst port list 1 4/1(fwd) Console> Disabling UplinkFast The set to off. uplinkfast enabled for a specific instance: Console> show spantree uplinkfast mistp-instance 1...packets/100ms. uplinkfast all-protocols field set spantree uplinkfast disable command disables UplinkFast on the switch, but the switch priority and port cost values are not reset to the factory defaults. VLAN port list 1-20 1/1(fwd),1/2-1/5 21-50 1/9(fwd), 1/6-1/8, 1/10-1/12 51-100 2/1(...
...settings for bridge. You cannot disable UplinkFast on the switch. The port cost and portinstancecost of all ports set to off. Inst port list 1 4/1(fwd) Console> Disabling UplinkFast The set to off. uplinkfast enabled for a specific instance: Console> show spantree uplinkfast mistp-instance 1...packets/100ms. uplinkfast all-protocols field set spantree uplinkfast disable command disables UplinkFast on the switch, but the switch priority and port cost values are not reset to the factory defaults. VLAN port list 1-20 1/1(fwd),1/2-1/5 21-50 1/9(fwd), 1/6-1/8, 1/10-1/12 51-100 2/1(...
Software Guide
Page 171
...to manage VLANs 1 to all the other switches in your network. (Note that maintains VLAN configuration consistency by managing the addition, deletion, and renaming of problems, such as duplicate VLAN names, incorrect VLAN-type specifications, and security violations. These sections describe how...page 10-3 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 10-1 Note For complete information on one switch and have those changes automatically communicated to 1005 in the network. You can make configuration changes centrally on configuring VLANs, see ...
...to manage VLANs 1 to all the other switches in your network. (Note that maintains VLAN configuration consistency by managing the addition, deletion, and renaming of problems, such as duplicate VLAN names, incorrect VLAN-type specifications, and security violations. These sections describe how...page 10-3 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 10-1 Note For complete information on one switch and have those changes automatically communicated to 1005 in the network. You can make configuration changes centrally on configuring VLANs, see ...
Software Guide
Page 179
...Disable VTP version 2. show vtp domain This example shows how to make VLANs 2-99, 250-255, and 501-1000 pruning eligible on trunk ports. Warning: trbrf & trcrf vlans will not be pruning-capable before enabling. Do you want to continue (y/n) [n]? y VTP domain Lab_Network modified...Enable VTP pruning in the management domain. Verify that the appropriate VLANs are pruning eligible.) clear vtp pruneeligible vlan_range (Optional) Make specific VLANs pruning eligible set vtp pruneeligible 250-255 Vlans 2-99,250-255,501-1000 eligible for pruning on this device. Command ...
...Disable VTP version 2. show vtp domain This example shows how to make VLANs 2-99, 250-255, and 501-1000 pruning eligible on trunk ports. Warning: trbrf & trcrf vlans will not be pruning-capable before enabling. Do you want to continue (y/n) [n]? y VTP domain Lab_Network modified...Enable VTP pruning in the management domain. Verify that the appropriate VLANs are pruning eligible.) clear vtp pruneeligible vlan_range (Optional) Make specific VLANs pruning eligible set vtp pruneeligible 250-255 Vlans 2-99,250-255,501-1000 eligible for pruning on this device. Command ...
Software Guide
Page 197
You only need to designate a community VLAN for both unidirectional community VLANs and two-way community VLANs unless specifically differentiated. • Designate one VLAN as the primary VLAN. • You have the option of designating one VLAN as "access points" to a ... You must set to those of the primary VLAN. - Chapter 11 Configuring VLANs Configuring Private VLANs In an Ethernet-switched environment, you can connect a nontrunk promiscuous port to the "server port" of a LocalDirector to remap a number of isolated or community VLANs to the server VLAN so that maps the ...
You only need to designate a community VLAN for both unidirectional community VLANs and two-way community VLANs unless specifically differentiated. • Designate one VLAN as the primary VLAN. • You have the option of designating one VLAN as "access points" to a ... You must set to those of the primary VLAN. - Chapter 11 Configuring VLANs Configuring Private VLANs In an Ethernet-switched environment, you can connect a nontrunk promiscuous port to the "server port" of a LocalDirector to remap a number of isolated or community VLANs to the server VLAN so that maps the ...
Software Guide
Page 230
... 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 If an entry is active; Use the keyword options to display information for specific traffic (refer to the members of the following: - when traffic for more information). Flow Masks Flow masks determine how NetFlow table entries are ...PFC2 enable state CEF enable state on the current flow mask. When the flow mask changes, the entire NetFlow table is performing Layer 3 switching, it changes its flow mask to display the contents of the NetFlow table and the current flow mask. Default CEF for PFC2 Configuration ...
... 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 If an entry is active; Use the keyword options to display information for specific traffic (refer to the members of the following: - when traffic for more information). Flow Masks Flow masks determine how NetFlow table entries are ...PFC2 enable state CEF enable state on the current flow mask. When the flow mask changes, the entire NetFlow table is performing Layer 3 switching, it changes its flow mask to display the contents of the NetFlow table and the current flow mask. Default CEF for PFC2 Configuration ...
Software Guide
Page 238
... found error:0 Complete flow exists error :0 This example shows how to display information on a specific IP MMLS entry on the MSFC: Router# show mls ip multicast 224.1.1.1 Multicast hardware switched flows: (1.1.13.1, 224.1.1.1) Incoming interface: Vlan13, Packets switched: 61590 Hardware switched outgoing interfaces: Vlan20 Vlan9 RFD-MFD installed: Vlan13 (1.1.9.3, 224.1.1.1) Incoming interface: Vlan9, Packets...
... found error:0 Complete flow exists error :0 This example shows how to display information on a specific IP MMLS entry on the MSFC: Router# show mls ip multicast 224.1.1.1 Multicast hardware switched flows: (1.1.13.1, 224.1.1.1) Incoming interface: Vlan13, Packets switched: 61590 Hardware switched outgoing interfaces: Vlan20 Vlan9 RFD-MFD installed: Vlan13 (1.1.9.3, 224.1.1.1) Incoming interface: Vlan9, Packets...
Software Guide
Page 242
...13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display IP multicast entries for a specific MSFC2: Console> (enable) show mls multicast entry 15 Router IP Dest IP Source IP Pkts Bytes InVlan OutVlans 1.1.5.252 224.1.1.1 1.1.5.252 224....3.4.9 12 25 3120 8,20 Total Entries: 2 Console> (enable) This example shows how to display IP multicast entries for a specific MSFC2 and a specific multicast source address: Console> (enable) show mls multicast entry 15 source 1.1.11.1 short Router IP Dest IP Source IP Pkts ...
...13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display IP multicast entries for a specific MSFC2: Console> (enable) show mls multicast entry 15 Router IP Dest IP Source IP Pkts Bytes InVlan OutVlans 1.1.5.252 224.1.1.1 1.1.5.252 224....3.4.9 12 25 3120 8,20 Total Entries: 2 Console> (enable) This example shows how to display IP multicast entries for a specific MSFC2 and a specific multicast source address: Console> (enable) show mls multicast entry 15 source 1.1.11.1 short Router IP Dest IP Source IP Pkts ...
Software Guide
Page 243
...example shows how to specify the IP entry aging time: Console> (enable) set mls agingtime ip 512 Multilayer switching aging time IP set to the closest multiple of 8 seconds is aged out. This example shows how to ...agingtime [agingtime] This example shows how to specify the entry aging time: Console> (enable) set mls agingtime 512 Multilayer switching agingtime IP and IPX set mls agingtime ipx [agingtime] table. Any entry that is not a multiple of 8 seconds...is adjusted to 64 and a value of 8 to all protocol-specific NetFlow table entries. For example, a value of 65 is 256 seconds.
...example shows how to specify the IP entry aging time: Console> (enable) set mls agingtime ip 512 Multilayer switching aging time IP set to the closest multiple of 8 seconds is aged out. This example shows how to ...agingtime [agingtime] This example shows how to specify the entry aging time: Console> (enable) set mls agingtime 512 Multilayer switching agingtime IP and IPX set mls agingtime ipx [agingtime] table. Any entry that is not a multiple of 8 seconds...is adjusted to 64 and a value of 8 to all protocol-specific NetFlow table entries. For example, a value of 65 is 256 seconds.