Software Guide
Page 2
... and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, Fast Step, ..., TransPath, and Voice LAN are the property of Cisco Systems, Inc.; and certain other company. (0208R) Catalyst 6000 Family Software Configuration Guide Copyright © 1999-2003, Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE ...
... and Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCNA, CCNP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, the Cisco IOS logo, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Empowering the Internet Generation, Enterprise/Solver, EtherChannel, EtherSwitch, Fast Step, ..., TransPath, and Voice LAN are the property of Cisco Systems, Inc.; and certain other company. (0208R) Catalyst 6000 Family Software Configuration Guide Copyright © 1999-2003, Cisco Systems, Inc. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE ...
Software Guide
Page 11
... Using VACLs with Cisco IOS ACLs 15 Guidelines for Configuring Cisco IOS ACLs and VACLs on the Same VLAN Interface 16 Guidelines for Using Layer 4 Operations 20 Using VACLs in your Network 22 Wiring Closet Configuration 22 Redirecting Broadcast Traffic to a Specific Server Port 23 Restricting the...Forwarding 46 Understanding How Policy-Based Forwarding Works 47 Hardware and Software Requirements 47 Configuring Policy-Based Forwarding 48 Enabling PBF and Specifying a MAC Address for the PFC2 48 Configuring VACLs for PBF 50 Catalyst 6000 Family Software Configuration Guide, Releases 6.3 and 6.4 11
... Using VACLs with Cisco IOS ACLs 15 Guidelines for Configuring Cisco IOS ACLs and VACLs on the Same VLAN Interface 16 Guidelines for Using Layer 4 Operations 20 Using VACLs in your Network 22 Wiring Closet Configuration 22 Redirecting Broadcast Traffic to a Specific Server Port 23 Restricting the...Forwarding 46 Understanding How Policy-Based Forwarding Works 47 Hardware and Software Requirements 47 Configuring Policy-Based Forwarding 48 Enabling PBF and Specifying a MAC Address for the PFC2 48 Configuring VACLs for PBF 50 Catalyst 6000 Family Software Configuration Guide, Releases 6.3 and 6.4 11
Software Guide
Page 13
...Port Status 2 Checking Port Capabilities 4 Using Telnet 4 Using Secure Shell Encryption for Telnet Sessions 5 Monitoring User Sessions 6 Using Ping 7 Understanding How Ping Works 7 Executing Ping 8 Using Layer 2 Traceroute 9 Layer 2 Traceroute Usage Guidelines 9 Identifying a Layer 2 Path 10 Using IP Traceroute 10 Understanding How IP Traceroute Works 10 Executing IP Traceroute 11 Administering the Switch... Static ARP Entries 8 Scheduling a System Reset 9 Scheduling a Reset at a Specific Time 10 Scheduling a Reset Within a Specified Amount of Time 10 Power Management 11 Catalyst 6000 Family Software Configuration...
...Port Status 2 Checking Port Capabilities 4 Using Telnet 4 Using Secure Shell Encryption for Telnet Sessions 5 Monitoring User Sessions 6 Using Ping 7 Understanding How Ping Works 7 Executing Ping 8 Using Layer 2 Traceroute 9 Layer 2 Traceroute Usage Guidelines 9 Identifying a Layer 2 Path 10 Using IP Traceroute 10 Understanding How IP Traceroute Works 10 Executing IP Traceroute 11 Administering the Switch... Static ARP Entries 8 Scheduling a System Reset 9 Scheduling a Reset at a Specific Time 10 Scheduling a Reset Within a Specified Amount of Time 10 Power Management 11 Catalyst 6000 Family Software Configuration...
Software Guide
Page 41
... 1. Table 2-1 shows examples of ports. Both modes are numbered starting with the switch CLI: • Switch CLI Command Modes, page 2-5 • Designating Modules, Ports, and VLANs on a specific module, the command syntax is module 1, residing in slots 1 and 2. To return to designate ports and port ranges. Port 1 is always the left-most port. To designate a specific module, use a comma-separated...
... 1. Table 2-1 shows examples of ports. Both modes are numbered starting with the switch CLI: • Switch CLI Command Modes, page 2-5 • Designating Modules, Ports, and VLANs on a specific module, the command syntax is module 1, residing in slots 1 and 2. To return to designate ports and port ranges. Port 1 is always the left-most port. To designate a specific module, use a comma-separated...
Software Guide
Page 44
... For more information, see the "Getting a List of protocol-specific modes. The configuration modes allow you to make changes to all commands, you start at startup. You must start a session on page 2-1. For example, the switch might enter ROM monitor mode if it does not find a ... Configuration Guide-Releases 6.3 and 6.4 2-8 78-13315-02 MSFC Command-Line Interface These sections describe the MSFC CLI: • Cisco IOS Command Modes, page 2-8 • Cisco IOS Command-Line Interface, page 2-10 Note In addition to the MSFC. When you must type in . To have access to...
... For more information, see the "Getting a List of protocol-specific modes. The configuration modes allow you to make changes to all commands, you start at startup. You must start a session on page 2-1. For example, the switch might enter ROM monitor mode if it does not find a ... Configuration Guide-Releases 6.3 and 6.4 2-8 78-13315-02 MSFC Command-Line Interface These sections describe the MSFC CLI: • Cisco IOS Command Modes, page 2-8 • Cisco IOS Command-Line Interface, page 2-10 Note In addition to the MSFC. When you must type in . To have access to...
Software Guide
Page 80
... set trunk mod/port off trunking on trunk port 1/1 and how to verify the allowed VLAN list for the trunk: Console> (enable) clear trunk 1/1 101-499 Removing Vlan(s) 101-499 from the allowed VLANs list for clear trunk mod/port vlans a trunk. (Optional) Add specific VLANs to the ...allowed set trunk mod/port vlans VLANs list for a trunk port, perform this task in privileged mode: Step 1 Step 2 Step 3 Task Command Remove VLANs from...
... set trunk mod/port off trunking on trunk port 1/1 and how to verify the allowed VLAN list for the trunk: Console> (enable) clear trunk 1/1 101-499 Removing Vlan(s) 101-499 from the allowed VLANs list for clear trunk mod/port vlans a trunk. (Optional) Add specific VLANs to the ...allowed set trunk mod/port vlans VLANs list for a trunk port, perform this task in privileged mode: Step 1 Step 2 Step 3 Task Command Remove VLANs from...
Software Guide
Page 104
Console> (enable) Displaying EtherChannel Traffic Utilization To display the traffic utilization on EtherChannel ports: Console> (enable) show channel traffic ChanId Port Rx-Ucst Tx-Ucst Rx-Mcst Tx-Mcst Rx-Bcst Tx-Bcst 808 2/16 0.00% 0.00% 50.00% 75.75% 0.00% 0.00% 808 2/17 0.00% 0.00% 50...32 0.00% 0.00% 75.75% 50.50% 0.00% 0.00% Console> (enable) Displaying Outgoing Ports for a Specified Address or Layer 4 Port Number To display the outgoing port used in an EtherChannel for a specific address or Layer 4 port number, perform this task in privileged mode: Task Command Display the outgoing...
Console> (enable) Displaying EtherChannel Traffic Utilization To display the traffic utilization on EtherChannel ports: Console> (enable) show channel traffic ChanId Port Rx-Ucst Tx-Ucst Rx-Mcst Tx-Mcst Rx-Bcst Tx-Bcst 808 2/16 0.00% 0.00% 50.00% 75.75% 0.00% 0.00% 808 2/17 0.00% 0.00% 50...32 0.00% 0.00% 75.75% 50.50% 0.00% 0.00% Console> (enable) Displaying Outgoing Ports for a Specified Address or Layer 4 Port Number To display the outgoing port used in an EtherChannel for a specific address or Layer 4 port number, perform this task in privileged mode: Task Command Display the outgoing...
Software Guide
Page 113
... Bridge Identifiers, page 8-13 • Using PVST+, page 8-15 • Using MISTP-PVST+ or MISTP, page 8-22 • Configuring a Root Switch, page 8-31 • Configuring Spanning Tree Timers, page 8-35 • Understanding How BPDU Skewing Works, page 8-37 • Configuring BPDU Skewing, ... refer to all spanning tree protocols. Cisco's proprietary spanning tree protocols, PVST+ and MISTP, are common to the Catalyst 6000 Family Command Reference publication. Understanding How Spanning Tree Protocols Work This section describes the specific functions that calculates the best loop-free ...
... Bridge Identifiers, page 8-13 • Using PVST+, page 8-15 • Using MISTP-PVST+ or MISTP, page 8-22 • Configuring a Root Switch, page 8-31 • Configuring Spanning Tree Timers, page 8-35 • Understanding How BPDU Skewing Works, page 8-37 • Configuring BPDU Skewing, ... refer to all spanning tree protocols. Cisco's proprietary spanning tree protocols, PVST+ and MISTP, are common to the Catalyst 6000 Family Command Reference publication. Understanding How Spanning Tree Protocols Work This section describes the specific functions that calculates the best loop-free ...
Software Guide
Page 116
... By calculating and assigning the port cost of 1 to the root. • A port for each switch. • A designated switch is elected as the root switch. • The shortest distance to the destination address field. Calculating the Port Cost Using the Short Method The IEEE 802.1D specification assigns 16-bit (short) default port cost values to transmit data...
... By calculating and assigning the port cost of 1 to the root. • A port for each switch. • A designated switch is elected as the root switch. • The shortest distance to the destination address field. Calculating the Port Cost Using the Short Method The IEEE 802.1D specification assigns 16-bit (short) default port cost values to transmit data...
Software Guide
Page 132
...6.3 and 6.4 78-13315-02 This parameter applies to configure the port priority for a trunking port in a VLAN. The possible port priority range is 32. When you disable spanning tree on a VLAN, the switch does not participate in spanning-tree and any BPDUs received in that..., the port with the lowest priority value for a specific VLAN forwards frames for a VLAN on set spantree portvlanpri mod/port priority a port. [vlans] Verify the port VLAN priority. The default is 0-63. set spantree portcost 2/12,2/15 19 set spantree portcost 2/1-2,2/4-11,2/13-14,2/16-48 100 set...
...6.3 and 6.4 78-13315-02 This parameter applies to configure the port priority for a trunking port in a VLAN. The possible port priority range is 32. When you disable spanning tree on a VLAN, the switch does not participate in spanning-tree and any BPDUs received in that..., the port with the lowest priority value for a specific VLAN forwards frames for a VLAN on set spantree portvlanpri mod/port priority a port. [vlans] Verify the port VLAN priority. The default is 0-63. set spantree portcost 2/12,2/15 19 set spantree portcost 2/1-2,2/4-11,2/13-14,2/16-48 100 set...
Software Guide
Page 139
...-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 8-27 The port with the lowest priority value for a specific MISTP instance forwards frames for a port, perform this task in privileged mode: Task Command Configure the MISTP port instance cost on set spantree portinstancecost {mod/port} [cost cost] a port. [instances] This example shows how to forward frames.
...-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 8-27 The port with the lowest priority value for a specific MISTP instance forwards frames for a port, perform this task in privileged mode: Task Command Configure the MISTP port instance cost on set spantree portinstancecost {mod/port} [cost cost] a port. [instances] This example shows how to forward frames.
Software Guide
Page 155
... Example Before Direct Link Failure Switch A (Root) Switch B L1 L2 L3 Blocked port 11241 Switch C If Switch C detects a link failure on the currently active link L2 (a direct link failure), UplinkFast unblocks the blocked port on Switch C that is connected directly to Switch B is forwarding) and a set of ports (per VLAN), only one of applications. Specifically, an uplink group consists of...
... Example Before Direct Link Failure Switch A (Root) Switch B L1 L2 L3 Blocked port 11241 Switch C If Switch C detects a link failure on the currently active link L2 (a direct link failure), UplinkFast unblocks the blocked port on Switch C that is connected directly to Switch B is forwarding) and a set of ports (per VLAN), only one of applications. Specifically, an uplink group consists of...
Software Guide
Page 166
...switch priority and port cost values are not reset to the factory defaults. Configuring UplinkFast Chapter 9 Configuring Spanning Tree PortFast, UplinkFast, BackboneFast, and Loop Guard Console> (enable) show spantree uplinkfast 1 100 521-524 Station update rate set to 15 packets/100ms. uplinkfast all -protocols field set to off. uplinkfast enabled for a specific...command, it affects all -protocols field set to 15 packets/100ms. uplinkfast all VLANs on the switch. VLAN port list 1 1/1(fwd),1/2 100 1/2(fwd) 521 1/1(fwd),1/2 522 1/1(fwd),1/2 523 1/1(fwd),1/2 524 ...
...switch priority and port cost values are not reset to the factory defaults. Configuring UplinkFast Chapter 9 Configuring Spanning Tree PortFast, UplinkFast, BackboneFast, and Loop Guard Console> (enable) show spantree uplinkfast 1 100 521-524 Station update rate set to 15 packets/100ms. uplinkfast all -protocols field set to off. uplinkfast enabled for a specific...command, it affects all -protocols field set to 15 packets/100ms. uplinkfast all VLANs on the switch. VLAN port list 1 1/1(fwd),1/2 100 1/2(fwd) 521 1/1(fwd),1/2 522 1/1(fwd),1/2 523 1/1(fwd),1/2 524 ...
Software Guide
Page 171
... VTP Pruning, page 10-3 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 10-1 Note For complete information on the Catalyst 6000 family switches. You can use VTP to manage VLANs 1 to 1005 in this chapter, refer to configure the VLAN Trunking Protocol (VTP) on configuring VLANs, see Chapter... your network. (Note that maintains VLAN configuration consistency by managing the addition, deletion, and renaming of problems, such as duplicate VLAN names, incorrect VLAN-type specifications, and security violations.
... VTP Pruning, page 10-3 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 10-1 Note For complete information on the Catalyst 6000 family switches. You can use VTP to manage VLANs 1 to 1005 in this chapter, refer to configure the VLAN Trunking Protocol (VTP) on configuring VLANs, see Chapter... your network. (Note that maintains VLAN configuration consistency by managing the addition, deletion, and renaming of problems, such as duplicate VLAN names, incorrect VLAN-type specifications, and security violations.
Software Guide
Page 179
...Verify that the appropriate VLANs are pruning eligible.) clear vtp pruneeligible vlan_range (Optional) Make specific VLANs pruning eligible set vtp pruning enable (Optional) Make specific VLANs pruning ineligible on the device. (By default, VLANs 2-1000 are being pruned... on the device. Verify the VTP pruning configuration. show vtp domain Verify that VTP version 2 is disabled. show vtp domain This example shows how to continue (y/n) [n]? set vtp pruneeligible vlan_range on trunk ports...
...Verify that the appropriate VLANs are pruning eligible.) clear vtp pruneeligible vlan_range (Optional) Make specific VLANs pruning eligible set vtp pruning enable (Optional) Make specific VLANs pruning ineligible on the device. (By default, VLANs 2-1000 are being pruned... on the device. Verify the VTP pruning configuration. show vtp domain Verify that VTP version 2 is disabled. show vtp domain This example shows how to continue (y/n) [n]? set vtp pruneeligible vlan_range on trunk ports...
Software Guide
Page 197
...need to designate a community VLAN for both unidirectional community VLANs and two-way community VLANs unless specifically differentiated. • Designate one VLAN as desired; With a nontrunk promiscuous port, you can remap as many isolated or community VLANs as the primary VLAN. • ...VLAN Configuration Guidelines Follow these results: - An MSFC port can only be mapped on the MSFC promiscuous port (it cannot be mapped on the promiscuous port(s). Chapter 11 Configuring VLANs Configuring Private VLANs In an Ethernet-switched environment, you can use one primary VLAN, an...
...need to designate a community VLAN for both unidirectional community VLANs and two-way community VLANs unless specifically differentiated. • Designate one VLAN as desired; With a nontrunk promiscuous port, you can remap as many isolated or community VLANs as the primary VLAN. • ...VLAN Configuration Guidelines Follow these results: - An MSFC port can only be mapped on the MSFC promiscuous port (it cannot be mapped on the promiscuous port(s). Chapter 11 Configuring VLANs Configuring Private VLANs In an Ethernet-switched environment, you can use one primary VLAN, an...
Software Guide
Page 230
... the most specific flow mask detected. NetFlow Table Entry Aging The state and identity of time, the entry ages out and statistics for that shares the same protocol and transport-layer information • A multicast flow is active; If an entry is performing Layer 3 switching, it changes...to a particular destination - When the flow mask changes, the entire NetFlow table is purged. Use the keyword options to display information for specific traffic (refer to a particular destination - Table 13-2 Default CEF for PFC2 Configuration Feature CEF for PFC2 enable state CEF enable state ...
... the most specific flow mask detected. NetFlow Table Entry Aging The state and identity of time, the entry ages out and statistics for that shares the same protocol and transport-layer information • A multicast flow is active; If an entry is performing Layer 3 switching, it changes...to a particular destination - When the flow mask changes, the entire NetFlow table is purged. Use the keyword options to display information for specific traffic (refer to a particular destination - Table 13-2 Default CEF for PFC2 Configuration Feature CEF for PFC2 enable state CEF enable state ...
Software Guide
Page 238
... found error:0 Complete flow exists error :0 This example shows how to display information on a specific IP MMLS entry on the MSFC: Router# show mls ip multicast 224.1.1.1 Multicast hardware switched flows: (1.1.13.1, 224.1.1.1) Incoming interface: Vlan13, Packets switched: 61590 Hardware switched outgoing interfaces: Vlan20 Vlan9 RFD-MFD installed: Vlan13 (1.1.9.3, 224.1.1.1) Incoming interface: Vlan9, Packets...
... found error:0 Complete flow exists error :0 This example shows how to display information on a specific IP MMLS entry on the MSFC: Router# show mls ip multicast 224.1.1.1 Multicast hardware switched flows: (1.1.13.1, 224.1.1.1) Incoming interface: Vlan13, Packets switched: 61590 Hardware switched outgoing interfaces: Vlan20 Vlan9 RFD-MFD installed: Vlan13 (1.1.9.3, 224.1.1.1) Incoming interface: Vlan9, Packets...
Software Guide
Page 242
...13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display IP multicast entries for a specific MSFC2: Console> (enable) show mls multicast entry 15 Router IP Dest IP Source IP Pkts Bytes InVlan OutVlans 1.1.5.252 224.1.1.1 1.1.5.252 224....3.4.9 12 25 3120 8,20 Total Entries: 2 Console> (enable) This example shows how to display IP multicast entries for a specific MSFC2 and a specific multicast source address: Console> (enable) show mls multicast entry 15 source 1.1.11.1 short Router IP Dest IP Source IP Pkts ...
...13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display IP multicast entries for a specific MSFC2: Console> (enable) show mls multicast entry 15 Router IP Dest IP Source IP Pkts Bytes InVlan OutVlans 1.1.5.252 224.1.1.1 1.1.5.252 224....3.4.9 12 25 3120 8,20 Total Entries: 2 Console> (enable) This example shows how to display IP multicast entries for a specific MSFC2 and a specific multicast source address: Console> (enable) show mls multicast entry 15 source 1.1.11.1 short Router IP Dest IP Source IP Pkts ...
Software Guide
Page 243
... IP and IPX, perform this task in privileged mode: Task Command Specify the IPX entry aging time for the NetFlow set to all protocol-specific NetFlow table entries. The default is aged out. This example shows how to specify the IPX entry aging time: Console> (enable) set ...mls agingtime ipx 512 Multilayer switching aging time IPX set mls agingtime ipx [agingtime] table. Chapter 13 Configuring CEF for PFC2 Configuring NetFlow Statistics Specifying the NetFlow Table Entry Aging-...
... IP and IPX, perform this task in privileged mode: Task Command Specify the IPX entry aging time for the NetFlow set to all protocol-specific NetFlow table entries. The default is aged out. This example shows how to specify the IPX entry aging time: Console> (enable) set ...mls agingtime ipx 512 Multilayer switching aging time IPX set mls agingtime ipx [agingtime] table. Chapter 13 Configuring CEF for PFC2 Configuring NetFlow Statistics Specifying the NetFlow Table Entry Aging-...