C HAPTER 1-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 1 Overview This c hapt er p rovides the se topic s a bout the C atalyst 2950 a nd Ca talyst 2955 sw itch so.
1-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Feature s Certai n Cis co Long-Re ach Eth ernet (LR E) cus tomer pr emises eq uipmen t (CPE) de vices are not supported by c ertain C atalyst 2950 LRE sw itches.
1-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Features • Hot Sta ndby Rout er Pr otoc ol ( H SRP) for c omma nd-sw itch re du ndancy . The red und an t comm an d switche s u sed f or HSRP m ust have compat ibl e so ft ware rel ease s.
1-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Feature s Note DHCP repla ces the Bootstra p Protoc ol (BO O TP) featu re autoc onfiguratio n to e nsure re triev al of conf iguration fil es by unicast TFTP messages.
1-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Features • IEEE 802. 1s Multipl e Spanni ng T ree Protocol (MSTP) for gr ouping VL ANs into a s.
1-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Feature s • DHCP snooping to filter untrusted DHCP m essages between untrusted hosts a nd .
1-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Features Monitoring • Switch LEDs that pro vide visu al port an d switch stat us • Switc hed P o rt A nal yz er (S P AN) and Re m ot e S P AN (RSP AN) fo r tra ffic monit oring on any po rt or VLAN Note RSP AN is av ailab le only in the EI.
1-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Managem e nt Optio ns • Upstr eam po wer ba ck-of f mechanism f or normali zation of the u.
1-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Manageme nt Options Advantage s of Usin g CMS and Clustering Switches Using CMS and switch clust ers can simp lify an d minimiz e your configura tion and mon itoring t asks.
1-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples Network Config uration E xamples This se cti on pr ovide.
1-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples Figure 1-1 sh ows conf igurati on exampl es of using the Catalyst.
1-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples – GigaStack G BIC mo dule f or c reati ng a 1- Gbps stac k configurat ion of u p to nine support ed switches.
1-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples Small to Medium-Sized Network Configuration Figure 1-2 sh ows a con figurat ion for a n etwork th at has u p t o 25 0 u ser s.
1-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples Servers are co nnected t o the GBIC mo dule port s on the switche s, allowing 1-G bps throug hput to us ers when ne eded.
1-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples Figur e 1 -3 Collapsed Back bone and S witc h Clust er Configur a.
1-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples Note All telephones not di rectly connec ted to the hotel room CPE devi ce requir e microf ilters with a 300-oh m termination .
1-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples Figur e 1 -4 Networ k Hotel Conf igur ation Cisco 575 LRE CPE PST.
1-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples Service-Provider Central-Office Configur ation Figure 1-5 shows th e Cataly st 2950ST -24 LRE 997 sw itches in a service-p rovider centr al-off i ce networ k en v iron ment.
1-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples Figur e 1 -5 Service Pr o vider Cen tral Office Configur ation Large C ampus C onfiguration Figure 1-6 shows a c on f i gur atio n fo r a n etw ork of m ore th an 1 0 00 users.
1-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Netwo rk Conf igurati on Ex amples Figur e 1 -6 Lar ge Campus Confi gurat ion Multidwelling.
1-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 1 Overview Network Configuration Examples All por ts on t he resid ent ial C ata lyst 29 50 a nd 295 5 swit ches (a nd Cat aly st L RE switch es if t hey are include d) are co nfigured as 80 2.
1-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Ch ap ter 1 Ov er vi ew Where to Go Nex t Long-Distan ce, High-Ba ndwidth T ransport C onfiguration Note T o u se the f eat ure de scri bed in thi s sec tio n, yo u m ust have the EI inst alle d on your s wit ch.
C HAPTER 2-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 2 Using the Command-Line Interface This c hap ter de sc ribe s the Ci sco IO S com ma nd-lin e inter face (C LI) that you ca n use t o configure y our Catalyst 295 0 and Catalyst 29 55 switche s.
2-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Cisco IOS Comm a nd Mode s Ta b l e 2 - 1 describes the ma in command mod es, ho w to access each on e, the prompt you s ee in that mode, an d ho w to exit the mode.
2-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 2 Using the Comm a nd-Line In terface Getting Help Getting Help Y o u can en ter a qu est ion ma rk (? ) at the sy s tem pr om p t to d i sp lay a lis t of co mm an d s a v ailab l e f or eac h comma nd mode .
2-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Abbrevi at ing Comma nds Abbreviating Command s Y ou have to ente r on ly enou gh c hara cters for the switc h to re cogn ize the comma nd as un ique.
2-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 2 Using the Comm a nd-Line In terface Understanding CLI Messages Understandin g CLI Message s Ta b l e 2 - 3 lists so me e rror me ssage s tha t y ou migh t e ncoun ter whi le using the C LI t o configure you r switch.
2-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Using E diting Feature s Recalling Commands T o recall c omman.
2-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 2 Using the Comm a nd-Line In terface Using Edit ing Featu res T o rec onf igur e a speci f ic line to ha v .
2-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Using E diting Feature s Editing C ommand Lines that Wrap Y ou can use a w rapa ro und f ea ture for c om mands tha t ext end b eyond a si ngle li ne o n the sc reen .
2-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 2 Using the Comm a nd-Line In terface Searching and Filtering Output of show and m o re Co mm ands Use lin e wrapping with the co mman d history fe ature to recall and modif y previous complex co mmand entries.
2-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt er 2 Us i ng th e Com ma n d-L i ne In terfa ce Access ing th e CLI from a Br owse r Accessing the CLI from a.
C HAPTER 3-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 3 Configuring Catalyst 2955 Switch Alarms This se ction de scri bes how to configur e the d ifferent ala rms for th e Ca talyst 295 5 sw itc h. Note The alarms described in this chap ter are not a v ailable on the Catalyst 2950 switch.
3-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Underst anding Ca talyst 2955 Swit ch Alar ms Global Status Monitoring Ala rms The Cat alyst 2955 switch contain s faci lities for processing alarms related to temperatur e and po we r supply conditi ons.
3-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Cat alyst 2955 Swi tch Alarm s Understanding Catalyst 2955 Switch Alarms Port St atus Monito r.
3-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Con fi gur ing C ata ly st 2955 S wit c h A la r m s • SNMP T raps SNMP is an appli cation - lay er pr ot oc ol that pro vides a mess a ge format for com mu ni cat ion be tween manage rs an d ag ents.
3-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Cat alyst 2955 Swi tch Alarm s Configuring Catalyst 2955 Switch Alarms Configuring th e Power Su pply Alarm This se ction de scri bes how to c onfigure t he p ower suppl y al arm o n y our sw itch .
3-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Con fi gur ing C ata ly st 2955 S wit c h A la r m s T o disa ble .
3-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Cat alyst 2955 Swi tch Alarm s Configuring Catalyst 2955 Switch Alarms Associating the Temperature Ala rms to a Relay By defa ult, t he pr ima ry temp erat ure alarm is a sso ciat ed to the ma jor r elay .
3-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Con fi gur ing C ata ly st 2955 S wit c h A la r m s Setting the F.
3-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Cat alyst 2955 Swi tch Alarm s Configuring Catalyst 2955 Switch Alarms Use t he no alarm facility fcs-hyster esis command to set the FCS error hysteresis threshold to its default va lu e .
3-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Con fi gur ing C ata ly st 2955 S wit c h A la r m s This e xampl.
3-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Cat alyst 2955 Swi tch Alarm s Displaying Catal yst 2955 Switch Alarms Status This exam ple de ta ch es an a lar m pro file na m ed fastE from a port .
3-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 3 Configuring Catalyst 2955 Switch Alarms Display ing Cata lyst 2955 Switch Al arms Status.
C HAPTER 4-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 4 Getting Started with CMS This chapt er contains t hese sect ions that desc ribe the Clust er Manage ment .
4-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Unders tan din g CMS Topology View The T opo logy view displays a network ma p th.
4-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Understanding CMS • The feat ure bar sh ow s the featur es av ailable for the devi ces in you r cluster . By default, the featur e bar is in stand ard mod e.
4-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Unders tan din g CMS Figur e 4-2 F eatur es T ab and Sear ch T ab Note On ly featur es suppor ted by the devices in your cluster ar e displa yed in the feat ure bar .
4-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Understanding CMS Online Help CMS provides co mprehen si ve online help t o assist you in und erstand ing and per formin g configuration and monito ring task s from the CMS windows.
4-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Unders tan din g CMS Figur e 4-3 Guid e Mode and W izar ds Guide mode is not av ailable if your switc h access level is read-on ly .
4-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Configuring CMS Privilege Levels CMS pro vides tw o le v e ls of acce ss to the co nf igurat ion options: read-wr ite ac cess and read -only ac cess.
4-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Conf igu rin g CMS CMS Requ irem ents This se cti on de scri bes th e ha rdwar e .
4-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Configuring CMS CMS Plug-In Y ou need to insta ll the CMS plug -in t o run CMS with yo ur we b browser . The plug-in is suppo rted both in W indows en vironments and on Solaris pl atform s.
4-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Displa ying CM S Specifying an HTTP Port (Nonde fault Conf iguration Only) If yo.
4-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Displaying CMS The switc h home page appears, as shown in Figu re 4- 4 .
4-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Displa ying CM S If you are ru nning an unsuppor ted ope rating syst em, web browser , CMS plug-in o r Jav a plug-in, or if the plug-in is no t enabled , the CMS Startup Report page appear s, as shown in Figure 4-5 .
4-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Displaying CMS Front Panel V iew When CMS is laun ched from a command sw itch, you ca n display the Fro nt Panel view by clicking the Front P anel b utton on the too l bar , a s sho wn in Figure 4-6 .
4-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Displa ying CM S Note Figur e 4-7 shows a cluster with a Cat alyst 3550 switch as t h e command switch.
4-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Star ted with CMS Where t o Go Next The T opol ogy vie w sho ws how th e devic es within a switch cluster are co nnected and ho w the switch cluster i s con ne cte d to oth er cl usters and devices .
4-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 4 Getting Started with CMS Where to Go Nex t.
C HAPTER 5-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 5 Assigning the Switch IP Address and Default Gateway This chapt er describes ho w to create the initial sw.
5-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n The bo ot loader prov ides acce ss to the flash f ile system bef ore the operatin g system is loaded.
5-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information CLI-base d se tup prog ra m also allows you to configur e your swi tc h as a comm an d or me mber sw itch of a clu ster or as a stan da lone sw itch.
5-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n W ith DHCP-b ased autoc onfiguration , no DHCP client -side c onfiguration is needed on your switch.
5-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information The DHCP serv er s.
5-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n If you want the switc.
5-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information Configuring the DNS The DH CP ser ver uses the DNS s erv er to reso lve the TF TP serv er n ame t o an IP addr ess.
5-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n Obtaining Configurati.
5-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Assigning Switch Information Example Configuration Figure 5-3 shows a sampl e network f or ret rieving IP information by usin g DHCP-based autoconf iguration .
5-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Assign ing Swi tch Info rmatio n switchb-confg switchc-confg switchd-confg prompt> cat network-confg ip host switch1 10.
5-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Chec king and Savin g the Ru nnin g Co nfig ur atio n T o remo v e the switch IP ad dress, use the no ip address interface con figuratio n command .
5-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Modifyin g th e Startup Config uration Default Boot Configuration Ta b l e 5 - 3 shows the d efault bo ot configura tio n.
5-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Modifying the Startup Configuration T o return to the def ault setting, use the no boot conf ig-f ile global co nfigurat ion c omm and.
5-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Modifyin g th e Startup Config uration Beginning in p.
5-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Modifying the Startup Configuration En vironme nt variables st ore two kinds of da ta : • Data that controls code , which does not r ead the Cisco IO S confi guration f ile.
5-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Scheduli ng a Re load of the S oft w are Image Schedu.
5-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigni ng the Swi tch IP Addr ess an d Defa ult Ga tewa y Schedul ing a Rel oad of t he Sof tware Ima ge.
5-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 5 Assigning the Switch IP Address and Default Gateway Scheduli ng a Re load of the S oft w are Image.
C HAPTER 6-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 6 Configuring IE2100 CNS Ag ents This chap ter describes h ow to c onfigure th e Intelligence Engine 2100 (IE2100) Se ries Cisco Netw orking Servic es (CN S) emb edd ed age nts on you r Cat aly st 2 950 or Cat aly st 2955 swi tch.
6-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Unders tan ding IE21 0 0 Series Config uration Reg istrar Softwar e Figur .
6-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Understan ding IE2100 Series Configurat ion Registrar Softwa re CNS E ven t Serv i ce The Conf iguration Regi strar uses the CNS Ev ent Servic e for rece ipt and ge neration of conf iguration e ven ts.
6-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Unders tan ding IE21 0 0 Series Config uration Reg istrar Softwar e Device.
6-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Unde rstan ding CNS Embe dde d Ag ent s Understandin g CNS Embedde d Agents.
6-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Configur ing CNS Em b edded A gen ts Incremental (Partial) Configur ation After t he ne twork is r unn ing, new serv ice s ca n b e ad de d by using t he CN S c onfigura tion ag en t.
6-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Config uri ng CNS Embe dded Ag en ts Note For more informatio n about runni.
6-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Configur ing CNS Em b edded A gen ts Enabling th e CNS Ev ent Agent Note Y ou must e nable the CNS e v ent ag ent on t he swit ch bef ore you enable the CNS conf igurat ion agen t.
6-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Config uri ng CNS Embe dded Ag en ts Enabling the CNS Configuration Agent After en abling th e CNS e ve nt agent, sta rt the CN S confi guration agent on the swi tch.
6-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Configur ing CNS Em b edded A gen ts Step 6 ip rout e net work-numbe r Establish a stat ic route to the Conf ig uration Re gistrar whose I P addr ess is networ k-n umbe r .
6-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Config uri ng CNS Embe dded Ag en ts T o disa ble t he CN S conf igurati on a gent, use the no cns conf ig init ial { ip-add r ess | hostname } global configurati on comm a nd.
6-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Configur ing CNS Em b edded A gen ts Enabling a Partial Configur ation Be.
6-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configuring IE21 00 CNS Agents Displaying CNS Configuration Displaying CNS Confi guration Y ou can use the privileged EXEC co mmands in Ta b l e 6 - 2 to display CNS Configurati on inform ation.
6-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 6 Configur ing IE2100 C NS Agents Displaying CNS Con figuration.
C HAPTER 7-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 7 Clustering Switches This chapte r provides these topics to help you get started with switch clu stering: .
7-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Unders tan din g Sw itch Cluste rs Understandin g Switch Clust ers A switch cluster i s a group of connected C atalyst swit ches that a re manage d as a sing le entity .
7-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Underst anding Swi tch Clust ers Command Switch Character istics A Catalyst 2950 or Catalyst 2955 command switch must meet these requir ements: • It is running Cisco IOS Release 12.
7-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Unders tan din g Sw itch Cluste rs • If a non-LRE Catalyst 2950 stan dby comma nd switch is runni ng a relea se earlie r than Cisc o IOS Releas e 12.
7-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er Planning a Switch Cl uster Anticipatin g conflicts and compatibilit y issues is a high priority when you manage se v eral switches through a c lust er .
7-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er Discovery through CDP Hops By using CDP , a command switch ca n discover switches up to sev en CDP hops away (the default is three hops) from the edge of the cluster .
7-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er Figur e 7 -2 Disco very thr ough CDP Hops (Non- LRE Catalyst 2950 Comm and Sw itch Run ning Cisco IOS Relea se 12.
7-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er Discovery through the Same Management VLAN A Cataly st .
7-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er Discovery through Different M anagement VLANs W e recomm.
7-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er Discovery of Newly Installed Switches T o join a cluster, the ne w , out-of -the-b ox switch mu st be connecte d to the cluste r through one of its acces s ports.
7-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er Figur e 7 -7 Disco very of Newly Insta lled Sw itches i.
7-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er standby priority interface configurat ion comm and in the Cisco IOS Release 12 .
7-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er – When the comma nd switch is a non-LRE Catal yst 2950 sw itch running Cisco IOS Release 12.
7-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er Automatic Recover y of Cluster Configuration The act i.
7-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er Host Names Y ou do not ne ed to assig n a host name to either a c omman d switch or an eligibl e cluster member .
7-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Planning a Sw it ch Cl ust er TACACS+ an d RADIUS Inconsistent authenti cation configur ations in switch clusters cause CMS to continually pr ompt for a user name and p assword.
7-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Planni ng a Swit ch Clust er • If the com mand sw itch is a C ata lyst 2950 ru nnin g C isco IOS Rel ea se 12.1( 9)E A1 o r late r o r a Cataly st 2955, can didate an d member switch es can belon g to dif f erent manag ement VLANs.
7-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Creating a Switch Cluster Creating a Switch Cluster Using CMS to create a cluste r is easier than using the CLI commands .
7-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Creati ng a Swit ch Cluster Figur e 7 -9 Cre ate Clus te r Window Adding Me mber Sw .
7-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Creating a Switch Cluster For additional authen tication consid erations in switch clu sters, see the “T A CACS+ an d RADIUS” section on page 7 -16 .
7-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Creati ng a Swit ch Cluster Creating a Clu ster S tandby Group The cl uster s tandb .
7-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Creating a Switch Cluster Figu re 7-12 Sta ndby C omm and Conf ig urati on W indow V.
7-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Using the CLI to Manage Switch Clusters Figur e 7 -13 Inv en tory Windo w If you lose connecti v ity with a memb er switch or if a com mand switch f ails, s ee the “Using Re covery Procedur es” sec tion on page 32-1 .
7-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Using SNMP to Ma nage Sw itch Cl usters Catalyst 1900 and Catalyst 2820 CLI Consider.
7-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering Switche s Using S NMP to Ma nage Swit ch Clust ers Figur e 7 -14 SNMP Manag ement f or a Clust.
7-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 7 Clustering S witches Using SNMP to Ma nage Sw itch Cl usters.
C HAPTER 8-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 8 Administering the Switch This chapt er describ es how to perform one-time operatio ns to admini ster your Cat alyst 2950 or Catalyst 2955 switch.
8-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date The sy stem clo ck can provid e time t o thes.
8-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Figur e 8-1 T ypical NTP N etwor k C.
8-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date This se ctio n c onta ins thi s configu ratio.
8-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e B e g i n n i n g i n p r i vi l e g.
8-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date Configuring NTP Associations An NTP associat .
8-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Configuring NTP Broadcast Service Th.
8-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date Beginning in privileged EXEC mode, follow the.
8-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Creating an Access Gro up and Assign.
8-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date If the source IP address m atches the access lists fo r more t han one acces s type, the f irst typ e is grant ed.
8-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Beginn ing in pri vile ged EXEC mod.
8-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date Setting the System Clock If you have an outsid e source on the net work that pr ovides time ser vices, su ch as a n NTP server , you do not need to manuall y set the syste m clock.
8-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Configuring the Tim e Zone Beginn i.
8-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the Syste m Time and Date Configuring Summer Time (Daylight Saving Ti .
8-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Mana gi ng th e S y stem Tim e an d Da t e Beginning in privileged EX EC mode,.
8-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Configur ing a Sys tem Nam e and Prompt Configuring a System Name a nd Prompt Y ou configure t he system na me on the sw itch to ident ify it.
8-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Confi guring a S ystem Name an d Prompt Configuring a System P rompt Beginning.
8-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Configur ing a Sys tem Nam e and Prompt Default DNS Configur ation Ta b l e 8 - 2 shows the d efault D NS configura tion .
8-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Creat ing a Bann er domain name is the v alue set by the ip d oma in -n ame glo bal c onfigurati on c om mand. I f ther e is a period (.
8-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Creating a Banner Configurin g a Mess age-of-the -Day Log in Bann er Y o u can crea te a sin g le or mult iline message b anner tha t a ppea rs on th e scr een when so meo ne lo gs in to the switch.
8-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Managin g the MAC Addre ss Table Configurin g a Login B anner Y ou can co nfigure a log in banne r to be displ aye d on all conn ec ted ter mina ls.
8-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the MAC A ddre ss Table This se ctio n c onta ins thi s configu ratio .
8-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Managin g the MAC Addre ss Table Default MAC Address Table Configuration Ta b l e 8 - 3 shows the default MA C address table con figuration.
8-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the MAC A ddre ss Table Removi ng Dyn amic Ad dre ss E ntries T o remove all dyna mic en tries, use the clea r ma c a ddress- ta ble d ynam ic comm and i n privileged EXE C mode.
8-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Managin g the MAC Addre ss Table T o disable th e switch fr om sending MA C address notification tra ps, use the no snmp-serv er enable traps mac-notification global con f igura tion co mman d.
8-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the MAC A ddre ss Table Adding and Remo ving Sta tic Address E ntries A static address has these characteristics: • It is manu ally en tered in the a ddress tab le and must be manual ly removed.
8-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Adminis ter ing the Switch Managin g the MAC Addre ss Table This example shows ho w to add the stati c address c2 f3.
8-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 8 Administering the Switch Managin g the ARP Table T o disabl e unicast M A C address f iltering , use the no mac address-table static mac-addr vlan vlan-id global configurat ion comm and.
C HAPTER 9-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 9 Configuring Switch-Based Authentication This chapte r describes ho w to config ure switch-based authent ication on the Catalyst 2 950 or Catalyst 2955 switch.
9-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Protecting Access.
9-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds Setting o r Changin g a Static Enab le Pa ssword The en able password control s access to the privileged EXEC mode.
9-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Protecting En abl.
9-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds If bo th the en able and e nable sec ret pas sword s are de f ined, us ers must enter th e enable s ecret p asswo rd.
9-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds Beginning i n pri.
9-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds T o remo v e the passwo rd, use the no password global co nfigurati on comman d.
9-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Protecting A ccess to Privileged EXE C Comman ds T o di sable usernam e authe nticat ion for a specif ic user , u se the no username name glob al conf igurati on comman d.
9-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Prote c ting Acce ss t o Priv i lege d EX EC Co mman ds When y ou set a command to a pr i vile ge le ve l, all command s whose syntax is a subs et of th at com mand are al so set to th at le v el.
9-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ Logging into and Exitin.
9-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ Figur e 9-1 T ypical T.
9-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ TACACS+ Ope ration When a u ser attem pts a simple ASCII logi n by au thenticatin g to a switch b y using T ACA CS+, this process oc curs: 1.
9-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ This se ctio n c onta .
9-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ T o remo v e the spec ifie d T A CA CS+ ser ver n ame or addr ess, use the no tac acs- server ho st hostna me global configurat ion comm and.
9-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ Beginning i n privileg.
9-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controlling Sw itch Acce ss w ith TACACS+ T o disa ble A AA, u se the no aaa new-model glo bal co nfigurat ion c omm and.
9-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with TACACS+ Starting TACACS+ Accou.
9-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Controlling Switch Acc.
9-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS RADIUS is not suitable in these netw ork security situations: • Multipr otocol acce ss en v ironmen ts.
9-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Configuring RADIUS This se ctio n de scri bes how to c onfigure yo ur sw itch to su ppo rt R ADI US.
9-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Identifying the RADIUS .
9-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Beginn ing in pri vilege d EXEC mode, follo w these step s to configur e per-se rver RADIUS serv er comm unicatio n.
9-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS This exampl e sho ws ho.
9-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Beginn ing in pri vilege d EXEC mode, follo w these st eps to conf igure login authent ication.
9-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS T o disa ble A AA, u se the no aaa new-model glo bal co nfigurat ion c omm and.
9-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Be ginning in pri v il.
9-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS T o remo ve the spec ifie d RADIUS server , use the no radius-server host hostname | ip-address global configurati on comm and.
9-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS Beginn ing in pri vile.
9-29 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Configuring Settings fo.
9-30 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Controllin g Switch A cce ss wit h RA DIUS For ex ample, this A V.
9-31 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Controlling Switch Access with RADIUS Beginning i n privilege.
9-32 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Configur ing the Switc h fo r Local Au thentica tion and A uthori.
9-33 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell Configuring the Switch for Se cure Sh ell This sec tion desc ribes how to co nfigure the Se cure She ll (SSH) fea ture.
9-34 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l SSH also support.
9-35 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell Cryptographic Softwar.
9-36 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l T o delete the RSA key pair , use the cryp to ke y zer oi ze r sa globa l c onfigurati on com ma nd.
9-37 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuri ng Sw itch-Ba sed Auth entication Configuring the Switch for Secure Shell Displaying th e SSH C.
9-38 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 9 Configuring Switch-Based Authentication Conf igu rin g th e Swi tch for S ec ure S hel l.
C HAPTER 10-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 10 Configuring 802.1x Port-Based Authentication This chap ter desc ribes how to con f igure IEEE 802.
10-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Underst an ding 802 .1x Po rt-Based Authentica tion • Using 802 .1x w it h VL AN Assi gnmen t , p ag e 10- 7 • Using 802.
10-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Understand ing 802.
10-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Underst an ding 802 .
10-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Understand ing 802.
10-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Underst an ding 802 .1x Po rt-Based Authentica tion Figur e 1 0-3 Wireles s LAN Ex ample Using 802.1x with Port Security For switches runni ng the enha nced sof tware im age ( EI), you can e nable an 802 .
10-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Understand ing 802.
10-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Underst an ding 802 .
10-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.1x Authent ication Configuring 802.1x Authentication These sec tions de scr ibe how to con figure 8 02.
10-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion 802.1x C onfiguration Gu idelines These a re the 8 02.1x authe ntication conf iguration guideline s: • When 80 2.
10-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.1x Authent ication – Switch ed Port A nalyz er (SP AN) and Remote SP AN (RSP AN) d estination por ts—Y ou can enable 80 2.
10-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion T o allow VLAN ass ignment (for switc hes runn ing the EI ), you mus t enabl e AAA au thoriz ation to conf igure the switch for all netw ork-related ser vice requests.
10-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.
10-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion This exam ple sh ows how to specify the server w it h IP add re ss 172.
10-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.
10-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion Beginn ing in pri vileg ed EXEC mode, follo w th ese steps to change the amoun t of time that the switch waits for cli ent notific ation.
10-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.1x Authent ication T o return to the def ault retransmission numb er , use the no dot1x max-req interf ace c onfig uration comm and.
10-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion Configuring a Guest VLAN For switche s runnin g the E I, whe n you configure a guest VLAN, clients t hat a re not 80 2.
10-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Configur ing 802.1x Authent ication Configuring 802.1x Authentication T o conf igur e 802.1x port-ba sed authenti cation, you mu st enable AAA and specify the authentic ation method lis t.
10-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Configur ing 802. 1x Auth enticat ion Configuring 802.1x Accounting Enabl ing AAA s ystem a ccount ing w ith 802.
10-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 80 2.1x Port -B ased Aut hen ticatio n Displaying 802.1x Statistics and Status Note Y o u must configur e the RADIU S server to perf orm accou nting task s, such as logg ing start, stop, an d interim-upd ate messages and time stamps.
10-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 10 Configuring 802.1x Port-Ba sed Authentica tion Displ ayin g 802 .
C HAPTER 11-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 11 Configuring Interface Cha racteristics This chapte r describes the types of interface s on a Catalyst 2950 or Catalyst 2955 switch and ho w to conf igure them.
11-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Unders tan ding Inte rfa ce Type s These sectio ns describes thes.
11-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Unde rsta ndi n g In t erf ac e Ty p es member of t hat VLA N and traffic is forward ed to and fr om t he trun k port for that VL AN.
11-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Using the Inter fa ce Command Connecting Interfaces De vices with in a single V LAN ca n communic ate d irectly thro ugh an y switch .
11-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Using the Interface Command Procedures for Configuring In terfaces These ge neral instruc tions apply to all interfa ce conf igurati on processes.
11-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Using the Inter fa ce Command Beg i n ni n g i n p r iv i l eg ed.
11-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Using the Interface Command This e xam ple s ho ws ho w to use .
11-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Configur ing Ethernet Int erfaces – longreachether net sl ot/{ .
11-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Configuring Ethernet Interfaces These sec tions descr ibe the d.
11-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Configur ing Ethernet Int erfaces Configuring In terface Sp eed .
11-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Configuring Ethernet Interfaces • If both end s of the line supp ort aut onegotiation , we highly recomm end the defaul t setting of auto negotiatio n.
11-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Configur ing Ethernet Int erfaces Setting the Interface Speed an.
11-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Configuring Ethernet Interfaces Use the no lo cal spe ed and no local duplex in ter f ac e c onf igur atio n co mman d s to re turn th e i nterfac e to the def ault spee d and duple x set tings.
11-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Configur ing Ethernet Int erfaces • rec e ive o f f an d send on : The port send s pause fra mes if the r emote device supports flow contro l but canno t recei ve pause fram es from th e remote de vice.
11-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Monitoring and Maintaining the Interfaces Use the no description interface configurat ion comm and to delete the de script ion.
11-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Monito rin g and Mai nt aining th e In terfaces For examples of .
11-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Configuring Interf ace Char act eristics Monitoring and Maintaining the Interfaces This exam ple sh ows.
11-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 11 Con figuring Interface Characteristics Monito rin g and Mai nt aining th e In terfaces.
C HAPTER 12-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 12 Configuring Smartports Macro s This chapt er describ es ho w to configure and a pply Smartpo rts macr os on the Catalyst 295 0 switch.
12-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configur ing Smart ports Mac ros Configuring Smartpor ts Mac ros Cisco also provid es a collection of pretes ted, Cisco-recommende d baseline conf iguration tem plates for Catalyst switc hes.
12-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configuring Smart por ts Macros Configuring Smartports Macros Smartports Macro Configuration Guidelines .
12-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configur ing Smart ports Mac ros Configuring Smartpor ts Mac ros Creating Smartports Macro s Beginn ing .
12-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configuring Smart por ts Macros Configuring Smartports Macros Applying Smar tpo rts Macro s Beginning i .
12-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configur ing Smart ports Mac ros Configuring Smartpor ts Mac ros This exam pl e sh ows how to app ly t h.
12-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configuring Smart por ts Macros Configuring Smartports Macros Y ou can d elete a global mac ro-app lied configur ation o n a switch onl y by entering the no ver sio n of ea ch comm and th at is in the ma cro.
12-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 12 Configur ing Smart ports Mac ros Displaying Smartpor ts Mac ros Displaying Smartports Macros T o disp lay the Smar tports ma cros, use on e or more of the pri vile ged EXE C command s in T able 1 2-2 .
C HAPTER 13-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 13 Configuring LRE This ch apter de scribe s ho w to con fig ure the Lo ng-Reac h Ethern et (LRE) features on you r Catalyst 2950 LRE switch.
13-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Unders tanding L RE Featu res Connecti ng a sw it ch L RE po rt to a rem ot e Et her ne.
13-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Underst anding LRE Fe atures Note Consult the regula tions for connecting to the public switched telep hone network (PST N) in your area. Note U se th e ra tes a nd dist ance s in T able 13-1 and T able 1 3-2 only as guidel ines.
13-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Unders tanding L RE Featu res Y o ur data rates will al ways be less than th e gross data rate listed in tables.
13-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Underst anding LRE Fe atures LRE Sequences The LRE sw itches are ship ped with p redef ined sequence s. Sequen ces are sets of prof iles an d are use d with th e rate sele ction feat ure.
13-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Unders tanding L RE Featu res Beginn ing with the f irst prof ile in a sequence, the switc h attempts to apply each pro file within that sequence to the L RE interf ace.
13-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Underst anding LRE Fe atures • Certain CPEs do not w ork with certain switch es. For detai ls, see the LRE switch and CPE compatibilit y matrix (see T abl e 1 -2 on page 1-2 ).
13-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts LRE Mes sage L ogging Proc ess The Cataly st 2950 LRE switch.
13-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports Default LRE Configuration This is the defau lt LRE conf iguration: • On the Catal yst 2950ST -8 LRE an d the Cata lyst 2950ST -24 LRE swi tches, the profile on all LRE ports is LRE-10.
13-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts • Age and ty pe of wiring— Y ou can estimat e th e type of w iring you h ave based on your site’ s age a nd type.
13-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports • When the link betwee n the LRE switch and the CPE de vice mus.
13-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts betwee n 1 00-Mb ps half dupl ex an d 100- Mbps f ull du plex.
13-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports Assigning a Profile to a Specific LRE Port Y ou ca n set pro files on a pe r -port basis. Y ou can assign the same pr ofile or different pr ofiles to the L RE ports on th e switch.
13-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts T o display the LRE lin k statistics and sequence informatio n on the LRE ports, use the show co ntroll ers lre status sequence de tails privileged EXEC comma nd.
13-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports • When a link is lo st for 25 secon ds befo re be ing re stored • When a configur ed sequ en ce is mo dified In any of these cases, rate selection obta ins the optimal prof ile for your line condit ions.
13-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts T o unlock a p ort, use the no rate selection p rof ile lock inter face conf igurati on command.
13-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports LRE-15 -1 16.667 256 31 33 35 39 LRE-99 8-15- 4 16.667 256 31 33 35 39 LRE-99 7-10- 4 12 .5 256 31 33 35 39 LRE-2 2.
13-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts The margin ra nge for link qu alificatio n is from 1 to 10 dB. The re comm ended value in a low-noise en vi ronme nt is 2 dB .
13-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports Beginning i n privileged E X EC mo de , follow these s teps to a .
13-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts Configuring LRE Link Monitor When link mon itor is e nabled.
13-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Configuring LRE Ports T o return the port to its default set ting, use the no interleave downstream value upstr eam valu e interf ace conf igu ration com mand.
13-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Conf igu rin g LR E Por ts T o ret urn the switc h to its d efault se tting, use th e no lr e upbo { noise-mode l | offs et va lue } globa l configurati on comm a nd.
13-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Upgrading LRE Switch Firmware Beginning i n privileged EX EC mo de , follow these s tep.
13-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Upgradi ng L RE Switch F ir m w are Note Whe ther upg rading a sing le CPE device or all CPE devices conne cted to an LR E switch, the expected duration of an LRE upg rade is 3 to 6 minu tes.
13-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Upgrading LRE Switch Firmware When executin g upgra des, you can e lect t o upgr ade a .
13-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Upgradi ng L RE Switch F ir m w are The no upgrade co ntrolle r configura tion co mmand removes the com mand f or apply ing a p articul ar LR E binary .
13-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configuring LRE Displaying LRE Sta tus The CPE de vice fi nishes resetti ng. Ethernet conne cti vity is a vailab le but at lo w s peeds. Upgrade data transfer begins.
13-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 13 Configur ing LRE Displaying LRE Status.
C HAPTER 14-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 14 Configuring STP This chapt er describ es ho w to configure the Span ning Tree Protocol (STP) on port -based VLA Ns on your Cataly st 29 50 or Catal yst 2 955 switch.
14-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures • Spanning- T ree Interoper ability and Backwar d Compatibility , page 14-10 • STP and IE EE 802.
14-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Spannin g- Tr ee To polo gy and BP DUs The stabl.
14-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures Bridge ID, Switch Priority, and Extended System ID The IE EE 80 2.
14-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res • Forwardin g—T he inte rface forwa rds fram es.
14-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures Blocking State A Layer 2 in ter f ace in th e b lo ckin g state does not p ar tic ipate in frame f o rw a rdin g.
14-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Disabled State A Laye r 2 int erface in th e disab led state do es not parti cipa te in frame forwar ding or in the span ning tree.
14-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures Spanning Tree and Redun dant Conn ectiv ity Y .
14-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tanding Spanni ng-Tree Featu res Becau se each VLAN is a sepa rate span ning- tree ins tance, th e switch a ccelerate s aging o n a per -VLAN basis .
14-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Unders tan ding Spa nni ng-Tree Fea tures Spanning-Tree Interoperability and Backward Compati bility T able 14-2 lists the interopera bility and com patibility among the s uppo rted s panning -tree mode s in a network.
14-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Configuring Sp anni ng-Tree Features These sec t.
14-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Spannin g- Tr ee Co nf igura tion Guideli ne s If more VLAN s are def ined in th e VTP than there are spanning -tree inst ances, you can enable PVST+ or rapid PVST+ on only 64 VL ANs.
14-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Changing the Spa nning-Tree M ode The sw itch s upports th ree spanning -tree mo des: PV ST+, ra pid PVST +, o r MSTP .
14-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Disabling Sp anning Tree Spanning tree is enab .
14-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Before Cisc o IO S Release 12.
14-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Beginning in privileged EXEC mo de, fo llow these step s to configur e a switc h to bec ome th e root fo r the specif ied VLAN.
14-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Beginn ing in pri vile ged EXEC mo de, follo w these step s to confi gure a switch to b ecome the second ary root for the speci fied VLAN.
14-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Beginn ing in pri vilege d EXEC mode, follo w these st eps to conf igure the port priority of an interface.
14-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Configuring the Path Cost The spanni ng-tr ee path c ost defaul t v alue i s derived from the med ia speed of an i nterfac e.
14-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s T o ret urn the in terface to its d efault se tting, use the no spanning-tr ee [ vlan vlan-id ] cost interf ace configurati on comm a nd.
14-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res Configuring S pannin g-Tree Timers T able 14-4 descri bes th e timer s that af fect th e entir e spann ing-tree perfo rmanc e.
14-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Configur ing Span ning-T ree F eature s Configuring the Forwarding -Delay Time fo r a VLAN Beginn ing in pri vilege d EXEC mode, follo w these st eps to conf igure the forwa rding-delay time fo r a VLAN.
14-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Confi guring S panni ng-Tree Featu res T o ret urn the switc h to its d efault se tting, use th e no spanning-tr ee vlan vl an-id max-age global configurati on comm a nd.
14-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 14 Configuring STP Displaying the Spannin g-Tree Stat us Displaying the Sp anning-Tre e Status T o disp la.
C HAPTER 15-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 15 Configuring MSTP This chapte r describes ho w to conf igure the Ci sco implementatio n of the IEEE 802.1s Multi ple STP (MSTP) o n y our Ca ta lyst 29 50 or Ca talys t 2955 switc h.
15-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Unders tan din g MSTP Understandin g MSTP MSTP , which uses RSTP fo r rapid conver gen.
15-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Unde rsta ndi n g MS TP All MST instances with in the same reg ion share the same protocol timer s, but eac h MST instance has its own topology para meters , such as root switch ID, ro ot path cost, and so fort h.
15-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Unders tan din g MSTP Figur e 15-1 MST Re gions, IS T Mas ter s, and the CS T Root Figure 15-1 does n ot sh ow additional MST instance s for eac h region.
15-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Unde rsta ndi n g MS TP received remain ing h op co unt by on e and p ropaga tes this value a s the re maini ng ho p cou nt in the BPD Us it ge nerates .
15-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Unders tan din g RSTP Understandin g RSTP The RSTP takes ad vantage of point- to-po int wiring and provides rapi d conv ergence of the span ning tree .
15-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Understa nding RST P T o be consisten t with Cisco STP implementatio ns, this guide docume nts the port state as bloc king instead of discar ding .
15-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Unders tan din g RSTP The swi tch dete rmi nes the lin k type fr om th e po rt du plex.
15-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Understa nding RST P Figur e 15-3 Sequence of Ev ents Du r ing Rapid Con ver g ence Bridge Protoco l Data Unit Format an d Process ing The R STP BP DU for mat is th e sam e as t he IEEE 802.
15-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Unders tan din g RSTP The RSTP does not have a separate topol ogy chan ge notificati on (TCN) BPDU . It uses the topology change (T C) flag to sho w the to pology cha nges.
15-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res • Propagat ion—When an RSTP switch re ceives a TC mes.
15-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures Default MSTP Configuration T able 15-3 shows the de fault M ST P configur ation .
15-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res of the MST regions mu st contain th e CST root, and al l .
15-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures T o retur n to the defa ult M ST region configurat i on, u se th e no spanning- tree mst configurat ion globa l conf iguration c ommand.
15-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res If an y root switch for the specif ied instance h as a switch p riority lo wer than 24576, th e switch sets its o wn prior ity to 4096 less than the lo west swit ch priority .
15-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures T o ret urn the switc h to its d efault se tting, use th e no spanning-tr ee mst insta nce-id roo t globa l configurati on comm a nd.
15-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res T o ret urn the switc h to its d efault se tting, use th e no spanning-tr ee mst insta nce-id roo t globa l configurati on comm a nd.
15-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures Configuring the Path Cost The MSTP path cost def ault v alue is deri v ed from the media speed of an interf ace.
15-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res Configuring the Switch Priority Y o u can conf igure the switc h priority and mak e it more likely that the switch will be chosen as the root switch.
15-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures Beginn ing in pri vileg ed EXEC mode, follo w these st eps to conf igure the hello time for al l MST instances.
15-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Confi guring MST P Featu res Configuring the Maxi mum-Aging Time Beginning in privileged EX EC mode, fol low these steps to con figure the maxi mum- aging tim e for all MST inst ance s.
15-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Configur ing MSTP F eatures Specifying the Link Type to Ensure Rapid Transitions If y.
15-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Configuring MSTP Displaying the MST Configuration and Status Displaying the MST Configuratio n and Stat.
15-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 15 Co nfiguring MSTP Displaying the MST Configu rat ion and Status.
C HAPTER 16-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 16 Configuring Optional Spannin g-Tree Features This c hapt er d escri b es how to c onfigure opt iona l spa nn ing-tr ee f e atur es on yo ur Ca talyst 2950 o r Catalyst 2 955 sw itch.
16-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures .
16-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features Y ou ca n enab le th e BPD U guar d featur e for th e ent ire sw itch or for an int erface .
16-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures If a switch loo ses connecti vity , it be gins using t he alternate pa ths as soon as the spann ing tree selects a new root port .
16-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features Figur .
16-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures .
16-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features Events that Cause Fast Convergence Depen ding on the ne twor k event or fai lure , t he CSU F fa st c onv ergence mi gh t or mig ht n ot oc c ur .
16-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures .
16-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features Understand ing Back boneF ast Backbo neFas t detects ind irect failures in the core of th e backbon e.
16-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Unders tan ding Opti on al Spann ing -Tree Fe at ures If lin k L 1 fail s as s hown in Figur e 16-8 , Switch C cannot det ect this f ailure bec ause it is not co nnected direct ly to link L1.
16-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Understan ding Optio nal Spanni ng-Tr ee Features Under.
16-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Configur ing Optiona l Spanning- Tree Fea tures Figu .
16-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures • Enab.
16-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Configur ing Optiona l Spanning- Tree Fea tures Beginn ing in pri vile ged EXEC mode, follo w these steps to enab le Port Fast.
16-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures Y ou ca .
16-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Configur ing Optiona l Spanning- Tree Fea tures Beginn ing in pri vileg ed EXEC mode, follo w th ese steps to globally enab le the BPDU f iltering feat ure.
16-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures When UplinkF ast is enabled, the switc h priority of all VLANs is set to 49152.
16-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Configur ing Optiona l Spanning- Tree Fea tures T o disa ble CSUF o n an interf ace, us e the no spanning-tree st ack-port interf ace conf iguration comman d.
16-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 16 Configuring Op tiona l Spa nni ng-Tree Features Configurin g Optional Spanni ng-Tree Fe atures T o disabl e the Ethe rChann el guar d feat ure, use the no spanning-tree et herchannel guard misconf ig global configurat ion comm and.
16-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 16 Configurin g Optiona l Spann ing-Tr ee Featu res Displaying the Spannin g-Tree Stat us Y ou can en ab le this fea ture if yo ur sw itch i s r unnin g PVST+, r api d PVST +, or MST P .
C HAPTER 17-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 17 Configuring VLANs This c hapt er d escri b es how to c onfigure norm al -ra nge V LAN s (V L AN IDs 1 to 100 5) and extended-ra ng e V LAN s ( VLAN I Ds 10 06 to 4 094) on y our C ataly st 2950 or Ca taly st 2955 switc h.
17-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Unders tan ding VLAN s Figure 17-1 shows an exam ple of V L ANs segmented into l ogica lly defined n etwor ks. Figur e 17 -1 VLANs as Logica lly Defined Netw or ks VLANs are of ten assoc iated with IP su bnetw orks.
17-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Unde rst an din g VLA Ns VLAN Port M embership M odes Y ou configur e a port to belon.
17-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing Normal- R ang e VLAN s Configuring Normal -Range VLANs Normal- range VL A Ns are VL ANs with VLA N I Ds 1 to 1005 .
17-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configur ing N orma l -R ang e VL A N s This sect ion incl udes infor mation ab out t.
17-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing Normal- R ang e VLAN s is to a llow all VLA Ns ), th e new VLAN is ca rrie d o n all t ru nk po rts.
17-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configur ing N orma l -R ang e VL A N s Saving VL AN Configur ation The co nfiguration s of VLAN IDs 1 to 10 05 are a lways sa ved in the VLA N database (vlan.
17-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing Normal- R ang e VLAN s Creating or Modifyin g an Et hernet VLAN Each E the rnet VL AN in th e VLAN d ata base ha s a u niq ue, 4- digit I D th at ca n b e a nu mber fr om 1 to 1 001.
17-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configur ing N orma l -R ang e VL A N s T o return the VLAN name to the defa ult settings, use the no vlan name , no vl an mtu , or no remote span config-vl an co mman ds.
17-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing Normal- R ang e VLAN s Note Y o u canno t c onfigure an RSP AN VLAN in V LAN da tabase configu ratio n m ode.
17-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configur ing N orma l -R ang e VL A N s Assigning S tatic-Ac cess Ports to a VLAN Y .
17-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing Extended-R ange VLA Ns Configuring Ex tended-Rang e VLANs When the switch is in VTP transparent mode (VT P disabled) and the EI is installed) , you can create extended -rang e VLA Ns ( in the ra nge 1006 t o 4094).
17-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Confi guring Exte nded-Ra nge VL ANs • VLANs in the exten de d ra nge are n ot su ppo rte d by VQ P . They cann ot be co nfigured by VMPS.
17-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Displa ying VL ANs T o delete an exte nded-rang e VLAN, use the no vlan vlan-id global configurat ion comm and.
17-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Config uri n g VL AN Tr unk s Configuring VLAN T runks These sec tions descr ibe how VLAN trunks functio n on the swi tch: • T runking O verview , page 17-15 • 802.
17-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing VLAN Trunk s • If you do not int end to trunk ac ross thos e links, use th e switchport mode access inte rface configurati on comm a nd t o d isable tr unk ing.
17-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Config uri n g VL AN Tr unk s • Make sur e t he nat ive VLAN f or an 80 2. 1Q tru nk is t he s am e on bo th ends of the tr unk li nk.
17-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing VLAN Trunk s Interaction with Other Features T runking i nteract s with othe r features in these way s: • A trunk por t c an not be a sec ure port .
17-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Config uri n g VL AN Tr unk s T o return an interface to its default conf iguratio n, use the default interf ace interface-id interface configurat ion com mand.
17-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing VLAN Trunk s T o ret urn to the def ault allo wed VLAN list o f all VLANs, use th e no switchport trunk allowed vlan interf ace conf igu ration com mand.
17-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Config uri n g VL AN Tr unk s T o retur n t o th e defaul t pr uning -e lig ibl e list o f a ll VLA Ns , u se the no switchport trunk pruning vlan interf ace conf igu ration com mand.
17-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing VLAN Trunk s Load Sha ring Using STP Load sha r ing d ivides the ban dw idth supp lied by par a llel t ru nks co nne ct ing s witc he s.
17-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Config uri n g VL AN Tr unk s Beginning in pr ivileged EXEC m ode, fol low these steps t o configure t he network shown in Figur e 17- 3 .
17-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configur ing VLAN Trunk s Load Sharing Using STP Path C ost Y ou can co nfigure para llel trunks to sha re VLAN tr aff ic by setting different pat h costs on a trunk an d associ ating the path costs with dif feren t sets of VLA Ns.
17-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configuring VMPS Configuring VMPS The swi tch c annot be a VMPS s erver b ut can act as a clien t to th e VMPS an d com municate w ith it through the VLAN Que ry Protocol (VQ P).
17-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configuring VMPS • If the V LAN in the dat abase does not match th e cur rent VLA.
17-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configuring VMPS Default VMPS Client Configuration T able 17-6 shows the de fault VM PS and dy na mic po rt c on figuration on clie nt sw itch es.
17-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configuring VMPS Configuring the VMPS Client Y ou con figure dyna mic VLA Ns by usin g the V MPS (s erver). Th e switc h can b e a VM PS clien t; it cannot be a VMPS server .
17-29 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configuring VMPS T o return an interface to its default conf iguratio n, use the default interf ace interface-id interface configurati on comm and.
17-30 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configuring VMPS T o ret urn the switc h to its d efault se tting, use th e no vmps r econf irm global configura tion co mman d.
17-31 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Configuring VLA Ns Configuring VMPS This i s a n exam ple of out put for th e show v mps privileged EXE.
17-32 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 17 Co n figuring VLANs Configuring VMPS Figur e 17 -5 Dynamic P or t VLAN Membe rship Con figur ation Primar y VMPS Ser ver 1 Catalyst 6500 series Secondar y VMPS Ser ver 2 Catalyst 6500 series Secondar y VMPS Ser ver 3 172.
C HAPTER 18-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 18 Configuring VTP This c hapt er d escri b es how to us e t he V LAN Trunking Pr otoc ol ( VTP) a nd t he V LAN dat aba se for managing VLANs on you r Catalyst 2950 or Catalyst 2955 swi tch.
18-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Unders tan din g VTP The VTP Do main A VTP do ma in ( also c alle d a VLA N ma nage ment.
18-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Understanding VTP VTP Mode s Y ou can co nfigure a support ed switch t o be in one of the VTP mod es listed in Ta b l e 1 8 - 1 .
18-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Unders tan din g VTP • MD5 diges t VLAN co nf igurat ion, in clud ing max imum tr ansmi ssion unit (M TU) si ze fo r each VLAN.
18-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Understanding VTP Figur e 18-1 Flooding T raf fic w ithout VTP Pr uning Figure 18-2 shows a switched ne twork with VTP pr uni ng enabled.
18-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Conf igu rin g VTP VTP pruning is not designed to func tion in VTP transparent mode . If one or more switches in the netwo rk are in VTP transparen t mode, yo u should do on e of thes e: • T urn off VTP prun ing in the en tire network .
18-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Configuring VTP VTP Configuration Options Y ou can co nfigure VTP by using these configurati on modes.
18-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Conf igu rin g VTP VTP Configuration Guidelines These sec tions descr ibe guid elines you should fol low when implem entin g VTP in your ne twork.
18-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Configuring VTP VTP Ve rs ion Foll ow these gui delines whe n deciding which VTP ver sion to im plement: • All switches in a VTP domain must run the same VTP versi on.
18-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Conf igu rin g VTP When you con figure a domain na me, it cannot be rem oved; you can only rea ssign a switc h to a different domain.
18-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Configuring VTP This exam ple sh ows ho w to use VLA N configurat ion m ode to configur.
18-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Conf igu rin g VTP Note Y o u can also c onfigure a VTP clie nt by using the vlan dat a.
18-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Configuring VTP Note Y o u can also c onfigure VTP transpa rent mod e by using the vlan.
18-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Conf igu rin g VTP Enabling V TP Prunin g Pruning inc reases available bandwi dth by restric ting flood ed traffic to those trunk links th at the traffic must use to acces s the destinat ion devices.
18-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Configuring VTP Beginning i n privileged E XEC mo de, foll ow these s teps to ver ify a.
18-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 18 Configuring VTP Monito rin g VTP Monitoring VTP Y ou monito r VT P by disp layi ng V T P configura tion i n forma tion: th e dom ain name , t he c urre nt V TP revision, and the n umb er of VL AN s.
C HAPTER 19-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 19 Configuring Voic e VLAN This ch apt er descri bes how to configu re the voice V LAN featur e on your Cat alyst 2950 or Cata lyst 2 955 switch.
19-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 19 Configuring Voice VLAN Configuring Voic e VL AN Figure 19-1 shows one way to conne ct a Cisco 7960 IP Phone.
19-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 19 Configuring Voice VLA N Configuring Voice VLAN Voice V LAN Con figuration Guide lines These a re the v oic e VLAN con figu ration guid elines: • Y ou shou ld configure voice VLAN on sw it ch a ccess p orts.
19-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 19 Configuring Voice VLAN Configuring Voic e VL AN Configuring Ports to Carr y Voice Traffic in 802.1Q Frames Beginn ing in pri vileg ed EXEC mode, follo w th ese steps to conf igure a port to carry v oice tr af fic in 802.
19-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 19 Configuring Voice VLA N Configuring Voice VLAN Overriding the CoS Pr iority of Incoming Data Frame s Y ou ca n con nect a PC or o ther d ata d evice to a Cisco 7960 IP Phon e port .
19-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 19 Configuring Voice VLAN Displa ying Vo ice VLA N Configuring the IP Phone to Tr ust the CoS Priority of Inc oming Data Frames Y ou ca n con nect a PC or o ther d ata d evice to a Cisco 7960 IP Phon e port .
C HAPTER 20-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 20 Configuring DHCP Features This ch apt er descri bes how to configur e DHC P snoopi ng and t he o ption-82 d ata in sertion featu res on the Catalyst 2950 or Ca talyst 2955 swi tch.
20-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuri ng DHCP Feature s Unders tan din g D HCP Feature s DHCP Server The DHCP server as signs IP a ddresse s from specified address poo ls on a switch or r outer to DHCP clients a nd manag es them .
20-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuring DH CP Features Understa nding DHCP Fe atures The s witch d rops a DHCP pack et when one of t.
20-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuri ng DHCP Feature s Unders tan din g D HCP Feature s When you ena ble the DHCP snoo ping info rm.
20-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuring DH CP Features Config uring DHC P Features Figur e 20-2 Suboption P ack et F or mats Configu.
20-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuri ng DHCP Feature s Configur ing DHCP Fe at ures DHCP Snooping Configuration Guidelines These ar e the configur ation g uidelin es for DHCP snoo ping.
20-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuring DH CP Features Config uring DHC P Features Enabling DHC P Snoo ping and Op tion 82 Beginning in privileged E XEC mo de, fol low these s teps t o ena ble DHC P snoo pi ng on the swi tch .
20-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 20 Configuri ng DHCP Feature s Disp l ay in g DHC P In form atio n Displaying DHCP Information Y ou can di splay a DHCP sno oping bindi ng table and configuratio n informat ion for all interfaces on a switch.
C HAPTER 21-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 21 Configuring IGMP Sno oping an d MVR This cha pter d escribes h ow to configure In ternet Gr oup Ma nage.
21-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Unders tan ding IGM P Snoo ping the switc h adds the host p ort numb er to the for wardin g table en try; when it recei ves an IGMP Lea v e Group message from a host, it remo ves the host port from the table entry .
21-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Understanding IGMP Snooping An IGMPv 3 sw itc h ca n r ece ive messages f rom a nd forwa rd me ssage s to a device ru nning the So urce Specif ic Multica st (SSM) featu r e.
21-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Unders tan ding IGM P Snoo ping Note that the switc h hardware can distin guish IGMP information pack ets from other pack ets for the multicas t group.
21-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Understanding IGMP Snooping When ho sts want to lea v e a multic ast group , they can e ither silen tly lea ve, or the y can send a leav e message .
21-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Configuring IG MP Sn ooping The default learning method is IP mu lticast- source -only lea rning.
21-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Enabling or Disa bling IGM P Sn oopin g By default, IGM P snoopin g is globall y enab led on the swit ch.
21-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Configuring IG MP Sn ooping Setting th e Snoo ping M ethod Multicast -capable rou ter ports are added to the forwa rding table fo r e very L ayer 2 multicast entry .
21-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping Vlan 1: -------- IGMP snooping :Enabled Im.
21-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Configuring IG MP Sn ooping Configuring a Host Statically to Join a Group Hosts or La yer 2 port s normal ly join m ulticast groups dyna micall y , but you c an also stat ically con figure a host on an in terface .
21-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring IGMP Snooping T o disa ble IGMP Immediate -Lea ve o n a VLAN, use the no ip igmp snooping vlan vl an-i d immediate-lea ve global c onfigurati on com mand.
21-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Configuring IG MP Sn ooping Note W e strongly reco mmend that you do no t disable I P multicas t-source-only learnin g.
21-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Displaying IGMP Snooping Information T o disable the ag ing of t he for wardi ng table en tri es, e nter the ip igmp snooping source-only-learning age-ti mer 0 g loba l c onfigura tion c om mand.
21-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Unde rs ta n din g Mu ltic as t V LAN Reg i stra t io n Understan.
21-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Underst anding Multicast VLAN Registration Using MVR in a M ulticast Television Application In a multicast tel ev ision applicatio n, a PC or a television with a set-top box can recei ve the multicast stream.
21-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Unde rs ta n din g Mu ltic as t V LAN Reg i stra t io n Figur e 2.
21-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring MVR Configuring MVR These se ctions inc lude basi c MVR.
21-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Conf igu rin g MVR Configurin g MVR Glob al Para meters Y ou do not need to set the opt ional M VR para meters i f you ch oose to use th e default sett ings.
21-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring MVR This e xample sho ws how to enable MVR, conf igure .
21-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Conf igu rin g MVR T o return the interface to its default settings, u se the no mvr [ typ e | immediate | vlan vlan -id | grou p ] interf ace conf igu ration com mands.
21-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Displaying MVR Information Displaying MVR Information Y o u can disp lay MVR i nformation fo r the switch or for a specif ied in terface.
21-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Con figur ing IGM P Fil ter in g an d Thr o tt li ng Note IGM Pv3 join an d leave messages are not suppo rted on switc hes runnin g IGMP filtering.
21-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring IGMP Filtering and Throttling • permit : Spec ifie s that matc hing addresses are perm itted. • rang e : Specif ies a ra nge o f IP addre ss es for th e prof ile.
21-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Con figur ing IGM P Fil ter in g an d Thr o tt li ng Applying IGM.
21-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Configuring IGMP Filtering and Throttling Setting th e Maximum Numb.
21-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Con figur ing IGM P Fil ter in g an d Thr o tt li ng • If you c.
21-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Configuring IGMP Sno oping and M VR Displaying IGMP Filtering and Throttling Configuration Displaying I.
21-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 21 Co nfiguring IGMP S noo ping and M VR Displaying IGMP Filterin g and Thro tt ling Co nfigurat ion.
C HAPTER 22-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 22 Configuring Port-Base d Traffic Control This c hapt er desc ribes h ow to configure t he p ort-ba sed t raff ic control feat ures on you r C atalyst 2950 or Catalyst 2955 swi tch.
22-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configuring Stor m Control Understand ing Storm Control A pack et storm occ urs when a lar ge numb er of broad cast, un icast, or multi cast pack ets ar e recei v ed on a port.
22-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Configuring Storm Control The outp ut f rom t he show storm-c .
22-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configuring Protected Po rts Disabling Stor m Co nt rol Beginni.
22-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Configuring Port Blocking Beginning in privileged EXE C mode, .
22-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configur ing Port Blocking Beginn ing in pri vile ged EXE C mod.
22-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty Configuring Po rt Security Y o u c.
22-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configuring Port Security Security Violations It is a security .
22-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty Default Port Security Configuration T able 22-2 shows the defau lt port security conf iguration for an interface.
22-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configuring Port Security Enabling a nd Con figuring Port S ec.
22-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Confi guring Port Securi ty T o retur n the in terfac e to the default conditi on as not a secur e port, u se the no switchport port-securi ty interf ace co nf igurati on com mand.
22-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Configuring Port Security Enabling a nd Con figuring Port S ecurity Aging Y ou can us e po rt secur ity aging to set the a ging time fo r stati c and dyna mic secur e addr es ses on a port .
22-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port -B ased Tra ffic Control Displayin g Port-Bas ed Traff ic Contr ol Setti ngs This e xa.
22-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 22 Configuring Port-Based Traffic Co ntro l Displaying Port-Base d Traffic Cont rol Settings.
C HAPTER 23-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 23 Configuring UDLD This c hapt er d escri b es how to c onfigure the Un iDi rec tiona l Li n k De tect ion (UD LD) pr otoc ol o n y our Catalyst 2950 or Catalyst 2955 switch.
23-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Co nfiguring UDLD Unders tan ding UDL D A unidirectio nal link occurs when ev er traf f ic sent by a local de vice is re cei ved b y its neighbor b ut traf fic from the neighb or is not recei v ed by the loca l devi ce.
23-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Configuring UD LD Understand ing UDLD • Ev ent-dr iv en det ection and echo ing UDLD re lies on echo ing as its detec tion m echanism .
23-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Co nfiguring UDLD Conf igu ring U DLD Configuring UDLD This se cti on de scri bes how to c onfigure UD LD o n your sw it ch.
23-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Configuring UD LD Configur ing UDLD Enabling UDL D Globally Beginn ing in pri vilege d EXEC mode, follo .
23-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Co nfiguring UDLD Conf igu ring U DLD T o disable U DLD on a non- fiber-optic interface, use the no udld port interfa ce configur ation command.
23-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Configuring UD LD Displaying UDLD Status Displaying UDLD Status T o display the UDLD stat us for the s pecif ied i nterf ace or for all inter faces, use the show udld [ interface-id ] pri vileged EX EC comm and.
23-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 23 Co nfiguring UDLD Displa ying U DLD Statu s.
C HAPTER 24-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 24 Configuring CDP This c hapt er d escrib es how to configure Cisc o Discovery Pro toco l ( CDP ) on your C ataly st 2950 or Catalyst 2955 swi tch.
24-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 24 Co nfigu ri n g CDP Conf igu rin g CD P Configuring CDP These sec tions inclu de CDP con figuration inf.
24-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 24 Configuring CDP Configuring CDP Use the no form of the CDP commands to return to the def ault settings. This e xample sho ws ho w to conf igur e CDP character istics.
24-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 24 Co nfigu ri n g CDP Conf igu rin g CD P Disabling an d Enab ling CDP on a n Interfac e CDP is enabled by def ault on all supported interf aces to send and recei ve CDP information.
24-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 24 Configuring CDP Monitoring and Maintaining CDP Monitoring and Maintaining CDP T o monito r a nd m aint ai n CD P on your device, p er form one or mor e of the se tasks, beginni n g in privileged EXEC mo de .
24-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapte r 24 Co nfigu ri n g CDP Monito rin g and Mai nt aining CDP.
C HAPTER 25-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 25 Configuring SPAN and RSPAN This chap ter des cribes ho w to conf igure Switc hed Port Analyzer (S P AN) an d Remot e SP AN (RSP AN) on your Catalyst 295 0 or Catalyst 2955 switch.
25-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN Figur e 25-1 Example SP AN Configur ation Only traffic that ent ers or le aves source port s c an be mon i tore d by us ing SP AN.
25-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Understandi ng SPAN and RS PAN SPAN and RS PAN Conc epts a nd Terminology This secti on descri bes conce pts and te rminology associate d with SP AN and RSP AN configurat ion.
25-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN Source Port A source port (als o called a monitor ed port ) i s a switched port that you monitor fo r network t raff ic analy sis.
25-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Understandi ng SPAN and RS PAN Reflector Port The r eflecto r por t is th e mech anism that copi es pac ket s onto an RSP AN VL AN.
25-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Understan din g SPA N and RSPAN • VLAN Trunking Protoco l (VTP ) — Y ou can use VTP to pr une an RSP AN VLAN bet ween switch es.
25-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring SPAN Default SPAN and RSPAN Configuration T able 25-1 shows the de fault SP AN and R S P AN configuration . Configuring SPAN This sec tion d escribes h ow to configure SP AN on your switc h.
25-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring SPAN • When SP AN is enabl ed, conf iguration c hange s ha v e thes e result s: – If you change the VLAN confi guration of a destinati on port, the change is not ef f ectiv e until SP AN is disabled.
25-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring SPAN This example shows how to set up a SP A N session, session 1, for monit oring source port traffic to a destinati on port .
25-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring SPAN This exam ple sh ows how to configure th e de stin ati on po rt for i ngre ss tra ffic on VLAN 5 by u si ng a securi ty d evice tha t do es no t sup por t 80 2.
25-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring SPAN Removin g Ports from a SPAN Session Beginning in pr ivilege.
25-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring RSPAN Configuring RSPAN This secti on descri bes how to configure RSP AN on your switch.
25-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring RSPAN Configuring a VLAN as an RSPAN VL AN First crea te a ne w VLAN to be the RSP AN VLAN for the RSP AN session. Y ou must create the RSP AN VLAN in all switches th at will participat e in RSP AN.
25-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring RSPAN This example shows ho w to clear any existing RSP AN confi.
25-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring RSPAN Creating an R SPAN Des tination Sess ion Beginning i n pri.
25-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Configuring RSPAN Removin g Ports from an RS PAN Sess ion Beginn ing in pri .
25-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Displa ying SPAN an d RSPAN St atus Displaying SPAN and RSPAN Status T o disp lay the st atus of th e curren t SP AN or RSP AN configuratio n, use th e show monitor privileged EXEC co mmand.
25-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 25 Configuring SPAN and RSPAN Display ing SPAN and RSPAN Stat us.
C HAPTER 26-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 26 Configuring RMON This c hapt er d escri bes how to c onfigure Re mo te N etwork Mo nito ring ( RMON ) on yo ur Cat alyst 295 0 or Catalyst 2955 switch.
26-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 26 Co n figuring RM ON Conf igu ring R MON Figur e 26-1 Remot e Monit or i ng Example The switc h supports .
26-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 26 Configuring RMON Configuring RMON Default RMON Configuration RMON is disa bled by default ; no alarms or events are configured . Only RMON 1 is supp orted on the switch.
26-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 26 Co n figuring RM ON Conf igu ring R MON T o di sable an al arm, use th e no rmo n alar m num ber global con figura t ion com mand on e ach al arm you configured .
26-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 26 Configuring RMON Configuring RMON Configuring RMON Collection on an Interface Y ou must first configure RM ON al arms an d events to di spla y co lle ctio n i nfor ma tion.
26-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 26 Co n figuring RM ON Displa ying RM ON Sta tus T o disabl e the co llecti on of g roup Ethern et sta tistics , use the no rmon collection stats index inte rface configurati on comm a nd.
C HAPTER 27-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 27 Configuring System Message Logg ing This chapt er descr ibes how to configure system messa ge logging on your Cataly st 29 50 or Cataly st 2955 switch.
27-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Configuring Sy stem Me ssage .
27-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Config uring Syst em Message Logging This example shows a partial .
27-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Disabling an d Enab ling Me ssage Lo gging Message logging is enab led by de fault.
27-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Config uring Syst em Message Logging The logging buffered globa l configur ation comm and c opies l ogging messa ges to a n inte rnal buffer .
27-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Synchronizing Log M essages Y.
27-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Config uring Syst em Message Logging T o disable syn chroniza t io.
27-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Enabling a nd Disab ling Seq .
27-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Config uring Syst em Message Logging Note Specif ying a level ca uses mes sages at th at le vel and nume rically l ow er le vels to appear at the des tination.
27-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing Limiting Syslog Messages Sen.
27-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Config uring Syst em Message Logging Configuring UNIX Syslog Servers The next sec tions desc ribe how to con figure the U NIX server sys log dae mon an d how to define the UN IX system logg ing facilit y .
27-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Configur ing System Mes sage Logg ing T o r emov e a syslog serv er, u se the no logging host global configurati on co mman d, and spe cify the syslog server IP address.
27-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Configuring Sys te m Message L ogging Displaying the Logging Configuration Displaying the Log ging Configuration T o displ ay the logging configuration and t he con tents o f the l og buffer , use the show logging pri vile ge d EXEC co mmand.
27-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 27 Confi guring S ystem Message Logging Display ing the Log gi ng Configur ation.
C HAPTER 28-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 28 Configuring SNMP This chapt er describ es ho w to configure the Sim ple Network Mana gement Prot ocol (SNM P) on your Catalyst 2950 or Catalyst 2955 switch.
28-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Unders tan ding SNMP • Using SNMP to Access MIB V ariables, page 28-4 • SNMP Notif .
28-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Underst anding SN MP T able 28-1 identifie s the charac teristics of the dif feren t combinations of secur ity models and le v els. Y ou must co nfigure the SNMP a gent to use the SNM P version supp orted by the manage ment stat ion.
28-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Unders tan ding SNMP SNMP Agen t Fun ctions The SNMP a gent responds to SNMP manage r requests as follo ws: • Get a MIB v ariable — The SNM P ag en t be gins this functi on in response to a requ est fro m the NM S.
28-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP Figur e 28-1 SNMP Networ k For informati on on supporte d MIBs and how to access them, s ee Appe ndix A, “ Supported MIBs.
28-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Conf igu rin g SNMP Default SNMP Configuration T able 28-3 shows the de fault SNM P c onfiguratio n.
28-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP • When co n f igur in g SNMP in fo rm s , yo u n eed t o co nf igure the SNMP en gi ne ID fo r th e rem o te ag en t in the SNMP da tabase bef ore you can send pro xy request s or inform s to it.
28-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Conf igu rin g SNMP Beginning in privileged EXEC mod e, follow these step s to configur.
28-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP This example shows how to assign the string co macc es s to SNMP , to.
28-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Conf igu rin g SNMP Step 3 s nmp- server group g r oupname { v1 | v2c | v3 { auth | no.
28-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP Configuring SNMP Notifications A trap manag er is a mana geme nt statio n that recei ves and pr ocesses tr aps. T r aps are sys tem alerts that the switc h gen erates wh en cert ain events occu r .
28-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Conf igu rin g SNMP Some noti fication type s can not be c ontr olled wi th the sn mp-se rver ena ble globa l configurati on comm an d, for exampl e, tty a nd udp-port .
28-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP Step 3 snmp-serv er user username gr oupname { remo te ho st [ udp-p.
28-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Conf igu rin g SNMP The snmp-serv er host co mmand s pecif ies which ho sts rec eiv e th e noti fica tions.
28-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNM P Configuring SNMP SNMP Examp les This example shows ho w to enable all versions of SN MP . Th e configurati on permi ts any SNMP manager to access all objects with read-only permissions using the co mmunity string public .
28-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 28 Configuring SNMP Displaying SNM P Status This exa mple shows ho w to send Entity MIB traps to the host cis . The comm unity stri ng is restrict ed.
C HAPTER 29-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 29 Configuring Network Security with ACLs This ch apter descri bes how to configure n etwork se curity o n.
29-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Unders tandin g A CLs Understandin g ACLs Pack et f ilterin g can limit net work traff ic and restrict net work use b y certain users or de vices.
29-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Unde rsta ndi n g AC Ls Figur e 29-1 Using A CLs t o Contr ol T raff ic t o a Netw or k Handling Fragmented and Unfragmented Traffic IP packets can be fragment ed as they cross the ne twork.
29-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Unders tandin g A CLs • Packet A is a TCP pa cket fro m ho st 10. 2. 2.2, po rt 65000 , go ing to h ost 10.1. 1.
29-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Unde rsta ndi n g AC Ls Ther e are t wo ty pe s o f m as ks: • User-define d mask — masks that are de fin ed by the user .
29-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs • All A CEs i n an A CL must ha ve the same user -defined m ask. Ho weve r , A CEs can ha ve d ifferent rules that use th e same mask.
29-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs Unsupporte d Features The switc h does not su.
29-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs ACL Numbers The numbe r you use to denote your A CL shows the type of access list th at you ar e cre ating.
29-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs Creating a Numbered Standard ACL Note For inf.
29-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs This exampl e shows ho w to creat e a standard ACL to deny access to IP host 171 .69.1 98.102, pe rmit access to an y others, and display the results.
29-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs Note Th e switc h does not supp ort dyna mic or reflexive access lis ts. It al so does n ot suppor t filtering based on the min imize -mon eta ry-co st typ e of servic e (T oS ) bit.
29-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs Beginn ing in pri vileg ed EXEC mode, follo w these st eps to create an exte nded A CL: Command Purp ose Step 1 confi gure terminal Ente r g lobal configu ratio n m ode.
29-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs Use the no a ccess-lis t a ccess-list-number gl obal conf igurat ion command to dele te the entire access list.
29-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs Beginn ing in pr iv ileged EXEC mode, f .
29-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs When ma king t he stan dar d an d extend ed .
29-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs T o rem ov e a conf igured time -range , use the no time -range time- range-name g loba l configu ratio n comm and.
29-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Configuring ACLs Switch# show access-lists Extended IP access.
29-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Conf igu ring A CLs Creating N amed MAC Ex tended ACL s Y o u can f ilter Layer 2 traf fi c on a physic al Layer 2 interf ace b y using MA C addresses and named MA C extended ACLs.
29-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Applying ACLs to Terminal Lines or Physical Interfa ces Creat.
29-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Applying ACLs to Ter m in al Lines or Phy sical Inter faces After y ou cr eate an ACL, you can ap ply it to one or more ma nagem ent int erface s or t ermin al lin es.
29-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Displaying ACL Information This e xample sho ws how to apply .
29-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Displa ying A CL Inf ormati on This example shows all standard and extended ACLs: Switch# show access-lists Standard IP access list 1 permit 172.
29-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Examples for Compiling ACLs This exampl e shows ho w to view .
29-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Examples for Compi ling ACL s Figur e 29-2 Using S witc h A CLs t o Contr ol T raf fic This e xample u ses a standar d A CL to all ow ac cess to a speci f ic Internet h ost with the ad dress 172.
29-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Configuring Net work Securi t y with ACLs Examples for Compiling ACLs Numbered ACL Examples This example shows that the swi tch accept s addre sses on networ k 36.
29-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 29 Con figuring Ne two rk Sec urity with ACLs Examples for Compi ling ACL s In this ex ample o f a num ber.
C HAPTER 30-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 30 Configuring QoS This chapte r describes ho w to conf igure quality of service (QoS) b y using automatic- QoS (auto-QoS) comm ands or by using stan dard QoS com mands .
30-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Y ou can al so use these wiz ards to configure QoS only if you.
30-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Under sta n din g Q oS • Prioritiza tion bits in Layer 3 pack ets Layer 3 IP pac kets can carr y a Differentiat ed Servi ces Code Poin t (DSCP) value.
30-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Basic QoS Model Figure 30-2 shows the b asic Qo S model.
30-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Under sta n din g Q oS Classification Note Th is fea ture is available o nly i f your sw itch i s r unn ing the EI .
30-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS • Configuration of a deny ac ti on is n ot su ppor ted in Q oS ACLs on the s wi tch.
30-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Under sta n din g Q oS A polic y map also has thes e charact eristics: • A pol icy ma p c an co nt ain mu l tiple c la ss sta t emen ts .
30-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Unders tan ding QoS Mapping T ables Note Th is fea ture is available o nly i f your sw itch i s r unn ing the EI .
30-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Configuring Auto-QoS CoS co nfigures ea ch tran smi t port (t he egr ess port) wit h a normal -pri ority tra nsmit queu e and a high-pr iority tra nsmit que ue, depe nding on the fra me tag or the port info rmation.
30-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Conf igu rin g Aut o-Q oS Y ou u se au to-QoS comm ands to iden tify p orts co nnecte d to Ci sco IP Phones and to devices runni ng the Cisco Sof tPhone application .
30-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Configuring Auto-QoS When you en able the auto- QoS featu re on the f irst interf ace,.
30-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Conf igu rin g Aut o-Q oS If you e nte re d th e auto qos voip cisco-softphone com mand , the swit ch automati cally cr eates clas s maps an d polic y maps.
30-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Configuring Auto-QoS Effects of Auto-QoS on the Configuration When auto- QoS is en abled, th e aut o qo s v oip inter face configurat ion comm and and the gener ated configurati on are add ed to the ru nning configuratio n.
30-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Conf igu rin g Aut o-Q oS Upgrading from a Previous So ftware Re lease In Cisco IOS Rel ease 12 .2(20)EA 2, the implem entat ion for auto-Q oS chang ed fro m the p revious relea se.
30-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Displaying Auto-QoS Information T o disable auto-QoS on the switch a nd return to the defau lt port trust state set (u ntrusted), follo w these steps: 1.
30-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Auto-QoS Con figuration Example Auto-QoS Configuratio n Example Note Th is example is applica ble only if your switc h is runnin g the EI.
30-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Auto-QoS C onfigur ation Ex ample Note Y o u should no t configu re a ny standar d-Qo S c omma nds befor e e nter ing the aut o-Qo S com ma nds.
30-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Configuring St anda rd QoS Before configur ing standar d QoS, you must have a thoroug h unders tanding of t hese item s: • The type s of applica tions used and the traffic patterns on your ne twork.
30-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Note In softw are r eleases earlie r than Cisco IOS Rele ase 12.1 (11)EA1, the s witch u ses th e CoS v a lue of incoming packet s w ithout m odify i ng the DSCP value.
30-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Configuring Classification Using Port Trust States Thi.
30-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Figu re 30- 4 Port T rusted State s wit hin the Qo S Do mai .
30-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S T o return a port to its untrusted state, use the no mls qos t rust inte rface co n figurati on co mm and.
30-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Configuring the CoS Val ue for an Interface QoS assigns the CoS v al ue specif ied with the mls qos cos interfac e conf igu ration c ommand to unta gged frames re ceived on trusted and untrust ed port s.
30-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S W ith the t rust ed se tt ing, you al so c an use th e.
30-25 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Y ou canno t enab le truste d boundary if auto-Q oS is alre ady en abled an d vice-ver sa.
30-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S T o disab le pass-t hroug h m ode , use the no mls qos trust pass-through dscp interface co nfigur ation comm an d.
30-27 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Classifying Traffic by Using ACLs Y ou ca n classif y IP t raff ic by using I P standa rd or IP extended A CLs; you ca n classif y Layer 2 traffic by usin g Laye r 2 MA C A CLs.
30-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Beginn ing in pri vileg ed EXEC mode, follo w th ese steps to create an IP ex tended A CL for IP traff ic: Command Purpose Step 1 configur e terminal Ent er g loba l c onfigurati on m ode .
30-29 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS For more information about crea ting IP exten ded A CLs, see the “ Guidelines for Applyi ng A CLs to Physica l Interfa ces ” section on page 29-5 .
30-30 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S This e xample sho ws ho w to cr eate a Lay er 2 MA C AC L with a per mit state ment. The s tatemen t allo ws traff ic from the host wi th MA C address 0001.
30-31 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS T o d elete an e xisting class map, u se the no class-map cl ass-map-nam e gl obal conf ig urat ion com man d.
30-32 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Beginning in privileged EX EC mode , follow these steps t o create a po licy map: Command Purpose Step 1 configur e terminal Ent er g loba l c onfigurati on m ode .
30-33 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS T o delete an existing polic y map, use the no policy-map policy- map-n ame global configuration comm and.
30-34 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S This e xample sho ws ho w to create a polic y map and attach it to an ingress i nterface. I n the conf iguration, the I P standard A CL permits tr af fi c from net work 10.
30-35 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Configuring the CoS-t o-DSCP Map Y o u use the C oS-to-DSCP map to map CoS v alues in inco ming pack ets to a DSCP va lue that QoS uses internall y to rep resent the priority o f the tr af fic .
30-36 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Configuring the DSCP-to- CoS Map Y ou use the DSCP-to-Co S ma p to map DS CP values in incom ing pac kets to a Co S value, which is used to sele ct one of the fou r egress queues .
30-37 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Confi guring Standard QoS Configuring th e Egress Qu eues Note Th is feature is supported by both the SI and EI.
30-38 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Configur ing Standard Qo S Configuring WRR Prior ity Beginn ing in priv ileged EX.
30-39 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Displaying Standard QoS Information Displaying Standard QoS In formation T o display s.
30-40 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Standard Q oS Con figuration Examples Figur e 30-5 QoS Configur ation Ex ample Ne.
30-41 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 30 Configuring Qo S Stan dard QoS Co nfigur ation Ex amples For the Cataly st 2900 and 35 00 XL sw itches,.
30-42 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapt e r 30 Conf igur ing Q o S Standard Q oS Con figuration Examples Step 18 show cl ass-map v ideoclass show policy-map videopolicy show mls qos maps [ co s-d scp | dscp-cos ] V eri fy yo ur en tries .
C HAPTER 31-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 31 Configuring EtherChannels This c hapt er d escri bes how to c onfigure E ther Cha nnel on t he L ayer 2 inter faces of a C ataly st 29 50 or Catalyst 295 5 switch.
31-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Unders tan ding Ether Channels Figur e 31 -1 T ypical EtherChanne l Configur ation Each Et h erCha nne l ca n co ns is t of up to eigh t com pa tib ly configur ed Ethe rn et i nte rface s.
31-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Understa nding Et herChann els Figur e 31 -2 Relationship of P h ysical P orts, Lo gical P ort Channe ls, and Chann el Gr oups When a port joins an Ethe rChanne l, the physic al inter face for that port is shut down.
31-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Unders tan ding Ether Channels PAgP and LACP Modes T able 31-1 shows th e use r-configurab le Ethe rC hanne l m ode s fo r t he channel-group interf ace conf iguration com mand.
31-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Understa nding Et herChann els Note An Et herc hanne l c anno t be c on figured in b oth t h e P AgP an d LACP modes.
31-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Unders tan ding Ether Channels PAgP and LACP Interaction wi th Other Featu.
31-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Config uring Et herChann els Figur e 31 -3 Load Distr ibuti on and F orwa rd.
31-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Configur ing Eth erChann els Default EtherCh annel Configura tion T able 31-2 shows th e de fault Et herCh ann el co nfigurati on .
31-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Config uring Et herChann els • An Ethe rCh anne l sup por ts the sa me al lowed ran ge of V LA Ns on a ll the inte rface s i n a t runki ng Layer 2 Ethe rChanne l.
31-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Configur ing Eth erChann els Step 3 channel-gr oup c hannel-group-number .
31-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Config uring Et herChann els T o remove an inte rface from the Eth erCha nnel gro up, us e the no channel-group interface configura tion comm and.
31-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Configur ing Eth erChann els T o ret urn Ethe rChannel lo ad balanc ing to the defa ult conf iguratio n, use th e no port-channel load-balanc e global con figurati on comm and.
31-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Configuring Eth erCh annels Config uring Et herChann els Configuring Hot Standby Ports When enabled , LA CP tries to co nfig ure the maximum number of LA CP- compatible port s in a channel, up to a m ax imu m of 1 6 po r ts .
31-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 31 Conf iguri ng Ethe rChannel s Displaying Eth erChannel, PA gP, and LACP Status Displaying EtherCh annel.
C HAPTER 32-1 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 32 Troubleshooting This ch ap ter descr ibe s how to i dent ify and re solve Ca ta lyst 295 0 a nd Cat alyst 2 955 sof tware p rob lem s relate d to the C isco IO S softwa re.
32-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Recovering from Corru pted Softw are Switch software can be cor ru pted du ring an up grade , by downloadin g the wr ong file to the swi tch, and by d eleting the im age f ile.
32-3 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures Step 4 Press the Mode button, and at th e same time, reconnect the pow er cord to the switch. Y o u can r elease the Mo de b utton a seco nd or two after the LED above port 1X turns off.
32-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Step 15 Change the password: switch(config)# enable secret .
32-5 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures • If you see a messag e that begins wit h this: The password-recovery mechanism has been triggered, but is currently disabled.
32-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Step 9 Copy the configuration file into memor y: Switch# copy flash: config.text system: running-config Source filename [config.
32-7 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures • If you ent e r n (n o), the n orm al bo ot proce ss cont inu es as if th e Mode button had not bee n pr essed; you ca nnot ac cess the b oot lo ad er pr ompt , and y ou c annot ent er a new password.
32-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Note Th is proced ure is likely to leav e your swit ch VLAN in terface in a shutdown stat e. Y ou can see which interf ace is in this state b y enter ing the sho w running-config p ri vil eged EXEC comman d.
32-9 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures Step 4 When the bo ot loa der pr omp ts yo u, ent er th e bre ak key .
32-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Step 14 Enter global co nfigurati on mode: switch# configu.
32-11 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures Replacing a Failed Command Switch with a Cluster Member T.
32-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using Re covery Procedu res Step 10 Ente r Y at the f irst prompt .
32-13 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Recover y Proce dures Step 5 Use the setup pro gram to configure the sw itch IP info rmati on. This pr ogr am p rom pts you fo r IP a dd ress i nfor ma tion and p asswords.
32-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Preventing Autone gotiati on M ismatche s Recove ring fro m L ost Memb er Co nnec tivi ty Some conf igur ations can pre v ent the c ommand switc h from maintai ning contact wi th member switc hes.
32-15 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Diagnosing Connectivit y Problems After inserting a Cisco-approve d GBIC or SFP modul.
32-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Diagno sing Connec tivity Prob lems Note Th oug h o ther p roto col keywords ar e available wi th t h e ping comma nd, they are not supp orted i n this release.
32-17 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Diagnosing Connectivit y Problems Usage Guidelines These a re the Layer 2 trac eroute usag e guideli nes: • Cisco Discovery Protocol (CDP) must be enabled on a ll the devices in the ne twork.
32-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Diagno si ng LRE Con nection Prob lems Displaying the Physical Path Y ou ca n disp la .
32-19 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Debug C ommands Using Debug Commands This se cti on expl ain s h ow you use th e debug co mmand s to dia gnose an d res olv e intern etw ork ing proble ms.
32-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using D ebug Command s Cautio n Beca use de bu gging output is assi gned hi gh pri orit y in the CP U proces s, it can render the sys tem unusab le.
32-21 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Using Debug C ommands The no debug al l privileged EXEC comm and di sables all diagnost ic output . Using t he no debug all comm and is a convenient way to ensure th at you have not accide ntally l eft any debug co mmand s enab led.
32-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using the s how co ntrol ler s Comm and s For more information about auto-Q oS, see the “ Configur ing Auto-QoS ” section on pa ge 3 0-9 .
32-23 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Troublesho oti ng Usin g th e cr a shi n fo Fi le Using the crashinfo File This fea ture is av ailable if your switch i s running Cisco IO S Relea se 12. 1(11)EA 1 or later .
32-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Chapter 32 Trouble shooting Using t he c rashinfo File.
A- 1 Catalyst 2950 and Catalyst 2955 Switch Software Conf iguration Gui de 78-11380-10 APPEND IX A Supported MIBs This a ppend ix li sts t he supp ort ed MI Bs for t his re leas e.
A- 2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendi x A Supported MI Bs MIB Li st • CISCO- P A E-MI B • CISC O- P A GP-MI B • CISCO-PING-MIB • CISCO-PO.
A-3 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix A Support ed M IBs Using FTP to Access the MIB Files Note The IF-MIB and the CI SCO- IETF-VDS L-LINE -MIB ar e suppor ted as rea d-only MIBs fo r the Fa st Ethern et in terf aces o n the C PE de vices.
A- 4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendi x A Supported MI Bs Using FTP t o Acces s the MIB Fi le s.
B-1 Catalyst 2950 and Catalyst 2955 Switch Software Conf iguration Gui de 78-11380-10 APPEND IX B Working with the Cisco IOS File System, Configuration Files, an d Software Images This a ppend ix desc.
B-2 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he.
B-3 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges W o rking wi.
B-4 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he.
B-5 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges W o rking with the Flash File System Use t h e /recursi ve keyword to delet e the n am ed dire ctory and al l subdir ec torie s a nd t he files contai ned in it.
B-6 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w it h t he F lash File Sy st em Use the /rec ursiv e keyword for deleting a director y and all subdire ctori es and the files contai ned in it.
B-7 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges W o rking wi.
B-8 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con figuration Files This e xample sho ws ho w to extra ct the conten ts of a tar f ile loc ated on the TFTP serv er at 172.
B-9 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working with.
B-10 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con figuration Files Configuration File Types and Location Startup co nfiguration files are use d during syst em startup to configure the sof tware.
B-11 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-12 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con figuration Files This ex amp le sho ws ho w to config ure the sof twar e from the f ile tokyo-conf g a t IP a ddress 172.
B-13 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working with Configuration Files The user name and pass word must be asso ciat ed with an acco unt on the FTP server .
B-14 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-15 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-16 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con figuration Files The RC P requires a client t o send a re mote user name with each RCP requ est to a ser ver .
B-17 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-18 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working w ith Con .
B-19 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working with Software Image s Clearing Con figuration Informatio n Y ou ca n clea r the configurati on inf ormati on fr om the startup configurat ion.
B-20 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft ware Images Note For a li st of softw are images and the supported upg rade paths, r efer to the release n otes.
B-21 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-22 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft ware Images • For download op erati ons , ensu re that the pe rmis sion s on the file ar e set co rrec tly .
B-23 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-24 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-25 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-26 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-27 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working with Software Image s The alg orithm instal ls the downloaded image ont o the system boa rd flas h device (flash:).
B-28 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-29 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working wit.
B-30 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
B-31 Catalyst 2950 and Catalyst 2955 Switch Software Configur ation Gui de 78-11380-10 Append ix B Workin g with the Cisco I OS File Syst em, Confi gura tion Files , a nd Sof tware Ima ges Working with Software Image s The alg orithm instal ls the downloaded image ont o the system boa rd flas h device (flash:).
B-32 Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide 78-11380-10 Appendix B Working with the Cisco IOS File System , Co nfigurat ion Files, and S oftware Imag es Working wi th Soft.
