HP (Hewlett-Packard)メーカー6120の使用説明書/サービス説明書
ページ先へ移動 of 589
Augu st 2 0 09 Pr oC ur v e Ser i es 6 1 20 S w itc he s Ma na ge ment a nd C on figu ration Gu id e.
Hewlett-Packa rd Company 8000 Foothills Boulevard, m/s 5551 Roseville, California 95747-5551 http://www .procurve.com © Copyright 2009 Hewlett-Pa ckard Development Company, L.P . The infor mation contained herein is subjec t to change with- out notice.
ii.
iii Contents Product Documentation About Your Switch Manual Set . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxi Printed Publications. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxi Electronic Publications .
iv Understanding Physical Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-2 Understanding Management I nterfaces . . . . . . . . . . . . . . . . . . . . . . . . . 2-3 Advantages of Using the Menu Interface . . . . . . . . . . . .
v Accessing the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2 Using the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2 Privilege Levels at Logon .
vi Online Help for the Web Browser Interface . . . . . . . . . . . . . . . . . . . . 5-11 Support/Mgmt URLs Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-12 Support URL . . . . . . . . . . . . . . . . . . . . . . . . . .
vii Setting the Default Flash . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-21 Booting from the Defau lt Flash (Prima ry or Secondary) . . . . . . 6-22 Booting from a Specified Flash . . . . . . . . . . . . . . . . . . . . . . . .
viii Interface Access: Console/Serial Link, Web, and Inbound Telnet . 7-3 Menu: Modifying the Interface Access . . . . . . . . . . . . . . . . . . . . . . . . . . 7-4 CLI: Modifying th e Interface Ac cess . . . . . . . . . . . . . . . . . . . . . . . .
ix General Steps fo r Running a T ime Protocol on the Switch: . . . . . . . . 9-3 Disabling Time Synchronization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-3 SNTP: Viewing, Selecting, a nd Configuring . . . . . . . . . . . . . . .
x Configuring a Bro adcast Limi t on the Switch . . . . . . . . . . . . . . . . . . 10-18 Configuring ProCurve Auto-MDIX . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-19 Web: Viewing Port Status and Co nfiguring Port Parameters . . . . . 10-22 Using Friendly (Optional) Port Names .
xi Default Port Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11-21 LACP Notes and Restrictions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11-22 Trunk Group Operation Usin g the “Trunk” Option .
xii Group Access Levels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13-12 SNMPv3 Communities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13-12 Menu: Viewing and Co nfiguring no n-SNMP version 3 Communities .
xiii LLDP-MED To pology Ch ange Notification . . . . . . . . . . . . . . . . . 13-58 LLDP-MED Fast Start Control . . . . . . . . . . . . . . . . . . . . . . . . . . . 13-60 Advertising Device Capability, Network Policy, PoE Status and Location Data . .
xiv CLI: Xmodem Download from a PC or UNIX Workstation to Primary or Secondary Flash . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-21 Switch-to-Switch Download . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-22 Menu: Switch-t o-Switch Download to Primary Flash .
xv Menu Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-8 CLI Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-9 Port Status . . . . . . . . . . . . . . .
xvi Traffic Select ion Option s . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-36 Mirroring-Sourc e Restrictions . . . . . . . . . . . . . . . . . . . . . . . . . . . B-36 Selecting All Inbound/Outbound Traffic to Mirror . . . . . . .
xvii Event Log Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C-24 Menu: Displaying and Navigating in the Ev ent Log . . . . . . . . . . . . . C-31 CLI: Displaying the Event Log . . . . . . . . . . . . . . . .
xviii Viewing Switch Configu ration and Operati on . . . . . . . . . . . . . . . . . C-65 CLI: Viewing th e Startup or Running Conf iguration File . . . . . . . . . C-65 Web: Viewing the Configu ration File . . . . . . . . . . . . . . . . . . . . . . .
xix Viewing Information on Resource Usage . . . . . . . . . . . . . . . . . . . . . . . E-2 Policy Enforcement Engine . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . E-2 When Insufficie nt Resource s Are Avai lable . . . . . . . . .
xx.
xxi Product Documentation About Y our Switch Manual Set Note For the latest version of sw itch documentatio n, please visit any of the follow- ing websites: www .procurve.com/manuals www .hp.com/go/blades ystem/documentation h18004.www1.hp. com/products/blades/ components/c-class-tech-installing.
xxii Software Feature Index This feature index indicates whi ch manual to co nsult for info rmation on a given softw are feature. Note This Index does not cover IPv6 capable software features. For informatio n on IPv6 protocol operatio ns and features (such as DHCPv6, DNS for IPv6, and Ping6), refer to the IPv6 Configuration Guide .
xxiii Downloading Software X Event Log X Factory Default Settings X Flow Control (802.3x) X File T ransfers X Friendly Port Names X GVRP X Identity-Driven Management (IDM) X IGMP X Interface Access (T.
xxiv Port Monitoring X Port Security X Port Status X Port T runk ing (LACP) X Port-Based Access Control (802.1X) X Protocol VLANS X Quality of Service (QoS) X RADIUS Authentication and Accounting X RA.
xxv VLANs X W eb Authentication RADIUS Support X W eb-based Authentication X W eb UI X Intelligent Edge Software Features Manual Management and Configuration Advanced T raffic Management Multicast and.
1-1 1 Getting Started Contents Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2 Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
1-2 Getting Started Intr oducti on Introduction This guide is inten ded for u se with the HP ProCurve 6 120G/XG and 61 20GX switches. It descri bes how to use the co mmand line interf ace (CLI), Me nu int erfac e, and we b browser t o configure, manage, mon itor , and troubl eshoot sw itch opera - tion.
1-3 Getting Started Conventions Command Prompts In the default co nfiguration, your switc h displays a CLI promp t similar to the following examples: ProCurve 6120G/XG Blade Switch# ProCurve 6120XG Blade Switch# T o sim plify recognition, this guid e uses ProCurve to represen t command prompts.
1-4 Getting Started Source s for More Informati on Sources for More Information For in formation ab out swi tch op eration and feat ures not co vered in this guide , consult the following sourc es: .
1-5 Getting Sta rted Source s for More Info rmatio n • file transfe rs, switch monitorin g, troubleshoo ting, and MAC addr ess manage ment ■ Advanced T raffic Management Guide —Use this guide for in formation on topics such as: • VLANs: Stat ic port-based a nd protocol V LANs, and dy namic GVRP VLANs • spann ing-T ree: 802.
1-6 Getting Started Source s for More Informati on Getting Documentation From the W eb T o obtain the latest versio ns of documen tation and rel ease notes for yo ur switch, go to any of the f ollowin g web s ites: www .pro curve.co m/man uals www.hp.
1-7 Getting Started Sources for More Information Command Line Interface If you need information on a specific comman d in the CLI, type t h e command name fo llowed by help .
1-8 Getting Started Need Only a Quick Start? Figure 1-5. Button for Onboard Administrato r Interface Online Help Need Only a Quick Start? IP Addressing If you just want to give th e switch an IP addre.
1-9 Getting Started To Set Up and Install the Switch in Your Network ■ Instructions fo r physically installi ng the switch in your netw ork ■ Quickly assigning an IP address a nd subnet mask, set a Manager pass- word, and (optionally) conf igure other basic features.
2-1 Selecting a Management Interface Contents 2 Selecting a Management Interface Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-2 Understanding Physical Interfaces . . . . .
2-2 Selecting a Management Interface Overview Overview This chapter describes the foll owing: ■ Physical Interfaces ■ Management interfaces ■ Advantages of using each interface Understanding Phy.
2-3 Selecting a Management Interface Understanding Management Interfaces Note The switches covered in th is guide allow up to 6 co nsole connection s. Console session 1 always belongs to the serial console, console session 2 always belongs to the USB serial consol e, and the remaining 4 can be used via ssh or telnet from a network connecti on.
2-4 Selecting a Management Interface Advantages of Usi ng the Menu Interface Advantages of Using the Menu Interface Figure 2-1. Example of the Console Inte rface Display ■ Provides quick, easy mana .
2-5 Selecting a Management Interface Advantages of Using the CLI Advantages of Using the CLI Figure 2-2. Command Prompt Examples General Benefits ■ Provides access to the complete set of the switch configurat ion, perfor - mance, and diagnostic features.
2-6 Selecting a Management Interface Advantages of Using t he Web Browser Interface Advantages of Using the W eb Browser Interface Figure 2-3. Example of the Web Browser Interface ■ Easy access to t.
2-7 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Advantages of Using ProCurve Manager or ProCurve Manager Plus Y ou can operate ProCurve Manager and P.
2-8 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus PCM and PCM+ enable greater control, uptime, and performance in your network: ■ Features and benefi.
2-9 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus • Device Software Updates: This feature automatically obtai ns new device software images from ProC urve and updates devices, al lowing users to do wnload the latest ve rs ion or choose the desired version.
2-10 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus clears the banner windo w and prompts the u ser for a passwor d (if configured).
2-11 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Example of Configuring and Displaying a Banner Suppose a system operator wan ted to configure the following banner message on her comp any’ s switches: This is a private system maintained by the Allied Widget Corporation.
2-12 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus Figure 2-7. The Current Banner Appear s in the Switch’ s Running-Config File The next time someone logs onto the switch’ s management CLI, the follow ing appears: Figure 2-8.
2-13 Selecting a Management Interface Advantages of Using ProCurve Manager or ProCurve Manager Plus If someone uses a W eb browser to log in to the switch interface, the following message appears: Figure 2-9.
3-1 3 Using the Menu Interface Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-2 Starting and Ending a Me nu Session . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-3 How To Start a Menu Interface Session .
3-2 Using the Menu Interface Overview Overview This chapter describes the follow ing features: ■ Overview of the Menu Interfa ce (page 3-2) ■ Starting and ending a Menu session (page 3-3) ■ The .
3-3 Using the Menu Interface Starting and Ending a Menu Session Note If the switch has neither a Manag er nor an Operator password, anyone having access to the console interface can ope rate the console with full manager privileges. Also, if you co nfigure only an Operator password, entering the Operator password en ables full manager privileges.
3-4 Using the Menu Interface Starting and Ending a Menu Session How T o Start a Menu Interface Session In its factory default configuration, th e switch console starts with the CLI prompt. T o use the menu interface with Manager privileges, go to the Manager level prompt and ent er the menu command.
3-5 Using the Menu Interface Starting and Ending a Menu Session Figure 3-1. Example of the Main Menu with Mana ger Privileges For a description of Main Menu features, see “Main Menu Features” on page 3-7.
3-6 Using the Menu Interface Starting and Ending a Menu Session Figure 3-2. Example Indicatio n of a Configuration Chan ge Requiring a Reboot 1. In the current session, if you have not made conf iguration changes that require a switch reboot to activate, return to the Main Menu and press [0] (zero) to log out.
3-7 Using the Menu Interface Main Menu Features Main Menu Features Figure 3-3. The Main Menu View with Manager Privileges The Main Menu gives you access to these Menu interface features: ■ Status and Counters: Provides access to di splay screens showing switch informat ion, port st atus and counters, and port and VLAN address tables.
3-8 Using the Menu Interface Main Menu Features ■ Command Line (CLI): Selects the Command Line Interface at the same level (Manager or Operator) that you are accessing in the Menu interface. (Refer to Chapter 4, “Using th e Command Line Interface (CLI)”.
3-9 Using the Menu Interface Screen Structure and Navigation Screen Structure and Navigation Menu interface screens incl ude these three elements: ■ Parameter fields and/or read -onl y information s.
3-10 Using the Menu Interface Screen Structure and Navigation T able 3-1. How T o Navig ate in the Menu Interf ace T ask: Action s : Execute an action from the “Actions –>” list at the bottom.
3-11 Using the Menu Interface Screen Structure and Navigation T o get Help on i ndividual parameter de scriptions. In most screens there is a Help option in the Actions line. Whenever any of the items in the Actions line is highlig hted, press [H] , and a separate help screen is displa yed.
3-12 Using the Menu Interface Rebooting the Switch Rebooting the Switch Rebooting the switch fr om the menu interface ■ T erminates all current sessions and performs a reset of the operating system .
3-13 Using the Menu Interface Rebooting the Switch Rebooting T o Activate Configuration Changes. Configuration changes for most parameters in th e menu interface become ef fective as soon as you save them. However , you must reboot the switch in orde r to implement a change in the Maximum VLANs to support parameter .
3-14 Using the Menu Interface Menu Features List Menu Features List Status and Counters • General System Information • Switch Management Address I nformation • Port Status • Port Counters • .
3-15 Using the Menu Interface Where To Go From Here Where T o Go From Here This chapter provides a n overview of th e menu interface and how to use it. The followi ng table indicates where t o turn for detailed informatio n on how to use the individual features av ailable through the menu interface.
4-1 4 Using the Command Line Interface (CLI) Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2 Accessing the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
4-2 Using the Command Line Interface (CLI) Overview Overview The CLI is a text-based command interf ace for configuring an d monitoring the switch. The CLI gives you access to the switch’ s full set of commands while providing the same password protection that is used in t he web browser interface and the menu interface.
4-3 Using the Command Line Interface (CLI) Using the CLI When you use the CLI to make a config uration change, the switch w rites the change to the Run ning-Config file in volatile memo ry . This a llows you to test your configurat ion changes be fore maki ng them permanent.
4-4 Using the Command Line Interface (CLI) Using the CLI Caution ProCurve strongly recom mends that you co nfigure a Manager password. If a Manager password is not configured, th en the Manager level .
4-5 Using the Command Line Interface (CLI) Using the CLI Manager Privileges Manager privileges give you three additi onal levels of acce ss: Manager , Global Configuration, and Cont ext Configuration. A “ # ” character delimits any Man- ager prompt.
4-6 Using the Command Line Interface (CLI) Using the CLI T able 4-1. Privilege Level Hierarch y Privilege Level Example of Prompt and Permitted Operations Operator Privilege Operator Level ProCurve>.
4-7 Using the Command Line Interface (CLI) Using the CLI How T o Move Between Levels Moving Between the CLI and the Menu Interface. When moving between interfaces, the switch retains th e current privilege level (Manager or Operator).
4-8 Using the Command Line Interface (CLI) Using the CLI For example, if you use the menu interf ace to configure an IP address of “ X ” for VLAN 1 and later use the CLI to co nfigure a different IP address of “ Y ” for VLAN 1, then “ Y ” replaces “ X ” as the IP address for VLAN 1 in the runni ng- config file.
4-9 Using the Command Line Interface (CLI) Using the CLI T y ping ? at the Manager level produces this listing: Figure 4-4.Example of the Manager-Level Command Listing When - - MORE - - appears, there are more comma nds in the listing. T o li st the next screenfull of commands, press the Space bar .
4-10 Using the Command Line Interface (CLI) Using the CLI As mentioned above, if you type part of a command word and press [T ab] , the CLI completes the current wo rd (if you have typed enou gh of the word for the CLI to distingui sh it from ot her possibilitie s), including hyph enated exten- sions.
4-11 Using the Command Line Interface (CLI) Using the CLI Displaying CLI “Help” CLI Help provides two types of context-sensitive info rmation: ■ Command list with a brief summary of each command’ s purpose ■ Detailed informati on on how to use indivi dual command s Displaying Command-List Help.
4-12 Using the Command Line Interface (CLI) Using the CLI Figure 4-7.Example of How T o Display Help for a Specific Command Note that trying to list the help for an individual command from a privilege level that does no t includ e that command results in an error message.
4-13 Using the Command Line Interface (CLI) Using the CLI Configuration Comma nds and the Context Configuration Modes Y ou can execute any configuration comma nd in the global configuration mode or in selected context modes. However , using a c ontext mode enables you to execute context-specific commands fast er , with shorter command strings.
4-14 Using the Command Line Interface (CLI) Using the CLI Figure 4-8. Context-Specific Com mands Affecting Po rt Context In the port context, the first block of commands in the “?” listing show the context-specif ic commands that will affect only ports C3-C6.
4-15 Using the Command Line Interface (CLI) Using the CLI VLAN Context . Includes VLAN-specific command s that apply only to the selected VLAN, plus Manager and Op erator command s. The prompt for this mode includes the VLAN ID of the sel ected VLAN. For example, if you had already configur ed a VLAN with an ID of 100 in the switch: Figure 4-9.
4-16 Using the Command Line Interface (CLI) CLI Control and Editing CLI Control and Editing Executing a Prior Command—Redo The redo command executes a prior command in th e history list. Figure 4-10. Example of the redo Comman d Repeating Execution of a Command The repeat comman d execute s a previ ous command in the history lis t.
4-17 Using the Command Line Interface (CLI) CLI Control and Editing For example: ProCurve(config)# repeat 1-4,7-8,10 count 2 delay 3 Figure 4-11. Example of repeat Command Usi ng a Range Syntax: repeat [cm dlist] [count] [delay] Repeats execution of a previous command.
4-18 Using the Command Line Interface (CLI) CLI Control and Editing Using a Command Alias Y ou can create a simple comma nd alias to use in place of a command name and its options.
4-19 Using the Command Line Interface (CLI) CLI Control and Editing Figure 4-12. Example of Using the Alia s Command with sh ow int custom Note Remember to enclose the command being aliased in quotes. Command paramete rs for the ali ased comm and can be added at the end of the alias command string.
4-20 Using the Command Line Interface (CLI) CLI Control and Editing Figure 4-13. Example of Alias Commands and Th eir Configurations CLI Shortcut Keystrokes ProCurve(config)# show alias Name C ommand .
5-1 5 Using the ProCurve W eb Browser Interface Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-2 General Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
5-2 Using the ProCurve Web Browser Interface Overview Overview The ProCurve web browser interface buil t into the switch lets you easily access the switch f rom a browser - based PC on yo ur network.
5-3 Using the ProCurve Web Browser Interface General Features General Features The web browser interface includes these features: Switch Identity and Status: • General system da ta • Software vers.
5-4 Using the ProCurve Web Browser Interface Starting a Web Browser Interface Session with the Switch Starting a W eb Browser Interface Session with the Switch Y ou can star t a web browser session in.
5-5 Using the ProCurve Web Browser Interface Starting a Web Browser Interface Session with the Switch Using ProCurve Ma nager (PCM) or ProCurve Manager Plus (PCM+) ProCurve Manager and ProCurve Manager Pl us are designed for i nstallation on a network management w orkstation.
5-6 Using the ProCurve Web Browser Interface Starting a Web Browser Interface Session with the Switch Figure 5-1. Example of Status Overview Screen First time install alert.
5-7 Using the ProCurve Web Browser Interface Tasks for Your First ProCurve Web Browser Interface Session T asks for Y our First ProCurve W eb Browser Interface Session The first time you a ccess the w.
5-8 Using the ProCurve Web Browser Interface Tasks for Your First ProCurve Web Browser Interface Session This window is the la unching point f o r the basic configur ation you need to perform to set w.
5-9 Using the ProCurve Web Browser Interface Tasks for Your First ProCurve Web Browser Interface Session Figure 5-3. The Device Passwords Window T o set the passwords: 1.
5-10 Using the ProCurve Web Browser Interface Tasks for Your First ProCurve Web Browser Interface Session Entering a User Name and Password Figure 5-4. Example of the Password Prompt in the W e b Browser Interface The manager and operator passw ords are us ed to control access to all sw itch interfaces.
5-11 Using the ProCurve Web Browser Interface Tasks for Your First ProCurve Web Browser Interface Session The Clear button is provided for your convenience, but its presence means that if you are conc.
5-12 Using the ProCurve Web Browser Interface Support/Mgmt URLs Feature Support/Mgmt URLs Feature The Support/Mgmt URLs window en ables you to change the W orld W ide W eb Universal Resource Locat or .
5-13 Using the ProCurve Web Browser Interface Support/Mgmt URLs Feature Support URL For technical support, go to: www .hp.com/#Support. Help and the Manage ment Server URL The Management Server URL field specifies the U RL the switch uses to find online Help for the w eb browser interface.
5-14 Using the ProCurve Web Browser Interface Support/Mgmt URLs Feature Using the PCM Server for Switch W eb Help For ProCurve devices that support the “W eb Help” feature, you can use the PCM server to host the switch help files for devices that do not have HTTP access to the ProCurve Support W eb site.
5-15 Using the ProCurve Web Browser Interface Support/Mgmt URLs Feature 3. Add an entry , or edit the existing entry i n the Discovery por tion of the global properties (globalpro ps.prp) in PCM to redire ct the switches to the help files on the PCM server .
5-16 Using the ProCurve Web Browser Interface Status Reporting Features Status Reporting Features Browser elemen ts covered in this section includ e: ■ The Overv iew window (below) ■ Port utilizat.
5-17 Using the ProCurve Web Browser Interface Status Reporting Features Policy Management and Configuration. PCM can perform network-wide policy management and conf igurat ion of your switch . The Management Server URL field (page 5-13) shows the URL fo r the management station performing that function.
5-18 Using the ProCurve Web Browser Interface Status Reporting Features ■ % Error Pkts Rx : All er ror packets received by the port. (T his indicator is a reddish color on many system s.
5-19 Using the ProCurve Web Browser Interface Status Reporting Features Figure 5-11. Display of Nume rical V alue s for the Bar Port Status Figure 5-12. The Port Status Indic ators and Legend The Port Status in dicators show a symbol f or each port that indicate s the general status of the port.
5-20 Using the ProCurve Web Browser Interface Status Reporting Features The Alert Log The web browser interface Al ert Log, sh own in the lo wer half of the screen, shows a list of network occurrences, or alerts , that were detected by the switch.
5-21 Using the ProCurve Web Browser Interface Status Reporting Features Alert T ypes and Detailed Views As of June, 2007, the web browser in terface generates th e following alert types: Note When tro.
5-22 Using the ProCurve Web Browser Interface Status Reporting Features Figure 5-14. Example of Alert Log Detail View The Status Bar The Status Bar appears in the uppe r left corner of the web browser interface window . Fig ure 5-15 shows an expa nded view of the status bar .
5-23 Using the ProCurve Web Browser Interface Status Reporting Features The Status bar includes fo ur objects: ■ Status Indicator . Indicates, by icon, the severi ty of the most critical alert in the current di splay of the Aler t Log. This ind icator can be one of f our shapes and colo rs, as shown below .
5-24 Using the ProCurve Web Browser Interface Status Reporting Features Setting Fault Detection Policy One of the powerful features in the web browser interface is the Fault Detection facility . For your switch, this feature controls the types of alerts reported to the Alert Log based on their level of severity .
5-25 Using the ProCurve Web Browser Interface Status Reporting Features T o pro vide the most information on network problems in the Alert Log, the recommended sensitivity level for Log Network Problems is High Sensitivity . The Fault Detec tion settings a re: ■ High Sensitivity .
6-1 6 Switch Memory and Configuration Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6-3 Configuration File Management . . . . . . . . . . . . . . . . . . . . . . . . . . . .
6-2 Switch Memory and Configuration Contents Changing or Overriding t h e Reboot Configur ation Polic y . . . . . . . . . 6-30 Managing Startup-Confi g Files in the Switch . . . . . . . . . . . . . . . . . . . 6-32 Renaming an Existing Start up-Config File .
6-3 Switch Memory and Configuration Overview Overview This chapter describes: ■ How switch memory manag es configu ration ch anges ■ How the CLI implements configurat ion changes ■ How the menu .
6-4 Switch Memory and Configuration Configuration File Management ■ Startup-config File: Exists in flash (non-vo latile) memory and is used to preserve the most recently-save d configuration as the “permanent” configuration.
6-5 Switch Memory and Configuration Configuration File Management The above command disables port 5 in th e running-config file, but not in the startup-co nfig file.
6-6 Switch Memory and Configuration Using the CLI To Implement Configuration Changes Using the CLI T o Implement Configuration Changes The CLI offers these capabili ties: ■ Access to the fu ll set o.
6-7 Switch Memory and Configuration Using the CLI To Implement Configuration Changes 3. Observe the switch’ s performance wi th the new parameter settin gs to verify the effect of your changes. 4. When you are satisfied that you have the correc t parameter settings, use the write memory command to copy the changes to the startup-config file.
6-8 Switch Memory and Configuration Using the CLI To Implement Configuration Changes How T o Cancel Changes Y ou Have Made to the Running-Config File. If you use th e CLI to chan ge parameter settings.
6-9 Switch Memory and Configuration Using the CLI To Implement Configuration Changes Note If you use the CLI to ma ke a change to th e running- config fi le, you should either use the write memory command or select th e save option all owed during a reboot (figure 6-6-2, above) to save th e change to the startup-config file.
6-10 Switch Memory and Configuration Using the Menu a nd Web Browser Inte rfaces To Implement Configuration Changes Using the Menu and W eb Browser Interfaces T o Implement Configuration Changes The m.
6-11 Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Imple m ent Configuration Changes Figure 6-4. Example of Pending Configuration Chan ges Y ou Can Save or Cancel Note I.
6-12 Switch Memory and Configuration Using the Menu a nd Web Browser Inte rfaces To Implement Configuration Changes Figure 6-5. The Reboot Switch Option in th e Main Menu Rebooting T o Activate Configuration Changes. Configuration changes for most parameters become effective as soon as you save them.
6-13 Switch Memory and Configuration Using the Menu and Web Browser Interfaces To Imple m ent Configuration Changes Figure 6-6. Indication of a Configuratio n Change Requiring a Reb oot W eb: Implemen.
6-14 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Using Primary and Secondary Flash Image Options T he s w i t c h e s covered in this guide f eature two flash memory locations for storing switch software im age files: ■ Primary Flash: The defaul t storage for a switch software image.
6-15 Switch Memory and Configuration Using Primary and Secondary Flash Image Options For example, if the switch is using a software version of K.12.XX stored in Primary flash, show version produces the following: Figure 6-7. Example Showing the Identity of th e Current Flash Image Determining Whethe r the Flash Images Are Different V ersions.
6-16 Switch Memory and Configuration Using Primary and Secondary Flash Image Options switch from the opposite flash image and using show version again, you can determine the version(s) of sw itch soft ware in both flash sources. For exam- ple: Figure 6-9.
6-17 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Note xmodem should not be used over the OA serial con sole. It should only be used over the USB serial console connection.
6-18 Switch Memory and Configuration Using Primary and Secondary Flash Image Options flash image in RAM. Do not reboot the switch . Instead, immediately dow nload another valid fla sh image to primary or secondary flash.
6-19 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Syntax: erase flash < primary | secon dary > For example, to erase the software ima ge in primary flash, do the following: 1. First verify that a usable flash image exists in secondary flash.
6-20 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Image does not exist Operation aborted. Interaction of Primary and Secondar y Flash Images with the Current Configuration.
6-21 Switch Memory and Configuration Using Primary and Secondary Flash Image Options T able 6-2. Comparing the Boot and Rel oad Commands Setting the Default Flash Y ou can specify the default flash to bo ot from on the n ext boot by entering t he boot set-default fl ash command.
6-22 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Booting from the Default Flash (Primary or Secondary) The boot command boots the switch from the flash image that y.
6-23 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Figure 6-15. Exampl e of Boot Command with Secondary Flash Op tion In the above example, typi ng either a y or n at the second prompt initiate s the reboot operation.
6-24 Switch Memory and Configuration Using Primary and Secondary Flash Image Options Figure 6-16. Using Reload with Redundant M ana gement and Pending Con figuration Changes Scheduled Reload. Ad ditional parameters in t he reload command allow for a scheduled reboot of t h e switch via the CLI.
6-25 Switch Memory and Configuration Multiple Configuration Files Multiple Configuration Files This method of operation mean s that you cannot preserve different start up- config files across a re boot wi thout using remote storage.
6-26 Switch Memory and Configuration Multiple Configuration Files ■ T ransitions fro m one software rele ase to anothe r can be performed whil e maintaining a separate con figuration for the dif ferent software re lease versions.
6-27 Switch Memory and Configuration Multiple Configuration Files 2. Use the CLI to make configura tion ch anges in the running-config file, and then execute write mem . The result is that the startup-config fi le used to reboot the sw itch is modifi ed by the acti ons in step 2.
6-28 Switch Memory and Configuration Multiple Configuration Files ■ Saves a copy of the existing startup-co nfig f ile in memory slot 2 with the filename wo rkingConfig . ■ Assigns the workingConfig file as the active configur ation and the default configuratio n for all subsequent reboo ts using either primary or second- ary flash.
6-29 Switch Memory and Configuration Multiple Configuration Files Listing and Displaying Startup-Config Files V iewing the Startup-Config File Status with Multiple Configuration Enabled Rebooting th e switch autom atically ena bles the mult iple configur ation fea- ture.
6-30 Switch Memory and Configuration Multiple Configuration Files Displaying the Content of A Specific Startup-Config File W it h Multiple Configu ration enabled , th e switch can have up to three startup- config files.
6-31 Switch Memory and Configuration Multiple Configuration Files For example, suppose: ■ Software release “A” is stored in prim ary flash and a later software rele ase is stored in secondary flash.
6-32 Switch Memory and Configuration Multiple Configuration Files ProCurve(config)# startup-default pri config minconfig ProCurve(config) # startup-default sec config newconfig.
6-33 Switch Memory and Configuration Multiple Configuration Files Renaming an Existing Startup-Config File Creating a New Startup-Config File The switch allows up to three startup-conf ig files. Y ou can create a new startup-co nfig file if th ere is an empty memo ry slot or if yo u want to replace one startup- config file with ano ther .
6-34 Switch Memory and Configuration Multiple Configuration Files For example, suppose bo th primary and secondary flash memo ry contain software release “A” and use a star tup-config file n amed config1 : Figure 6-20.
6-35 Switch Memory and Configuration Multiple Configuration Files If you wanted to experiment with co nfiguration changes to the software version in secondary flash, yo u could create and assign a separate startup- config file for this purpo se. Figure 6-21.
6-36 Switch Memory and Configuration Multiple Configuration Files Figure 6-22 illustrates using erase config < filename > to remove a startup-config file.
6-37 Switch Memory and Configuration Multiple Configuration Files W ith the same memory configuration as is sh own in the bottom portion of figure 6-22, executing erase startup-config boots the switch from primary flash, resulting in a new file nam ed minconfig in t he same memory slot.
6-38 Switch Memory and Configuration Multiple Configuration Files TFTP: Copying a Configurati on File to a Remote Host For example, the followin g command copies a startup-config fil e named test- 01 from the switch to a (UNIX) TFTP server at I P address 10.
6-39 Switch Memory and Configuration Multiple Configuration Files TFTP: Copying a Configuration File from a Remote Host For example, the followin g command copies a startup-config fil e named test- 01.txt from a (UNIX) TFTP server at IP address 10.10.
6-40 Switch Memory and Configuration Multiple Configuration Files Xmodem: Copying a Configuration File to a Serially Connected Host Xmodem: Copying a Configuration from a Serially Connected Host Syntax: copy config < filena me > xmodem < pc | unix > [o obm] This is an addition to the copy < config > xmodem command options.
6-41 Switch Memory and Configuration Automatic Configuration Update with DHCP Option 66 Operating Notes for Multiple Configuration Files ■ SFTP/SCP: The configur ation files are available for sftp/scp transfer as /cfg/< filenam e > .
6-42 Switch Memory and Configuration Automatic Configuration Update with DHCP Option 66 Possible Scenarios for Upda ting the Configuration File The followin g table shows various network configurations and how Option 66 is handled.
6-43 Switch Memory and Configuration Automatic Configuration Update with DHCP Option 66 Global DHCP Parameters : Global parameters are processed only if received on the primary VLAN. Best Offer : The “Best Offer” is the best DHCP or BootP off er sent by the DHCP server in response to the DHCPREQUEST sent by the switch.
7-1 7 Interface Access and System Information Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7-2 Interface Access: Console/Serial Link, Web, and Inbound Telnet . 7-3 Menu: Modifying the Interface Access .
7-2 Interface Access and System Information Overview Overview This chapter describes how to: ■ View and modify the configuration for switc h interface access ■ Use the CLI kill command to terminat.
7-3 Interface Access and System Information Interface Access: Cons ole/Serial Link, W eb, and Inbound Telnet Interface Access: Console/Serial Link, W eb, and Inbound T elnet Interface Access Features In most cases, the default configuratio n is acceptable for standard operation.
7-4 Interface Access and System Information Interface Access: Console/Serial Link, Web, and Inbound Telnet Menu: Modifying the Interface Access The menu interface enables you to modify these parameters: ■ Inactivity T im eout ■ Inbound T elnet Enabled ■ W eb Agent Enabled T o Access the Interface Access Parameters: 1.
7-5 Interface Access and System Information Interface Access: Cons ole/Serial Link, W eb, and Inbound Telnet CLI: Modifying the Interface Access Interface Access Commands Use d in This Section Listing the Current Console/Serial Li nk Configuration. This com- mand lists the current interface access parameter settings.
7-6 Interface Access and System Information Interface Access: Console/Serial Link, Web, and Inbound Telnet Outbound T elnet to Another Device. Thi s feature operates indepen- dently of th e telnet-server status and e nables you to T elnet to another device that has an IP address.
7-7 Interface Access and System Information Interface Access: Cons ole/Serial Link, W eb, and Inbound Telnet Figure 7-3. Example of show teln et Command Displaying Reso lved IP Addresses Reconfigure W eb Browser Access. In the default co nfigurati on, web browser access is enabled.
7-8 Interface Access and System Information Interface Access: Console/Serial Link, Web, and Inbound Telnet T o di sable web bro wser access: ProCurve(config)# no web-management T o re-enable w eb browser access: ProCurve(config)# web-management Reconfigure the Console/Seri al Link Settings.
7-9 Interface Access and System Information Interface Access: Cons ole/Serial Link, W eb, and Inbound Telnet Note If you change the Baud Rate or Flow Control settings for the switch, you should make the corresp ond ing changes in your co nsole access de vice.
7-10 Interface Access and System Information Interface Access: Console/Serial Link, Web, and Inbound Telnet Y ou can also execute a se ries of co nsole commands and then save the configuration and boot the switch . For exam ple: Figure 7-5. Example of Execu ting a Series of Console Co mmands Configure the individua l parameters.
7-11 Interface Access and System Information Denying Interface Access by Termi nating Remote Management Sessions Denying Interface Access by T erminating Remote Management Sessions The switch supports up to five ma nagement sessions.
7-12 Interface Access and System Information System Information System Information System Information Feat ures Configuring system i nformation is optional, but recomm ended. System Name: Using a unique name helps you to identi fy individu al devices where you are using an SNMP network management tool such as ProCurve Manager .
7-13 Interface Access and System Information System Information Ti m e Z o n e : The number of minutes your time z o n e l o c a t i o n i s t o t h e We s t ( + ) or East (-) of Co ordinated Universal T ime (formerly GMT). Th e default 0 means no time zone is configured.
7-14 Interface Access and System Information System Information 2. Press [E] (for E dit). The cursor moves to the System Name field. 3. Refer to the on line help provided wi th this screen for furthe r information on configurat ion options for t hese features .
7-15 Interface Access and System Information System Information Listing the System Encl osure Informatio n. This command lists the sys- tem enclosure information. Syntax: show system enclosure This example shows the switch ’ s enclosure configuration.
7-16 Interface Access and System Information System Information Figure 7-10. System Information Listing After Execu ting the Preceding Co mmands The menu interface wi ll only display up to 47 characte rs although you can specify a name up to 255 characters in length.
7-17 Interface Access and System Information System Information Figure 7-11. Menu Screen Showing System Information The W eb Browser interface also allo ws you to enter a maximum of 255 characters. Y ou can view all the charac ters by using the cursor to scroll through the fie ld.
7-18 Interface Access and System Information System Information Syntax: mac-age-time < 10 - 1000000 > (seconds) Allows you to set the MAC address table’ s age-o ut interval . An address is aged out if the switch does not receive traffic from that MAC address for the age-out interval, measured in seconds.
7-19 Interface Access and System Information System Information W eb: Configuring System Parameters In the web browser interface, you can enter the following sy stem informat ion: ■ System Name ■ System Locati on ■ System Contact For access to the MAC Age Interval and the T ime parameters, use the menu interface or the CLI.
8-1 8 Configuring IP Addressing Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8-2 IP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
8-2 Configuring IP Addressing Overview Overview Y ou can configure IP addressing throug h all of the switch’ s interfaces. Y o u can also: ■ Easily edit a switch conf iguration fi le to allow downloadi ng the file to multiple switches withou t overwriting each switc h’ s unique gateway and VLAN 1 IP addressing.
8-3 Configuring IP Addressing IP Configuration use the men u interface o r the CLI to manually c onfigure the initial IP va lues. After you have network access to a device, you can use the web browser interface to m odify the initial I P configuration if needed.
8-4 Configuring IP Addressing IP Configuration For more on using the Switch Se tup screen, refer to the In stallation a nd Getting Started Guide you rec eived wi th the swi tch.
8-5 Configuring IP Addressing IP Configuration Menu: Configuring IP Addres s, Gateway , and T ime-T o- Live (TTL) Do one of the followin g: ■ T o manually enter an IP address, subnet mask, set the IP Config parameter to Manual and then manually enter the I P addres s and subnet ma sk values you want for the switch.
8-6 Configuring IP Addressing IP Configuration 3. If the switch needs to access a router , for exampl e, to reach off-subnet destinations, select the Default Ga teway field and enter the IP address of the gateway router . 4. If you ne ed to change the packet T im e-T o- Live (TTL) setting, select Default TTL and type in a value between 2 and 255.
8-7 Configuring IP Addressing IP Configuration (Y ou can al so use the show managemen t command to display the IP addressing and time server IP addressing config ured on the switch.
8-8 Configuring IP Addressing IP Configuration Note The default IP address setting for the DEF AUL T_VLAN is DHCP/Bootp . On additional VLANs you create, the default IP address setting is Disabled .
8-9 Configuring IP Addressing IP Configuration Figure 8-4. Example of Configu ring and Displaying a Mult inetted VLAN If you then wa nted to mu ltinet the default VLA N, you woul d do the fol lowing: Figure 8-5.
8-10 Configuring IP Addressing IP Configuration Removing or Replacin g IP Addresses in a Multinetted VLAN. To remove an IP address from a multinetted VLAN, use the no form of the IP address command shown on page 8-8.
8-11 Configuring IP Addressing IP Configuration 3. If you need further inform ation on using the web browser interface, click on [?] to access the we b-based help available for the switch.
8-12 Configuring IP Addressing IP Configuration DHCP/Bootp Operation Overview . DHCP/Bootp is used to provide confi guration data from a DHCP or Bootp server to the swit ch. This data can be the IP ad dress, subnet mask, default gateway , T imep Server address, and TFTP server add ress.
8-13 Configuring IP Addressing IP Configuration DHCP Operation. A significant differenc e between a DHCP configuration and a Bootp configurat ion is that an IP address assi gnment from a DHCP server is automatic. Depe nding on how t he DHCP serv er is configu red, the switch may receive an IP address that is temporari ly leased .
8-14 Configuring IP Addressing IP Configuration gw=10.66.77.1: lg=10.22.33.44: T144=”switch.cfg”: vm=rfc1048 where: Note The above Bootp table entry is a sample that will work for the switch when the appropriate addresses and file names are used.
8-15 Configuring IP Addressing IP Configuration Note Designating a primary VLAN other than the default VLAN affe cts the switch’ s use of informati on received via DHCP/Boo tp. For more on this topi c, refer to the chapter describing VLANs in the Advanced T raffic Management Guide for your switch.
8-16 Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addres sing Across Configuration File Downloads IP Preserve: Retaining VLAN-1 IP Addressing Across Configuration File Downloads For the .
8-17 Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addres sing Across Configuration File Downloads Enabling IP Preserve T o set up IP Pres erve, enter the ip pr eserve statement at the end of a configu- ration file. (Not e that you d o not ex ecute IP Preserve by entering a command from the CLI).
8-18 Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addres sing Across Configuration File Downloads Figure 8-8. Configuration Fil e in TFTP Server , with DHCP/Bootp Specified a s the IP Addressing Source If you apply this configuration file to fi gure 8- 7, switches 1 - 3 will still retai n their manually assigned IP addressing .
8-19 Configuring IP Addressing IP Preserve: Retaining VLAN-1 IP Addres sing Across Configuration File Downloads Figure 8-9. Configuration Fil e in TFTP Server , with Dedicated I P Addressing Instead o.
9-1 9 T ime Protocols Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-2 TimeP Time Synchronization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9-2 SNTP Time Synchronization .
9-2 Time Protocols Overview Overview This chapter describes: ■ SNTP T ime P rotocol Operation ■ T imep Ti me Protocol Operation Using time synchron ization ensures a u niform time among interoperating devices. This helps you to manage a nd troubleshoot switch operation by attaching meaningful time data to event and error messages.
9-3 Time Protocols Selecting a Time Synchronization Protocol or Turning Off Time Protocol Operation Note T o use Broadca st mode, the switc h and th e SNTP server must be in the same subnet. ■ Unicast Mode: The switch requests a time update from the config- ured SNTP se rver .
9-4 Time Protocols SNTP: Viewing, Selecting, and Configuring ■ In the Syste m Informati on screen of t he Menu in terface, set the Ti m e Synch Method para meter to None , then press [Enter], then [S] (for S ave ). ■ In the Global config le vel of the CLI, execute no timesync .
9-5 Time Protocols SNTP: Viewing, Selecting, and Configuring T able 9-1. SNTP Para meters Menu: V iewing and Configuring SNTP T o View , Enable, and Modify SNTP T ime Protocol: 1.
9-6 Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-1. The System Information Screen (Default V alues) 2. Press [E] (for E dit ). The cursor moves to the System Name field. 3. Use [v] to move the cursor to the T ime Sync Method fiel d.
9-7 Time Protocols SNTP: Viewing, Selecting, and Configuring Note: This step replaces any pre v iously configured server IP address. If you will be using b ackup SNTP servers (requires use of the CLI), then refer to “SNTP Uni cast T im e Polling with Multiple SNTP Servers” on page 9-25.
9-8 Time Protocols SNTP: Viewing, Selecting, and Configuring CLI: V iewing and Configuring SNTP CLI Commands Described in this Section This section describes how to use the CLI to view , enable, and configure SNTP parameters.
9-9 Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-4. Example of SNTP Configuration Wh en SNTP Is the Selected T ime Sync hronization Method In the factory-d efault configu ration (where Ti meP is the selected time synchronization method ), show sntp still lists the SN TP configuration eve n though it is not currently in use.
9-10 Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-6. Example of Display Showin g IP A ddressing for All Configured T ime Servers and VLANs Configuring (Enabling or Disabling) the SNTP Mode Enabling the SNTP mode means to configur e it for ei ther broadcast or unicast mode.
9-11 Time Protocols SNTP: Viewing, Selecting, and Configuring Enabling SNTP in Broadcast Mode. Because the switch provides an SNTP polling interval (default: 720 seconds ), you need only these two commands for minimal SNTP broadcast configurati on: Syntax: timesync sntp Selects SNTP as the time synchronizat ion method .
9-12 Time Protocols SNTP: Viewing, Selecting, and Configuring second or third server , you must u se the CLI. F or more on SNTP operation with multiple serv ers, refer to “SNTP Unicast T ime Polling with Mu ltiple SNTP Servers” on page 9-25. Syntax: timesync sntp Selects SNTP as the time synchronizat ion method.
9-13 Time Protocols SNTP: Viewing, Selecting, and Configuring . Figure 9-8. Example of Configurin g SNTP for Unicast Operation If the SNTP server you specify uses SNTP version 4 or la ter , use the sntp server command to specify the correct versio n number .
9-14 Time Protocols SNTP: Viewing, Selecting, and Configuring Changing the SNTP Poll Interval. For example, to change the po ll interval to 300 seconds: ProCurve(config)# sntp poll-interval 300 Changing the Priority . Y ou can choose the ord er in which config ured servers are polled for getting the ti me by setting the server priori ty .
9-15 Time Protocols SNTP: Viewing, Selecting, and Configuring Figure 9-10. Example of SNTP with T i me Synchronization Disabled Disabling the SNTP Mode. If you want t o prevent SNTP from bei ng used even if selected by timesync (or the Menu interface’ s T ime Sync Met hod param- eter), configure the SN TP mode as disabled.
9-16 Time Protocols TimeP: Viewing, Selecting, and Configuring T imeP: V iewing, Selecting, and Configuring T able 9-2. Timep Parameters T imeP Feature Default Menu CLI We b view the T imep time synchronization configuration n/a page 9-17 page 9-19 — select T imep as the time synchronization method TIMEP page 9-15 pages 9-21 ff.
9-17 Time Protocols TimeP: Viewing, Selecting, and Configuring Menu: V iewing and Configuring T imeP T o View , Enable, and Modify t he T imeP Protocol: 1. From the Main Menu, select: 2. Switch Configuration ... 1. System Information Figure 9-12. The System Information Screen (Default V alues) Press [E] (for Edit ).
9-18 Time Protocols TimeP: Viewing, Selecting, and Configuring ii. Enter the IP address of the T ime P server you want the switch to use for time synchronization. Note: This step replaces any previously configured T imeP server IP address. iii. Press [>] to move the cursor to the Pol l Interval field, then go to step 6.
9-19 Time Protocols TimeP: Viewing, Selecting, and Configuring V iewing the Current T imeP Configuration Using different show commands, you can display either the full T imeP config- uration or a combined listing of all T imeP , SNTP , and VLAN IP addresses configured on the switch.
9-20 Time Protocols TimeP: Viewing, Selecting, and Configuring Figure 9-15. Example of Display Showin g IP A ddressing for All Configured T i me Servers and VLANs Configuring (Enabling or Disabling) the T imeP Mode Enabling the T imeP mode means to configure it f or either broadcast or un icast mode.
9-21 Time Protocols TimeP: Viewing, Selecting, and Configuring Enabling T imeP in DHCP Mode. Bec ause the switch provides a T imeP polling interval (defaul t: 720 minutes) , you need only these two commands for a minimal T imeP DHCP conf iguration: For example, suppose: ■ T ime synchronization i s configur ed for SNTP .
9-22 Time Protocols TimeP: Viewing, Selecting, and Configuring Enabling T imep in Manual Mode. Like DHCP mode, configuring TimeP for Manual mode enables T i meP . However , for manual operation, you must also specify the I P address of the T imeP ser ver .
9-23 Time Protocols TimeP: Viewing, Selecting, and Configuring Figure 9-17. Example of Configuring T imep for Manual Operation Changing the T imeP Poll Interval. This command lets you specify how long the switch waits between time po lling intervals. The default is 720 minutes and the range is 1 to 9999 minutes.
9-24 Time Protocols TimeP: Viewing, Selecting, and Configuring Figure 9-18. Example of T imeP with Time Synchronization Disabled Disabling the T imeP Mode.
9-25 Time Protocols SNTP Unicast Time Polling with Multiple SNTP Servers SNTP Unicast T ime Polling with Multiple SNTP Servers When running SNTP unicast time polli ng as the time synchronizat ion meth.
9-26 Time Protocols SNTP Messages in the Event Log Adding and Deleting SNTP Server Addresses Adding Addresses. As mentioned earlier , yo u can conf igure one SNTP server address using either the Menu interface or the CL I. T o configure a second and third address, you must us e the CLI.
10-1 10 Port Status and Configuration Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-3 Viewing Port Status and Configuring Port Parameters . . . . . . . . . . 10-3 Menu: Port Configuratio n .
10-2 Port Status and Configuration Contents Configuring UDLD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-32 Enabling UDLD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10-33 Changing the Keepalive Interval .
10-3 Port Status and Configuration Overview Overview This chapter describes how to view th e current port conf iguration and how to configure ports t o non-d efault settings, including ■ Enable/Disa.
10-4 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters T able 10-1. Status and Parameters for Each Port T ype Status or Parameter Description Enabled Ye s (default): The port is ready for a network conn ection. No: The port will not operate, even if properly connected in a network.
10-5 Port Status and Configuration Viewing Port Status and Configuring Port Parameters — Continued From Previous Page — Gigabit Fiber -Optic Ports (Gigabit-SX, Gigabit-LX, and Gigabit-LH): • 100.
10-6 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Menu: Port Configuration From the menu interface, you can view and change the port configuration. Using the Menu T o V iew Port Con figuration. The menu interf ace dis- plays the configuratio n for ports and (if configured ) any trunk groups.
10-7 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Using the Menu T o Configure Ports. Y ou can configure and view the port settings by using the menu. Note The menu interface uses the same sc re en for configuring both individual ports and port trunk groups.
10-8 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters CLI: Vi ewing Port Status and Configuring Port Parameters From the CLI, you can conf igure and view all port pa rameter settings and view all port statu s indicators.
10-9 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Figure 10-3. Example of Show Interfac es Brief Command Listing Use the show interfaces config command t o view the po rt settings, as shown below .
10-10 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters For example: ProCurve# show interfaces display Figure 10-5. Example of show interfa ces display Command wi th D.
10-11 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Columns supported are: Syntax: show interfaces cu stom [port-list] column-list Select the information that yo u want to display .
10-12 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Figure 10-6. Example of the Custo m show interfaces Comma nd Y ou can specify the column width by en tering a colon after th e column name, then indi cating th e number of characters to display .
10-13 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Note on Using Pattern Matching with the “Show Interfaces Custom” Command If you have included a pa tt ern ma.
10-14 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Operating Notes: ■ For each port on the switch, the co mmand provides a re al-time display of the rate at whi.
10-15 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Operating Notes: ■ The following inform ation is displa yed for each installe d transceiver: • Port number on which transceiver is installed. • T ype of transceiver .
10-16 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Note that in the ab ove syntax you can sub stitute an “ int ” for “ interface ”; that is: int < port-list > .
10-17 Port Status and Configuration Viewing Port Status and Configuring Port Parameters Enabling or Disabling Flow Control Note Flow control is enabl ed by default on t h e downlink po rts. Y ou must enable flow control on the upl ink ports in a given lin k.
10-18 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Figure 10-11. Exa mple Continued from Figure 10- 10 Figure 10-12. Exa mple Continued from Figure 10- 11 Configuring a Broadcas t Limit on the Switch Broadcast-Limi t on switches co ve r e d in t hi s g ui de is confi gured on a per -port basis.
10-19 Port Status and Configuration Viewing Port Status and Configuring Port Parameters ProCurve(config)#int B1 ProCurve(int B1)# broadcast-limit 1 Broadcast-Limit.
10-20 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters ■ 100/1000-T xl modu le ports ■ 10/100/1000-T xl module ports Using the above ports: ■ If you connect a c.
10-21 Port Status and Configuration Viewing Port Status and Configuring Port Parameters The Auto-MD IX feat ures apply o nly to co pper port swi tches using twisted-pair copper Ethernet cables.
10-22 Port Status and Configuration Viewing Port Status and Configur ing Port Parameters Figure 10-13. Example of Displayi ng the Current MDI Config uration Figure 10-14. Example of Displaying th e Current MDI Operating Mode W eb: Viewing Port Status and Confi guring Port Parameters In the web browser interface: 1.
10-23 Port Status and Configuration Using Friendly (Optional) Port Names Using Friendly (Optional) Port Names This feature enables yo u to assign alphanume ric port names of your ch oosing to augment au tomatically assigne d numeric por t names.
10-24 Port Status and Configuration Using Friendly (Optional) Port Names ■ T o retain friendly por t names across reboot s, you must save the current running-con figuration to the sta rtup-config fi le after ente ring the friendly port names. (In the CLI, use the write memory command.
10-25 Port Status and Configuration Using Friendly (Optional) Port Names Configuring the Sa me Name for Multiple Ports. Suppose that you want to use ports A5 through A8 as a trunked l ink to a server used by a drafting group. In this case you might configure ports A5 through A8 with the name “Draft-Server:T runk”.
10-26 Port Status and Configuration Using Friendly (Optional) Port Names Syntax: show name [ port-list ] Lists the friendly port name with its corresponding port number and port type. The show name command without a port list shows this data for all ports on the switch.
10-27 Port Status and Configuration Using Friendly (Optional) Port Names Syntax: show interfa ce < port-numbe r > Includes the friendly port name wi th the port’ s traffic statistics listing. For example, if you configure port A1 with the name “O’Connor_10.
10-28 Port Status and Configuration Using Friendly (Optional) Port Names For example, if you co nfigure port A1 with a friendly po rt name: Figure 10-20. Example Listing of the Startup-Config File with a Friendly Port Name Co nfigured (and Saved) This command seque nce saves the friendly port name for port A1 in the startup- config file.
10-29 Port Status and Configuration Using Friendly (Optional) Port Names Configuring T ransceivers and Modules That Haven’t Been Inserted T ransceivers Previously , a port ha d to be va lid and verif ied for the swit ch to allow it to be configured.
10-30 Port Status and Configuration Using Friendly (Optional) Port Names For example: ProCurve(config)# no module 3 Note This does not change how hot-swap works.
10-31 Port Status and Configuration Uni-Directional Link Detection (UDLD) Uni-Directional Link Detection (UDLD) Uni-directional Lin k Detection (UDLD) monit ors a link between two ProCurve switches and blocks the ports on both en ds of the link if the link fails at any point between the two devices.
10-32 Port Status and Configuration Uni-Directional Link Detection (UDLD) connected ports. UDLD-enabled port s; however , will prevent traffic from being sent across a bad link by blocking the ports in the event th at either the individual transmitter or receiver for that connection fails.
10-33 Port Status and Configuration Uni-Directional Link Detection (UDLD) Enabling UDLD UDLD is enabled on a per port basis. For example, to enab le UDLD on por t a1, enter: T o enable the feature on a trunk group, enter the appropri ate port range.
10-34 Port Status and Configuration Uni-Directional Link Detection (UDLD) Changing the Keepalive Interval By default, ports en abled for UDLD send a link health-check packe t once every 5 seconds. Y ou can change th e i nterval to a value from 10 – 100 dec iseconds, where 10 is 1 second, 11 is 1.
10-35 Port Status and Configuration Uni-Directional Link Detection (UDLD) ■ T o re-assig n a VLAN ID, re-e nter the command with the new VLAN ID number .
10-36 Port Status and Configuration Uni-Directional Link Detection (UDLD) T o di splay detailed U DLD informatio n for specific ports, enter th e show link- keepalive statistics comma nd.
10-37 Port Status and Configuration Uni-Directional Link Detection (UDLD) Configuration W arnings and Event Log Messages W arning Messages. The following tab le shows the warning messages that may be issued and their possible causes, when UDLD is c onfigured for tagged ports.
11-1 11 Port T runking Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11-3 Port Trunk Features an d Operation . . . . . . . . . . . . . . . . . . . . . . . . . . . 11-5 Trunk Configuration Methods .
11-2 Port Trunking Overview Overview This chapter describes creating and modifying port trunk groups. This includes non-protocol trunks an d LACP (802.
11-3 Port Trunking Overview Port Connecti ons and Config uration: All port trunk links must be po int- to-point connections between a sw itch and anothe r switch, router , server , or workstation config ured for port trunking. No intervening, non-trun king devices are allowed.
11-4 Port Trunking Port Trunk Features and Operation Port T runk Features and Operation T he s w i t c he s covered in this guide of f e r th e s e o p ti o n s f o r p o r t t ru n k i n g : ■ LACP: IEEE 802.3ad—page 11-18 ■ T runk: Non- Protocol—page 11-26 Up to 60 trunk groups are su pported on th e s w i t c he s covered in this guide.
11-5 Port Trunking Trunk Configuration Methods ProCurve(config) int c1-c4 lacp active Note that the preceding ex ample works if the ports are not already operating in a trunk. T o change the LACP option on ports already operati ng as a trunk, you must first remo ve them from the trun k.
11-6 Port Trunking Trunk Configuration Methods T able 11-2. T runk Conf iguration Protocols Protocol T runking Options LACP (802.3ad) Provides dynamic and static LACP trunking options. • Dynamic LACP — Use the switch-negotiated dy namic LACP trunk when: – The port on the other end of the trunk link is configured for Active or Passive LACP .
11-7 Port Trunking Trunk Configuration Methods T able 11-3. General Operating Ru les for Port T ru nks Media: For proper trunk operation, all ports on both ends of a trunk group must have th e same media type and mode (speed and duplex).
11-8 Port Trunking Trunk Configuration Methods Spanning T ree: 802.1D (STP) and 802.1w (RSTP) Spanning T ree operate as a global setting on the switch (with one instance of Spanning T ree per switch). 802.1s (MSTP) Spanning T r ee operates on a per -instance basis (with multiple instances allowed per switch).
11-9 Port Trunking Menu: Viewing an d Configuring a Static Trunk Group Menu: V iewing and Configuring a Static T runk Group Important Configure port trunki ng before you connect the trunked links to anot her switch, routing switch, or server . Otherwise, a broad cast storm could occu r .
11-10 Port Trunking Menu: Viewing an d Configuring a Static Trunk Group • For proper tr unk operation, all ports i n a trunk must have the same media type and mode (such as 10/100TX set to 100FDx, or 100FX set to 100FDx). The flow control settings must also be the same for all ports in a given trunk.
11-11 Port Trunking CLI: Viewing and Configuring Port Trunk Groups 8. Connect the trunked ports on the switch to the correspondi ng ports on the opposite device. If you previousl y disabled any of the trunked ports on the switch, enab le them now . (R efer to “V iewing Port Status and Configuring Port Parameters” on page 10-3.
11-12 Port Trunking CLI: Viewing and Configurin g Port Trunk Groups Using a port list specifies, for sw itch ports in a static trunk group , only the ports you want to vi ew .
11-13 Port Trunking CLI: Viewing and Configuring Port Trunk Groups Listing Static LACP and Dynamic LACP T runk Data. In the followin g example, ports A1 and A2 have been previously con figured for a static LACP tr unk. (For more on the “Active” parameter , see table 11-5 on page 11-21.
11-14 Port Trunking CLI: Viewing and Configurin g Port Trunk Groups Figure 11-9. Example of a Dynamic LACP T runk w ith One Standby Link Using the CLI T o Configure a Static or Dynamic T runk Group Important Configure port trun king before y ou connect the trunked links between switches.
11-15 Port Trunking CLI: Viewing and Configuring Port Trunk Groups Configuring a Static T runk or Static LACP T runk Group. This example uses port s C4 - C6 to create a non-protocol static trunk gro up with the group n ame of Tr k 2 . ProCurve(config)# trunk c4-c6 trk2 trunk Removing Ports from a Stati c T runk Group.
11-16 Port Trunking CLI: Viewing and Configurin g Port Trunk Groups Figure 11-10. Example of Criteria for Automat ically Forming a Dynamic LACP T runk This example uses ports C4 and C5 to enable a dynamic LACP trunk group. ProCurve(config)# interface c4-c5 lacp active Removing Ports from an Dynamic LACP T runk Group.
11-17 Port Trunking Web: Viewing Existing Port Trunk Groups Caution Unless spanning tree is running on your netw ork, removing a port from a trunk can result i n a loop .
11-18 Port Trunking Trunk Group Operation Using LACP T runk Group Operation Using LACP The switch can automat ically configur e a dynamic LACP trunk gr oup or you can manually configure a static LACP trunk group. Note LACP requires full -duplex (FDx) lin ks of the same media ty pe (10/100Base -T , 100FX, etc.
11-19 Port Trunking Trunk Group Operation Using LACP T able 11-4. LACP T runk T yp es LACP Port T runk Configuration Operation Dynamic LACP This option automatically establishes an 802.
11-20 Port Trunking Trunk Group Operation Using LACP Static LACP Provides a manually configured, st atic LACP trunk to acco mmodate these conditions: • The port on the other end of the trunk link is configured for a static LACP trunk. • Y ou want to configure non-default spanning tree or IGMP parameters on an LACP trunk group.
11-21 Port Trunking Trunk Group Operation Using LACP Default Port Operation In the default configuration, LACP is di sabled for al l ports. If LACP is not configured as Active on at least one end of a link, then the p ort does not t ry to detect a trunk configur ation and operates as a standard, untrunked port.
11-22 Port Trunking Trunk Group Operation Using LACP LACP Notes and Restrictions 802.1X (Port-Based Access Contro l) Configu red on a Port. To m a i n - tain security , LACP is n ot allowed o n ports configured for 802.
11-23 Port Trunking Trunk Group Operation Using LACP ProCurve(config)# int a17 lacp passive Error configuring port A17: LACP and port security cannot be run together. ProCurve(config)# T o restore LACP to the port, you must remove port security and re-enable LACP active or pa ssive.
11-24 Port Trunking Trunk Group Operation Using LACP Figure 11-11. Block ed Ports with LACP ■ If there are ports that you do not want on the default VLAN, ensure that they cannot become dynamic LACP trunk members. Otherwise a traf fic loop can unexpectedly occur .
11-25 Port Trunking Trunk Group Operation Using LACP Spanning T ree and IGMP . If Spanning T ree and/or IG MP is enabl ed in the switch, a dynamic LACP trunk op erates only with the default setti ngs for these features and does not appear in th e port listings for these features.
11-26 Port Trunking Trunk Group Operation Using the “Trunk” Option T runk Group Operation Using the “T runk” Option This method creat es a trunk grou p that operat es independently of speci fic trunking protocol s and does not use a protocol ex change with the device on the other end of the trunk.
11-27 Port Trunking How the Switch Lists Trunk Data How the Switch Lists T runk Data Static T runk Grou p: Appears in the menu interface and t he output from the CLI show trunk and show interfa ces commands. Dynamic LACP T runk Group: Appears in the output f rom the CLI show lacp command.
11-28 Port Trunking Outbound Traffic Distribution Across Trunked Links The load-balancing is done on a per co mmunication basis. Otherwise, traffic is transmitted across the same path as show n in figure 11-13.
11-29 Port Trunking Outbound Traffic Distribut ion Across Trunked Links T able 11-6. Example of Link Assignments in a T runk Group (SA/DA Distribution) Because the am ount of traffi c coming from or g.
12-1 12 Port T raffic Controls Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12-2 Jumbo Frames . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
12-2 Port Traffic Controls Overview Overview This chapter includes: ■ Jumbo Frames: Enables ports operating at 1 Gbps or 10 Gb ps speeds to accept inbound frames of up to 92 20 bytes w hen configur ed for jumbo traffic.
12-3 Port Traffic Controls Jumbo Frames Jumbo VLAN: A VLAN configured to allow inb ound jumbo traffic. All ports belonging t o a jumbo and operating at 1 Gbps or higher can receive jumbo frames from external devices.
12-4 Port Traffic Controls Jumbo Frames Configuring Jumbo Frame Operation Overview 1. Determine the VLAN memb ership of the ports or trun ks through which you want the switch to accept inboun d jumbo traffic. For operation w ith GVRP enable d, refer to the GVRP top ic under “Operating Rules”, abo ve.
12-5 Port Traffic Controls Jumbo Frames V iewing the Current Jumbo Configuration Figure 12-1. Example Listing of St atic VLANs T o Show Jumbo Status Per VLAN Syntax: show vlans Lists the static VLANs configured on the swit ch and includes a Jumbo column to indica te whic h VLANs are configured to support inbound jumbo traffic.
12-6 Port Traffic Controls Jumbo Frames Figure 12-2. Example of Listing the VLAN Memberships for a Range of Ports Figure 12-3. Example of Listing the Port Membership and Jumb o Status for a VLAN Syntax: show vlans < vid > This command shows port membership and jumbo configuration for the specified < vid > .
12-7 Port Traffic Controls Jumbo Frames Enabling or Disabling Jumbo T raffic on a VLAN Configuring a Maximum Frame Size Y ou can globally set a maximum fram e size for Jumbo frames that will sup port values from 1518 bytes to 9216 bytes for untagged frame s.
12-8 Port Traffic Controls Jumbo Frames Jumbo IP MTU. The IP MTU for Jumbos is suppor ted with the following propr ietary MIB object: hpSwitchIpMTU OBJECT -TYPE This is the value o f the global Jumbos IP MTU (o r L3 MTU) supporte d by the switch.
12-9 Port Traffic Controls Jumbo Frames Operating Notes for Ju mbo T raffic-Handling ■ ProCurve does not reco mmend configur ing a voice VLAN to accept jumbo frames. V oice VLAN frames are typically small, and allowi ng a voice VLAN to accept jumbo frame traffic can de grade the voice transmission perfor - mance.
12-10 Port Traffic Controls Jumbo Frames If there are security concerns with grouping the ports as shown for V LAN 300, you can either use source-port filtering to block unwanted traffic paths or create separate jumbo VLANs, one for ports 6 and 7, and another for ports 12 and 13.
12-11 Port Traffic Controls Jumbo Frames T roubleshooting A VLAN is configured to allow jum bo frames, but one or more ports drops all inbound j umbo frames. The port may not be operating at 1 giga- bit or higher . Regardless of a port’ s config uratio n, if it is actually operating at a speed lower than 1 gigabit , it drops inbound jumbo frames.
13-1 13 Configuring for Network Management Applications Contents Using SNMP Tools To Manage the Switch . . . . . . . . . . . . . . . . . . . . . . 13-3 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
13-2 Configuring for Network Manageme nt Applications Contents LLDP (Link-Layer Discovery Protocol) . . . . . . . . . . . . . . . . . . . . . . . 13-36 Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
13-3 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Using SNMP T ools T o Manage the Switch Overview Y ou can manage the switch via SN MP from a network management statio n running an applic ation such as ProCurve Manager (PCM) or ProCurve Ma nager Plus (PCM+).
13-4 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch VLAN feature, refer to th e section titled “The Se cure Management VLAN” in the “Static Virtual LANs (VLAN s)” chapter of th e Advanced T raffic Management Guide f or your swit ch.
13-5 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP Management Features SNMP management features on the switch include: ■ SNMP version 1, version 2c, or v.
13-6 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch If you want to restrict acce ss to one or more specifi c nodes, you can use the switch’ s IP Auth orized Mana ger feature. (R efer to the Access Security Guide for your sw itch.
13-7 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch SNMP V ersion 3 Commands SNMP version 3 (SNMPv3) adds so me new commands t o the CLI for configuring SNMPv3 functi ons. T o enable SMNPv3 operation on the switch, use the snmpv3 enable command.
13-8 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Enabling SNMPv3 The snmpv3 enable command allows the switch to: ■ Receive SNMPv3 messages. ■ Configure initial u sers. ■ Restrict non-version 3 message s to “read only” (optional).
13-9 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch 1. Configure users in the User T able with the snmpv3 user command. T o view the list of co nfigured us ers, enter the show snmpv3 user command (see “Adding Users” on page 13-9).
13-10 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch SNMPv3 User Commands Listing Users. T o displa y the management stat ions configured to acc ess the switch with SNMPv3 and view the auth entication and privacy protocols that each station uses, enter the show snmpv3 user command.
13-11 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Assigning Users to Groups. Then you must set the group access level for the user by assigning the user to a group.
13-12 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Group Access Levels The switch suppor ts eight predefined group access levels. There are four levels for use with version 3 users and four are use d for access by version 2c or version 1 management applications.
13-13 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Figure 13-4 shows the assigning of th e Operator community on MgrStation1 to the CommunityOperatorReadW rite group. Any other Oper ator only has an access level of CommunityOperatorReadOnly Figure 13-4.
13-14 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch SNMP Community Features Use SNMP communities to restrict acce ss to the switch by SNMP management stations by adding, edit ing, or deleti ng SNMP communiti es.
13-15 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Figure 13-5. The SNMP Communiti es Screen (Default Values) 2.
13-16 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch CLI: V iewing and Configuring SNMP Community Names Listing Community Names and V alues.
13-17 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Configuring Community Na mes and V alues. The snmp-server command enables you to add SNMP communities wi th either default or spec ific access attributes, and to delete specific communities.
13-18 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch SNMP Notifications T he s w i t c h e s covered in this guide s u p p o r t : ■ SNMP version 1 or SNMP ve.
13-19 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch ■ Advance T raffic Management Guide: • Loop protection • Spanning T ree (STP , RSTP , MSTP) ■ Access.
13-20 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch SNMPv1 and SNMPv2c T raps T he s w i t c h e s covered in this guide s u p p o r t t h e f o l l o w i ng f.
13-21 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch T able 13-1. Security Levels for Event Log Messages Se nt as T raps Syntax: snmp-server host < ipv4-addr .
13-22 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch For example, to configur e a trap receiver in a co mmunity named "red-team" with an IP address of 10.28.227.130 to receive only "critical" event log messages, you can enter the following comma nd: ProCurve(config)# snmp-server host 10.
13-23 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Note The retries and timeout values are not u sed to sen d trap requ ests. T o verify the configuration of SNMPv2c informs, enter the show snmp-server command: Figure 13-8.
13-24 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Configuring SNMPv3 Notifications The SNMPv3 not ificatio n process allows messa ges that are passed via SNMP between the switch and a network mana gement station to b e authen ticated and encrypted.
13-25 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch 5. Configure the target address of the SNMPv3 managem ent station to whi ch SNMPv3 informs and trap s are sent by entering the snmpv3 targetaddress command.
13-26 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch 6. Create a configuratio n re cord for the tar get address with the snmpv3 params command.
13-27 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch An example of how to configure SNMPv3 notification i s shown here: Figure 13-9.
13-28 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch T o ena ble or disabl e notification /traps for network security failures and othe r security events, enter the snmp-server enable traps command.
13-29 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Figure 13-10. Display of Config u red Network Security Notifica tions Enabling Link-Change T raps By default a switch is enabled to send a trap when the link state on a port changes from u p to down (lin kDown) or dow n to up (linkUp ).
13-30 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Configuring the Source IP Addr ess for SNMP Notifications The switch uses a n interface IP address as the source IP address in IP headers when sending SNMP notificatio ns (traps and informs) or responses to SNMP requests.
13-31 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch T o configure the switc h to use a specif ied source IP address in generat ed trap PDUs, enter the snmp-server trap-sou rce command.
13-32 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Figure 13-11. Display of S ource IP Address Configuration Displaying SNMP Notification Configuration Use th.
13-33 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch In the follow in g example, the show snmp-server command output shows th at the switch has been configured to send SNMP traps and notifi cations to management stations that belong to th e “public”, “red- team ”, and “blue-te am” communities.
13-34 Configuring for Network Manageme nt Applications Using SNMP Tools To Manage the Switch Configuring Listening Mode For switches that have a se parate out-of-band management port, you can specify whether a configured SNMP serv er listens for SNMP queries over the out-of-ban d management in terf ace, the data interface, or both.
13-35 Configuring for Network Management Applications Using SNMP Tools To Manage the Switch Advanced Management: RMON The switch supports RMON (Rem ote Monitoring) on all connected network segments. This allows for tro ubleshooting an d optimizing yo ur network.
13-36 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) LLDP (Link-Layer Discovery Protocol) T o standardize device discovery on al l ProCurve switches, L LDP will be implemente d while offering limited read -only support for CDP a s documented in this manual.
13-37 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) LLDP-MED (LLDP Media Endpoint Discovery): Provides an extension to LLDP and is designed to support V oIP de ployments. Note LLDP-MED is an extension for LLDP , an d the sw itch requires that LLDP be enabled as a prerequisite to LLDP-MED operation.
13-38 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) LLDP Neighbor: An LLDP device that is either directly c onnected to another LLDP device or co nn ected to that device by another , non-LLDP Layer 2 device (such as a hub) Note that an 802.
13-39 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) TL V (T ype-Length-V alue): A data unit t hat includes a data type field, a data unit length fiel d (in bytes), an d a field cont aining the actual data the unit is designed to carry (as an alphanumeric string, a bitmap, or a subgr oup of information ).
13-40 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Configuration Options Enable or Disable LLDP on the Switch. In the default configuratio n, LLDP is glob ally enabled on the sw itch. T o prevent transmission or receipt of LLDP traffic, you can disable LLDP operat ion (page 13-40) Enable or Disable LLDP-MED.
13-41 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) SNMP Notification. Y ou can enable the switch to send a notification to any configured SNMP trap receiver(s) wh en the swi tch detects a remote LLDP data change on an LLDP-e nabled port (page 13-50 ).
13-42 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Remote Management Address. The switch always includes an IP address in its LLDP advertisements. This can be either an address selected by a default process, or an address conf igured for in clusion in ad ve rtisements.
13-43 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) ■ RFC 2737 (Entity MIB) ■ RFC 2863 (Interfaces MIB) ■ ANSI/TIA-1057/D6 (LLDP-MED; refer to “LLDP-MED (Media-Endpoint- Discovery)” on page 1 3-55.
13-44 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Spanning-T ree Blocking. Spanning tree does no t prevent LLDP packet transmission or receipt on STP-bl ocked links. 802.1X Blocking. Po rts blocked by 802. 1X operation do not al low transmission or recei pt of LLDP packet s.
13-45 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For exampl e, show lldp config produces the following display when the switch is in the default LLDP configuration : Figure 13-13.
13-46 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Displaying Port Confi guration D etails. This command displ ays the port- specific configurat ion, including.
13-47 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) ■ Add entries to its neighbors ta ble based on data read from incoming LLDP advertisements. For example, to disable LLDP on the switch: ProCurve(config)# no lldp run Changing the Packet T ransmission Interval.
13-48 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Changing the T ime-to-Live for T ransmitted Advertisements.
13-49 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For example, to change the delay-inter val from 2 seconds to 8 sec onds when the refresh-interval is at the default 30 seconds, yo u must first set th e refresh- interval to a minimum of 32 seconds (32 = 4 x 8).
13-50 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) delay interval delays the port’ s ability to re initialize and generate LLDP traffic following an LLDP disable/enable cycle.
13-51 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Changing the Minimum Interval for Succe ssive Data Change Notifications for the Same Ne ighbor .
13-52 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Configuring Basic LLDP Per - Port Advertisement Content In the defa ult LLDP conf iguration, outbound advertisem ents from each p ort on the switch includ e both mandat ory and optional data.
13-53 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) For example, if port 3 belongs to a subn etted VLAN that includes an IP address of 10.
13-54 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) For example, if you want ed to exclude the system name TL V from the outbound LLDP adverti sements for all p.
13-55 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) As mentioned ab ove, an SNMP net work managem ent applicatio n can be used to compare the port speed and duplex data configured in the switch and advertised by the LLDP endpoint.
13-56 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) ■ Power over Ethernet (PoE) status and troubleshooting support via SNMP ■ support for I P telephony netw.
13-57 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) ■ able to use th e following network po l icy elements configured on the client port •v o i c e V L A N I D • 802.
13-58 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) ■ Class 3 (Communication Devices): These devices are typically IP phones or end-user devices that otherwis.
13-59 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Note T opology change notifications pro vide one method for monitoring system activity .
13-60 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) LLDP-MED Fast Start Control Advertising Device Ca pability , Network Policy , PoE Status and Location Data T.
13-61 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Note LLDP-MED operat ion requires the macphy_ config TL V subelement—e nabled by default—that is optional for IEEE 802.1AB LLDP operation. Refer to the dot3TlvEnable macphy_ config command on page 13-55.
13-62 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Notes A codepoint must have an 802.1p priority before you can configure it for use in prioritizi ng packets by VLAN-ID.
13-63 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Configuring Location Data for LLDP-MED Devices Y ou can configure a switch port to advert ise location data f.
13-64 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Syntax: [ no ] lldp config < p ort-list > medPortLo cation < Address-T ype > Configures location o r emergency c all data the switc h advertises per port in the location_id TL V .
13-65 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) — Continued — T ype/V alue Pairs ( CA-TYPE and CA-V ALUE ): This is a series of data pairs, each co mposed of a location data “type” specifier and the co rresponding location data for that type.
13-66 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Configuring Coordinate-Based Locations. Latitude, longitude, and altitude data can be configured per s witch port using an SNMP management application. For more informat ion, refer to the document ation provid ed with the application.
13-67 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) T able 13-4. Some Location Codes Used in CA-TYPE Fields* Example of a Location Configuration.
13-68 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Figure 13-17. Example of a Ci vic Address Configuration Displaying Advertisement Data Command Page show lldp.
13-69 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying Switch Informat ion A vailable for Outbound Advertisements These commands display the current switch informati on that will be used to populate outbo und LLDP advertisements.
13-70 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Figure 13-18. Example of Displayin g the Global and Per-Port Information Available for Outbound Advertisements Figure 13-19.
13-71 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) an LLDP-MED endpoint, refer to “Dis playing the Current Port Speed and Duplex Configurat ion on a Sw itch Port” on page 13-70. Displaying Advertisem ents Currently in the Neighbors MIB.
13-72 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Figure 13-20. Example of a Gl obal Listing of Discovered Devices Figure 13-21.
13-73 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Displaying LLDP Statistics LLDP statistics are availabl e on both a global and a per -port levels. Rebooting the switch resets the LLDP statisti cs co unters to zero.
13-74 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) — Continued — Per -Port LLDP Counters: NumFra mesRecvd: Shows the total number of valid, inbound LLDP advertisements received from any neighbor(s) on < port- list > .
13-75 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Figure 13-22. Example of a Gl obal LLDP Statistics Display Figure 13-23. Example of a Per -Port LLDP Statistics Display LLDP Operating No tes Neighbor Maximum. The neighbors tabl e in the switch supports as many neighbors as there are ports on the sw itch.
13-76 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) One IP Address Advertiseme nt Per -Port: LLDP advertises onl y one IP address per -port, even if multiple IP addresses are configured by lldp confi g < port-list > ipAddrEnab le on a given port.
13-77 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) Figure 13-24. Matching Inte rnal Port Numbers to Ex ternal Slot/Port Numbers LLDP and CDP Data Management Thi.
13-78 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) • The LLDP “Syste m Descr” field ma ps to CDP’ s “V ersion” and “Plat- form” fields. • The switch assigns “Cha ssisT ype” and “PortT ype” fields as “loc al” for both the LLDP and the CDP advertisements it receives.
13-79 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) CDP Operation and Commands By default the switche s c ove re d in th is gu id e have CDP enabled on each port.
13-80 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) Note For details on how to use an SNMP utility to retrieve information from the switch’ s CDP Neighb ors table maintain ed in the switch’ s MIB (Mana gement Information Base), refer to the documentatio n provided with the particular SNMP utility .
13-81 Configuring for Network Management Applications LLDP (Link-Layer Discovery Protocol) V iewing the Switch’ s Current CDP N eighbors T able. Devices are listed by the port on which they were detected. Figure 13-26 lists CDP devices that the sw itch has detected by receiving their CDP packets.
13-82 Configuring for Network Manageme nt Applications LLDP (Link-Layer Discovery Protocol) For example, to disable CD P read-only on the switch: ProCurve(config)# no cdp run When CDP is disabled: ■.
A-1 A File T ransfers Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-3 Downloading Switch Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-3 General Softwa re Download Rules .
A-2 File Transfers Contents Transferring Switch Configurations . . . . . . . . . . . . . . . . . . . . . . . . . . A-25 TFTP: Copying a Configurat ion File to a Remote Host . . . . . . . A-25 TFTP: Copying a Config uration File f rom a Remote Host . .
A-3 File Transfers Overview Overview The switches co vered in this gui de su pport several methods f or transferring files to and from a physic ally connected device, or vi a the network, including TFTP , Xmodem, and USB.
A-4 File Transfers Downloading Switch Software General Software Download Rules ■ Switch software that y ou download via the menu interface always goes to primary flash. ■ After a software download, you must reboot the switch to implement t he new software.
A-5 File Transfers Downloading Switch Software Menu: TFTP Download from a Server to Primary Flash Note that the menu interface ac cesses only the primary flash. 1. In the console Main Menu, select Download OS to display the screen in figure A-1. (The term “OS”, or “ope rating system” refers to the switch software): Figure A-1.
A-6 File Transfers Downloading Switch Software A “progress” bar indicates the progre ss of the download. When the entire software file has been received, all activ ity on the switch halts and you will see V alidating and wr iting system softw are to FLASH.
A-7 File Transfers Downloading Switch Software T o find more information on the cause of a do wnload fail ure, examine the messages in the switch’ s Event Log by executing the show log t ftp command from the CLI. Also: ■ For more on the Event Log, see “Usi ng the Even t Log for T roubleshooti ng Switch Problems” on page C-24.
A-8 File Transfers Downloading Switch Software For example, to download a switch so ftware file named k0800.s wi from a TFTP server with the IP address of 10.28.227.103 to primary fl ash: 1. Execute copy as shown below: Figure A-4. Example of the Command to Download an OS (Switch Soft ware) 2.
A-9 File Transfers Downloading Switch Software 4. T o confirm that the software downloaded correctly , execute show system and check the Firmware revision line. For informati on on primary/secondary f lash memory and the b oot commands, refer to “Using Primary and Secondary Flash Image Options” on page 6 -14.
A-10 File Transfers Downloading Switch Software The no tftp < client | server > command does no t disabl e auto-TFTP operation. T o disable an auto-TFTP command configured on the switch, use the no auto- tftp command described on pa ge A-11 to remove the command entry from the switch’ s configuration.
A-11 File Transfers Downloading Switch Software Using Auto-TFTP The auto-tftp command allows yo u to configure the switch to download software automatically from a TFTP server .
A-12 File Transfers Downloading Switch Software Using Secure Copy and SFTP For some situ ations you may want to use a secu re method to issue command s or copy files to the switch.
A-13 File Transfers Downloading Switch Software Protocol major versions differ: 2 vs. 1 Connection closed Protocol major versions differ: 1 vs. 2 Connection closed Received disconnect from < ip-add.
A-14 File Transfers Downloading Switch Software Disable TFTP and Auto-TFTP for Enhanced Security Using the ip ssh filetransfer command to enable Secure FTP (S FTP) automat- ically disables TFTP and auto-TFTP (i f either or both are enabled). Figure A-5.
A-15 File Transfers Downloading Switch Software Figure A-6. Using the Menu Interface T o Disable TFTP ■ While SFTP is enabled, TFTP an d auto-TFTP cannot be enabled fr om the CLI. Attempting to enable eit her non-secure TFTP option while SFTP is enabled produces one of the following messages in the CLI: SFTP must be disabled before enabling tftp.
A-16 File Transfers Downloading Switch Software Note As a matter of policy , administrators should not enable the SSHv1-only or the SSHv1-or -v2 advertisement modes. SSHv1 is supported on only some legacy switches (such as the HP ProCurve 2500 switches).
A-17 File Transfers Downloading Switch Software ■ When an SFTP client conn ects, the switch prov ides a file system display - ing all of its available files and folders. No file or directory creation is permitted by th e user . Files may only be up loaded or downloaded, accord- ing to the perm issions mask.
A-18 File Transfers Downloading Switch Software | authorized_keys ---oper_keys authorized_keys ■ When using SFTP to copy a software image onto the switch, the command return takes only a few seconds.
A-19 File Transfers Downloading Switch Software Note The Bad file number is from the system e rror value and may differ depending on the cause of the failu re. In the third example, the de vice file to read was closed as the device read was about to occur .
A-20 File Transfers Downloading Switch Software Menu: Xmodem Download to Primary Flash Note that the menu interface ac cesses only the primary flash. 1. From the console Main Menu, select 7. Download OS 2. Press [E] (for E dit ). 3. Use the Space bar to select XMODEM in the Method field .
A-21 File Transfers Downloading Switch Software CLI: Xmodem Download from a PC or UNIX W orkstation to Primary or Secondary Flash Using Xmodem and a terminal emulator , you can download a soft ware file to either primary or secondary flash. For example, to download a switch soft ware fi le named E0822.
A-22 File Transfers Downloading Switch Software 4. T o confirm that the soft ware downloaded correctly: ProCurve> show system Check the Firmware revision line.
A-23 File Transfers Downloading Switch Software 7. After the primary flash memory has been updated with the new sof t ware, you must reboot the switch to impl ement the newly downloaded software. Return to the Main Menu and press [6] (for Reboot Switch ).
A-24 File Transfers Downloading Switch Software Figure A-7. Switch-T o-Switch, from Primar y in Source to Either Fla sh in Destination Downloading fr om Either Flash in the Sou rce Switch to Either Flash in the Destinatio n Switch. For example, to download a software fi le from secondary flash in a switch with an IP address of 10.
A-25 File Transfers Copying Software Images Copying Software Images Using the CLI commands described in this sectio n, you can copy software images from the switch to another device using tftp, xmodem, or usb.
A-26 File Transfers Transferring Switch Configurations T ransferring Switch Configurations T ransfer Features Using the CLI commands described in this sectio n, you can copy switch configurations to and from a switch.
A-27 File Transfers Transferring Switch Configurations TFTP: Copying a Configuration File from a Remote Host For example, to download a configurat ion file named sw8200 in the configs directory on drive “ d ” in a remote host having an IP address of 10.
A-28 File Transfers Transferring Switch Configurations Y ou can include show tech commands in the custom file, with the exception of show tech custom . For example, y ou can include the command show tech all . If no custom file is found , a message displays stating “No SH OW -TECH file found.
A-29 File Transfers Transferring Switch Configurations 2. Execute the following command: 3. After you see the above prompt, press [Enter] . 4. Execute the termina l emulator comm ands to begin the fil e transfer .
A-30 File Transfers Copying Diagnostic Data to a Remote Host , USB Device, PC or UNIX Workstation (For more on these commands, refer to “Rebooting the Sw itch” on page 6-19.
A-31 File Transfers Copying Diagnostic Data to a Remote Host , USB Device, PC or UNIX Workstation Copying Command Output to a Destination Device For example, to use Xmodem to copy the output of sh ow config to a serially connected PC: Figure A-11.
A-32 File Transfers Copying Diagnostic Data to a Remote Host , USB Device, PC or UNIX Workstation Figure A-12. Example of Sending Event Lo g Content to a File on an Attach ed PC Copying Crash Data Content to a Destination Device This command uses TFTP , USB, or Xmodem to copy the Crash Data con tent to a destination d evice.
A-33 File Transfers Copying Diagnostic Data to a Remote Host , USB Device, PC or UNIX Workstation Copying Crash Log Data Content to a Destination Device For example, to copy the Crash Log for sl ot C to a file in a PC co nnected to the switch: Figure A-14.
B-1 B Monitoring and Analyzing Switch Operation Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-3 Status and Counters Data . . . . . . . . . . . . . . . . . . . . . . . . . . .
B-2 Monitoring and Analyzi ng Switch Operation Contents Mirroring Terminol ogy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-24 Mirrored Traffic Destinations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-26 Local Destinations .
B-3 Monitoring and Analyzing Switch Operation Overview Overview T he s w i t c h e s covered in this guide h a v e s e v e r al b u i l t - in t o o l s f o r m o ni t o r i n g , analyzing, and troub.
B-4 Monitoring and Analyzi ng Switch Operation Status and Counters Data Status and Counters Data This section describes the status and counters screens available through the switch console interface and/or the web browser interface. Note Y ou can access a ll console screens from the web browser interface via T elnet to the console.
B-5 Monitoring and Analyzing Switch Operation Status and Counters Data Menu Access T o St atus and Counters Beginning at the Main Menu, display th e Status and Counters menu by select- ing: 1. Status and Counters Figure B-1. The Status and Counters Menu Each of the above menu items accesses the read-only scr eens desc ribed on the followin g pages.
B-6 Monitoring and Analyzi ng Switch Operation Status and Counters Data General System Information Menu Access From the console Main Menu, select: 1. Status and Counters 1. General System Information Figure B-2. Example of General Switch Informatio n This screen dynamically indicates how individual switch resources are being used.
B-7 Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access to System Information The show system command displays general sy stem informat ion abou t the switch.
B-8 Monitoring and Analyzi ng Switch Operation Status and Counters Data Ta s k M o n i t o r — C o l l e c ting Processor Data The task monitor feature al lows you to enable or disable the colle ction of processor utilizat ion data. The task-monitor cpu command is equivalent to the existing debu g mode comma nd “ taskusage -d ”.
B-9 Monitoring and Analyzing Switch Operation Status and Counters Data Figure B-5. Example of Management Address Information with VLANs Conf igured This screen displays a ddresses that are importan t for manage ment of the switch. If multiple VLANs are not configured, this screen displays a single IP address for the entire switch.
B-10 Monitoring and Analyzi ng Switch Operation Status and Counters Data Port Status The web browser interface and the co ns ole interface show the same port status data. Menu: Displaying Port Status From the Main Menu, select: 1. Status and Counters … 4.
B-11 Monitoring and Analyzing Switch Operation Status and Counters Data V iewing Port and T runk Gr oup Statistics and Flow Control Status These feat ures enab le you to d etermine the traffic patte rns fo r each port since the last reboot or reset of the switch.
B-12 Monitoring and Analyzi ng Switch Operation Status and Counters Data Menu Access to Port and T runk Statistics T o access this screen from the Main Menu, select: 1.
B-13 Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access T o Port and T runk Group Statistics T o Display the Port Counter Summary Report. T o Display a Deta iled T raf fic Summary for Specific Ports. T o Reset the Port Counters for a Specific Port.
B-14 Monitoring and Analyzi ng Switch Operation Status and Counters Data V iewing the Switch’ s MAC Address T ables Note The 6120G/XG supports a maximum of 16,000 MAC address entries.
B-15 Monitoring and Analyzing Switch Operation Status and Counters Data Figure B-9. Example of the Address T able T o page through th e listin g, use N ext page and P rev p age . Finding the Port Connection for a Specific Devi ce on a VLAN. This feature uses a devi ce’ s MAC address that you enter to identify the port used by that device.
B-16 Monitoring and Analyzi ng Switch Operation Status and Counters Data Port-Level MAC Address V iewing and Searching. This feat ure displays and searches for MAC addresses on the specified port instead of for all ports on the switch. 1. From the Main Menu, select: 1.
B-17 Monitoring and Analyzing Switch Operation Status and Counters Data CLI Access for MAC Address V iews and Searches Syntax: show mac-addre ss [ vlan < vlan-id > ] [ < port-li st > ] [< mac-addr >] T o List All Learned MAC Addresse s on the Switch, with The Port Number on Which Each MAC Address W as Learned.
B-18 Monitoring and Analyzi ng Switch Operation Status and Counters Data Spanning T ree Protocol (MSTP) Information CLI Access to MSTP Data This option lists the MSTP co nfigurati on, root data, and per -port data ( cost, priority , state, and designated bridge).
B-19 Monitoring and Analyzing Switch Operation Status and Counters Data Internet Group Management Protocol (IGMP) Status The switch uses the CLI to display th e following IGMP st atus on a per -VLAN basis: For example, suppose that show ip igmp listed an IGMP group address of 224.
B-20 Monitoring and Analyzi ng Switch Operation Status and Counters Data VLAN Information The switch uses the CLI to disp lay the following VLAN status: Note The 6120G/XG supports a maximum of 256 VLANs.
B-21 Monitoring and Analyzing Switch Operation Status and Counters Data Figure B-14. Example of VLAN Listing fo r the Entire Switch Listing the VLAN ID (VID) and Status for Specific Ports. Figure B-15. Example of VLAN Listing fo r Specific Ports Listing Individual VLAN Status.
B-22 Monitoring and Analyzi ng Switch Operation Status and Counters Data W eb Browser Interface Status Information The “home” screen for the web browse r interface is the Status Overview screen, as shown below .
B-23 Monitoring and Analyzing Switch Operation Traffic Mirroring T raffic Mirroring Mirror Features T raffic mirro ring (Intelligen t Mirroring) al lows you to mirror (send a copy of) network traffic received or transmit ted on a switch interface to a local destination, such as a traffic analyzer or intrusion detection syst em (IDS).
B-24 Monitoring and Analyzi ng Switch Operation Traffic Mirroring ■ All traffic: Monitors all traffic enteri ng or leaving the switch on one or more interfaces ( inbound and outbound ).
B-25 Monitoring and Analyzing Switch Operation Traffic Mirroring Caution An exit port sh ould be connected onl y to a network an alyzer , IDS, or othe r network edge device that has no connecti on to other net work resources.
B-26 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Mirrored T raffic Destinations Local Destinations A local mirrored traffic destination is a port on the same switch as the source of the traffic being mirrore d.
B-27 Monitoring and Analyzing Switch Operation Traffic Mirroring Mirroring Configuration T able B-1 shows the differen t types of mirroring that you can conf igure using the CLI, Menu, and SNMP interfaces.
B-28 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Configuration Notes Using the CLI, you can configure a ll mirroring opti ons on a switch. Using the Menu or W eb interface, you ca n configure sessi on 1 local mirroring for traffic in both direct ions on specified interfaces.
B-29 Monitoring and Analyzing Switch Operation Traffic Mirroring Using the Menu or W eb Inte rface T o Configure Local Mirroring Menu and W eb Interface Limits The Menu and W eb interfaces can be used.
B-30 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Configuration Steps Notes If mirroring has al ready been enabled on th e switch, the Men u screens will appear differently than shown in this section. 1. From the Main Menu, select: 2. Switch Configuration .
B-31 Monitoring and Analyzing Switch Operation Traffic Mirroring Figure B-20. How T o Select a Local Exit Port 5. Use the Space bar to se lect the port to use for sending mirrored traf fic to a locally connected traffic analyzer or IDS. (The selected interface must be a single port.
B-32 Monitoring and Analyzi ng Switch Operation Traffic Mirroring 8. Press the Sp ace bar t o select Monitor for the port( s) and/or trunk(s) that you want mirrore d. Use the down a rrow key to move from one interface to the next in th e Action column.
B-33 Monitoring and Analyzing Switch Operation Traffic Mirroring CLI: Configuring Local Mirroring Using the CLI, you can configure a mirr oring session for a destination device connected to an exit po rt on the same switch as the source interface (local mirroring).
B-34 Monitoring and Analyzi ng Switch Operation Traffic Mirroring 1. Determine the session and local destination port: • Session number (1-4) and (optional ) alphanumeric name • Exit port (any port on the switch except a monitored interface used to mirror traff ic) 2.
B-35 Monitoring and Analyzing Switch Operation Traffic Mirroring 1. Determine the Mirroring Session and Destination For a Local Mirroring Session. Determine the port num ber for the exit port (such as A5, B10, etc.), then go to “3. Configure the Monitored T raffic in a Mirror Session” on page B-35.
B-36 Monitoring and Analyzi ng Switch Operation Traffic Mirroring T raffic Selection Options T o configure traffic mirroring, you must specify the source interface , traffic direction, and criteria t .
B-37 Monitoring and Analyzing Switch Operation Traffic Mirroring This command assigns a mirrori ng source to a previously configured mirroring session on a source switch. It specifi es the port and/or trunk source(s) to u se, the direction of traffic to mirror , and the session identifier .
B-38 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Displaying a Mirroring Configuration Displaying the Mirroring Configuration Summary Use the show monitor command to display inform ation on the currently con- figured status, traffi c-selection criteria , and number of monitored interfaces in each mirroring session on a switch.
B-39 Monitoring and Analyzing Switch Operation Traffic Mirroring Policy: Indicates whether the source is using a classifier -based mirroring policy to select inbo und IPv4 or IPv6 traffic for mirroring.
B-40 Monitoring and Analyzi ng Switch Operation Traffic Mirroring V iewing Mirroring in the Current Configuration File Using the show run command, you can view the current mirroring config ura- tion on t he switch. Source mirroring session entries begin wi th the mirror keyword and the mirroring sources are listed per -inte rface.
B-41 Monitoring and Analyzing Switch Operation Traffic Mirroring Mirroring Configuration Examples Local Mirroring Using T r affic-Direction Criteria Example of Local Mirroring Configuration.
B-42 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Maximum Supported Frame Size The IPv4 encapsul ation of mirrored tra f fic adds a 54-byte header to each mirrored frame. If a resulting frame exceeds the MTU (M aximum T ransmis- sion Unit) allow ed in the netw ork, the frame is dr opped.
B-43 Monitoring and Analyzing Switch Operation Traffic Mirroring Enabling Jumbo Frames T o Increase Mirroring Path MTU On 1 Gbps and 10 Gbps ports in the mi rroring path, you can redu ce the number of dropped frames by en abling jumbo fr ames on all intermed iate switches and routers.
B-44 Monitoring and Analyzi ng Switch Operation Traffic Mirroring Effect of Downstream VLAN T agging on Untagged, Mirrored T raffic In a mirroring applicat ion, if mirrored traffic leaves the switch without 802.1Q VLAN tagging, bu t is forwarded through a downstream device that adds 802.
B-45 Monitoring and Analyzing Switch Operation Traffic Mirroring Operating Notes ■ Mirroring Dropped T raffic: Where an interface is configured to mirror - ing traffic to a destination, it does so regardless of whether the traffic is dropped while on the interface.
B-46 Monitoring and Analyzi ng Switch Operation Traffic Mirroring ports B5, B6, and B7 is b eing mirrored through port B7 t o a network analyzer , the mirrored frames from tr affic on ports B5 an d B6 will not be mirrored a second ti me as they pass through port B7.
B-47 Monitoring and Analyzing Switch Operation Traffic Mirroring T roubleshooting Mirroring Mirrored traffic does not reach config ured remote destination switch or remote exit port.
C-1 C T roubleshooting Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C-4 Troublesho oting A pproache s . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C-5 Browser or Telnet Access Problems .
C-2 Troubleshooting Contents Using Log Throttling to Reduce Duplicate Event Log and SNMP Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . C-33 Log Throttle Periods . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
C-3 Troubleshooting Contents Customizing show tech Comma nd Output . . . . . . . . . . . . . . . . . C-69 CLI: Viewing M ore Info rmation on Switch Operation . . . . . . . . . . . C-72 Pattern Matching When Using t he Show Command . . . . . . . . . C-73 CLI: Useful Commands for Troublesh ootin g Sessions .
C-4 Troubleshooting Overview Overview This appendix addresses performance- relat ed network problems th at can be caused by topology , switch configur ation, and t he effects of other devi ces or their config urations on sw itch operation.
C-5 Troubleshooting Troubleshooting Approaches T roubleshooting Approaches Use these approaches to diagnose switch problems: ■ Check the HP support web site fo r soft ware updates that may have solved your problem: www.
C-6 Troubleshooting Troubleshooting Approaches ■ For the downlink and ISL po rts, troubleshoot ing can be done from the OA W eb interface. These ports are controlled from both the OA and the switch configuration. A port st ate is a combination of OA En able/Disable stat e and the switch Enable/Disable stat e.
C-7 Troubleshooting Browser or Telnet Access Problems Browser or T elnet Access Problems Cannot access the we b browser interface: ■ Access may be disabled by the Web Agent Enabled parameter in the switch console. Check the se tting on this param e ter by selecting: 2.
C-8 Troubleshooting Browser or Telnet Access Problems Cannot T elnet into the switch con sole from a station on the network: ■ T elnet a ccess may be disabled by the I nbound T elnet Enabled pa rameter in the System Informati on scr een of the menu interface: 2.
C-9 Troubleshooting Unusual Network Activity Unusual Network Activity Network activity that fails to meet ac cepted norms may indicate a ha rdware problem with one or more of the netw ork components, possibl y including the switch.
C-10 Troubleshooting Unusual Network Activity This can also happen, for example, if the server is first conf igured to issue IP addresses with an un limited duration, th en is subsequently co nfigured to issue IP addresses that will expire aft er a limited duration.
C-11 Troubleshooting Unusual Network Activity IP Multicast T raf fic Floods Out All Ports; IGMP Does Not Appear T o Filter T raffic. The IGMP feature does not operat e if the switch or VLAN does not have an IP address configured manu ally or obtained through DHCP/B ootp.
C-12 Troubleshooting Unusual Network Activity The switch does not receive a res ponse to RADIUS authentication requests. In this case, the switch wi ll attempt authen tication using the secondary method configured for the type of acce ss you are using (console, T eln et, or SSH).
C-13 Troubleshooting Unusual Network Activity The supplicant statistics listing sh ows multiple ports with the same authenticator MAC address. The li nk to the authen ticator may have been moved from one port to anot her without the su pplicant statist ics having been cleared from the first po rt.
C-14 Troubleshooting Unusual Network Activity Figure C-2. Displaying Encryption Keys Also, ensure that the swit ch port used to access the RADIUS server is not blocked by an 802.1X configu ration on that p ort. For example, show port - access authenticator < p ort-list > gives you the status for the specified ports.
C-15 Troubleshooting Unusual Network Activity Radius-Related Problems The switch does not receive a res ponse to RADIUS authentication requests. In this case, the switch wi ll attempt authen tication using the secondary method configured for the type of acce ss you are using (console, T eln et, or SSH).
C-16 Troubleshooting Unusual Network Activity Spanning-T ree Protocol (MSTP) and Fast-Uplink Problems Caution If you enable MSTP , it is recommende d that you leave the remainder of the MSTP param eter settings at their defaul t values until you have had an oppor - tunity to evaluate MSTP performance in your network.
C-17 Troubleshooting Unusual Network Activity SSH-Related Problems Switch access refused to a client. Even though you have pla ced the client’ s public key in a text file and copied the file (using the copy tftp pub -key- file command) into the switch, the switch refuses to allow the client to have access.
C-18 Troubleshooting Unusual Network Activity Switch does not detect a client’ s public key that does appear in the switch’ s public key file ( sh ow ip client-public-key ). The client ’ s public key entry in the public key fi le may be pr eceded by an other entry that does not terminate wi th a new line (CR).
C-19 Troubleshooting Unusual Network Activity T ACACS-Related Problems Event Log. When troubleshooting T ACACS+ op eration, check the switch’ s Event Log for i ndications of p roblem areas.
C-20 Troubleshooting Unusual Network Activity ■ The encryption key configured in the server does not match the encryption key configured in the switch (by using the tacacs-server key command). V erify the key in the server and compare it to the key configured in the switch.
C-21 Troubleshooting Unusual Network Activity T imeP , SNTP , or Gateway Problems The Switch Cannot Find the T ime Se rver or the Con figured Gateway . T imeP , SNTP , and Gatew ay access are through the primary VLAN, which in the default configuration is the DE F AUL T_VLAN.
C-22 Troubleshooting Unusual Network Activity Figure C-4. Example of Correct VLAN Port Assignments on a Link 1. If VLAN_1 (VID=1) is conf igured as “Untagged” on port 3 on switch “X”, then it must also be co nfigured as “Untagged” on port 7 on switch “Y”.
C-23 Troubleshooting Unusual Network Activity Figure C-5. Example of Duplicate MAC Address Server 8212zl Switch (Multiple Forwarding Database) Switch with Single Forwarding Database MAC Address “A”; VLAN 1 MAC Address “A”; VLAN 2 Problem: This switch detec ts continual move s of MAC address “A” between ports.
C-24 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems Using the Event Log for T roubleshooting Switch Problems The Event Log records oper ating event s in single- or double-line entries and serves as a tool to isolat e and troubl eshoot problems.
C-25 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems D (debug) is reserved for ProCurve intern al diagnost ic informatio n. Date is the date in the format mm/dd/yy when an entry is recorded i n the log. Ti m e is the time in the format hh:mm:ss when an entry is recorded in the log.
C-26 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems cos Class of Service (CoS): Prov ides priority handling of packets traversing the switch, based on the IEEE 802.1p priority carrie d by each packet. CoS messages also include Qual ity of Service (QoS) events.
C-27 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems igmp Internet Group Management Protocol: Reduces unnecessary bandwidth usage for multicast traffic transmitted from multimedia applications on a per -port basis.
C-28 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems maclock MAC lockdown and MAC lockout • MAC lockdown prevents station movement and MAC address “hijacking” by requi ring a MAC address to be used only an assigned port on the switch.
C-29 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems stp Multiple-instance spanning tree protocol/M STP (802.1s): Ensures that only one active path exists between any two nodes in a group of VLANs in the network.
C-30 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems vlan Static 802.1Q VLAN operat ions, including port-and protocol- based configurations that group users by logical functio.
C-31 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems Menu: Displaying and Navi gating in the Event Log T o displa y the Event Log fr om the Main Menu, select Event Log . Figure C-6 shows a sample ev ent log display . Figure C-6.
C-32 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems CLI: Displaying the Event Log T o displa y messages record ed in the event log fr om the CLI, enter the show logging command.
C-33 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems T o redispl ay all hidden entries, includi ng Event Log entries recorded prior to the last r eboot, ente r the show logging -a command.
C-34 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems Log Throttle Periods The length of the l og throttle pe riod di ffers according to an event’ s severity level: Example of Log Throttling For example, suppose that yo u configure VLAN 100 on the switch to suppor t PIM operation, but do no t configure an IP address.
C-35 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems If PIM oper ation caused th e same event to occur si x more times duri ng the initial log throt tle period, there would be no further entries i n the Event Log.
C-36 Troubleshooting Using the Event Log for Tr oubleshooting Switch Problems Example of Event Counter Operation Suppose the switch detects the following after a re boot: ■ Three duplicate instances.
C-37 Troubleshooting Debug/Syslog Operation Debug/Syslog Operation While the Event Log records switch-l evel progress, status, and warning messages on the swi tch, the Debu g/System Logging ( Syslog ) feature provides a way to record Event Log and debu g messages on a remote device.
C-38 Troubleshooting Debug/Syslog Operation A Debug/Syslog destination device can be a Syslog server and/or a console session. Y ou can configure debug and logging messages to b e sent to: ■ Up to s.
C-39 Troubleshooting Debug/Syslog Operation Figure C-8. Summary of Debug /Syslog Configuration Com mands Using the Debug/Syslog f eature, you can perform th e following operations: ■ Configure the switch to send Event Log messages to one or more Syslog servers.
C-40 Troubleshooting Debug/Syslog Operation b. Re-enter the log ging command in St ep “a” to configure addition al Syslog servers. Y ou can configure up to a total of six servers. (When multiple server IP addresses are configured, the switch sends the debug messa ge types that y ou configur e i n Step 3 to all IP addresses.
C-41 Troubleshooting Debug/Syslog Operation Caution If you configure a severit y-level, sy stem-module, logging destination, or logging facility value and save the settin gs to the startup configurat .
C-42 Troubleshooting Debug/Syslog Operation messages sent to the Syslog server , speci fy a set of messages by entering the logging severity and logging system-module commands.
C-43 Troubleshooting Debug/Syslog Operation Example. The next example shows ho w to configure: ■ Debug logging of IP-OSPF packet messages on a Syslog server at 18.38.64.164 (with user as the default logging facility). ■ Display of these messages in the CLI session of your terminal device’ s management access to the switch.
C-44 Troubleshooting Debug/Syslog Operation Figure C-6. Debug/Syslog Configura tion for Multiple Debug T ypes and Multiple Destinations ProCurve# config ProCurve(config)# logging 10. 38.64.164 ProCurve(config)# show debug Debug Logging Destination: Logging -- 10.
C-45 Troubleshooting Debug/Syslog Operation Debug Command At the manager level, use the debug command to perform two main functions: ■ Specifies the types of event messages to be sent to an ex ternal destination. ■ Specifies the de stinations to whic h selecte d message types are sent.
C-46 Troubleshooting Debug/Syslog Operation ip [ ospf < adj | event | flood | lsa-generation | packet [ packet -type ] | retransmission | spf > ] For the configured debug destination(s): ospf < adj | event | flood | lsa-generation | packet [ packe t-type ] | retransmission | spf > — Enables the specified IP-OSPF message type.
C-47 Troubleshooting Debug/Syslog Operation Debug Destinations Use the debug destination command to enable (and disable) Syslog messaging on a Syslog server or to a CLI session for specified types of debug and Event Log messages.
C-48 Troubleshooting Debug/Syslog Operation Logging Command At the global configuration level, the lo gging command allows you to enable debug logging on specified Syslog server s and select a subset .
C-49 Troubleshooting Debug/Syslog Operation Configuring a Syslog Server Syslog is a client-server logging tool th at allows a client switch to send event notification messages to a networked de vice operati ng with Syslog server software. Messages sent to a Syslog server can be stored to a file for later debugging analysis.
C-50 Troubleshooting Debug/Syslog Operation Syntax: [no] logging < syslog-ip-addr > [oobm] Enables or disables Syslog messaging to the specified IP address. You can configure up to six addresses. If you configure an address when none are already configured, this command enables destinatio n logging (Syslog) and the Event debug type.
C-51 Troubleshooting Debug/Syslog Operation Adding a Description for a Syslog Server Y ou can associate a user -friendly descri ption with each of the IP addresses (IPv4 only) conf igured for syslog u sing the CLI or SNMP . Note The HP enterprise MIB hpicfSyslog.
C-52 Troubleshooting Debug/Syslog Operation The CLI comm and is: Figure C-9. Example of the Logging Command wit h a Control Description Caution Entering the no logging command re moves ALL the syslog server addresses without a verification prompt.
C-53 Troubleshooting Debug/Syslog Operation Figure C-10. Exampl e of the Logging Command wit h a Priority Description Note A notification is sent to the SNMP agent if there are any changes to the syslog parameters eith er through the CLI or with SN MP .
C-54 Troubleshooting Debug/Syslog Operation Configuring the System Module Us ed to Select the Event Log Messages Sent to a Syslog Server Event Log messages contain the name of the system module that reported the event.
C-55 Troubleshooting Debug/Syslog Operation ■ Debug commands do not af fect normal message output to th e Event Log. Using the debug event command, you can specify that Event Log messages are sent to the debug de stinations you configure (CLI session and/ or Syslog servers) in addition to the Event Log.
C-56 Troubleshooting Diagnostic Tools Diagnostic T ools Diagnostic Features Feature Default Menu CLI Web Port Auto negotiation n/a — — — Ping test n/a — page C-59 page C-58 Link test n/a — p.
C-57 Troubleshooting Diagnostic Tools Port Auto-Negotiation When a link LED does not light (indicat ing loss of link between two devices), the most common r e ason is a failure of port auto -negotiation between the connecting ports. If a lin k LED fails to light wh en you conn ect the swi tch to a port on another devi ce, do the following: 1.
C-58 Troubleshooting Diagnostic Tools W eb: Executing Ping or Link T ests Figure C-11. Link and Ping T est Screen on the Web Browser Interface Successes indicates the number o f Ping or Link packets that successful ly completed the m ost recent test. Failures indicates the number of Ping or Link packets that were unsuccessful in the last test.
C-59 Troubleshooting Diagnostic Tools Number of Packets to Send is th e number of times you wan t the switch to attempt to test a connection. T imeout in Seconds is th e number of seconds to allow per attempt to test a connection before determining that the current atte mpt has failed.
C-60 Troubleshooting Diagnostic Tools Figure C-12. Examples of Ping T ests T o halt a ping test before it concludes, press [Ctrl] [C] . Note T o use the ping (or traceroute ) command wit h host names or fully qualified domain names, refer to “ DNS Resolver” on page C-79.
C-61 Troubleshooting Diagnostic Tools Syntax: link < mac-address > [repetitions < 1 - 999 >] [timeout < 1 - 256 >] [vlan < vlan-id >] Figure C-13. Exa mple of Link T ests T raceroute Command The traceroute command enables you to trace th e route from the switch to a host address.
C-62 Troubleshooting Diagnostic Tools Lists the IP address or hostname of each hop in the route, plus the time in microseconds for the traceroute packet reply to the switch for each hop. T o halt an ongoing traceroute search, press the [ Ctrl ][ C ] keys .
C-63 Troubleshooting Diagnostic Tools A Low Maxttl Causes T raceroute T o Halt Before Reaching the Destination Ad dress. For example, executi ng traceroute with its default values for a destination IP address that is four ho ps away produces a result similar to this: Figure C-14.
C-64 Troubleshooting Diagnostic Tools If A Network Condition Preven ts T raceroute from Reaching the Destination. Common reasons for T raceroute fa iling to reach a de stination include: ■ T im eouts (indicate d by one asterisk per probe, per hop; refer to Figure C-15, above.
C-65 Troubleshooting Viewing Switch Configuration and Operation V iewing Switch Configuration and Operation In some troubleshoot ing s cenarios, you may need to view the switch config- uration to diagnose a problem.
C-66 Troubleshooting Viewing Switch Configur ation a nd Operation ■ Image stamp (software version data) ■ Running configuration ■ Event Log listing ■ Boot History ■ Port settings ■ Status .
C-67 Troubleshooting Viewing Switch Configuration and Operation Saving show tech Command Output to a T ext File When you enter the show tech command, a summary of switch operational data is sent to your termin al emulator .
C-68 Troubleshooting Viewing Switch Configur ation a nd Operation ProCurve# show tech The show tech command output is copied into the text file and displayed on the ter minal emul ator screen . When the c ommand out put stops and displays -- M ORE -- , press the Space bar to di splay and copy more informatio n.
C-69 Troubleshooting Viewing Switch Configuration and Operation Syntax: copy < source > show- tech crash- log [ slot-id | master]: Includes the crash logs from all management and interface modules in show tech command output. event-log Copies the contents of the Event Log to show t ech command output.
C-70 Troubleshooting Viewing Switch Configur ation a nd Operation Copies the contents of a configuration file from a serially connected PC or UNIX workstation to show tech command output, where: startup-config : Specifies the name of the startup configuration file on the connected device.
C-71 Troubleshooting Viewing Switch Configuration and Operation CLI: Vi ewing More Informat ion on Switch Operation Use the following commands to displa y additional information on switch operation for trou bleshooting purposes.
C-72 Troubleshooting Viewing Switch Configur ation a nd Operation Pattern Matching When Using the Show Command The pattern matching op tion with the show command provides the ability to do searches for specific text. Selected portions of the outp ut are displayed depending on the parame ters chosen.
C-73 Troubleshooting Viewing Switch Configuration and Operation Figure C-21. Exa mple of Pattern Matching with E xclude Option ProCurve(config)# show run | exclude ipv6 Running configuration: ; J8697A Configuration Edito r; Created on release #K.
C-74 Troubleshooting Viewing Switch Configur ation a nd Operation Figure C-22. Exampl e of Pattern Matching with Begin Option Figure C-23 is an example of the show arp command output, and then th e output displayed when the include option has the IP address of 15.
C-75 Troubleshooting Viewing Switch Configuration and Operation CLI: Useful Commands for T roubleshooting Sessions Use the following commands in a troubleshooti ng session to more accurately display the information yo u need to diagnose a problem.
C-76 Troubleshooting Restoring the Factory-Default Configuration Restoring the Factory-Default Configuration As part of your troubleshooti ng process, it may become necessary to return the switch configuration to the factor y default settings.
C-77 Troubleshooting Restoring a Flash Image 3. When the Self T est LED begins to flash, relea se the Clear but ton. The switch will then complete its self te st and begin operating with the configuration restored to th e factory default settings.
C-78 Troubleshooting Restoring a Flash Image Make sure that the switch automaticall y boots into ROM first. 4. Start the Conso le Downlo ad utilit y by typing do at the => prompt and pressing [Enter] : => do 5. Y ou will then see this prompt: 6.
C-79 Troubleshooting DNS Resolver DNS Resolver The Domain Name System (D NS) resolver is designed for use in local network domains where it enables us e of a host name or fully qualified domain name with DNS-com patible switch CLI comman ds. (At softwa re release K.
C-80 Troubleshooting DNS Resolver Basic Operation ■ When the switch is configured wit h only the IP address of a DNS server available to the switch, then a DNS-compatible command, executed with a fully qualified doma in name, can reac h a device found in any domain accessible through the configured DNS se rver .
C-81 Troubleshooting DNS Resolver Note that if the target host is in a domain other than the domain configured on the switch, then: ■ The host’ s domain must be reachabl e from the switch .
C-82 Troubleshooting DNS Resolver c. The domain name for an accessible domain in which there are hosts you want to reach with a DNS-c ompatible command. (This is the domain s uffix in the f ully qualif ied domain name for a given host operating in the select ed domain.
C-83 Troubleshooting DNS Resolver Example Using DNS Names wi th Ping and T raceroute In the network illu strated in Figure C-27, the switch at 10.28.192 .1 is config- ured to use DNS names for DN S- compatible commands in the pubs.outdoors . com domain.
C-84 Troubleshooting DNS Resolver Configuring switch “A” with the domai n name and the IP address of a DNS server for the domain enables the switch to use host names assigned to IP addresses in the do main to perform ping and traceroute actions on the devic es in the domain.
C-85 Troubleshooting DNS Resolver As mentioned under “Basic Operation” on page C-80, if the DNS entry config- ured in the switch does not include the domain suffi x for the desired ta rget, then you must use the target host’ s fully qualified dom ain name with DN S- compatible commands.
C-86 Troubleshooting DNS Resolver Operating Notes ■ Configuring anot her IP address for a priority that has already been assigned to an IP address is not a llowed. T o re place one IP address at a given priority level w ith another ad dress hav ing the same priority , you must first use the no form of the command to remove the unwanted address.
C-87 Troubleshooting DNS Resolver Event Log Messages Message Meaning DNS server address not configure d The swit ch does not have an IP a ddress configured for the DNS server . DNS server not responding The DNS serve r failed to respond or is unreach able.
D-1 D MAC Address Management Contents Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . D-2 Determining MAC Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . D-3 Menu: Viewing th e Switch’s MAC Addresses .
D-2 MAC Address Management Overview Overview The switch assigns MAC addresses in these areas: ■ For management functions, one Base MAC address is assigned to the de f a u l t V L AN ( V I D = 1 ) . (A l l V L A N s o n th e s w i t c h es covered in this guide use the same MAC address.
D-3 MAC Address Management Determining MAC Addresses Determining MAC Addresses MAC Address Viewing Methods ■ Use the menu interface to view the switch’ s base MAC address and the MAC address assigned to any VLAN you have configured on the switch. (The same MAC address is assigned to VLAN1 and all other VLANs configured on the switch.
D-4 MAC Address Management Determining MAC Addresses Menu: V iewing the Switch’ s MAC Addresses The Management Address Information screen lists the MAC addresses for: ■ Base switch (d efault VLAN; V I D = 1) ■ Any additional V LANs conf igured on the switch.
D-5 MAC Address Management Determining MAC Addresses CLI: Vi ewing the Port and VLAN MAC Addresses The MAC address assigned to each switch port is used inte rnally by such features as Flow Control and the spanning-tree protocol.
D-6 MAC Address Management Determining MAC Addresses Figure D-2. Example of Port MAC Address Assignments on a Switch ProCurve# walkmib ifphysa ddress ifPhysAddress.1 = 00 12 7 9 88 b1 ff ifPhysAddress.2 = 00 12 7 9 88 b1 fe ifPhysAddress.3 = 00 12 7 9 88 b1 fd ifPhysAddress.
D-7 MAC Address Management Viewing the MAC Addresses of Connected Devices V iewing the MAC Addresses of Connected Devices T o list the MAC addresses of devi ces the switch has detected, use the show mac-address command.
E-1 E Monitoring Resources Contents Viewing Information on Resource Usage . . . . . . . . . . . . . . . . . . . . . . . E-2 Policy Enforcement Engine . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . E-2 When Insufficie nt Resource s Are Avai lable .
E-2 Monitoring Resources Viewing Information on Resource Usage V iewing Information on Resource Usage The switch allows you to view info rmation about the curren t usage and availability of resources .
E-3 Monitoring Resources When Insufficient Resources Are Available When Insufficient Resources Are A vailable The switch has ample r esources for conf iguring features and supporting: ■ RADIUS-authen ticated client s (with or wi thout the optional ID M applica- tion) ■ Viru s throttling and b locking on indi vidual clients.
F-1 F Daylight Savings T ime on ProCurve Switches ProCurve switches provide a way to automatically adjust the system clock for Daylight Savings Time (DST) changes. T o use this feature you defin e the month and date to begin and to en d the change from standard time.
F-2 Daylight Savings Time on ProCurve Switches Middle Europe and Portugal : • Begin DST at 2am the first Su nday on or afte r March 25th. • End DST at 2am the first Sund ay on or after September 24th. Southern Hemisphere: • Begin DST at 2am the first Sund ay on or afte r October 25th.
F-3 Daylight Savings Time on ProCurve Switches Before configuring a “User defined” Daylight Time Rule, it is important to understand how t he switch treats the entri es.
G-1 G Network Out-of-Band Management (OOBM) Contents Concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . G-2 Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
G-2 Network Out-of-Band Management (OOBM) Concepts Concepts Management communications with a manage d switch can be either: ■ in band — through the network ed data ports of the switch or: ■ out .
G-3 Network Out-of-Band Management (OOBM) Concepts Figure D-1. C-class enclosure OA Management port Out-of-band management (OOBM) operates on a “management plane” that is separate from the “data plane” used by data traffic on the switch and by in- band managem ent traffic.
G-4 Network Out-of-Band Management (OOBM) Concepts Advantages allows centralized management not affected by events on data network, shows boot sequence not affected by events on data network; allows c.
G-5 Network Out-of-Band Management (OOBM) Concepts Example In a typical data center installation, blade switches in a C-class enclosure connect servers to the data network, while the management port of the OA module in the C-class encl osure conn ects the switches to a physically and logically separate management network.
G-6 Network Out-of-Band Management (OOBM) Concepts OOBM and Switch Applications The table below shows the switch appl ications that are supported on the OOBM interf ace as well as on the da ta inte rfaces. In this li st , some applications are client-only , some are server -only , and some are both.
G-7 Network Out-of-Band Management (OOBM) Tasks Ta s k s OOBM Configuration OOBM context OOBM configurat ion commands can be issu ed from the global confi guration context ( config ) or from a specific OOBM configuratio n context ( oobm ). T o enter the OOBM configurat ion context from the general config uration con- text, use th e oobm command.
G-8 Network Out-of-Band Management (OOBM) Tasks OOBM enable/disable T o ena ble or disable network O OBM, use the enable or disable command. Network OOBM is enabled by default.
G-9 Network Out-of-Band Management (OOBM) Tasks OOBM port enable/disable The OOBM interf ace command e nables or disables the OOBM interface (the OOBM port, as opposed to the OOBM function).
G-10 Network Out-of-Band Management (OOBM) Tasks OOBM IPv4 address configuration Configuring an IPv4 add ress for the OOBM interface is simi lar to VLAN IP address configuratio n, but it is a ccomplished wit hin the OOBM context.
G-11 Network Out-of-Band Management (OOBM) Tasks OOBM Show Commands The show commands for OOBM are similar to the analogous commands for the data plane. Note that you must always include the oobm parameter to see the informati on for the OOBM inte rfac e, regardless of the context.
G-12 Network Out-of-Band Management (OOBM) Tasks Show OOBM IP configuration Use show oobm ip to se e the IP configuration of the OOBM interfac e. Show OOBM ARP information Use show oobm arp to see the ARP table entr ies for the OOBM interfa ce. Syntax: sho w oobm ip Summarizes the IP configuration of the OOBM interface.
G-13 Network Out-of-Band Management (OOBM) Tasks Application Server Commands Application server s (as described in OOBM and Server Applications in the Concepts section above) have a dded a listen keyword with oobm|data|both options to specify which i nterface(s) is(are) active.
G-14 Network Out-of-Band Management (OOBM) Tasks The show servers command shows the listen mode of the servers. ProCurve# show servers Server listen mode Server Listen mode ---------------------------.
G-15 Network Out-of-Band Management (OOBM) Tasks Application Client Commands CLI commands for client applications have added t he oobm keyword to allow you to specify that the outgoing reques t be issued from t h e OOBM interface. If you do not spe cify the oobm keyword, the requ est will be issu ed from th e appropriate in-band data in terface.
G-16 Network Out-of-Band Management (OOBM) Tasks Example This example shows setup and use of network OOBM using the commands described above. Assume that th e figure below describe s how you want to set up your data center .
G-17 Network Out-of-Band Management (OOBM) Tasks Switch 41# config Switch 41(config)# vlan 1 Switch 41(vlan-1)# ip address 10.1.129.7/20 Set up IP address on data network. Switch 41(vlan-1)# end Exit back to manager contex t . Switch 41# show oobm Look at default OO BM configuration.
Index – 1 Index Symbols => prompt …C - 7 7 Numerics 802.1X effect, LLDP … 13-76 LLDP blocked … 13-44 802.1X access control authentication fa ilure, SNMP notification … 13-27 SNMP notifica.
2 – Index broadcast storm … 11-3, C-16 broadcast traffic IPX … 10-5, 10-19 RIP … 10-5, 10-19 browser interface See web browser interface. C CDP … 13-77, 13-78, 1 3-79, 13-80, 13-82 Classifie.
Index – 3 policy, override … 6-32 power cycle … 6-31 primary boot path … 6-29 reboot policy options … 6-26 reboot policy, override … 6 -30 reboot process … 6-27 reload … 6-32 rename co.
4 – Index See also gate way. default settings auto-TFTP, disabled …A - 1 1 banner … 2-9, 2-13 baud rate, spee d sense …7 - 3 boot flash, primary …6 - 1 9 configuration file name, switch.
Index – 5 server address, DHCP not used … C-86 server IP address … C-80, C-86 server-address co nfiguration … C-82 three entries supported … C-82 three server entries supported … C-82 trac.
6 – Index H Help for CLI … 1-7, 4-11 for menu interface … 1-6, 3-9, 3-11 for web browser interface … 1-7, 5-13 online, inoperable … 5-13 hop, router …8 - 1 0 HP Auto-MDIX feature … 10-19 web browser interface … 2 -6 I IDM resource usage … E-2 resources … E-3 IDS …B - 2 5 IEEE 802.
Index – 7 L LACP 802.1X not allowed … 11-22 active … 11-15 blocked ports … 11-23 CLI access … 11-11 default port operation … 11-21 described … 11-6, 11-18 Dyn1 … 11-7 dynamic … 11-19.
8 – Index packet time-to-live … 13-42 packet-forwarding … 1 3-39, 13-75 packets not forwarded … 13-38 per-port counters … 13-74 port description … 13-53 port ID … 13-52 port speed … 13.
Index – 9 configuration, display … 10-21 operation … 10-19 port mode, display … 10-21 media type, port trunk … 11-3 memory flash … 3-10, 6-3 startup configuration … 3-10 menu inter face configuration changes, saving … 3-10 moving to or from the CLI … 4-7 See also console.
10 – Index using MAC addresses … B-26 VLAN … B-31 VLAN rule, exit port … B-47 VLAN tag, frame size … B-43 VLAN tagging … B-45 Web interface … B-28 Web limits … B-29 MLTS …1 3 - 3 8 m.
Index – 11 displaying resource usage … E-2 poll interval See TimeP. port address table … B-14 blocked by UDLD … 10-32 broadcast limit … 10-18 CLI access … 10-8 configuration … 10-1 confi.
12 – Index ProCurve Manager security concerns when deleting public community … 13-6 starting web browser … 5-4 updating switch software … A-24 using Java-enabled browser … 5-5 ProCurve, HP, .
Index – 13 username and password … 5-8 web browser access, RADIUS … 5-8 Self Test LED behavior during factory default reset … C-77 serial number …B - 6 setmib, delay interval … 13-48 setmi.
14 – Index selecting … 9-3 server priority … 9-14 show management … 9-9 unicast mode … 9-3, 9-11 unicast time polling … 9-25 unicast, deleting addresses … 9-26 unicast, replacing servers … 9-26 viewing … 9-4, 9-8 software See switch software.
Index – 15 task monitor …B - 8 taskusage -d …B - 8 taskUsageShow …B - 8 Telnet connecting to switch … 3-4 enable/disable … 7-4 outbound … 7-6 terminate session, kill command … 7-11 tro.
16 – Index approaches … C-5 browsing the configuration file … C-65 configuring debug destinations … C-38 console access problems … C-7 diagnosing unusual networ k activity … C-9 diagnostics tools … C-56 displaying switch operation … C-65, C-68 DNS See DNS.
Index – 17 ID … 4-15 IP addres sing with multiple … 8-4 jumbo max frame si ze … 12-7 link blocke d … C-16 MAC address … D-2, D-5 mana gement and ju mbo fra mes … 12 -9 managem ent VLAN, .
ProCurve 5400zl Switches Installation and *5992-5523* T echnology for bet ter business outcomes T o learn mo re , vi sit w w w .hp.com/go/bladesy stem/ documentation/ © Cop yri ght 2009 Hewle tt-P ack ard De velopment C ompan y , L.P . The inf ormati on contained here in is subject to change w ithout notice .
デバイスHP (Hewlett-Packard) 6120の購入後に(又は購入する前であっても)重要なポイントは、説明書をよく読むことです。その単純な理由はいくつかあります:
HP (Hewlett-Packard) 6120をまだ購入していないなら、この製品の基本情報を理解する良い機会です。まずは上にある説明書の最初のページをご覧ください。そこにはHP (Hewlett-Packard) 6120の技術情報の概要が記載されているはずです。デバイスがあなたのニーズを満たすかどうかは、ここで確認しましょう。HP (Hewlett-Packard) 6120の取扱説明書の次のページをよく読むことにより、製品の全機能やその取り扱いに関する情報を知ることができます。HP (Hewlett-Packard) 6120で得られた情報は、きっとあなたの購入の決断を手助けしてくれることでしょう。
HP (Hewlett-Packard) 6120を既にお持ちだが、まだ読んでいない場合は、上記の理由によりそれを行うべきです。そうすることにより機能を適切に使用しているか、又はHP (Hewlett-Packard) 6120の不適切な取り扱いによりその寿命を短くする危険を犯していないかどうかを知ることができます。
ですが、ユーザガイドが果たす重要な役割の一つは、HP (Hewlett-Packard) 6120に関する問題の解決を支援することです。そこにはほとんどの場合、トラブルシューティング、すなわちHP (Hewlett-Packard) 6120デバイスで最もよく起こりうる故障・不良とそれらの対処法についてのアドバイスを見つけることができるはずです。たとえ問題を解決できなかった場合でも、説明書にはカスタマー・サービスセンター又は最寄りのサービスセンターへの問い合わせ先等、次の対処法についての指示があるはずです。