Software Configuration Guide
Page 5
...and Default Gateway 4-1 Understanding the Boot Process 4-1 Assigning Switch Information 4-2 Default Switch Information 4-3 Understanding DHCP-Based Autoconfiguration 4-3 DHCP Client Request Process 4-4 Configuring DHCP-Based Autoconfiguration 4-4 Configuring the DHCP Server 4-5 Configuring the TFTP Server 4-5 Configuring the DNS 4-6 Configuring the Relay Device 4-6 Obtaining Configuration Files 4-7 Example Configuration 4-8 Manually... Image 4-16 Configuring a Scheduled Reload 4-16 Displaying Scheduled Reload Information 4-17 78-16156-01 Catalyst 3560 Switch Software Configuration Guide v
...and Default Gateway 4-1 Understanding the Boot Process 4-1 Assigning Switch Information 4-2 Default Switch Information 4-3 Understanding DHCP-Based Autoconfiguration 4-3 DHCP Client Request Process 4-4 Configuring DHCP-Based Autoconfiguration 4-4 Configuring the DHCP Server 4-5 Configuring the TFTP Server 4-5 Configuring the DNS 4-6 Configuring the Relay Device 4-6 Obtaining Configuration Files 4-7 Example Configuration 4-8 Manually... Image 4-16 Configuring a Scheduled Reload 4-16 Displaying Scheduled Reload Information 4-17 78-16156-01 Catalyst 3560 Switch Software Configuration Guide v
Software Configuration Guide
Page 42
..., including IP address requests, from an external source • Cisco IOS File System (IFS) for providing a single interface to all switches from DHCP clients • DHCP server for multiple CLI-based sessions over the network • In-...server for identifying a switch through CMS over a Netscape Communicator or Microsoft Internet Explorer browser session • In-band management access for up to 16 simultaneous Telnet connections for multiple CLI-based sessions over the network (requires the cryptographic [that is, supports encryption] versions of the SMI and EMI) Catalyst 3560...
..., including IP address requests, from an external source • Cisco IOS File System (IFS) for providing a single interface to all switches from DHCP clients • DHCP server for multiple CLI-based sessions over the network • In-...server for identifying a switch through CMS over a Netscape Communicator or Microsoft Internet Explorer browser session • In-band management access for up to 16 simultaneous Telnet connections for multiple CLI-based sessions over the network (requires the cryptographic [that is, supports encryption] versions of the SMI and EMI) Catalyst 3560...
Software Configuration Guide
Page 44
... switch CPU continues to a specified VLAN - 802.1X with port security for managing network security through a TACACS server Catalyst 3560 Switch Software Configuration Guide 1-6 78-16156-01 Note The Kerberos feature listed in this feature enabled, no user traffic... maps) for providing intra-VLAN security by filtering traffic based on a link between untrusted hosts and DHCP servers • IEEE 802.1X port-based authentication to prevent unauthorized devices (clients) from Cisco IP Phones • VLAN1 minimization for network moves, adds, and changes; Features Chapter 1 Overview ...
... switch CPU continues to a specified VLAN - 802.1X with port security for managing network security through a TACACS server Catalyst 3560 Switch Software Configuration Guide 1-6 78-16156-01 Note The Kerberos feature listed in this feature enabled, no user traffic... maps) for providing intra-VLAN security by filtering traffic based on a link between untrusted hosts and DHCP servers • IEEE 802.1X port-based authentication to prevent unauthorized devices (clients) from Cisco IP Phones • VLAN1 minimization for network moves, adds, and changes; Features Chapter 1 Overview ...
Software Configuration Guide
Page 48
..." Chapter 22, "Configuring UDLD" Chapter 23, "Configuring SPAN and RSPAN" 1-10 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 Default Settings After Initial Switch Configuration Chapter 1 Overview ... mode Interface speed and duplex mode Auto-MDIX Flow control Power over Ethernet (PoE) SmartPort macros Default Setting Layer 2 (switchport) Autonegotiate Disabled Off Auto None ... features VLAN 1 Dynamic auto (DTP) Negotiate Server 1 Disabled PVST+ enabled on VLAN 1 Disabled Disabled DHCP snooping DHCP snooping DHCP snooping information option IGMP snooping IGMP snooping IGMP ...
..." Chapter 22, "Configuring UDLD" Chapter 23, "Configuring SPAN and RSPAN" 1-10 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 Default Settings After Initial Switch Configuration Chapter 1 Overview ... mode Interface speed and duplex mode Auto-MDIX Flow control Power over Ethernet (PoE) SmartPort macros Default Setting Layer 2 (switchport) Autonegotiate Disabled Off Auto None ... features VLAN 1 Dynamic auto (DTP) Negotiate Server 1 Disabled PVST+ enabled on VLAN 1 Disabled Disabled DHCP snooping DHCP snooping DHCP snooping information option IGMP snooping IGMP snooping IGMP ...
Software Configuration Guide
Page 82
...control of the CPU, the boot loader is configured. For more information about the setup program, refer to the release notes on Cisco.com. For more information, see the "Recovering from Corrupted Software By Using the XMODEM Protocol" section on page 8-5. For more ... configure a host name and an enable secret password. Catalyst 3560 Switch Software Configuration Guide 4-2 78-16156-01 Note You can assign IP information through the switch setup program, through a Dynamic Host Configuration Protocol (DHCP) server, or manually. With this program, you can assign switch information...
...control of the CPU, the boot loader is configured. For more information about the setup program, refer to the release notes on Cisco.com. For more information, see the "Recovering from Corrupted Software By Using the XMODEM Protocol" section on page 8-5. For more ... configure a host name and an enable secret password. Catalyst 3560 Switch Software Configuration Guide 4-2 78-16156-01 Note You can assign IP information through the switch setup program, through a Dynamic Host Configuration Protocol (DHCP) server, or manually. With this program, you can assign switch information...
Software Configuration Guide
Page 83
... traffic between two directly connected LANs. No password is built on your switch. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-3 This protocol consists of two components: one for delivering configuration parameters from a DHCP server to devices. A router does not forward broadcast packets, but it forwards packets based on the network, you...
... traffic between two directly connected LANs. No password is built on your switch. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-3 This protocol consists of two components: one for delivering configuration parameters from a DHCP server to devices. A router does not forward broadcast packets, but it forwards packets based on the network, you...
Software Configuration Guide
Page 84
..., DNS IP address, a lease for the offered configuration information to configure DHCP-based autoconfiguration. • Configuring the DHCP Server, page 4-5 • Configuring the TFTP Server, page 4-5 • Configuring the DNS, page 4-6 Catalyst 3560 Switch Software Configuration Guide 4-4 78-16156-01 The offer from a DHCP server when the configuration file is allocated to the client in responding to...
..., DNS IP address, a lease for the offered configuration information to configure DHCP-based autoconfiguration. • Configuring the DHCP Server, page 4-5 • Configuring the TFTP Server, page 4-5 • Configuring the DNS, page 4-6 Catalyst 3560 Switch Software Configuration Guide 4-4 78-16156-01 The offer from a DHCP server when the configuration file is allocated to the client in responding to...
Software Configuration Guide
Page 85
...filename (if any) and 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-5 You should configure a DHCP relay. If the router IP address or TFTP server name are configured. If you do not configure the DHCP server or the DHCP server feature running on a different LAN than the switch.... send broadcast, instead of other lease options does not affect autoconfiguration. For more configuration files from the specified TFTP server. By default, the Cisco IOS DHCP server and relay agent features are bound to each switch by the switch) (required) If you want the switch to...
...filename (if any) and 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-5 You should configure a DHCP relay. If the router IP address or TFTP server name are configured. If you do not configure the DHCP server or the DHCP server feature running on a different LAN than the switch.... send broadcast, instead of other lease options does not affect autoconfiguration. For more configuration files from the specified TFTP server. By default, the Cisco IOS DHCP server and relay agent features are bound to each switch by the switch) (required) If you want the switch to...
Software Configuration Guide
Page 86
...must be able to access it through the broadcast address (which occurs if the DHCP server response does not contain all the required information described earlier), a relay must configure...Cisco router, enable IP routing (ip routing global configuration command), and configure helper addresses by the switch through a router. If it is to be used include the specified TFTP server ...helper-address 10.0.0.1 Catalyst 3560 Switch Software Configuration Guide 4-6 78-16156-01 The TFTP server contains the configuration files for the switch. If the TFTP server to be accessed by ...
...must be able to access it through the broadcast address (which occurs if the DHCP server response does not contain all the required information described earlier), a relay must configure...Cisco router, enable IP routing (ip routing global configuration command), and configure helper addresses by the switch through a router. If it is to be used include the specified TFTP server ...helper-address 10.0.0.1 Catalyst 3560 Switch Software Configuration Guide 4-6 78-16156-01 The TFTP server contains the configuration files for the switch. If the TFTP server to be accessed by ...
Software Configuration Guide
Page 87
... uses the host name in the DHCP reply. The switch sends a broadcast message to a TFTP server to -IP-address mapping for the switch. The switch receives its host name. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-7 If ...and the configuration filename is not provided in the DHCP reply. The configuration filename is not specified in Autoconfiguration Switch (DHCP client) Cisco router (Relay) 10.0.0.1 10.0.0.2 20.0.0.1 20.0.0.2 20.0.0.3 20.0.0.4 49068 DHCP server TFTP server DNS server Obtaining Configuration Files Depending on your switch. The...
... uses the host name in the DHCP reply. The switch sends a broadcast message to a TFTP server to -IP-address mapping for the switch. The switch receives its host name. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-7 If ...and the configuration filename is not provided in the DHCP reply. The configuration filename is not specified in Autoconfiguration Switch (DHCP client) Cisco router (Relay) 10.0.0.1 10.0.0.2 20.0.0.1 20.0.0.2 20.0.0.3 20.0.0.4 49068 DHCP server TFTP server DNS server Obtaining Configuration Files Depending on your switch. The...
Software Configuration Guide
Page 88
...00e0.9f1e.2003 00e0.9f1e.2004 Cisco router 10.0.0.10 10.0.0.1 10.0.0.2 10.0.0.3 101401 DHCP server DNS server TFTP server (maritsu) Table 4-2 shows the configuration of the host is not obtained from the DHCP replies, if all attempts to eight characters. Table 4-2 DHCP Server Configuration Binding key (hardware address)... switchc Switch D 00e0.9f1e.2004 10.0.0.24 255.255.255.0 10.0.0.10 10.0.0.2 maritsu or 10.0.0.3 switchd-confg switchd Catalyst 3560 Switch Software Configuration Guide 4-8 78-16156-01 If the switch cannot read the router-confg file, it reads the router-confg ...
...00e0.9f1e.2003 00e0.9f1e.2004 Cisco router 10.0.0.10 10.0.0.1 10.0.0.2 10.0.0.3 101401 DHCP server DNS server TFTP server (maritsu) Table 4-2 shows the configuration of the host is not obtained from the DHCP replies, if all attempts to eight characters. Table 4-2 DHCP Server Configuration Binding key (hardware address)... switchc Switch D 00e0.9f1e.2004 10.0.0.24 255.255.255.0 10.0.0.10 10.0.0.2 maritsu or 10.0.0.3 switchd-confg switchd Catalyst 3560 Switch Software Configuration Guide 4-8 78-16156-01 If the switch cannot read the router-confg file, it reads the router-confg ...
Software Configuration Guide
Page 89
...IP Information Beginning in privileged EXEC mode, follow these steps to manually assign IP information to global configuration mode. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-9 Return to multiple switched virtual interfaces (SVIs) or ports: Step 1 Step 2 Command configure terminal interface ...to which the IP information is present on UNIX) The TFTP server base directory is set to its configuration file as shown in the DHCP server reply, Switch A reads the network-confg file from the TFTP server. do not enter leading zeros. This directory contains the network...
...IP Information Beginning in privileged EXEC mode, follow these steps to manually assign IP information to global configuration mode. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 4-9 Return to multiple switched virtual interfaces (SVIs) or ports: Step 1 Step 2 Command configure terminal interface ...to which the IP information is present on UNIX) The TFTP server base directory is set to its configuration file as shown in the DHCP server reply, Switch A reads the network-confg file from the TFTP server. do not enter leading zeros. This directory contains the network...
Software Configuration Guide
Page 139
... mode, follow these steps to set by the BOOTP or DHCP server (if the servers were configured with this information). Separate each server address with devices in the configuration file. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 6-17 If that separates an unqualified... name from a BOOTP or Dynamic Host Configuration Protocol (DHCP) server, then the default domain name might be set up to use the DNS: Step 1 Step 2 ...
... mode, follow these steps to set by the BOOTP or DHCP server (if the servers were configured with this information). Separate each server address with devices in the configuration file. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 6-17 If that separates an unqualified... name from a BOOTP or Dynamic Host Configuration Protocol (DHCP) server, then the default domain name might be set up to use the DNS: Step 1 Step 2 ...
Software Configuration Guide
Page 363
... for the commands used in the Cisco IOS IP and IP Routing Command Reference for Release 12.1. 18 C H A P T E R Configuring DHCP Features This chapter describes how to hosts; This chapter consists of IP addresses. DHCP also helps conserve the limited IP ...connected to differentiate between untrusted hosts and DHCP servers. It also gives you a way to the DHCP server or another switch. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 18-1 An untrusted message is received from a centralized server, which significantly reduces the overhead of administration...
... for the commands used in the Cisco IOS IP and IP Routing Command Reference for Release 12.1. 18 C H A P T E R Configuring DHCP Features This chapter describes how to hosts; This chapter consists of IP addresses. DHCP also helps conserve the limited IP ...connected to differentiate between untrusted hosts and DHCP servers. It also gives you a way to the DHCP server or another switch. 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 18-1 An untrusted message is received from a centralized server, which significantly reduces the overhead of administration...
Software Configuration Guide
Page 364
Multiple hosts on the subscriber LAN can be assigned to the DHCP client that sent the DHCP request. 18-2 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 The option-82 information contains the switch MAC address (the ...was relayed to transfer DHCP messages between the clients and the server. Understanding DHCP Features Chapter 18 Configuring DHCP Features Option-82 Data Insertion In residential, metropolitan Ethernet-access environments, DHCP can be connected to the DHCP server. • The DHCP server receives the packet. When the DHCP option-82 feature is...
Multiple hosts on the subscriber LAN can be assigned to the DHCP client that sent the DHCP request. 18-2 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 The option-82 information contains the switch MAC address (the ...was relayed to transfer DHCP messages between the clients and the server. Understanding DHCP Features Chapter 18 Configuring DHCP Features Option-82 Data Insertion In residential, metropolitan Ethernet-access environments, DHCP can be connected to the DHCP server. • The DHCP server receives the packet. When the DHCP option-82 feature is...
Software Configuration Guide
Page 365
...-1 Default DHCP Configuration Feature DHCP snooping enabled globally DHCP snooping information option DHCP snooping limit rate DHCP snooping trust DHCP snooping VLAN Default Setting Disabled Enabled None configured Untrusted Disabled DHCP Snooping Configuration Guidelines These are not available until snooping is a Cisco device, refer to configure the device that shipped with the server. 78-16156-01 Catalyst 3560 Switch Software...
...-1 Default DHCP Configuration Feature DHCP snooping enabled globally DHCP snooping information option DHCP snooping limit rate DHCP snooping trust DHCP snooping VLAN Default Setting Disabled Enabled None configured Untrusted Disabled DHCP Snooping Configuration Guidelines These are not available until snooping is a Cisco device, refer to configure the device that shipped with the server. 78-16156-01 Catalyst 3560 Switch Software...
Software Configuration Guide
Page 366
... Enter global configuration mode. Step 4 ip dhcp snooping information option Enable the switch to the DHCP server. Step 8 end Return to untrusted interfaces. To disable the insertion and removal of VLANs. Step 6 ip dhcp snooping trust (Optional) Configure the interface as...To disable DHCP snooping on a port: Switch(config)# ip dhcp snooping Switch(config)# ip dhcp snooping vlan 10 Switch(config)# ip dhcp snooping information option Switch(config)# interface gigabitethernet0/1 Switch(config-if)# ip dhcp snooping limit rate 100 18-4 Catalyst 3560 Switch Software ...
... Enter global configuration mode. Step 4 ip dhcp snooping information option Enable the switch to the DHCP server. Step 8 end Return to untrusted interfaces. To disable the insertion and removal of VLANs. Step 6 ip dhcp snooping trust (Optional) Configure the interface as...To disable DHCP snooping on a port: Switch(config)# ip dhcp snooping Switch(config)# ip dhcp snooping vlan 10 Switch(config)# ip dhcp snooping information option Switch(config)# interface gigabitethernet0/1 Switch(config-if)# ip dhcp snooping limit rate 100 18-4 Catalyst 3560 Switch Software ...
Software Configuration Guide
Page 367
... a Binding Table The DHCP snooping binding table for each interconnected switch has its own DHCP snooping binding table. This example shows how to the DHCP client host 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 18-5 dynamic binding learned by DHCP snooping or statically configured ...Field MAC Address IP Address Lease (seconds) Type VLAN Interface Description Client hardware MAC address Client IP address assigned from the DHCP server IP address lease time Binding type; The table does not have information about hosts interconnected with a trusted port because each ...
... a Binding Table The DHCP snooping binding table for each interconnected switch has its own DHCP snooping binding table. This example shows how to the DHCP client host 78-16156-01 Catalyst 3560 Switch Software Configuration Guide 18-5 dynamic binding learned by DHCP snooping or statically configured ...Field MAC Address IP Address Lease (seconds) Type VLAN Interface Description Client hardware MAC address Client IP address assigned from the DHCP server IP address lease time Binding type; The table does not have information about hosts interconnected with a trusted port because each ...
Software Configuration Guide
Page 382
DHCP assigns an IP address to the set -top box or PC sends an IGMP report ...from the multicast VLAN are called MVR source ports. Figure 19-3 Multicast VLAN Registration Example Multicast VLAN Cisco router Switch B SP SP SP Multicast server SP SP SP1 Multicast data SP SP2 Multicast data Switch A RP1 RP2 RP3 RP4 RP5 RP6 ...RP = Receiver Port SP = Source Port TV Note: All source ports belong to the multicast VLAN. 19-14 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 Understanding Multicast VLAN Registration Chapter 19 Configuring IGMP Snooping and MVR Using MVR in ...
DHCP assigns an IP address to the set -top box or PC sends an IGMP report ...from the multicast VLAN are called MVR source ports. Figure 19-3 Multicast VLAN Registration Example Multicast VLAN Cisco router Switch B SP SP SP Multicast server SP SP SP1 Multicast data SP SP2 Multicast data Switch A RP1 RP2 RP3 RP4 RP5 RP6 ...RP = Receiver Port SP = Source Port TV Note: All source ports belong to the multicast VLAN. 19-14 Catalyst 3560 Switch Software Configuration Guide 78-16156-01 Understanding Multicast VLAN Registration Chapter 19 Configuring IGMP Snooping and MVR Using MVR in ...
Software Configuration Guide
Page 858
Index configuration files (continued) limiting TFTP server access 26-15 obtaining with DHCP 4-7 password recovery disable considerations 8-5 specifying the filename 4-12 system contact and location information 26-14 types and ...commands 2-4 default configuration 802.1X 9-10 auto-QoS 28-18 banners 6-18 BGP 30-45 booting 4-12 CDP 21-2 DHCP 18-3 DNS 6-17 EIGRP 30-38 EtherChannel 29-9 fallback bridging 34-3 HSRP 31-4 IGMP 32-26 IGMP filtering 19-... switch information 4-3 IP addressing, IP routing 30-4 IP multicast routing 32-8 IN-8 Catalyst 3560 Switch Software Configuration Guide 78-16156-01
Index configuration files (continued) limiting TFTP server access 26-15 obtaining with DHCP 4-7 password recovery disable considerations 8-5 specifying the filename 4-12 system contact and location information 26-14 types and ...commands 2-4 default configuration 802.1X 9-10 auto-QoS 28-18 banners 6-18 BGP 30-45 booting 4-12 CDP 21-2 DHCP 18-3 DNS 6-17 EIGRP 30-38 EtherChannel 29-9 fallback bridging 34-3 HSRP 31-4 IGMP 32-26 IGMP filtering 19-... switch information 4-3 IP addressing, IP routing 30-4 IP multicast routing 32-8 IN-8 Catalyst 3560 Switch Software Configuration Guide 78-16156-01