Software Guide
Page 1
Cisco ME 3400 Ethernet Access Switch Software Configuration Guide Cisco IOS Release 12.2(25)EX November 2005 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-7817058= Text Part Number: 78-17058-01
Cisco ME 3400 Ethernet Access Switch Software Configuration Guide Cisco IOS Release 12.2(25)EX November 2005 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: DOC-7817058= Text Part Number: 78-17058-01
Software Guide
Page 5
... Agents 4-5 Initial Configuration 4-5 Incremental (Partial) Configuration 4-6 Synchronized Configuration 4-6 Configuring Cisco IOS Agents 4-6 Enabling Automated CNS Configuration 4-6 Enabling the CNS Event Agent 4-8 Enabling the Cisco IOS CNS Agent 4-9 Enabling an Initial Configuration 4-9 Enabling a Partial Configuration 4-11 Displaying CNS Configuration 4-12 Administering the Switch 5-1 Managing the System Time and Date 5-1 Understanding the System Clock 5-2 Understanding...
... Agents 4-5 Initial Configuration 4-5 Incremental (Partial) Configuration 4-6 Synchronized Configuration 4-6 Configuring Cisco IOS Agents 4-6 Enabling Automated CNS Configuration 4-6 Enabling the CNS Event Agent 4-8 Enabling the Cisco IOS CNS Agent 4-9 Enabling an Initial Configuration 4-9 Enabling a Partial Configuration 4-11 Displaying CNS Configuration 4-12 Administering the Switch 5-1 Managing the System Time and Date 5-1 Understanding the System Clock 5-2 Understanding...
Software Guide
Page 6
... 5-10 Displaying the NTP Configuration 5-11 Configuring Time and Date Manually 5-11 Setting the System Clock 5-11 Displaying the Time and Date Configuration 5-12 Configuring the Time Zone 5-12 Configuring Summer Time (Daylight Saving Time) 5-13 Configuring a System Name and Prompt 5-14 Default System Name and Prompt Configuration 5-15 Configuring a ...5-24 Configuring Unicast MAC Address Filtering 5-25 Disabling MAC Address Learning on a VLAN 5-26 Displaying Address Table Entries 5-28 Managing the ARP Table 5-28 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vi 78-17058-01
... 5-10 Displaying the NTP Configuration 5-11 Configuring Time and Date Manually 5-11 Setting the System Clock 5-11 Displaying the Time and Date Configuration 5-12 Configuring the Time Zone 5-12 Configuring Summer Time (Daylight Saving Time) 5-13 Configuring a System Name and Prompt 5-14 Default System Name and Prompt Configuration 5-15 Configuring a ...5-24 Configuring Unicast MAC Address Filtering 5-25 Disabling MAC Address Learning on a VLAN 5-26 Displaying Address Table Entries 5-28 Managing the ARP Table 5-28 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vi 78-17058-01
Software Guide
Page 7
...Default Privilege Level for Lines 7-9 Logging into and Exiting a Privilege Level 7-10 Controlling Switch Access with TACACS+ 7-10 Understanding TACACS+ 7-10 TACACS+ Operation 7-12 Configuring TACACS+ 7-13 Default TACACS+ Configuration 7-13 Identifying the TACACS+ Server Host and Setting the Authentication Key 7-13 Configuring TACACS+ Login Authentication 7-14 Configuring... 7-17 Displaying the TACACS+ Configuration 7-17 Controlling Switch Access with RADIUS 7-18 Understanding RADIUS 7-18 RADIUS Operation 7-19 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vii
...Default Privilege Level for Lines 7-9 Logging into and Exiting a Privilege Level 7-10 Controlling Switch Access with TACACS+ 7-10 Understanding TACACS+ 7-10 TACACS+ Operation 7-12 Configuring TACACS+ 7-13 Default TACACS+ Configuration 7-13 Identifying the TACACS+ Server Host and Setting the Authentication Key 7-13 Configuring TACACS+ Login Authentication 7-14 Configuring... 7-17 Displaying the TACACS+ Configuration 7-17 Controlling Switch Access with RADIUS 7-18 Understanding RADIUS 7-18 RADIUS Operation 7-19 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide vii
Software Guide
Page 9
... 8-9 IEEE 802.1x Configuration Guidelines 8-10 Configuring IEEE 802.1x Authentication 8-11 Configuring the Switch-to-RADIUS-Server Communication 8-12 Configuring Periodic Re-Authentication 8-13 Manually Re-Authenticating a Client Connected to a Port 8-14 Changing the Quiet Period 8-14 ... a Range of Interfaces 9-8 Configuring and Using Interface Range Macros 9-10 Configuring Ethernet Interfaces 9-11 Default Ethernet Interface Configuration 9-12 Configuring User Network and Network Node Interfaces 9-13 Configuring Interface Speed and Duplex Mode 9-14 Speed and Duplex Configuration Guidelines 9-...
... 8-9 IEEE 802.1x Configuration Guidelines 8-10 Configuring IEEE 802.1x Authentication 8-11 Configuring the Switch-to-RADIUS-Server Communication 8-12 Configuring Periodic Re-Authentication 8-13 Manually Re-Authenticating a Client Connected to a Port 8-14 Changing the Quiet Period 8-14 ... a Range of Interfaces 9-8 Configuring and Using Interface Range Macros 9-10 Configuring Ethernet Interfaces 9-11 Default Ethernet Interface Configuration 9-12 Configuring User Network and Network Node Interfaces 9-13 Configuring Interface Speed and Duplex Mode 9-14 Speed and Duplex Configuration Guidelines 9-...
Software Guide
Page 10
... Static-Access Ports to a VLAN 11-10 Creating an Extended-Range VLAN with an Internal VLAN ID 11-11 Configuring UNI VLANs 11-12 Configuration Guidelines 11-12 Configuring UNI VLANs 11-13 Displaying VLANs 11-14 Configuring VLAN Trunks 11-14 Trunking Overview 11-14 IEEE 802.1Q Configuration Considerations 11...
... Static-Access Ports to a VLAN 11-10 Creating an Extended-Range VLAN with an Internal VLAN ID 11-11 Configuring UNI VLANs 11-12 Configuration Guidelines 11-12 Configuring UNI VLANs 11-13 Displaying VLANs 11-14 Configuring VLAN Trunks 11-14 Trunking Overview 11-14 IEEE 802.1Q Configuration Considerations 11...
Software Guide
Page 11
..., Broadcast, and Multicast Traffic 12-5 Private VLANs and SVIs 12-5 Configuring Private VLANs 12-5 Tasks for Configuring Private VLANs 12-6 Default Private-VLAN Configuration 12-6 Private-VLAN Configuration Guidelines 12-6 Secondary and Primary VLAN Configuration 12-7 Private-VLAN Port Configuration 12-8 Limitations with Other Features 12-9 Configuring and Associating VLANs in a Private VLAN 12-10 Cisco ME 3400 Ethernet Access Switch...
..., Broadcast, and Multicast Traffic 12-5 Private VLANs and SVIs 12-5 Configuring Private VLANs 12-5 Tasks for Configuring Private VLANs 12-6 Default Private-VLAN Configuration 12-6 Private-VLAN Configuration Guidelines 12-6 Secondary and Primary VLAN Configuration 12-7 Private-VLAN Port Configuration 12-8 Limitations with Other Features 12-9 Configuring and Associating VLANs in a Private VLAN 12-10 Cisco ME 3400 Ethernet Access Switch...
Software Guide
Page 12
... 2 Protocol Tunneling 13-10 Default Layer 2 Protocol Tunneling Configuration 13-11 Layer 2 Protocol Tunneling Configuration Guidelines 13-11 Configuring Layer 2 Protocol Tunneling 13-12 Configuring Layer 2 Tunneling for EtherChannels 13-14 Configuring the SP Edge Switch 13-14 Configuring the Customer Switch 13-15 Monitoring and Maintaining Tunneling Status... Switch or Root Port 14-7 Spanning Tree and Redundant Connectivity 14-8 Spanning-Tree Address Management 14-8 Accelerated Aging to Retain Connectivity 14-9 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xii 78-17058-01
... 2 Protocol Tunneling 13-10 Default Layer 2 Protocol Tunneling Configuration 13-11 Layer 2 Protocol Tunneling Configuration Guidelines 13-11 Configuring Layer 2 Protocol Tunneling 13-12 Configuring Layer 2 Tunneling for EtherChannels 13-14 Configuring the SP Edge Switch 13-14 Configuring the Customer Switch 13-15 Monitoring and Maintaining Tunneling Status... Switch or Root Port 14-7 Spanning Tree and Redundant Connectivity 14-8 Spanning-Tree Address Management 14-8 Accelerated Aging to Retain Connectivity 14-9 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xii 78-17058-01
Software Guide
Page 13
... STP and IEEE 802.1Q Trunks 14-10 Configuring Spanning-Tree Features 14-11 Default Spanning-Tree Configuration 14-11 Spanning-Tree Configuration Guidelines 14-12 Changing the Spanning-Tree Mode. 14-13 Disabling Spanning Tree 14-14 Configuring the Root Switch 14-14 Configuring a Secondary Root Switch 14-16 Configuring... Unit Format and Processing 15-9 Processing Superior BPDU Information 15-10 Processing Inferior BPDU Information 15-10 Topology Changes 15-10 Contents 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xiii
... STP and IEEE 802.1Q Trunks 14-10 Configuring Spanning-Tree Features 14-11 Default Spanning-Tree Configuration 14-11 Spanning-Tree Configuration Guidelines 14-12 Changing the Spanning-Tree Mode. 14-13 Disabling Spanning Tree 14-14 Configuring the Root Switch 14-14 Configuring a Secondary Root Switch 14-16 Configuring... Unit Format and Processing 15-9 Processing Superior BPDU Information 15-10 Processing Inferior BPDU Information 15-10 Topology Changes 15-10 Contents 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xiii
Software Guide
Page 14
Contents 16 C H A P T E R Configuring MSTP Features 15-11 Default MSTP Configuration 15-12 MSTP Configuration Guidelines 15-12 Specifying the MST Region Configuration and Enabling MSTP 15-13 Configuring the Root Switch 15-14 Configuring a Secondary Root Switch 15-16 Configuring Port Priority ... Guard 16-6 Enabling BPDU Filtering 16-7 Enabling EtherChannel Guard 16-8 Enabling Root Guard 16-9 Enabling Loop Guard 16-9 Displaying the Spanning-Tree Status 16-10 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xiv 78-17058-01
Contents 16 C H A P T E R Configuring MSTP Features 15-11 Default MSTP Configuration 15-12 MSTP Configuration Guidelines 15-12 Specifying the MST Region Configuration and Enabling MSTP 15-13 Configuring the Root Switch 15-14 Configuring a Secondary Root Switch 15-16 Configuring Port Priority ... Guard 16-6 Enabling BPDU Filtering 16-7 Enabling EtherChannel Guard 16-8 Enabling Root Guard 16-9 Enabling Loop Guard 16-9 Displaying the Spanning-Tree Status 16-10 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xiv 78-17058-01
Software Guide
Page 16
... DHCP Environments 19-7 Configuring ARP ACLs for Non-DHCP Environments 19-8 Limiting the Rate of Incoming ARP Packets 19-10 Performing Validation Checks 19-12 Configuring the Log Buffer 19-13 Displaying Dynamic ARP Inspection Information 19-14 Configuring IGMP Snooping and MVR 20-1 Understanding IGMP Snooping 20-1 IGMP ... Controlling the Multicast Flooding Time After a TCN Event 20-11 Recovering from Flood Mode 20-11 Disabling Multicast Flooding During a TCN Event 20-12 Configuring the IGMP Snooping Querier 20-13 Disabling IGMP Report Suppression 20-14 Displaying IGMP Snooping Information 20-15...
... DHCP Environments 19-7 Configuring ARP ACLs for Non-DHCP Environments 19-8 Limiting the Rate of Incoming ARP Packets 19-10 Performing Validation Checks 19-12 Configuring the Log Buffer 19-13 Displaying Dynamic ARP Inspection Information 19-14 Configuring IGMP Snooping and MVR 20-1 Understanding IGMP Snooping 20-1 IGMP ... Controlling the Multicast Flooding Time After a TCN Event 20-11 Recovering from Flood Mode 20-11 Disabling Multicast Flooding During a TCN Event 20-12 Configuring the IGMP Snooping Querier 20-13 Disabling IGMP Report Suppression 20-14 Displaying IGMP Snooping Information 20-15...
Software Guide
Page 19
... Syslog Servers 26-10 Logging Messages to a UNIX Syslog Daemon 26-10 Configuring the UNIX System Logging Facility 26-11 Displaying the Logging Configuration 26-12 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xix
... Syslog Servers 26-10 Logging Messages to a UNIX Syslog Daemon 26-10 Configuring the UNIX System Logging Facility 26-11 Displaying the Logging Configuration 26-12 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xix
Software Guide
Page 22
... DSCP 30-8 Classification Comparisons 30-9 Classification Based on QoS ACLs 30-10 Classification Based on QoS Groups 30-10 Table Maps 30-11 Policing 30-12 Individual Policing 30-13 Aggregate Policing 30-14 Unconditional Priority Policing 30-15 Marking 30-16 Congestion Management and Scheduling 30-18 Traffic Shaping 30... Shaping 30-47 Configuring Output Policy Maps with Class-Based Priority Queuing 30-48 Configuring Output Policy Maps with Weighted Tail Drop 30-53 xxii Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
... DSCP 30-8 Classification Comparisons 30-9 Classification Based on QoS ACLs 30-10 Classification Based on QoS Groups 30-10 Table Maps 30-11 Policing 30-12 Individual Policing 30-13 Aggregate Policing 30-14 Unconditional Priority Policing 30-15 Marking 30-16 Congestion Management and Scheduling 30-18 Traffic Shaping 30... Shaping 30-47 Configuring Output Policy Maps with Class-Based Priority Queuing 30-48 Configuring Output Policy Maps with Weighted Tail Drop 30-53 xxii Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
Software Guide
Page 24
... Routing is Disabled 32-10 Proxy ARP 32-10 Default Gateway 32-11 ICMP Router Discovery Protocol (IRDP) 32-11 Configuring Broadcast Packet Handling 32-12 Enabling Directed Broadcast-to-Physical Broadcast Translation 32-13 Forwarding UDP Broadcast Packets and Protocols 32-14 Establishing an IP Broadcast Address 32-15 Flooding... Parameters 32-27 Configuring Other OSPF Parameters 32-29 Changing LSA Group Pacing 32-30 Configuring a Loopback Interface 32-31 Monitoring OSPF 32-31 xxiv Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
... Routing is Disabled 32-10 Proxy ARP 32-10 Default Gateway 32-11 ICMP Router Discovery Protocol (IRDP) 32-11 Configuring Broadcast Packet Handling 32-12 Enabling Directed Broadcast-to-Physical Broadcast Translation 32-13 Forwarding UDP Broadcast Packets and Protocols 32-14 Establishing an IP Broadcast Address 32-15 Flooding... Parameters 32-27 Configuring Other OSPF Parameters 32-29 Changing LSA Group Pacing 32-30 Configuring a Loopback Interface 32-31 Monitoring OSPF 32-31 xxiv Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
Software Guide
Page 27
Contents 35 C H A P T E R 78-17058-01 Configuring a Rendezvous Point 34-10 Manually Assigning an RP to Multicast Groups 34-11 Configuring Auto-RP 34-12 Configuring PIMv2 BSR 34-16 Using Auto-RP and a BSR 34-20 Monitoring the RP Mapping Information 34-21 Troubleshooting PIMv1 and PIMv2 Interoperability Problems ...-3 Configuring MSDP 35-4 Default MSDP Configuration 35-4 Configuring a Default MSDP Peer 35-4 Caching Source-Active State 35-6 Requesting Source Information from an MSDP Peer 35-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xxvii
Contents 35 C H A P T E R 78-17058-01 Configuring a Rendezvous Point 34-10 Manually Assigning an RP to Multicast Groups 34-11 Configuring Auto-RP 34-12 Configuring PIMv2 BSR 34-16 Using Auto-RP and a BSR 34-20 Monitoring the RP Mapping Information 34-21 Troubleshooting PIMv1 and PIMv2 Interoperability Problems ...-3 Configuring MSDP 35-4 Default MSDP Configuration 35-4 Configuring a Default MSDP Peer 35-4 Caching Source-Active State 35-6 Requesting Source Information from an MSDP Peer 35-8 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide xxvii
Software Guide
Page 28
... 35-9 Filtering Source-Active Request Messages 35-11 Controlling Source Information that Your Switch Forwards 35-12 Using a Filter 35-12 Using TTL to Limit the Multicast Data Sent in SA Messages 35-14 Controlling Source Information that...-10 Using Ping 36-10 All Software Versions 36-11 Metro IP Access Image 36-11 Ping Responses 36-12 Summary 36-13 Using Layer 2 Traceroute 36-13 Understanding Layer 2 Traceroute 36-13 Layer 2 Traceroute Usage ...Understanding IP Traceroute 36-15 Executing IP Traceroute 36-16 xxviii Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
... 35-9 Filtering Source-Active Request Messages 35-11 Controlling Source Information that Your Switch Forwards 35-12 Using a Filter 35-12 Using TTL to Limit the Multicast Data Sent in SA Messages 35-14 Controlling Source Information that...-10 Using Ping 36-10 All Software Versions 36-11 Metro IP Access Image 36-11 Ping Responses 36-12 Summary 36-13 Using Layer 2 Traceroute 36-13 Understanding Layer 2 Traceroute 36-13 Layer 2 Traceroute Usage ...Understanding IP Traceroute 36-15 Executing IP Traceroute 36-16 xxviii Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 78-17058-01
Software Guide
Page 30
... File B-18 Working with Software Images B-18 Image Location on the Switch B-19 tar File Format of Images on a Server or Cisco.com B-19 Copying Image Files By Using TFTP B-20 Preparing to Download or Upload an Image File By Using TFTP B-21 Downloading an... By Using RCP B-28 Downloading an Image File By Using RCP B-29 Uploading an Image File By Using RCP B-31 Unsupported Commands in Cisco IOS Release 12.2(25)EX C-1 Access Control Lists C-1 Unsupported Privileged EXEC Commands C-1 Unsupported Global Configuration Commands C-1 ARP Commands C-1 Unsupported Global Configuration Commands C-1...
... File B-18 Working with Software Images B-18 Image Location on the Switch B-19 tar File Format of Images on a Server or Cisco.com B-19 Copying Image Files By Using TFTP B-20 Preparing to Download or Upload an Image File By Using TFTP B-21 Downloading an... By Using RCP B-28 Downloading an Image File By Using RCP B-29 Uploading an Image File By Using RCP B-31 Unsupported Commands in Cisco IOS Release 12.2(25)EX C-1 Access Control Lists C-1 Unsupported Privileged EXEC Commands C-1 Unsupported Global Configuration Commands C-1 ARP Commands C-1 Unsupported Global Configuration Commands C-1...
Software Guide
Page 33
...This guide provides procedures for use these commands, see the Cisco IOS documentation set available from the Cisco IOS Software drop-down list. For information about the standard Cisco IOS Release 12.2 commands, see the Cisco ME 3400 Ethernet Access Switch Command Reference for this guide...8226; Arguments for which you should have been created or changed for using this release. On the Cisco Product Documentation home page, select Release 12.2 from the Cisco.com home page at Service and Support > Technical Documents. Conventions This publication uses these conventions to convey...
...This guide provides procedures for use these commands, see the Cisco IOS documentation set available from the Cisco IOS Software drop-down list. For information about the standard Cisco IOS Release 12.2 commands, see the Cisco ME 3400 Ethernet Access Switch Command Reference for this guide...8226; Arguments for which you should have been created or changed for using this release. On the Cisco Product Documentation home page, select Release 12.2 from the Cisco.com home page at Service and Support > Technical Documents. Conventions This publication uses these conventions to convey...
Software Guide
Page 49
... Features and IP Source Guard" Chapter 9, "Configuring Interface Characteristics" Chapter 10, "Configuring Command Macros" Chapter 11, "Configuring VLANs" Chapter 12, "Configuring Private VLANs" Chapter 19, "Configuring Dynamic ARP Inspection" 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 1-9 Chapter 1 Overview Default Settings After Initial Switch Configuration If you do...
... Features and IP Source Guard" Chapter 9, "Configuring Interface Characteristics" Chapter 10, "Configuring Command Macros" Chapter 11, "Configuring VLANs" Chapter 12, "Configuring Private VLANs" Chapter 19, "Configuring Dynamic ARP Inspection" 78-17058-01 Cisco ME 3400 Ethernet Access Switch Software Configuration Guide 1-9 Chapter 1 Overview Default Settings After Initial Switch Configuration If you do...
Software Guide
Page 52
...a low-latency queue to the appropriate destination VLAN, providing inter-VLAN routing. One queue can also configure a rate-limiter on Cisco ME switches provides an efficient method of QoS configuration. The routers also provide firewall services, Network Address Translation (NAT) services, ... end station in a Multidwelling Configuration Cisco routers Catalyst 6500 switches Service Provider POP Si Cisco ME switches Residential basement Home access gateways Set-top box Residential location Set-top box PC TV PC TV 92998 1-12 Cisco ME 3400 Ethernet Access Switch Software ...
...a low-latency queue to the appropriate destination VLAN, providing inter-VLAN routing. One queue can also configure a rate-limiter on Cisco ME switches provides an efficient method of QoS configuration. The routers also provide firewall services, Network Address Translation (NAT) services, ... end station in a Multidwelling Configuration Cisco routers Catalyst 6500 switches Service Provider POP Si Cisco ME switches Residential basement Home access gateways Set-top box Residential location Set-top box PC TV PC TV 92998 1-12 Cisco ME 3400 Ethernet Access Switch Software ...