User Guide
Page 2
... connections between Layer 2 Ethernet segments. An optional power module can be used as an uplink port to a server or as a stacking link to configure the 16- Switched connections between different segments for IP telephones. This network module is a modular, high-density voice network module that provides Layer 2 switching across Ethernet ports. The 16- and 36-Port Ethernet Switch Module for the duration of VLAN and Multicast Groups, page 35 • IP Multicast Support, page 35 • IGMP Snooping, page 35 • Global Storm-Control...
... connections between Layer 2 Ethernet segments. An optional power module can be used as an uplink port to a server or as a stacking link to configure the 16- Switched connections between different segments for IP telephones. This network module is a modular, high-density voice network module that provides Layer 2 switching across Ethernet ports. The 16- and 36-Port Ethernet Switch Module for the duration of VLAN and Multicast Groups, page 35 • IP Multicast Support, page 35 • IGMP Snooping, page 35 • Global Storm-Control...
User Guide
Page 3
... Default parameters on the switch represents a separate Ethernet segment, servers in its address table, it associates the MAC address of multiple VLANs over a single link and allow you to -point link between interfaces efficiently, the switch maintains an address table. For more Ethernet switch interfaces and another networking device such as an individual segment. Switching Frames Between Segments Each Ethernet interface on different interfaces need to communicate, the switch forwards frames from the address table. When stations on an Ethernet switch network module can configure...
... Default parameters on the switch represents a separate Ethernet segment, servers in its address table, it associates the MAC address of multiple VLANs over a single link and allow you to -point link between interfaces efficiently, the switch maintains an address table. For more Ethernet switch interfaces and another networking device such as an individual segment. Switching Frames Between Segments Each Ethernet interface on different interfaces need to communicate, the switch forwards frames from the address table. When stations on an Ethernet switch network module can configure...
User Guide
Page 5
... use VTP in the network. Routed ports support only CEF switching (IP fast switching is an access port. VLAN Trunk Protocol VLAN Trunk Protocol (VTP) is not associated with a Layer 3 routing protocol. and 36-Port Ethernet Switch Module for which might have to be configured with a particular VLAN, as duplicate VLAN names, incorrect VLAN-type specifications, and security violations. SVIs are created the first time that are deleting any Layer 2 characteristics configured on the interface.) The number of VLANs within a VTP domain. Configure a VLAN interface for each VLAN...
... use VTP in the network. Routed ports support only CEF switching (IP fast switching is an access port. VLAN Trunk Protocol VLAN Trunk Protocol (VTP) is not associated with a Layer 3 routing protocol. and 36-Port Ethernet Switch Module for which might have to be configured with a particular VLAN, as duplicate VLAN names, incorrect VLAN-type specifications, and security violations. SVIs are created the first time that are deleting any Layer 2 characteristics configured on the interface.) The number of VLANs within a VTP domain. Configure a VLAN interface for each VLAN...
User Guide
Page 8
... speed and duplex mode. • Enable all modules support EtherChannel (maximum of VLANs on a channel is connected. For Layer 2 EtherChannels: • Assign all interfaces in the EtherChannel. • An EtherChannel will not form if one of VLANs is successful, normal traffic can form an EtherChannel as trunks. If the allowed range of the interfaces is a Switched Port Analyzer (SPAN) destination port. The authentication server authenticates each client connected to a single MAC address, using source addresses...
... speed and duplex mode. • Enable all modules support EtherChannel (maximum of VLANs on a channel is connected. For Layer 2 EtherChannels: • Assign all interfaces in the EtherChannel. • An EtherChannel will not form if one of VLANs is successful, normal traffic can form an EtherChannel as trunks. If the allowed range of the interfaces is a Switched Port Analyzer (SPAN) destination port. The authentication server authenticates each client connected to a single MAC address, using source addresses...
User Guide
Page 24
... 3700 Series Cisco Discovery Protocol Cisco Discovery Protocol (CDP) is a switched interface to a multicast address. CDP runs on one destination interface. EtherChannel interfaces cannot be configured as a SPAN destination interface stops trunking on the same network module. You can configure one SPAN session with a set of network traffic to one or more source interfaces can configure EtherChannel as a source interface. You can be configured as source interfaces, which it . You configure SPAN sessions using parameters that all Cisco routers, bridges, access...
... 3700 Series Cisco Discovery Protocol Cisco Discovery Protocol (CDP) is a switched interface to a multicast address. CDP runs on one destination interface. EtherChannel interfaces cannot be configured as a SPAN destination interface stops trunking on the same network module. You can configure one SPAN session with a set of network traffic to one or more source interfaces can configure EtherChannel as a source interface. You can be configured as source interfaces, which it . You configure SPAN sessions using parameters that all Cisco routers, bridges, access...
User Guide
Page 26
... onto all parts of a network, but prevent Host B from accessing the same part. For example, you do not configure ACLs, all inbound features configured on the criteria specified in the same ACL). and 36-Port Ethernet Switch Module for your network. In Figure 13, ACLs applied at switch interfaces. If there are examined. If you can limit network traffic and restrict network use ACLs to allow e-mail traffic to block inbound traffic. ACLs can allow...
... onto all parts of a network, but prevent Host B from accessing the same part. For example, you do not configure ACLs, all inbound features configured on the criteria specified in the same ACL). and 36-Port Ethernet Switch Module for your network. In Figure 13, ACLs applied at switch interfaces. If there are examined. If you can limit network traffic and restrict network use ACLs to allow e-mail traffic to block inbound traffic. ACLs can allow...
User Guide
Page 30
... in a timely manner. On interfaces configured as Layer 2 802.1Q trunks, all traffic has an equal chance of being delivered in Layer 2 frames: Layer 2 802.1Q frame headers have a 2-byte Tag Control Information field that all traffic has equal priority and an equal chance of service (ToS) field to provide preferential treatment. The supported DSCP values are called the User Priority bits. and 36-Port Ethernet Switch Module for...
... in a timely manner. On interfaces configured as Layer 2 802.1Q trunks, all traffic has an equal chance of being delivered in Layer 2 frames: Layer 2 802.1Q frame headers have a 2-byte Tag Control Information field that all traffic has equal priority and an equal chance of service (ToS) field to provide preferential treatment. The supported DSCP values are called the User Priority bits. and 36-Port Ethernet Switch Module for...
User Guide
Page 35
... value. Mapping Tables The Ethernet switch network modules support these types of VLANs by dynamically configuring the interfaces so that might or might not be appropriate for a particular multicast group, the switch adds the host port number to type of multicast groups and member ports. For configuration information, see the "Configuring CoS Maps" section on the COS value. The LAN switch snoops on Ethernet switch network modules. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview...
... value. Mapping Tables The Ethernet switch network modules support these types of VLANs by dynamically configuring the interfaces so that might or might not be appropriate for a particular multicast group, the switch adds the host port number to type of multicast groups and member ports. For configuration information, see the "Configuring CoS Maps" section on the COS value. The LAN switch snoops on Ethernet switch network modules. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview...
User Guide
Page 40
... same time. and 36-Port Ethernet Switch Module for Voice, Video, and Integrated Data (AVVID) solution. Forwarding these packets can also set the switch to shut down or to access the port is the percentage of the Cisco Architecture for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Per-Port Storm-Control A packet storm occurs when a large number of broadcast, unicast, or multicast packets are expressed as a percentage of the station attempting to time out. Per-port storm-control uses...
... same time. and 36-Port Ethernet Switch Module for Voice, Video, and Integrated Data (AVVID) solution. Forwarding these packets can also set the switch to shut down or to access the port is the percentage of the Cisco Architecture for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Per-Port Storm-Control A packet storm occurs when a large number of broadcast, unicast, or multicast packets are expressed as a percentage of the station attempting to time out. Per-port storm-control uses...
User Guide
Page 41
...-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Default Switch Configuration By default, the Ethernet switch network module provides the following settings with the set to receive on the 10/100 ports. This special packet is set to send off or receive desired. This connection sustains a line-rate traffic similar to receive on when a remote port is called a pause frame. Using Flow-Control Keywords Table 9 describes guidelines for a period of intrachassis stacked ports are static access ports, not 802.1Q trunk ports...
...-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Feature Overview Default Switch Configuration By default, the Ethernet switch network module provides the following settings with the set to receive on the 10/100 ports. This special packet is set to send off or receive desired. This connection sustains a line-rate traffic similar to receive on when a remote port is called a pause frame. Using Flow-Control Keywords Table 9 describes guidelines for a period of intrachassis stacked ports are static access ports, not 802.1Q trunk ports...
User Guide
Page 62
...- This procedure is set either to auto or to -RADIUS-Server Communication RADIUS security servers are tried in the configuration file. Returns to configure the RADIUS server parameters on the switch. To disable AAA, use the no dot1x port-control interface configuration command. and 36-Port Ethernet Switch Module for example, authentication-the second host entry configured acts as the fail-over backup to be enabled for 802.1x authentication. Check the Status column in privileged EXEC mode, follow these steps...
...- This procedure is set either to auto or to -RADIUS-Server Communication RADIUS security servers are tried in the configuration file. Returns to configure the RADIUS server parameters on the switch. To disable AAA, use the no dot1x port-control interface configuration command. and 36-Port Ethernet Switch Module for example, authentication-the second host entry configured acts as the fail-over backup to be enabled for 802.1x authentication. Check the Status column in privileged EXEC mode, follow these steps...
User Guide
Page 86
...-config Purpose Displays the access list configuration. (Optional) Saves your network. Beginning in privileged EXEC mode, follow these items: • The types of applications used and the traffic patterns on your network. • Traffic characteristics and needs of congestion points in the configuration file. Note The ip access-group interface configuration command is only valid when applied to interface port-channels. ACLs cannot be applied to a Layer 2 interface or a Layer 3 interface. If applied to configure QoS on your Ethernet switch network module...
...-config Purpose Displays the access list configuration. (Optional) Saves your network. Beginning in privileged EXEC mode, follow these items: • The types of applications used and the traffic patterns on your network. • Traffic characteristics and needs of congestion points in the configuration file. Note The ip access-group interface configuration command is only valid when applied to interface port-channels. ACLs cannot be applied to a Layer 2 interface or a Layer 3 interface. If applied to configure QoS on your Ethernet switch network module...
User Guide
Page 103
... Ethernet switch network module immediately removes a port from the IP multicast group when it detects an IGMP version 2 leave message on that sends a leave message from the forwarding table without first sending out group-specific queries to enter interface configuration mode, and use the Immediate-Leave feature only when there is the number of a multicast group: • vlan-id is the multicast group VLAN ID. • mac-address is the group MAC address. • interface-id...
... Ethernet switch network module immediately removes a port from the IP multicast group when it detects an IGMP version 2 leave message on that sends a leave message from the forwarding table without first sending out group-specific queries to enter interface configuration mode, and use the Immediate-Leave feature only when there is the number of a multicast group: • vlan-id is the multicast group VLAN ID. • mac-address is the group MAC address. • interface-id...
User Guide
Page 108
... marking changed to a Differentiated Services Code Point ([DSCP]) value of EF.) However, to deploy IP telephony.) When this is one of voice traffic. To automatically configure Cisco IP phones to send voice and data traffic on the native VLAN. Enters the interface configuration mode and the port to use a single IP address space for branch offices. (This is the case, you must address two key considerations: • Network managers...
... marking changed to a Differentiated Services Code Point ([DSCP]) value of EF.) However, to deploy IP telephony.) When this is one of voice traffic. To automatically configure Cisco IP phones to send voice and data traffic on the native VLAN. Enters the interface configuration mode and the port to use a single IP address space for branch offices. (This is the case, you must address two key considerations: • Network managers...
User Guide
Page 110
... snmp vlan-membership traps to privileged EXEC mode. however, the BOOTP server must be able to it, the management station accesses the switch by displaying the running configuration: Router# show running the configuration file. If a member switch has an IP address assigned to access the BOOTP server through one of physical MAC addresses and corresponding IP addresses, subnet masks, and default gateway addresses. When you configure a trap manager, community strings for Cisco 2600 Series, Cisco 3600 Series...
... snmp vlan-membership traps to privileged EXEC mode. however, the BOOTP server must be able to it, the management station accesses the switch by displaying the running configuration: Router# show running the configuration file. If a member switch has an IP address assigned to access the BOOTP server through one of physical MAC addresses and corresponding IP addresses, subnet masks, and default gateway addresses. When you configure a trap manager, community strings for Cisco 2600 Series, Cisco 3600 Series...
User Guide
Page 161
... series, Cisco 3600 series, and Cisco 3700 series routers. however, you enter policy-map class configuration mode. Use the class-map command when the map is not supported. Note In a policy map, the class named class-default is shared among many ports. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series class class To define a traffic classification for that uses an ACL classification to enter policy-map configuration mode. To delete...
... series, Cisco 3600 series, and Cisco 3700 series routers. however, you enter policy-map class configuration mode. Use the class-map command when the map is not supported. Note In a policy map, the class named class-default is shared among many ports. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series class class To define a traffic classification for that uses an ACL classification to enter policy-map configuration mode. To delete...
User Guide
Page 190
...processing on the VLAN interface, use the ip igmp snooping immediate-leave command in global configuration mode. This command was introduced. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series ip igmp snooping vlan immediate-leave To enable Internet Group Management Protocol (IGMP) Immediate-Leave processing on every port in nonvolatile RAM (NVRAM). The Immediate-Leave configuration is supported only with IGMP version 2 hosts. ip igmp snooping vlan immediate-leave 16- Configures a Layer 2 port as a multicast router port. Do not enter...
...processing on the VLAN interface, use the ip igmp snooping immediate-leave command in global configuration mode. This command was introduced. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series ip igmp snooping vlan immediate-leave To enable Internet Group Management Protocol (IGMP) Immediate-Leave processing on every port in nonvolatile RAM (NVRAM). The Immediate-Leave configuration is supported only with IGMP version 2 hosts. ip igmp snooping vlan immediate-leave 16- Configures a Layer 2 port as a multicast router port. Do not enter...
User Guide
Page 220
... introduced. show ip access-lists [name | number] Syntax Description name number (Optional) ACL name. (Optional) ACL number. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show ip access-lists To display IP access control lists (ACLs) configured on the following is from 1 to 199 and from 1300 to 2699. The range is sample output from the show ip access-lists command: Switch# show ip access-lists Standard IP access list testingacl permit 10...
... introduced. show ip access-lists [name | number] Syntax Description name number (Optional) ACL name. (Optional) ACL number. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show ip access-lists To display IP access control lists (ACLs) configured on the following is from 1 to 199 and from 1300 to 2699. The range is sample output from the show ip access-lists command: Switch# show ip access-lists Standard IP access list testingacl permit 10...
User Guide
Page 225
...: Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. Use this example, Mask 1 is used for security ACLs. Command Modes Privileged EXEC Command History Release 12.1(6)EA2 12.2(15)ZJ Modification This command was implemented on the switch. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show mls masks show mls masks To display the details of the Access Control Parameters (ACPs) used for quality of service (QoS) and security access control lists (ACLs), use...
...: Cisco 2600 series, Cisco 3600 series, and Cisco 3700 series routers. Use this example, Mask 1 is used for security ACLs. Command Modes Privileged EXEC Command History Release 12.1(6)EA2 12.2(15)ZJ Modification This command was implemented on the switch. and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series show mls masks show mls masks To display the details of the Access Control Parameters (ACPs) used for quality of service (QoS) and security access control lists (ACLs), use...
User Guide
Page 242
.... and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Glossary 802.1d-IEEE standard for MAC bridges. 802.1p-IEEE standard for queuing and multicast support. 802.1q-IEEE standard for VLAN frame tagging. 802.1x-IEEE standard for EtherChannel). ATM-Asynchronous Transfer Mode. authenticator-Entity that is eligible to provide support for cell relay in which multiple service types (such as...
.... and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series Glossary 802.1d-IEEE standard for MAC bridges. 802.1p-IEEE standard for queuing and multicast support. 802.1q-IEEE standard for VLAN frame tagging. 802.1x-IEEE standard for EtherChannel). ATM-Asynchronous Transfer Mode. authenticator-Entity that is eligible to provide support for cell relay in which multiple service types (such as...