Software Guide
Page 9
... 4 Configuring CEF for PFC2 1 Understanding How Layer 3 Switching Works 1 Layer 3 Switching Overview 2 Understanding Layer 3-Switched Packet Rewrite 2 Understanding CEF for PFC2 4 Understanding NetFlow Statistics 9 Default CEF for PFC2 Configuration 10 CEF for PFC2 Configuration Guidelines and Restrictions 11 Configuring CEF for PFC2 12 Displaying Layer 3-Switching Entries on the Supervisor Engine 12...
... 4 Configuring CEF for PFC2 1 Understanding How Layer 3 Switching Works 1 Layer 3 Switching Overview 2 Understanding Layer 3-Switched Packet Rewrite 2 Understanding CEF for PFC2 4 Understanding NetFlow Statistics 9 Default CEF for PFC2 Configuration 10 CEF for PFC2 Configuration Guidelines and Restrictions 11 Configuring CEF for PFC2 12 Displaying Layer 3-Switching Entries on the Supervisor Engine 12...
Software Guide
Page 28
...to configure Cisco Discovery Protocol (CDP). Configuring Broadcast Suppression Describes how to configure Cisco Express Forwarding ...Describes how to configure protocol filtering on Ethernet, Fast Ethernet, and Gigabit Ethernet ports. Configuring Switch Access Using AAA ...-02 Organization Preface Chapter Chapter 9 Chapter 10 Chapter 11 Chapter 12 Chapter 13 Chapter .... Configuring Redundancy Describes how to configure NetFlow Data Export (NDE). Configuring UDLD Describes... Connectivity Describes how to display information about modules and switch ports and how to configure ...
...to configure Cisco Discovery Protocol (CDP). Configuring Broadcast Suppression Describes how to configure Cisco Express Forwarding ...Describes how to configure protocol filtering on Ethernet, Fast Ethernet, and Gigabit Ethernet ports. Configuring Switch Access Using AAA ...-02 Organization Preface Chapter Chapter 9 Chapter 10 Chapter 11 Chapter 12 Chapter 13 Chapter .... Configuring Redundancy Describes how to configure NetFlow Data Export (NDE). Configuring UDLD Describes... Connectivity Describes how to display information about modules and switch ports and how to configure ...
Software Guide
Page 221
... page 13-1 • Default CEF for PFC2 Configuration, page 13-10 • CEF for PFC2 Configuration Guidelines and Restrictions, page 13-11 • Configuring CEF for PFC2, page 13-4 • Understanding NetFlow Statistics, page 13-9 78-13315-02 Catalyst 6000 Family Software Configuration ...Guide-Releases 6.3 and 6.4 13-1 Note For complete information on a Catalyst 5000 family switch, refer to the Layer 3 Switching Software Configuration Guide at http://www.cisco.com/univercd/...
... page 13-1 • Default CEF for PFC2 Configuration, page 13-10 • CEF for PFC2 Configuration Guidelines and Restrictions, page 13-11 • Configuring CEF for PFC2, page 13-4 • Understanding NetFlow Statistics, page 13-9 78-13315-02 Catalyst 6000 Family Software Configuration ...Guide-Releases 6.3 and 6.4 13-1 Note For complete information on a Catalyst 5000 family switch, refer to the Layer 3 Switching Software Configuration Guide at http://www.cisco.com/univercd/...
Software Guide
Page 222
... B are rewritten with the encapsulation appropriate for the next-hop subnet. Note Layer 3 switching supports the routing protocols configured on the MSFC2. Layer 3 switching uses NetFlow Data Export (NDE) to identify traffic characteristics for administration, planning, and troubleshooting. Layer 3 switching on the appropriate VLANs. Note Traffic is implemented in hardware and...
... B are rewritten with the encapsulation appropriate for the next-hop subnet. Note Layer 3 switching supports the routing protocols configured on the MSFC2. Layer 3 switching uses NetFlow Data Export (NDE) to identify traffic characteristics for administration, planning, and troubleshooting. Layer 3 switching on the appropriate VLANs. Note Traffic is implemented in hardware and...
Software Guide
Page 225
... based on: • Entries in the ACL ternary content addressable memory (TCAM) for policy-based routing decisions • Entries in the NetFlow table for TCP intercept and reflexive ACL forwarding decisions (see the "Understanding Forwarding Decisions" section on page 13-5). Chapter 13 Configuring CEF for...for each packet to the egress port, where the rewrite occurs when the packet is conceptually similar to make forwarding decisions. The NetFlow table is stored separately in the FIB. The FIB maintains next-hop address information based on the information in the routing tables ...
... based on: • Entries in the ACL ternary content addressable memory (TCAM) for policy-based routing decisions • Entries in the NetFlow table for TCP intercept and reflexive ACL forwarding decisions (see the "Understanding Forwarding Decisions" section on page 13-5). Chapter 13 Configuring CEF for...for each packet to the egress port, where the rewrite occurs when the packet is conceptually similar to make forwarding decisions. The NetFlow table is stored separately in the FIB. The FIB maintains next-hop address information based on the information in the routing tables ...
Software Guide
Page 229
....Aa:02.Cc Aa:Dd Data Host C 01.Aa:02.Cc Dd:Cc 25482 Understanding NetFlow Statistics These sections describe NetFlow statistics: • NetFlow Statistics Overview, page 13-9 • NetFlow Table Entry Aging, page 13-10 • Flow Masks, page 13-10 NetFlow Statistics Overview CEF for PFC2 generates flow statistics for Layer 3-switched traffic, which are...
....Aa:02.Cc Aa:Dd Data Host C 01.Aa:02.Cc Dd:Cc 25482 Understanding NetFlow Statistics These sections describe NetFlow statistics: • NetFlow Statistics Overview, page 13-9 • NetFlow Table Entry Aging, page 13-10 • Flow Masks, page 13-10 NetFlow Statistics Overview CEF for PFC2 generates flow statistics for Layer 3-switched traffic, which are...
Software Guide
Page 230
... mask (the most specific flow mask detected. Depending on MSFC2 Default Value Enabled (cannot be disabled) Enabled (cannot be disabled) 13-10 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 Default CEF for PFC2 Configuration Table 13-2 shows the default CEF...it changes its flow mask to the Catalyst 6000 Family Command Reference publication for more information). When the flow mask changes, the entire NetFlow table is performing Layer 3 switching, it is purged. Unsupported fields are created. If CEF for PFC2 detects different flow masks from...
... mask (the most specific flow mask detected. Depending on MSFC2 Default Value Enabled (cannot be disabled) Enabled (cannot be disabled) 13-10 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 Default CEF for PFC2 Configuration Table 13-2 shows the default CEF...it changes its flow mask to the Catalyst 6000 Family Command Reference publication for more information). When the flow mask changes, the entire NetFlow table is performing Layer 3 switching, it is purged. Unsupported fields are created. If CEF for PFC2 detects different flow masks from...
Software Guide
Page 232
show mls entry [cef] | [netflow-route] 13-12 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 However, packets in the flow that are not fragmented or that ...
show mls entry [cef] | [netflow-route] 13-12 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 However, packets in the flow that are not fragmented or that ...
Software Guide
Page 233
... 0.0.0.6 0.0.0.6 TCP 205 105 cc-cc-cc-cc-cc-cc 6 ARPA 0 0 01:03:18 01:00:52 cccccccc cccccccc Console> (enable) Enter the show mls entry netflow-route command to display only the FIB entries.
... 0.0.0.6 0.0.0.6 TCP 205 105 cc-cc-cc-cc-cc-cc 6 ARPA 0 0 01:03:18 01:00:52 cccccccc cccccccc Console> (enable) Enter the show mls entry netflow-route command to display only the FIB entries.
Software Guide
Page 242
Configuring NetFlow Statistics Chapter 13 Configuring CEF for PFC2 1.1.9.254 224.1.1.1 1.1.5.252 224.1.1.1 1.1.9.254 224.1.1.1 Total Entries: 10 Console> (enable) 1.1.13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display ... Mask, page 13-24 • Excluding IP Protocol Entries from the NetFlow Table, page 13-25 • Displaying NetFlow Statistics, page 13-25 • Clearing NetFlow IP and IPX Statistics, page 13-26 • Displaying NetFlow Statistics Debug Information, page 13-28 13-22 Catalyst 6000 Family Software...
Configuring NetFlow Statistics Chapter 13 Configuring CEF for PFC2 1.1.9.254 224.1.1.1 1.1.5.252 224.1.1.1 1.1.9.254 224.1.1.1 Total Entries: 10 Console> (enable) 1.1.13.1 1.1.12.1 1.1.11.3 472770 15840 473667 82261980 13 2756160 20 82418058 11 This example shows how to display ... Mask, page 13-24 • Excluding IP Protocol Entries from the NetFlow Table, page 13-25 • Displaying NetFlow Statistics, page 13-25 • Clearing NetFlow IP and IPX Statistics, page 13-26 • Displaying NetFlow Statistics Debug Information, page 13-28 13-22 Catalyst 6000 Family Software...
Software Guide
Page 243
...To specify the entry aging time for both IP and IPX, perform this task in privileged mode: Task Specify the aging time for the NetFlow set to 512 Console> (enable) To specify the IPX entry aging time, perform this task in privileged mode: Task Command Specify the ...IPX entry aging time for NetFlow table entries. Chapter 13 Configuring CEF for PFC2 Configuring NetFlow Statistics Specifying the NetFlow Table Entry Aging-Time Value The entry aging time for the NetFlow table. The default is adjusted to 512 Console> (enable) 78-...
...To specify the entry aging time for both IP and IPX, perform this task in privileged mode: Task Specify the aging time for the NetFlow set to 512 Console> (enable) To specify the IPX entry aging time, perform this task in privileged mode: Task Command Specify the ...IPX entry aging time for NetFlow table entries. Chapter 13 Configuring CEF for PFC2 Configuring NetFlow Statistics Specifying the NetFlow Table Entry Aging-Time Value The entry aging time for the NetFlow table. The default is adjusted to 512 Console> (enable) 78-...
Software Guide
Page 244
...Flow Masks" section on page 13-10. Detecting and aging out these entries saves space in the NetFlow table for flows to 32 seconds for the NetFlow table. You can configure the pkt_threshold value to NetFlow table entries that have no fast aging). If the NetFlow table remains full, decrease the ... Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 Any fastagingtime value that is removed is adjusted to 128 seconds. A typical NetFlow table entry that is not configured exactly as the indicated values is the entry for other data traffic. The IP entry fast aging time ...
...Flow Masks" section on page 13-10. Detecting and aging out these entries saves space in the NetFlow table for flows to 32 seconds for the NetFlow table. You can configure the pkt_threshold value to NetFlow table entries that have no fast aging). If the NetFlow table remains full, decrease the ... Family Software Configuration Guide-Releases 6.3 and 6.4 78-13315-02 Any fastagingtime value that is removed is adjusted to 128 seconds. A typical NetFlow table entry that is not configured exactly as the indicated values is the entry for other data traffic. The IP entry fast aging time ...
Software Guide
Page 245
...= 112 Total routes = 48 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 13-25 Console> (enable) Displaying NetFlow Statistics Note To display the forwarding decision entries, enter the show mls This example shows how to destination-source flow. Command set mls exclude ...cef command (see the "Displaying Layer 3-Switching Entries on the Supervisor Engine" section on page 13-12.) To display a summary of NetFlow table entries and statistics, perform this task in full flow mode. This example shows how to exclude specified IP protocols. Command set ...
...= 112 Total routes = 48 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4 13-25 Console> (enable) Displaying NetFlow Statistics Note To display the forwarding decision entries, enter the show mls This example shows how to destination-source flow. Command set mls exclude ...cef command (see the "Displaying Layer 3-Switching Entries on the Supervisor Engine" section on page 13-12.) To display a summary of NetFlow table entries and statistics, perform this task in full flow mode. This example shows how to exclude specified IP protocols. Command set ...
Software Guide
Page 246
... 15 Module 15:Physical MAC-Address 00-50-3e-a9-ab-fc Vlan Virtual MAC-Address(es 42 00-00-0c-07-ac-00 Console> The show mls statistics entry command can display all NetFlow statistics are displayed (unspecified options are shown. Configuring NetFlow Statistics...20.25.10 6 50648 80 3152 347854 Console> Clearing NetFlow IP and IPX Statistics These sections describe clearing NetFlow statistics: • Clearing All NetFlow Statistics, page 13-27 • Clearing NetFlow IP Statistics, page 13-27 • Clearing NetFlow IPX Statistics, page 13-28 • Clearing NetFlow Statistics Totals,...
... 15 Module 15:Physical MAC-Address 00-50-3e-a9-ab-fc Vlan Virtual MAC-Address(es 42 00-00-0c-07-ac-00 Console> The show mls statistics entry command can display all NetFlow statistics are displayed (unspecified options are shown. Configuring NetFlow Statistics...20.25.10 6 50648 80 3152 347854 Console> Clearing NetFlow IP and IPX Statistics These sections describe clearing NetFlow statistics: • Clearing All NetFlow Statistics, page 13-27 • Clearing NetFlow IP Statistics, page 13-27 • Clearing NetFlow IPX Statistics, page 13-28 • Clearing NetFlow Statistics Totals,...
Software Guide
Page 247
...clear statistics for src_port or dst_port is TCP or UDP, specify the source and destination TCP or UDP port numbers. A value of zero (0) for NetFlow table entries with destination IP address 172.20.22.113, TCP source port 1652, and TCP destination port 23: Console> (enable) clear mls ... Family Software Configuration Guide-Releases 6.3 and 6.4 13-27 To clear statistics for other protocols, set the src_port and dst_port to clear statistics for NetFlow table entries with destination IP address 172.20.26.22: Console> (enable) clear mls statistics entry ip destination 172.20.26.22 MLS IP...
...clear statistics for src_port or dst_port is TCP or UDP, specify the source and destination TCP or UDP port numbers. A value of zero (0) for NetFlow table entries with destination IP address 172.20.22.113, TCP source port 1652, and TCP destination port 23: Console> (enable) clear mls ... Family Software Configuration Guide-Releases 6.3 and 6.4 13-27 To clear statistics for other protocols, set the src_port and dst_port to clear statistics for NetFlow table entries with destination IP address 172.20.26.22: Console> (enable) clear mls statistics entry ip destination 172.20.26.22 MLS IP...
Software Guide
Page 248
... Console> (enable) clear mls statistics entry ipx destination 1.0002.00e0.fefc.6000 MLS IPX entry cleared. Configuring NetFlow Statistics Chapter 13 Configuring CEF for a NetFlow table IPX entry. Use the all keyword to clear all ] This example shows how to your technical support ... keywords specify the source and destination IPX addresses. Command clear mls statistics entry ipx [destination ipx_addr_spec] [source ipx_addr_spec] [all NetFlow IPX statistics. Command clear mls statistics This example shows how to get more information about particular applications. 13-28 Catalyst 6000 ...
... Console> (enable) clear mls statistics entry ipx destination 1.0002.00e0.fefc.6000 MLS IPX entry cleared. Configuring NetFlow Statistics Chapter 13 Configuring CEF for a NetFlow table IPX entry. Use the all keyword to clear all ] This example shows how to your technical support ... keywords specify the source and destination IPX addresses. Command clear mls statistics entry ipx [destination ipx_addr_spec] [source ipx_addr_spec] [all NetFlow IPX statistics. Command clear mls statistics This example shows how to get more information about particular applications. 13-28 Catalyst 6000 ...
Software Guide
Page 249
...: • Understanding How Layer 3 Switching Works, page 14-1 • Default MLS Configuration, page 14-10 • Configuration Guidelines and Restrictions, page 14-11 • Configuring MLS, page 14-14 Note Supervisor... Internetwork Packet Exchange (IPX) unicast Layer 3 switching and IP multicast Layer 3 switching with Cisco Express Forwarding for PFC2 (CEF for PFC2). Layer 3 switching is implemented in this chapter,...interVLAN forwarding on the switch, rather than on the MSFC. Layer 3 switching uses NetFlow Data Export (NDE) to forward IP and IPX unicast traffic and IP multicast traffic ...
...: • Understanding How Layer 3 Switching Works, page 14-1 • Default MLS Configuration, page 14-10 • Configuration Guidelines and Restrictions, page 14-11 • Configuring MLS, page 14-14 Note Supervisor... Internetwork Packet Exchange (IPX) unicast Layer 3 switching and IP multicast Layer 3 switching with Cisco Express Forwarding for PFC2 (CEF for PFC2). Layer 3 switching is implemented in this chapter,...interVLAN forwarding on the switch, rather than on the MSFC. Layer 3 switching uses NetFlow Data Export (NDE) to forward IP and IPX unicast traffic and IP multicast traffic ...
Software Guide
Page 269
...or 16 (if the MSFC is 15 Active IPX MLS entries = 356 IPX MSFC ID Module XTAG MAC Vlans 22.1.0.56 15 1 00-10-07-38-29-18 2,3,4,5,6, 7,8,9,10,11, 12,13,14,15,16, 17,18,19,20,66, 77 00-d0-...d3-9c-e3-f4 25 00-10-07-38-29-18 26,111 00-d0-d3-9c-e3-f4 112 78-13315-02 Catalyst 6000... Active IP MLS entries = 0 Netflow Data Export version: 8 Netflow Data Export disabled Netflow Data Export port/host is not configured Total packets exported = 0 MSFC ID Module XTAG MAC Vlans 52.0.03 15 1 01-10-29-8a-0c-00 1,10,123,434,121 222,666,959 ...
...or 16 (if the MSFC is 15 Active IPX MLS entries = 356 IPX MSFC ID Module XTAG MAC Vlans 22.1.0.56 15 1 00-10-07-38-29-18 2,3,4,5,6, 7,8,9,10,11, 12,13,14,15,16, 17,18,19,20,66, 77 00-d0-...d3-9c-e3-f4 25 00-10-07-38-29-18 26,111 00-d0-d3-9c-e3-f4 112 78-13315-02 Catalyst 6000... Active IP MLS entries = 0 Netflow Data Export version: 8 Netflow Data Export disabled Netflow Data Export port/host is not configured Total packets exported = 0 MSFC ID Module XTAG MAC Vlans 52.0.03 15 1 01-10-29-8a-0c-00 1,10,123,434,121 222,666,959 ...
Software Guide
Page 287
...family switches provide Layer 3 switching with Multilayer Switching (MLS). Configuring NDE 15 C H A P T E R This chapter describes how to configure NetFlow Data Export (NDE) on the switch that allow you to see all Layer 3-switched traffic through the Multilayer Switch Feature Card (MSFC). Note NDE... version 7 and NDE version 8 are not supported for PFC2) or with Cisco Express Forwarding for Policy Feature Card 2 (CEF for the MSFC. 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4...
...family switches provide Layer 3 switching with Multilayer Switching (MLS). Configuring NDE 15 C H A P T E R This chapter describes how to configure NetFlow Data Export (NDE) on the switch that allow you to see all Layer 3-switched traffic through the Multilayer Switch Feature Card (MSFC). Note NDE... version 7 and NDE version 8 are not supported for PFC2) or with Cisco Express Forwarding for Policy Feature Card 2 (CEF for the MSFC. 78-13315-02 Catalyst 6000 Family Software Configuration Guide-Releases 6.3 and 6.4...
Software Guide
Page 288
...cache into a User Datagram Protocol (UDP) datagram, which consists of a header and a series of one or more switches or Cisco routers. This flow information is then aggregated and fed to applications for expired flows from the statistics cache of flow entries. Figure... data reduction on the exported statistics, and forward them to applications such as the Cisco SwitchProbe and NetFlow FlowCollector, gather and classify flows. Flow collectors, such as TrafficDirector, NetSys, or NetFlow Analyzer. For information on configuring MLS, see Chapter 13, "Configuring CEF for PFC2...
...cache into a User Datagram Protocol (UDP) datagram, which consists of a header and a series of one or more switches or Cisco routers. This flow information is then aggregated and fed to applications for expired flows from the statistics cache of flow entries. Figure... data reduction on the exported statistics, and forward them to applications such as the Cisco SwitchProbe and NetFlow FlowCollector, gather and classify flows. Flow collectors, such as TrafficDirector, NetSys, or NetFlow Analyzer. For information on configuring MLS, see Chapter 13, "Configuring CEF for PFC2...